[pycrypto] Bug in PyCrypto 2.6.1
Paul Koning
paul_koning at dell.com
Mon Dec 1 08:31:27 PST 2014
To me, key_size means the size of the key. It doesn’t mean the largest value you can encrypt. If that is what is intended, or if it has to stay that way for historical reasons, fine, but it needs to be very clearly pointed out in the documentation because it is unexpected and counterintuitive.
paul
> On Dec 1, 2014, at 11:13 AM, Mirko Dziadzka <mirko.dziadzka at gmail.com> wrote:
>
> HI
>
> Some thoughts about this …
>
>> _RSA.RSAobj.size.__doc__ says: Return the maximum number of bits that can be handled by this key
>
> An RSA key can only encrypt data smaller than this key. So if we have an 2048 bit RSA key, it can encrypt some 2048 bit values, but not all. So 2047 should be the safe value here.
>
> IMHO this -1 is correct here.
>
> Mirko
More information about the pycrypto
mailing list