Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

strings more than 245 characters cant be signed #51

Open
melvincarvalho opened this issue Aug 2, 2015 · 1 comment
Open

strings more than 245 characters cant be signed #51

melvincarvalho opened this issue Aug 2, 2015 · 1 comment

Comments

@melvincarvalho
Copy link
Member

A typical RSA key 2048 bit cannot sign the nonces returned using WebID + RSA

PKCS1v15 uses 11 bytes padding and so can have a max message size of 256 - 11 = 245 bytes

Typically the host + nonce string to sign is of length greater than this.

Would it be possible to use a shorter nonce?

openssl rsautl -sign -in tmp -inkey id_rsa.pem -out sig 
RSA operation error
140315110823584:error:0406C06E:rsa routines:RSA_padding_add_PKCS1_type_1:data too large for key size:rsa_pk1.c:73:
@dmitrizagidulin
Copy link
Contributor

@melvincarvalho - is this a WebID+RSA spec issue? Or an issue with the particular implementation on Gold? (If it's a spec issue, I want to make sure we also open it on solid/solid, so it doesn't get lost)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@melvincarvalho @dmitrizagidulin