The only limit check that I know is performed is if the modulus is
strictly larger than OPENSSL_RSA_SMALL_MODULUS_BITS bits (3072 by
default), then the public exponent must be less then or equal to
OPENSSL_RSA_MAX_PUBEXP_BITS bits (64 by default).
You can then have a 3072bits RSA key with a public exponent of any size.
Or a 3073bits RSA key with a public exponent limited to 64bits.
Other than for performance, I don't see any reason to limit the size of
the public exponent.
--
Erwann ABALEA
Le 21/06/2012 16:41, Sukalp Bhople a écrit :
Hello guys,
I was looking into the (RSA) certificate verification in Openssl. I
was wondering if Opensssl checks the size of the public exponent.
Or what is the max public exponent accepted by server?
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org