rsa-decrypt.c 1.9 KB
Newer Older
Niels Möller's avatar
Niels Möller committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25
/* rsa_decrypt.c
 *
 * The RSA publickey algorithm. PKCS#1 encryption.
 */

/* nettle, low-level cryptographics library
 *
 * Copyright (C) 2001 Niels Mller
 *  
 * The nettle library is free software; you can redistribute it and/or modify
 * it under the terms of the GNU Lesser General Public License as published by
 * the Free Software Foundation; either version 2.1 of the License, or (at your
 * option) any later version.
 * 
 * The nettle library is distributed in the hope that it will be useful, but
 * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
 * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public
 * License for more details.
 * 
 * You should have received a copy of the GNU Lesser General Public License
 * along with the nettle library; see the file COPYING.LIB.  If not, write to
 * the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
 * MA 02111-1307, USA.
 */

26
#if HAVE_CONFIG_H
27
# include "config.h"
28 29
#endif

Niels Möller's avatar
Niels Möller committed
30 31 32 33
#include <assert.h>
#include <stdlib.h>
#include <string.h>

34 35 36
#include "rsa.h"

#include "bignum.h"
37
#include "nettle-internal.h"
38

Niels Möller's avatar
Niels Möller committed
39
int
40
rsa_decrypt(const struct rsa_private_key *key,
Niels Möller's avatar
Niels Möller committed
41 42 43
	    unsigned *length, uint8_t *message,
	    const mpz_t gibberish)
{
44
  TMP_DECL(em, uint8_t, NETTLE_MAX_BIGNUM_BITS / 8);
Niels Möller's avatar
Niels Möller committed
45 46 47 48 49 50 51 52 53
  uint8_t *terminator;
  unsigned padding;
  unsigned message_length;
  
  mpz_t m;

  mpz_init(m);
  rsa_compute_root(key, m, gibberish);

54
  TMP_ALLOC(em, key->size);
Niels Möller's avatar
Niels Möller committed
55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80
  nettle_mpz_get_str_256(key->size, em, m);
  mpz_clear(m);

  /* Check format */
  if (em[0] || em[1] != 2)
    return 0;

  terminator = memchr(em + 2, 0, key->size - 2);

  if (!terminator)
    return 0;
  
  padding = terminator - (em + 2);
  if (padding < 8)
    return 0;

  message_length = key->size - 3 - padding;

  if (*length < message_length)
    return 0;
  
  memcpy(message, terminator + 1, message_length);
  *length = message_length;

  return 1;
}