haskell/cryptonite
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

clarify padding requirements for PKCS15 encrypt/decrypt

Browse Source 
The types do not say whether it is necessary to apply pad/unpad to
the input/output of the PKCS15 encrypt/decrypt functions.  Add
comments to clarify that it is not necessary to manually pad/unpad
the message.
This commit is contained in:
Fraser Tweedale 2017-06-26 19:44:31 +10:00 committed by ___
parent bc72179d89
commit f6c1f21e59
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
Crypto/PubKey/RSA/PKCS15.hs
View File

@ -137,6 +137,8 @@ unpad packed
-- information from the timing of the operation, the blinder can be set to None.
--
-- If unsure always set a blinder or use decryptSafer
--
-- The message is returned un-padded.
decrypt :: Maybe Blinder -- ^ optional blinder
-> PrivateKey -- ^ RSA private key
-> ByteString -- ^ cipher text
@ -156,7 +158,8 @@ decryptSafer pk b = do
-- | encrypt a bytestring using the public key.
--
-- the message needs to be smaller than the key size - 11
-- The message needs to be smaller than the key size - 11.
-- The message should not be padded.
encrypt :: MonadRandom m => PublicKey -> ByteString -> m (Either Error ByteString)
encrypt pk m = do
r <- pad (public_size pk) m