clarify padding requirements for PKCS15 encrypt/decrypt
The types do not say whether it is necessary to apply pad/unpad to the input/output of the PKCS15 encrypt/decrypt functions. Add comments to clarify that it is not necessary to manually pad/unpad the message.
This commit is contained in:
Fraser Tweedale
___
parent
bc72179d89
commit
f6c1f21e59
@ -137,6 +137,8 @@ unpad packed
|
|||||||
-- information from the timing of the operation, the blinder can be set to None.
|
-- information from the timing of the operation, the blinder can be set to None.
|
||||||
--
|
--
|
||||||
-- If unsure always set a blinder or use decryptSafer
|
-- If unsure always set a blinder or use decryptSafer
|
||||||
|
--
|
||||||
|
-- The message is returned un-padded.
|
||||||
decrypt :: Maybe Blinder -- ^ optional blinder
|
decrypt :: Maybe Blinder -- ^ optional blinder
|
||||||
-> PrivateKey -- ^ RSA private key
|
-> PrivateKey -- ^ RSA private key
|
||||||
-> ByteString -- ^ cipher text
|
-> ByteString -- ^ cipher text
|
||||||
@ -156,7 +158,8 @@ decryptSafer pk b = do
|
|||||||
|
|
||||||
-- | encrypt a bytestring using the public key.
|
-- | encrypt a bytestring using the public key.
|
||||||
--
|
--
|
||||||
-- the message needs to be smaller than the key size - 11
|
-- The message needs to be smaller than the key size - 11.
|
||||||
|
-- The message should not be padded.
|
||||||
encrypt :: MonadRandom m => PublicKey -> ByteString -> m (Either Error ByteString)
|
encrypt :: MonadRandom m => PublicKey -> ByteString -> m (Either Error ByteString)
|
||||||
encrypt pk m = do
|
encrypt pk m = do
|
||||||
r <- pad (public_size pk) m
|
r <- pad (public_size pk) m
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user