WIP: soft: Decrypt arbitrary data using pkey #27
Conversation
src/soft.rs
Outdated
| } | ||
| }; | ||
|
|
||
| decrypter |
There was a problem hiding this comment.
You only need this on RSA, not ECDSA.
There are also a few styles of RSA padding, https://docs.rs/openssl/latest/openssl/rsa/struct.Padding.html which may be important here especially since in the JWE it specifically calls out RSA-OAEP which likely indicates your padding mode should be https://docs.rs/openssl/latest/openssl/rsa/struct.Padding.html#associatedconstant.PKCS1_OAEP. I'm not sure what the function signature should look like for that, since some key types don't need padding, some do. Maybe we just make our own Padding enum that maps the various options in the openssl version?
There was a problem hiding this comment.
Added this to testing, and it fails for ecdsa with "operation not supported for this keytype".
There was a problem hiding this comment.
It's failing initializing the Encrypter.
Signed-off-by: David Mulder <[email protected]>
dmulder
force-pushed
the
dmulder/decrypt
branch
from
344343b
to
f888dfe
Compare
Builds, but in testing it fails to decrypt a blob that was supposedly encrypted using my public key. Will need to investigate further.
Checklist