comparison src/pk/rsa/rsa_verify_hash.c @ 191:1c15b283127b libtomcrypt-orig

Import of libtomcrypt 1.02 with manual path rename rearrangement etc
author Matt Johnston <matt@ucc.asn.au>
date Fri, 06 May 2005 13:23:02 +0000
parents
children 39d5d58461d6
comparison
equal deleted inserted replaced
143:5d99163f7e32 191:1c15b283127b
1 /* LibTomCrypt, modular cryptographic library -- Tom St Denis
2 *
3 * LibTomCrypt is a library that provides various cryptographic
4 * algorithms in a highly modular and flexible manner.
5 *
6 * The library is free for all purposes without any express
7 * guarantee it works.
8 *
9 * Tom St Denis, [email protected], http://libtomcrypt.org
10 */
11 #include "tomcrypt.h"
12
13 /**
14 @file rsa_verify_hash.c
15 RSA PKCS v2 PSS signature verification, Tom St Denis
16 */
17
18 #ifdef MRSA
19
20 /**
21 (PKCS #1, v2.0) de-sign then PSS depad
22 @param sig The signature data
23 @param siglen The length of the signature data (octets)
24 @param hash The hash of the message that was signed
25 @param hashlen The length of the hash of the message that was signed (octets)
26 @param hash_idx The index of the desired hash
27 @param saltlen The length of the salt used during signature
28 @param stat [out] The result of the signature comparison, 1==valid, 0==invalid
29 @param key The public RSA key corresponding to the key that performed the signature
30 @return CRYPT_OK on success (even if the signature is invalid)
31 */
32 int rsa_verify_hash(const unsigned char *sig, unsigned long siglen,
33 const unsigned char *hash, unsigned long hashlen,
34 int hash_idx, unsigned long saltlen,
35 int *stat, rsa_key *key)
36 {
37 unsigned long modulus_bitlen, modulus_bytelen, x;
38 int err;
39 unsigned char *tmpbuf;
40
41 LTC_ARGCHK(hash != NULL);
42 LTC_ARGCHK(sig != NULL);
43 LTC_ARGCHK(stat != NULL);
44 LTC_ARGCHK(key != NULL);
45
46 /* default to invalid */
47 *stat = 0;
48
49 /* valid hash ? */
50 if ((err = hash_is_valid(hash_idx)) != CRYPT_OK) {
51 return err;
52 }
53
54 /* get modulus len in bits */
55 modulus_bitlen = mp_count_bits(&(key->N));
56
57 /* outlen must be at least the size of the modulus */
58 modulus_bytelen = mp_unsigned_bin_size(&(key->N));
59 if (modulus_bytelen != siglen) {
60 return CRYPT_INVALID_PACKET;
61 }
62
63 /* allocate temp buffer for decoded sig */
64 tmpbuf = XMALLOC(siglen);
65 if (tmpbuf == NULL) {
66 return CRYPT_MEM;
67 }
68
69 /* RSA decode it */
70 x = siglen;
71 if ((err = rsa_exptmod(sig, siglen, tmpbuf, &x, PK_PUBLIC, key)) != CRYPT_OK) {
72 XFREE(tmpbuf);
73 return err;
74 }
75
76 /* PSS decode it */
77 err = pkcs_1_pss_decode(hash, hashlen, tmpbuf, x, saltlen, hash_idx, modulus_bitlen, stat);
78 XFREE(tmpbuf);
79 return err;
80 }
81
82 #endif /* MRSA */