security - SecKeyEncrypt SecPaddingNone iOS -

-

i trying raw rsa encryption on ios. please not try , talk me out of it.

i doing encryption 2 keys. first step, using key a, uses secpaddingpkcs1 , gives me output of 256 bytes. after that, using key b, use secpaddingnone. assume output remain 256 bytes, becomes 512 bytes. not sure doing wrong, know? thinking wrong?

i use swiftyrsa library perform encryption.

thanks

edit code:

the encryptdata function has been copied on swiftyrsa. assume data 256 bytes, , result of first encryption key a.

let datastring = text.datausingencoding(nsutf8stringencoding) let certificatelabel = "certificate" let certificateref = self.getcertificatefromkeychain(certificatelabel) let certificatedata = self.getdatafromcertificate(certificateref) let cryptoimportexportmanager = cryptoexportimportmanager() let publickeyref = cryptoimportexportmanager.importpublickeyreferencefromdercertificate(certificatedata) let encrypteddata = self.encryptdata(data, publickey: publickeyref!, padding: secpadding.none)

let me know if need add more code.

thanks

this is bug in swiftyrsa; rsa returns blocksize (in case 256) bytes after encryption. if encrypt more blocksize bytes data split multiple chunks, each of encrypted, multiple of blocksize bytes back.

when pkcs1 padding used effective blocksize reduced 11 bytes, means encrypting 256 bytes return 2 blocks or 512 bytes (since 256 > 256-11 or 245).

when no padding used, blocksize doesn't need reduced 11, swiftyrsa still this. have tested without 11 byte reduction using no padding , second encryption, without padding, returns 256 bytes expected. regression tests still pass , have confirmed openssl can correctly decrypt double encrypted data (first padding , encrypted second time no padding).

this has been fixed in git repo, if want patch local source work-around, fix change encryptdata follows:

// encrypts data rsa key public func encryptdata(data: nsdata, publickey: seckeyref, padding: secp public func encryptdata(data: nsdata, publickey: seckeyref, padding: secpadding) throws -> nsdata {     let blocksize = seckeygetblocksize(publickey)      let maxchunksize = (padding == .none) ? blocksize : blocksize - 11      ...

Comments

Post a Comment

Popular posts from this blog

mysql - Dreamhost PyCharm Django Python 3 Launching a Site -

-
i'm new python/django , created simple django website using pycharm. site works fine running on computer, i'm lost when comes taking site onto host (dreamhost). i'm able upload files correct directories fine, , believe made correct changes database on mysql. i'm not sure go there though. right now, page shows files rather site. direction appreciated. much! you should not run django application using python manage.py runserver on production. how run application on django depends on server (apache, nginx) want use for apache - https://docs.djangoproject.com/en/1.10/howto/deployment/wsgi/modwsgi/ for nginx - https://www.digitalocean.com/community/tutorials/how-to-serve-django-applications-with-uwsgi-and-nginx-on-ubuntu-14-04 the mysql database should, of course, exist , have correct credentials. or, if choose use sqlite, file should accessible, readable , writable www-user (may different depending on linux distributive)
Read more

java - Sending SMS with SMSLib and Web Services -

-
i have made rest web service send smss using hsdpa usb modem. using smslib in java send smss. every time web service invoked, create gateway start service, send message, stop service , remove gateway. takes 20 seconds each message. found starting service takes lot of time. part of code use send smss service.getinstance().addgateway(gateway); service.getinstance().startservice(); outboundmessage msg = new outboundmessage(phonenumber, message); if (service.getinstance().sendmessage(msg)) { result = "message sent successfully!!"; } else { result = "could not send message."; } service.getinstance().stopservice(); service.getinstance().removegateway(gateway);//remove gateway is there way can start service once if not started , use send message when ever web service invoked? why dont group messages , send in 1 go? service.getinstance().sendmessages(messa...
Read more

java - How to resolve The method toString() in the type Object is not applicable for the arguments (InputStream) -

-
i'm trying read json file local machine. @path("/") public class jsonparsing { file f = new file("file.json"); if (f.exists()){ inputstream = new fileinputstream("file.json"); string jsontxt = ioutils.tostring(is); system.out.println(jsontxt); jsonobject json = new jsonobject(jsontxt); string = json.getstring("1000"); system.out.println(a); } } but i'm getting error in tostring() method. possible read .txt file containing json object local machine? if possible, how done? firstly: whenever ask question- add imports well. secondly: yes possible read .txt file containing json object. steps: 1. add maven dependency in pom.xml - <dependency> <groupid>com.googlecode.json-simple</groupid> <artifactid>json-simple</artifactid> <version>1.1.1</version> </dependency> or add jar of dependency. 2.import...
Read more