oaep

.cpp

Скачиваний:

Добавлен:

16.04.2013

Размер:

3.04 Кб

Скачать

☆

// oaep.cpp - written and placed in the public domain by Wei Dai

#include "pch.h"
#include "oaep.h"

#include <functional>

NAMESPACE_BEGIN(CryptoPP)

// ********************************************************

ANONYMOUS_NAMESPACE_BEGIN
	template <class H, byte *P, unsigned int PLen>
	struct PHashComputation
	{
		PHashComputation()	{H().CalculateDigest(pHash, P, PLen);}
		byte pHash[H::DIGESTSIZE];
	};

	template <class H, byte *P, unsigned int PLen>
	const byte *PHash()
	{
		static PHashComputation<H,P,PLen> pHash;
		return pHash.pHash;
	}
NAMESPACE_END

template <class H, class MGF, byte *P, unsigned int PLen>
OAEP<H,MGF,P,PLen>::~OAEP()
{
}

template <class H, class MGF, byte *P, unsigned int PLen>
unsigned int OAEP<H,MGF,P,PLen>::MaxUnpaddedLength(unsigned int paddedLength) const
{
	return paddedLength/8 > 1+2*H::DIGESTSIZE ? paddedLength/8-1-2*H::DIGESTSIZE : 0;
}

template <class H, class MGF, byte *P, unsigned int PLen>
void OAEP<H,MGF,P,PLen>::Pad(RandomNumberGenerator &rng, const byte *input, unsigned int inputLength, byte *oaepBlock, unsigned int oaepBlockLen) const
{
	assert (inputLength <= MaxUnpaddedLength(oaepBlockLen));

	// convert from bit length to byte length
	if (oaepBlockLen % 8 != 0)
	{
		oaepBlock[0] = 0;
		oaepBlock++;
	}
	oaepBlockLen /= 8;

	const unsigned int hLen = H::DIGESTSIZE;
	const unsigned int seedLen = hLen, dbLen = oaepBlockLen-seedLen;
	byte *const maskedSeed = oaepBlock;
	byte *const maskedDB = oaepBlock+seedLen;

	// DB = pHash || 00 ... || 01 || M
	memcpy(maskedDB, PHash<H,P,PLen>(), hLen);
	memset(maskedDB+hLen, 0, dbLen-hLen-inputLength-1);
	maskedDB[dbLen-inputLength-1] = 0x01;
	memcpy(maskedDB+dbLen-inputLength, input, inputLength);

	rng.GetBlock(maskedSeed, seedLen);
	MGF::GenerateAndMask(maskedDB, dbLen, maskedSeed, seedLen);
	MGF::GenerateAndMask(maskedSeed, seedLen, maskedDB, dbLen);
}

template <class H, class MGF, byte *P, unsigned int PLen>
unsigned int OAEP<H,MGF,P,PLen>::Unpad(const byte *oaepBlock, unsigned int oaepBlockLen, byte *output) const
{
	// convert from bit length to byte length
	if (oaepBlockLen % 8 != 0)
	{
		if (oaepBlock[0] != 0)
			return 0;
		oaepBlock++;
	}
	oaepBlockLen /= 8;

	const unsigned int hLen = H::DIGESTSIZE;
	const unsigned int seedLen = hLen, dbLen = oaepBlockLen-seedLen;

	if (oaepBlockLen < 2*hLen+1)
		return 0;

	SecByteBlock t(oaepBlock, oaepBlockLen);
	byte *const maskedSeed = t;
	byte *const maskedDB = t+seedLen;

	MGF::GenerateAndMask(maskedSeed, seedLen, maskedDB, dbLen);
	MGF::GenerateAndMask(maskedDB, dbLen, maskedSeed, seedLen);

	// DB = pHash' || 00 ... || 01 || M

	byte *M = std::find(maskedDB+hLen, maskedDB+dbLen, 0x01);
	if (M!=maskedDB+dbLen && std::find_if(maskedDB+hLen, M, std::bind2nd(std::not_equal_to<byte>(), 0))==M
		&& memcmp(maskedDB, PHash<H,P,PLen>(), hLen)==0)
	{
		M++;
		memcpy(output, M, maskedDB+dbLen-M);
		return maskedDB+dbLen-M;
	}
	return 0;
}

NAMESPACE_END

Соседние файлы в папке CRYPTO30

#
16.04.20134.36 Кб29nr.cpp
#
16.04.20133.2 Кб29nr.h
#
16.04.2013892 б27nr1024.dat
#
16.04.20131.69 Кб27nr2048.dat
#
16.04.2013476 б27nr512.dat
#
16.04.20133.04 Кб29oaep.cpp
#
16.04.2013630 б29oaep.h
#
16.04.201318 б29pch.cpp
#
16.04.2013278 б30pch.h
#
16.04.20134.21 Кб29pkcspad.cpp
#
16.04.20131.86 Кб30pkcspad.h