在Polarssl C中签名和验证rsa签名
[英]Signing and Verifying rsa signature in polarssl c
问题描述
I am working on using RSA encryption in an embedded system. 
我正在努力在嵌入式系统中使用RSA加密。 for this i'll be using polarssl code. 为此,我将使用polarssl代码。
I had got the encryption working on 128 bit but i am having trouble with the signature part. 我已经对128位进行了加密,但是签名部分遇到了麻烦。 When i run the code, i get a padding error on the verify (POLARSSL_ERR_RSA_INVALID_PADDING -0x4100) 当我运行代码时,在验证时出现填充错误(POLARSSL_ERR_RSA_INVALID_PADDING -0x4100)
Below is the code. 下面是代码。 Problem code is towards the end and the top lines are about the encryption. 问题代码接近尾声,最上面的几行与加密有关。 Still helpful for background info. 仍对背景信息有帮助。
int main()
{
size_t len;
rsa_context rsa;
unsigned char rsa_plaintext[PT_LEN];
unsigned char rsa_decrypted[PT_LEN];
unsigned char rsa_ciphertext[KEY_LEN];
unsigned char rsa_hash[PT_LEN];
unsigned char rsa_sig_out[PT_LEN];
unsigned char rsa_hash_result[PT_LEN];
rsa_init( &rsa, RSA_PKCS_V15, 0 );
rsa.len = KEY_LEN;
mpi_read_string( &rsa.N , 16, RSA_N );
mpi_read_string( &rsa.E , 16, RSA_E );
mpi_read_string( &rsa.D , 16, RSA_D );
mpi_read_string( &rsa.P , 16, RSA_P );
mpi_read_string( &rsa.Q , 16, RSA_Q );
mpi_read_string( &rsa.DP, 16, RSA_DP );
mpi_read_string( &rsa.DQ, 16, RSA_DQ );
mpi_read_string( &rsa.QP, 16, RSA_QP );
// Checking the public and private keys
if( rsa_check_pubkey( &rsa ) != 0 ||
rsa_check_privkey( &rsa ) != 0 ) {
printf( "Public/Private key error! \n" );
exit(0);
}
memcpy( rsa_plaintext, RSA_PT, PT_LEN );
if( rsa_pkcs1_encrypt( &rsa, &myrand, NULL, RSA_PUBLIC, PT_LEN,
rsa_plaintext, rsa_ciphertext ) != 0 ) {
printf( "Encryption failed! \n" );
exit(0);
}
if( rsa_pkcs1_decrypt( &rsa, &myrand, NULL, RSA_PRIVATE, &len,
rsa_ciphertext, rsa_decrypted,
sizeof(rsa_decrypted) ) != 0 ) {
printf( "Decryption failed! \n" );
exit(0);
}
if( memcmp( rsa_decrypted, rsa_plaintext, len ) != 0 ) {
printf( "Compare failed! \n" );
exit(0);
}
printf("Oh when it all falls down!\n");
// Signing and Verifying message
sha2(rsa_plaintext, len, rsa_hash, 0); //hashing the message
if (rsa_pkcs1_sign( &rsa, &myrand, NULL, RSA_PRIVATE, SIG_RSA_SHA256, 0, rsa_hash, rsa_sig_out ) != 0) {
printf( "Signing failed! \n" );
exit(0);
}
/*
if (rsa_pkcs1_verify( &rsa, NULL, NULL, RSA_PUBLIC, SIG_RSA_SHA256, 0, rsa_sig_out, rsa_hash_result ) != 0) {
printf( "Verifying signature failed! \n" );
exit(0);
}
*/
printf("Error Message!:%d \n", rsa_pkcs1_verify( &rsa, NULL, NULL, RSA_PUBLIC,
SIG_RSA_SHA256, 0, rsa_sig_out, rsa_hash_result ));
exit(0);
if( memcmp( rsa_hash, rsa_hash_result, len ) != 0 )
{
printf( "Signature not verified! \n" );
exit(0);
}
rsa_free(&rsa);
return 0;
} }
Anybody know how i can solve this and go on ahead. 任何人都知道我如何解决这个问题并继续前进。 Please let me know. 请告诉我。 Thanks I am running this on MinGw gcc compiler for windows. 谢谢我在Windows的MinGw gcc编译器上运行此程序。 The rsa code has dependencies on bignum, md and sha2. rsa代码依赖于bignum,md和sha2。
1 个解决方案
解决方案1
2 已采纳 2013-11-05 15:24:38
The reason why the hash fails is because you didn't fill rsa_hash before signing or rsa_hash_result before verification. 为什么哈希失败的原因是因为你没有填写rsa_hash签署或之前rsa_hash_result验证之前。
rsa_pkcs1_sign() and rsa_pkcs1_verify() sign and verify the hash presented. rsa_pkcs1_sign()和rsa_pkcs1_verify()签名并验证显示的哈希。 They do not make the hash as they do not know the data. 他们不做哈希,因为他们不知道数据。 (ie rsa_plaintext and rsa_ciphertext never enter the sign or verify functions). (即rsa_plaintext和rsa_ciphertext永远不会输入符号或验证函数)。
So before you call rsa_pkcs1_sign() you should run sha256(rsa_plaintext, rsa_hash); 因此,在调用rsa_pkcs1_sign() ,应先运行sha256(rsa_plaintext, rsa_hash); or sha256(rsa_ciphertext, rsa_hash); 或sha256(rsa_ciphertext, rsa_hash); (depending on how your 'protocol' works). (取决于您的“协议”的工作方式)。
Then before verify, you run sha256(XXX, rsa_hash_result); 然后在验证之前,运行sha256(XXX, rsa_hash_result); and provide that value to rsa_pkcs1_verify() so that it can actually verify your hash. 并将该值提供给rsa_pkcs1_verify()以便它可以实际验证您的哈希。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.