PsaAsymmetricDecrypt
Decrypt a short message with a private key. Opcode: 11 (0x000B)
Parameters
| Name | Type | Description |
|---|---|---|
key_name | String | Name of the key to use for the operation |
alg | AsymmetricEncryption | An asymmetric encryption algorithm that is compatible with the type of key |
ciphertext | Vector of bytes | Short message to decrypt |
salt | Vector of bytes | Salt to use during encryption, if supported by the algorithm |
key_namemust be the name of an RSA asymmetric key pair. The key must allow the usage flagdecrypt.saltcan be provided if supported by the algorithm. If the algorithm does not support salt, pass an empty vector. If the algorithm supports optional salt, pass an empty vector to indicate no salt. For RSA PKCS#1 v1.5 encryption, no salt is supported.
Results
| Name | Type | Description |
|---|---|---|
plaintext | Vector of bytes | Buffer containing the decrypted message |
Specific response status codes
PsaErrorNotPermitted: The key does not have thedecryptflag, or it does not permit the requested algorithm.PsaErrorInvalidPadding: The decrypted padding is incorrect. See Warning below.
Description
This function will decrypt a short message with the private key of the provided key pair.
WARNING: In some protocols, when decrypting data, it is essential that the behavior of the application does not depend on whether the padding is correct (see Bleichenbacher). If the application must perform a decryption of unauthenticated data, the application writer must take care not to reveal whether the padding is invalid.
Contract
Copyright 2020 Contributors to the Parsec project.