Enum rsa::padding::PaddingScheme[−][src]

pub enum PaddingScheme {
    PKCS1v15Encrypt,
    PKCS1v15Sign {
        hash: Option<Hash>,
    },
    OAEP {
        digest: Box<dyn DynDigest>,
        mgf_digest: Box<dyn DynDigest>,
        label: Option<String>,
    },
    PSS {
        salt_rng: Box<dyn RngCore>,
        digest: Box<dyn DynDigest>,
        salt_len: Option<usize>,
    },
}

Expand description

Available padding schemes.

Variants

PKCS1v15Encrypt

Encryption and Decryption using PKCS1v15 padding.

PKCS1v15Sign

Sign and Verify using PKCS1v15 padding.

Fields of PKCS1v15Sign

hash: Option<Hash>

OAEP

Encryption and Decryption using OAEP padding.

digest is used to hash the label. The maximum possible plaintext length is m = k - 2 * h_len - 2, where k is the size of the RSA modulus.
mgf_digest specifies the hash function that is used in the MGF1.
label is optional data that can be associated with the message.

The two hash functions can, but don’t need to be the same. A prominent example is the AndroidKeyStore. It uses SHA-1 for mgf_digest and a user-chosen SHA flavour for digest.

Fields of OAEP

digest: Box<dyn DynDigest>mgf_digest: Box<dyn DynDigest>label: Option<String>

PSS

Sign and Verify using PSS padding.

Fields of PSS

salt_rng: Box<dyn RngCore>digest: Box<dyn DynDigest>salt_len: Option<usize>

Implementations

[src]

impl PaddingScheme

[src]

pub fn new_pkcs1v15_encrypt() -> Self

[src]

pub fn new_pkcs1v15_sign(hash: Option<Hash>) -> Self

[src]

pub fn new_oaep_with_mgf_hash<T: 'static + Digest + DynDigest, U: 'static + Digest + DynDigest>(
) -> Self

Create a new OAEP PaddingScheme, using T as the hash function for the default (empty) label, and U as the hash function for MGF1. If a label is needed use PaddingScheme::new_oaep_with_label or PaddingScheme::new_oaep_with_mgf_hash_with_label.

Example

    use sha1::Sha1;
    use sha2::Sha256;
    use rand::rngs::OsRng;
    use rsa::{BigUint, RSAPublicKey, PaddingScheme, PublicKey};

    let n = base64::decode("ALHgDoZmBQIx+jTmgeeHW6KsPOrj11f6CvWsiRleJlQpW77AwSZhd21ZDmlTKfaIHBSUxRUsuYNh7E2SHx8rkFVCQA2/gXkZ5GK2IUbzSTio9qXA25MWHvVxjMfKSL8ZAxZyKbrG94FLLszFAFOaiLLY8ECs7g+dXOriYtBwLUJK+lppbd+El+8ZA/zH0bk7vbqph5pIoiWggxwdq3mEz4LnrUln7r6dagSQzYErKewY8GADVpXcq5mfHC1xF2DFBub7bFjMVM5fHq7RK+pG5xjNDiYITbhLYrbVv3X0z75OvN0dY49ITWjM7xyvMWJXVJS7sJlgmCCL6RwWgP8PhcE=").unwrap();
    let e = base64::decode("AQAB").unwrap();
     
    let key = RSAPublicKey::new(BigUint::from_bytes_be(&n), BigUint::from_bytes_be(&e)).unwrap();
    let padding = PaddingScheme::new_oaep_with_mgf_hash::<Sha256, Sha1>();
    let encrypted_data = key.encrypt(&mut OsRng, padding, b"secret").unwrap();

[src]

pub fn new_oaep<T: 'static + Digest + DynDigest>() -> Self

Create a new OAEP PaddingScheme, using T as the hash function for both the default (empty) label and for MGF1.

Example

    use sha1::Sha1;
    use sha2::Sha256;
    use rand::rngs::OsRng;
    use rsa::{BigUint, RSAPublicKey, PaddingScheme, PublicKey};
    let n = base64::decode("ALHgDoZmBQIx+jTmgeeHW6KsPOrj11f6CvWsiRleJlQpW77AwSZhd21ZDmlTKfaIHBSUxRUsuYNh7E2SHx8rkFVCQA2/gXkZ5GK2IUbzSTio9qXA25MWHvVxjMfKSL8ZAxZyKbrG94FLLszFAFOaiLLY8ECs7g+dXOriYtBwLUJK+lppbd+El+8ZA/zH0bk7vbqph5pIoiWggxwdq3mEz4LnrUln7r6dagSQzYErKewY8GADVpXcq5mfHC1xF2DFBub7bFjMVM5fHq7RK+pG5xjNDiYITbhLYrbVv3X0z75OvN0dY49ITWjM7xyvMWJXVJS7sJlgmCCL6RwWgP8PhcE=").unwrap();
    let e = base64::decode("AQAB").unwrap();
     
    let key = RSAPublicKey::new(BigUint::from_bytes_be(&n), BigUint::from_bytes_be(&e)).unwrap();
    let padding = PaddingScheme::new_oaep::<Sha256>();
    let encrypted_data = key.encrypt(&mut OsRng, padding, b"secret").unwrap();

[src]

pub fn new_oaep_with_mgf_hash_with_label<T: 'static + Digest + DynDigest, U: 'static + Digest + DynDigest, S: AsRef<str>>(
    label: S
) -> Self

Create a new OAEP PaddingScheme with an associated label, using T as the hash function for the label, and U as the hash function for MGF1.

[src]

pub fn new_oaep_with_label<T: 'static + Digest + DynDigest, S: AsRef<str>>(
    label: S
) -> Self

Create a new OAEP PaddingScheme with an associated label, using T as the hash function for both the label and for MGF1.

[src]

pub fn new_pss<T: 'static + Digest + DynDigest, S: 'static + RngCore>(
    rng: S
) -> Self

[src]

pub fn new_pss_with_salt<T: 'static + Digest + DynDigest, S: 'static + RngCore>(
    rng: S, 
    len: usize
) -> Self

Trait Implementations

[src]

impl Debug for PaddingScheme

[src]

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Auto Trait Implementations

impl !RefUnwindSafe for PaddingScheme

impl !Send for PaddingScheme

impl !Sync for PaddingScheme

impl Unpin for PaddingScheme

impl !UnwindSafe for PaddingScheme

Blanket Implementations

[src]

impl<T> Any for T where
    T: 'static + ?Sized,

[src]

pub fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

[src]

impl<T> Borrow<T> for T where
    T: ?Sized,

[src]

pub fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

[src]

impl<T> BorrowMut<T> for T where
    T: ?Sized,

[src]

pub fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

[src]

impl<T> From<T> for T

[src]

pub fn from(t: T) -> T

Performs the conversion.

[src]

impl<T, U> Into<U> for T where
    U: From<T>,

[src]

pub fn into(self) -> U

Performs the conversion.

impl<T> Same<T> for T

type Output = T

Should always be Self

[src]

impl<T, U> TryFrom<U> for T where
    U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

[src]

pub fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

[src]

impl<T, U> TryInto<U> for T where
    U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

[src]

pub fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T where
    V: MultiLane<T>,

pub fn vzip(self) -> V