4

我尝试用 RSA 算法加密简单的文本。我的代码有问题。

RSA        *_RSA ;
unsigned char text[2560] = "A";
unsigned char sectext[2560];
unsigned char decrypttext[2560];
int i = 0;

_RSA = RSA_generate_key ( 1024, 65537, NULL, NULL );
i = RSA_public_encrypt ( 1, text,    sectext,     _RSA, RSA_PKCS1_OAEP_PADDING );
i = RSA_private_decrypt( 1, sectext, decrypttext, _RSA, RSA_PKCS1_OAEP_PADDING);
RSA_free ( _RSA );

的返回值为RSA_public_encrypt128,即密文的大小。RSA_private_decrypt返回 -1,这是一个错误。如果我尝试显示恢复的文本,那么我什么也得不到。

为什么RSA_private_decrypt返回-1?

4

2 回答 2

8

You should not pass 1 to RSA_private_decrypt but the length of the block you are trying to decrypt, ie. the return value of RSA_public_encrypt = 128. You do not know the length of the cleartext when you are decrypting!

This complete sample program results in:

128 from encrypt. 
1 from decrypt: 'A'

Source:

#include <openssl/rsa.h>
#include <openssl/engine.h>
#include <stdio.h>

int main(int argc, char **argv)
{
    RSA *myRSA;
    unsigned char cleartext[2560] = "A";
    unsigned char encrypted[2560] = { 0 };
    unsigned char decrypted[2560] = { 0 };
    int resultEncrypt = 0;
    int resultDecrypt = 0;

    myRSA = RSA_generate_key ( 1024, 65537, NULL, NULL );
    resultEncrypt = RSA_public_encrypt ( 1 /* strlen(cleartext) */, cleartext, encrypted, myRSA, RSA_PKCS1_OAEP_PADDING );
    printf("%d from encrypt.\n", resultEncrypt);
    resultDecrypt = RSA_private_decrypt( 128 /* resultEncrypt */, encrypted, decrypted, myRSA, RSA_PKCS1_OAEP_PADDING);
    printf("%d from decrypt: '%s'\n", resultDecrypt, decrypted);
    RSA_free ( myRSA );

    return 0;
}
于 2009-01-09T14:53:56.353 回答
0

尝试调用ERR_error_string()以获取错误的文本描述。

于 2009-01-09T00:16:42.887 回答