public string GetSecretKey(byte[] envelope)
{
RSAPKCS1KeyExchangeDeformatter kedfm = new RSAPKCS1KeyExchangeDeformatter(_alg);
Byte[] secretkeybyte = kedfm.DecryptKeyExchange(envelope);
return(new UnicodeEncoding().GetString(secretkeybyte));
}
public static byte[] decrypt(byte[] dataBytes)
{
if (!isInit)
{
RSA();
isInit = true;
}
// by default this will create a 128 bits AES (Rijndael) object
SymmetricAlgorithm sa = SymmetricAlgorithm.Create();
byte[] keyex = new byte[rsa.KeySize >> 3];
Buffer.BlockCopy(dataBytes, 0, keyex, 0, keyex.Length);
RSAPKCS1KeyExchangeDeformatter def = new RSAPKCS1KeyExchangeDeformatter(rsa);
byte[] key = def.DecryptKeyExchange(keyex);
byte[] iv = new byte[sa.IV.Length];
Buffer.BlockCopy(dataBytes, keyex.Length, iv, 0, iv.Length);
ICryptoTransform ct = sa.CreateDecryptor(key, iv);
byte[] decrypt = ct.TransformFinalBlock(dataBytes, keyex.Length + iv.Length, dataBytes.Length - (keyex.Length + iv.Length));
return(decrypt);
}
protected override void ProcessAsTls1()
{
AsymmetricAlgorithm privKey = null;
ServerContext context = (ServerContext)this.Context;
// Select the private key information
// Select the private key information
privKey = context.SslStream.RaisePrivateKeySelection(
new X509Certificate(context.ServerSettings.Certificates[0].RawData),
null);
if (privKey == null)
{
throw new TlsException(AlertDescription.UserCancelled, "Server certificate Private Key unavailable.");
}
// Read client premaster secret
byte[] clientSecret = this.ReadBytes(this.ReadInt16());
// Decrypt premaster secret
RSAPKCS1KeyExchangeDeformatter deformatter = new RSAPKCS1KeyExchangeDeformatter(privKey);
byte[] preMasterSecret = deformatter.DecryptKeyExchange(clientSecret);
// Create master secret
this.Context.Negotiating.Cipher.ComputeMasterSecret(preMasterSecret);
// Create keys
this.Context.Negotiating.Cipher.ComputeKeys();
// Initialize Cipher Suite
this.Context.Negotiating.Cipher.InitializeCipher();
}
public void KeyExchangeTooBig()
{
AsymmetricKeyExchangeDeformatter keyex = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] EM = new byte [(key.KeySize >> 3) + 1];
// invalid format
byte[] M = keyex.DecryptKeyExchange(EM);
}
/// <summary>秘密鍵生成</summary>
/// <param name="exchangeKeyOfAlice">Aliceの交換鍵</param>
/// <param name="iv">初期化ベクター</param>
public void GeneratePrivateKey(byte[] exchangeKeyOfAlice, byte[] iv)
{
this._aes = new AesCryptoServiceProvider();
RSAPKCS1KeyExchangeDeformatter keyExchangeDeformatter = new RSAPKCS1KeyExchangeDeformatter(this._asa);
this._aes.Key = keyExchangeDeformatter.DecryptKeyExchange(exchangeKeyOfAlice);
this._aes.IV = iv;
}
public void CapiKeyExchange128()
{
byte[] M = { 0xd4, 0x36, 0xe9, 0x95, 0x69, 0xfd, 0x32, 0xa7, 0xc8, 0xa0, 0x5b, 0xbc, 0x90, 0xd3, 0x2c, 0x49 };
byte[] EM = { 0x2D, 0xA3, 0xB0, 0xED, 0x1F, 0x13, 0x13, 0xBA, 0xAA, 0x26, 0xA7, 0x00, 0x76, 0x94, 0x0A, 0xDA, 0xFB, 0x4E, 0x14, 0x98, 0xD3, 0xF6, 0x26, 0x65, 0xCE, 0x7E, 0xB9, 0x23, 0xEF, 0xDE, 0x6E, 0xAB, 0x72, 0x33, 0xF3, 0x6F, 0xA9, 0x9B, 0xEC, 0x18, 0xC9, 0xB7, 0xC7, 0xE8, 0xE8, 0x55, 0xC4, 0x83, 0x1E, 0xF5, 0xDA, 0xCF, 0x5A, 0x53, 0xB0, 0x60, 0x42, 0xF4, 0x55, 0xEE, 0x00, 0x80, 0x92, 0x28, 0xA9, 0x0E, 0x2D, 0x9D, 0x49, 0x10, 0x65, 0x00, 0x21, 0x82, 0xCC, 0x05, 0xA3, 0x62, 0xAD, 0xCC, 0x5B, 0xE3, 0x8E, 0xAE, 0x01, 0x96, 0x81, 0xF6, 0x7B, 0x52, 0xB9, 0x6F, 0xE3, 0x06, 0x3A, 0x48, 0x4D, 0x87, 0xB9, 0xA3, 0xEA, 0x69, 0xD1, 0xFE, 0x8D, 0x82, 0x33, 0xE3, 0x05, 0xEB, 0x00, 0xA2, 0xA6, 0xDC, 0x95, 0xE4, 0xAC, 0x4E, 0xF4, 0x03, 0xC3, 0xFE, 0xA2, 0xE8, 0xB6, 0xBB, 0xBE, 0xD1 };
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeFormatter 1", M, Mback);
}
public void MonoKeyExchangeMin()
{
byte[] M = { 0x01 };
byte[] EM = { 0x73, 0x34, 0xAF, 0xE5, 0x45, 0x53, 0x4A, 0x93, 0x25, 0x77, 0x6F, 0x80, 0x06, 0xAD, 0x7C, 0x87, 0xB9, 0xE8, 0x1E, 0x5C, 0xBB, 0x9B, 0x3F, 0xDC, 0x9C, 0x65, 0x71, 0xE6, 0x50, 0x82, 0xDC, 0x77, 0x6C, 0x6B, 0xA6, 0x39, 0x18, 0x0B, 0x33, 0x54, 0x4E, 0x65, 0x32, 0x6C, 0x53, 0x70, 0x9B, 0xEA, 0x7C, 0x83, 0x0D, 0xBF, 0x8B, 0x48, 0x5B, 0x0F, 0xCB, 0x27, 0x7D, 0x8D, 0x18, 0xD7, 0xA5, 0x13, 0x33, 0x3C, 0xC8, 0xB0, 0xF4, 0x12, 0x52, 0x24, 0x3C, 0x2A, 0xD2, 0xDF, 0x7C, 0x0B, 0xCB, 0x7C, 0x26, 0x28, 0x5F, 0x88, 0x1E, 0x22, 0x98, 0x68, 0x04, 0x12, 0x6E, 0x9F, 0x2D, 0xFE, 0x7A, 0xEF, 0xC3, 0x9D, 0x87, 0x44, 0x46, 0xCA, 0xA2, 0x81, 0xF2, 0xE7, 0xBA, 0x9D, 0x17, 0x68, 0x96, 0xA2, 0x3F, 0xB3, 0xB4, 0x43, 0x34, 0x2D, 0x7D, 0x56, 0xF5, 0xFC, 0x40, 0xEB, 0x31, 0xB0, 0x0C, 0x99 };
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeDeformatter 1", M, Mback);
}
public void MonoKeyExchange160()
{
byte[] M = { 0xd4, 0x36, 0xe9, 0x95, 0x69, 0xfd, 0x32, 0xa7, 0xc8, 0xa0, 0x5b, 0xbc, 0x90, 0xd3, 0x2c, 0x49, 0x00, 0x00, 0x00, 0x00 };
byte[] EM = { 0x31, 0x2B, 0x21, 0x0F, 0x1D, 0x75, 0xCE, 0xDF, 0x00, 0xC4, 0xC2, 0x50, 0x59, 0x13, 0xDA, 0xF4, 0xE4, 0x73, 0xD3, 0x26, 0xC7, 0xBD, 0xAF, 0xDC, 0x73, 0xB1, 0xC0, 0x32, 0xE3, 0xE9, 0x91, 0x4C, 0x1F, 0x74, 0x29, 0x8C, 0xD6, 0xFD, 0x4C, 0x8C, 0xD2, 0x30, 0xED, 0xEF, 0x97, 0xF1, 0x91, 0xFF, 0xD8, 0x3D, 0x04, 0xD2, 0x2D, 0xB7, 0x20, 0x25, 0x1D, 0x47, 0xBA, 0xEA, 0x3D, 0xE2, 0x7D, 0x9C, 0x41, 0x0C, 0x5C, 0x63, 0xBC, 0xB7, 0xFA, 0xDD, 0x30, 0x19, 0x3E, 0xD2, 0x5F, 0x1B, 0xBC, 0x59, 0x0A, 0x54, 0x0A, 0xE0, 0x82, 0x5D, 0x05, 0xA4, 0xDC, 0x23, 0x71, 0x33, 0x84, 0x68, 0xDA, 0x8C, 0x7A, 0x23, 0x2E, 0x16, 0x28, 0x3E, 0x43, 0x24, 0x30, 0x69, 0xD4, 0x43, 0x7F, 0x82, 0xA8, 0xAC, 0xFF, 0xCC, 0xA6, 0x62, 0x20, 0x61, 0x5F, 0x03, 0xEE, 0x7C, 0x9E, 0x5C, 0xB2, 0xA0, 0xE4, 0xC6 };
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeFormatter 1", M, Mback);
}
public void MonoKeyExchangeMax()
{
byte[] M = new byte [(key.KeySize >> 3) - 11];
byte[] EM = { 0xB4, 0x17, 0xE4, 0x8A, 0x14, 0xB1, 0x9B, 0x08, 0xBE, 0xBF, 0xD3, 0xD1, 0xCD, 0xE5, 0xB1, 0x0D, 0x38, 0x08, 0x01, 0x31, 0x10, 0xDA, 0x8A, 0xB9, 0xE9, 0x4E, 0x2F, 0x94, 0x2F, 0x40, 0x36, 0x04, 0x57, 0x54, 0xAC, 0x22, 0xC1, 0x6B, 0x35, 0x10, 0xF9, 0xA9, 0xEA, 0x36, 0xC9, 0x13, 0x84, 0x95, 0xCB, 0xDE, 0x9C, 0x01, 0x66, 0x32, 0x01, 0xA1, 0xB2, 0xDB, 0x4F, 0x11, 0x10, 0x2D, 0x13, 0x36, 0x52, 0x30, 0x78, 0x65, 0x00, 0x7A, 0xD8, 0x5B, 0x47, 0xA6, 0x19, 0x9C, 0xFA, 0x76, 0x1A, 0x44, 0x92, 0x3E, 0xE3, 0x5A, 0x0B, 0x56, 0x4D, 0x2D, 0x54, 0x7B, 0x07, 0x5C, 0xA7, 0x14, 0x86, 0x52, 0x0A, 0x8F, 0x11, 0xE2, 0x32, 0xED, 0x3C, 0x21, 0xF8, 0x56, 0x0D, 0x38, 0xAC, 0x24, 0x4A, 0x32, 0xB3, 0x4F, 0xA3, 0xB1, 0x02, 0xC7, 0x8A, 0x22, 0xE6, 0x9C, 0x78, 0xEB, 0x98, 0x4B, 0x92, 0x24 };
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeFormatter 1", M, Mback);
}
public void CapiKeyExchange160()
{
byte[] M = { 0xd4, 0x36, 0xe9, 0x95, 0x69, 0xfd, 0x32, 0xa7, 0xc8, 0xa0, 0x5b, 0xbc, 0x90, 0xd3, 0x2c, 0x49, 0x00, 0x00, 0x00, 0x00 };
byte[] EM = { 0x10, 0x79, 0x3A, 0x88, 0x04, 0x4B, 0xA5, 0x18, 0xD6, 0xCE, 0x97, 0x9B, 0xFF, 0xE8, 0xB4, 0xF5, 0x8D, 0x60, 0x07, 0xCD, 0x5F, 0x89, 0xA6, 0xCF, 0x5B, 0x90, 0x96, 0xC7, 0xF6, 0xD7, 0xF2, 0xCA, 0x7C, 0x13, 0x5A, 0x62, 0xB4, 0xED, 0xF4, 0xD7, 0x5C, 0x99, 0x4C, 0x07, 0xF4, 0x9F, 0x96, 0xE6, 0xBF, 0x2B, 0x82, 0x85, 0x38, 0x2C, 0x03, 0xBD, 0x61, 0x07, 0xF6, 0x05, 0x15, 0x55, 0xBF, 0xA9, 0x3B, 0xF5, 0x10, 0x96, 0x81, 0x01, 0x58, 0x5F, 0x61, 0x43, 0x52, 0x77, 0x71, 0x9C, 0x92, 0xEF, 0xD5, 0xE2, 0x60, 0x3F, 0x82, 0x69, 0x9F, 0xAF, 0xC2, 0xE1, 0x68, 0xB7, 0x5E, 0x62, 0xAC, 0x61, 0x6A, 0x1B, 0x46, 0x03, 0xF6, 0x7C, 0x20, 0x47, 0xF7, 0x6E, 0x7D, 0x35, 0x2A, 0xF6, 0x9C, 0xDA, 0x8A, 0xED, 0xAC, 0x1A, 0xC8, 0xF6, 0x4E, 0x7D, 0x21, 0xAC, 0x18, 0xEB, 0xA7, 0x68, 0xE0, 0xE2 };
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeFormatter 1", M, Mback);
}
public void MonoKeyExchange128()
{
byte[] M = { 0xd4, 0x36, 0xe9, 0x95, 0x69, 0xfd, 0x32, 0xa7, 0xc8, 0xa0, 0x5b, 0xbc, 0x90, 0xd3, 0x2c, 0x49 };
byte[] EM = { 0xAA, 0x95, 0x6D, 0x40, 0xA7, 0x26, 0x23, 0x4E, 0xA9, 0xCB, 0x83, 0x55, 0xCE, 0x2F, 0xDD, 0x80, 0xEA, 0xC8, 0x61, 0x25, 0x57, 0xF9, 0x86, 0x46, 0x2E, 0xD9, 0xAD, 0xA1, 0x90, 0x22, 0x6A, 0x1F, 0xCF, 0x24, 0x9D, 0x3A, 0x65, 0x75, 0xF6, 0x9E, 0xBD, 0xC0, 0xBB, 0x8F, 0xC0, 0xC3, 0x20, 0x45, 0xC9, 0x8C, 0x5F, 0xEA, 0xF9, 0xE3, 0x1E, 0x95, 0xA0, 0xAD, 0xD6, 0xB6, 0x3C, 0x9B, 0x03, 0x9F, 0xB0, 0x57, 0x32, 0x2F, 0x98, 0x0E, 0x94, 0x8C, 0x6E, 0xA7, 0x9F, 0x40, 0xCF, 0xAD, 0x6E, 0xDB, 0x38, 0x9F, 0xF5, 0x43, 0xD1, 0x70, 0xF9, 0xCA, 0x3A, 0x2E, 0x0B, 0xB9, 0x34, 0x12, 0x0F, 0x09, 0x5B, 0x6B, 0xB9, 0xFD, 0x7E, 0xC6, 0xFC, 0xA1, 0x9A, 0x48, 0xEA, 0x3A, 0xED, 0x77, 0x24, 0xA5, 0x3B, 0x8B, 0xFB, 0xF1, 0x2B, 0x9D, 0xED, 0x0A, 0xB5, 0x05, 0xDC, 0x59, 0xA8, 0x1F, 0x17, 0xC9 };
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeFormatter 1", M, Mback);
}
public void CapiKeyExchangeMin()
{
byte[] M = { 0x01 };
byte[] EM = { 0x50, 0x33, 0xF3, 0x42, 0x52, 0x59, 0x71, 0x2D, 0x6E, 0x25, 0x5E, 0x06, 0xC3, 0x27, 0x94, 0xA6, 0xD1, 0x8E, 0x13, 0x90, 0x54, 0x5C, 0x12, 0x58, 0x7A, 0xC9, 0xB6, 0x3F, 0x4D, 0x2E, 0x97, 0xCC, 0x3A, 0x94, 0x24, 0xE8, 0x11, 0x1F, 0xD6, 0x7F, 0x37, 0x36, 0xAB, 0x6F, 0x3F, 0xB4, 0x1B, 0xB8, 0x13, 0x87, 0xC8, 0xBE, 0x00, 0x24, 0x02, 0x0F, 0xF6, 0x2E, 0xEA, 0x48, 0x8A, 0x6F, 0xC8, 0xF6, 0x0B, 0xAB, 0xF4, 0x02, 0xA5, 0xE2, 0x5A, 0xAA, 0xB5, 0x9E, 0xC2, 0x6E, 0xFF, 0xA6, 0xEC, 0xEC, 0xD0, 0xA2, 0x3F, 0x00, 0x93, 0xE9, 0xF3, 0xAA, 0x08, 0xA2, 0xD2, 0x11, 0x1B, 0x3F, 0x3E, 0x59, 0xB0, 0xBA, 0x47, 0x17, 0x8F, 0xF4, 0xEB, 0x34, 0xA5, 0xC4, 0xA4, 0x09, 0x43, 0xC4, 0x7B, 0x71, 0x2C, 0x4B, 0x9E, 0x2D, 0x22, 0x96, 0xBB, 0x52, 0xDD, 0x2B, 0x59, 0xED, 0xD6, 0xCA, 0xEB, 0xE6 };
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeDeformatter 1", M, Mback);
}
public void CapiKeyExchangeMax()
{
byte[] M = new byte [(key.KeySize >> 3) - 11];
byte[] EM = { 0x4B, 0x3F, 0x77, 0xE1, 0xA0, 0x6C, 0xD9, 0xFA, 0x19, 0x69, 0x21, 0xC4, 0x67, 0x2B, 0x0F, 0x2A, 0x0E, 0xCB, 0xAF, 0xAD, 0x08, 0xA5, 0xD2, 0x9B, 0xDC, 0x04, 0xDE, 0x8F, 0x13, 0xE4, 0x81, 0x25, 0xAF, 0xC5, 0x82, 0x51, 0xA9, 0x39, 0xAF, 0x82, 0xFF, 0xC7, 0x4F, 0x04, 0xE4, 0x21, 0xAC, 0xEE, 0x2F, 0x44, 0x78, 0x11, 0x29, 0x74, 0x3F, 0x74, 0xC1, 0x38, 0xC5, 0x43, 0x29, 0x2F, 0x0C, 0x7B, 0xDB, 0x2E, 0xE5, 0xA8, 0x6A, 0xEE, 0x6A, 0x14, 0xCC, 0x4E, 0x53, 0x8C, 0x0C, 0xEE, 0x23, 0x24, 0xDC, 0x9B, 0x75, 0x7C, 0xAD, 0x0C, 0xAC, 0x13, 0xC5, 0x02, 0x9E, 0x5D, 0x65, 0x76, 0xCB, 0xD4, 0xBF, 0x70, 0x43, 0xBE, 0x28, 0x67, 0x3F, 0x5D, 0x93, 0x38, 0x67, 0x4B, 0x25, 0x59, 0xF7, 0x8E, 0x4F, 0xCE, 0x2B, 0x2F, 0xA7, 0x4C, 0x68, 0x4C, 0xCC, 0x5F, 0xF3, 0x0A, 0xB7, 0xAA, 0x54, 0x7C };
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeFormatter 1", M, Mback);
}
public void Bug79320()
{
string s = "hdphq/mn8goBi43YGPkmOfPj5vXjHrKPJkT4mLT3l+XzLttHMLC4/yBYkuzlXtbrl2jtAJRb6oA8UcQFalUMnCa09LDZrgNU2yySn7YbiG8raSq7u2nfDCbPu+c8T9fyHxrCHrX0zeqqImX33csIn6rIrQZ8HKcMsoQso4qtS2A=";
byte [] bytes = Convert.FromBase64String(s);
RSACryptoServiceProvider r = new RSACryptoServiceProvider();
r.FromXmlString("<RSAKeyValue><Modulus>iSObDmmhDgrl4NiLaviFcpv4NdysBWJcqiVz3AQbPdajtXaQQ8VJdfRkixah132yKOFGCWZhHS3EuPMh8dcNwGwta2nh+m2IV6ktzI4+mZ7CSNAsmlDY0JI+H8At1vKvNArlC5jkVGuliYroJeSU/NLPLNYgspi7TtXGy9Rfug8=</Modulus><Exponent>EQ==</Exponent><P>pd4svtxrnTWXVSb151/JFgT9szI6dxQ5pAFPd4A4yuxLLEay2W2z7d9LVk5siMFhZ10uTJGWzNP5pSgLT8wdww==</P><Q>06j6m4cGRc3uoKVuFFGA19JG3Bi4tDBEQHebEc/Y3+eThrOasYIRrQmGUfqWnd9eFitO9GOaVJ0muNDV7NOxxQ==</Q><DP>OoqmYXr4zhLqHg3AM4s36adomZlBz6zJDLUrGx4yKYCTAJFsTL1OkDCxLYUXP1NPjeSm7dkIDA6UWGh8doRGvQ==</DP><DQ>PkDCLb5NI5br1OVcnJBxMGsFyEOBnmiMi2545x8DjSX+Nq1LnZ6555ljvcIsTIz9jgy83nel3KaxCS5dCWtwhQ==</DQ><InverseQ>OrFYaG7wTqim/bub4qY0CvIfhsjG4/4MEabg0UFTf/+tekKas7DDKg2TD5BS2q0O3XEt7xIfp0S6dpOAnrlyGQ==</InverseQ><D>IESc9FUW1iCuj0ICr8IBSCSy3383iMvZkXI5YPHoSskXdf3Hl3m27pPbbAVTQcM4+o9bxfn4u5JMZ8C8sV/G/8Cfl4ss1NVMbZOecvVObRqRpqXaveq5fN2X0EklH1wzm5w3O8cMXdbC/hc0gKUqaMjFVn1zpf3zVjpOkY0eGRE=</D></RSAKeyValue>");
RSAPKCS1KeyExchangeDeformatter def = new RSAPKCS1KeyExchangeDeformatter(r);
Assert.IsNotNull(def.DecryptKeyExchange(bytes));
}
public void KeyExchange128bits()
{
AsymmetricKeyExchangeFormatter keyex = new RSAPKCS1KeyExchangeFormatter(key);
byte[] M = { 0xd4, 0x36, 0xe9, 0x95, 0x69, 0xfd, 0x32, 0xa7, 0xc8, 0xa0, 0x5b, 0xbc, 0x90, 0xd3, 0x2c, 0x49 };
byte[] EM = keyex.CreateKeyExchange(M, typeof(Rijndael));
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeFormatter 1", M, Mback);
}
public void KeyExchangeMin()
{
AsymmetricKeyExchangeFormatter keyex = new RSAPKCS1KeyExchangeFormatter(key);
byte[] M = { 0x01 };
byte[] EM = keyex.CreateKeyExchange(M);
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeFormatter 1", M, Mback);
}
public void KeyExchangeMax()
{
AsymmetricKeyExchangeFormatter keyex = new RSAPKCS1KeyExchangeFormatter(key);
byte[] M = new byte [(key.KeySize >> 3) - 11];
byte[] EM = keyex.CreateKeyExchange(M);
AsymmetricKeyExchangeDeformatter keyback = new RSAPKCS1KeyExchangeDeformatter(key);
byte[] Mback = keyback.DecryptKeyExchange(EM);
AssertEquals("RSAPKCS1KeyExchangeFormatter 1", M, Mback);
}
static void DecryptStream(Stream inputStream, Stream outputStream, AsymmetricAlgorithm keyEncryption, SymmetricAlgorithm dataEncryption)
{
if (null == inputStream)
{
throw new ArgumentNullException(nameof(inputStream));
}
if (null == outputStream)
{
throw new ArgumentNullException(nameof(outputStream));
}
if (null == keyEncryption)
{
throw new ArgumentNullException(nameof(keyEncryption));
}
if (null == dataEncryption)
{
throw new ArgumentNullException(nameof(dataEncryption));
}
var encryptedDEK = inputStream.ReadLengthAndBytes(maxBytes: 2048);
var encryptedIV = inputStream.ReadLengthAndBytes(maxBytes: 2048);
var keyDeformatter = new RSAPKCS1KeyExchangeDeformatter(keyEncryption);
dataEncryption.Key = keyDeformatter.DecryptKeyExchange(encryptedDEK);
dataEncryption.IV = keyDeformatter.DecryptKeyExchange(encryptedIV);
// About...
// Trace.WriteLine($"Decrypting. KEK: {keyEncryption.GetType().Name} / {keyEncryption.KeySize} bits");
// Trace.WriteLine($"Decrypting. DEK: {dataEncryption.GetType().Name} / {dataEncryption.KeySize} bits / BlockSize: {dataEncryption.BlockSize} bits");
// Read the encrypted data.
// Note: Disposing the CryptoStream also disposes the inputStream. There is no keepOpen option.
using (var transform = dataEncryption.CreateDecryptor())
using (var cryptoStream = new CryptoStream(inputStream, transform, CryptoStreamMode.Read))
{
cryptoStream.CopyTo(outputStream, bufferSize: dataEncryption.BlockSize * 4);
}
}
/// <summary>
/// Decrypts the target key with the CryptoManager's private RSA key. It is assumbed that the
/// @rijKey was previously encrypted with the CryptoManager's public key.
/// </summary>
/// <param name="rijKey"></param>
/// <returns></returns>
public byte[] DecryptRijndaelKey(byte[] rijKey)
{
byte[] key = new byte[0];
lock (this)
{
//m_RSA.ImportCspBlob(m_PrivateKey);
m_RSA.FromXmlString(Encoding.UTF8.GetString(m_PrivateKey));
m_RSA_Exch_Def.SetKey(m_RSA);
key = m_RSA_Exch_Def.DecryptKeyExchange(rijKey);
}
return(key);
}
public static void TestKnownValuePkcs1()
{
using (RSA rsa = RSAFactory.Create())
{
rsa.ImportParameters(TestData.RSA1024Params);
byte[] encrypted =
("7061adb87a8759f0a0dc6ece42f5b63bf186f845237c6b16bf824b303812486efbb8f5febb681902228a609d4330a6c21abf0fc0d271"
+ "ba63d1d0d9e486668270c2dbf73ab33055dfc0b797938557b99c0e9a535605c0a4bceefe5a37594732bb566ab026e4e8d5ce47d0967d"
+ "f1c66e7ee4d39d804f6d558670222d708f943eb0").HexToByteArray();
RSAPKCS1KeyExchangeDeformatter deformatter = new RSAPKCS1KeyExchangeDeformatter(rsa);
byte[] plain = deformatter.DecryptKeyExchange(encrypted);
byte[] expectedPlain = { 0x41, 0x42, 0x43 };
Assert.Equal(expectedPlain, plain);
}
}
public static void TestKnownValuePkcs1()
{
using (RSA rsa = RSAFactory.Create())
{
rsa.ImportParameters(TestData.RSA1024Params);
byte[] encrypted =
( "7061adb87a8759f0a0dc6ece42f5b63bf186f845237c6b16bf824b303812486efbb8f5febb681902228a609d4330a6c21abf0fc0d271"
+ "ba63d1d0d9e486668270c2dbf73ab33055dfc0b797938557b99c0e9a535605c0a4bceefe5a37594732bb566ab026e4e8d5ce47d0967d"
+ "f1c66e7ee4d39d804f6d558670222d708f943eb0").HexToByteArray();
RSAPKCS1KeyExchangeDeformatter deformatter = new RSAPKCS1KeyExchangeDeformatter(rsa);
byte[] plain = deformatter.DecryptKeyExchange(encrypted);
byte[] expectedPlain = { 0x41, 0x42, 0x43 };
Assert.Equal(expectedPlain, plain);
}
}
protected override void ProcessAsTls1()
{
ServerContext serverContext = (ServerContext)base.Context;
AsymmetricAlgorithm asymmetricAlgorithm = serverContext.SslStream.RaisePrivateKeySelection(new X509Certificate(serverContext.ServerSettings.Certificates[0].RawData), null);
if (asymmetricAlgorithm == null)
{
throw new TlsException(AlertDescription.UserCancelled, "Server certificate Private Key unavailable.");
}
byte[] rgbIn = base.ReadBytes((int)base.ReadInt16());
RSAPKCS1KeyExchangeDeformatter rsapkcs1KeyExchangeDeformatter = new RSAPKCS1KeyExchangeDeformatter(asymmetricAlgorithm);
byte[] preMasterSecret = rsapkcs1KeyExchangeDeformatter.DecryptKeyExchange(rgbIn);
base.Context.Negotiating.Cipher.ComputeMasterSecret(preMasterSecret);
base.Context.Negotiating.Cipher.ComputeKeys();
base.Context.Negotiating.Cipher.InitializeCipher();
}
/// <inheritdoc />
protected internal override byte[] Decrypt(byte[] data, byte[] iv)
{
#if NETCOREAPP1_0
switch (this.algorithm)
{
case AsymmetricAlgorithm.RsaPkcs1:
return(this.Rsa.Decrypt(data, RSAEncryptionPadding.Pkcs1));
case AsymmetricAlgorithm.RsaOaepSha1:
return(this.Rsa.Decrypt(data, RSAEncryptionPadding.OaepSHA1));
case AsymmetricAlgorithm.RsaOaepSha256:
return(this.Rsa.Decrypt(data, RSAEncryptionPadding.OaepSHA256));
case AsymmetricAlgorithm.RsaOaepSha384:
return(this.Rsa.Decrypt(data, RSAEncryptionPadding.OaepSHA384));
case AsymmetricAlgorithm.RsaOaepSha512:
return(this.Rsa.Decrypt(data, RSAEncryptionPadding.OaepSHA512));
default:
throw new PlatformNotSupportedException();
}
#else
AsymmetricKeyExchangeDeformatter keyExchange;
switch (this.Algorithm)
{
case AsymmetricAlgorithm.RsaOaepSha1:
case AsymmetricAlgorithm.RsaOaepSha256:
case AsymmetricAlgorithm.RsaOaepSha384:
case AsymmetricAlgorithm.RsaOaepSha512:
keyExchange = new RSAOAEPKeyExchangeDeformatter(this.Rsa);
break;
case AsymmetricAlgorithm.RsaPkcs1:
keyExchange = new RSAPKCS1KeyExchangeDeformatter(this.Rsa);
break;
default:
throw new NotSupportedException();
}
return(keyExchange.DecryptKeyExchange(data));
#endif
}
/// <summary>
/// Decode a message sent from client to server.
/// </summary>
/// <param name="content">Message to decode and validate.</param>
/// <returns>
/// Decoded message, in plain text.
/// </returns>
/// <exception cref="LicenseException">
/// If message is not valid or it has been tampered.
/// </exception>
public static string DecodeMessageFromClient(string content)
{
var data = SplitMultipart(content);
if (data.Count() < 1)
{
throw new LicenseException("Data is not valid (too few data sections).");
}
var contactData = data.First();
using (var rsa = RSA.Create())
{
rsa.FromXmlString(Keys.PrivateKey); // This will fail for non-private builds
using (var sa = SymmetricAlgorithm.Create())
{
byte[] keyex = new byte[rsa.KeySize >> 3];
Buffer.BlockCopy(contactData, 0, keyex, 0, keyex.Length);
var def = new RSAPKCS1KeyExchangeDeformatter(rsa);
byte[] key = def.DecryptKeyExchange(keyex);
byte[] iv = new byte[sa.IV.Length];
Buffer.BlockCopy(contactData, keyex.Length, iv, 0, iv.Length);
using (var ct = sa.CreateDecryptor(key, iv))
{
var decryptedData = ct.TransformFinalBlock(contactData,
keyex.Length + iv.Length,
contactData.Length - (keyex.Length + iv.Length));
try
{
return(Encoding.UTF8.GetString(decryptedData));
}
catch (DecoderFallbackException exception)
{
// Encoded sequence is invalid, message has been
// compromized or encrypted with an invalid public key
throw new LicenseException("Data is not valid.", exception);
}
}
}
}
}
/// <summary>
/// Decripta tramite chiave RSA uno stream su altro stream
/// </summary>
/// <param name="key"></param>
/// <param name="encInput"></param>
/// <param name="output"></param>
public static void RSA_AES_Decrypt(RSA key, Stream encInput, Stream output)
{
//Genera un IV e chiave di criptazione random
var AES = createRijandelAES256();
try
{
var sizeBuffer = new byte[sizeof(int)];
int sizeLen;
//Legge IV (size e data) non criptato
encInput.Read(sizeBuffer, 0, sizeBuffer.Length);
sizeLen = BitConverter.ToInt32(sizeBuffer, 0);
var aesIvData = new byte[sizeLen];
encInput.Read(aesIvData, 0, sizeLen);
//Imposta Iv su AES
AES.IV = aesIvData;
//Legge keylen e AES criptata
encInput.Read(sizeBuffer, 0, sizeBuffer.Length);
sizeLen = BitConverter.ToInt32(sizeBuffer, 0);
var aesKeyData = new byte[sizeLen];
encInput.Read(aesKeyData, 0, aesKeyData.Length);
//Decripta AES Key ed imposta su AES
var def = new RSAPKCS1KeyExchangeDeformatter(key);
AES.Key = def.DecryptKeyExchange(aesKeyData);
//Legge resto del file criptato
using (var cs = new CryptoStream(encInput, AES.CreateDecryptor(), CryptoStreamMode.Read))
{
var buffer = new byte[sizeof(Int16)];
int iRead;
while ((iRead = cs.Read(buffer, 0, buffer.Length)) > 0)
{
output.Write(buffer, 0, iRead);
}
}
}
finally
{
AES.Clear();
}
}
public override void HandleClient(TlsContext ctx, KeyExchange serverExchange)
{
// Read client premaster secret
var encryptedPreMaster = ((RSAKeyExchange)serverExchange).encryptedPreMasterSecret;
if (!ctx.Configuration.HasCredentials)
{
throw new TlsException(AlertDescription.BadCertificate, "Server certificate Private Key unavailable.");
}
// Decrypt premaster secret
var deformatter = new RSAPKCS1KeyExchangeDeformatter(ctx.Configuration.PrivateKey);
using (var preMasterSecret = new SecureBuffer(deformatter.DecryptKeyExchange(encryptedPreMaster))) {
// Create master secret
ComputeMasterSecret(ctx, preMasterSecret);
}
}
/// <summary>
/// Performs a simple decryption of input using a
/// combination of PublicKey + SymmetricKey decryption.
/// </summary>
/// <param name="rsa">The RSA.</param>
/// <param name="input">The input.</param>
/// <returns></returns>
public static byte[] SimpleDecrypt(RSA rsa, byte[] input)
{
byte[] keyex = new byte[rsa.KeySize >> 3];
Buffer.BlockCopy(input, 0, keyex, 0, keyex.Length);
var def = new RSAPKCS1KeyExchangeDeformatter(rsa);
byte[] key = def.DecryptKeyExchange(keyex);
var sa = SymmetricAlgorithm.Create("AES");
byte[] iv = new byte[sa.IV.Length];
Buffer.BlockCopy(input, keyex.Length, iv, 0, iv.Length);
var ct = sa.CreateDecryptor(key, iv);
byte[] decrypt = ct.TransformFinalBlock(input, keyex.Length + iv.Length, input.Length - (keyex.Length + iv.Length));
return(decrypt);
}
public static byte[] DecryptKey(byte[] keyData, RSA rsa, bool useOAEP)
{
if (keyData == null)
{
throw new ArgumentNullException("keyData");
}
if (rsa == null)
{
throw new ArgumentNullException("rsa");
}
if (useOAEP)
{
RSAOAEPKeyExchangeDeformatter deformatter = new RSAOAEPKeyExchangeDeformatter(rsa);
return(deformatter.DecryptKeyExchange(keyData));
}
RSAPKCS1KeyExchangeDeformatter deformatter2 = new RSAPKCS1KeyExchangeDeformatter(rsa);
return(deformatter2.DecryptKeyExchange(keyData));
}
/// <summary>
/// Decrypts a secret with asymmetric RSA algorithm.
/// </summary>
/// <param name="keySize">Key size (1024, 2048, 4096, ...)</param>
/// <param name="receiversPrivateKeyBlob">Private key of the receiver</param>
/// <param name="encryptedSecret">Encrypted secret</param>
/// <returns>Decrypted secret</returns>
public static byte[] DecrpytSecret(int keySize, byte[] receiversPrivateKeyBlob, EncryptedSecret encryptedSecret)
{
using var receiversPrivateKey = new RSACryptoServiceProvider(dwKeySize: keySize);
receiversPrivateKey.ImportCspBlob(receiversPrivateKeyBlob);
using Aes aes = new AesCryptoServiceProvider();
aes.IV = encryptedSecret.Iv;
// Decrypt the session key
RSAPKCS1KeyExchangeDeformatter keyDeformatter = new RSAPKCS1KeyExchangeDeformatter(receiversPrivateKey);
aes.Key = keyDeformatter.DecryptKeyExchange(encryptedSecret.EncryptedSessionKey);
// Decrypt the message
using MemoryStream stream = new MemoryStream();
using CryptoStream cryptoStream = new CryptoStream(stream, aes.CreateDecryptor(), CryptoStreamMode.Write);
cryptoStream.Write(encryptedSecret.EncryptedMessage, 0, encryptedSecret.EncryptedMessage.Length);
cryptoStream.Close();
return stream.ToArray();
}
public static byte[] DecryptIt(RSA rsaer, Algorithms typo, string datatodecrypt)
{
byte[] result = null;
try
{
byte[] encrbytes = System.Convert.FromBase64String(datatodecrypt);
SymmetricAlgorithm sa = SymmetricAlgorithm.Create(RSACry.GetAlgorithmName(typo));
byte[] keyex = new byte[(rsaer.KeySize >> 3) - 1];
Buffer.BlockCopy(encrbytes, 0, keyex, 0, keyex.Length);
RSAPKCS1KeyExchangeDeformatter def = new RSAPKCS1KeyExchangeDeformatter(rsaer);
byte[] key = def.DecryptKeyExchange(keyex);
byte[] iv = new byte[sa.IV.Length - 1];
Buffer.BlockCopy(encrbytes, keyex.Length, iv, 0, iv.Length);
ICryptoTransform ct = sa.CreateDecryptor(key, iv);
result = ct.TransformFinalBlock(encrbytes, keyex.Length + iv.Length, (encrbytes.Length - 1) - (keyex.Length + iv.Length));
}
catch (Exception ex)
{
throw new CryptographicException("Unable to decrypt: " + ex.Message);
}
return(result);
}
private static byte[] Decrypt(RSA rsa, byte[] input)
{
// by default this will create a 128 bits AES (Rijndael) object
byte[] decrypt;
using (var sa = SymmetricAlgorithm.Create())
{
var keyex = new byte[rsa.KeySize >> 3];
Buffer.BlockCopy(input, 0, keyex, 0, keyex.Length);
var def = new RSAPKCS1KeyExchangeDeformatter(rsa);
var key = def.DecryptKeyExchange(keyex);
var iv = new byte[sa.IV.Length];
Buffer.BlockCopy(input, keyex.Length, iv, 0, iv.Length);
using (var ct = sa.CreateDecryptor(key, iv))
{
decrypt = ct.TransformFinalBlock(input, keyex.Length + iv.Length, input.Length - (keyex.Length + iv.Length));
}
}
return(decrypt);
}
static void Main(string[] args)
{
Console.WriteLine("This example shows how to use the public and private key from a certificate to encrypt and decrypt data.\r\n");
byte[] data = Encoding.ASCII.GetBytes("Hello World!");
// load the certificate from a file
Certificate cert = Certificate.CreateFromCerFile(@"client.cer");
// get an RSA instance that represents the public key of the certificate
RSA public_key = cert.PublicKey;
// create a PKCS#1 key exchange formatter instance with the public key
RSAPKCS1KeyExchangeFormatter kef = new RSAPKCS1KeyExchangeFormatter(public_key);
// encrypt the data, using the public key from the certificate
byte[] encrypted = kef.CreateKeyExchange(data);
// associate the certificate with its private key
// we set exportable to true because decryption will fail on Windows 98
// if this flag is not set. If you do not use Windows 98, you should set
// the exportable flag to false for increased security.
cert.AssociateWithPrivateKey(@"client.pvk", "test", true);
// get an RSA instance that represents the private key
RSA private_key = cert.PrivateKey;
// create a PKCS#1 key exchange deformatter instance with the private key
RSAPKCS1KeyExchangeDeformatter ked = new RSAPKCS1KeyExchangeDeformatter(private_key);
// decrypt the data, using the private key from the certificate
byte[] decrypted = ked.DecryptKeyExchange(encrypted);
// print the results in the console
Console.WriteLine("Input data: " + Encoding.ASCII.GetString(data) + "\r\n");
Console.WriteLine("Encrypted data:\r\n" + BytesToHex(encrypted) + "\r\n");
Console.WriteLine("Decrypted data: " + Encoding.ASCII.GetString(decrypted));
Console.WriteLine("\r\nPress ENTER to continue...");
Console.ReadLine();
// clean up
public_key.Clear();
private_key.Clear();
}
private byte[] Decrypt(RSA rsa, byte[] input)
{
// by default this will create a 128 bits AES (Rijndael) object
SymmetricAlgorithm sa = SymmetricAlgorithm.Create ();
byte[] keyex = new byte [rsa.KeySize >> 3];
Buffer.BlockCopy (input, 0, keyex, 0, keyex.Length);
RSAPKCS1KeyExchangeDeformatter def = new RSAPKCS1KeyExchangeDeformatter (rsa);
byte[] key = def.DecryptKeyExchange (keyex);
byte[] iv = new byte [sa.IV.Length];
Buffer.BlockCopy (input, keyex.Length, iv, 0, iv.Length);
ICryptoTransform ct = sa.CreateDecryptor (key, iv);
byte[] decrypt = ct.TransformFinalBlock (input, keyex.Length + iv.Length, input.Length - (keyex.Length + iv.Length));
return decrypt;
}