Skip to main content

PublicKeyComponents

aws_lc_rs::rsa::key

Struct PublicKeyComponents 

Source 
pub struct PublicKeyComponents<B>
where
    B: AsRef<[u8]> + Debug,
{
    pub n: B,
    pub e: B,
}
Expand description

Low-level API for RSA public keys.

When the public key is in DER-encoded PKCS#1 ASN.1 format, it is recommended to use aws_lc_rs::signature::verify() with aws_lc_rs::signature::RSA_PKCS1_*, because aws_lc_rs::signature::verify() will handle the parsing in that case. Otherwise, this function can be used to pass in the raw bytes for the public key components as untrusted::Input arguments.

Fields§

§n: B

The public modulus, encoded in big-endian bytes without leading zeros.

§e: B

The public exponent, encoded in big-endian bytes without leading zeros.

Implementations§

Source§

impl<B> PublicKeyComponents<B>
where B: AsRef<[u8]> + Debug,

Source

fn build_rsa(&self) -> Result<ManagedPointer<*mut EVP_PKEY>, ()>

Source

pub fn verify( &self, params: &RsaParameters, message: &[u8], signature: &[u8], ) -> Result<(), Unspecified>

Verifies that signature is a valid signature of message using self as the public key. params determine what algorithm parameters (padding, digest algorithm, key length range, etc.) are used in the verification.

§Errors

error::Unspecified if message was not verified.

Source

pub fn to_parsed_public_key( &self, params: &'static RsaParameters, ) -> Result<ParsedPublicKey, KeyRejected>

Parses these components into a crate::signature::ParsedPublicKey, which can then be used to verify multiple signatures while amortizing the cost of key parsing.

params specifies the RSA verification algorithm, such as crate::signature::RSA_PKCS1_2048_8192_SHA256 or crate::signature::RSA_PSS_2048_8192_SHA256.

Note that the algorithm’s accepted key-size range is not enforced at this point; that check is deferred to crate::signature::ParsedPublicKey::verify_sig, matching the behavior of crate::signature::ParsedPublicKey::new.

§Errors

KeyRejected if self does not form a valid RSA public key.

§Examples
use aws_lc_rs::signature::{self, RsaPublicKeyComponents};

// Public key components (big-endian, no leading zeros) received
// out-of-band from a peer.
let components = RsaPublicKeyComponents {
    n: modulus_bytes(),
    e: exponent_bytes(),
};
let parsed =
    components.to_parsed_public_key(&signature::RSA_PKCS1_2048_8192_SHA256)?;
parsed.verify_sig(b"hello, world", signature_bytes())?;

Trait Implementations§

Source§

impl<B> AsDer<PublicKeyX509Der<'static>> for PublicKeyComponents<B>
where B: AsRef<[u8]> + Debug,

Source§

fn as_der(&self) -> Result<PublicKeyX509Der<'static>, Unspecified>

Serializes the RSA public key components into an X.509 SubjectPublicKeyInfo structure, as specified in RFC 5280.

§Errors

error::Unspecified if the components do not form a valid RSA public key.

Source§

impl<B> Clone for PublicKeyComponents<B>
where B: AsRef<[u8]> + Debug + Clone,

Source§

fn clone(&self) -> PublicKeyComponents<B>

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl<B: AsRef<[u8]> + Debug> Debug for PublicKeyComponents<B>

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl<B> TryInto<PublicEncryptingKey> for PublicKeyComponents<B>
where B: AsRef<[u8]> + Debug,

Source§

fn try_into(self) -> Result<PublicEncryptingKey, Self::Error>

Try to build a PublicEncryptingKey from the public key components.

§Errors

error::Unspecified if the key failed to verify.

Source§

type Error = Unspecified

The type returned in the event of a conversion error.
Source§

impl<B: Copy + AsRef<[u8]> + Debug> Copy for PublicKeyComponents<B>

Auto Trait Implementations§

§

impl<B> Freeze for PublicKeyComponents<B>
where B: Freeze,

§

impl<B> RefUnwindSafe for PublicKeyComponents<B>
where B: RefUnwindSafe,

§

impl<B> Send for PublicKeyComponents<B>
where B: Send,

§

impl<B> Sync for PublicKeyComponents<B>
where B: Sync,

§

impl<B> Unpin for PublicKeyComponents<B>
where B: Unpin,

§

impl<B> UnsafeUnpin for PublicKeyComponents<B>
where B: UnsafeUnpin,

§

impl<B> UnwindSafe for PublicKeyComponents<B>
where B: UnwindSafe,

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.