Author Topic: rsaPaddingHashAlg: SHA-256  (Read 608 times)

HecCon

  • Newbie
  • *
  • Posts: 3
  • Karma: +0/-0
    • View Profile
rsaPaddingHashAlg: SHA-256
« on: January 02, 2018, 07:24:08 AM »
Hello,

I have a problem with decrypting Emails.
Emails are encrypted with OAEP.

I have no trouble, when they are encrypted with rsaPaddingHashAlg: SHA-1.

logfile snip:
---------------
unEnvelope3:
unEnvelope_encrypted:
findMatchingPrivateKeyFromSysCerts:
numRecipientInfos: 1
certSerialNumber: 177ECB
certIssuerCN: D-TRUST Application Certificates CA 3-1 2013
certIssuerDN: DE, D-Trust GmbH, D-TRUST Application Certificates CA 3-1 2013
subjectKeyIdentifier:
--findMatchingPrivateKeyFromSysCerts
AlgorithmIdentifier:
oid: 1.2.840.113549.1.1.7
rsaPaddingHashAlg: SHA-1
--AlgorithmIdentifier
symmetricDecrypt:
algId_oid: 2.16.840.1.101.3.4.1.22
AES192_CBC
--symmetricDecrypt
--unEnvelope_encrypted
--unEnvelope3
---------------

If they are encrypted with rsaPaddingHashAlg: SHA-256, then there happens an error.
edit: same with rsaPaddingHashAlg: SHA-512
Emails and attachments are not saved (by my powershell code), because they are not unwrapped.

logfile snip:
---------------
unEnvelope3:
unEnvelope_encrypted:
findMatchingPrivateKeyFromSysCerts:
numRecipientInfos: 1
certSerialNumber: 177ECB
certIssuerCN: D-TRUST Application Certificates CA 3-1 2013
certIssuerDN: DE, D-Trust GmbH, D-TRUST Application Certificates CA 3-1 2013
subjectKeyIdentifier:
--findMatchingPrivateKeyFromSysCerts
AlgorithmIdentifier:
oid: 1.2.840.113549.1.1.7
rsaPaddingHashAlg: SHA-256
--AlgorithmIdentifier
OAEP decoding failed.
--unEnvelope_encrypted
--unEnvelope3
Failed to unenvelope message
--unenvelope
--unwrapInner2
An encrypted email was received
Not all data was decrypted
num_parts_encrypted: 1
---------------

Please help

Regards

edit: tested with 9.5.0.67-64bit and 9.5.0.70-64bit
« Last Edit: January 02, 2018, 07:41:01 AM by HecCon »

HecCon

  • Newbie
  • *
  • Posts: 3
  • Karma: +0/-0
    • View Profile
Re: rsaPaddingHashAlg: SHA-256
« Reply #1 on: January 03, 2018, 08:07:06 AM »
solved with 9.5.0.71