AaronFiore/electrum
1
0
Fork 0
Code Activity

add support for RSA_SHA256

Browse Source
This commit is contained in:
ThomasV
2014-06-30 20:19:18 +02:00
parent 1e91c0f254
commit 9a3ca0dc31
2 changed files with 12 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
lib/paymentrequest.py
View File

@@ -189,13 +189,19 @@ class PaymentRequest:
prev_x = x509_chain[i-1]
algo, sig, data = prev_x.extract_sig()
if algo.getComponentByName('algorithm') != x509.ALGO_RSA_SHA1:
self.error = "Algorithm not suported"
return
sig = bytearray(sig[5:])
pubkey = x.publicKey
verify = pubkey.hashAndVerify(sig, data)
if algo.getComponentByName('algorithm') == x509.ALGO_RSA_SHA1:
verify = pubkey.hashAndVerify(sig, data)
elif algo.getComponentByName('algorithm') == x509.ALGO_RSA_SHA256:
hashBytes = bytearray(hashlib.sha256(data).digest())
prefixBytes = bytearray([0x30,0x31,0x30,0x0d,0x06,0x09,0x60,0x86,0x48,0x01,0x65,0x03,0x04,0x02,0x01,0x05,0x00,0x04,0x20])
verify = pubkey.verify(sig, prefixBytes + hashBytes)
else:
self.error = "Algorithm not supported"
util.print_error(self.error, algo.getComponentByName('algorithm'))
return
if not verify:
self.error = "Certificate not Signed by Provided CA Certificate Chain"
return