MCPcopy Create free account
hub / github.com/RustCrypto/RSA

github.com/RustCrypto/RSA

Chat with this repo
repository ↗ · DeepWiki ↗ · release v0.10.0-rc.18 ↗ · + Follow · compare 2 versions
402 symbols 937 edges 38 files 91 documented · 23% updated 43d ago★ 66931 open issues

Browse by type

Functions 365 Types & classes 37
What it actually does AI analysis from the code graph — generated when you open this
loading…
README

RustCrypto: RSA

crates.io Documentation Build Status Dependency Status Apache2/MIT licensed MSRV [Project Chat]chat-link

A portable RSA implementation in pure Rust.

Example

use rsa::{Pkcs1v15Encrypt, RsaPrivateKey, RsaPublicKey};

let mut rng = rand::rng();
let bits = 2048;
let priv_key = RsaPrivateKey::new(&mut rng, bits).expect("failed to generate a key");
let pub_key = RsaPublicKey::from(&priv_key);

// Encrypt
let data = b"hello world";
let enc_data = pub_key.encrypt(&mut rng, Pkcs1v15Encrypt, &data[..]).expect("failed to encrypt");
assert_ne!(&data[..], &enc_data[..]);

// Decrypt
let dec_data = priv_key.decrypt(Pkcs1v15Encrypt, &enc_data).expect("failed to decrypt");
assert_eq!(&data[..], &dec_data[..]);

Note: If you encounter unusually slow key generation time while using RsaPrivateKey::new you can try to compile in release mode or add the following to your Cargo.toml. Key generation is much faster when building with higher optimization levels, but this will increase the compile time a bit. toml [profile.debug] opt-level = 3

Status

Currently at Phase 1 (v) 🚧

There will be three phases before 1.0 🚢 can be released.

  1. 🚧 Make it work
    • [x] Prime generation ✅
    • [x] Key generation ✅
    • [x] PKCS1v1.5: Encryption & Decryption ✅
    • [x] PKCS1v1.5: Sign & Verify ✅
    • [ ] PKCS1v1.5 (session key): Encryption & Decryption
    • [x] OAEP: Encryption & Decryption
    • [x] PSS: Sign & Verify
    • [x] Key import & export
  2. 🚀 Make it fast
    • [x] Benchmarks ✅
    • [ ] compare to other implementations 🚧
    • [ ] optimize 🚧
  3. 🔐 Make it secure
    • [ ] Fuzz testing
    • [ ] Security Audits

⚠️Security Warning

This crate has received one security audit by Include Security, with only one minor finding which has since been addressed.

See the open security issues on our issue tracker for other known problems.

~~Notably the implementation of modular exponentiation is not constant time, but timing variability is masked using random blinding, a commonly used technique.~~ This crate is vulnerable to the Marvin Attack which could enable private key recovery by a network attacker (see RUSTSEC-2023-0071).

You can follow our work on mitigating this issue in #390.

Minimum Supported Rust Version (MSRV)

This crate supports Rust 1.85 or higher.

In the future MSRV can be changed, but it will be done with a minor version bump.

License

Licensed under either of

at your option.

Contribution

Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you, as defined in the Apache-2.0 license, shall be dual licensed as above, without any additional terms or conditions.

Extension points exported contracts — how you extend this code

Core symbols most depended-on inside this repo

Shape

Method 199
Function 166
Class 26
Interface 9
Enum 2

Languages

Rust100%

Modules by API surface

src/key.rs60 symbols
src/pss.rs32 symbols
src/pkcs1v15.rs28 symbols
src/pss/signing_key.rs23 symbols
src/oaep.rs23 symbols
src/pkcs1v15/signing_key.rs21 symbols
src/pss/blinded_signing_key.rs20 symbols
src/pss/verifying_key.rs17 symbols
tests/pkcs1.rs16 symbols
src/pkcs1v15/verifying_key.rs15 symbols
tests/wycheproof.rs13 symbols
src/algorithms/rsa.rs13 symbols

For agents

$ claude mcp add RSA \
  -- python -m otcore.mcp_server <graph>

⬇ download graph artifact

Ask about this repo answers extend the page