Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Need help encrypting a message using a key pair #4211

Closed
prettydiff opened this issue Jul 22, 2023 · 3 comments
Closed

Need help encrypting a message using a key pair #4211

prettydiff opened this issue Jul 22, 2023 · 3 comments

Comments

@prettydiff
Copy link

prettydiff commented Jul 22, 2023
edited
Loading

Details

I can successfully generate key pairs using (TypeScript):

const privateKey:string = "",
  publicKey:string = "",
  callback = function (keyError:NodeJS.ErrnoException, keyPublic:Buffer, keyPrivate:Buffer) {
      if (keyError === null) {
          privateKey = keyPrivate.toString();
          publicKey = keyPublic.toString();

          crypto.privateEncrypt({
              encoding: "utf8",
              format: "pem",
              key: privateKey,
              passphrase: "a real big hash",
              type: "pkcs8"
          }, Buffer.from("some text"));
      } else {
          console.log(keyError);
      }
  },
  options:ED448KeyPairOptions = {
      privateKeyEncoding: {
          cipher: "aes-128-cbc",
          format: "pem",
          passphrase: "a real big hash",
          type: "pkcs8"
      },
      publicKeyEncoding: {
          format: "pem",
          type: "spki"
      }
  };
crypto.generateKeyPair("ed448", options, callback);

The code that errors is the privateEncrypt function. The error:

error:03000096:digital envelope routines::operation not support for this keytype

Here are some combination of things I have tried:

  • Change the function to publicEncrypt
  • Eliminating the cipher and passphrase properties from the key generation options and then only passing the key string into the privateEncrypt function.
  • Tried converting the key pair from buffers to string encoded as hex and base64. In the sample above no encoding is specified so defaulting to utf8.
  • Tried replacing ed448 with x448.
  • Tried updating the cipher to aes-256-cbc

I am not sure why this refuses to work. Could the problem be the use of ed448?

Node.js version

20.5.0

Example code

No response

Operating system

Windows 10

Scope

Runtime

Module and version

Not applicable.
@prettydiff prettydiff mentioned this issue Jul 22, 2023
Open
@prettydiff
Copy link
Author

prettydiff commented Jul 22, 2023
edited
Loading

Instead trying generateKeyPair with type "ec" and named curve sect571k1 the privateEncrypt function generates error:

error:00000000:lib(0)::reason(0)

prettydiff/share-file-systems@80851d7 Shows the actual project code with the commit converting from "ed448" to type "ec".

@prettydiff
Copy link
Author

I am going to drop asymmetric key exchange and instead try to solve this problem using a shared secret, probably in the form of HMAC.

@prettydiff prettydiff mentioned this issue Aug 10, 2023
Closed
@tniessen
Copy link
Member

tniessen commented Aug 26, 2023
edited
Loading

@prettydiff Neither Ed448 nor X448 support encryption. You can use X448 to exchange keys between multiple parties, and you can use Ed448 to digitally sign messages. Neither algorithm is meant for encrypting messages.

@tniessen tniessen reopened this Aug 26, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@prettydiff @tniessen