Use OAEP instead of PKCS1v15

moznion · Feb 6, 2015 · 06b1701 · 06b1701
1 parent 7c3b36c
commit 06b1701
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 3 deletions.
diff --git a/README.md b/README.md
@@ -36,7 +36,7 @@ with an attachment which contains encrypted message.
 When you want to read a received attachment, you just execute following command;
 
 ```
-$ openssl rsautl -decrypt -inkey <Your Secret Key> -in <Attachment>
+$ openssl rsautl -decrypt -oaep -inkey <Your Secret Key> -in <Attachment>
 ```
 
 Note

diff --git a/encrypter.go b/encrypter.go
@@ -3,6 +3,7 @@ package main
 import (
 	"crypto/rand"
 	"crypto/rsa"
+	"crypto/sha1"
 
 	"github.com/ianmcmahon/encoding_ssh"
 )
@@ -13,7 +14,8 @@ func encryptStringBySSHRsaPublicKey(sshRsaPubkey string, msg string) ([]byte, er
 		return make([]byte, 0), err
 	}
 
-	enc, err := rsa.EncryptPKCS1v15(rand.Reader, pubkey.(*rsa.PublicKey), []byte(msg))
+	enc, err := rsa.EncryptOAEP(sha1.New(), rand.Reader, pubkey.(*rsa.PublicKey), []byte(msg), nil)
+
 	if err != nil {
 		return make([]byte, 0), err
 	}

diff --git a/mail.go b/mail.go
@@ -41,7 +41,7 @@ func sendByGmail(m *mail) (err error) {
 
 	body := m.body
 	if body == "" {
-		body = fmt.Sprintf("Please execute with attachment file to read: `openssl rsautl -decrypt -inkey <YOUR SECRET KEY> -in %s`", filepath.Base(tempfileName))
+		body = fmt.Sprintf("Please execute with attachment file to read: `openssl rsautl -decrypt -oaep -inkey <YOUR SECRET KEY> -in %s`", filepath.Base(tempfileName))
 	}
 
 	newMsg := gomail.NewMessage()