Decrypt()

static unsafe void System.Security.Cryptography.AeadCommon.Decrypt ( SafeKeyHandle keyHandle, ReadOnlySpan< byte > nonce, ReadOnlySpan< byte > associatedData, ReadOnlySpan< byte > ciphertext, ReadOnlySpan< byte > tag, Span< byte > plaintext, bool clearPlaintextOnFailure )

inlinestatic

Definition at line 61 of file AeadCommon.cs.

    {
        fixed (byte* pbOutput = &GetNonNullPinnableReference(plaintext))
        {
            fixed (byte* pbNonce = &GetNonNullPinnableReference(nonce))
            {
                fixed (byte* pbInput = &GetNonNullPinnableReference(ciphertext))
                {
                    fixed (byte* pbTag = &GetNonNullPinnableReference(tag))
                    {
                        fixed (byte* pbAuthData = &GetNonNullPinnableReference(associatedData))
                        {
                            global::Interop.BCrypt.BCRYPT_AUTHENTICATED_CIPHER_MODE_INFO bCRYPT_AUTHENTICATED_CIPHER_MODE_INFO = global::Interop.BCrypt.BCRYPT_AUTHENTICATED_CIPHER_MODE_INFO.Create();
                            bCRYPT_AUTHENTICATED_CIPHER_MODE_INFO.pbNonce = pbNonce;
                            bCRYPT_AUTHENTICATED_CIPHER_MODE_INFO.cbNonce = nonce.Length;
                            bCRYPT_AUTHENTICATED_CIPHER_MODE_INFO.pbTag = pbTag;
                            bCRYPT_AUTHENTICATED_CIPHER_MODE_INFO.cbTag = tag.Length;
                            bCRYPT_AUTHENTICATED_CIPHER_MODE_INFO.pbAuthData = pbAuthData;
                            bCRYPT_AUTHENTICATED_CIPHER_MODE_INFO.cbAuthData = associatedData.Length;
                            int cbResult;
                            global::Interop.BCrypt.NTSTATUS nTSTATUS = global::Interop.BCrypt.BCryptDecrypt(keyHandle, pbInput, ciphertext.Length, new IntPtr(&bCRYPT_AUTHENTICATED_CIPHER_MODE_INFO), null, 0, pbOutput, plaintext.Length, out cbResult, 0);
                            switch (nTSTATUS)
                            {
                            case global::Interop.BCrypt.NTSTATUS.STATUS_SUCCESS:
                                break;
                            case global::Interop.BCrypt.NTSTATUS.STATUS_AUTH_TAG_MISMATCH:
                                if (clearPlaintextOnFailure)
                                {
                                    CryptographicOperations.ZeroMemory(plaintext);
                                }
                                throw new CryptographicException(System.SR.Cryptography_AuthTagMismatch);
                            default:
                                throw global::Interop.BCrypt.CreateCryptographicException(nTSTATUS);
                            }
                        }
                    }
                }
            }
        }
    }

References System.SR.Cryptography_AuthTagMismatch, System.Security.Cryptography.AeadCommon.GetNonNullPinnableReference(), System.ReadOnlySpan< T >.Length, System.Span< T >.Length, and System.Security.Cryptography.CryptographicOperations.ZeroMemory().

Referenced by System.Security.Cryptography.AesCcm.DecryptCore(), System.Security.Cryptography.AesGcm.DecryptCore(), and System.Security.Cryptography.ChaCha20Poly1305.DecryptCore().