python rsa 签名方法

2016-09-07 14:56:11 +08:00
 banksiae

要在 python 中利用已知的 privateKey 做签名,没搞定~~

下面一堆代码开始呈现~~

java 的代码:

    public static final String KEY_ALGORITHM = "RSA";
public static final String SIGNATURE_ALGORITHM = "MD5withRSA";

private static final String PUBLIC_KEY = "RSAPublicKey";
private static final String PRIVATE_KEY = "RSAPrivateKey";

    public static String sign(byte[] data, String privateKey) throws Exception {
	// 解密由 base64 编码的私钥
	byte[] keyBytes = decryptBASE64(privateKey);

	// 构造 PKCS8EncodedKeySpec 对象
	PKCS8EncodedKeySpec pkcs8KeySpec = new PKCS8EncodedKeySpec(keyBytes);

	// KEY_ALGORITHM 指定的加密算法
	KeyFactory keyFactory = KeyFactory.getInstance(KEY_ALGORITHM);

	// 取私钥匙对象
	PrivateKey priKey = keyFactory.generatePrivate(pkcs8KeySpec);

	// 用私钥对信息生成数字签名
	Signature signature = Signature.getInstance(SIGNATURE_ALGORITHM);
	signature.initSign(priKey);
	signature.update(data);

	return encryptBASE64(signature.sign());
}

    public static boolean verify(byte[] data, String publicKey, String sign)
		throws Exception {

	// 解密由 base64 编码的公钥
	byte[] keyBytes = decryptBASE64(publicKey);

	// 构造 X509EncodedKeySpec 对象
	X509EncodedKeySpec keySpec = new X509EncodedKeySpec(keyBytes);

	// KEY_ALGORITHM 指定的加密算法
	KeyFactory keyFactory = KeyFactory.getInstance(KEY_ALGORITHM);

	// 取公钥匙对象
	PublicKey pubKey = keyFactory.generatePublic(keySpec);

	Signature signature = Signature.getInstance(SIGNATURE_ALGORITHM);
	signature.initVerify(pubKey);
	signature.update(data);

	// 验证签名是否正常
	return signature.verify(decryptBASE64(sign));
}

    public static void main(String[] args) throws Exception {
	String s = "wxt1987";
	String pubKey ="MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCJ7cCT/g3+ACVX9ZHlFGWaLgF2yShMP1TN+A2g2S6pa8oDJSa/b6ixy8Gx0VNOnUHDwZybHmn8OHa0BXhifoZUYmL7NzqhoeIkoid7koNdx6bG7KeXHf1t+hndS3By2se+0Q/Fb1nKfzsBKoFTuqI5dVoysF3EUTEkUGsFno3PZwIDAQAB";
	String pk = "MIICeAIBADANBgkqhkiG9w0BAQEFAASCAmIwggJeAgEAAoGBAMNSf6Ez8B7mm266zPhoVJo9C1k+5ywDjBWjKgD7yEsxMe4RZx2N0p7Bx/1sUfaSvC2mjoIbQIYUGP2K9/ycbN4Jzq3rx8zkidXSg7FS6NcFeFekS+8O70X5hp2e/qXHwzStpZHHy6EpSF3M8oRuJqIwk8iHgh0uDPE5iWyRiv0PAgMBAAECgYBx6hWBoNb0Tq5sIAoW/lIJOnz56dPNOaxjmiuPM0kXgXOLUx7+f45NBNtsk9YhpmaVgUQv4VD6YZJJnNkQvPJIb71joPYKVYiGUkzFPrUdmUtSPkuWcaGvx3TefmPibL9TjUAY3408Om6YO54oFIWt5y/sMrsdiFRa9Lu5bREwsQJBAO39sZ2aDQqPRieSPHwnyDHlunpSmQ2XzmjtssoTmwo6rAmG/q6lWp5SX4GZ06rW9BKl2Z0VA0ImzdmF+83lflMCQQDSGjxp3oiZI56BHYfIlFCs9f9omUW8KrQXUv5XJVw1Ba9qv8mpAJURrFdAfljYHa+BFWMMuRrqnR/fHjrzE1bVAkEA37g3SmbxUXbjxPkkILYo7Db/eFPDCtMktuCTzIBno1MKPB6JtVU9fU0D+MnI/3T3lbwQeCizmnDt20inL6NHfwJBAKRe8jTBbIyiWTcaK0i5AATQz+i9QNldb1dwDpuPFvxEXmBdex9E3VreQcSrFEa/sraCTON/TZePJYgg1m2lC6ECQQCuAZ8CRsDrEAGyFgVJRDfmoOfPZHHmKgb2OZXVpssPBT17vO3iP0VATbiaZ7yYymcppgBdL6ktcVChYTaCeojA";
	String sign = RSACoder.sign(s.getBytes(), pk);

	System.out.println(sign);
            //签名结果
            // sign = "II9OcjgKQZlJ1N7R+8qYU6IE098dBd+ABEIGpREXo6jVaM9+FpJA6cdZreyCJlMg5hPjc4TtL2XD+UWRBMJ+D9CnwMDZhyDYEkg0ToUs667IbvI0w87CH2ElTjquTlhjdvEkStTHbWP7+k3YMa0DwNFWiG3BsXnK45ptiKCRxv4="

	String m = "wxt1987";
	boolean ok = RSACoder.verify(m.getBytes(), pubKey, sign);
	System.out.println(ok);

python 用 pycrypto 做签名:

    from Crypto.PublicKey import RSA
    from Crypto.Signature import PKCS1_v1_5
    from Crypto.Hash import SHA
    from base64 import b64decode

    pk= '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'

    keyDER = b64decode(pk)
    rsakey = RSA.importKey(keyDER)
    signer = PKCS1_v1_5.new(rsakey) 
    data = "wxt1987"
    h = SHA.new(data)
    signature = signer.sign(h)
    
    
    #签名结果
    #signature = "wcS/9xJbHun4cY5p9WXMqINcJz6QVXYOI80fYbY1h06OP2tJke8bftT7eG1ZVAn4DrNkTMWhwNldXWg9PuTpjcvJu+I/A/YatMLybyCywAzPCYWO5pgzv3WzhP9ahY0h8B4NB9v+qLsslxQcsRbMM/winyouH9q73mmQh064nVU="

python 的签名错了,求赐予我愚笨的脑袋一些灵光

4382 次点击
所在节点    程序员
3 条回复
kinghui
2016-09-07 15:33:28 +08:00
摘要算法 Java 用的 MD5, Python 用的 SHA.
kinghui
2016-09-07 15:34:03 +08:00
<script src="https://gist.github.com/coldnight/3edd6f9b255cee20a25cc0b96ee7fe21.js"></script>
banksiae
2016-09-07 15:53:05 +08:00
@kinghui 十分感谢

这是一个专为移动设备优化的页面(即为了让你能够在 Google 搜索结果里秒开这个页面),如果你希望参与 V2EX 社区的讨论,你可以继续到 V2EX 上打开本讨论主题的完整版本。

https://www.v2ex.com/t/304559

V2EX 是创意工作者们的社区,是一个分享自己正在做的有趣事物、交流想法,可以遇见新朋友甚至新机会的地方。

V2EX is a community of developers, designers and creative people.

© 2021 V2EX