使用公共密钥加密邮件:BER解码错误

时间:2020-01-24 10:15:22

标签: c++ c++11 go cryptography crypto++

我对使用公共密钥加密消息有疑问。 我想用包含在字符串中的公共密钥RSA-4096加密字符串(让我们说"test")。 让我们说:

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm9GgFeJ3DhazIHCVHtNa Vnu38KBdxViOswyXcJEwQ8yHlQOL6e5He1dxx5uqvnKLR7+gAMzZBXEQlOCrSYi6 nREXGxE4WFTjd+PqLh5bA9DIO8vbsPIsG66zYmFdztmFGn2dl0EUvUiIjGUqwkJA E5P8ebjsNOdomX1763p8k50AHhIzaUbD+IWAVDEzbew7efOPt5Wj6C5a1kwkv4bX +viqoC7mFNjQziI+Sg/8yjnT++Zv5fo+JWE6pyXwZCabwgsBYq9Cv2iMC4ZXAFVo GLYtixok/7rMY6NIe+MIUafrEVbgG8K0YT3U1Jn1knqYV++qtnaqqmcvtoGC1SE6 s8pwiHGRgh+ZG3EwuDZVqJadBdl/CGDz8WnfPs8sSANT1kCJYq3ogp12Fx0axENF vklCM5jLcm1v6/kyqPYk0fVArH6RT7e5QZCWZXAoxMz1bZe97CZ9+PQGbGLyYrQO CqBeWkVUEI/NeBoQdifrgok/Ku43LMUrxbTByBSEoXVn4d+3jgN0BS1CmxQslJml kUPv87OLjzzggQW8lRs3owKQF9TRs9fYljuJSt3f2osYaPhedYx9XdkJNhgbH+AF 47kocpxg6olpOtRaM5cW/0zWSGtVHXfblDO+XFNzddSKLwFyL2Jx8WIfZ6tXa/MP /aLOyzKX/WADqAEqlHbs3SMCAwEAAQ== -----END PUBLIC KEY-----

为此,我尝试在C ++(https://www.cryptopp.com/wiki/Keys_and_formats)中使用CryptoPP库,但是当我尝试读取和解码我的公钥时,出现以下错误:BER decode error。 这是我正在使用的完整源代码:

#include <string>
#include <iomanip> 
#include <iostream>
#include <exception>
#include <fstream>

#include <cryptopp/queue.h>
using CryptoPP::ByteQueue;

#include <cryptopp/filters.h>
using CryptoPP::Redirector;

#include <cryptopp/files.h>
using CryptoPP::FileSource;
using CryptoPP::FileSink;

#include <cryptopp/cryptlib.h>
using CryptoPP::PrivateKey;
using CryptoPP::PublicKey;
using CryptoPP::BufferedTransformation;

#include <cryptopp/sha.h>
#include <cryptopp/rsa.h>
using CryptoPP::RSA;

#include <cryptopp/base64.h>
using CryptoPP::Base64Encoder;
using CryptoPP::Base64Decoder;

#include <cryptopp/osrng.h>
using CryptoPP::AutoSeededRandomPool;

using namespace std;

int main(int argc, char** argv) {

    ByteQueue queue;

    string RSA_PUBLIC_KEY ="-----BEGIN PUBLIC KEY-----MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm9GgFeJ3DhazIHCVHtNaVnu38KBdxViOswyXcJEwQ8yHlQOL6e5He1dxx5uqvnKLR7+gAMzZBXEQlOCrSYi6nREXGxE4WFTjd+PqLh5bA9DIO8vbsPIsG66zYmFdztmFGn2dl0EUvUiIjGUqwkJAE5P8ebjsNOdomX1763p8k50AHhIzaUbD+IWAVDEzbew7efOPt5Wj6C5a1kwkv4bX+viqoC7mFNjQziI+Sg/8yjnT++Zv5fo+JWE6pyXwZCabwgsBYq9Cv2iMC4ZXAFVoGLYtixok/7rMY6NIe+MIUafrEVbgG8K0YT3U1Jn1knqYV++qtnaqqmcvtoGC1SE6s8pwiHGRgh+ZG3EwuDZVqJadBdl/CGDz8WnfPs8sSANT1kCJYq3ogp12Fx0axENFvklCM5jLcm1v6/kyqPYk0fVArH6RT7e5QZCWZXAoxMz1bZe97CZ9+PQGbGLyYrQOCqBeWkVUEI/NeBoQdifrgok/Ku43LMUrxbTByBSEoXVn4d+3jgN0BS1CmxQslJmlkUPv87OLjzzggQW8lRs3owKQF9TRs9fYljuJSt3f2osYaPhedYx9XdkJNhgbH+AF47kocpxg6olpOtRaM5cW/0zWSGtVHXfblDO+XFNzddSKLwFyL2Jx8WIfZ6tXa/MP/aLOyzKX/WADqAEqlHbs3SMCAwEAAQ==-----END PUBLIC KEY-----";
    static string HEADER = "-----BEGIN PUBLIC KEY-----";
    static string FOOTER = "-----END PUBLIC KEY-----";

    size_t pos1 = RSA_PUBLIC_KEY.find(HEADER);
    if(pos1 == string::npos) throw runtime_error("PEM header not found");

    size_t pos2 = RSA_PUBLIC_KEY.find(FOOTER, pos1+1);
    if(pos2 == string::npos) throw runtime_error("PEM footer not found");

    // Start position and length
    pos1 = pos1 + HEADER.length();
    pos2 = pos2 - pos1;

    string keystr = RSA_PUBLIC_KEY.substr(pos1, pos2);    
    /*Base64Encoder decoder;
    decoder.Attach(new Redirector(queue));*/
    queue.Put((const byte*)keystr.data(), keystr.length());
    queue.MessageEnd();

    cout << keystr << endl;

    try {

        RSA::PublicKey public_key;
        public_key.BERDecodePublicKey(queue, false /*paramsPresent*/, queue.MaxRetrievable());

        if(queue.IsEmpty()) {
            cerr << "The queue is empty...";
        }

        AutoSeededRandomPool prng;
        bool valid = public_key.Validate(prng, 3);
        if(!valid) cerr << "RSA public key is not valid" << endl;

        cout << "N:" << public_key.GetModulus() << endl;
        cout << "E:" << public_key.GetPublicExponent() << endl;

    } catch (exception& e) {

        printf( "Caught exception: %s\n", e.what() );
        exit (1);
    } 
}

在此先感谢那些可以帮助我理解为什么未正确读取公共密钥的人。 对于那些说golang的人,我基本上是在尝试重现以下功能:

func WriteEncryptedWithPublicKeyInformation(filename string, information string, publicKey string) error {

    f, err := os.Create(filename)

    block, _ := pem.Decode([]byte(publicKey))
    if block == nil {
        return errors.New("Failed to parse PEM block containing the public key")
    }

    pub, err := x509.ParsePKIXPublicKey(block.Bytes)
    if err != nil {
        return errors.New("Failed to parse DER encoded public key: " + err.Error())
    }

    key := pub.(*(rsa.PublicKey))
    ciphertext, err := rsa.EncryptOAEP(sha256.New(), rand.Reader, key, []byte(information), nil)
    if err != nil {
        return err
    }

    _, err = f.WriteString(b64.StdEncoding.EncodeToString(ciphertext))
    if err != nil {
        return err

    }
    f.Close()
    return nil
}

filename是我的输出文件,information是我要加密的字符串,publicKey是包含公钥的字符串。

2 个答案:

答案 0 :(得分:1)

您的程序对base64进行解码的方式不正确,并且函数RSAFunction::BERDecodePublicKey根据参考

BERDecodePublicKey()解码subjectPublicKeyInfo的subjectPublicKey部分,而没有BIT STRING标头。

您应该使用X509PublicKey::BERDecode函数,因为类RSA::PublicKey继承自X509PublicKey

尝试该程序,它应该可以工作。

#include <string>
#include <iomanip>
#include <iostream>
#include <exception>
#include <fstream>


#include <cryptopp/queue.h>
using CryptoPP::ByteQueue;

#include <cryptopp/filters.h>
using CryptoPP::Redirector;

#include <cryptopp/files.h>
using CryptoPP::FileSource;
using CryptoPP::FileSink;

#include <cryptopp/cryptlib.h>
using CryptoPP::PrivateKey;
using CryptoPP::PublicKey;
using CryptoPP::BufferedTransformation;

#include <cryptopp/sha.h>
#include <cryptopp/rsa.h>
#include <cryptopp/asn.h>

using CryptoPP::RSA;

#include <cryptopp/base64.h>
using CryptoPP::Base64Encoder;
using CryptoPP::Base64Decoder;

#include <cryptopp/osrng.h>
using CryptoPP::AutoSeededRandomPool;

using namespace std;

int main() {

    ByteQueue queue;

    string RSA_PUBLIC_KEY ="-----BEGIN PUBLIC KEY-----MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm9GgFeJ3DhazIHCVHtNaVnu38KBdxViOswyXcJEwQ8yHlQOL6e5He1dxx5uqvnKLR7+gAMzZBXEQlOCrSYi6nREXGxE4WFTjd+PqLh5bA9DIO8vbsPIsG66zYmFdztmFGn2dl0EUvUiIjGUqwkJAE5P8ebjsNOdomX1763p8k50AHhIzaUbD+IWAVDEzbew7efOPt5Wj6C5a1kwkv4bX+viqoC7mFNjQziI+Sg/8yjnT++Zv5fo+JWE6pyXwZCabwgsBYq9Cv2iMC4ZXAFVoGLYtixok/7rMY6NIe+MIUafrEVbgG8K0YT3U1Jn1knqYV++qtnaqqmcvtoGC1SE6s8pwiHGRgh+ZG3EwuDZVqJadBdl/CGDz8WnfPs8sSANT1kCJYq3ogp12Fx0axENFvklCM5jLcm1v6/kyqPYk0fVArH6RT7e5QZCWZXAoxMz1bZe97CZ9+PQGbGLyYrQOCqBeWkVUEI/NeBoQdifrgok/Ku43LMUrxbTByBSEoXVn4d+3jgN0BS1CmxQslJmlkUPv87OLjzzggQW8lRs3owKQF9TRs9fYljuJSt3f2osYaPhedYx9XdkJNhgbH+AF47kocpxg6olpOtRaM5cW/0zWSGtVHXfblDO+XFNzddSKLwFyL2Jx8WIfZ6tXa/MP/aLOyzKX/WADqAEqlHbs3SMCAwEAAQ==-----END PUBLIC KEY-----";
    static string HEADER = "-----BEGIN PUBLIC KEY-----";
    static string FOOTER = "-----END PUBLIC KEY-----";

    size_t pos1 = RSA_PUBLIC_KEY.find(HEADER);
    if(pos1 == string::npos) throw runtime_error("PEM header not found");

    size_t pos2 = RSA_PUBLIC_KEY.find(FOOTER, pos1+1);
    if(pos2 == string::npos) throw runtime_error("PEM footer not found");

    // Start position and length
    pos1 = pos1 + HEADER.length();
    pos2 = pos2 - pos1;

    string keystr = RSA_PUBLIC_KEY.substr(pos1, pos2);

    CryptoPP::StringSource ss{keystr.c_str(), true};

    Base64Decoder decoder;
    decoder.Attach(new Redirector(queue));
    ss.TransferTo(decoder);
    decoder.MessageEnd();

    cout << keystr << endl;

    try {

        RSA::PublicKey public_key;

        if(queue.IsEmpty()) {
            cerr << "The queue is empty...";
        }

        public_key.BERDecode(queue);

        AutoSeededRandomPool prng;
        bool valid = public_key.Validate(prng, 3);
        if(!valid) cerr << "RSA public key is not valid" << endl;

        cout << "N:" << public_key.GetModulus() << endl;
        cout << "E:" << public_key.GetPublicExponent() << endl;

    } catch (exception& e) {

        printf( "Caught exception: %s\n", e.what() );
        exit (1);
    }
}

答案 1 :(得分:0)

我看不到您在中间解码base 64。 BER是一种二进制格式,您必须首先将其转换为二进制以读取它。

相关问题
最新问题