我在C#中有一些加密代码,我必须在C ++中重写 我在这里看到了几个类似的问题,但不知怎的,我仍然无法弄清楚这一点。 使用相同的密码对相同的字符串进行编码会产生不同的结果。
C#代码
byte[] TestEncrypt(string data)
{
byte[] plainText = System.Text.Encoding.ASCII.GetBytes(data);
TripleDES des3 = new System.Security.Cryptography.TripleDESCryptoServiceProvider();
des3.Mode = CipherMode.CBC;
des3.Key = System.Text.Encoding.ASCII.GetBytes("12656b2e4ba2f22e");
des3.IV = System.Text.Encoding.ASCII.GetBytes("d566gdbc");
ICryptoTransform transform = des3.CreateEncryptor();
MemoryStream memStreamEncryptedData = new MemoryStream();
CryptoStream encStream = new CryptoStream(memStreamEncryptedData,
transform, CryptoStreamMode.Write);
encStream.Write(plainText, 0, plainText.Length);
encStream.FlushFinalBlock();
encStream.Close();
byte[] cipherText = memStreamEncryptedData.ToArray();
return cipherText;
}
结果255,142,22,151,93,255,156,10,174,10,250,92,144,0,60,142 编辑:添加了新的C ++版本
string Test3DES()
{
string key = "12656b2e4ba2f22e";
HCRYPTPROV hCryptProv = NULL;
HCRYPTHASH hHash = NULL;
HCRYPTKEY hCryptKey = NULL;
char pIV[] = "d566gdbc"; //simple test IV for 3DES
CryptAcquireContext(&hCryptProv, NULL, MS_ENHANCED_PROV, PROV_RSA_FULL,CRYPT_VERIFYCONTEXT);
PlainTextKeyBlob keyBlob ={0};
keyBlob.hdr.bType = PLAINTEXTKEYBLOB;
keyBlob.hdr.bVersion = CUR_BLOB_VERSION;
keyBlob.hdr.reserved = 0;
keyBlob.hdr.aiKeyAlg = CALG_3DES_112;
keyBlob.cbKeySize = key.size();
memcpy(keyBlob.key, key.c_str(), key.size());
DWORD dwSizeBlob = sizeof(BLOBHEADER)+sizeof(DWORD)+key.size();
ret = CryptImportKey( hCryptProv, (const BYTE*)&keyBlob, dwSizeBlob, 0, CRYPT_EXPORTABLE, &hCryptKey );
DWORD dwMode = CRYPT_MODE_CBC;
CryptSetKeyParam(hCryptKey, KP_MODE, (BYTE*)&dwMode, 0);
CryptSetKeyParam(hCryptKey, KP_IV,(const BYTE*) pIV, 0) ;
DWORD dwFilled = 0;
BOOL ret = CryptEncrypt( hCryptKey, NULL, TRUE, 0, (LPBYTE)cipherText.c_str(), &dwFilled, (DWORD)str.size());
cipherText.resize(dwFilled);
if( hCryptKey ) CryptDestroyKey( hCryptKey );
if( hHash ) CryptDestroyHash( hHash );
if( hCryptProv ) CryptReleaseContext( hCryptProv, 0 );
return cipherText;
}
结果167,177,201,56,123,240,169,174
旧C ++版
C ++
string Test3DES()
{
string key = "12656b2e4ba2f22e";
HCRYPTPROV hCryptProv = NULL;
HCRYPTHASH hHash = NULL;
HCRYPTKEY hCryptKey = NULL;
char pIV[] = "d566gdbc"; //simple test IV for 3DES
CryptAcquireContext(&hCryptProv, NULL, MS_ENHANCED_PROV, PROV_RSA_FULL, CRYPT_VERIFYCONTEXT);
CryptCreateHash( hCryptProv, CALG_MD5, NULL, 0, &hHash );
CryptHashData( hHash, (LPBYTE)key.c_str(), (DWORD)key.size(), 0 );
DWORD dwMode = CRYPT_MODE_CBC;
CryptDeriveKey(hCryptProv, CALG_3DES, hHash, 0, &hCryptKey);
CryptSetKeyParam(hCryptKey, KP_MODE, (BYTE*)&dwMode, 0);
CryptSetKeyParam(hCryptKey, KP_IV,(const BYTE*) pIV, 0) ;
DWORD dwFilled = 0;
BOOL ret = CryptEncrypt( hCryptKey, NULL, TRUE, 0, (LPBYTE)cipherText.c_str(), &dwFilled, (DWORD)str.size());
cipherText.resize(dwFilled);
if( hCryptKey ) CryptDestroyKey( hCryptKey );
if( hHash ) CryptDestroyHash( hHash );
if( hCryptProv ) CryptReleaseContext( hCryptProv, 0 );
return cipherText;
}
答案 0 :(得分:8)
我从您的代码开始设置了一些示例项目。你没有包含所有东西,所以我不得不添加一些东西。当我编译和测试时,我在C ++和C#中得到了相同的答案。我怀疑问题可能与您指定cipherText缓冲区的方式有关?这是我的所有测试代码,所以你应该很容易设置一些示例项目,看看你是否得到了相同的结果,那么也许你可以从那里找到它:
C#
using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using System.Security.Cryptography;
using System.IO;
namespace _3dtest
{
class Program
{
static byte[] TestEncrypt(string data)
{
byte[] plainText = System.Text.Encoding.ASCII.GetBytes(data);
TripleDES des3 = new System.Security.Cryptography.TripleDESCryptoServiceProvider();
des3.Mode = CipherMode.CBC;
des3.Key = System.Text.Encoding.ASCII.GetBytes("12656b2e4ba2f22e");
des3.IV = System.Text.Encoding.ASCII.GetBytes("d566gdbc");
ICryptoTransform transform = des3.CreateEncryptor();
MemoryStream memStreamEncryptedData = new MemoryStream();
CryptoStream encStream = new CryptoStream(memStreamEncryptedData,
transform, CryptoStreamMode.Write);
encStream.Write(plainText, 0, plainText.Length);
encStream.FlushFinalBlock();
encStream.Close();
byte[] cipherText = memStreamEncryptedData.ToArray();
return cipherText;
}
static void Main(string[] args)
{
var info = TestEncrypt("password");
foreach (byte b in info)
{
Console.Write(b.ToString());
Console.Write(", ");
}
Console.WriteLine();
}
}
}
C ++
#include "stdafx.h"
#include <Windows.h>
#include <WinCrypt.h>
#include <cassert>
#include <vector>
#include <string>
#include <algorithm>
#include <iostream>
using namespace std;
struct PlainTextKeyBlob {
BLOBHEADER hdr;
DWORD cbKeySize;
BYTE key[16];
};
std::wstring LastError(DWORD lasterr)
{
LPVOID lpMsgBuf;
DWORD dw = GetLastError();
FormatMessage(
FORMAT_MESSAGE_ALLOCATE_BUFFER |
FORMAT_MESSAGE_FROM_SYSTEM |
FORMAT_MESSAGE_IGNORE_INSERTS,
NULL,
dw,
MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT),
(LPTSTR) &lpMsgBuf,
0, NULL );
return (wchar_t*)lpMsgBuf; // Leaking, don't care
}
std::vector<BYTE> Test3DES(const std::string& passwd)
{
string key = "12656b2e4ba2f22e";
unsigned char pIV[] = "d566gdbc"; //simple test IV for 3DES
HCRYPTPROV hCryptProv = NULL;
HCRYPTHASH hHash = NULL;
HCRYPTKEY hCryptKey = NULL;
DWORD ret = CryptAcquireContext(&hCryptProv, NULL, MS_ENHANCED_PROV, PROV_RSA_FULL,CRYPT_VERIFYCONTEXT);
if( ret == 0 ) std::wcout << LastError(GetLastError()) << std::endl;
PlainTextKeyBlob keyBlob ={0};
keyBlob.hdr.bType = PLAINTEXTKEYBLOB;
keyBlob.hdr.bVersion = CUR_BLOB_VERSION;
keyBlob.hdr.reserved = 0;
keyBlob.hdr.aiKeyAlg = CALG_3DES_112;
keyBlob.cbKeySize = key.size();
memcpy(keyBlob.key, key.c_str(), key.size());
DWORD dwSizeBlob = sizeof(BLOBHEADER)+sizeof(DWORD)+key.size();
ret = CryptImportKey( hCryptProv, (const BYTE*)&keyBlob, dwSizeBlob, 0, CRYPT_EXPORTABLE, &hCryptKey );
if( ret == 0 ) std::wcout << LastError(GetLastError()) << std::endl;
DWORD dwMode = CRYPT_MODE_CBC;
CryptSetKeyParam(hCryptKey, KP_MODE, (BYTE*)&dwMode, 0);
CryptSetKeyParam(hCryptKey, KP_IV,(const BYTE*) pIV, 0) ;
std::vector< BYTE > buffer( 1024 );
memcpy( &buffer[0], passwd.c_str(), passwd.size() );
DWORD dwFilled = passwd.size();
ret = CryptEncrypt( hCryptKey, NULL, TRUE, 0, (LPBYTE)&buffer[0], &dwFilled, (DWORD)buffer.size());
if( ret == 0 ) std::wcout << LastError(GetLastError()) << std::endl;
buffer.resize(dwFilled);
if( hCryptKey ) CryptDestroyKey( hCryptKey );
if( hHash ) CryptDestroyHash( hHash );
if( hCryptProv ) CryptReleaseContext( hCryptProv, 0 );
return buffer;
}
int _tmain(int argc, _TCHAR* argv[])
{
auto result = Test3DES("password");
std::for_each( begin(result), end(result), [](BYTE b) {
cout << to_string( (_ULonglong)b ) << " ";
});
cout << std::endl;
return 0;
}
答案 1 :(得分:1)
所以你的密钥System.Text.Encoding.ASCII.GetBytes("5656b2e4ba2f22e")是15个字节,这不是你需要16个字节或24个字节的Triple DES的有效密钥长度。我的猜测是,这两个实现正在补偿他们想要以不同方式使用更大密钥的事实。
<强> P.S。
将ascii常量字符串的原始字节值用于Key和IV真的很奇怪。在您的示例中,Key和IV是字符串中的十六进制数字。看起来它们应该是你想要的字节长度的两倍,这样每两个字符代表一个完整范围的可能字节,然后使用十六进制转换器转换, How can I convert a hex string to a byte array?,C++ convert string to hexadecimal and vice versa
始终具有十六进制表示键的安全含义,即您只获得算法的ASCII字节,就是您正在将键空间减少一个平方根!
答案 2 :(得分:0)
您的C ++是使用宽/ Unicode字符串编译的 - 因此您使用对应于字符串"5656b2e4ba2f22e"的宽/ Unicode字节(可能是30个字节),而在C#中,您将相同的字符串转换为字节使用ASCII编码,因此您获得相同字符串的ASCII字节(15个字节)。
尝试在C#中使用Unicode编码,或者更好地将密钥声明为字节数组而不是字符串。
修改
错误的答案 - string每个字符总是8位,所以问题不在于编码的差异。
答案 3 :(得分:0)
请记住,DES密钥是自我奇偶校验密钥。这意味着每个字节的一位用于检查您的密钥是否正确。也许你有这些错误?您应该能够使用DES维基百科页面找到它。
此外,您需要至少两个完整(64位)密钥才能使用TDES。