英文:
decrypt with public key
问题
如何在golang中解密使用私钥签名的消息?
$ openssl genrsa -out ./server/server.key
生成2048位长模数的RSA私钥
..................+++
.............................................+++
$ openssl rsa -in ./server/server.key -pubout -out ./client/client.pub
写入RSA密钥
$ echo "secret" | openssl rsautl -inkey ./server/server.key -sign > ./secret
# 使用公钥解密
$ openssl rsautl -inkey ./client/client.pub -pubin -in ./secret
secret
英文:
How can I decrypt a message signed with a private key in golang?
$ openssl genrsa -out ./server/server.key
Generating RSA private key, 2048 bit long modulus
..................+++
.............................................+++
$ openssl rsa -in ./server/server.key -pubout -out ./client/client.pub
writing RSA key
$ echo "secret" | openssl rsautl -inkey ./server/server.key -sign > ./secret
# decrypt with public key
$ openssl rsautl -inkey ./client/client.pub -pubin -in ./secret
secret
答案1
得分: 5
我完全理解你的问题,它是关于openssl的RSA_public_decrypt方法的:https://www.openssl.org/docs/man1.1.0/crypto/RSA_public_decrypt.html
我没有找到任何纯Go语言的实现。这是一个使用cgo的实现:https://github.com/dgkang/rsa/blob/master/rsa/rsa.go
更新,对我有用的代码如下:
func RSA_public_decrypt(pubKey *rsa.PublicKey, data []byte) []byte {
c := new(big.Int)
m := new(big.Int)
m.SetBytes(data)
e := big.NewInt(int64(pubKey.E))
c.Exp(m, e, pubKey.N)
out := c.Bytes()
skip := 0
for i := 2; i < len(out); i++ {
if i+1 >= len(out) {
break
}
if out[i] == 0xff && out[i+1] == 0 {
skip = i + 2
break
}
}
return out[skip:]
}
以上是翻译好的内容,请确认是否满意。
英文:
I fully understood my question, it was about RSA_public_decrypt method of openssl: https://www.openssl.org/docs/man1.1.0/crypto/RSA_public_decrypt.html
I did not found any pure-golang realization. Realization with cgo: https://github.com/dgkang/rsa/blob/master/rsa/rsa.go
UPD, work for me:
func RSA_public_decrypt(pubKey *rsa.PublicKey, data []byte) []byte {
c := new(big.Int)
m := new(big.Int)
m.SetBytes(data)
e := big.NewInt(int64(pubKey.E))
c.Exp(m, e, pubKey.N)
out := c.Bytes()
skip := 0
for i := 2; i < len(out); i++ {
if i+1 >= len(out) {
break
}
if out[i] == 0xff && out[i+1] == 0 {
skip = i + 2
break
}
}
return out[skip:]
}
答案2
得分: 2
我认为这里有一些误解。openssl rsautl -sign并不是用来加密数据的,它生成的是一个签名。你的secret文件中的内容并不是加密的"secret",而是使用私钥对文本"secret"进行签名的结果。
使用公钥,你可以使用-verify选项来验证签名,但这似乎不是你想要做的。听起来你想要的是加密/解密,而不是签名/验证。
你可以使用rsautl的-encrypt和-decrypt选项。加密使用公钥进行,解密使用私钥进行。
请记住,使用RSA加密的数据量是有限制的。通常情况下,你会使用RSA来保护对称密钥,并使用对称密钥进行大量的加密和解密操作。
英文:
I think there is a bit of a misunderstanding here. openssl rsautl -sign does not encrypt the data. It produces a signature. The contents in your secret file is not "secret", encrypted. Rather, it is a signature of the text "secret" that is signed with the private key.
Using the public key, you can -verify the signature, but this isn't really what you are trying to do. It sounds like you want encrypt/decrypt, not sign/verify.
Use the -encrypt and -decrypt options of rsautl. Encryption happens with the public key, and decryption happens with the private key.
Keep in mind there are limits to the amount of data you can encrypt with RSA. Typically, you would protect a symmetric key with RSA, and use the symmetric key to do bulk encryption and decryption.
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论