Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
miuye
/
standard
1
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: 034fa965f7
Branche Tagy
standard
/
crypto_test
/
pkg
/
handle
/
handle.go

handle.go 2.8 KB
História Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. package handle
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto"
    5. 

  5. 	"crypto/rand"
    6. 

  6. 	"crypto/rsa"
    7. 

  7. 	"crypto/x509"
    8. 

  8. 	"encoding/base64"
    9. 

  9. 	"encoding/pem"
    10. 

  10. 	"io/ioutil"
    11. 

  11. 	"errors"
    12. 

  12. )
    13. 

  13. 

  14. //私钥签名
    15. 

  15. func RSASign (data []byte,filename string)(string, error){
    16. 

  16. 	// 1、选择hash算法,对需要签名的数据进行hash运算
    17. 

  17. 	myhash := crypto.SHA256
    18. 

  18. 	hashInstance := myhash.New()
    19. 

  19. 	hashInstance.Write(data)
    20. 

  20. 	hashed := hashInstance.Sum(nil)
    21. 

  21. 	// 2、读取私钥文件,解析出私钥对象
    22. 

  22. 	privateKey, err := ReadParsePrivateKey(filename)
    23. 

  23. 	if err != nil {
    24. 

  24. 		return "", err
    25. 

  25. 	}
    26. 

  26. 	// 3、RSA数字签名(参数是随机数、私钥对象、哈希类型、签名文件的哈希串,生成bash64编码)
    27. 

  27. 	bytes, err := rsa.SignPKCS1v15(rand.Reader, privateKey, myhash, hashed)
    28. 

  28. 	if err != nil {
    29. 

  29. 		return "", err
    30. 

  30. 	}
    31. 

  31. 	return base64.StdEncoding.EncodeToString(bytes), nil
    32. 

  32. }
    33. 

  33. 

  34. //读取私钥文件,解析出私钥对象
    35. 

  35. func ReadParsePrivateKey(filename string) (*rsa.PrivateKey, error) {
    36. 

  36. 	// 1、读取私钥文件,获取私钥字节
    37. 

  37. 	privateKeyBytes, err := ioutil.ReadFile(filename)
    38. 

  38. 	if err != nil {
    39. 

  39. 		return nil, err
    40. 

  40. 	}
    41. 

  41. 	// 2、解码私钥字节,生成加密对象
    42. 

  42. 	block, _ := pem.Decode(privateKeyBytes)
    43. 

  43. 	if block == nil {
    44. 

  44. 		return nil, errors.New("私钥信息错误!")
    45. 

  45. 	}
    46. 

  46. 	// 3、解析DER编码的私钥,生成私钥对象
    47. 

  47. 	privateKey, err := x509.ParsePKCS1PrivateKey(block.Bytes)
    48. 

  48. 	if err != nil {
    49. 

  49. 		return nil, err
    50. 

  50. 	}
    51. 

  51. 	return privateKey, nil
    52. 

  52. }
    53. 

  53. 

  54. //公钥验证
    55. 

  55. func RSAVerify(data []byte, base64Sig, filename string) error {
    56. 

  56. 	// 1、对base64编码的签名内容进行解码,返回签名字节
    57. 

  57. 	bytes, err := base64.StdEncoding.DecodeString(base64Sig)
    58. 

  58. 	if err != nil {
    59. 

  59. 		return err
    60. 

  60. 	}
    61. 

  61. 	// 2、选择hash算法,对需要签名的数据进行hash运算
    62. 

  62. 	myhash := crypto.SHA256
    63. 

  63. 	hashInstance := myhash.New()
    64. 

  64. 	hashInstance.Write(data)
    65. 

  65. 	hashed := hashInstance.Sum(nil)
    66. 

  66. 	// 3、读取公钥文件,解析出公钥对象
    67. 

  67. 	publicKey, err := ReadParsePublicKey(filename)
    68. 

  68. 	if err != nil {
    69. 

  69. 		return err
    70. 

  70. 	}
    71. 

  71. 	// 4、RSA验证数字签名(参数是公钥对象、哈希类型、签名文件的哈希串、签名后的字节)
    72. 

  72. 	return rsa.VerifyPKCS1v15(publicKey, myhash, hashed, bytes)
    73. 

  73. }
    74. 

  74. 

  75. //读取公钥文件,解析公钥对象
    76. 

  76. func ReadParsePublicKey(filename string) (*rsa.PublicKey, error) {
    77. 

  77. 	// 1、读取公钥文件,获取公钥字节
    78. 

  78. 	publicKeyBytes, err := ioutil.ReadFile(filename)
    79. 

  79. 	if err != nil {
    80. 

  80. 		return nil, err
    81. 

  81. 	}
    82. 

  82. 	// 2、解码公钥字节,生成加密对象
    83. 

  83. 	block, _ := pem.Decode(publicKeyBytes)
    84. 

  84. 	if block == nil {
    85. 

  85. 		return nil, errors.New("公钥信息错误!")
    86. 

  86. 	}
    87. 

  87. 	// 3、解析DER编码的公钥,生成公钥接口
    88. 

  88. 	publicKeyInterface, err := x509.ParsePKIXPublicKey(block.Bytes)
    89. 

  89. 	if err != nil {
    90. 

  90. 		return nil, err
    91. 

  91. 	}
    92. 

  92. 	// 4、公钥接口转型成公钥对象
    93. 

  93. 	publicKey := publicKeyInterface.(*rsa.PublicKey)
    94. 

  94. 	return publicKey, nil
    95. 

  95. }
    96.