2

我正在尝试使用 phpseclib 解密字符串。

我的散列字符串是从名为jsencrypt的 javascript 库生成的。加密结果保存在数据库中。

之后我使用 phpseclib3 尝试使用以下方法解密字符串:

<?php
  require_once ("vendor/autoload.php"); // i used composer to install phpseclib

  use phpseclib3\Crypt\PublicKeyLoader;
  use phpseclib3\Crypt\RSA;

  $private_key = RSA::loadFormat('PKCS8', file_get_contents('key.pem'), $password = false);

  $key = PublicKeyLoader::load($private_key)->withHash('sha512/256')->withMGFHash('sha512/256');
  $hashed_string = base64_decode("...");
  echo $key->decrypt($hashed_string);

?>

但是当我运行代码时,出现以下错误:

Fatal error: Uncaught LengthException: Ciphertext representative too long in /vendor/phpseclib/phpseclib/phpseclib/Crypt/RSA/PrivateKey.php:389

我也试过openssl_decrypt用没有运气的方式解密字符串:

$privateKey = '-----BEGIN RSA PRIVATE KEY-----
PRIVATE KEY HERE...
-----END RSA PRIVATE KEY-----';

$encrypt_method = "AES-256-CBC";

$plain_text = openssl_decrypt('...', $encrypt_method, $privateKey, 0);

echo $plain_text;

有谁知道我可以如何解密散列字符串?

4

1 回答 1

2

您需要使用 PKCS1 填充。例如。

<?php
  require_once ("vendor/autoload.php"); // i used composer to install phpseclib

  use phpseclib3\Crypt\PublicKeyLoader;

  $key = PublicKeyLoader::load(file_get_contents('key.pem'))->withPadding(RSA::ENCRYPTION_PKCS1);

  $hashed_string = base64_decode("...");
  echo $key->decrypt($hashed_string);

?>

使用从http://travistidwell.com/jsencrypt/demo/生成的密钥:

$key = PublicKeyLoader::load('-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----');

$key = $key->withPadding(RSA::ENCRYPTION_PKCS1);

echo $key->decrypt(base64_decode('JXqzrAxLvkWUc97SiL/DUZpx+miLzig6Bzp0zwrrPItETUk2rundbBu0WSyexhK586Xr9WOJVx/L7jiCzMyM8RImFPLPOoQqdPbCLDX5cARldn6oEr+5i60M1hSoYMfy6fr97ARAw04KGXRU6UjwEl869ghqSNxJ6+YxwggSwZo='));
于 2021-12-08T04:49:55.420 回答