登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
0 Star 0 Fork 3

北京小程科技有限公司/gorsa

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
克隆/下载
rsa_ext.go 7.06 KB
一键复制 编辑 原始数据 按行查看 历史
wenzhenxi 提交于 2018-02-15 10:00 . 提交初始化
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356
package gorsa



import (

	"bytes"

	"crypto/rand"

	"crypto/rsa"

	"crypto/x509"

	"encoding/pem"

	"errors"

	"io"

	"io/ioutil"

	"math/big"

)



var (

	ErrDataToLarge     = errors.New("message too long for RSA public key size")

	ErrDataLen         = errors.New("data length error")

	ErrDataBroken      = errors.New("data broken, first byte is not zero")

	ErrKeyPairDismatch = errors.New("data is not encrypted by the private key")

	ErrDecryption      = errors.New("decryption error")

	ErrPublicKey       = errors.New("get public key error")

	ErrPrivateKey      = errors.New("get private key error")

)



// 设置公钥

func getPubKey(publickey []byte) (*rsa.PublicKey, error) {

	// decode public key

	block, _ := pem.Decode(publickey)

	if block == nil {

		return nil, errors.New("get public key error")

	}

	// x509 parse public key

	pub, err := x509.ParsePKIXPublicKey(block.Bytes)

	if err != nil {

		return nil, err

	}

	return pub.(*rsa.PublicKey), err

}



// 设置私钥

func getPriKey(privatekey []byte) (*rsa.PrivateKey, error) {

	block, _ := pem.Decode(privatekey)

	if block == nil {

		return nil, errors.New("get private key error")

	}

	pri, err := x509.ParsePKCS1PrivateKey(block.Bytes)

	if err == nil {

		return pri, nil

	}

	pri2, err := x509.ParsePKCS8PrivateKey(block.Bytes)

	if err != nil {

		return nil, err

	}

	return pri2.(*rsa.PrivateKey), nil

}



// 公钥加密或解密byte

func pubKeyByte(pub *rsa.PublicKey, in []byte, isEncrytp bool) ([]byte, error) {

	k := (pub.N.BitLen() + 7) / 8

	if isEncrytp {

		k = k - 11

	}

	if len(in) <= k {

		if isEncrytp {

			return rsa.EncryptPKCS1v15(rand.Reader, pub, in)

		} else {

			return pubKeyDecrypt(pub, in)

		}

	} else {

		iv := make([]byte, k)

		out := bytes.NewBuffer(iv)

		if err := pubKeyIO(pub, bytes.NewReader(in), out, isEncrytp); err != nil {

			return nil, err

		}

		return ioutil.ReadAll(out)

	}

}



// 私钥加密或解密byte

func priKeyByte(pri *rsa.PrivateKey, in []byte, isEncrytp bool) ([]byte, error) {

	k := (pri.N.BitLen() + 7) / 8

	if isEncrytp {

		k = k - 11

	}

	if len(in) <= k {

		if isEncrytp {

			return priKeyEncrypt(rand.Reader, pri, in)

		} else {

			return rsa.DecryptPKCS1v15(rand.Reader, pri, in)

		}

	} else {

		iv := make([]byte, k)

		out := bytes.NewBuffer(iv)

		if err := priKeyIO(pri, bytes.NewReader(in), out, isEncrytp); err != nil {

			return nil, err

		}

		return ioutil.ReadAll(out)

	}

}



// 公钥加密或解密Reader

func pubKeyIO(pub *rsa.PublicKey, in io.Reader, out io.Writer, isEncrytp bool) (err error) {

	k := (pub.N.BitLen() + 7) / 8

	if isEncrytp {

		k = k - 11

	}

	buf := make([]byte, k)

	var b []byte

	size := 0

	for {

		size, err = in.Read(buf)

		if err != nil {

			if err == io.EOF {

				return nil

			}

			return err

		}

		if size < k {

			b = buf[:size]

		} else {

			b = buf

		}

		if isEncrytp {

			b, err = rsa.EncryptPKCS1v15(rand.Reader, pub, b)

		} else {

			b, err = pubKeyDecrypt(pub, b)

		}

		if err != nil {

			return err

		}

		if _, err = out.Write(b); err != nil {

			return err

		}

	}

	return nil

}



// 私钥加密或解密Reader

func priKeyIO(pri *rsa.PrivateKey, r io.Reader, w io.Writer, isEncrytp bool) (err error) {

	k := (pri.N.BitLen() + 7) / 8

	if isEncrytp {

		k = k - 11

	}

	buf := make([]byte, k)

	var b []byte

	size := 0

	for {

		size, err = r.Read(buf)

		if err != nil {

			if err == io.EOF {

				return nil

			}

			return err

		}

		if size < k {

			b = buf[:size]

		} else {

			b = buf

		}

		if isEncrytp {

			b, err = priKeyEncrypt(rand.Reader, pri, b)

		} else {

			b, err = rsa.DecryptPKCS1v15(rand.Reader, pri, b)

		}

		if err != nil {

			return err

		}

		if _, err = w.Write(b); err != nil {

			return err

		}

	}

	return nil

}



// 公钥解密

func pubKeyDecrypt(pub *rsa.PublicKey, data []byte) ([]byte, error) {

	k := (pub.N.BitLen() + 7) / 8

	if k != len(data) {

		return nil, ErrDataLen

	}

	m := new(big.Int).SetBytes(data)

	if m.Cmp(pub.N) > 0 {

		return nil, ErrDataToLarge

	}

	m.Exp(m, big.NewInt(int64(pub.E)), pub.N)

	d := leftPad(m.Bytes(), k)

	if d[0] != 0 {

		return nil, ErrDataBroken

	}

	if d[1] != 0 && d[1] != 1 {

		return nil, ErrKeyPairDismatch

	}

	var i = 2

	for ; i < len(d); i++ {

		if d[i] == 0 {

			break

		}

	}

	i++

	if i == len(d) {

		return nil, nil

	}

	return d[i:], nil

}



// 私钥加密

func priKeyEncrypt(rand io.Reader, priv *rsa.PrivateKey, hashed []byte) ([]byte, error) {

	tLen := len(hashed)

	k := (priv.N.BitLen() + 7) / 8

	if k < tLen+11 {

		return nil, ErrDataLen

	}

	em := make([]byte, k)

	em[1] = 1

	for i := 2; i < k-tLen-1; i++ {

		em[i] = 0xff

	}

	copy(em[k-tLen:k], hashed)

	m := new(big.Int).SetBytes(em)

	c, err := decrypt(rand, priv, m)

	if err != nil {

		return nil, err

	}

	copyWithLeftPad(em, c.Bytes())

	return em, nil

}



// 从crypto/rsa复制

var bigZero = big.NewInt(0)

var bigOne = big.NewInt(1)



// 从crypto/rsa复制

func encrypt(c *big.Int, pub *rsa.PublicKey, m *big.Int) *big.Int {

	e := big.NewInt(int64(pub.E))

	c.Exp(m, e, pub.N)

	return c

}



// 从crypto/rsa复制

func decrypt(random io.Reader, priv *rsa.PrivateKey, c *big.Int) (m *big.Int, err error) {

	if c.Cmp(priv.N) > 0 {

		err = ErrDecryption

		return

	}

	var ir *big.Int

	if random != nil {

		var r *big.Int



		for {

			r, err = rand.Int(random, priv.N)

			if err != nil {

				return

			}

			if r.Cmp(bigZero) == 0 {

				r = bigOne

			}

			var ok bool

			ir, ok = modInverse(r, priv.N)

			if ok {

				break

			}

		}

		bigE := big.NewInt(int64(priv.E))

		rpowe := new(big.Int).Exp(r, bigE, priv.N)

		cCopy := new(big.Int).Set(c)

		cCopy.Mul(cCopy, rpowe)

		cCopy.Mod(cCopy, priv.N)

		c = cCopy

	}

	if priv.Precomputed.Dp == nil {

		m = new(big.Int).Exp(c, priv.D, priv.N)

	} else {

		m = new(big.Int).Exp(c, priv.Precomputed.Dp, priv.Primes[0])

		m2 := new(big.Int).Exp(c, priv.Precomputed.Dq, priv.Primes[1])

		m.Sub(m, m2)

		if m.Sign() < 0 {

			m.Add(m, priv.Primes[0])

		}

		m.Mul(m, priv.Precomputed.Qinv)

		m.Mod(m, priv.Primes[0])

		m.Mul(m, priv.Primes[1])

		m.Add(m, m2)



		for i, values := range priv.Precomputed.CRTValues {

			prime := priv.Primes[2+i]

			m2.Exp(c, values.Exp, prime)

			m2.Sub(m2, m)

			m2.Mul(m2, values.Coeff)

			m2.Mod(m2, prime)

			if m2.Sign() < 0 {

				m2.Add(m2, prime)

			}

			m2.Mul(m2, values.R)

			m.Add(m, m2)

		}

	}

	if ir != nil {

		m.Mul(m, ir)

		m.Mod(m, priv.N)

	}



	return

}



// 从crypto/rsa复制

func copyWithLeftPad(dest, src []byte) {

	numPaddingBytes := len(dest) - len(src)

	for i := 0; i < numPaddingBytes; i++ {

		dest[i] = 0

	}

	copy(dest[numPaddingBytes:], src)

}



// 从crypto/rsa复制

func nonZeroRandomBytes(s []byte, rand io.Reader) (err error) {

	_, err = io.ReadFull(rand, s)

	if err != nil {

		return

	}

	for i := 0; i < len(s); i++ {

		for s[i] == 0 {

			_, err = io.ReadFull(rand, s[i:i+1])

			if err != nil {

				return

			}

			s[i] ^= 0x42

		}

	}

	return

}



// 从crypto/rsa复制

func leftPad(input []byte, size int) (out []byte) {

	n := len(input)

	if n > size {

		n = size

	}

	out = make([]byte, size)

	copy(out[len(out)-n:], input)

	return

}



// 从crypto/rsa复制

func modInverse(a, n *big.Int) (ia *big.Int, ok bool) {

	g := new(big.Int)

	x := new(big.Int)

	y := new(big.Int)

	g.GCD(x, y, a, n)

	if g.Cmp(bigOne) != 0 {

		return

	}

	if x.Cmp(bigOne) < 0 {

		x.Add(x, n)

	}

	return x, true

}
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
1
https://gitee.com/xiaochengtech/gorsa.git
git@gitee.com:xiaochengtech/gorsa.git
xiaochengtech
gorsa
gorsa
master
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部