資訊專(zhuān)欄INFORMATION COLUMN
摘要:使用實(shí)現(xiàn)非對(duì)稱(chēng)加密私鑰公鑰保存文件地址公鑰私鑰創(chuàng)建公鑰和私鑰生成私鑰生成公鑰設(shè)置私鑰從文件中獲取設(shè)置公鑰從文件中獲取數(shù)據(jù)源用私鑰加密
_keyPath = $path;
}
}
/**
* 創(chuàng)建公鑰和私鑰
*
*/
public function createKey()
{
$config = [
"config" => "D:MinInstallwampwamp64inphpphp5.6.25extrassslopenssl.cnf",
"digest_alg" => "sha512",
"private_key_bits" => 4096,
"private_key_type" => OPENSSL_KEYTYPE_RSA,
];
// 生成私鑰
$rsa = openssl_pkey_new($config);
openssl_pkey_export($rsa, $privKey, NULL, $config);
file_put_contents($this->_keyPath . DIRECTORY_SEPARATOR . "priv.key", $privKey);
$this->_privKey = openssl_pkey_get_public($privKey);
// 生成公鑰
$rsaPri = openssl_pkey_get_details($rsa);
$pubKey = $rsaPri["key"];
file_put_contents($this->_keyPath . DIRECTORY_SEPARATOR . "pub.key", $pubKey);
$this->_pubKey = openssl_pkey_get_public($pubKey);
}
/** 設(shè)置私鑰
* @return bool
*/
public function setupPrivKey()
{
if (is_resource($this->_privKey)) {
return true;
}
//從文件中獲取
/*$file = $this->_keyPath . DIRECTORY_SEPARATOR . "priv.key";
$privKey = file_get_contents($file);*/
$privKey = $this->_priKeyLink;
$this->_privKey = openssl_pkey_get_private($privKey);
return true;
}
/** 設(shè)置公鑰
* @return bool
*/
public function setupPubKey()
{
//從文件中獲取
/*$file = $this->_keyPath . DIRECTORY_SEPARATOR . "pub.key";
$pubKey = file_get_contents($file);*/
//數(shù)據(jù)源
$pubKey = $this->_pubKeyLink;
$this->_pubKey = openssl_pkey_get_public($pubKey);
return true;
}
/** 用私鑰加密
* @param $data
* @return null|string
*/
public function privEncrypt($data)
{
if (!is_string($data)) {
return null;
}
$this->setupPrivKey();
$result = openssl_private_encrypt($data, $encrypted, $this->_privKey);
if ($result) {
return base64_encode($encrypted);
}
return null;
}
/** 私鑰解密
* @param $encrypted
* @return null
*/
public function privDecrypt($encrypted)
{
if (!is_string($encrypted)) {
return null;
}
$this->setupPrivKey();
$encrypted = base64_decode($encrypted);
$result = openssl_private_decrypt($encrypted, $decrypted, $this->_privKey);
if ($result) {
return $decrypted;
}
return null;
}
/** 公鑰加密
* @param $data
* @return null|string
*/
public function pubEncrypt($data)
{
if (!is_string($data)) {
return null;
}
$this->setupPubKey();
$result = openssl_public_encrypt($data, $encrypted, $this->_pubKey);
if ($result) {
return base64_encode($encrypted);
}
return null;
}
/** 公鑰解密
* @param $crypted
* @return null
*/
public function pubDecrypt($crypted)
{
if (!is_string($crypted)) {
return null;
}
$this->setupPubKey();
$crypted = base64_decode($crypted);
$result = openssl_public_decrypt($crypted, $decrypted, $this->_pubKey);
if ($result) {
return $decrypted;
}
return null;
}
/** 私鑰簽名
* @param $data
* @return string
*/
public function priKeySign($data)
{
if(!is_string($data)) return null;
$private_key=openssl_get_privatekey($this->_priKeyLink);
$original_str= $data ;//原數(shù)據(jù)
openssl_sign($original_str,$sign,$private_key);
openssl_free_key($private_key);
$sign=base64_encode($sign);//最終的簽名
return $sign ;
}
/** 公鑰驗(yàn)簽
* @param $sign
* @param $data
* @return bool
*/
public function pubKeyCheck($sign,$data)
{
if(!is_string($sign) || !is_string($data)) return null;
$public_key=openssl_get_publickey($this->_pubKeyLink);
$sign=base64_decode($sign);//得到的簽名
$original_str=$data;
$result=(bool)openssl_verify($original_str,$sign,$public_key);
openssl_free_key($public_key);
return $result ;
}
/**
* __destruct
*
*/
public function __destruct() {
@fclose($this->_privKey);
@fclose($this->_pubKey);
}
}
$rsa = new Rsa();
echo "openssl_private_encrypt,openssl_public_decrypt","
";
//私鑰加密,公鑰解密
echo "私鑰加密,公鑰驗(yàn)簽","
";
echo "待加密數(shù)據(jù):testInfo","
";
$pre = $rsa->privEncrypt("testInfo");
echo "加密后的密文:
" . $pre . "
";
$pud = $rsa->pubDecrypt($pre);
echo "解密后數(shù)據(jù):" . $pud . "
";
echo "
";
//公鑰加密,私鑰解密
echo "openssl_public_encrypt,openssl_private_decrypt","
";
echo "公鑰加密,私鑰驗(yàn)簽","
";
echo "待加密數(shù)據(jù):ssh-test","
";
$pue = $rsa->pubEncrypt("ssh-test");
echo "加密后的密文:","
" . $pue . "
";
$prd = $rsa->privDecrypt($pue);
echo "解密后數(shù)據(jù):" . $prd;
echo "
";echo "
";
echo "openssl_sign,openssl_verify","
";
echo "私鑰簽名,公鑰驗(yàn)簽","
";
echo "待加密數(shù)據(jù):test=32","
";
$pre = $rsa->priKeySign("test=32");
echo "加密后的密文:","
" . $pre . "
";
$pud = $rsa->pubKeyCheck($pre,"test=32");
echo "是否解密成功:" . $pud . "
";
echo "
";
