import org.bouncycastle.jce.provider.BouncyCastleProvider;
import java.io.ByteArrayOutputStream;
import java.lang.reflect.InvocationTargetException;
import java.lang.reflect.Method;
import java.nio.charset.Charset;
import java.security.InvalidKeyException;
import java.security.KeyFactory;
import java.security.NoSuchAlgorithmException;
import java.security.PrivateKey;
import java.security.PublicKey;
import java.security.interfaces.RSAPrivateKey;
import java.security.interfaces.RSAPublicKey;
import java.security.spec.InvalidKeySpecException;
import java.security.spec.PKCS8EncodedKeySpec;
import java.security.spec.X509EncodedKeySpec;
import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.IllegalBlockSizeException;
import javax.crypto.NoSuchPaddingException;
public class RSA {
private static int MAXENCRYPTSIZE = 117;
private static int MAXDECRYPTSIZE = 128;
/**
* @param publicKeyByte
* @return
*/
public static RSAPublicKey getPublicKey(byte[] publicKeyByte) {
RSAPublicKey publicKey = null;
try {
X509EncodedKeySpec x509 = new X509EncodedKeySpec(publicKeyByte);
KeyFactory keyFactory = KeyFactory.getInstance("RSA");
publicKey = (RSAPublicKey) keyFactory.generatePublic(x509);
} catch (InvalidKeySpecException e) {
e.printStackTrace();
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
}
return publicKey;
}
/**
* @param privateKeyByte
* @return
*/
public static RSAPrivateKey getPrivateKey(byte[] privateKeyByte) {
RSAPrivateKey rsaPrivateKey = null;
try {
PKCS8EncodedKeySpec keySpec = new PKCS8EncodedKeySpec(privateKeyByte);
KeyFactory keyFactory = KeyFactory.getInstance("RSA");
rsaPrivateKey = (RSAPrivateKey) keyFactory.generatePrivate(keySpec);
} catch (InvalidKeySpecException e) {
e.printStackTrace();
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
}
return rsaPrivateKey;
}
/**
* encrypt
*
* @param publicKey
* @param source
* @return
*/
public static byte[] encrypt(PublicKey publicKey, byte[] source) {
try {
//此处填充方式选择部填充 NoPadding,当然模式和填充方式选择其他的,在Java端可以正确加密解密,
//但是解密后的密文提交给C#端,解密的得到的数据将产生乱码
Cipher cipher = Cipher.getInstance("RSA/ECB/NoPadding");
cipher.init(Cipher.ENCRYPT_MODE, publicKey);
int length = source.length;
int offset = 0;
byte[] cache;
ByteArrayOutputStream outStream = new ByteArrayOutputStream();
int i = 0;
while (length - offset > 0) {
if (length - offset > MAXENCRYPTSIZE) {
cache = cipher.doFinal(source, offset, MAXENCRYPTSIZE);
} else {
cache = cipher.doFinal(source, offset, length - offset);
}
outStream.write(cache, 0, cache.length);
i++;
offset = i * MAXENCRYPTSIZE;
}
return outStream.toByteArray();
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
} catch (NoSuchPaddingException e) {
e.printStackTrace();
} catch (InvalidKeyException e) {
e.printStackTrace();
} catch (IllegalBlockSizeException e) {
e.printStackTrace();
} catch (BadPaddingException e) {
e.printStackTrace();
} catch (Exception e) {
e.printStackTrace();
}
return null;
}
/**
* decrypt
*
* @param privateKey
* @param encryptData
* @return
*/
public static byte[] decrypt(PrivateKey privateKey, byte[] encryptData) {
//此处模式选择与加密对应,但是需要添加第二个参数new org.bouncycastle.jce.provider.BouncyCastleProvider()
//若不添加第二个参数的话,解密后的数据前面出现大段空格符
ByteArrayOutputStream outStream = null;
try {
Cipher cipher = Cipher.getInstance("RSA/ECB/NoPadding", new BouncyCastleProvider());
cipher.init(Cipher.DECRYPT_MODE, privateKey);
int length = encryptData.length;
int offset = 0;
int i = 0;
byte[] cache;
outStream = new ByteArrayOutputStream();
while (length - offset > 0) {
if (length - offset > MAXDECRYPTSIZE) {
cache = cipher.doFinal(encryptData, offset, MAXDECRYPTSIZE);
} else {
cache = cipher.doFinal(encryptData, offset, length - offset);
}
outStream.write(cache, 0, cache.length);
i++;
offset = i * MAXDECRYPTSIZE;
}
} catch (NoSuchAlgorithmException e) {
e.printStackTrace();
} catch (NoSuchPaddingException e) {
e.printStackTrace();
} catch (InvalidKeyException e) {
e.printStackTrace();
} catch (IllegalBlockSizeException e) {
e.printStackTrace();
} catch (BadPaddingException e) {
e.printStackTrace();
}
return outStream.toByteArray();
}
/**
* base64编码
*
* @param input
* @return output with base64 encoded
* @throws Exception
*/
public static String encodeBase64(byte[] input) {
Object retObj = null;
try {
Class clazz = Class.forName("top.axyz.pirate.rsa.Base64");
Method mainMethod = clazz.getMethod("encode", byte[].class);
mainMethod.setAccessible(true);
retObj = mainMethod.invoke(null, new Object[]{input});
} catch (ClassNotFoundException e) {
e.printStackTrace();
} catch (NoSuchMethodException e) {
e.printStackTrace();
} catch (IllegalAccessException e) {
e.printStackTrace();
} catch (InvocationTargetException e) {
e.printStackTrace();
}
return (String) retObj;
}
/**
* base64解码
*
* @param input
* @return
* @throws Exception
*/
public static byte[] decodeBase64(String input) {
Object retObj = null;
try {
Class clazz = Class.forName("top.axyz.pirate.rsa.Base64");
Method mainMethod = clazz.getMethod("decode", String.class);
mainMethod.setAccessible(true);
retObj = mainMethod.invoke(null, input);
} catch (ClassNotFoundException e) {
e.printStackTrace();
} catch (NoSuchMethodException e) {
e.printStackTrace();
} catch (IllegalAccessException e) {
e.printStackTrace();
} catch (InvocationTargetException e) {
e.printStackTrace();
}
return (byte[]) retObj;
}
public static String encrypt(String publicKey, String source) {
RSAPublicKey rsaPublicKey = getPublicKey(decodeBase64(RSA.publicKey));
byte[] encryptData = encrypt(rsaPublicKey, source.getBytes(Charset.forName("utf-8")));
return encodeBase64(encryptData);
}
}
/*
- Copyright (c) 2007, 2018, Oracle and/or its affiliates. All rights reserved.
- ORACLE PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.
/
/ - Copyright 1999-2002,2004 The Apache Software Foundation.
- Licensed under the Apache License, Version 2.0 (the "License");
- you may not use this file except in compliance with the License.
- You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
- Unless required by applicable law or agreed to in writing, software
- distributed under the License is distributed on an "AS IS" BASIS,
- WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- See the License for the specific language governing permissions and
- limitations under the License.
*/
package top.axyz.pirate.rsa;
/**
This class provides encode/decode for RFC 2045 Base64 as
defined by RFC 2045, N. Freed and N. Borenstein.
RFC 2045: Multipurpose Internet Mail Extensions (MIME)
Part One: Format of Internet Message Bodies. Reference
1996 Available at: http://www.ietf.org/rfc/rfc2045.txt
This class is used by XML Schema binary format validation
This implementation does not encode/decode streaming
data. You need the data that you will encode/decode
already on a byte arrray.
@xerces.internal
@author Jeffrey Rodriguez
-
@author Sandy Gao
*/
public final class Base64 {static private final int BASELENGTH = 128;
static private final int LOOKUPLENGTH = 64;
static private final int TWENTYFOURBITGROUP = 24;
static private final int EIGHTBIT = 8;
static private final int SIXTEENBIT = 16;
static private final int SIXBIT = 6;
static private final int FOURBYTE = 4;
static private final int SIGN = -128;
static private final char PAD = '=';
static private final boolean fDebug = false;
static final private byte [] base64Alphabet = new byte[BASELENGTH];
static final private char [] lookUpBase64Alphabet = new char[LOOKUPLENGTH];static {
for (int i = 0; i < BASELENGTH; ++i) { base64Alphabet[i] = -1; } for (int i = 'Z'; i >= 'A'; i--) { base64Alphabet[i] = (byte) (i-'A'); } for (int i = 'z'; i>= 'a'; i--) { base64Alphabet[i] = (byte) ( i-'a' + 26); } for (int i = '9'; i >= '0'; i--) { base64Alphabet[i] = (byte) (i-'0' + 52); } base64Alphabet['+'] = 62; base64Alphabet['/'] = 63; for (int i = 0; i<=25; i++) lookUpBase64Alphabet[i] = (char)('A'+i); for (int i = 26, j = 0; i<=51; i++, j++) lookUpBase64Alphabet[i] = (char)('a'+ j); for (int i = 52, j = 0; i<=61; i++, j++) lookUpBase64Alphabet[i] = (char)('0' + j); lookUpBase64Alphabet[62] = (char)'+'; lookUpBase64Alphabet[63] = (char)'/';
}
protected static boolean isWhiteSpace(char octect) {
return (octect == 0x20 || octect == 0xd || octect == 0xa || octect == 0x9);
}protected static boolean isPad(char octect) {
return (octect == PAD);
}protected static boolean isData(char octect) {
return (octect < BASELENGTH && base64Alphabet[octect] != -1);
}protected static boolean isBase64(char octect) {
return (isWhiteSpace(octect) || isPad(octect) || isData(octect));
}/**
Encodes hex octects into Base64
@param binaryData Array containing binaryData
-
@return Encoded Base64 array
*/
public static String encode(byte[] binaryData) {if (binaryData == null)
return null;int lengthDataBits = binaryData.length*EIGHTBIT;
if (lengthDataBits == 0) {
return "";
}int fewerThan24bits = lengthDataBits%TWENTYFOURBITGROUP;
int numberTriplets = lengthDataBits/TWENTYFOURBITGROUP;
int numberQuartet = fewerThan24bits != 0 ? numberTriplets+1 : numberTriplets;
char encodedData[] = null;encodedData = new char[numberQuartet*4];
byte k=0, l=0, b1=0,b2=0,b3=0;
int encodedIndex = 0;
int dataIndex = 0;
if (fDebug) {
System.out.println("number of triplets = " + numberTriplets );
}for (int i=0; i<numberTriplets; i++) {
b1 = binaryData[dataIndex++];
b2 = binaryData[dataIndex++];
b3 = binaryData[dataIndex++];if (fDebug) { System.out.println( "b1= " + b1 +", b2= " + b2 + ", b3= " + b3 ); } l = (byte)(b2 & 0x0f); k = (byte)(b1 & 0x03); byte val1 = ((b1 & SIGN)==0)?(byte)(b1>>2):(byte)((b1)>>2^0xc0); byte val2 = ((b2 & SIGN)==0)?(byte)(b2>>4):(byte)((b2)>>4^0xf0); byte val3 = ((b3 & SIGN)==0)?(byte)(b3>>6):(byte)((b3)>>6^0xfc); if (fDebug) { System.out.println( "val2 = " + val2 ); System.out.println( "k4 = " + (k<<4)); System.out.println( "vak = " + (val2 | (k<<4))); } encodedData[encodedIndex++] = lookUpBase64Alphabet[ val1 ]; encodedData[encodedIndex++] = lookUpBase64Alphabet[ val2 | ( k<<4 )]; encodedData[encodedIndex++] = lookUpBase64Alphabet[ (l <<2 ) | val3 ]; encodedData[encodedIndex++] = lookUpBase64Alphabet[ b3 & 0x3f ];
}
// form integral number of 6-bit groups
if (fewerThan24bits == EIGHTBIT) {
b1 = binaryData[dataIndex];
k = (byte) ( b1 &0x03 );
if (fDebug) {
System.out.println("b1=" + b1);
System.out.println("b1<<2 = " + (b1>>2) );
}
byte val1 = ((b1 & SIGN)==0)?(byte)(b1>>2):(byte)((b1)>>2^0xc0);
encodedData[encodedIndex++] = lookUpBase64Alphabet[ val1 ];
encodedData[encodedIndex++] = lookUpBase64Alphabet[ k<<4 ];
encodedData[encodedIndex++] = PAD;
encodedData[encodedIndex++] = PAD;
} else if (fewerThan24bits == SIXTEENBIT) {
b1 = binaryData[dataIndex];
b2 = binaryData[dataIndex +1 ];
l = ( byte ) ( b2 &0x0f );
k = ( byte ) ( b1 &0x03 );byte val1 = ((b1 & SIGN)==0)?(byte)(b1>>2):(byte)((b1)>>2^0xc0); byte val2 = ((b2 & SIGN)==0)?(byte)(b2>>4):(byte)((b2)>>4^0xf0); encodedData[encodedIndex++] = lookUpBase64Alphabet[ val1 ]; encodedData[encodedIndex++] = lookUpBase64Alphabet[ val2 | ( k<<4 )]; encodedData[encodedIndex++] = lookUpBase64Alphabet[ l<<2 ]; encodedData[encodedIndex++] = PAD;
}
return new String(encodedData);
}
/**
Decodes Base64 data into octects
@param encoded string containing Base64 data
-
@return Array containind decoded data.
*/
public static byte[] decode(String encoded) {if (encoded == null)
return null;char[] base64Data = encoded.toCharArray();
// remove white spaces
int len = removeWhiteSpace(base64Data);if (len%FOURBYTE != 0) {
return null;//should be divisible by four
}int numberQuadruple = (len/FOURBYTE );
if (numberQuadruple == 0)
return new byte[0];byte decodedData[] = null;
byte b1=0,b2=0,b3=0,b4=0;
char d1=0,d2=0,d3=0,d4=0;int i = 0;
int encodedIndex = 0;
int dataIndex = 0;
decodedData = new byte[ (numberQuadruple)*3];for (; i<numberQuadruple-1; i++) {
if (!isData( (d1 = base64Data[dataIndex++]) )|| !isData( (d2 = base64Data[dataIndex++]) )|| !isData( (d3 = base64Data[dataIndex++]) )|| !isData( (d4 = base64Data[dataIndex++]) )) return null;//if found "no data" just return null b1 = base64Alphabet[d1]; b2 = base64Alphabet[d2]; b3 = base64Alphabet[d3]; b4 = base64Alphabet[d4]; decodedData[encodedIndex++] = (byte)( b1 <<2 | b2>>4 ) ; decodedData[encodedIndex++] = (byte)(((b2 & 0xf)<<4 ) |( (b3>>2) & 0xf) ); decodedData[encodedIndex++] = (byte)( b3<<6 | b4 );
}
if (!isData( (d1 = base64Data[dataIndex++]) ) ||
!isData( (d2 = base64Data[dataIndex++]) )) {
return null;//if found "no data" just return null
}b1 = base64Alphabet[d1];
b2 = base64Alphabet[d2];d3 = base64Data[dataIndex++];
d4 = base64Data[dataIndex++];
if (!isData( (d3 ) ) ||
!isData( (d4 ) )) {//Check if they are PAD characters
if (isPad( d3 ) && isPad( d4)) { //Two PAD e.g. 3c[Pad][Pad]
if ((b2 & 0xf) != 0)//last 4 bits should be zero
return null;
byte[] tmp = new byte[ i3 + 1 ];
System.arraycopy( decodedData, 0, tmp, 0, i3 );
tmp[encodedIndex] = (byte)( b1 <<2 | b2>>4 ) ;
return tmp;
} else if (!isPad( d3) && isPad(d4)) { //One PAD e.g. 3cQ[Pad]
b3 = base64Alphabet[ d3 ];
if ((b3 & 0x3 ) != 0)//last 2 bits should be zero
return null;
byte[] tmp = new byte[ i3 + 2 ];
System.arraycopy( decodedData, 0, tmp, 0, i3 );
tmp[encodedIndex++] = (byte)( b1 <<2 | b2>>4 );
tmp[encodedIndex] = (byte)(((b2 & 0xf)<<4 ) |( (b3>>2) & 0xf) );
return tmp;
} else {
return null;//an error like "3c[Pad]r", "3cdX", "3cXd", "3cXX" where X is non data
}
} else { //No PAD e.g 3cQl
b3 = base64Alphabet[ d3 ];
b4 = base64Alphabet[ d4 ];
decodedData[encodedIndex++] = (byte)( b1 <<2 | b2>>4 ) ;
decodedData[encodedIndex++] = (byte)(((b2 & 0xf)<<4 ) |( (b3>>2) & 0xf) );
decodedData[encodedIndex++] = (byte)( b3<<6 | b4 );}
return decodedData;
}
/**
remove WhiteSpace from MIME containing encoded Base64 data.
@param data the byte array of base64 data (with WS)
-
@return the new length
*/
protected static int removeWhiteSpace(char[] data) {
if (data == null)
return 0;// count characters that's not whitespace
int newSize = 0;
int len = data.length;
for (int i = 0; i < len; i++) {
if (!isWhiteSpace(data[i]))
data[newSize++] = data[i];
}
return newSize;
}
}
using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using Org.BouncyCastle.Crypto.Generators;
using Org.BouncyCastle.Crypto.Parameters;
using Org.BouncyCastle.Crypto;
using Org.BouncyCastle.Security;
using Org.BouncyCastle.Crypto.Engines;
using Org.BouncyCastle.Math;
using Org.BouncyCastle.Asn1.X509;
using Org.BouncyCastle.X509;
using Org.BouncyCastle.Utilities.Collections;
using Org.BouncyCastle.Asn1.Pkcs;
using Org.BouncyCastle.Security;
using Org.BouncyCastle.Pkcs;
using Org.BouncyCastle.Asn1;
namespace RSA
{
class Program
{
static void Main(string[] args)
{
str = System.Web.HttpUtility.UrlDecode(str);
//生成密钥对
//RsaKeyPairGenerator rsaKeyPairGenerator = new RsaKeyPairGenerator();
//RsaKeyGenerationParameters rsaKeyGenerationParameters = new RsaKeyGenerationParameters(BigInteger.ValueOf(3), new SecureRandom(), 2048, 25);
//rsaKeyPairGenerator.Init(rsaKeyGenerationParameters);//初始化参数
//AsymmetricCipherKeyPair keyPair = rsaKeyPairGenerator.GenerateKeyPair();
//AsymmetricKeyParameter publicKey = keyPair.Public;//公钥
//AsymmetricKeyParameter privateKey = keyPair.Private;//私钥
//SubjectPublicKeyInfo subjectPublicKeyInfo = SubjectPublicKeyInfoFactory.CreateSubjectPublicKeyInfo(publicKey);
//PrivateKeyInfo privateKeyInfo = PrivateKeyInfoFactory.CreatePrivateKeyInfo(privateKey);
//Asn1Object asn1ObjectPublic = subjectPublicKeyInfo.ToAsn1Object();
//byte[] publicInfoByte = asn1ObjectPublic.GetEncoded();
//Asn1Object asn1ObjectPrivate = privateKeyInfo.ToAsn1Object();
//byte[] privateInfoByte = asn1ObjectPrivate.GetEncoded();
//这里可以将密钥对保存到本地
//Console.WriteLine("PublicKey:\n" + Convert.ToBase64String(publicInfoByte));
//Console.WriteLine("PrivateKey:\n" + Convert.ToBase64String(privateInfoByte));
//加密、解密
//Asn1Object pubKeyObj = Asn1Object.FromByteArray(publicInfoByte);//这里也可以从流中读取,从本地导入
//AsymmetricKeyParameter pubKey = PublicKeyFactory.CreateKey(SubjectPublicKeyInfo.GetInstance(pubKeyObj));
IAsymmetricBlockCipher cipher = new RsaEngine();
//cipher.Init(true, pubKey);//true表示加密
//加密
//string data = "成功了。。。";
//Console.WriteLine("\n明文:" + data);
//byte[] encryptData = cipher.ProcessBlock(Encoding.UTF8.GetBytes(data), 0, Encoding.UTF8.GetBytes(data).Length);
//Console.WriteLine("密文:" + Convert.ToBase64String(encryptData));
//解密
AsymmetricKeyParameter priKey = PrivateKeyFactory.CreateKey(Convert.FromBase64String(privateKey));
cipher.Init(false, priKey);//false表示解密
string decryptData = Encoding.UTF8.GetString(cipher.ProcessBlock(Convert.FromBase64String(str), 0, Convert.FromBase64String(str).Length));
Console.WriteLine("解密后数据:" + decryptData);
Console.Read();
}
}
}