加密解密

  1. package main
  3. import (
  4.     "crypto/rand"
  5.     "crypto/rsa"
  6.     "crypto/x509"
  7.     "encoding/base64"
  8.     "encoding/pem"
  9.     "errors"
  10.     "fmt"
  11.     "testing"
  12. )
  14. // 可通过openssl产生
  15. //openssl genrsa -out rsa_private_key.pem 1024
  16. var privateKey = []byte(`
  17. -----BEGIN RSA PRIVATE KEY-----
  18. MIICXQIBAAKBgQDP2z9C4/iLNrlzP/RYuKNdJ3MzvYh7j2yrGAo9MvZGy4hvCJfY
  19. djS+SSXn++YEIORr+9X+SMHu9gHGi3kBxTbEUmVIc0ee13xmh12mpcu6QoOGseD7
  20. Q2dPx9Kjc21jeqJU3WS5QSelMN3DZVLrwt9Hjy8Tw0Cxp0yhkCPZ3ZVPUQIDAQAB
  21. AoGAVqnmZYBht8G4buoief959bQmH1OOHV5+g5PBaSTfdEMWfp0JmrImaZRcHq5z
  22. iBMiyjc1URGK8pRVxy+N44QTweRoEmFjGWuHVoO1exElH3Oh18+Xvlmm3wJ22rpz
  23. MvUqlA0hMhLfo2keSTy4wS4ZNz/lzPImuWPZo08FbjrqfrECQQD4iKLUvw6MLs4S
  24. icaNQYLBHV9fjlZTNCI552ELKs9OLDk8++9FNFxFXOO8T6hdAbhhwoD75m7IPAb3
  25. Kmj1i7T9AkEA1hnHn5ZuX6BIinNe0g6s6DVgPeTTJoIczMst29x78VlhpEa7WX/l
  26. q4vLVH0CtVYmaluUeZOe6d3hVaJw2zbd5QJBAJ+a567mT0pZGH+xOPAn3Pd1jHUK
  27. LIfcWAqFe723LVBPeCagyATSXlsxDxM0uLOZ0jX9ueWLEyPF4NdDxgnCQWUCQQDE
  28. /E8oy/WdUhGsIN4bEpmPxJxaFhEYGxp4anA1G7WFp6EozlNN01jy7toTUDmPskYC
  29. EWSYP3Q05IqQibagWujpAkAo5vcQE7E5NB5Fhmb5fliul+gQ232W+LM8QqScRI2j
  30. F9iSqwhhwFTD/KgEL1cLnO9D4LPaUSaVBN7SL6nK0i3h
  31. -----END RSA PRIVATE KEY-----
  32. `)
  34. //openssl
  35. //openssl rsa -in rsa_private_key.pem -pubout -out rsa_public_key.pem
  36. var publicKey = []byte(`
  37. -----BEGIN PUBLIC KEY-----
  38. MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDP2z9C4/iLNrlzP/RYuKNdJ3Mz
  39. vYh7j2yrGAo9MvZGy4hvCJfYdjS+SSXn++YEIORr+9X+SMHu9gHGi3kBxTbEUmVI
  40. c0ee13xmh12mpcu6QoOGseD7Q2dPx9Kjc21jeqJU3WS5QSelMN3DZVLrwt9Hjy8T
  41. w0Cxp0yhkCPZ3ZVPUQIDAQAB
  42. -----END PUBLIC KEY-----
  43. `)
  45. // 加密
  46. func RsaEncrypt(origData []byte) ([]byte, error) {
  47.     //解密pem格式的公钥
  48.     block, _ := pem.Decode(publicKey)
  49.     if block == nil {
  50.         return nil, errors.New("public key error")
  51.     }
  52.     // 解析公钥
  53.     pubInterface, err := x509.ParsePKIXPublicKey(block.Bytes)
  54.     if err != nil {
  55.         return nil, err
  56.     }
  57.     // 类型断言
  58.     pub := pubInterface.(*rsa.PublicKey)
  59.     //加密
  60.     return rsa.EncryptPKCS1v15(rand.Reader, pub, origData)
  61. }
  63. // 解密
  64. func RsaDecrypt(ciphertext []byte) ([]byte, error) {
  65.     //解密
  66.     block, _ := pem.Decode(privateKey)
  67.     if block == nil {
  68.         return nil, errors.New("private key error!")
  69.     }
  70.     //解析PKCS1格式的私钥
  71.     priv, err := x509.ParsePKCS1PrivateKey(block.Bytes)
  72.     if err != nil {
  73.         return nil, err
  74.     }
  75.     // 解密
  76.     return rsa.DecryptPKCS1v15(rand.Reader, priv, ciphertext)
  77. }
  79. func TestSecurity(t *testing.T) {
  80.     data, _ := RsaEncrypt([]byte("hello world"))
  81.     fmt.Printf("加密后的密文:%s", base64.StdEncoding.EncodeToString(data))
  82.     origData, _ := RsaDecrypt(data)
  83.     fmt.Println("start===================end")
  84.     fmt.Printf("解密后的明文:%s", string(origData))
  85. }

密钥对不是pem格式

  1. /**
  2.  * 密码Rsa加密
  3.  */
  4. func RsaPwdEncrypt(password string) (string, error) {
  5.     if len(password) == 0 {
  6.         return "", nil
  7.     }
  8.     return rsaEncryptWithSha1Base64(password, "MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCwPdQAMcV5YdOIK2p3C3efA31Jw/mceoL9Y8EdkBD5OMBeFoPn2RVyMDGfyAjZoPiSJFeXIZMfL/Lwidbs0kMCcOrMOyncf6gydGNUIPVnJXt2vdjAWk7OwOVgwaj2cigSjRjIoV9H6IA7+AA0knf47jFppNPM+yPMM+d3spGvRQIDAQAB")
  9. }
  11. /**
  12.  * 密码Rsa解密
  13.  */
  14. func RsaPwdDecrypt(password string) (string, error) {
  15.     if len(password) == 0 {
  16.         return "", nil
  17.     }
  18.     return rsaDecryptWithSha1Base64(password, "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")
  19. }
  21. /**
  22.  * (1)加密:采用sha1算法加密后转base64格式
  23.  */
  24. func rsaEncryptWithSha1Base64(originalData, publicKey string) (string, error) {
  25.     key, _ := base64.StdEncoding.DecodeString(publicKey)
  26.     pubKey, _ := x509.ParsePKIXPublicKey(key)
  27.     originalData1 := base64.StdEncoding.EncodeToString([]byte(originalData))
  28.     originalDataBytes := []byte(originalData1)
  29.     originalMaxLen := len(originalDataBytes)
  30.     if originalMaxLen > 117 {
  31.         var tempByte string
  32.         countForm := 0
  33.         countTo := 117
  34.         encryptedData, err := rsa.EncryptPKCS1v15(rand.Reader, pubKey.(*rsa.PublicKey), originalDataBytes[countForm:countTo])
  35.         if err != nil {
  36.             return "", err
  37.         }
  38.         tempByte += string(encryptedData)
  39.         for {
  40.             if countTo+117 > originalMaxLen {
  41.                 countForm += 117
  42.                 countTo = originalMaxLen
  43.                 encryptedData, err := rsa.EncryptPKCS1v15(rand.Reader, pubKey.(*rsa.PublicKey), originalDataBytes[countForm:countTo])
  44.                 if err != nil {
  45.                     return "", err
  46.                 }
  47.                 tempByte += string(encryptedData)
  48.                 break
  49.             } else {
  50.                 countForm += 117
  51.                 countTo += 117
  52.                 encryptedData, err := rsa.EncryptPKCS1v15(rand.Reader, pubKey.(*rsa.PublicKey), originalDataBytes[countForm:countTo])
  53.                 if err != nil {
  54.                     return "", err
  55.                 }
  56.                 tempByte += string(encryptedData)
  57.             }
  58.         }
  59.         return base64.StdEncoding.EncodeToString([]byte(tempByte)), err
  60.     } else {
  61.         encryptedData, err := rsa.EncryptPKCS1v15(rand.Reader, pubKey.(*rsa.PublicKey), []byte(originalData))
  62.         return base64.StdEncoding.EncodeToString(encryptedData), err
  63.     }
  64. }
  66. /**
  67.  * (2)解密:对采用sha1算法加密后转base64格式的数据进行解密(私钥PKCS1格式)
  68.  */
  69. func rsaDecryptWithSha1Base64(encryptedData, privateKey string) (string, error) {
  70.     key, _ := base64.StdEncoding.DecodeString(privateKey)
  71.     prvKey, _ := x509.ParsePKCS1PrivateKey(key)
  72.     encryptedDecodeBytes, err := base64.StdEncoding.DecodeString(encryptedData)
  73.     if err != nil {
  74.         return "", err
  75.     }
  76.     if len(encryptedDecodeBytes) > 128 {
  77.         var tempByte string
  78.         for i := 0; i < len(encryptedDecodeBytes)/128; i++ {
  79.             originalData, err := rsa.DecryptPKCS1v15(rand.Reader, prvKey, encryptedDecodeBytes[(i*128):128*(i+1)])
  80.             if err != nil {
  81.                 return "", err
  82.             }
  83.             tempByte += string(originalData)
  84.         }
  85.         laststr, err := base64.StdEncoding.DecodeString(tempByte)
  86.         return string(laststr), err
  87.     } else {
  88.         originalData, err := rsa.DecryptPKCS1v15(rand.Reader, prvKey, encryptedDecodeBytes)
  89.         return string(originalData), err
  90.     }
  91. }
  93. func main() {
  94.     data, _ := RsaPwdEncrypt("hello world")
  95.     fmt.Printf("加密后的密文:%s", data)     // O1Hbq/QDmvzvSctf/OJRsv7/FQFFtBbS2Yax9xynn+Y970eyO8r2XHRqyhREEH4h6lJ1bCKck4TBU6/hARjSwM1CUmJ3E97rygCaybaPDwHroht91kxWUc84iDx9ya8X7yFShfs36Irn5mFbbLETX8zZt+V7B+aAYMv4wQqRd6Y=
  96.     origData, _ := RsaPwdDecrypt(data)
  97.     fmt.Println()
  98.     fmt.Printf("解密后的明文:%s", origData) // hello world
  99. }

  1. package main
  3. import (
  4.     "crypto/rand"
  5.     "crypto/rsa"
  6.     "crypto/x509"
  7.     "encoding/base64"
  8.     "encoding/pem"
  9.     "errors"
  10.     "fmt"
  11. )
  13. // 可通过openssl产生
  14. //openssl genrsa -out rsa_private_key.pem 1024
  15. var privateKey = []byte(`
  16. -----BEGIN RSA PRIVATE KEY-----
  17. MIICXQIBAAKBgQDP2z9C4/iLNrlzP/RYuKNdJ3MzvYh7j2yrGAo9MvZGy4hvCJfY
  18. djS+SSXn++YEIORr+9X+SMHu9gHGi3kBxTbEUmVIc0ee13xmh12mpcu6QoOGseD7
  19. Q2dPx9Kjc21jeqJU3WS5QSelMN3DZVLrwt9Hjy8Tw0Cxp0yhkCPZ3ZVPUQIDAQAB
  20. AoGAVqnmZYBht8G4buoief959bQmH1OOHV5+g5PBaSTfdEMWfp0JmrImaZRcHq5z
  21. iBMiyjc1URGK8pRVxy+N44QTweRoEmFjGWuHVoO1exElH3Oh18+Xvlmm3wJ22rpz
  22. MvUqlA0hMhLfo2keSTy4wS4ZNz/lzPImuWPZo08FbjrqfrECQQD4iKLUvw6MLs4S
  23. icaNQYLBHV9fjlZTNCI552ELKs9OLDk8++9FNFxFXOO8T6hdAbhhwoD75m7IPAb3
  24. Kmj1i7T9AkEA1hnHn5ZuX6BIinNe0g6s6DVgPeTTJoIczMst29x78VlhpEa7WX/l
  25. q4vLVH0CtVYmaluUeZOe6d3hVaJw2zbd5QJBAJ+a567mT0pZGH+xOPAn3Pd1jHUK
  26. LIfcWAqFe723LVBPeCagyATSXlsxDxM0uLOZ0jX9ueWLEyPF4NdDxgnCQWUCQQDE
  27. /E8oy/WdUhGsIN4bEpmPxJxaFhEYGxp4anA1G7WFp6EozlNN01jy7toTUDmPskYC
  28. EWSYP3Q05IqQibagWujpAkAo5vcQE7E5NB5Fhmb5fliul+gQ232W+LM8QqScRI2j
  29. F9iSqwhhwFTD/KgEL1cLnO9D4LPaUSaVBN7SL6nK0i3h
  30. -----END RSA PRIVATE KEY-----
  31. `)
  33. //openssl
  34. //openssl rsa -in rsa_private_key.pem -pubout -out rsa_public_key.pem
  35. var publicKey []byte
  37. // 加密
  38. func RsaEncrypt(origData []byte) ([]byte, error) {
  39.     //解密pem格式的公钥
  41.     block, _ := pem.Decode(publicKey)
  42.     if block == nil {
  43.         return nil, errors.New("public key error")
  44.     }
  45.     // 解析公钥
  46.     pubInterface, err := x509.ParsePKIXPublicKey(block.Bytes)
  47.     if err != nil {
  48.         return nil, err
  49.     }
  50.     // 类型断言
  51.     pub := pubInterface.(*rsa.PublicKey)
  52.     //加密
  53.     return rsa.EncryptPKCS1v15(rand.Reader, pub, origData)
  54. }
  56. // 解密
  57. func RsaDecrypt(ciphertext []byte) ([]byte, error) {
  58.     //解密
  59.     block, _ := pem.Decode(privateKey)
  60.     if block == nil {
  61.         return nil, errors.New("private key error!")
  62.     }
  63.     //解析PKCS1格式的私钥
  64.     priv, err := x509.ParsePKCS1PrivateKey(block.Bytes)
  65.     if err != nil {
  66.         return nil, err
  67.     }
  68.     // 解密
  69.     return rsa.DecryptPKCS1v15(rand.Reader, priv, ciphertext)
  70. }
  72. func main() {
  74.     publicKey = []byte("-----BEGIN PUBLIC KEY-----\n")  // 换行符可以有多个,但不能没有
  75.     publicKey = append(publicKey, []byte("MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDP2z9C4/iLNrlzP/RYuKNdJ3MzvYh7j2yrGAo9MvZGy4hvCJfYdjS+SSXn++YEIORr+9X+SMHu9gHGi3kBxTbEUmVIc0ee13xmh12mpcu6QoOGseD7Q2dPx9Kjc21jeqJU3WS5QSelMN3DZVLrwt9Hjy8Tw0Cxp0yhkCPZ3ZVPUQIDAQAB")...)
  76.     publicKey = append(publicKey, []byte("\n-----END PUBLIC KEY-----")...)  // 换行符可以有多个,但不能没有
  78.     data, _ := RsaEncrypt([]byte("hello world"))
  79.     fmt.Printf("加密后的密文:%s\n", base64.StdEncoding.EncodeToString(data))
  80.     origData, _ := RsaDecrypt(data)
  81.     fmt.Println("start===================end")
  82.     fmt.Printf("解密后的明文:%s", string(origData))
  83. }