【发布时间】:2018-03-28 19:12:59
【问题描述】:
我一直在尝试在 PHP 中使用以下 c# 代码的类似模式。我花了 7 天时间,试图在我的 EPin API 应用程序中实现一个简单的加密通信。问题是,来自 php 脚本的响应给了我空白
public static string AESDecryptText(string input, string key)
{
// Get the bytes of the string
byte[] bytesToBeDecrypted = Convert.FromBase64String(input);
byte[] keyBytes = Encoding.UTF8.GetBytes(key);
keyBytes = SHA256.Create().ComputeHash(keyBytes);
byte[] bytesDecrypted = AESDecrypt(bytesToBeDecrypted, keyBytes);
string result = Encoding.UTF8.GetString(bytesDecrypted);
return result;
}
public static byte[] AESDecrypt(byte[] bytesToBeDecrypted, byte[] keyBytes)
{
byte[] decryptedBytes = null;
// Set your salt here, change it to meet your flavor:
// The salt bytes must be at least 8 bytes.
byte[] saltBytes = new byte[] { 1, 2, 3, 4, 5, 6, 7, 8 };
using (MemoryStream ms = new MemoryStream())
{
using (RijndaelManaged AES = new RijndaelManaged())
{
AES.KeySize = 256;
AES.BlockSize = 128;
var key = new Rfc2898DeriveBytes(keyBytes, saltBytes, 1000);
AES.Key = key.GetBytes(AES.KeySize / 8);
AES.IV = key.GetBytes(AES.BlockSize / 8);
AES.Mode = CipherMode.CBC;
using (var cs = new CryptoStream(ms, AES.CreateDecryptor(), CryptoStreamMode.Write))
{
cs.Write(bytesToBeDecrypted, 0, bytesToBeDecrypted.Length);
cs.Close();
}
decryptedBytes = ms.ToArray();
}
}
return decryptedBytes;
}
来自其他线程的我的 PHP 代码..
function DecryptString($content, $password =
'4J2lh3Lz4q6ACo16VrL1oLDnh3k7G1KaXliUPVPV8o0='){
$password = mb_convert_encoding($password, "utf-16le");
$padding = 32 - (strlen($password) % 32);
$password .= str_repeat("\0", $padding);
$iv = substr($password, 0, 8);
$data = base64_decode($content);
$decrypted = openssl_decrypt($data, 'AES-256-CBC', $password,
OPENSSL_RAW_DATA, $iv);
$decrypted = mb_convert_encoding($decrypted, "utf-8", "utf-16le");
return $decrypted;
}
function decryption(){
$password = "4J2lh3Lz4q6ACo16VrL1oLDnh3k7G1KaXliUPVPV8o0=";
$content = "wKamNpehMEqJQ4NcUueNuXq1PbupsxwEvwcJ0CeI+8Q=";
echo $this->DecryptString($content, $password);
}
每次打印时,显示空白。请在这方面提供帮助
【问题讨论】:
-
1)
$password似乎是 base64 编码字节,我认为您应该在使用之前对其进行解码。 2) 您应该使用hash_pbkdf2作为密钥。 3) 在我对porting-c-sharp-aes-256-decryption-to-php 的回答中,我使用mb_convert_encoding来解码c# Unicode 编码的字符串,你不需要那个。 4)不要从互联网上复制粘贴代码并期望它自动运行。 5)即使它确实以某种方式起作用,你也不应该使用它,因为它不安全。 -
function DecryptString($content, $password = '4J2lh3Lz4q6ACo16VrL1oLDnh3k7G1KaXliUPVPV8o0='){ // $password = mb_convert_encoding($password, "utf-16le"); $password = base64_decode($password); $padding = 32 - (strlen($password) % 32); $password .= str_repeat("\0", $padding); $iv = substr($password, 0, 16); $data = base64_decode($content); $decrypted = openssl_decrypt($data, 'AES-256-CBC', $password, OPENSSL_RAW_DATA|OPENSSL_ZERO_PADDING, $iv); var_dump($解密); } .. 仍然得到不可理解的输出。请帮助我@t.m.adam
标签: c# php encryption aes