堆栈内存溢出
  简体   繁体   English

为什么我的crypto.createHmac()为相同的输入生成不同的HMAC?

[英]Why does my crypto.createHmac() generate a different HMAC for the same input?

 原文  2018-07-11 15:12:20       javascript/ php/ node.js/ hmac/ cryptojs

问题描述

I am trying to match the HMAC in Node.js to the HMAC in PHP for API authorization. 我正在尝试将Node.js中的HMAC与PHP中的HMAC匹配以进行API授权。 The problem is in Node.js, the createHmac() function generates a different HMAC for the same input, and therefore does not match with the HMAC in PHP. 问题出在Node.js中,createHmac()函数为相同的输入生成不同的HMAC,因此与PHP中的HMAC不匹配。

Here is my JS code: 这是我的JS代码: 

events: {
  proxyReq: (proxyReq, req) => {
    const API_KEY = 125;
    const API_SECRET_KEY = 'abc';

    let hmac = crypto.createHmac('sha512', API_SECRET_KEY);
    hmac.update('0');
    const s = hmac.digest('base64');

    proxyReq.setHeader('x-api-key', API_KEY);
    proxyReq.setHeader('x-api-signature', s);
    proxyReq.setHeader('x-api-date', date);
  },

PHP: PHP: 

$API_SECRET_KEY = 'abc';
$client_signature = $request->header('x-api-signature');
$hmac = base64_encode(hash_hmac('sha512', '0', base64_decode($API_SECRET_KEY), true));

Log::error($client_signature);
Log::error($hmac);

Latest outputs: 最新输出: 

[2018-07-11 15:25:28] local.ERROR: dO50o/LcS0/UOXOu/5lHbOMXLe+l225vUU13fWEHeOoUHV7SlcSOE9rQq2UhTlys5N6C4hkq8QTALnpRehtlCg==  
[2018-07-11 15:25:28] local.ERROR: 7W2U/3uEKIMD0s39jmZLlJItwTcSSDQdW7WTYdslvIjuUeGydyqwwAuZzaMP0Do5v1zRJxmPITFdy4EHTY5r6A==  

[2018-07-11 15:25:33] local.ERROR: UYsXZFyoAB2zELZzwjWyktPEHlYqIP3cgLeb/LXK0X8pnkVxiqEaFWK7c1YIWd6hFPpZHn5j1YdbDhpAL7hQ5A==  
[2018-07-11 15:25:33] local.ERROR: 7W2U/3uEKIMD0s39jmZLlJItwTcSSDQdW7WTYdslvIjuUeGydyqwwAuZzaMP0Do5v1zRJxmPITFdy4EHTY5r6A==

Any alternatives or solutions would be appreciated! 任何替代或解决方案将不胜感激!

1 个解决方案

解决方案1
 0  2018-07-11 16:28:37

If you match what you do in PHP with base64_decode , you get the correct value: 如果将您在PHP中所做的与base64_decodebase64_decode ,您将获得正确的值: 

const crypto = require('crypto');
const API_SECRET_KEY = Buffer.from('abc', 'base64');

let hmac = crypto.createHmac('sha512', API_SECRET_KEY);
hmac.update('0');
const s = hmac.digest('base64');
console.log(s);

7W2U/3uEKIMD0s39jmZLlJItwTcSSDQdW7WTYdslvIjuUeGydyqwwAuZzaMP0Do5v1zRJxmPITFdy4EHTY5r6A==

https://repl.it/repls/BouncyBogusGigabyte https://repl.it/repls/BouncyBogusGigabyte

Check that you really have the correct constant API_SECRET_KEY value, the correct data input value ('0' in this case), and you are looking at the correct requests in the PHP code. 检查您是否确实具有正确的常数API_SECRET_KEY值,正确的数据输入值(在这种情况下为'0'),以及您是否在PHP代码中查看正确的请求。 If you provide the same inputs, both libraries will give you the same output value. 如果您提供相同的输入,则两个库都将为您提供相同的输出值。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 为什么我的crypto.createHmac()为相同的输入生成不同的HMAC? - Why does my crypto.createHmac() generate a different HMAC for the same input? 将 JS crypto.createHmac 翻译成 Xojo Crypto.HMAC - Translating JS crypto.createHmac to Xojo Crypto.HMAC 需要与 crypto.createHmac 方法的这个特定实现等效的浏览器 - Need browser equivalent of this specific implementation of crypto.createHmac method 使用angular 4获得TypeError的woocommerce集成:crypto.createHmac不是函数 - Integration of woocommerce using angular 4 getting TypeError: crypto.createHmac is not a function HOTP 问题:Node.js crypto.createHmac 仅在计数为 0 时有效 - HOTP issue: Node.js crypto.createHmac works only when count is 0 如何在浏览器中复制Node的Crypto.createHmac('sha256',buffer)? - How to replicate Node's Crypto.createHmac( 'sha256', buffer) in the browser? 为什么Node crypto为同一个字符串返回不同的值? - Why does Node crypto return different values for the same string? Crypto JS SHA3在相同的输入上提供不同的输出 - Crypto JS SHA3 giving different output on same input 为什么开发者控制台对相同的数据输入给出不同的结果? - Why does the developer console give different results for the same data input? 为什么 keyup 事件对于相同的输入具有不同的键属性? - Why does keyup event has different key property for same input?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM