SHA1withRSA在python中验证?
[英]SHA1withRSA verify in python?
问题描述
我想将Java代码重写为Python。该代码用于通过.cer文件验证数据。
public static boolean verifyByRSA(String certPath, byte[] aPlainData,
byte[] aSignature) {
boolean tResult = false;
try {
InputStream inStream = new FileInputStream(certPath);
CertificateFactory tCertFactory = CertificateFactory
.getInstance("X.509");
Certificate tCertificate = tCertFactory
.generateCertificate(inStream);
Signature tSign = Signature.getInstance("SHA1withRSA", "BC");
tSign.initVerify(tCertificate);
tSign.update(aPlainData);
tResult = tSign.verify(aSignature);
} catch (Exception e) {
e.printStackTrace();
}
return tResult;
}
.cer文件类似于:
----- BEGIN CERTIFICATE ----- MIIDhzCCAm + gAwIBAgIGASYISh96MA0GCSqGSIb3DQEBBQUAMF8xCzAJBgNVBAYTAkNOMSkwJwYDVQQKDCBBbGxpbnBheSBOZXR3b3JrIFNlcnZpY2VzIENvLkx0ZDElMCMGA1UECwwcQWxsaW5wYXkgUHJpbWFyeSBDZXJ0aWZpY2F0ZTAeFw0xMDAxMDcxMDE3NDBaFw0zMDAxMDIxMDE3NDBaMGQxCzAJBgNVBAYTAkNOMSkwJwYDVQQKDCBBbGxpbnBheSBOZXR3b3JrIFNlcnZpY2VzIENvLkx0ZDEqMCgGA1UECwwhQWxsaW5wYXkgRGlnaXRhbCBTaWduIENlcnRpZmljYXRlMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDEv2q2 / xN5PF0dLn1vhIaVlyWsvJFVFxWgH7sQBObzYbZXOOVzoQpmXuSFOrF0 / ol4Okd / 2OGfdXUUFSUZfzAQOT1Wmjupec7z2V6l4 / PT7aOg6t / MJwU9aW9Iw + AFzM1vnLOXdTlWVLZbtB7IiJ / HhfwBDkyvhp1zNYoAPrwC5QIDAQABo4HHMIHEMB0GA1UdDgQWBBQlWQA // YbuEdfE1yP + PpnokDO8WDCBjgYDVR0jBIGGMIGDgBSBWR3Bvx8To7TrecKhCM4smeabN6FjpGEwXzELMAkGA1UEBhMCQ04xKTAnBgNVBAoMIEFsbGlucGF5IE5ldHdvcmsgU2VydmljZXMgQ28uTHRkMSUwIwYDVQQLDBxBbGxpbnBheSBQcmltYXJ5IENlcnRpZmljYXRlggYBJghKHowwEgYDVR0TAQH / BAgwBgEB / wIBADANBgkqhkiG9w0BAQUFAAOCAQEATzT9GuAmAXLSWpoGc0F7Km7DPMWvSAkq8ckJLftF0 / lB3JTR6QT5rsTnQHCdRU7SJX + eLNwhJQdRg34dPJAI2z / HpgGu7tW7pdsHjCjl Vae3I64h2OzYBGXdtdRyPmyXfBOgXUfqtH0Fg + 1QqsRmcRugywjZH8ZQAVYm0TkVJmdBknPp60bJ2gE / nj0w6VaSL6HMAQ + A7AVne3NDreBXepMHgiFqiqMHrZFBQCgTSR1UwZoT8hwXaaUgwf2h9l / D2QOGCD8G3sRKfMsH3clkehXbprWPNk3uww7dCT0pGz845AyKzCmRK60Z / NOgMG5X + F + JmugsS / bKYwjetXHg9Q == ----- END CERTIFICATE -----
我努力了
from Crypto.PublicKey import RSA
from Crypto.Signature import PKCS1_v1_5
from Crypto.Hash import SHA
key = RSA.importKey(open(cer_path).read())
signer = PKCS1_v1_5.new(key)
digest = SHA.new()
digest.update(str_to_sign)
if signer.verify(digest, base64.decodestring(signature)):
return True
return False
但是不能得到正确的结果.java代码是什么意思?
1 个解决方案
解决方案1
1 已采纳 2017-03-28 23:01:14
importKey函数支持以下功能:
- X.509 subjectPublicKeyInfo DER SEQUENCE(二进制或PEM编码)
- PKCS#1 RSAPublicKey DER SEQUENCE(二进制或PEM编码)
- OpenSSH(仅文本公钥)
现在,只有第一个和第二个是X.509证书的一部分 。
您需要一个库来解析X.509证书,例如cryptography package 。
作为权宜之计,您可以在Java代码中获取RSAPublicKey对象,然后调用getEncoded 。 这将返回一个带有subjectPublicKeyInfo的DER SEQUENCE,该序列可以以Python crypto subjectPublicKeyInfo (由importKey函数支持的第一种格式)导入。
使用phpseclib验证在Java(Android)中生成的SHA1withRSA签名
[英]Verify SHA1withRSA signature generated in Java (Android) with phpseclib
找不到Android GAE KeyFactory SHA1withRSA实现
[英]Android GAE KeyFactory SHA1withRSA implementation not found
使用SHA1withRSA的根CA和带有SHA384withRSA的单个证书
[英]Root CA using SHA1withRSA and individual certificate with SHA384withRSA
警告:指定的 SHA1 算法和 SHA1withRSA 算法将在以后的更新中禁用
[英]Warning: SHA1 algorithm and SHA1withRSA algorithm specified will be disabled in a future update
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.
相关问题
SHA1withRSA NoSuchAlgorithmException
使用phpseclib验证在Java(Android)中生成的SHA1withRSA签名
用Java实现SHA1withRSA
“ SHA1withRSA”的详细信息是什么?
Java SHA1withRSA验证始终为假,为什么?
找不到Android GAE KeyFactory SHA1withRSA实现
SunJCE SHA1WithRSA使用什么填充策略
Java SHA1WithRSA使用openssl命令行
使用SHA1withRSA的根CA和带有SHA384withRSA的单个证书
警告:指定的 SHA1 算法和 SHA1withRSA 算法将在以后的更新中禁用
相关标签