我有一个系统,需要在
javascript中生成RSA密钥对,然后将公钥存储在服务器端的数据库中(作为字符串),然后
Java中的服务器端将使用存储的公共加密字符串密钥并将其发送到客户端,客户端将使用私钥解密字符串.
我在客户端浏览器上使用了一个browsified版本的node-rsa.
首先在客户端我生成一个密钥对并导出密钥,将它们存储为字符串
var NodeRSA = require('node-rsa');
var key = new NodeRSA({b: 1024});
key.exportKey("pkcs8-private");
key.exportKey("pkcs8-public-pem");
导出的私钥存储在客户端,公共服务器存储在公共服务器上
接下来,我使用java来加密接收到的公钥的字符串,因此我将pkcs8公钥解析为Java PublicKey对象.
String pubKey = "";
pubKey = pubKey.replaceAll("(-+BEGIN PUBLIC KEY-+\\r?\\n|-+END PUBLIC KEY-+\\r?\\n?)", "");
byte[] keyBytes = Base64.decodeBase64(pubKey);
X509EncodedKeySpec spec = new X509EncodedKeySpec(keyBytes);
KeyFactory kf = KeyFactory.getInstance("RSA");
PublicKey pk = kf.generatePublic(spec);
并用它加密文本
byte[] cipherText;
Cipher cipher = Cipher.getInstance("RSA");
cipher.init(Cipher.ENCRYPT_MODE, pk);
cipherText = cipher.doFinal("Hello World!".getBytes());
return Base64.encodeBase64String(cipherText);
这很好用,并返回一个像这样的Base64编码加密字符串
WTS1J2f4w5icsUOCtulyHDaBmB5lN7D8mnj0QWMDBkUGiPHkM8nHVx9pd0MtbQAQNasQS2X8kisLMYyEMPasFZtDH0zX1e8lNYaW0xMKsg++ge87f+95nl+TmxDy6S1m7Ce/n0wXno+0MbSv8YsJtsUcAleyyfQX2bxqX8u7Gjs=
然后我尝试在客户端解密它的字符串
首先,我重新导入node-rsa中存储的密钥
var NodeRSA = require('node-rsa');
var key = new NodeRSA();
key.importKey("","pkcs8-private");
key.importKey("","pkcs8-public-pem");
然后我尝试解密Base64编码的加密字符串
key.decrypt("", 'utf-8');
这是问题发生的地方,javascript抛出此错误
Uncaught Error: Error during decryption (probably incorrect key). Original error: Error: Error decoding message, the lHash calculated from the label provided and the lHash in the encrypted data do not match.(…)
However i have tested that if i encrypt and decrypt the text just within javascript, it works just fine. This makes me think that it’s some difference between the way i encrypted it at java and how it’s done at javascript
有人能指出我在这里犯的错误吗?