我正在尝试使用 java 验证 ECDSA 签名, key 是使用 golang 创建的:
import (
"crypto/ecdsa"
"crypto/elliptic"
"crypto/rand"
"crypto/x509"
"encoding/pem"
"fmt"
"io/ioutil"
"reflect"
)
func doit(){
privateKey, _ := ecdsa.GenerateKey(elliptic.P384(), rand.Reader)
publicKey := &privateKey.PublicKey
if !elliptic.P384().IsOnCurve(publicKey.X, publicKey.Y) {
fmt.Printf(" public key invalid. ")
}
encPriv, encPub := encode(privateKey, publicKey)
fmt.Println(encPriv)
fmt.Println(encPub)
}
签名发生在这里:(消息由 golang 编码,使用这种方法):
func SignMessage(message []byte) (r *big.Int, s *big.Int, err error) {
zero := big.NewInt(0)
// Hash message:
h := sha1.New()
io.WriteString(h, string(message))
hashBytes := h.Sum(nil)
hash := fmt.Sprintf("%x", hashBytes)
// hash message
// get private key from disk:
pemEncoded, err := ioutil.ReadFile("./ecc/eccpriv.pem")
if err != nil {
return zero, zero, err
}
pemEncodedPub, err := ioutil.ReadFile("./ecc/eccpub.pem")
if err != nil {
return zero, zero, err
}
var priv *ecdsa.PrivateKey
//var _pub *ecdsa.PublicKey
priv, _, err = ECCDecodeFromPem(pemEncoded, pemEncodedPub)
if err != nil {
return zero, zero, err
}
r, s, err = ecdsa.Sign(rand.Reader, priv, []byte(hash))
if err != nil {
return zero, zero, err
}
return r, s, nil
}
解码方面发生在这里:
//Verify Response
String signature = ac.getECCDSAPublicKeyFromServer();
String cleanSignature = ac.cleanBytes(signature);
byte[] bSignature = Base64.getDecoder().decode(cleanSignature);
System.out.println(cleanSignature);
PublicKey ecdsaPublicKey = ac.getPemPublicKeyFromString(signature,"ECDSA");
//PublicKey ecdsaPublicKey = ac.getECDSAKeyFromBytes(cleanSignature.getBytes("UTF-8"));
Signature ecdsaVerify = Signature.getInstance("ECDSA", "BC");
ecdsaVerify.initVerify(ecdsaPublicKey);
ecdsaVerify.update(json_response.getBytes("UTF-8"));
System.out.println("SIG:");
for(int i=0;i<bSignature.length;i++){
System.out.println(bSignature[i]);
}
System.out.println(new String(bSignature, StandardCharsets.UTF_8));
System.out.println("/SIG");
boolean result = ecdsaVerify.verify(bSignature);
System.out.println("Result is:"+result);
然而,不幸的是,程序失败了,因为:
Exception in thread "main" java.security.SignatureException: error decoding signature bytes.
at org.bouncycastle.jcajce.provider.asymmetric.util.DSABase.engineVerify(Unknown Source)
at java.base/java.security.Signature$Delegate.engineVerify(Signature.java:1245)
at java.base/java.security.Signature.verify(Signature.java:674)
at ...
这导致了一个有趣的困境,因为公钥:
-----BEGIN PUBLIC KEY-----
MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEBiTlkxxYVLduJeiQ7V1AqG4bY9lxrxLX
un+qd4BeaICC1Yx/nsDvvXEPwfCYwXgnyk3u7DV3ldUiaXCIr89OoNei6D2Xgrs3
KYtpVEv7ylnUzo8xZH3/mMdLMUiy6fl8
-----END PUBLIC KEY-----
似乎是正确的,根据这个网站:
key 生成正确,ASN.1 Parse 对其解码正确。 为什么 java 不喜欢我的代码?
另外,请原谅我糟糕的缩进。
最佳答案
我认为你的问题出在这里:
hash := fmt.Sprintf("%x", hashBytes)
而且你必须将 hashBytes 直接传递给
r, s, err = ecdsa.Sign(rand.Reader, priv, hashBytes)
关于java - 解码 ECDSA 失败,出现 : Exception in thread "main" java. security.SignatureException:错误解码签名字节,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/51687749/