PHP RSA2非對稱加密算法

特點：只需交換公鑰；公/祕鑰機制，公鑰加密，私鑰解密；（或者私鑰加密，公鑰解密）；公鑰負責加密，私鑰負責解密；私鑰負責簽名，公鑰負責驗證

windows生成公鑰私鑰 http://web.chacuo.net/netrsakeypair

1. Linux生成私鑰，公鑰，

1）生成原始 RSA私鑰文件 rsa_private_key.pem

2）將原始 RSA私鑰轉換爲 pkcs8格式

3）生成RSA公鑰 rsa_public_key.pem

openssl genrsa -out rsa_private_key.pem 1024
openssl pkcs8 -topk8 -inform PEM -in rsa_private_key.pem -outform PEM -nocrypt -out private_key.pem
openssl rsa -in rsa_private_key.pem -pubout -out rsa_public_key.pem

2.PHP使用的密鑰是private_key.pem(密鑰轉換爲pkcs8格式的那份)，把公鑰rsa_public_key.pem給安卓或ios

3.PHP-RSA2簽名驗證

<?php
class Rsa2
{
    private static $PRIVATE_KEY='-----BEGIN PRIVATE KEY-----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-----END PRIVATE KEY-----';
    private static $PUBLIC_KEY='-----BEGIN PUBLIC KEY-----
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDa+Y2BktFGmm3Maz20SOmby4IJ
6N0ZgcQi3qOMOHQ6XjzTaxQ8ccOk+GigdN+FeVXQpqi1oOCixJNChVZLRfIxN6nZ
8q23nBJjOUqivYVr23PD4mn65XqkDilzm6QBCDieLPniN8oRPVfv2Jwrc/AuV8L1
pT9WLUZDL/e0EceGSQIDAQAB
-----END PUBLIC KEY-----';

    /**
     * 獲取私鑰
     * @return bool|resource
     */
    private static function getPrivateKey()
    {
        $privKey = self::$PRIVATE_KEY;
        return openssl_pkey_get_private($privKey);
    }

    /**
     * 獲取公鑰
     * @return bool|resource
     */
    private static function getPublicKey()
    {
        $publicKey = self::$PUBLIC_KEY;
        return openssl_pkey_get_public($publicKey);
    }

    /**
     * 創建簽名
     * @param string $data 數據
     * @return null|string
     */
    public function createSign($data = '')
    {
        if (!is_string($data)) {
            return null;
        }
        return openssl_sign(
            $data,
            $sign,
            self::getPrivateKey(),
            OPENSSL_ALGO_SHA256
        ) ? base64_encode($sign) : null;
    }

    /**
     * 驗證簽名
     * @param string $data 數據
     * @param string $sign 簽名
     * @return bool
     */
    public function verifySign($data = '', $sign = '')
    {
        if (!is_string($sign) || !is_string($sign)) {
            return false;
        }
        return (bool)openssl_verify(
            $data,
            base64_decode($sign),
            self::getPublicKey(),
            OPENSSL_ALGO_SHA256
        );
    }

    /**
     * @param string $data
     * @return string|null
     * 私鑰加密
     */
    public static function privEncrypt($data = '')
    {
        if (!is_string($data)) {

            return null;
        }

        return openssl_private_encrypt(
            $data,
            $encrypted,
            self::getPrivateKey())
            ? base64_encode($encrypted) : null;
    }
    /**

     * 公鑰加密

     * @param string $data

     * @return null|string

     */
    public static function publicEncrypt($data = '')
    {
        if (!is_string($data)) {
            return null;
        }
        return openssl_public_encrypt($data,
            $encrypted,
            self::getPublicKey()) ? base64_encode($encrypted) : null;

    }
    /**

     * 私鑰解密

     * @param string $encrypted

     * @return null

     */

    public static function privDecrypt($encrypted = '')
    {
        if (!is_string($encrypted)) {
            return null;
        }

        return (openssl_private_decrypt(base64_decode($encrypted),
            $decrypted,
            self::getPrivateKey())) ? $decrypted : null;

    }
    /**

     * 公鑰解密

     * @param string $encrypted

     * @return null

     */
    public static function publicDecrypt($encrypted = '')
    {
        if (!is_string($encrypted)) {
            return null;
        }
        return (openssl_public_decrypt(base64_decode($encrypted),
            $decrypted,
            self::getPublicKey()))
            ? $decrypted : null;
    }
}
    $rsa2 = new Rsa2();
    $data = 'my data'; //待簽名字符串
    $strSign = $rsa2->createSign($data);      //生成簽名
    var_dump($strSign);

    $is_ok = $rsa2->verifySign($data, 'W3emGXMVWx1+68XVTlP3ojP3tYLXvx62Thw99UfZsLt2gTBpVLqeYX+c7MDrKj7iPpHkWUiCnfLCrxH7Q5nzjU1D+qbTuS3cys0cXllT/1cZ4ScAnQEudHdNE/3cWkAq+MPuTC5/nhJcm96xBciciTldFK/Zj9yTuegnh+6J9M8='); //驗證簽名
    var_dump($is_ok);

     $siyaojiami = $rsa2->privEncrypt($data);//私鑰加密
     var_dump($siyaojiami);
     $gongyaojiemi = $rsa2->publicDecrypt("p9TZyPbZcsH2Ho7Fw6QxweAm+vuGwKp4FYLYijOHrOlE5u8qU+4rADhaCGmVBZEqi+fz1Z/xtalPXXFAOCCPBcHdwsjBisZfXGpfSG4mE208pbOzm3Reymiv9NhFpkqPPwW0TxK9yy8Kd2GlrXfT9490dKCpDY09IiOHussMO1I=");//公鑰解密
     var_dump($gongyaojiemi);
    $gongyaojiami = $rsa2->publicEncrypt($data);//公鑰加密
    var_dump($gongyaojiami);
    $siyaojiemi = $rsa2->privDecrypt("nO8go5oJsPQysxDOIYcm8nHEvIBDXYaJQQ9JXDKBRkvwI8sDlzblsGhBTGNdS+Mw5Dl/R8PKhESd4Aoim1p7wqQ1dfG1SfXwTnjypZ3+11KUkqzciWEcsYSyqhTozhwH0LqsKtnUc3Iho+BWI6EnogCgipT5wE3xWjw2SUwOokI=");
    var_dump($siyaojiemi);

https://mp.weixin.qq.com/s?__biz=MjM5NDM4MDIwNw==&mid=2448834574&idx=1&sn=1da3dd95cb0823bca9034bdaf715a27b&scene=21#wechat_redirect