无法解密使用gnupg中的openpgp-php加密的文件
问题描述:
我已经使用OpenPGP-PHP创建了公钥和私钥,然后我将它们两者都导入到GnuPG中,它不会导入公钥而不指定公钥“--allow-non-self-signed-uid”标志。然后,当我尝试解密文件,我得到以下几点:无法解密使用gnupg中的openpgp-php加密的文件
gpg --decrypt test.tif.asc
Generated: Thu, 25 Feb 2016 11:12:28 -0500
gpg: unknown armor header:
By: <>
gpg: unknown armor header:
Using: OpenPGP for PHP
gpg: unknown armor header:
For: TEST
gpg: unknown armor header:
gpg: encrypted with 512-bit RSA key, ID 519A1973, created 2016-02-25
"TEST"
gpg: public key decryption failed: Wrong secret key used
gpg: decryption failed: No secret key
但关键明显存在:
gpg --list-secret-keys
/home/mike/.gnupg/secring.gpg
-----------------------------
sec 512R/519A1973 2016-02-25
uid TEST
我生成它们与PHP代码:
$header = array(
'Generated' => date("r"),
'By' => "Test <[email protected]>",
'Using' => "OpenPGP for PHP",
'For' => "TEST"
);
$rsa = new Crypt_RSA();
$k = $rsa->createKey(512);
$rsa->loadKey($k['privatekey']);
$nkey = new OpenPGP_SecretKeyPacket(array(
'n' => $rsa->modulus->toBytes(),
'e' => $rsa->publicExponent->toBytes(),
'd' => $rsa->exponent->toBytes(),
'p' => $rsa->primes[1]->toBytes(),
'q' => $rsa->primes[2]->toBytes(),
'u' => $rsa->coefficients[2]->toBytes()
));
$uid = new OpenPGP_UserIDPacket("TEST");
$wkey = new OpenPGP_Crypt_RSA ($nkey);
$m = $wkey->sign_key_userid(array($nkey, $uid));
// Serialize private key
$private_bytes = $m->to_bytes();
$private_bytes = OpenPGP::enarmor($private_bytes, "PGP PRIVATE KEY BLOCK", $header);
// Serialize public key message
$pubm = clone($m);
$pubm[0] = new OpenPGP_PublicKeyPacket($pubm[0]);
$public_bytes = OpenPGP::enarmor($public_bytes, "PGP PUBLIC KEY BLOCK", $header);
而且加密使用:
$pgp_header = array(
'Generated' => date("r"),
'By' => "Test <[email protected]>",
'Using' => "OpenPGP for PHP",
'For' => "TEST"
);
// Unarmor the public key for encrypting
$public_bytes = OpenPGP_Message::parse(OpenPGP::unarmor($public_bytes, "PGP PUBLIC KEY BLOCK"));
echo encryptData(file_get_contents("test.tif"), "test.tif", $public_bytes, $pgp_header);
function encryptData($data, $filename, $key, $header)
{
$data = new OpenPGP_LiteralDataPacket($data, array('format' => 'u', 'filename' => $filename));
$encrypted = OpenPGP_Crypt_Symmetric::encrypt($key, new OpenPGP_Message(array($data)));
return(OpenPGP::enarmor($encrypted->to_bytes(), "PGP MESSAGE", $header));
}
但它好像我肯定错过了某个地方的东西。我怎样才能让GnuPG成功解密我的东西?
答
首先:尝试使用由gpg生成的密钥使用OpenPGP-PHP进行加密 - 这是否行得通? (它对我来说是本地的。)
接下来,确保您生成的密钥具有0x04“加密通信”密钥标记集(您必须为此自己添加签名包,请在线路154上检查lib/openpgp_crypt_rsa.php
。看到默认生成的数据包,如果你不提供一个
而且,在凯基例如一个bug请升级至最新版本
“'$ RSA =新Crypt_RSA(); $ķ = $ rsa-> createKey(512);'“是否阻止RSA密钥大小
@ScottArciszewski将其提升到2048,仍然出现相同的错误!我将保留在2048,尽管如此, –
是$ public_bytes va可定义的riable? 'OpenPGP :: unarmor($ public_bytes,' –