如何将私钥和 public 密钥存储到由 python 的 rsa 模块生成的 pem 文件中
How to store private and public key into pem file generated by rsa module of python
我在 python 中使用以下模块进行 rsa 加密。
https://github.com/sybrenstuvel/python-rsa
可以通过pip安装如下pip3 install rsa
我在此处阅读过使用此模块的信息:https://github.com/sybrenstuvel/python-rsa/blob/master/doc/usage.rst
并且我能够生成 public 和私钥,还能够使用以下代码 public 密钥加密消息
import rsa
pubKey, priKey = rsa.newkeys(1024)
print("Public key: ",pubKey)
print("Private key: ",priKey)
msg = "vinay kumar shukla".encode('utf8')
print("Message without encryption:",msg)
msgEnc = rsa.encrypt(msg, pubKey)
print("encrypted message:",msgEnc)
但我想将私钥存储到某个文件中,正如您在该模块的使用文件中所读到的,他们提供了从 .pem 文件中读取密钥的方法,所以这意味着我应该也将密钥存储在 pem 文件中,但我不知道如何将此模块生成的密钥存储到文件中。
当我打印这个模块生成的私钥时,它给了我以下输出
PrivateKey(8647494628885176696347621451257950700244697066080136004727560667550523829374958314554596272099668415472356485265099323795859891239567212729331504592847959, 65537, 80620400968137738399200401402545247384675983145016755403642821122013062179228267902734675759971390409853232911734749752372599473758015795215587460952985, 6068766834338315918835399238932380729501892761840591316766866213831546939444337723, 1424917922362067845458877023625137340152906787710542109910805914692739733)
如果我创建文件 key.pem 并将此密钥存储到文件中,则存储此密钥。文件内容为
-----BEGIN RSA PRIVATE KEY-----
PrivateKey(8647494628885176696347621451257950700244697066080136004727560667550523829374958314554596272099668415472356485265099323795859891239567212729331504592847959, 65537, 80620400968137738399200401402545247384675983145016755403642821122013062179228267902734675759971390409853232911734749752372599473758015795215587460952985, 6068766834338315918835399238932380729501892761840591316766866213831546939444337723, 1424917922362067845458877023625137340152906787710542109910805914692739733)
-----END RSA PRIVATE KEY-----
当我尝试阅读它时,它给我类似 padding error etc 的错误,请告诉我如何存储这些密钥,然后将其读取以用于解密目的。
Python RSA refers via its homepage to this documentation, according to which the library has dedicated methods to export the keys in PKCS#1 format (methods rsa. PublicKey#save_pkcs1() or rsa.PrivateKey#save_pkcs1()) or to import them (classmethods rsa.PublicKey.load_pkcs1() or rsa.PrivateKey.load_pkcs1() 的 Github 站点)。支持编码 PEM(文本)或 DER(二进制),例如:
import rsa
# Use at least 2048 bit keys nowadays, see e.g. https://www.keylength.com/en/4/
publicKey, privateKey = rsa.newkeys(2048)
# Export public key in PKCS#1 format, PEM encoded
publicKeyPkcs1PEM = publicKey.save_pkcs1().decode('utf8')
print(publicKeyPkcs1PEM)
# Export private key in PKCS#1 format, PEM encoded
privateKeyPkcs1PEM = privateKey.save_pkcs1().decode('utf8')
print(privateKeyPkcs1PEM)
# Save and load the PEM encoded keys as you like
# Import public key in PKCS#1 format, PEM encoded
publicKeyReloaded = rsa.PublicKey.load_pkcs1(publicKeyPkcs1PEM.encode('utf8'))
# Import private key in PKCS#1 format, PEM encoded
privateKeyReloaded = rsa.PrivateKey.load_pkcs1(privateKeyPkcs1PEM.encode('utf8'))
plaintext = "vinay kumar shukla".encode('utf8')
print("Plaintext: ", plaintext)
ciphertext = rsa.encrypt(plaintext, publicKeyReloaded)
print("Ciphertext: ", ciphertext)
decryptedMessage = rsa.decrypt(ciphertext, privateKeyReloaded)
print("Decrypted message: ", decryptedMessage)
我在 python 中使用以下模块进行 rsa 加密。
https://github.com/sybrenstuvel/python-rsa
可以通过pip安装如下pip3 install rsa
我在此处阅读过使用此模块的信息:https://github.com/sybrenstuvel/python-rsa/blob/master/doc/usage.rst
并且我能够生成 public 和私钥,还能够使用以下代码 public 密钥加密消息
import rsa
pubKey, priKey = rsa.newkeys(1024)
print("Public key: ",pubKey)
print("Private key: ",priKey)
msg = "vinay kumar shukla".encode('utf8')
print("Message without encryption:",msg)
msgEnc = rsa.encrypt(msg, pubKey)
print("encrypted message:",msgEnc)
但我想将私钥存储到某个文件中,正如您在该模块的使用文件中所读到的,他们提供了从 .pem 文件中读取密钥的方法,所以这意味着我应该也将密钥存储在 pem 文件中,但我不知道如何将此模块生成的密钥存储到文件中。
当我打印这个模块生成的私钥时,它给了我以下输出
PrivateKey(8647494628885176696347621451257950700244697066080136004727560667550523829374958314554596272099668415472356485265099323795859891239567212729331504592847959, 65537, 80620400968137738399200401402545247384675983145016755403642821122013062179228267902734675759971390409853232911734749752372599473758015795215587460952985, 6068766834338315918835399238932380729501892761840591316766866213831546939444337723, 1424917922362067845458877023625137340152906787710542109910805914692739733)
如果我创建文件 key.pem 并将此密钥存储到文件中,则存储此密钥。文件内容为
-----BEGIN RSA PRIVATE KEY-----
PrivateKey(8647494628885176696347621451257950700244697066080136004727560667550523829374958314554596272099668415472356485265099323795859891239567212729331504592847959, 65537, 80620400968137738399200401402545247384675983145016755403642821122013062179228267902734675759971390409853232911734749752372599473758015795215587460952985, 6068766834338315918835399238932380729501892761840591316766866213831546939444337723, 1424917922362067845458877023625137340152906787710542109910805914692739733)
-----END RSA PRIVATE KEY-----
当我尝试阅读它时,它给我类似 padding error etc 的错误,请告诉我如何存储这些密钥,然后将其读取以用于解密目的。
Python RSA refers via its homepage to this documentation, according to which the library has dedicated methods to export the keys in PKCS#1 format (methods rsa. PublicKey#save_pkcs1() or rsa.PrivateKey#save_pkcs1()) or to import them (classmethods rsa.PublicKey.load_pkcs1() or rsa.PrivateKey.load_pkcs1() 的 Github 站点)。支持编码 PEM(文本)或 DER(二进制),例如:
import rsa
# Use at least 2048 bit keys nowadays, see e.g. https://www.keylength.com/en/4/
publicKey, privateKey = rsa.newkeys(2048)
# Export public key in PKCS#1 format, PEM encoded
publicKeyPkcs1PEM = publicKey.save_pkcs1().decode('utf8')
print(publicKeyPkcs1PEM)
# Export private key in PKCS#1 format, PEM encoded
privateKeyPkcs1PEM = privateKey.save_pkcs1().decode('utf8')
print(privateKeyPkcs1PEM)
# Save and load the PEM encoded keys as you like
# Import public key in PKCS#1 format, PEM encoded
publicKeyReloaded = rsa.PublicKey.load_pkcs1(publicKeyPkcs1PEM.encode('utf8'))
# Import private key in PKCS#1 format, PEM encoded
privateKeyReloaded = rsa.PrivateKey.load_pkcs1(privateKeyPkcs1PEM.encode('utf8'))
plaintext = "vinay kumar shukla".encode('utf8')
print("Plaintext: ", plaintext)
ciphertext = rsa.encrypt(plaintext, publicKeyReloaded)
print("Ciphertext: ", ciphertext)
decryptedMessage = rsa.decrypt(ciphertext, privateKeyReloaded)
print("Decrypted message: ", decryptedMessage)