主页 / coding / 问题 / 79597696
Accepted
kfernandez
Asked: 2025-04-29 14:03:43 +0800 CST

如何解密使用 PHP openssl 加密的 Python 值

  • 772

我有一个使用 PHP openssl 使用密码 AES-CBC-256 加密的值,但最终值的密码也使用相同的方法加密。openssl_encrypt($key, $cipher, $passphrase, 0, $iv)

我需要能够使用 Python 解密这些数据,但遇到了块大小问题。

以下是我目前掌握的一些代码。我已经用 PHP 测试过解密,一切正常。本例中的最终值应该是“Jimmy”。

import base64
from Crypto.Cipher import AES
from Crypto.Util.Padding import pad, unpad

localKey = base64.b64decode('Po0KPxyF')
localIv = base64.b64decode('s8W+/a4jkp9mhO3NkCL7Yg==')

encrypted_value = base64.b64decode('hl5n6Nq5QYtgKIyLEVCupA==')
encrypted_key = base64.b64decode('MGRHRFlaMzhCR0lxb2VHS1JHQXcrWkV2bkJpNWFZb3cybW9iQW5KYTlOU0xKK1FHc2pPUW1MUE9JRU5zTXN1Rg==')
encrypted_iv = base64.b64decode('J31SrExr7KKIOertYIPhpQ==')

# First need to encrypted key that uses the local key as the passphrase
cipher_key = AES.new(pad(localKey,16), AES.MODE_CBC, localIv)
decrypted_key = cipher_key.decrypt(encrypted_key)

# Then decrypted the final value using the newly decrypted key
cipher_key = AES.new(unpad(decrypted_key,16), AES.MODE_CBC, encrypted_iv)
decrypted_value = cipher_key.decrypt(encrypted_value)

1 个回答

  1. Best Answer

    我设法找出了执行解密的 PHP 代码:

    $localKey  = base64_decode('Po0KPxyF');
$localIv = base64_decode('s8W+/a4jkp9mhO3NkCL7Yg==');

$encrypted_value = base64_decode('hl5n6Nq5QYtgKIyLEVCupA==');
$encrypted_key = base64_decode('MGRHRFlaMzhCR0lxb2VHS1JHQXcrWkV2bkJpNWFZb3cybW9iQW5KYTlOU0xKK1FHc2pPUW1MUE9JRU5zTXN1Rg==');
$encrypted_iv = base64_decode('J31SrExr7KKIOertYIPhpQ==');

$decrypted_key = openssl_decrypt(base64_decode($encrypted_key), 'aes-256-cbc', $localKey, OPENSSL_RAW_DATA, $localIv);
$decrypted_value  = openssl_decrypt($encrypted_value, 'aes-256-cbc', $decrypted_key, OPENSSL_RAW_DATA, $encrypted_iv);
echo $decrypted_value;

    输出:

    s:5:"Jimmy";

    演示

    评论:

    • $localKey短于 256 位,因此openssl_decrypt()用空字节填充
    • $encrypted_key经过两次 base64 编码,因此需要解码两次
    • 中包含的值$decrypted_value被序列化为serialize()

    这是一个 Python 实现(基于 PyCryptodome):

    import base64
from Crypto.Cipher import AES
from Crypto.Util.Padding import unpad

localKey = base64.b64decode('Po0KPxyF')
localIv = base64.b64decode('s8W+/a4jkp9mhO3NkCL7Yg==')

encrypted_value = base64.b64decode('hl5n6Nq5QYtgKIyLEVCupA==')
encrypted_key = base64.b64decode('MGRHRFlaMzhCR0lxb2VHS1JHQXcrWkV2bkJpNWFZb3cybW9iQW5KYTlOU0xKK1FHc2pPUW1MUE9JRU5zTXN1Rg==')
encrypted_iv = base64.b64decode('J31SrExr7KKIOertYIPhpQ==')

# First need to encrypted key that uses the local key as the passphrase
cipher_key = AES.new(localKey.ljust(32, b'\0'), AES.MODE_CBC, localIv)
decrypted_key = cipher_key.decrypt(base64.b64decode(encrypted_key))

# Then decrypted the final value using the newly decrypted key
cipher_key = AES.new(unpad(decrypted_key,16), AES.MODE_CBC, encrypted_iv)
decrypted_value = cipher_key.decrypt(encrypted_value)
value = unpad(decrypted_value,16).decode()
print(value)

    输出:

    s:5:"Jimmy";

    演示

    • 7

相关问题