将PyCrypto解密迁移到PyCryptodome

Question

下面的代码使用PyCrypto库打印127

from Crypto.PublicKey import RSA
import base64

# Private key in tuple form (obscured for privacy)
key = [1, 1, 1]

bk = "zJuG60z9Iv..." # (obscured for privacy)

privatekey = RSA.construct(key)
result = privatekey.decrypt(base64.b64decode(bk))
print(len(result))

据我所知，这等同于使用PyCryptodome。但是，结果值的长度仅为16，这表示可能存在解密错误。

from Crypto.PublicKey import RSA
from Crypto.Cipher import PKCS1_v1_5
import base64

# Private key in tuple form (obscured for privacy)
key = [1, 1, 1]

bk = "zJuG60z9Iv..." # (obscured for privacy)

privatekey = RSA.construct(key)
cipher = PKCS1_v1_5.new(privatekey)
result = cipher.decrypt(base64.b64decode(bk), None)
print(len(result))

我相信这是因为我的密文使用了教科书中未填充的RSA。有人知道如何用PyCryptodome或其他维护的库来解密这个值吗？

Answer 1

PyCryptodome没有提供内置的方法来解密教科书上的RSA，但可以使用标准库中的模幂运算来解密。

from Crypto.PublicKey import RSA
import base64

# Private key in tuple form (obscured for privacy)
key = [1, 1, 1]

bk = "zJuG60z9Iv..." # (obscured for privacy)

privatekey = RSA.construct(key)
ciphertext = base64.b64decode(bk)
ct_int = int.from_bytes(ciphertext, 'big')
pt_int = pow(ct_int, privatekey.d, privatekey.n)
plaintext = pt_int.to_bytes(privatekey.size_in_bytes(), 'big').lstrip(b'\x00')
print(len(plaintext))