rsacryptoserviceprovider.VerifyData始终返回false

Below is my C# Program that verifies a response from a php script which is using phpseclib

static void Main(string[] args)
        {

            var payment =
                "VUQxMzE1MTg0OTk0MDM2MzIyMDJ8VDAwMDAxN0kxMFVEMTMxNTE4NDk5NDAzNjMyMjAyfDIwMTctMTAtMDd8MHxwYXltZW50IHN1Y2Nlc3NmdWx8MjAyNTQ=";
            var signature =
                "V0T9ZedZW8oB9uy4PazRIxWHvJ7rR+FVtnGjUy30mSKqgmEceZWE1aBvkQWeG4ERjAXHjsRge0D0MlHd9zvXjrLog+G5nWBHIu52O0srCd9d71JVztMQy8fV5oSnRPtlUpgdmn8QDnJ27XrbaHzNxnFyybTQhmbfxkT0oJ0MEOk=";

            var sigByte = Convert.FromBase64String(signature);
            var payBite = Convert.FromBase64String(payment);

            Verify(payBite, sigByte);
        }

        public static bool Verify(byte[] payment, byte[] signature)
        {
            var key = Resources.PublicKey;
            var cipher = Crypto.DecodeX509PublicKey(key);

            var res = cipher.VerifyData(payment, "SHA256", signature);
            return res;
        }

the public key used is below:

but the verify method seems to be returning false all the time. any idea why this happens.

the same content works in the php code which the vendor gave to me

<?php
//load RSA library
include 'Crypt/RSA.php';
//initialize RSA
$rsa = new Crypt_RSA();
//decode & get POST parameters
$payment = base64_decode("VUQxMzE1MTg0OTk0MDM2MzIyMDJ8VDAwMDAxN0kxMFVEMTMxNTE4NDk5NDAzNjMyMjAyfDIwMTctMTAtMDd8MHxwYXltZW50IHN1Y2Nlc3NmdWx8MjAyNTQ=");
$signature = base64_decode("V0T9ZedZW8oB9uy4PazRIxWHvJ7rR+FVtnGjUy30mSKqgmEceZWE1aBvkQWeG4ERjAXHjsRge0D0MlHd9zvXjrLog+G5nWBHIu52O0srCd9d71JVztMQy8fV5oSnRPtlUpgdmn8QDnJ27XrbaHzNxnFyybTQhmbfxkT0oJ0MEOk=");

//load public key for signature matching
$publickey = "-----BEGIN PUBLIC KEY-----
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDSiXzUuH9ePZgSLYrzZ0qhta25
HCb+WG48wIKUl+cQNC/Fl/KZG2cSwRXdo8KZLVWWO5qwzplfTWEylg4IqRA48rYY
f/b+Y7QhORKeAws4pttLZJBbh1mIbZ9HXfQ+zBjP+zfJZ1YjSFs2uZdwSt1itUcJ
/GQFct8GoUevNELG7wIDAQAB
-----END PUBLIC KEY-----";
$rsa->loadKey($publickey);
//verify signature
$signature_status = $rsa->verify($payment, $signature);
//get payment response in segments
//payment format: order_id|order_refference_number|date_time_transaction|payment_gateway_used|status_code|comment;
$responseVariables = explode('|', $payment);       


    //display values
    echo $signature_status;

    echo '<br/>';
    var_dump($responseVariables);


?>

Any idea what i'm doing wrong here. i tried passing "SHA512", "MD5" all in the C# code and still returns false.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

dongni1892 2017-10-07 14:12

关注

Well, seems like the vendor is NOT using PKCS1, he's using PSS. Verify it this way (requires Bouncy Castle!):

    public static bool Verify(byte[] payment, byte[] signature)
    {
        var pub = @"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDSiXzUuH9ePZgSLYrzZ0qhta25HCb+WG48wIKUl+cQNC/Fl/KZG2cSwRXdo8KZLVWWO5qwzplfTWEylg4IqRA48rYYf/b+Y7QhORKeAws4pttLZJBbh1mIbZ9HXfQ+zBjP+zfJZ1YjSFs2uZdwSt1itUcJ/GQFct8GoUevNELG7wIDAQAB";

        byte[] raw = Convert.FromBase64String(pub);
        AsymmetricKeyParameter aKey = PublicKeyFactory.CreateKey(raw);
        RsaKeyParameters rKey = (RsaKeyParameters)aKey;

        PssSigner pss = new PssSigner(new RsaEngine(), new Sha1Digest(), 20);
        pss.Init(false, rKey);
        pss.BlockUpdate(payment, 0, payment.Length);
        var res = pss.VerifySignature(signature);

        return res;
    }

本回答被题主选为最佳回答 , 对您是否有帮助呢?

查看更多回答(1条)

报告相同问题？

关注问题

rsacryptoserviceprovider.VerifyData始终返回false c# php
2017-10-07 13:02

回答 2 已采纳 Well, seems like the vendor is NOT using PKCS1, he's using PSS. Verify it this way (requires Bounc
C# 使用RSA进行加密解密时，报参数错误，研究了半天没找到办法解决 c#
2022-07-07 20:56

回答 1 已采纳将错误提示信息用双引号括住，仍百度或必应搜索框里搜一下。
C#对Java的SHA256withRSA的验签问题 c# java
2020-03-07 00:39

回答 2 已采纳 //验签方法 public bool Verifycer(string content, string signedString) { try
C# RSACryptoServiceProvider加密解密签名验签和DESCryptoServiceProvider加解密
2019-09-10 09:35

iBenxiaohai123的博客 C#在using System.Security.Cryptography下有 DESCryptoServiceProvider RSACryptoServiceProvider DESCryptoServiceProvider 是用于对称加密 RSACryptoServiceProvider是用于非对称加密对称...
在用GO语言加密的同时，如何在c＃中解密RSA加密的字符串。解码OAEP填充时发生错误 c#
2018-01-11 13:39

回答 2 已采纳 After addressing comments by @bartonjs I've also changed response response from go to var encryp
在php中使用公钥加密后，如何使用私钥解密c＃中的数据块？ c# php
2016-12-31 07:07

回答 1 已采纳 After an extensive chat with the author of the question it seems that there are two (main) issues
如何在Go中获取SHA1 RSA字节签名？
2016-02-21 17:04

回答 1 已采纳 C# code using System; using System.Collections.Generic; using System.Linq; using System.Security.
RSACryptoServiceProvider.FromXmlString 系统找不到指定的文件。
2014-01-07 15:30

李文辉的博客 System.Security.Cryptography.RSACryptoServiceProvider provider = new RSACryptoServiceProvider(); provider.FromXmlString(xmlPrivateKey); 改为 CspParameters RSAParams = new CspParamet
如何解密在C＃中使用RSA加密的文本[重复] c# php
2013-06-04 18:39

回答 1 已采纳 The latest version of phpseclib is 0.3.1 so, first, I'd recommend you upgrade. Second... phpsecli
用openssl_seal加密的php数据。如何在c＃中解码？ c# php
2011-05-16 20:44

回答 1 已采纳 Found the issue here myself. In the c# code I was doing an extra encoding to base64 to get it back
RSACryptoServiceProvider加密解密签名验签和DESCryptoServiceProvider加解密
2016-10-04 17:23

起个名字真的好难啊的博客 C#在using System.Security.Cryptography下有 DESCryptoServiceProvider RSACryptoServiceProvider DESCryptoServiceProvider 是用于对称加密 RSACryptoServiceProvider是用于非对称加密对称加密的意思：有一...
.NET RSACryptoServiceProvider【创建公共/私有密钥对】
2016-10-18 23:38

风神.NET的博客 b = rsa.VerifyData(data, new SHA1CryptoServiceProvider(), signature); } return b; } public static KeyPair CreateNew ( int length) { KeyPair ret; //密钥的大小 using ( var rsa =...
rsa算法 c#语言,C#实现RSA算法加密解密、签名以及签名的验证
2021-05-26 01:49

weixin_39946657的博客 } /// /// 验签 /// /// 待验签字符串 /// 签名 /// 公钥 /// 编码格式 /// true(通过)，false(不通过) public static bool verify(string content, string signedString, string publicKey, ...
signature=f7be84e6898d3e0977408524b3903242,c# - Equivalent of the method RSACryptoServiceProvider si...
2021-06-08 06:18

弗兰克邓的博客 using (RSACryptoServiceProvider key = new RSACryptoServiceProvider()) { key.FromXmlString(cert.PrivateKey.ToXmlString(true)); byte[] ret = key.SignHash(btHash, CryptoConfig.MapNameToOID("SHA256")); }...
C#数据Encrypt加密Encrypt解密的算法使用--非对称算法RSACryptoServiceProvider
2020-01-09 14:28

LongtengGensSupreme的博客 C#数据加密解密的非对称算法使用---RSACryptoServiceProvider Asymmetric algorithms--Encrypt Encrypt C#数据Encrypt加密Encrypt解密的相关算法可以参考System.Security.Cryptography，这个类库中包含MD5,SHA1,...
C# RSACryptoServiceProvider加密解密签名验签和DESCryptoServic
2017-09-21 17:29

weixin_30809173的博客 C#在using System.Security.Cryptography下有 DESCryptoServiceProvider RSACryptoServiceProviderDESCryptoServiceProvider 是用于对称加密 RSACryptoServiceProvider是用于非对称加密对称加密：对称加密算法是...
用RSA算法生成公钥私钥对，并加密解密文件内容
2012-08-15 09:27

besley的博客 bool isSigned = dsaProvider.VerifyData(plainBytes, signedBytes); return System.Text.Encoding.UTF8.GetString(plainBytes); } 备注：此代码经过asp.net mvc调试环境验证，此处...
C#RSA私钥加密，公钥解密出错的原因
2018-05-11 13:31

Andrewniu的博客 RSACryptoServiceProvider类中提供了SignData和VerifyData方法来实现签名和验证签名。这就是为什么RSACryptoServiceProvider类提供了Encrypt和Decrypt方法实现加密和解密，而我们通常只用公钥加密，私钥解密的原因...
C# RSACryptoServiceProvider 加密解密 RSA 加密解密
2019-05-12 22:56

weixin_33829657的博客 rSACryptoServiceProvider.FromXmlString(streamReader.ReadToEnd()); // 将公匙载入进RSA实例中 } byte [] buffer = Encoding.UTF8.GetBytes(str); // 将明文转换为byte[] // 加密后的数据就是一个...
C#RSACryptoServiceProvider加密
2018-04-03 15:13

weixin_30695195的博客 RSACryptoServiceProvider 解密只能使用私钥。具体代码如下 public class RSAUtils { public byte[] StreamToBytes(Stream stream) { byte[] bytes = new byte[strea...
没有解决我的问题, 去提问

悬赏问题

¥15 请问paddlehub能支持移动端开发吗？在Android studio上该如何部署？
¥170 如图所示配置eNSP
¥20 docker里部署springboot项目，访问不到扬声器
¥15 netty整合springboot之后自动重连失效
¥15 悬赏！微信开发者工具报错，求帮改
¥20 wireshark抓不到vlan
¥20 关于#stm32#的问题：需要指导自动酸碱滴定仪的原理图程序代码及仿真
¥20 设计一款异域新娘的视频相亲软件需要哪些技术支持
¥15 stata安慰剂检验作图但是真实值不出现在图上
¥15 c程序不知道为什么得不到结果

码龄粉丝数原力等级 --

rsacryptoserviceprovider.VerifyData始终返回false

2条回答默认最新

码龄粉丝数原力等级 --

悬赏问题

rsacryptoserviceprovider.VerifyData始终返回false

2条回答 默认 最新

悬赏问题

2条回答默认最新