[
'public'=>'public.pem',
'private'=>'private.pem',
]
];
public function __construct()
{
$this->key = hash('sha256', $this->aesKey, true);
}
/**
* 公钥-加密
* @param string $RSA_PUBLIC 公钥
* @param string $string 需要加密的字符串
* @param bool $is_sssembly true|需要拼接 false|不需要
* @return array
*/
public function public_key_encryp($string,$school_id){
if(isset($this->school_rsa[$school_id]['public'])){
$this->publicKey = public_path() . "/cert/IcbcPayCert/".$school_id."/".$this->school_rsa[$school_id]['public'];
}else{
return ['status'=>false,'messate'=>'私钥不可用'];
}
$keyContent = file_get_contents($this->publicKey);
if(!$keyContent){
return ['status'=>false,'messate'=>'私钥不可用'];
}
//验证公钥是否正确
$public_key = openssl_pkey_get_public($keyContent);
if(!$public_key){
return ['status'=>false,'messate'=>'公钥不可用'];
}
//第一个参数是待加密的数据只能是string,第二个参数是加密后的数据,第三个参数是openssl_pkey_get_public返回的资源类型,第四个参数是填充方式
$return_en = openssl_public_encrypt($string, $crypted, $public_key);
if(!$return_en){
return ['status'=>false,'messate'=>'公钥错误'];
}
$eb64_cry = base64_encode($crypted);
return ['status'=>true,'messate'=>'ok','data'=>$eb64_cry];
}
/**
* 私钥-解密
* @param string $string 需要加密的字符串
* @return array
*/
public function private_key_decrypt($string,$school_id){
if($this->school_rsa[$school_id]['private']){
$this->privateKey = public_path() . "/cert/IcbcPayCert/".$school_id."/".$this->school_rsa[$school_id]['private'];
}else{
return ['status'=>false,'messate'=>'私钥不可用'];
}
$keyContent = file_get_contents($this->privateKey);
if(!$keyContent){
return ['status'=>false,'messate'=>'私钥不可用'];
}
//验证私钥
$private_key = openssl_pkey_get_private($keyContent);
if(!$private_key){
return ['status'=>false,'messate'=>'私钥不可用'];
}
$return_de = openssl_private_decrypt(base64_decode($string), $decrypted, $private_key);
if(!$return_de){
return ['status'=>false,'messate'=>'解密失败,请检查私秘钥'];
}
return ['status'=>true,'messate'=>'ok','data'=>$decrypted];
}
/**
* 私钥-加密
* @param string $string 需要加密的字符串
* @return array
*/
public function private_key_encryp($string,$school_id){
if($this->school_rsa[$school_id]['private']){
$this->privateKey = public_path() . "/cert/IcbcPayCert/".$school_id."/".$this->school_rsa[$school_id]['private'];
}else{
return ['status'=>false,'messate'=>'私钥不可用'];
}
$keyContent = file_get_contents($this->privateKey);
if(!$keyContent){
return ['status'=>false,'messate'=>'私钥不可用'];
}
//验证私钥是否正确
$private_key = openssl_pkey_get_private($keyContent);
if(!$private_key){
return ['status'=>false,'messate'=>'私钥不可用'];
}
//第一个参数是待加密的数据只能是string,第二个参数是加密后的数据,第三个参数是openssl_pkey_get_public返回的资源类型,第四个参数是填充方式
$return_en = openssl_private_encrypt($string, $crypted, $private_key);
if(!$return_en){
return ['status'=>false,'messate'=>'加密失败'];
}
$eb64_cry = base64_encode($crypted);
return ['status'=>true,'messate'=>'ok','data'=>$eb64_cry];
}
/**
* 公钥-解密
* @param string $string 需要加密的字符串
* @return array
*/
public function public_key_decrypt($string,$school_id){
if(isset($this->school_rsa[$school_id]['public'])){
$this->publicKey = public_path() . "/cert/IcbcPayCert/".$school_id."/".$this->school_rsa[$school_id]['public'];
}else{
return ['status'=>false,'messate'=>'私钥不可用'];
}
$keyContent = file_get_contents($this->publicKey);
if(!$keyContent){
return ['status'=>false,'messate'=>'私钥不可用'];
}
//验证公钥是否正确
$public_key = openssl_pkey_get_public($keyContent);
if(!$public_key){
return ['status'=>false,'messate'=>'公钥不可用'];
}
$return_en = openssl_public_decrypt(base64_decode($string), $decrypted, $public_key);
if(!$return_en){
return ['status'=>false,'messate'=>'解密失败'];
}
return ['status'=>true,'messate'=>'ok','data'=>$decrypted];
}
/**
* AES 解密
* @param $input
* @return string
*/
public function encrypt($input)
{
$data = openssl_encrypt($input, 'AES-256-CBC', $this->key, OPENSSL_RAW_DATA, $this->hexToStr($this->hex_iv));
$data = base64_encode($data);
return $data;
}
/**
* 解密
* @param $input
* @return false|string
*/
public function decrypt($input)
{
$decrypted = openssl_decrypt(base64_decode($input), 'AES-256-CBC', $this->key, OPENSSL_RAW_DATA, $this->hexToStr($this->hex_iv));
return $decrypted;
}
public function hexToStr($hex){
$string='';
for ($i=0; $i < strlen($hex)-1; $i+=2){
$string .= chr(hexdec($hex[$i].$hex[$i+1]));
}
return $string;
}
}