.Net C# RSA签名和验签重写

namespace com._80community.unittest.CUP
{
    /// <summary>
    /// CUP Client
    /// </summary>
    public interface IClient
    {
        /// <summary>
        /// Generate Signature
        /// </summary>
        /// <param name="content">contents requiring signatures</param>
        /// <param name="privateKey">private key</param>
        /// <param name="inputCharset">coding format</param>
        /// <returns>the signature string</returns>
        string Sign(string content, string inputCharset);
        /// <summary>
        /// Verification Signature
        /// </summary>
        /// <param name="content">contents requiring signature verification </param>
        /// <param name="signedString">the signature string</param>
        /// <param name="publicKey">public key</param>
        /// <param name="inputCharset">coding format</param>
        /// <returns></returns>
        bool Verify(string content, string signedString, string inputCharset);

    }
}

using System;
using System.IO;
using System.Security.Cryptography;
using System.Text;

namespace com._80community.unittest.CUP
{
    /// <summary>
    /// CUP Client
    /// </summary>
    public class Client : IClient
    {
        private string serverUrl;
        private string merchantNo;
        private string privateKey;
        private string publicKey;

        public Client(string serverUrl, string merchantNo, string privateKey, string publicKey)
        {
            this.serverUrl = serverUrl;
            this.merchantNo = merchantNo;
            this.privateKey = privateKey;
            this.publicKey = publicKey;
        }

        #region Generate Signature

        // <summary>
        /// Generate Signature
        /// </summary>
        public string Sign(string content, string inputCharset = "UTF-8")
        {
            try
            {
                Encoding code = Encoding.GetEncoding(inputCharset);
                byte[] data = code.GetBytes(content);
                RSACryptoServiceProvider rsa = DecodePemPrivateKey(privateKey);
                SHA1 sh = new SHA1CryptoServiceProvider();

                byte[] signData = rsa.SignData(data, sh);
                return Convert.ToBase64String(signData);
            }
            catch
            {
                return "";
            }
        }

        #region Internal Method for Generating Signature 
        /// <summary>
        /// 把PKCS8格式的私钥转成PEK格式私钥，然后再填充RSACryptoServiceProvider对象
        /// </summary>
        /// <param name="pkcs8"></param>
        /// <returns></returns>
        internal RSACryptoServiceProvider DecodePrivateKeyInfo(byte[] pkcs8)
        {
            byte[] seqOID = { 0x30, 0x0D, 0x06, 0x09, 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x01, 0x01, 0x05, 0x00 };
            byte[] seq = new byte[15];

            MemoryStream mem = new MemoryStream(pkcs8);
            RSACryptoServiceProvider rsacsp = null;

            int lenStream = (int)mem.Length;
            BinaryReader binReader = new BinaryReader(mem);
            byte bt = 0;
            ushort twoBytes = 0;

            try
            {
                twoBytes = binReader.ReadUInt16();
                if (twoBytes == 0x8130)        //data read as little endian order (actual data order for Sequence is 30 81)
                    binReader.ReadByte();    //advance 1 byte
                else if (twoBytes == 0x8230)
                    binReader.ReadInt16();    //advance 2 bytes
                else
                    return null;

                bt = binReader.ReadByte();
                if (bt != 0x02)
                    return null;

                twoBytes = binReader.ReadUInt16();

                if (twoBytes != 0x0001)
                    return null;

                seq = binReader.ReadBytes(15);            //read the Sequence OID
                if (!CompareBytearrays(seq, seqOID))    //make sure Sequence for OID is correct
                    return null;

                bt = binReader.ReadByte();
                if (bt != 0x04)                    //expect an Octet string 
                    return null;

                bt = binReader.ReadByte();        //read next byte, or next 2 bytes is  0x81 or 0x82; otherwise bt is the byte count
                if (bt == 0x81)
                    binReader.ReadByte();
                else
                    if (bt == 0x82)
                    binReader.ReadUInt16();

                // at this stage, the remaining sequence should be the RSA private key
                byte[] rsaprivkey = binReader.ReadBytes((int)(lenStream - mem.Position));
                rsacsp = DecodeRSAPrivateKey(rsaprivkey);

                return rsacsp;
            }
            catch
            {
                return null;
            }
            finally
            {
                binReader.Close();
            }
        }


        private bool CompareBytearrays(byte[] a, byte[] b)
        {
            if (a.Length != b.Length)
                return false;
            int i = 0;
            foreach (byte c in a)
            {
                if (c != b[i])
                    return false;
                i++;
            }
            return true;
        }

        /// <summary>
        /// PEM格式私钥转RSACryptoServiceProvider对象
        /// </summary>
        /// <param name="privkey"></param>
        /// <returns></returns>
        internal RSACryptoServiceProvider DecodeRSAPrivateKey(byte[] privkey)
        {
            byte[] modulus, e, d, p, q, dp, dq, iq;

            // Set up stream to decode the asn.1 encoded RSA private key
            MemoryStream mem = new MemoryStream(privkey);

            // wrap Memory Stream with BinaryReader for easy reading
            BinaryReader binReader = new BinaryReader(mem);
            byte bt = 0;
            ushort twoBytes = 0;
            int elems = 0;
            try
            {
                twoBytes = binReader.ReadUInt16();
                if (twoBytes == 0x8130) //data read as little endian order (actual data order for Sequence is 30 81)
                {
                    binReader.ReadByte(); // advance 1 byte
                }
                else if (twoBytes == 0x8230)
                {
                    binReader.ReadInt16(); // advance 2 byte
                }
                else
                {
                    return null;
                }

                twoBytes = binReader.ReadUInt16();
                if (twoBytes != 0x0102) // version number
                    return null;
                bt = binReader.ReadByte();
                if (bt != 0x00)
                    return null;

                // all private key components are Integer sequences
                elems = GetIntegerSize(binReader);
                modulus = binReader.ReadBytes(elems);

                elems = GetIntegerSize(binReader);
                e = binReader.ReadBytes(elems);

                elems = GetIntegerSize(binReader);
                d = binReader.ReadBytes(elems);

                elems = GetIntegerSize(binReader);
                p = binReader.ReadBytes(elems);

                elems = GetIntegerSize(binReader);
                q = binReader.ReadBytes(elems);

                elems = GetIntegerSize(binReader);
                dp = binReader.ReadBytes(elems);

                elems = GetIntegerSize(binReader);
                dq = binReader.ReadBytes(elems);

                elems = GetIntegerSize(binReader);
                iq = binReader.ReadBytes(elems);

                // ------- create RSACryptoServiceProvider instance and initialize with public key -----
                RSACryptoServiceProvider rsa = new RSACryptoServiceProvider();
                RSAParameters rsaParams = new RSAParameters();
                rsaParams.Modulus = modulus;
                rsaParams.Exponent = e;
                rsaParams.D = d;
                rsaParams.P = p;
                rsaParams.Q = q;
                rsaParams.DP = dp;
                rsaParams.DQ = dq;
                rsaParams.InverseQ = iq;
                rsa.ImportParameters(rsaParams);
                return rsa;
            }
            catch (Exception)
            {
                return null;
            }
            finally
            {
                binReader.Close();
            }
        }


        internal int GetIntegerSize(BinaryReader binReader)
        {
            byte bt = 0;
            byte lowByte = 0x00;
            byte highByte = 0x00;
            int count = 0;
            bt = binReader.ReadByte();
            if (bt != 0x02)        //expect integer
                return 0;
            bt = binReader.ReadByte();

            if (bt == 0x81)
            {
                count = binReader.ReadByte();    // data size in next byte
            }
            else
            {
                if (bt == 0x82)
                {
                    highByte = binReader.ReadByte();    // data size in next 2 bytes
                    lowByte = binReader.ReadByte();
                    byte[] modint = { lowByte, highByte, 0x00, 0x00 };
                    count = BitConverter.ToInt32(modint, 0);
                }
                else
                {
                    count = bt;        // we already have the data size
                }
            }

            while (binReader.ReadByte() == 0x00)
            {    //remove high order zeros in data
                count -= 1;
            }
            binReader.BaseStream.Seek(-1, SeekOrigin.Current);        //last ReadByte wasn't a removed zero, so back up a byte
            return count;
        }


        #endregion


        /// <summary>
        /// 解析PKCS8格式的pem私钥
        /// </summary>
        /// <param name="pemstr"></param>
        /// <returns></returns>
        internal RSACryptoServiceProvider DecodePemPrivateKey(string pemstr)
        {
            RSACryptoServiceProvider rsa = null;
            byte[] pkcs8PrivteKey = Convert.FromBase64String(pemstr);
            if (pkcs8PrivteKey != null)
            {
                rsa = DecodePrivateKeyInfo(pkcs8PrivteKey);
            }
            return rsa;
        }

        #endregion

        #region Verification Signature

        /// <summary>
        /// Verification Signature
        /// </summary>
        public bool Verify(string content, string signedString, string inputCharset = "UTF-8")
        {
            bool result = false;

            Encoding code = Encoding.GetEncoding(inputCharset);
            byte[] data = code.GetBytes(content);
            byte[] soureData = Convert.FromBase64String(signedString);
            RSAParameters paraPub = ConvertFromPublicKey(publicKey);
            RSACryptoServiceProvider rsaPub = new RSACryptoServiceProvider();
            rsaPub.ImportParameters(paraPub);
            SHA1 sh = new SHA1CryptoServiceProvider();
            result = rsaPub.VerifyData(data, sh, soureData);
            return result;
        }

        /// <summary>
        /// 
        /// </summary>
        /// <param name="pemFileConent"></param>
        /// <returns></returns>
        internal RSAParameters ConvertFromPublicKey(string pempublicKey)
        {
            byte[] keyData = Convert.FromBase64String(pempublicKey);
            if (keyData.Length < 162)
            {
                throw new ArgumentException("pem file content is incorrect.");
            }
            byte[] pemModulus = new byte[128];
            byte[] pemPublicExponent = new byte[3];
            Array.Copy(keyData, 29, pemModulus, 0, 128);
            Array.Copy(keyData, 159, pemPublicExponent, 0, 3);
            RSAParameters para = new RSAParameters();
            para.Modulus = pemModulus;
            para.Exponent = pemPublicExponent;
            return para;
        }

        public string DecodeBase64(string code_type, string code)
        {
            string decode = "";
            byte[] bytes = Convert.FromBase64String(code);  //将2进制编码转换为8位无符号整数数组. 
            try
            {
                decode = Encoding.GetEncoding(code_type).GetString(bytes);  //将指定字节数组中的一个字节序列解码为一个字符串。 
            }
            catch
            {
                decode = code;
            }
            return decode;
        }


        #endregion

        #region Get the value of the key from the key file
        /// <summary>
        /// Get the value of the key from the key file
        /// </summary>
        /// <param name="type">RSA PRIVATE KEY/RSA PUBLIC KEY</param>
        /// <param name="pemUrl">url of the key file</param>
        /// <returns>base64 string</returns>
        static public string GetKeyFromPem(string type, string pemUrl)
        {
            string base64 = string.Empty;
            using (FileStream fs = File.OpenRead(pemUrl))
            {
                byte[] data1 = new byte[fs.Length];
                fs.Read(data1, 0, data1.Length);
                string pem = Encoding.UTF8.GetString(data1);
                string header = String.Format("-----BEGIN {0}-----\n", type);
                string footer = String.Format("-----END {0}-----", type);
                int start = pem.IndexOf(header) + header.Length;
                int end = pem.IndexOf(footer, start);
                base64 = pem.Substring(start, (end - start));
            }
            return base64;
        }
        #endregion


    }
}

using System.Configuration;

namespace Entity.Common
{
    static public partial class AppConfig
    {
        static public string GetServerUrl
        {
            get { return ConfigurationManager.AppSettings["CupServerUrl"]; }
        }
        static public string GetMerchantNo
        {
            get { return ConfigurationManager.AppSettings["CupMerchantNo"]; }
        }
        static public string GetMerchantName
        {
            get { return ConfigurationManager.AppSettings["CupMerchantName"]; }
        }
        static public string GetPublicKey
        {
            get { return ConfigurationManager.AppSettings["CupPublicKey"]; }
        }
        static public string GetPrivateKey
        {
            get { return ConfigurationManager.AppSettings["CupPrivateKey"]; }
        }
        static public string GetPublicKeyPem
        {
            get { return ConfigurationManager.AppSettings["CupPublicKeyPem"]; }
        }
        static public string GetPrivateKeyPem
        {
            get { return ConfigurationManager.AppSettings["CupPrivateKeyPem"]; }
        }
    }
}

  <appSettings>
    <add key="CupServerUrl" value=""/>
    <add key="CupMerchantNo" value=""/>
    <add key="CupMerchantName" value=""/>
    <add key="CupPublicKey" value=""/>
    <add key="CupPrivateKey" value=""/>
    <add key="CupPublicKeyPem" value="rsa_public_key.pem"/>
    <add key="CupPrivateKeyPem" value="rsa_private_key.pem"/>
    
  </appSettings>

    [TestClass]
    public class RSATest
    {
        string serverUrl = AppConfig.GetServerUrl;
        string merchantNo = AppConfig.GetMerchantNo;
        //string publicKey = AppConfig.GetPublicKey;
        //string privateKey = AppConfig.GetPrivateKey;

        private string content = "123";

        [TestMethod]
        public void TestMethod1()
        {
            string temp = AppDomain.CurrentDomain.BaseDirectory.Replace("bin\Debug", "");
            string publicKeyPem = Path.Combine(temp, AppConfig.GetPublicKeyPem);
            string privateKeyPem = Path.Combine(temp, AppConfig.GetPrivateKeyPem);

            string publicKey = Client.GetKeyFromPem("RSA PUBLIC KEY", publicKeyPem);
            string privateKey = Client.GetKeyFromPem("RSA PRIVATE KEY", privateKeyPem);

            Client client = new Client(serverUrl, merchantNo, privateKey, publicKey);

            var a = string.Format("待签名字符串：{0}", content);

            string res = client.Sign(content);


            var b = string.Format("签名结果：{0}", res);


            bool ss = client.Verify(content, res);

            var c = string.Format("验签结果：{0}", ss);
        }
    }