在C#中从.NET SecureString读取单个字符?
WPF的PasswordBox返回一个SecureString,它对窥探者隐藏密码在C#中从.NET SecureString读取单个字符?,c#,bstr,securestring,C#,Bstr,Securestring,WPF的PasswordBox返回一个SecureString,它对窥探者隐藏密码 IntPtr bstr = Marshal.SecureStringToBSTR(secureString); string password = Marshal.PtrToStringBSTR(bstr); Marshal.FreeBSTR(bstr); 问题是你最终必须得到密码的值,我在网上找到的建议都涉及到将值复制到字符串中,这让你回到窥探者的问题上来 IntPtr bstr = Marshal.Secu
IntPtr bstr = Marshal.SecureStringToBSTR(secureString);
string password = Marshal.PtrToStringBSTR(bstr);
Marshal.FreeBSTR(bstr);
IntPtr bstr = Marshal.SecureStringToBSTR(secureString);
string password = Marshal.PtrToStringBSTR(bstr);
Marshal.FreeBSTR(bstr);
字节b=1;
int i=0;
而((char)b!='\0')
{
b=封送处理读取字节(bstr,i);
// ...
i+=2;
}
short b = Marshal.ReadInt16(bstr, i);
int len = Marshal.ReadInt32(bstr, -4);
Marshal.ZeroFreeBSTR(bstr);
此链接显示如何使用Marshal.SecureStringToBSTR(secretString)并将其分配给指针,并更新指针以循环字符。尝试类似的操作我将lc在链接中的VB代码示例转换为C 希望这能帮助你开始
Char[] input = "Super Secret String".ToCharArray();
SecureString secret = new SecureString();
for (int idx = 0; idx <= input.Length - 1; idx++) {
secret.AppendChar(FileSystem.input(idx));
}
SecurePassword.MakeReadOnly();
IntPtr pBStr = Marshal.SecureStringToBSTR(secret);
string output = Marshal.PtrToStringBSTR(pBStr);
Marshal.FreeBSTR(pBStr);
SHA512 sha = new SHA512Managed();
byte[] result = sha.ComputeHash(Encoding.UTF8.GetBytes(output));
Char[]input=“Super Secret String”.ToCharArray();
SecureString secret=新SecureString();
对于(intidx=0;idx这对我来说很有效:
static char GetChar(SecureString value, int idx)
{
IntPtr bstr = Marshal.SecureStringToBSTR(value);
try
{
// Index in 2-byte (char) chunks
//TODO: Some range validation might be good.
return (char)Marshal.ReadByte(bstr, idx * 2);
}
finally
{
Marshal.FreeBSTR(bstr);
}
}
你试过for循环或foreach循环吗?他是用C语言做的,我想这个例子并没有达到我不希望的效果,它将字符串复制到一个托管字符串中。这不是将明文密码留在内存中的值输出
?这里的关键是不要在托管环境中将值作为字符串读回NT。请参见为什么。也推荐使用<代码> MARHALL。ZeroFreeBSTR < /C> >以确保明文密码从非托管内存ASAP.PoT中被清除。我不认为我或多或少关注于从VB向C See等提供一个工作版本。