在我开始之前:是的,我已经检查了此主题的其他问题和答案,无论在这里还是其他地方。
我找到了一个示例字符串,即使它实际上并没有进行base64编码,.Net也会对其进行base64解码。以下是示例:
Rhinocort Aqueous 64mcg / dose鼻喷雾
.Net方法Convert.FromBase64String在解码此字符串时不会引发异常,因此我的IsBase64Encoded方法会为此字符串返回true。
有趣的是,如果我使用cygwin base64 -d命令以此字符串作为输入,则会失败并显示“invalid input”消息。
更有趣的是,我认为属于此可执行文件的源代码(http://libb64.sourceforge.net/)使用相同的结果“解码”了此字符串,就像我从.Net Convert.FromBase64String中得到的结果一样。我将继续寻找希望在其他地方找到线索,但现在我感到困惑。
有什么想法吗?
有一个稍微更好的解决方案,它还会检查输入字符串的长度。
我建议您在开始时进行检查。如果输入为空或空字符串,则返回 false。
http://www.codeproject.com/Questions/177808/How-to-determine-if-a-string-is-Base-decoded-or
[TestMethod]
public void CheckForBase64()
{
Assert.IsFalse(IsBase64DataStrict("eyJhIjoiMSIsImIiOiI2N2NiZjA5MC00ZGRiLTQ3OTktOTlmZi1hMjhhYmUyNzQwYjEiLCJmIjoiMSIsImciOiIxIn0"));
Assert.IsTrue(IsBase64DataForgiving("eyJhIjoiMSIsImIiOiI2N2NiZjA5MC00ZGRiLTQ3OTktOTlmZi1hMjhhYmUyNzQwYjEiLCJmIjoiMSIsImciOiIxIn0"));
Assert.IsFalse(IsBase64DataForgiving("testing123"));
Assert.IsFalse(IsBase64DataStrict("ABBA"));
Assert.IsFalse(IsBase64DataForgiving("6AC648C9-C08F-4F9D-A0A5-3904CF15ED3E"));
}
public bool IsBase64DataStrict(string data)
{
if (string.IsNullOrWhiteSpace(data)) return false;
if ((new Regex(@"[^A-Z0-9+\/=]", RegexOptions.IgnoreCase)).IsMatch(data)) return false;
if (data.Length % 4 != 0) return false;
var e = data.IndexOf('=');
var l = data.Length;
if (!(e == -1 || e == l - 1 || (e == l - 2 && data[l - 1] == '='))) return false;
var decoded = string.Empty;
try
{
byte[] decodedData = Convert.FromBase64String(data);
decoded = Encoding.UTF8.GetString(decodedData);
}
catch(Exception)
{
return false;
}
//check for special chars that you know should not be there
char current;
for (int i = 0; i < decoded.Length; i++)
{
current = decoded[i];
if (current == 65533) return false;
if (!((current == 0x9 || current == 0xA || current == 0xD) ||
((current >= 0x20) && (current <= 0xD7FF)) ||
((current >= 0xE000) && (current <= 0xFFFD)) ||
((current >= 0x10000) && (current <= 0x10FFFF))))
{
return false;
}
}
return true;
}
public bool IsBase64DataForgiving(string data)
{
if (string.IsNullOrWhiteSpace(data)) return false;
//it could be made more forgiving by replacing any spaces with '+' here
if ((new Regex(@"[^A-Z0-9+\/=]", RegexOptions.IgnoreCase)).IsMatch(data)) return false;
//this is the forgiving part
if (data.Length % 4 > 0)
data = data.PadRight(data.Length + 4 - data.Length % 4, '=');
var e = data.IndexOf('=');
var l = data.Length;
if (!(e == -1 || e == l - 1 || (e == l - 2 && data[l - 1] == '='))) return false;
var decoded = string.Empty;
try
{
byte[] decodedData = Convert.FromBase64String(data);
decoded = Encoding.UTF8.GetString(decodedData);
}
catch (Exception)
{
return false;
}
//check for special chars that you know should not be there
char current;
for (int i = 0; i < decoded.Length; i++)
{
current = decoded[i];
if (current == 65533) return false;
if (!((current == 0x9 || current == 0xA || current == 0xD) ||
((current >= 0x20) && (current <= 0xD7FF)) ||
((current >= 0xE000) && (current <= 0xFFFD)) ||
((current >= 0x10000) && (current <= 0x10FFFF))))
{
return false;
}
}
return true;
}
base64 -di命令也可以得到相同的结果。没有一种真正可靠的方法来检查数据是否为base-64编码,只能依赖某种启发式方法。任何长度是4的倍数并且由[a-zA-Z0-9]匹配的字符串都可以被解码,但这些字符串可能不代表实际的base-64编码数据。 - Mike Zboray= * 2到那个正则表达式中。 - Jim Mischel