如何解决nodejs和Java中的AES GCM加密解密
因此,我们在 nodejs 中使用 AES GCM 加密和解密,如下所示, 我们需要在 Java 中使用它。所以可以在Java中加密,在nodeJs中解密,反之亦然。
这里是节点中的加密解密函数
const encrypt = (text,masterkey) => {
// random initialization vector
const iv = crypto.randomBytes(16);
// random salt
const salt = crypto.randomBytes(64);
// derive encryption key: 32 byte key length
// in assumption the masterkey is a cryptographic and NOT a password there is no need for
// a large number of iterations. It may can replaced by HKDF
// the value of 2145 is randomly chosen!
const key = crypto.pbkdf2Sync(masterkey,salt,2145,32,'sha512');
// AES 256 GCM Mode
const cipher = crypto.createCipheriv('aes-256-gcm',key,iv);
// encrypt the given text
const encrypted = Buffer.concat([
cipher.update(text,'utf8'),cipher.final()
]);
// extract the auth tag
const tag = cipher.getAuthTag();
// generate output
return Buffer.concat([salt,iv,tag,encrypted]).toString('base64');
};
const decrypt = (encdata,masterkey) => {
// base64 decoding
const bData = Buffer.from(encdata,'base64');
// convert data to buffers
const salt = bData.slice(0,64);
const iv = bData.slice(64,80);
const tag = bData.slice(80,96);
const text = bData.slice(96);
// derive key using; 32 byte key length
const key = crypto.pbkdf2Sync(masterkey,'sha512');
// AES 256 GCM Mode
const decipher = crypto.createDecipheriv('aes-256-gcm',iv);
decipher.setAuthTag(tag);
// encrypt the given text
return decipher.update(text,'binary','utf8') + decipher.final('utf8');
};
这是我在 Java 中所做的,但遇到 input too short 异常。
我也尝试在上面的 nodeJs 加密函数中进行模拟,但它似乎不起作用。
我有与 nodejs 相同的初始化向量(IV)、salt、密钥(在 Java 中它被签名为 128 位)
public static String decrypt(String encData,String masterKey)
{
var cipherText = Base64.getDecoder().decode(encData.getBytes(StandardCharsets.UTF_8));
var salt = Arrays.copyOfRange(cipherText,64);
var iv = Arrays.copyOfRange(cipherText,64,80);
var tag = Arrays.copyOfRange(cipherText,80,96);
var ciphertext = Arrays.copyOfRange(cipherText,96,cipherText.length);
var key = getKeyFromPassword(masterKey,salt);
//GCM_TAG_LENGTH = 16
return helper("AES/GCM/NoPadding",ciphertext,new GCMParameterSpec(GCM_TAG_LENGTH * 8,iv));
}
public static SecretKey getKeyFromPassword(String masterKey,byte[] salt) {
SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA512");
KeySpec spec = new PBEKeySpec(masterKey.toCharArray(),256);
SecretKey secret = new SecretKeySpec(factory.generateSecret(spec)
.getEncoded(),"AES");
return secret;
}
public static String helper(String algorithm,byte[] cipherText,SecretKey key,GCMParameterSpec gcmParameterSpec){
Cipher cipher = Cipher.getInstance(algorithm);
cipher.init(Cipher.DECRYPT_MODE,gcmParameterSpec);
cipher.update(cipherText);
byte[] plainText = cipher.doFinal(tag);
return new String(plainText,StandardCharsets.UTF_8);
}
更新:上面的代码适用于java中的解密
但现在需要在java中加密
这就是我正在做的事情,但在解密时出现 Tag mismatch! 异常。我也更改了标记和密码文本的顺序,但仍然出现相同的错误。
public static String encrypt(String text,String masterKey)
{
var iv = generateIv(16);
var salt = generateIv(64);
var key = getKeyFromPassword(masterKey,salt);
var cipher = helper1("AES/GCM/NoPadding",text,iv));
var outputStream = new ByteArrayOutputStream();
var tag = Arrays.copyOfRange(cipher,16);
var ciphertext = Arrays.copyOfRange(cipher,16,cipher.length);
outputStream.write(salt);
outputStream.write(iv);
outputStream.write(tag);
outputStream.write(ciphertext);
return Base64.getEncoder().encodeToString(outputStream.toByteArray());
}
public static byte[] generateIv(int N) {
byte[] iv = new byte[N];
new SecureRandom().nextBytes(iv);
return iv;
}
public static byte[] helper1(String algorithm,String input,GCMParameterSpec gcmParameterSpec){
Cipher cipher = Cipher.getInstance(algorithm);
cipher.init(Cipher.ENCRYPT_MODE,gcmParameterSpec);
return cipher.doFinal(input.getBytes());
}
public static SecretKey getKeyFromPassword(String masterKey,"AES");
return secret;
}
解决方法
所以,我将 Java 版本的加密和解密功能放在这里
public static byte[] generateIv(int N) {
byte[] iv = new byte[N];
new SecureRandom().nextBytes(iv);
return iv;
}
public static SecretKey getKeyFromPassword(String masterKey,byte[] salt) {
SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA512");
KeySpec spec = new PBEKeySpec(masterKey.toCharArray(),salt,2145,256);
SecretKey secret = new SecretKeySpec(factory.generateSecret(spec)
.getEncoded(),"AES");
return secret;
}
public static byte[] encryptHelper(String algorithm,String input,SecretKey key,GCMParameterSpec gcmParameterSpec){
Cipher cipher = Cipher.getInstance(algorithm);
cipher.init(Cipher.ENCRYPT_MODE,key,gcmParameterSpec);
return cipher.doFinal(input.getBytes());
}
@SneakyThrows
public static String decryptHelper(String algorithm,byte[] cipherText,byte[] tag,GCMParameterSpec gcmParameterSpec){
Cipher cipher = Cipher.getInstance(algorithm);
cipher.init(Cipher.DECRYPT_MODE,gcmParameterSpec);
cipher.update(cipherText);
byte[] plainText = cipher.doFinal(tag);
return new String(plainText,StandardCharsets.UTF_8);
}
public static String encrypt(String text,String masterKey)
{
var iv = generateIv(16);
var salt = generateIv(64);
var key = getKeyFromPassword(masterKey,salt);
var cipher = encryptHelper("AES/GCM/NoPadding",text,new GCMParameterSpec(GCM_TAG_LENGTH * 8,iv));
var outputStream = new ByteArrayOutputStream();
var ciphertext = Arrays.copyOfRange(cipher,text.length());
var tag = Arrays.copyOfRange(cipher,text.length(),cipher.length);
outputStream.write(salt);
outputStream.write(iv);
outputStream.write(tag);
outputStream.write(ciphertext);
return Base64.getEncoder().encodeToString(outputStream.toByteArray());
}
public static String decrypt(String encData,String masterKey)
{
var cipherText = Base64.getDecoder().decode(encData.getBytes(StandardCharsets.UTF_8));
var salt = Arrays.copyOfRange(cipherText,64);
var iv = Arrays.copyOfRange(cipherText,64,80);
var tag = Arrays.copyOfRange(cipherText,80,96);
var ciphertext = Arrays.copyOfRange(cipherText,96,cipherText.length);
var key = getKeyFromPassword(masterKey,salt);
return decryptHelper("AES/GCM/NoPadding",ciphertext,tag,iv));
}
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。
