我正在尝试在Android上加密Java中的字符串,然后使用PHP和/或node对其进行解密.js
我已经尝试过 http://www.androidsnippets.com/encrypt-decrypt-between-android-and-php,但只有返回的十六进制字符串的前半部分有效。
我希望加密类型为具有 128 位密钥的 AES(如果可能,则更高)。
加密密钥也需要可配置,所以我的问题可能与我如何填充字符串有关。
爪哇岛
String.format("%1$-" + n + "s", s)
.PHP
$key = str_pad($key,16);
完整的Java代码:
package com.giggsey.test;
import java.security.NoSuchAlgorithmException;
import javax.crypto.Cipher;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import android.util.Log;
public class SimpleCrypto {
private String iv = "fedcba9876543210";//Dummy iv (CHANGE IT!)
private IvParameterSpec ivspec;
private SecretKeySpec keyspec;
private Cipher cipher;
private String SecretKey = "0123456789abcdef";//Dummy secretKey (CHANGE IT!)
public void doKey(String key)
{
ivspec = new IvParameterSpec(iv.getBytes());
key = padRight(key,16);
Log.d("hi",key);
keyspec = new SecretKeySpec(key.getBytes(), "AES");
try {
cipher = Cipher.getInstance("AES/CBC/NoPadding");
} catch (NoSuchAlgorithmException e) {
// TODO Auto-generated catch block
e.printStackTrace();
} catch (NoSuchPaddingException e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
}
public byte[] encrypt(String text,String key) throws Exception
{
if(text == null || text.length() == 0)
throw new Exception("Empty string");
doKey(key);
byte[] encrypted = null;
try {
cipher.init(Cipher.ENCRYPT_MODE, keyspec, ivspec);
encrypted = cipher.doFinal(padString(text).getBytes());
} catch (Exception e)
{
throw new Exception("[encrypt] " + e.getMessage());
}
return encrypted;
}
public byte[] decrypt(String code,String key) throws Exception
{
if(code == null || code.length() == 0)
throw new Exception("Empty string");
byte[] decrypted = null;
doKey(key);
try {
cipher.init(Cipher.DECRYPT_MODE, keyspec, ivspec);
decrypted = cipher.doFinal(hexToBytes(code));
} catch (Exception e)
{
throw new Exception("[decrypt] " + e.getMessage());
}
return decrypted;
}
public static String bytesToHex(byte[] data)
{
if (data==null)
{
return null;
}
int len = data.length;
String str = "";
for (int i=0; i<len; i++) {
if ((data[i]&0xFF)<16)
str = str + "0" + java.lang.Integer.toHexString(data[i]&0xFF);
else
str = str + java.lang.Integer.toHexString(data[i]&0xFF);
}
return str;
}
public static byte[] hexToBytes(String str) {
if (str==null) {
return null;
} else if (str.length() < 2) {
return null;
} else {
int len = str.length() / 2;
byte[] buffer = new byte[len];
for (int i=0; i<len; i++) {
buffer[i] = (byte) Integer.parseInt(str.substring(i*2,i*2+2),16);
}
return buffer;
}
}
private static String padString(String source)
{
char paddingChar = ' ';
int size = 16;
int x = source.length() % size;
int padLength = size - x;
for (int i = 0; i < padLength; i++)
{
source += paddingChar;
}
return source;
}
public static String padRight(String s, int n) {
return String.format("%1$-" + n + "s", s);
}
}
.PHP
<?php
class MCrypt
{
private $iv = 'fedcba9876543210'; #Same as in JAVA
private $key = '0123456789abcdef'; #Same as in JAVA
function encrypt($str,$key) {
$key = str_pad($key,16);
//$key = $this->hex2bin($key);
$iv = $this->iv;
$td = mcrypt_module_open('rijndael-128', '', 'cbc', $iv);
mcrypt_generic_init($td, $key, $iv);
$encrypted = mcrypt_generic($td, $str);
mcrypt_generic_deinit($td);
mcrypt_module_close($td);
return bin2hex($encrypted);
}
function decrypt($code,$key) {
//$key = $this->hex2bin($key);
$code = $this->hex2bin($code);
$iv = $this->iv;
$td = mcrypt_module_open('rijndael-128', '', 'cbc', $iv);
mcrypt_generic_init($td, $key, $iv);
$decrypted = mdecrypt_generic($td, $code);
mcrypt_generic_deinit($td);
mcrypt_module_close($td);
return utf8_encode(trim($decrypted));
}
protected function hex2bin($hexdata) {
$bindata = '';
for ($i = 0; $i < strlen($hexdata); $i += 2) {
$bindata .= chr(hexdec(substr($hexdata, $i, 2)));
}
return $bindata;
}
}
$e = new MCrypt();
$p = $e->encrypt("This is a sample text message","password");
echo "Encrypted: {$p}" . PHP_EOL;
echo "Decrypted: ";
echo $e->decrypt($p,"password") . PHP_EOL;
echo "Java Decryption: ";
echo $e->decrypt("9cf46d007aeff7c0c3cf880c76762037278269ac508aecd55010ce68e9fd980f","password");
echo PHP_EOL;
Java 调用脚本:
String key = "password";
String message = "This is a sample text message";
String encrypted;
try {
SimpleCrypto s = new SimpleCrypto();
encrypted = SimpleCrypto.bytesToHex(s.encrypt(message, key));
Log.d("giggsey-test",encrypted);
} catch (Exception e) {
// TODO Auto-generated catch block
e.printStackTrace();
}
加密字符串的输出:
Java: 9cf46d007aeff7c0c3cf880c76762037278269ac508aecd55010ce68e9fd980f
PHP: 9cf46d007aeff7c0c3cf880c76762037a1778e93dd596e4ce745e1f3b0ba9062
完整的 PHP 输出:
已加密: 9cf46d007aeff7c0c3cf880c76762037a1778e93dd596e4ce745e1f3b0ba9062
解密: 'ã1/2A==)n¿|·
xÃã¦Ã,ÃÃasV8gE
Java 解密: 'Ã1/2A==)nÿ|·
xÃ1)òÃAÂ1®/2Ã
rây
填充
是PHP的问题。
<?php
function hex2bin($hexdata) {
$bindata = '';
for ($i = 0; $i < strlen($hexdata); $i += 2) {
$bindata .= chr(hexdec(substr($hexdata, $i, 2)));
}
return $bindata;
}
$key = "password";
$data = "This is a sample text message";
$key = str_pad($key,16);
$blockSize = mcrypt_get_block_size(MCRYPT_RIJNDAEL_128, MCRYPT_MODE_CBC);
$padding = $blockSize - (strlen($data) % $blockSize);
$data .= str_repeat(chr($padding), $padding);
$c = mcrypt_encrypt(MCRYPT_RIJNDAEL_128, $key, $data, MCRYPT_MODE_CBC, 'fedcba9876543210');
$c = bin2hex($c);
echo $c;
echo PHP_EOL;
$c = hex2bin($c);
$td = mcrypt_module_open(MCRYPT_RIJNDAEL_128,'',MCRYPT_MODE_CBC, '');
mcrypt_generic_init($td, $key, 'fedcba9876543210');
$decrypted = mdecrypt_generic($td, $c);
mcrypt_generic_deinit($td);
mcrypt_module_close($td);
echo $decrypted;
它现在在加密时返回与 Java 相同的内容,我可以很好地解密消息。
嗨,
请检查此链接。
这里检查最后一条评论说"这不适用于 UNICODE 字符"
这是关于UTF-8 characters的工作
这是我在加密之前对字符串所做的:
myUtf8String = new String(myString.getBytes("UTF-8"));
//PHP
echo base64_encode('something...')
//.java
import java.io.IOException;
import java.util.logging.Level;
import java.util.logging.Logger;
import javax.crypto.Cipher;
import sun.misc.BASE64Decoder;
public class Decrypt_test {
public static void main(String[] args) {
BASE64Decoder decode = new BASE64Decoder();
try {
// sample of string to decode: NTI2cWV5d3RkJV4mKg==
String result = new String(decode.decodeBuffer("string-to-decode"));
System.out.println(result);
} catch (IOException ex) {
Logger.getLogger(Decrypt_test.class.getName()).log(Level.SEVERE, null, ex);
}
}
}
这很容易但不好