时间戳

首页 > 解决方案 > aes gcm加解密的互通性

java - aes gcm加解密的互通性

问题描述

请分享 node js 中加密的工作代码和 java AES/GCM/NoPadding 中的解密

节点 js中:

function createCipherCommon(text, alg, key, iv) {
    var cipher = crypto.createCipheriv(alg, key, iv);
    cipher.setAAD(Buffer.from("aad", 'utf8'));
    return {
        enc: cipher.update(text, 'utf8', 'base64') + cipher.final('base64'),
        tag: cipher.getAuthTag().toString('base64')
    };
}

Java中,下面的代码给出 javax.crypto.AEADBadTagException: Tag mismatch!

public static String createDecipherCommon(byte[] text, byte[] key, String iv, String tag) throws NoSuchPaddingException, NoSuchAlgorithmException, InvalidKeyException, BadPaddingException, IllegalBlockSizeException, NoSuchProviderException, InvalidAlgorithmParameterException, UnsupportedEncodingException, DecoderException {
        byte[] ivBytes = Base64.getDecoder().decode(iv.getBytes());
        byte[] tagBytes = Base64.getDecoder().decode(tag.getBytes());
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
        cipher.init(Cipher.DECRYPT_MODE, new SecretKeySpec(key, "AES"), new GCMParameterSpec(128, ivBytes, 0, ivBytes.length));
        cipher.updateAAD("aad".getBytes());
        return new String(cipher.doFinal(text, 0, text.length));
    }

标签: javanode.jsencryptionmismatch

解决方案

Node js中,我进行了这些更改,现在它工作正常:

function createCipherCommon(text, alg, key, iv) {
    var cipher = crypto.createCipheriv(alg, key, iv);
    cipher.setAAD(Buffer.from("aad", 'utf8'));
    return {
        encwithtag: Buffer.concat([cipher.update(text, 'utf8'), cipher.final(), cipher.getAuthTag()]).toString('base64')
    };
}

Java中,不变

public static String createDecipherCommon(byte[] text, byte[] key, String iv, String tag) throws NoSuchPaddingException, NoSuchAlgorithmException, InvalidKeyException, BadPaddingException, IllegalBlockSizeException, NoSuchProviderException, InvalidAlgorithmParameterException, UnsupportedEncodingException, DecoderException {
        byte[] ivBytes = Base64.getDecoder().decode(iv.getBytes());
        byte[] tagBytes = Base64.getDecoder().decode(tag.getBytes());
        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
        cipher.init(Cipher.DECRYPT_MODE, new SecretKeySpec(key, "AES"), new GCMParameterSpec(128, ivBytes, 0, ivBytes.length));
        cipher.updateAAD("aad".getBytes());
        return new String(cipher.doFinal(text, 0, text.length));
    }

推荐阅读