java - AES-256-GCM 解码

问题描述

我尝试使用java7实现AES-256-GCM解码我在GCM中遇到mac check failure response请大家帮帮我，谢谢。

import java.security.Security;

import javax.crypto.Cipher;
import javax.crypto.SecretKey;
import javax.crypto.spec.GCMParameterSpec;
import javax.crypto.spec.SecretKeySpec;

import org.apache.commons.codec.binary.Base64;
import org.apache.commons.codec.binary.Hex;
import org.bouncycastle.jce.provider.BouncyCastleProvider;

  public static void main(String[] args) throws Exception {
    String iv = "35d117c42d1c1835420b6b9942dd4f1b"; // utf-8
    String key = "3a7bd3e2360a3d29eea436fcfb7e44c7"; // utf-8
    String hexCipherString = "07a604fc0c143a6e"; // hex
    String hexAuthTagString = "984e81176ff260717beb184db3d73753"; //hex

    byte[] decodedCipherHexBtye = Hex.decodeHex(hexCipherString.toCharArray());
    byte[] base64Cipher = Base64.decodeBase64(decodedCipherHexBtye);
    byte[] decodedAuthTagHex = Hex.decodeHex(hexAuthTagString.toCharArray());
    byte[] base64AuthTag = Base64.decodeBase64(decodedAuthTagHex);

    SecretKeySpec skeySpec = new SecretKeySpec(key.getBytes("UTF-8"), "AES");
    byte[] gcmIv = iv.getBytes("UTF-8");

    Security.addProvider(new BouncyCastleProvider());
    Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding", "BC");
    GCMParameterSpec params = new GCMParameterSpec(base64AuthTag.length * Byte.SIZE, gcmIv);
    cipher.init(Cipher.DECRYPT_MODE, skeySpec, params);
    cipher.updateAAD(base64AuthTag);
    byte[] result = cipher.doFinal(base64Cipher);
    System.out.println(Base64.encodeBase64(result));
  }

期待Base64Encode的预期结果：dGVzdA==

标签： java