在java中加密字符串,在node.js中解密,错误:解密错误 [英] Encrypt string in java, decrypt in node.js, error: bad decrypt
问题描述
我正在尝试加密java中的字符串,将其发送到我的node.js服务器,然后对其进行解密。但是,当我尝试这样做时,我会在尝试解密时不断收到错误。
I'm trying to encrypt a string in java, send it to my node.js server, and decrypt it. However, when I try to do this I get keep getting errors when trying to decrypt.
Java加密:
String privateKey = "someprivatekey";
String data = "dataToEncrypt";
DESKeySpec keySpec = new DESKeySpec(privateKey.getBytes("UTF-8"));
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("DES");
SecretKey key = keyFactory.generateSecret(keySpec);
byte[] dataToBytes = data.getBytes("UTF-8");
Cipher cipher = Cipher.getInstance("DES");
cipher.init(Cipher.ENCRYPT_MODE, key);
// send this string to server
String encryptedStr = Base64.encodeToString(cipher.doFinal(dataToBytes), 0);
node.js解密:
node.js decrypt:
var privateKey = 'someprivatekey';
var decipher = crypto.createDecipher('des', privateKey);
var dec = decipher.update(textToDecipher, 'base64', 'utf8');
dec += decipher.final('utf8');
console.log('deciphered: ' + dec);
但是,我在decipher.final()行的node.js端遇到此错误:
However, I get this error on the node.js side on the decipher.final() line:
TypeError: error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt
我尝试解码字符串并在节点端使用缓冲区,但它似乎也没有工作,我得到了相同的错误解密错误。
I've tried decoding the string and using a buffer on the node side, but it didn't seem to work either, I get the same bad decrypt error.
var buffer = new Buffer(textToDecipher, 'base64');
var decipher = crypto.createDecipher('des', privateKey);
var dec = Buffer.concat([decipher.update(buffer), decipher.final()]);
任何想法我可能做错了什么?
Any ideas what I could be doing wrong?
推荐答案
在节点服务器上创建解密对象时,您传递的是密码而不是一个真正的钥匙。为了指定实际的密钥,你需要使用 crypto.createDecipheriv(),但这需要一个实际的 IV (此示例使用8个空字节,但不建议用于实际加密; 维基百科上的初始化向量)
When you create the decipher object on the node server, you are passing a password rather than an actual key. In order to specify the actual key, you need to use crypto.createDecipheriv(), but this requires an actual IV (this example uses 8 null bytes, but that's not recommended for real encryption; Initialization Vector on wikipedia)
通过明确指定填充,块模式和IV,我能够让你的例子工作:
I was able to get your example working by explicitly specifying padding, block mode, and IV:
String privateKey = "someprivatekey";
String data = "dataToEncrypt";
DESKeySpec keySpec = new DESKeySpec(privateKey.getBytes("UTF-8"));
SecretKeyFactory keyFactory = SecretKeyFactory.getInstance("DES");
SecretKey key = keyFactory.generateSecret(keySpec);
byte[] dataToBytes = data.getBytes("UTF-8");
Cipher cipher = Cipher.getInstance("DES/CBC/PKCS5Padding");
cipher.init(Cipher.ENCRYPT_MODE, key, new IvParameterSpec(new byte[8]));
// send this string to server
String encryptedStr = Base64.encodeToString(cipher.doFinal(dataToBytes), 0);
解密版本还明确指定了块模式(des-cbc),并正确截断了关键文本到前8个字节:
The decryption version also explicitly specifies the block mode (des-cbc), and correctly truncates the key text to the first 8 bytes:
var privateKey = 'someprivatekey';
var textToDecipher = '9Y8GTNxhQkKSIm5pmH91VA=='; // Text "dataToEncrypt" encrypted using DES using CBC and PKCS5 padding with the key "someprivatekey"
var iv = new Buffer(8);
iv.fill(0);
var decipher = crypto.createDecipheriv('des-cbc', privateKey.substr(0,8), iv);
var dec = decipher.update(textToDecipher, 'base64', 'utf8');
dec += decipher.final('utf8');
console.log('deciphered: ' + dec);
这篇关于在java中加密字符串,在node.js中解密,错误:解密错误的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
