使用Node.js Crypto AES256加密，使用Python2.7 PyCrypto解密

Question

使用Node.js Crypto AES256加密，使用Python2.7 PyCrypto解密

3

我正在尝试使用node.js进行加密，代码如下（node.js v0.10.33）：

var crypto = require('crypto');
var assert = require('assert');

var algorithm = 'aes256'; // or any other algorithm supported by OpenSSL
var key = 'mykey';
var text = 'this-needs-to-be-encrypted';

var cipher = crypto.createCipher(algorithm, key);  
var encrypted = cipher.update(text, 'utf8', 'hex') + cipher.final('hex');
console.log('encrypted', encrypted, encrypted.length)
/*
var decipher = crypto.createDecipher(algorithm, key);
try {
    var decrypted = decipher.update(encrypted, 'hex', 'utf8') + decipher.final('utf8');
} catch (e) {
    console.error('Couldnt decipher encrypted text. Invalid key provided', e)
} finally {
    assert.equal(decrypted, text);
}
*/

我该如何使用PyCrypto (v2.6.1) on py2.7解密加密文本？

- amulllb

基本上和这个答案一样。 - Artjom B.

1个回答

网页内容由stack overflow 提供, 点击上面的

可以查看英文原文，
原文链接

- Sebastian Kreft · Accepted Answer

根据https://nodejs.org/api/crypto.html#crypto_crypto_createcipher_algorithm_password所述，您应该使用crypto.createCipheriv。

下面的答案假设您更改代码片段以使用crypto.createCipheriv，如下所示：

var crypto = require('crypto');
var assert = require('assert');

var algorithm = 'aes256'; // or any other algorithm supported by OpenSSL
var key = '00000000000000000000000000000000';
var iv = '0000000000000000';
var text = 'this-needs-to-be-encrypted';

var cipher = crypto.createCipheriv(algorithm, key, iv);  
var encrypted = cipher.update(text, 'utf8', 'hex') + cipher.final('hex');
console.log('encrypted', encrypted, encrypted.length)

这会生成加密文本 b88e5f69c7bd5cd67c9c12b9ad73e8c1ca948ab26da01e6dad0e7f95448e79f4。

使用明确的密钥和IV的Python解决方案：

from Crypto import Random
from Crypto.Cipher import AES

BS = 16
def pad(data):
    padding = BS - len(data) % BS
    return data + padding * chr(padding)

def unpad(data):
    return data[0:-ord(data[-1])]

def decrypt_node(hex_data, key='0'*32, iv='0'*16):
    data = ''.join(map(chr, bytearray.fromhex(hex_data)))
    aes = AES.new(key, AES.MODE_CBC, iv)
    return unpad(aes.decrypt(data))

def encrypt_node(data, key='0'*32, iv='0'*16):
    aes = AES.new(key, AES.MODE_CBC, iv)
    return aes.encrypt(pad(data)).encode('hex')

print(encrypt_node('this-needs-to-be-encrypted'))
print(decrypt_node('b88e5f69c7bd5cd67c9c12b9ad73e8c1ca948ab26da01e6dad0e7f95448e79f4'))

如果您继续使用普通的 crypto.createCipher，则需要使用https://www.openssl.org/docs/man1.0.2/crypto/EVP_BytesToKey.html从密码中派生key和iv。请注意保留HTML标记。