logo标签列表

在Java中解密C#加密的文本使用AES

javac#aesrijndaelmanagedcbc-mode
3
我需要在JAVA中解密用C#加密的文本(使用AES,RijndaelManaged)。
经过数天的阅读和搜索解决方案,并测试了许多stackoverflow的解决方案后,我仍然有一个未解决的问题。
我应用了C#代码(这个是工作的) 和Java代码(不完全工作)。
以下是Java代码抛出的异常:
Exception in thread "main" javax.crypto.IllegalBlockSizeException: last block incomplete in decryption
at org.bouncycastle.jcajce.provider.symmetric.util.BaseBlockCipher.engineDoFinal(Unknown Source)
at javax.crypto.Cipher.doFinal(Cipher.java:2164)
at test.Decrypt.main(Decrypt.java:39)

JAVA代码

import java.nio.charset.StandardCharsets;
import java.security.spec.KeySpec;
import java.util.Base64;

import javax.crypto.Cipher;
import javax.crypto.SecretKey;
import javax.crypto.SecretKeyFactory;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.PBEKeySpec;
import javax.crypto.spec.SecretKeySpec;

public class Decrypt {

public static void main(String[] args) throws Exception {

    String encText = "EAAAADE2ODA2NjQya2JNN2M1ISShgi+Oi5tbsPgOz5KsCHj0";
    final String password = "KJH#$@kds32@!kjhdkftt";
    final String iv = "16806642kbM7c5!$";
    byte[] salt = new byte[] { 34, (byte) 134, (byte) 145, 12, 7, 6, (byte) 243, 63, 43, 54, 75, 65, 53, 2, 34, 54,
            45, 67, 64, 64, 32, (byte) 213 };

    SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1");
    KeySpec spec = new PBEKeySpec(password.toCharArray(), salt, 1000, 256);
    SecretKey tmp = factory.generateSecret(spec);

    SecretKeySpec secret = new SecretKeySpec(tmp.getEncoded(), "AES");
    IvParameterSpec ivs = new IvParameterSpec(iv.getBytes(StandardCharsets.US_ASCII));

    System.out.println("Key:" + Base64.getEncoder().encodeToString(secret.getEncoded()));
    System.out.println("IV:" + Base64.getEncoder().encodeToString(ivs.getIV()));

    Cipher cipher = Cipher.getInstance("AES/CBC/PKCS7Padding");
    cipher.init(Cipher.DECRYPT_MODE, secret, ivs);

    byte [] decodedText = Base64.getDecoder().decode(encText);

    String plaintext = new String(cipher.doFinal(decodedText), "UTF-8");
    System.out.println(plaintext);
  }
}

C# 代码

using System;
using System.IO;
using System.Security.Cryptography;
using System.Text;

namespace Test
{
public class EncriptionHelper
{   
        public static void Main()
        {
            var cleanTxt = "8212093345";
            var encTxt = "EAAAADE2ODA2NjQya2JNN2M1ISShgi+Oi5tbsPgOz5KsCHj0";
            var secret = "KJH#$@kds32@!kjhdkftt";

            var xtxt =  EncryptStringAES(cleanTxt, secret);             
            var txt =   DecryptStringAES(encTxt, secret);

            Console.WriteLine(txt);
            Console.WriteLine(xtxt);
        }

    private static byte[] vector = Encoding.ASCII.GetBytes("16806642kbM7c5!$");
    private static byte[] salt = new byte[] { 34, 134, 145, 12, 7, 6, 243, 63, 43, 54, 75, 65, 53, 2, 34, 54, 45, 67, 64, 64, 32, 213 };

    /// <summary>
    /// Encrypt the given string using AES.  The string can be decrypted using 
    /// DecryptStringAES().  The sharedSecret parameters must match.
    public static string EncryptStringAES(string text, string sharedSecret)
    {
        if (string.IsNullOrEmpty(text))
        {
            throw new ArgumentNullException("Text is null or empty");
        }

        if (string.IsNullOrEmpty(sharedSecret))
        {
            throw new ArgumentNullException("Secret is null or empty");
        }

        if (salt == null || salt.Length == 0)
        {
            throw new ArgumentNullException("Salt is null or empty");
        }

        string outStr = null;
        RijndaelManaged aesAlg = null;
        try
        {
            Rfc2898DeriveBytes key = new Rfc2898DeriveBytes(sharedSecret, salt);

            aesAlg = new RijndaelManaged();
            aesAlg.Key = key.GetBytes(aesAlg.KeySize / 8);
            aesAlg.IV = vector;

            ICryptoTransform encryptor = aesAlg.CreateEncryptor(aesAlg.Key, aesAlg.IV);
            using (MemoryStream msEncrypt = new MemoryStream())
            {
                msEncrypt.Write(BitConverter.GetBytes(aesAlg.IV.Length), 0, sizeof(int));
                msEncrypt.Write(aesAlg.IV, 0, aesAlg.IV.Length);
                using (CryptoStream csEncrypt = new CryptoStream(msEncrypt, encryptor, CryptoStreamMode.Write))
                {
                    using (StreamWriter swEncrypt = new StreamWriter(csEncrypt))
                    {
                        swEncrypt.Write(text);
                    }
                }
                outStr = Convert.ToBase64String(msEncrypt.ToArray());
            }
        }
        finally
        {
            // Clear the RijndaelManaged object.
            if (aesAlg != null)
                aesAlg.Clear();
        }

        // Return the encrypted bytes from the memory stream.
        return outStr;
    }

    /// <summary>
    /// Decrypt the given string.  Assumes the string was encrypted using 
    /// EncryptStringAES(), using an identical sharedSecret.
    /// </summary>
    public static string DecryptStringAES(string cipherText, string sharedSecret)
    {
        if (string.IsNullOrEmpty(cipherText))
        {
            throw new ArgumentNullException("Text is null or empty");
        }

        if (string.IsNullOrEmpty(sharedSecret))
        {
            throw new ArgumentNullException("Secret is null or empty");
        }

        if (salt == null || salt.Length == 0)
        {
            throw new ArgumentNullException("Salt is null or empty");
        }

        RijndaelManaged aesAlg = null;
        string result = null;

        try
        {
            Rfc2898DeriveBytes key = new Rfc2898DeriveBytes(sharedSecret, salt);
            byte[] bytes = Convert.FromBase64String(cipherText);
            using (MemoryStream msDecrypt = new MemoryStream(bytes))
            {
                aesAlg = new RijndaelManaged();
                aesAlg.Key = key.GetBytes(aesAlg.KeySize / 8);
                aesAlg.IV = ReadByteArray(msDecrypt);

                Console.WriteLine("KEY: "+ Convert.ToBase64String(aesAlg.Key));
                Console.WriteLine("IV: "+ Convert.ToBase64String(aesAlg.IV));


                ICryptoTransform decryptor = aesAlg.CreateDecryptor(aesAlg.Key, aesAlg.IV);
                using (CryptoStream csDecrypt = new CryptoStream(msDecrypt, decryptor, CryptoStreamMode.Read))
                {
                    using (StreamReader srDecrypt = new StreamReader(csDecrypt))
                    {
                        result = srDecrypt.ReadToEnd();
                    }
                }
            }
        }
        finally
        {
            // Clear the RijndaelManaged object.
            if (aesAlg != null)
                aesAlg.Clear();
        }

        return result;
    }

    private static byte[] ReadByteArray(Stream s)
    {
        byte[] rawLength = new byte[sizeof(int)];
        if (s.Read(rawLength, 0, rawLength.Length) != rawLength.Length)
        {
            throw new SystemException("Stream did not contain properly formatted byte array");
        }

        byte[] buffer = new byte[BitConverter.ToInt32(rawLength, 0)];
        if (s.Read(buffer, 0, buffer.Length) != buffer.Length)
        {
            throw new SystemException("Did not read byte array properly");
        }
        return buffer;
    }
  }
 }
您的问题应该是自包含的,因此请同时包含相关的C#代码;不要将其链接到其他地方。 - Mark Rotteveel
一个不错的调试方法是用两种语言编写加密和解密功能,然后比较输出结果(或中间步骤),以确定问题出在哪里。 - Joe Phillips
1个回答
2

以下是Java代码来解码来自C#的编码数据:

public static void main(String[] args) throws Exception {

    String encText = "EAAAADE2ODA2NjQya2JNN2M1ISShgi+Oi5tbsPgOz5KsCHj0";
    final String password = "KJH#$@kds32@!kjhdkftt";
    byte[] salt = new byte[] { 34, (byte) 134, (byte) 145, 12, 7, 6, (byte) 243, 63, 43, 54, 75, 65, 53, 2, 34, 54,
            45, 67, 64, 64, 32, (byte) 213 };

    SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1");
    KeySpec spec = new PBEKeySpec(password.toCharArray(), salt, 1000, 256);
    SecretKey tmp = factory.generateSecret(spec);

    SecretKeySpec secret = new SecretKeySpec(tmp.getEncoded(), "AES");

    byte[] data = Base64.getDecoder().decode("EAAAADE2ODA2NjQya2JNN2M1ISShgi+Oi5tbsPgOz5KsCHj0");
    // skip first 4 bytes (the length of IV) and get IV byte array
    byte[] iv = Arrays.copyOfRange(data, 4, 20);

    Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
    cipher.init(Cipher.DECRYPT_MODE, secret, new IvParameterSpec(iv));
    // skip IV length (4 bytes) and IV (16 bytes)
    cipher.update(data, 20, data.length - 20);
    String plaintext = new String(cipher.doFinal(), "UTF-8");
    System.out.println(plaintext);
}

以下是一个简化的示例,以防某人可以访问两个来源:

C#:

private static byte[] salt = new byte[] { 34, 134, 145, 12, 7, 6, 243, 63, 43, 54, 75, 65, 53, 2, 34, 54, 45, 67, 64, 64, 32, 213 };
private static byte[] vector = Encoding.ASCII.GetBytes("16806642kbM7c5!$");
private static string cleartext = "8212093345";

static void Main(string[] args)
{
    var kdf = new Rfc2898DeriveBytes("KJH#$@kds32@!kjhdkftt", salt);
    using (var aes = new RijndaelManaged())
    {
        aes.Key = kdf.GetBytes(aes.KeySize / 8);
        aes.IV = vector;
        using (var encryptor = aes.CreateEncryptor(aes.Key, aes.IV))
        using (var ms = new MemoryStream())
        {
            using (var cs = new CryptoStream(ms, encryptor, CryptoStreamMode.Write))
            {
                // don't use StreamWriter, it just makes things more complicated
                var bytes = Encoding.ASCII.GetBytes(cleartext);
                cs.Write(bytes, 0, bytes.Length);
            }
            Console.WriteLine(Convert.ToBase64String(ms.ToArray()));
            // outputs: oYIvjoubW7D4Ds+SrAh49A==
        }
    }
}

Java:

public static void main(String[] args) throws Exception {

    String encText = "EAAAADE2ODA2NjQya2JNN2M1ISShgi+Oi5tbsPgOz5KsCHj0";
    final String password = "KJH#$@kds32@!kjhdkftt";
    final String iv = "16806642kbM7c5!$";
    byte[] salt = new byte[] { 34, (byte) 134, (byte) 145, 12, 7, 6, (byte) 243, 63, 43, 54, 75, 65, 53, 2, 34, 54,
            45, 67, 64, 64, 32, (byte) 213 };

    SecretKeyFactory factory = SecretKeyFactory.getInstance("PBKDF2WithHmacSHA1");
    KeySpec spec = new PBEKeySpec(password.toCharArray(), salt, 1000, 256);
    SecretKey tmp = factory.generateSecret(spec);

    SecretKeySpec secret = new SecretKeySpec(tmp.getEncoded(), "AES");
    IvParameterSpec ivs = new IvParameterSpec(iv.getBytes(StandardCharsets.US_ASCII));

     // your code use PKCS7, but I use PKCS5 because it shows exception in my case
    Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
    cipher.init(Cipher.DECRYPT_MODE, secret, ivs);

    // base64 string from C# output
    String plaintext = new String(cipher.doFinal(Base64.getDecoder().decode("oYIvjoubW7D4Ds+SrAh49A==")), "UTF-8");
    System.out.println(plaintext);
}
你好,感谢提供的解决方案,但我无法控制C#代码(它只是参考如何在C#中实现)。我使用PKCS7,因为这是RijndaelManaged的默认值(当我在控制台中打印时得到的结果)。对于PKCS7,您需要JCE提供程序(例如Bouncy Castle)。 我需要一种解密示例加密文本的解决方案。 - Sali Manaf
1
@NewspapersApps 我为您的情况添加了Java代码。如果我没错的话,PKCS5和PKCS7填充是相同的。 - Zergatul
非常感谢您提供的解决方案,您帮了我很大的忙 :) - Sali Manaf
这个解决方案对我帮助很大,谢谢 :) - Aimkiller
网页内容由stack overflow 提供, 点击上面的
可以查看英文原文,
原文链接