记AES加密在linux系统每次都不一样的问题

蔚落 2023-07-15 13:04 61阅读 0赞

记AES加密在linux系统每次都不一样的问题

在项目中通常会用到AES的加密方法,具体代码如下

  1. package com.mt.demo.client.utils;
  3. import lombok.extern.slf4j.Slf4j;
  4. import org.bouncycastle.jce.provider.BouncyCastleProvider;
  5. import org.springframework.stereotype.Component;
  7. import javax.crypto.*;
  8. import javax.crypto.spec.SecretKeySpec;
  9. import java.io.UnsupportedEncodingException;
  10. import java.nio.charset.StandardCharsets;
  11. import java.security.*;
  12. import java.util.Base64;
  14. /**
  15.  * AESUtils
  16.  *
  17.  * @author mt.luo
  18.  * @description: AES加密
  19.  */
  20. @Slf4j
  21. @Component
  22. public class AESUtils {
  23.     private final String aesSeed = "ada46ab5da824b96a18409c49dc91dc2";
  24.     private final String algorithm = "SHA-256";
  25.     private final String AES = "AES";
  26.     private final String cipher = "AES/ECB/PKCS7Padding";
  27.     private final String provider = "BC";
  29.     /**
  30.      * convert to byte[]
  31.      *
  32.      * @param key key
  33.      * @return byte[]
  34.      * @throws NoSuchAlgorithmException
  35.      */
  36.     private byte[] toHash256(String key) throws NoSuchAlgorithmException {
  37.         MessageDigest messageDigest = MessageDigest.getInstance(this.algorithm);
  38.         messageDigest.update(key.getBytes());
  39.         return messageDigest.digest();
  40.     }
  42.     /**
  43.      * parseHexStrToByte
  44.      *
  45.      * @param hexStr hexStr
  46.      * @return byte
  47.      */
  48.     private byte[] parseHexStrToByte(String hexStr) {
  49.         if (hexStr.length() < 1) {
  50.             return null;
  51.         }
  52.         byte[] result = new byte[hexStr.length() / 2];
  53.         for (int i = 0; i < hexStr.length() / 2; i++) {
  54.             int high = Integer.parseInt(hexStr.substring(i * 2, i * 2 + 1), 16);
  55.             int low = Integer.parseInt(hexStr.substring(i * 2 + 1, i * 2 + 2), 16);
  56.             result[i] = (byte) (high * 16 + low);
  57.         }
  58.         return result;
  59.     }
  61.     /**
  62.      * parseByteToHexStr
  63.      *
  64.      * @param bytes bytes
  65.      * @return String
  66.      */
  67.     private String parseByteToHexStr(byte[] bytes) {
  68.         StringBuilder stringBuilder = new StringBuilder();
  69.         for (byte b : bytes) {
  70.             String hex = Integer.toHexString(b & 0xFF);
  71.             if (hex.length() == 1) {
  72.                 hex = '0' + hex;
  73.             }
  74.             stringBuilder.append(hex.toUpperCase());
  75.         }
  76.         return stringBuilder.toString();
  77.     }
  79.     /**
  80.      * 获取密钥
  81.      *
  82.      * @param seed seed
  83.      * @return SecretKeySpec
  84.      * @throws NoSuchAlgorithmException NoSuchAlgorithmException
  85.      */
  86.     private SecretKeySpec getSecretKeySpec(String seed) throws NoSuchAlgorithmException {
  87.         KeyGenerator keyGenerator = KeyGenerator.getInstance(this.AES);
  88.         SecureRandom secureRandom = new SecureRandom(this.toHash256(seed));
  89.         keyGenerator.init(256, secureRandom);
  90.         SecretKey secretKey = keyGenerator.generateKey();
  91.         byte[] encode = secretKey.getEncoded();
  92.         SecretKeySpec secretKeySpec = new SecretKeySpec(encode, this.AES);
  93.         Security.addProvider(new BouncyCastleProvider());
  94.         return secretKeySpec;
  95.     }
  97.     /**
  98.      * 加密
  99.      *
  100.      * @param data data
  101.      * @return String
  102.      * @throws NoSuchAlgorithmException
  103.      * @throws NoSuchProviderException
  104.      * @throws NoSuchPaddingException
  105.      * @throws UnsupportedEncodingException
  106.      * @throws BadPaddingException
  107.      * @throws IllegalBlockSizeException
  108.      */
  109.     public String encrypt(String data) throws NoSuchAlgorithmException, NoSuchProviderException, NoSuchPaddingException,
  110.             UnsupportedEncodingException, BadPaddingException, IllegalBlockSizeException, InvalidKeyException {
  111.         SecretKeySpec secretKeySpec = this.getSecretKeySpec(this.aesSeed);
  112.         Cipher cipher = Cipher.getInstance(this.cipher, this.provider);
  113.         cipher.init(Cipher.ENCRYPT_MODE, secretKeySpec);
  114.         return this.parseByteToHexStr(Base64.getEncoder().encode(cipher.doFinal(data.getBytes(StandardCharsets.UTF_8.name()))));
  115.     }
  116. }

然后这样使用在windows系统的时候没有问题,而将程序部署到Linux则发现每次加密之后获取的加密字符串都不同,也无法解密,重写获取密钥部分的代码

  1. /**
  2.      * 获取密钥
  3.      *
  4.      * @param seed seed
  5.      * @return SecretKeySpec
  6.      * @throws NoSuchAlgorithmException NoSuchAlgorithmException
  7.      */
  8.     private SecretKeySpec getSecretKeySpec(String seed) throws NoSuchAlgorithmException {
  9.         KeyGenerator keyGenerator = KeyGenerator.getInstance(this.AES);
  10.         SecureRandom secureRandom = SecureRandom.getInstance("SHA1PRNG");
  11.         secureRandom.setSeed(this.toHash256(seed));
  12.         keyGenerator.init(256, secureRandom);
  13.         SecretKey secretKey = keyGenerator.generateKey();
  14.         byte[] encode = secretKey.getEncoded();
  15.         SecretKeySpec secretKeySpec = new SecretKeySpec(encode, this.AES);
  16.         Security.addProvider(new BouncyCastleProvider());
  17.         return secretKeySpec;
  18.     }

主要原因是SecureRandom 实现完全隨操作系统本身的内部状态,除非调用方在调用 getInstance 方法之后又调用了 setSeed 方法;该实现在 windows 上每次生成的 key 都相同,但是在 linux 系统上则不同。

欢迎关注微信交流
在这里插入图片描述

发表评论

表情:
评论列表 (有 0 条评论,61人围观)

还没有评论,来说两句吧...

相关阅读

    相关 AES加密

    一、AES是什么 AES高级加密标准(英语:Advanced Encryption Standard,缩写:AES),在密码学中又称Rijndael加密法,是美国联邦政府

    我就是我我就是我/ 0/ 139 阅读

    相关 AES加密

     AES技术是一种对称的分组加密技术,使用128位分组加密数据,提供比WEP/TKIPS的RC4算法更高的加密强度。AES的加密码表和解密码表是分开的,并且支持子密钥加密,这种

    ゞ 浴缸里的玫瑰ゞ 浴缸里的玫瑰/ 0/ 388 阅读