dousong5161 2018-08-06 12:35
浏览 102
已采纳

在两个微服务golang之间发送和读取[]字节

I have a data encryption function that returns a [] byte. Of course, what has been encrypted must be decrypted (through another function) in another micro-service. The problem is created when I send the []byte via JSON: the []byte is transformed into a string and then when I go to read the JSON through the call, the result is no longer the same.

I have to be able to pass the original []byte, created by the encryption function, through JSON or otherwise pass the []byte through a call like the one you can see below. Another possibility is to change the decryption function, but I have not succeeded.

caller function

func Dati_mono(c *gin.Context) {
   id := c.Param("id")
   oracle, err := http.Get("http://XXXX/"+id)
   if err != nil {
       panic(err)
   }
   defer oracle.Body.Close()

   oJSON, err := ioutil.ReadAll(oracle.Body)
   if err != nil {
       panic(err)
   }

   oracleJSON := security.Decrypt(oJSON, keyEn)

   c.JSON(http.StatusOK, string(oJSON))
}

function that is called with the url

func Dati(c *gin.Context) {
    var (
       person Person
       result mapstring.Dati_Plus
       mmap []map[string]interface{}
    )

    rows, err := db.DBConor.Query("SELECT COD_DIPENDENTE, MATRICOLA, COGNOME FROM ANDIP021_K")

    if err != nil {
       fmt.Print(err.Error())
    }

    for rows.Next() {
       err = rows.Scan(&person.COD_DIPENDENTE, &person.MATRICOLA, &person.COGNOME)
       ciao := structs.Map(&person)
       mmap = append(mmap, ciao)
    }
    defer rows.Close()

    result = mapstring.Dati_Plus{
       len(mmap),
        mmap,
    }

    jsonEn := []byte(mapstring.Dati_PlustoStr(result))
    keyEn := []byte(key)

    cipherjson, err := security.Encrypt(jsonEn, keyEn)
    if err != nil {
       log.Fatal(err)
    }

    c.JSON(http.StatusOK, cipherjson)
}

encryption and decryption functions

func Encrypt(json []byte, key []byte) (string, error) {
    k, err := aes.NewCipher(key)
    if err != nil {
       return "nil", err
    }

    gcm, err := cipher.NewGCM(k)
    if err != nil {
       return "nil", err
    }

    nonce := make([]byte, gcm.NonceSize())
    if _, err = io.ReadFull(rand.Reader, nonce); err != nil {
       return "nil", err
    }
return gcm.Seal(nonce, nonce, json, nil), nil
        }

func Decrypt(cipherjson []byte, key []byte) ([]byte, error) {
    k, err := aes.NewCipher(key)
    if err != nil {
       return nil, err
    }

    gcm, err := cipher.NewGCM(k)
    if err != nil {
       return nil, err
    }

    nonceSize := gcm.NonceSize()
    if len(cipherjson) < nonceSize {
        return nil, errors.New("cipherjson too short")
    }

    nonce, cipherjson := cipherjson[:nonceSize], cipherjson[nonceSize:]
    return gcm.Open(nil, nonce, cipherjson, nil)
}

Everything works, the problem is created when I print cipherjson in c.JSON (): the []byte is translated into a string. At the time it is taken and read by the calling function it is read as string and ioutil.ReadAll () creates the [] byte of the read string. Instead I must be able to pass to the Decryot function the return of the Encrypt function used in the called function.

I hope I was clear, thanks in advance

  • 写回答

1条回答 默认 最新

  • dongmo6937 2018-08-06 13:41
    关注

    You are not decoding the response before decrypting. In other words, you are handing the JSON encoding of the ciphertext to Decrypt. That is obviously not going to do what you want. To recover the plaintext you have to precisely undo all of the operations of the encryption and encoding in reverse order.

    Either decode before decrypting, or don't JSON encode on the server. For instance:

    oJSON, err := ioutil.ReadAll(oracle.Body)
if err != nil {
    panic(err)
}

var ciphertext string
if err := json.Unmarshal(oJSON, &ciphertext); err != nil {
    // TODO: handle error
}

oracleJSON := security.Decrypt(ciphertext, keyEn)

    Although it is unclear why you even go through the trouble of JSON encoding in the first place. You might as well just write the ciphertext directly. If you really want to encode the ciphertext, you should not convert it to a string. The ciphertext is just a bunch of random bytes, not remotely resembling a UTF-8 encoded string, so don't treat it like one. encoding/json uses the base64 encoding for byte slices automatically, which is a much cleaner (and probably shorter) representation of the ciphertext than tons of unicode escape sequences.

    Independent of the encoding you choose (if any), your Encrypt function is broken.

    // The plaintext and dst must overlap exactly or not at all. To reuse
// plaintext's storage for the encrypted output, use plaintext[:0] as dst.
Seal(dst, nonce, plaintext, additionalData []byte) []byte

    The first argument is the destination for the encryption. If you don't need to retain the plaintext, pass json[:0]; otherwise pass nil.

    Also, Decrypt expects the ciphertext to be prefixed by the nonce, but Encrypt doesn't prepend it.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

  • 深度 | 字节跳动微服务架构体系演进
    2021-08-24 17:00
    SOFAStack的博客 本文整理自字节跳动(火山引擎)基础架构/服务框架团队负责人成国柱在 QCon 2021 的分享,主要介绍了 2018-2021 年间,服务框架团队在 Golang 服务框架和 Servic...
  • Golang 搭建一个基础的 web 服务:Hello World
    2020-07-27 14:56
    寻沂的博客 介绍了 golang web 的一个 hello world 程序
  • Golang开发
    2025-03-18 00:48
    yzletter的博客 golang开发
  • Golang笔记
    2023-10-18 15:27
    The Straggling Crow的博客 协程是用户态轻量级线程协程是线程调度的基本单位通常在函数前加上go关键字就能实现并发。一个Goroutine会以一个很小的栈启动2KB或4KB,当遇到栈空间不足时,栈会自动伸缩, 因此可以轻易实现成千上万个goroutine...
  • Golang八股文面试题
    2023-12-16 12:22
    wzerofeng的博客 【代码】Golang八股文面试题。
  • Golang面经
    2021-12-06 22:42
    Yuan_xii的博客 (1) rpc微服务框架 (2) mq底层数仓 (3) runtime包里面的方法 (4)redis过期策略和内存淘汰策略 过期策略: 过期策略 解释 定时删除 设置某个Key的过期时间的同事,创建一个定时器,到时间就删除该key 惰性...
  • golang大厂面试2
    2023-07-04 14:42
    theo.wu的博客 实现一个函数,有两个参数分别是升序的整数数组a和b,返回合并后的升序整数数组。理解不理解这些树的构造,是要解决什么问题?处理日志的时候如果发现突然量变大,该如何扩容让以前堆积的日志可以消耗掉?命令的时间...
  • Go实战Gin+Vue+微服务打造秒杀商城第二课 模板语法和路由组
    2022-05-27 10:21
    办公模板库 素材蛙的博客 一、统一使用了 { { 和 } } 作为左右标签, 二、上下文 . 访问当前位置的上下文 $ 引用当前模板根级的上下文 $. 引用模板中的根级上下文 三、支持go语言的符号,这里只是符号的支持 1.字符串:{ { “zhiliao ” } ...
  • Golang Devops项目开发
    2023-07-27 22:40
    theo.wu的博客 练习:写一个程序,交换两个整数的值。比如: a=3; b=4; 交换之后:a=4;b=3 代码:2-6-swap.go package main import "fmt" func swap(a *int, b *int) { tmp := *a *a = *b *b = tmp return } func swap1(a int...
  • golang大厂面试1
    2023-06-11 21:42
    theo.wu的博客 Golang字节面试经验分享第一面面试官首先介绍说会有几轮面试算法题 1.1将整数转换二进制 然后将负数变成。
  • 没有解决我的问题, 去提问