将加密Java代码转换为Go代码

I have following java code that does encryption and decryption using RSA Public and Private keys.

I wrote similar code in GO to do the same.

But when I try to decrypt a string using Go code that was encrypted in Java code, I see error: crypto/rsa: decryption error


public class EncryptDecryptUtil {

    private static final String MODE = "RSA/None/OAEPWithSHA256AndMGF1Padding";
    private static EncryptDecryptUtil single_instance = null;

    public static EncryptDecryptUtil getInstance()
    {
        if (single_instance == null)
            single_instance = new EncryptDecryptUtil();
        return single_instance;
    }

    public static String encryptText(String text, String keyStr) throws Exception {
        String resultText = null;
        try {
            Security.addProvider(new BouncyCastleProvider());
            Key publicKey = getRSAPublicFromPemFormat(keyStr);
            Cipher cipher = Cipher.getInstance(MODE, "BC");
            cipher.init(Cipher.ENCRYPT_MODE, publicKey);
            resultText = new String(Base64.getUrlEncoder().encodeToString(cipher.doFinal(text.getBytes())));
        } catch (IOException | GeneralSecurityException e) {
            e.printStackTrace();
        }
        return resultText;
    }

    public static String decryptText(String text, String keyStr) throws Exception {
        String resultText = null;
        try {
            Security.addProvider(new BouncyCastleProvider());
            Key privateKey = getRSAPrivateFromPemFormat(keyStr);
            Cipher cipher = Cipher.getInstance(MODE, "BC");
            cipher.init(Cipher.DECRYPT_MODE, privateKey);
            resultText = new String(cipher.doFinal(Base64.getUrlDecoder().decode(text.getBytes())));

        } catch (IOException | GeneralSecurityException e) {
            e.printStackTrace();
        }
        return resultText;
    }

    private static PrivateKey getRSAPrivateFromPemFormat(String keyStr) throws Exception {
        return (PrivateKey) getKeyFromPEMString(keyStr, data -> new PKCS8EncodedKeySpec(data), (kf, spec) -> {
            try {
                return kf.generatePrivate(spec);
            } catch (InvalidKeySpecException e) {
                System.out.println("Cannot generate PrivateKey from String : " + keyStr + e);
                return null;
            }
        });
    }

    private static PublicKey getRSAPublicFromPemFormat(String keyStr) throws Exception {
        return (PublicKey) getKeyFromPEMString(keyStr, data -> new X509EncodedKeySpec(data), (kf, spec) -> {
            try {
                return kf.generatePublic(spec);
            } catch (InvalidKeySpecException e) {
                System.out.println("Cannot generate PublicKey from String : " + keyStr + e);
                return null;
            }
        });
    }

    private static Key getKeyFromPEMString(String key, Function<byte[], EncodedKeySpec> buildSpec,
                                         BiFunction<KeyFactory, EncodedKeySpec, ? extends Key> getKey) throws Exception {
        try {
            // Read PEM Format
            PemReader pemReader = new PemReader(new StringReader(key));
            PemObject pemObject = pemReader.readPemObject();
            pemReader.close();

            KeyFactory kf = KeyFactory.getInstance("RSA", "BC");
            return getKey.apply(kf, buildSpec.apply(pemObject.getContent()));
        } catch (Exception e) {
            throw new Exception(e.getMessage());
        }
    }

}

package encryption

import (
    "crypto/rand"
    "crypto/rsa"
    "crypto/sha512"
    "crypto/x509"
    "encoding/base64"
    "encoding/pem"
    "fmt"
    "io/ioutil"
    "log"
)

// Encrypt encrypts string with public key
func Encrypt(msg string, publicKeyFilePath string) (string, error) {
    pubKey, err := ReadPublicKey(publicKeyFilePath)
    if err != nil {
        return "", err
    }
    encrypted, err := encrypt([]byte(msg), pubKey)
    if err != nil {
        return "", err
    }
    base64Encoded := base64.URLEncoding.WithPadding(61).EncodeToString(encrypted)
    return base64Encoded, nil
}

// Decrypt decrypts string with private key
func Decrypt(msg string, privateKeyFilePath string) (string, error) {
    privKey, err := ReadPrivateKey(privateKeyFilePath)
    if err != nil {
        return "", err
    }
    base64Decoded, err := base64.URLEncoding.WithPadding(61).DecodeString(msg)
    if err != nil {
        return "", err
    }
    decrypted, err := decrypt(base64Decoded, privKey)
    if err != nil {
        return "", err
    }
    return string(decrypted), nil
}

// GenerateKeyPair generates a new key pair
func GenerateKeyPair(bits int) (*rsa.PrivateKey, *rsa.PublicKey, error) {
    privkey, err := rsa.GenerateKey(rand.Reader, bits)
    if err != nil {
        return nil, nil, fmt.Errorf("Error generating Key Pair: %s", err)
    }
    return privkey, &privkey.PublicKey, nil
}

// ReadPublicKey reads public key from a file
func ReadPublicKey(publicKeyFile string) (*rsa.PublicKey, error) {
    pubPemData, err := ioutil.ReadFile(publicKeyFile)
    if err != nil {
        return nil, fmt.Errorf("Error [%s] reading public key from file: %s", err, publicKeyFile)
    }
    return BytesToPublicKey(pubPemData)
}

// ReadPrivateKey reads private key from a file
func ReadPrivateKey(privateKeyFile string) (*rsa.PrivateKey, error) {
    privKeyData, err := ioutil.ReadFile(privateKeyFile)
    if err != nil {
        return nil, fmt.Errorf("Error [%s] reading private key from file: %s", err, privateKeyFile)
    }
    return BytesToPrivateKey(privKeyData)
}

// PrivateKeyToBytes private key to bytes
func PrivateKeyToBytes(priv *rsa.PrivateKey) []byte {
    privBytes := pem.EncodeToMemory(
        &pem.Block{
            Type:  "RSA PRIVATE KEY",
            Bytes: x509.MarshalPKCS1PrivateKey(priv),
        },
    )

    return privBytes
}

// PublicKeyToBytes public key to bytes
func PublicKeyToBytes(pub *rsa.PublicKey) ([]byte, error) {
    pubASN1, err := x509.MarshalPKIXPublicKey(pub)
    if err != nil {
        return nil, fmt.Errorf("Error converting PublicKey to Bytes: %s", err)

    }

    pubBytes := pem.EncodeToMemory(&pem.Block{
        Type:  "RSA PUBLIC KEY",
        Bytes: pubASN1,
    })

    return pubBytes, nil
}

// BytesToPrivateKey bytes to private key
func BytesToPrivateKey(priv []byte) (*rsa.PrivateKey, error) {
    block, _ := pem.Decode(priv)

    enc := x509.IsEncryptedPEMBlock(block)
    b := block.Bytes
    var err error
    if enc {
        log.Println("is encrypted pem block")
        b, err = x509.DecryptPEMBlock(block, nil)
        if err != nil {
            return nil, fmt.Errorf("Error decrypting PEM Block: %s", err)
        }
    }
    key, err := x509.ParsePKCS1PrivateKey(b)
    if err != nil {
        return nil, fmt.Errorf("Error parsing PKCS1 Private Key: %s", err)
    }
    return key, nil
}

// BytesToPublicKey bytes to public key
func BytesToPublicKey(pub []byte) (*rsa.PublicKey, error) {
    block, _ := pem.Decode(pub)

    enc := x509.IsEncryptedPEMBlock(block)
    b := block.Bytes
    var err error
    if enc {
        log.Println("is encrypted pem block")
        b, err = x509.DecryptPEMBlock(block, nil)
        if err != nil {
            return nil, fmt.Errorf("Error decrypting PEM Block: %s", err)
        }
    }
    ifc, err := x509.ParsePKIXPublicKey(b)
    if err != nil {
        return nil, fmt.Errorf("Error parsing PKCS1 Public Key: %s", err)
    }
    key, ok := ifc.(*rsa.PublicKey)
    if !ok {
        return nil, fmt.Errorf("Error converting to Public Key: %s", err)
    }
    return key, nil
}

// encrypt encrypts data with public key
func encrypt(msg []byte, pub *rsa.PublicKey) ([]byte, error) {
    hash := sha512.New()
    ciphertext, err := rsa.EncryptOAEP(hash, rand.Reader, pub, msg, nil)
    if err != nil {
        return nil, fmt.Errorf("Error encrypting: %s", err)
    }
    return ciphertext, nil
}

// Decrypt decrypts data with private key
func decrypt(ciphertext []byte, priv *rsa.PrivateKey) ([]byte, error) {
    hash := sha512.New()
    plaintext, err := rsa.DecryptOAEP(hash, rand.Reader, priv, ciphertext, nil)
    if err != nil {
        return nil, fmt.Errorf("Error decrypting: %s", err)
    }
    return plaintext, nil
}

How to make sure that value encrypted using java code is decrypted properly by Go code.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
douti9286 2019-05-31 09:45
关注
Based on comments from @Michael, I changed go code to use sha256.New() instead of sha512.New() and that solved the issue. (Good catch!) I am now able to encrypt in Java and decrypt in Go.

本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

将加密Java代码转换为Go代码 java
2019-05-31 09:20

回答 1 已采纳 Based on comments from @Michael, I changed go code to use sha256.New() instead of sha512.New() and
在PHP代码加密中转换Java AES加密 java php
2019-03-14 11:39

回答 1 已采纳 base64_decode(base64_encode($appKey)) I believe you use the key in php as string bytes, not as a
java通过代码如何知道密码是什么加密方式 java
2023-04-03 09:57

回答 4 已采纳箭头指向的代码意思是从登录信息中取出密码信息，然后通过passwdMd5()方法里面的MD5加密方式将“123456”转成“5b7ac7ba433dc0842fb8d3bc15e4b2aa”，再拿着这
使用golang AES加密 java解密遇到的问题
2022-03-07 18:11

bannana119的博客前两天，准备写一个文件打标程序，设想的是使用golang在文件的末尾添加一串加密的内容，然后使用java读取文件中加密的内容并解密，为了安全使用的是AES加密。代码部分golang：加密解密 package util import ...
java加密解密返回值应该为多少 java
2021-08-08 11:33

回答 2 已采纳我输入这样的，提示我没有定义encryptAndDencrypt,定义了不会填写返回值
将弱加密算法从PHP转换为Coldfusion或Java java php
2015-08-28 00:46

回答 1 已采纳 Remove your ord function. This line in your CF: char = asc(ord(char) & ord(keychar)); should b
java如何实现前端的CryptoJS.SHA256加密方法 java javascript 前端
2022-02-14 15:58

回答 2 已采纳 import java.io.UnsupportedEncodingException; import java.security.MessageDigest; import java.securit
Java应用的混淆、加密以及加壳
2023-10-14 20:58

北极象的博客 Java混淆和打包工具总结，还没写完
Js的Aes加密如何转换为C#代码 c# javascript 哈希算法
2023-04-18 11:10

回答 3 已采纳使用.NET框架中的System.Security.Cryptography命名空间中的AesManaged类来实现，下面这个是我以前写过的可以参考： using System; using Syst
RSA在Java和Go之间进行加密和解密 java
2015-05-31 03:52

回答 1 已采纳 Try to use padding in Java to encrypt. I know nothing about "go" but in Java you are encrypting me
用Golang解密用Java加密的内容（无iv） java
2018-06-28 07:39

回答 1 已采纳 As noted in the comments to the question the follwing code is not secure since it uses the ECB mod
Hash算法加密，BCrypt加密算法在java和go中的应用
2022-09-27 19:30

了迹奇有没的博客为了信息安全，在工作中总免不了和加密算法打交道，相信大家多少都听过 MD5、SHA、BCrypt等算法。在接口加密、token校验、密码加密等等场景中，我们最熟悉的应该就是Hash算法这个名词了。hash是什么呢？密码又如何...
一段JAVA代码，是字符串加密的，麻烦大佬解析下？ android android-studio java spring
2021-02-17 17:26

回答 1 已采纳可以跟踪下MessageDigestUtil.digest这个函数的作用是什么。replace是它产生的。
Golang 和Java 国密加密互通
2022-10-13 17:29

斯赛的博客由于另一个项目用的是hutool 的国密加密工具，当然底层都是bouncycastle 方式用的是公钥，和私钥方式。现在要在Golang里进行转换
go java rsa_Golang加密解密之RSA（附带php）
2021-03-16 17:55

吧啦吧啦变的博客 RSA加密算法简史RSA是1977年由罗纳德·李维斯特(Ron Rivest)、阿迪·萨莫尔(Adi Shamir)和伦纳德·阿德曼(Leonard Adleman)一起提出的。当时他们三人都在麻省理工学院工作。RSA就是他们三人姓氏开头字母拼在一起组成...
没有解决我的问题, 去提问

悬赏问题

¥15 关于#python#的问题：求帮写python代码
¥20 MATLAB画图图形出现上下震荡的线条
¥15 LiBeAs的带隙等于0.997eV,计算阴离子的N和P
¥15 关于#windows#的问题：怎么用WIN 11系统的电脑克隆WIN NT3.51-4.0系统的硬盘
¥15 来真人，不要ai！matlab有关常微分方程的问题求解决，
¥15 perl MISA分析p3_in脚本出错
¥15 k8s部署jupyterlab，jupyterlab保存不了文件
¥15 ubuntu虚拟机打包apk错误
¥199 rust编程架构设计的方案有偿
¥15 回答4f系统的像差计算

将加密Java代码转换为Go代码

1条回答 默认 最新

悬赏问题

1条回答默认最新