使用AES 256 CTR在Node JS中加密和在Golang中解密

I have encrypted some JSON Text using following Node JS code:-

var algorithm = 'aes-256-ctr';
var crypto = require('crypto');

var password = "6A80FD8D38D579D1090F6CDB62C729311781E4BA31CD7D804BD7BF5AEC3BFC2D"

var typedRequest = {"abc":"cde"}

var cipher = crypto.createCipher(algorithm, password);
var hashRequest = cipher.update(JSON.stringify(typedRequest),
    'utf8', 'hex');
hashRequest += cipher.final('hex');

And now, I wanted to decrypt this encryptedText in Golang. But I am not able to found any way to do this, since in almost all decryption logic examples of AES 256 CTR in Golang, I found it always requires IV while decrypting but I have not use the same in Node JS. I have written something in Golang but its not decrypting correctly and giving error for now:-

package main

import (
    "crypto/aes"
    "crypto/cipher"
    "encoding/hex"
    "fmt"

)

func main() {

    encKey := "6A80FD8D38D579D1090F6CDB62C729311781E4BA31CD7D804BD7BF5AEC3BFC2D"
    cipherText := "746c17cd10f8f86646f843ac2a"

    encKeyDecoded, err := hex.DecodeString(encKey)
    if err != nil {
        panic(err)
    }
    cipherTextDecoded, err := hex.DecodeString(cipherText)
    if err != nil {
        panic(err)
    }

    iv := cipherTextDecoded[:aes.BlockSize]

    block, err := aes.NewCipher([]byte(encKeyDecoded))
    if err != nil {
        panic(err)
    }

    cipherTextBytes := []byte(cipherTextDecoded)

    plaintext := make([]byte, len(cipherTextBytes) - aes.BlockSize)
    stream := cipher.NewCTR(block, iv)
    stream.XORKeyStream(plaintext, cipherTextBytes[aes.BlockSize:])

    fmt.Println(string(plaintext))
}

Any help in getting the correct Golang code is highly appreciated. Thanks

=====================================

Now, I have updated to following after taking suggestion from Answer:-

This is my node js code:-

var crypto = require('crypto'),
  algorithm = 'aes-256-ctr',
  password = '6A80FD8D38D579D1090F6CDB62CA34CA',
  // do not use a global iv for production, 
  // generate a new one for each encryption
  iv = '79b67e539e7fcadf'

var typedRequest = {"abc":"cde"}

var cipher = crypto.createCipheriv(algorithm, password, iv);
var hashRequest = cipher.update(JSON.stringify(typedRequest),
    'utf8', 'hex');
hashRequest += iv.toString('hex') + cipher.final('hex');

This is my Go code:-

package main

import (
    "crypto/aes"
    "crypto/cipher"
    "encoding/hex"
    "fmt"

)

func main() {

    encKey := "6A80FD8D38D579D1090F6CDB62CA34CA"
    cipherText := "af7d1eb42107549a7e3adbce1a79b67e539e7fcadf" // Got from above

    encKeyDecoded, err := hex.DecodeString(encKey)
    if err != nil {
        panic(err)
    }
    cipherTextDecoded, err := hex.DecodeString(cipherText)
    if err != nil {
        panic(err)
    }

    block, err := aes.NewCipher([]byte(encKeyDecoded))
    if err != nil {
        panic(err)
    }

    iv := cipherTextDecoded[:aes.BlockSize]
    cipherTextBytes := []byte(cipherTextDecoded)

    plaintext := make([]byte, len(cipherTextBytes) - aes.BlockSize)
    stream := cipher.NewCTR(block, iv)
    stream.XORKeyStream(plaintext, cipherTextBytes[aes.BlockSize:])

    fmt.Println(string(plaintext))
}

Now, I am getting something completely different in decrypted form.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dro7152 2017-12-08 19:43
关注
It is your NodeJS code that is incorrect. CTR mode requires an IV, calling crypto.createCipher is undefined behavior for CTR mode.

As per the NodeJS docs for Crypto, you should be using crypto.createCipheriv. Your Golang code attempts to retrieve this IV from the start of the plaintext, so you'll need to place it there in your NodeJS code.

The IV should be unique for each encryption operation, using a CSPRNG is the recommended way to do this.

本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

使用AES 256 CTR在Node JS中加密和在Golang中解密 node.js
2017-12-08 19:21

回答 1 已采纳 It is your NodeJS code that is incorrect. CTR mode requires an IV, calling crypto.createCipher is
如何解密在nodejs中加密的golang中的AES256位密码？ node.js
2017-06-12 11:50

回答 1 已采纳 I solved this problem with help from @osgx These are the things that I needed to change to decryp
AES-256-CBC加密在golang和node / php之间不匹配 node.js php
2018-06-08 13:42

回答 1 已采纳 Okay, I managed to get the go output to match your other outputs, but I'm not 100% clear on all of
nodejs aes192加密，在golang中解密碰到的坑
2021-01-25 20:35

BanFS的博客最近改写服务器，集群中服务器是nodejs写的，把其中一个服务器改成golang写的，碰到了nodejsaes192加密，再golang中解密碰到的坑，如下。在nodejs中是这样加密的 const encrypt = (toEncrypt) => { const ...
在Java和golang中使用AES时获得不同的结果（密文） java
2019-03-27 05:59

回答 1 已采纳 In the go code, you are using AES in GCM mode with 12 bytes of zero as IV, but in java code you ar
如何在Golang中使用rsa密钥对进行AES加密和解密
2017-04-18 03:45

回答 1 已采纳 As suggested in comments, i searched "hybrid cryptography" . And this example has solved my proble
Node.js / Golang AES 256解密 node.js
2018-04-23 12:57

回答 1 已采纳 Ok this is working well actually, the blocksize show isn't a problem, internally it creates the co
node.js aes-256-cbc 加密解密
2021-05-13 17:16

用户昵称不能为空的博客使用 node.js 进行AES 加密解密，代码如下代码 // Nodejs encryption with CTR const crypto = require('crypto'); const algorithm = 'aes-256-cbc'; const keyStr = '2ba27190770c3203a3094b1d212f5e2f' const ...
在Golang中解密在Python AES CFB中加密的内容 python
2017-06-30 15:27

回答 1 已采纳 Try encrypting from Python like this. The result can then be unencrypted from Go successfully.
如何在Golang中使用AES256-GCM加密文件？
2016-09-06 10:50

回答 2 已采纳 AEADs should not be used to encrypt large amounts of data in one go. The API is designed to discou
来自NodeJS的Golang解密AES 256 CBC base64 node.js
2017-09-28 17:34

回答 1 已采纳 Your second attempt was closer, but you didn't decode the base64 string first. If you go by the C
JavaScript + GO 通过 AES + RSA 进行数据加解密
2023-08-06 18:51

JavaScriptLiang的博客浏览器端搞些小儿科的加密，就好比在黑暗夜空中，点缀了几颗星星，告诉黑客「这里有宝贵信息，快来翻牌」浏览器端的加密，都是相对安全的。它的具体安危，取决于里面存在的信息价值，是否值得破解者出手一试。就跟...
Golang解密使用Node.js加密的字符串 node.js
2015-10-22 13:57

回答 1 已采纳 In OpenSSL 'aes256' is equivalent to 'aes-256-cbc'. So your use of NewCFBDecrypter seems off. Othe
golang后端面试题总结
2023-05-11 09:57

qq_28401891的博客 golang后端面试题总结你好！这是你第一次使用 Markdown编辑器所展示的欢迎页。如果你想学习如何使用Markdown编辑器, 可以仔细阅读这篇文章，了解一下Markdown的基本语法知识。我们对Markdown编辑器进行了一些功能...
小福利，常见加密算法
2022-04-28 10:12

littlespider889的博客常见加密算法： ...JavaScript 加密解密模块 Crypto-JS Crypto-JS 支持 MD5、SHA、RIPEMD-160、HMAC、PBKDF2、AES、DES、3DES（Triple DES）、Rabbit、RC4 等，不支持 RSA、ECC，是应用比较广的加密模块，
没有解决我的问题, 去提问

悬赏问题

¥15 metadata提取的PDF元数据，如何转换为一个Excel
¥15 关于arduino编程toCharArray()函数的使用
¥100 vc++混合CEF采用CLR方式编译报错
¥15 coze 的插件输入飞书多维表格 app_token 后一直显示错误，如何解决？
¥15 vite+vue3+plyr播放本地public文件夹下视频无法加载
¥15 c#逐行读取txt文本，但是每一行里面数据之间空格数量不同
¥50 如何openEuler 22.03上安装配置drbd
¥20 ING91680C BLE5.3 芯片怎么实现串口收发数据
¥15 无线连接树莓派，无法执行update，如何解决？（相关搜索：软件下载）
¥15 Windows11, backspace, enter, space键失灵

使用AES 256 CTR在Node JS中加密和在Golang中解密

1条回答 默认 最新

悬赏问题

1条回答默认最新