将基于PHP mcrypt的安全性转换为Java基础（已修改为cryptastic）

after struggling for a while, I figured that I should bring my question here as I do not really know exactly what I am doing. Basically, I am using a somewhat modified version of the cryptastic version found here.

I am currently base64 encoding everything, then converting to hexidecimal in order to keep the data the same between the two langauges. Right now, I have managed to get decryption from PHP to work, but keep coming across errors when I try to encrypt. I am using BouncyCastle... and for some reason in the decrypt when I do an init, instead of using false it will only work with true (which the docs say is for encryption...) Anyway, here is my class thus far if anyone has a chance to look at it that would be great.

Technically, decrypt is working only because I have a hack function to remove padding as the ZeroByteEncoding isn't working properly either.

So, I am able to decrypt from the PHP cryptastic, but not encrypt properly so that it can decrypt (it throws an error in my stringToHexidecimal then)

public class Cryptastic {
public final static String CHARSET = "US-ASCII";

public byte[] encrypt(String toEncrypt, byte[] keyBytes, boolean base64Encode)
{
    try
    {
        toEncrypt = serialize(toEncrypt);
        byte[] newEncrypt = toEncrypt.getBytes(CHARSET);
        BlockCipher blockCipher = new RijndaelEngine(256);
        SecureRandom secureRandom = new SecureRandom();
        byte[] iv = new byte[32];           
        secureRandom.nextBytes(iv);


        CipherParameters cipherParameters = new ParametersWithIV(new KeyParameter(keyBytes), iv);
        RijndaelEngine rijndael = new RijndaelEngine(256);
        SICBlockCipher ctrMode = new SICBlockCipher(rijndael);
        PaddedBufferedBlockCipher cipher = new PaddedBufferedBlockCipher(ctrMode, new ZeroBytePadding());
        cipher.init(true, cipherParameters);

        int size = cipher.getOutputSize(newEncrypt.length);
        byte[] encrypted = new byte[size];
        System.out.println(displayBytes(encrypted, false));
        int outputLength = cipher.processBytes(newEncrypt, 0, newEncrypt.length, encrypted, 0);
        cipher.doFinal(encrypted, outputLength);
        if(base64Encode)
        {
            encrypted = Base64.encode(encrypted);
        }

        byte[] temp = new byte[encrypted.length + 32];
        for(int i = 0; i < iv.length; i++)
        {
            temp[i] = iv[i];
        }
        for(int i = iv.length; i < temp.length; i++)
        {
            temp[i] = encrypted[i - iv.length];
        }

        encrypted = temp;
        byte[] mac  = generateKey(encrypted, keyBytes, 1000, 32);

        temp = new byte[encrypted.length + mac.length];
        for(int i = 0; i < encrypted.length; i++)
        {
            temp[i] = encrypted[i];
        }
        for(int i = encrypted.length; i < temp.length; i++)
        {
            temp[i] = mac[i - encrypted.length];
        }

        return encrypted;

        //System.out.println("Original IV: " + displayBytes(iv, false));
    }
    catch (Exception e)
    {
        e.printStackTrace();
    }
    return null;
}

public byte[] decrypt(String toDecrypt, byte[] keyBytes, boolean base64Encode)
{
    try
    {
        byte[] newDecrypt = hexToByte(toDecrypt);
        //toDecrypt = hexToString(toDecrypt);
        if(base64Encode)
        {
            newDecrypt = Base64.decode(newDecrypt);
            //toDecrypt = new String(Base64.decode(toDecrypt.getBytes(CHARSET)), CHARSET);
        }    
        byte[] iv = new byte[32];
        byte[] extractedMac = new byte[32];

        int offset = newDecrypt.length - 32;
        for(int i = 0; i < 32; i++)
        {
            iv[i] = newDecrypt[i];
            extractedMac[i] = newDecrypt[i + offset];
        }

        byte[] temp = new byte[offset - 32];
        for(int i = 0; i < temp.length; i++)
        {
            temp[i] = newDecrypt[i + 32];
        }

        newDecrypt = temp;

        byte[] combo = new byte[newDecrypt.length + iv.length];
        for(int i = 0; i < iv.length; i++)
        {
            combo[i] = iv[i]; 
        }

        for(int i = iv.length; i < combo.length; i++)
        {
            combo[i] = newDecrypt[i - iv.length];
        }

        byte[] mac = generateKey(new String(combo, CHARSET), new String(keyBytes, CHARSET), 1000, 32);
        boolean matches = new String(extractedMac).equals(new String(mac));

        if(!matches)
        {
            byte[] toReturn = new byte[0];
            return toReturn;
        }

        CipherParameters cipherParameters = new ParametersWithIV(new KeyParameter(keyBytes), iv);
        RijndaelEngine rijndael = new RijndaelEngine(256);
        SICBlockCipher ctrMode = new SICBlockCipher(rijndael);
        PaddedBufferedBlockCipher cipher = new PaddedBufferedBlockCipher(ctrMode, new ZeroBytePadding());
        cipher.init(true, cipherParameters);

        int size = cipher.getOutputSize(newDecrypt.length);
        byte[] decrypted = new byte[size];

        System.out.println(displayBytes(newDecrypt, false));
        System.out.println(displayBytes(decrypted, false));
        int outputLength = cipher.processBytes(newDecrypt, 0, newDecrypt.length, decrypted, 0);
        cipher.doFinal(decrypted, outputLength);
        System.out.println(displayBytes(decrypted, false));

        temp = new byte[newDecrypt.length];
        for(int i = 0; i < temp.length; i++)
        {
            temp[i] = decrypted[i];
        }
        decrypted = temp;

        decrypted = unserialize(new String(decrypted, CHARSET)).getBytes(CHARSET);
        return decrypted;
    }
    catch (Exception e)
    {
        e.printStackTrace();
    }
    return null;
}

public byte[] generateKey(String password, String salt, int blockIterations, int keyLength)
{
    try
    {
        SHA256Digest digest = new SHA256Digest();
        int hashLength = digest.getDigestSize();
        long keyBlocks = (long) Math.ceil( (double) keyLength / (double) hashLength);
        String derived_key = "";
        //System.out.println("Number of blocks: " + keyBlocks);
        for(long block = 1; block <= keyBlocks; block++)
        {
            byte[] initialHash = hash_hmac(salt + new String(pack(block)/*, CHARSET */), password);
            byte[] compareHash = initialHash;
            //System.out.println("Block: " + block);
            for(int i = 1; i < blockIterations; i++) 
                // XOR each iterate
                compareHash = hash_hmac(compareHash, password);
                for(int j = 0; j < initialHash.length; j++)
                {
                    initialHash[j] = (byte) (initialHash[j] ^ compareHash[j]);
                }
            }
            derived_key += new String(initialHash/*, CHARSET */);
        }
        return derived_key.substring(0, keyLength).getBytes(CHARSET);
    }
    catch (Exception e)
    {
        e.printStackTrace();
    }

    return null;
}

public byte[] generateKey(byte[] password, byte[] salt, int blockIterations, int keyLength)
{
    try
    {
        SHA256Digest digest = new SHA256Digest();
        int hashLength = digest.getDigestSize();
        long keyBlocks = (long) Math.ceil( (double) keyLength / (double) hashLength);
        byte[] derived_key = null;
        //System.out.println("Number of blocks: " + keyBlocks);
        for(long block = 1; block <= keyBlocks; block++)
        {
            byte[] packed = pack(block);
            byte[] combined = new byte[salt.length + packed.length];
            for(int i = 0; i < salt.length; i++)
            {
                combined[i] = salt[i];
            }
            for(int i = salt.length; i < combined.length; i++)
            {
                combined[i] = packed[i - salt.length];
            }

            byte[] initialHash = hash_hmac(combined, password);
            byte[] compareHash = initialHash;
            //System.out.println("Block: " + block);
            for(int i = 1; i < blockIterations; i++) 
            {
                // XOR each iterate
                compareHash = hash_hmac(compareHash, password);
                for(int j = 0; j < initialHash.length; j++)
                {
                    initialHash[j] = (byte) (initialHash[j] ^ compareHash[j]);
                }
            }
            if(derived_key == null)
            {
                derived_key = initialHash;
            }
            else
            {
                byte[] temp = new byte[derived_key.length + initialHash.length];
                for(int i = 0; i < derived_key.length; i++)
                {
                    temp[i] = derived_key[i];
                }
                for(int i = derived_key.length; i < temp.length; i++)
                {
                    temp[i] = initialHash[i - derived_key.length];
                }
                derived_key = temp;
            }
        }
        byte[] toReturn = new byte[keyLength];
        for(int i = 0; i < toReturn.length; i++)
        {
            toReturn[i] = derived_key[i];
        }
        return toReturn;
    }
    catch (Exception e)
    {
        e.printStackTrace();
    }

    return null;
}

public byte[] pack(long toPack)
{       
    String test = Long.toHexString(toPack);
    while(test.length() < 8)
    {
        test = "0" + test;
    }       
    byte[] toReturn = new byte[4];

    toReturn[0] = Byte.parseByte(test.substring(0, 2));
    toReturn[1] = Byte.parseByte(test.substring(2, 4));
    toReturn[2] = Byte.parseByte(test.substring(4, 6));
    toReturn[3] = Byte.parseByte(test.substring(6, 8));
    return toReturn;
}

public String hexToString(String hex)
{
    return new String(hexToByte(hex));
}

public byte[] hexToByte(String hex)
{
    if(hex.length() % 2 != 0)
    {
        hex = "0" + hex;
    }

    byte[] toReturn = new byte[hex.length() / 2];

    for(int i = 0; i < toReturn.length; i++)
    {
        toReturn[i] = Byte.parseByte(hex.substring(i * 2, (i + 1) * 2), 16);
    }
    //System.out.println(displayBytes(toReturn, false));
    return toReturn;
}

public byte[] hash_hmac(String data, String key)
{
    return hash_hmac("HmacSHA256", data, key);
}

public byte[] hash_hmac(String algorithm , String data , String key)
{
    try
    {
        SecretKeySpec secret = new SecretKeySpec(key.getBytes(/*CHARSET*/), algorithm);
        Mac mac = Mac.getInstance(algorithm);
        mac.init(secret);
        byte[] digest = mac.doFinal(data.getBytes(/*CHARSET*/));
        return digest;
    }
    catch (Exception e)
    {
        e.printStackTrace();
    }
    return null;
}

public byte[] hash_hmac(byte[] data, String key)
{
    return hash_hmac("HmacSHA256", data, key);
}

public byte[] hash_hmac(byte[] data, byte[] key)
{
    return hash_hmac("HmacSHA256", data, key);
}

public byte[] hash_hmac(String algorithm , byte[] data , byte[] key)
{
    try
    {
        SecretKeySpec secret = new SecretKeySpec(key, algorithm);
        Mac mac = Mac.getInstance(algorithm);
        mac.init(secret);
        byte[] digest = mac.doFinal(data);
        return digest;
    }
    catch (Exception e)
    {
        e.printStackTrace();
    }
    return null;
}

public byte[] hash_hmac(String algorithm , byte[] data , String key)
{
    try
    {
        SecretKeySpec secret = new SecretKeySpec(key.getBytes(/*CHARSET*/), algorithm);
        Mac mac = Mac.getInstance(algorithm);
        mac.init(secret);
        byte[] digest = mac.doFinal(data);
        return digest;
    }
    catch (Exception e)
    {
        e.printStackTrace();
    }
    return null;
}


public String displayBytes(byte[] bytes, boolean rawDisplay)
{
    String toReturn = "";
    if(rawDisplay)
    {
            toReturn = new String(bytes/*, CHARSET */);
    }
    else
    {
        for (byte b : bytes) 
        {
            toReturn += String.format("%02x", b);
        }
    }
    return toReturn;
}

public String toHex(String toConvert) {
    if(toConvert.getBytes().length == 0)
    {
        return "";
    }
    return String.format("%04x", new BigInteger(toConvert.getBytes(/*YOUR_CHARSET?*/)));
}

/*
 * This creates a string representation that should line up with PHPs serialize.
 */
public String serialize(String toSerialize)
{
    return "s:" + toSerialize.length() + ":\"" + toSerialize + "\";";
}

public String unserialize(String toUnserialize)
{
    System.out.println(toUnserialize);
    int endIndex = toUnserialize.indexOf("\";");
    while (endIndex < toUnserialize.length() && endIndex < toUnserialize.indexOf("\";", endIndex + 1))
    {
        endIndex = toUnserialize.indexOf("\";", endIndex + 1);
    }
    return toUnserialize.substring(toUnserialize.indexOf(":\"") + 2, endIndex);
}

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dopzc64662 2012-01-31 23:56
关注
Without reading through all the code, if an encrypt works instead of a decrypt, then you may have "decrypted" the plain text to form the cipher text, as symmetric encryption/decryption is reversable. In other words, you could use plain = encrypt(decrypt(plain)) as well as plain = decrypt(encrypt(plain)).

The only possible difference could be padding: decrypt should remove padding and encrypt should add it, so that would make a difference.

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

无法在PHP中将mcrypt升级为openssl解密 php
2018-10-05 19:53

回答 1 已采纳 The main issue here is the key size. You're creating the key with SHA256 which returns a 256 bit h
关于PHP和JAVA之间的AES加密互通问题 java php
2019-03-02 12:04

回答 2 已采纳可以试试下面这种AES加密解密方式看行不行 ``` class AES { /** * * @param string $string 需要加密的字符串
JAVA是php的MCRYPT_RIJNDAEL_256的可靠等价物 java php
2014-10-25 12:33

回答 1 已采纳 The problem is likely to be the ZeroBytePadding. The one of Bouncy always adds/removes at least on
php基于mcrypt_encrypt和mcrypt_decrypt实现字符串加密解密的方法
2020-10-21 23:16

主要介绍了php基于mcrypt_encrypt和mcrypt_decrypt实现字符串加密解密的方法,结合实例形式分析了mcrypt_encrypt和mcrypt_decrypt函数进行加密、解密的相关使用技巧,需要的朋友可以参考下
将PHP中的Aes加密转换为c＃ c# php
2018-07-11 07:59

回答 2 已采纳 The code you want should be: public static string Encrypt(string plainText, string key) { usi
在PHP上使用长密钥，而不是Java java php
2017-03-07 07:50

回答 1 已采纳 well, this is weird , Triple Des only accepts 24 bytes as it's key Each DES key is nominally
解密java中的字符串，在php中使用AES加密 java php
2015-04-13 10:23

回答 1 已采纳 There are some problems with your code. Your key in Java is only 31 characters long and not 32.
java-php-mcrypt-base64:使用 AESCBCNoPadding Rijndael-128 进行 Java 和 PHP 通信的简单脚本
2021-06-09 13:54

使用 Base64 的 Java-PHP-加密-解密
Java / PHP加密CAST-256 java php
2015-07-03 16:16

回答 1 已采纳 So I finally figured this out. Apparently it seems PHP implementation of the Cast6 Algorithm is n
Java端的AES加密 - 在PHP端解密并选择单个密钥 android java php
2014-07-30 12:26

回答 2 已采纳 There seem to be a few things you are doing wrong, I'll go over these in order: Always specify "A
将AES解密从php转换为c＃ c# php
2014-12-14 23:27

回答 1 已采纳 You are using the first 16 bytes of string data instead of 16 bytes of binary data. This is what i
php基于mcrypt的加密解密实例
2020-10-25 07:48

主要介绍了php基于mcrypt的加密解密的实现方法,以实例形式分析了mcrypt加密解密的原理与具体实现方法,非常具有实用价值,需要的朋友可以参考下
Java和PHP对称加密（DES） java php
2013-04-09 12:20

回答 3 已采纳 Thanks for the hints. Unfortunately none of them worked out for me. I finally solved it based on
java mcrypt encrypt_php基于mcrypt_encrypt和mcrypt_decrypt实现字符串加密解密的方法
2021-03-12 19:39

旷视科技的博客本文实例讲述了php基于mcrypt_encrypt和mcrypt_decrypt实现字符串加密解密的方法。分享给大家供大家参考，具体如下：由于出于安全考虑，参数传递的时候需要进行加密和解密，一个比较简单的方法是直接使用php中的函数...
php-java-aes:php-aes与Java匹配
2021-04-27 18:50

php-java-aes php-aes使用Java加密和解密匹配与php7兼容，删除了mcrypt依赖性。PHP依赖关系的openssl密码： AES-128-ECB用法示例： $ key = 'abcdef' ;$ aes = new Aes ();#do encrypt$ encrypted = $ aes -> ...
java mcrypt encrypt_PHP mcrypt_encrypt加密，使用java解密
2021-03-12 19:40

卢诗翰的博客 PHP mcrypt_encrypt使用给定的 cipher 和 mode 加密的数据，没有使用pkcs5_pad()函数填充的情况下，如果数据长度不是n*分组大小，则在其后使用“0”补齐。Java 不能使用AES/ECB/PKCS5Padding，因为填充方式与php不同...
java mcrypt encrypt_用于mcrypt_encrypt的32个字符的PHP AES密钥
2021-03-12 19:39

戚本刚的博客考虑以下PHP代码：$key = "1234567812345678";$iv = "1234567812345678";...$encrypted = mcrypt_encrypt(MCRYPT_RIJNDAEL_128,$key,$data,MCRYPT_MODE_CBC,$iv);print "Encoded1: " . base64_encode($e...
mcrypt encrypt java_PHP mcrypt_encrypt加密，使用java解密
2021-02-28 17:36

带带带麻烦的博客 PHP mcrypt_encrypt使用给定的 cipher 和 mode 加密的数据，没有使用pkcs5_pad()函数填充的情况下，如果数据长度不是n*分组大小，则在其后使用“0”补齐。Java 不能使用AES/ECB/PKCS5Padding，因为填充方式与php不同...
php_mcrypt.dll_php_mcrypt_
2021-09-29 05:30

php的mcrypt插件，下载后放在扩展文件夹下即可
MCrypt:以及与Java（Android）和csharp一起使用的RSA加密解密解决方案
2021-05-13 10:54

MCrypt 以及可与Java（Android）和csharp一起使用的RSA加密/解密解决方案这只是用于在Android应用程序和.Net c＃Web服务之间实现RSA加密通信的几个类用： Web服务CSharp // The public/private RSA keysstring keys ...
没有解决我的问题, 去提问

悬赏问题

¥15 如何在node.js中或者java中给wav格式的音频编码成sil格式呢
¥15 不小心不正规的开发公司导致不给我们y码，
¥15 我的代码无法在vc++中运行呀，错误很多
¥50 求一个win系统下运行的可自动抓取arm64架构deb安装包和其依赖包的软件。
¥60 fail to initialize keyboard hotkeys through kernel.0000000000
¥30 ppOCRLabel导出识别结果失败
¥15 Centos7 / PETGEM
¥15 csmar数据进行spss描述性统计分析
¥15 各位请问平行检验趋势图这样要怎么调整？说标准差差异太大了
¥15 delphi webbrowser组件网页下拉菜单自动选择问题

将基于PHP mcrypt的安全性转换为Java基础（已修改为cryptastic）

2条回答 默认 最新

悬赏问题

2条回答默认最新