前端直接默认参数加密的,没有传iv salt等
const cryptoJS = require("crypto-js");
const encryptedValue = cryptoJS.AES.encrypt(value, secret)
后端代码
前端默认参数加密,后端解密
java
public static byte[][] GenerateKeyAndIV(int keyLength, int ivLength, int iterations, byte[] salt, byte[] password, MessageDigest md) {
int digestLength = md.getDigestLength();
int requiredLength = (keyLength + ivLength + digestLength - 1) / digestLength * digestLength;
byte[] generatedData = new byte[requiredLength];
int generatedLength = 0;
try {
md.reset();
// Repeat process until sufficient data has been generated
while (generatedLength < keyLength + ivLength) {
// Digest data (last digest if available, password data, salt if available)
if (generatedLength > 0) {
md.update(generatedData, generatedLength - digestLength, digestLength);
}
md.update(password);
if (salt != null) {
md.update(salt, 0, 8);
}
md.digest(generatedData, generatedLength, digestLength);
// additional rounds
for (int i = 1; i < iterations; i++) {
md.update(generatedData, generatedLength, digestLength);
md.digest(generatedData, generatedLength, digestLength);
}
generatedLength += digestLength;
}
// Copy key and IV into separate byte arrays
byte[][] result = new byte[2][];
result[0] = Arrays.copyOfRange(generatedData, 0, keyLength);
if (ivLength > 0) {
result[1] = Arrays.copyOfRange(generatedData, keyLength, keyLength + ivLength);
}
return result;
} catch (DigestException e) {
throw new RuntimeException(e);
} finally {
// Clean out temporary data
Arrays.fill(generatedData, (byte) 0);
}
}
//解密方法
public static byte[] aesDecrypt(String encryptedText, String secret) {
try {
byte[] cipherData = cn.hutool.core.codec.Base64.decode(encryptedText);
byte[] saltData = Arrays.copyOfRange(cipherData, 8, 16);
MessageDigest md5 = MessageDigest.getInstance("MD5");
final byte[][] keyAndIV = GenerateKeyAndIV(32, 16, 1, saltData, secret.getBytes(StandardCharsets.UTF_8), md5);
SecretKeySpec key = new SecretKeySpec(keyAndIV[0], "AES");
IvParameterSpec iv = new IvParameterSpec(keyAndIV[1]);
byte[] encrypted = Arrays.copyOfRange(cipherData, 16, cipherData.length);
Cipher aesCBC = Cipher.getInstance("AES/CBC/PKCS5Padding");
aesCBC.init(Cipher.DECRYPT_MODE, key, iv);
return aesCBC.doFinal(encrypted);
} catch (Exception e) {
log.error("aesDecrypt errorencryptedText" + e.getMessage(), e);
return null;
}
}后端加密
java
public static byte[] aesEncrypt(String datastr, String secret) {
try {
byte[] input = datastr.getBytes();
// 以下两个变量不可修改,否则java加密的,node无法解密
byte[] saltData = "DFބf$t:".getBytes();
byte[] preData = "Salted__".getBytes();
MessageDigest md5 = MessageDigest.getInstance("MD5");
final byte[][] keyAndIV = GenerateKeyAndIV(32, 16, 1, saltData, secret.getBytes(StandardCharsets.UTF_8), md5);
SecretKeySpec key = new SecretKeySpec(keyAndIV[0], "AES");
IvParameterSpec iv = new IvParameterSpec(keyAndIV[1]);
Cipher aesCBC = Cipher.getInstance("AES/CBC/PKCS5Padding");
aesCBC.init(Cipher.ENCRYPT_MODE, key, iv);
byte[] encrypt = aesCBC.doFinal(input);
byte[] encryptedData = addBytes(saltData, encrypt);
return Base64.getEncoder().encode((addBytes(preData, encryptedData)));
} catch (Exception e) {
log.error("aesEncrypt error.param={}", datastr, e);
return null;
}
}
public static byte[] addBytes(byte[] data1, byte[] data2) {
byte[] data3 = new byte[data1.length + data2.length];
System.arraycopy(data1, 0, data3, 0, data1.length);
System.arraycopy(data2, 0, data3, data1.length, data2.length);
return data3;
}