114 lines
2.7 KiB
Go
114 lines
2.7 KiB
Go
package crypto
|
||
|
||
import (
|
||
"bytes"
|
||
"crypto/aes"
|
||
"crypto/cipher"
|
||
"crypto/md5"
|
||
"crypto/rand"
|
||
"encoding/base64"
|
||
"encoding/hex"
|
||
"errors"
|
||
"io"
|
||
)
|
||
|
||
// PKCS7填充
|
||
func PKCS7Padding(ciphertext []byte, blockSize int) []byte {
|
||
padding := blockSize - len(ciphertext)%blockSize
|
||
padtext := bytes.Repeat([]byte{byte(padding)}, padding)
|
||
return append(ciphertext, padtext...)
|
||
}
|
||
|
||
// 去除PKCS7填充
|
||
func PKCS7UnPadding(origData []byte) ([]byte, error) {
|
||
length := len(origData)
|
||
if length == 0 {
|
||
return nil, errors.New("input data error")
|
||
}
|
||
unpadding := int(origData[length-1])
|
||
if unpadding > length {
|
||
return nil, errors.New("unpadding size is invalid")
|
||
}
|
||
|
||
// 检查填充字节是否一致
|
||
for i := 0; i < unpadding; i++ {
|
||
if origData[length-1-i] != byte(unpadding) {
|
||
return nil, errors.New("invalid padding")
|
||
}
|
||
}
|
||
|
||
return origData[:(length - unpadding)], nil
|
||
}
|
||
|
||
// AES CBC模式加密,Base64传入传出
|
||
func AesEncrypt(plainText []byte, key string) (string, error) {
|
||
keyBytes, err := hex.DecodeString(key)
|
||
if err != nil {
|
||
return "", err
|
||
}
|
||
block, err := aes.NewCipher(keyBytes)
|
||
if err != nil {
|
||
return "", err
|
||
}
|
||
blockSize := block.BlockSize()
|
||
plainText = PKCS7Padding(plainText, blockSize)
|
||
|
||
cipherText := make([]byte, blockSize+len(plainText))
|
||
iv := cipherText[:blockSize] // 使用前blockSize字节作为IV
|
||
_, err = io.ReadFull(rand.Reader, iv)
|
||
if err != nil {
|
||
return "", err
|
||
}
|
||
|
||
mode := cipher.NewCBCEncrypter(block, iv)
|
||
mode.CryptBlocks(cipherText[blockSize:], plainText)
|
||
|
||
return base64.StdEncoding.EncodeToString(cipherText), nil
|
||
}
|
||
|
||
// AES CBC模式解密,Base64传入传出
|
||
func AesDecrypt(cipherTextBase64 string, key string) ([]byte, error) {
|
||
keyBytes, err := hex.DecodeString(key)
|
||
if err != nil {
|
||
return nil, err
|
||
}
|
||
cipherText, err := base64.StdEncoding.DecodeString(cipherTextBase64)
|
||
if err != nil {
|
||
return nil, err
|
||
}
|
||
|
||
block, err := aes.NewCipher(keyBytes)
|
||
if err != nil {
|
||
return nil, err
|
||
}
|
||
|
||
blockSize := block.BlockSize()
|
||
if len(cipherText) < blockSize {
|
||
return nil, errors.New("ciphertext too short")
|
||
}
|
||
|
||
iv := cipherText[:blockSize]
|
||
cipherText = cipherText[blockSize:]
|
||
|
||
if len(cipherText)%blockSize != 0 {
|
||
return nil, errors.New("ciphertext is not a multiple of the block size")
|
||
}
|
||
|
||
mode := cipher.NewCBCDecrypter(block, iv)
|
||
mode.CryptBlocks(cipherText, cipherText)
|
||
|
||
plainText, err := PKCS7UnPadding(cipherText)
|
||
if err != nil {
|
||
return nil, err
|
||
}
|
||
|
||
return plainText, nil
|
||
}
|
||
|
||
// Md5Encrypt 用于对传入的message进行MD5加密
|
||
func Md5Encrypt(message string) string {
|
||
hash := md5.New()
|
||
hash.Write([]byte(message)) // 将字符串转换为字节切片并写入
|
||
return hex.EncodeToString(hash.Sum(nil)) // 将哈希值转换为16进制字符串并返回
|
||
}
|