first commit
This commit is contained in:
102
pkg/lzkit/crypto/tianyuan_crypto.go
Normal file
102
pkg/lzkit/crypto/tianyuan_crypto.go
Normal file
@@ -0,0 +1,102 @@
|
||||
package crypto
|
||||
|
||||
import (
|
||||
"crypto/aes"
|
||||
"crypto/cipher"
|
||||
"crypto/rand"
|
||||
"encoding/base64"
|
||||
"encoding/hex"
|
||||
"errors"
|
||||
"io"
|
||||
)
|
||||
|
||||
// TianyuanEncrypt 天远数据AES-128-CBC加密,返回Base64编码的字符串
|
||||
// 与Node.js中的aesEncrypt函数对应
|
||||
func TianyuanEncrypt(plainText []byte, keyHex string) (string, error) {
|
||||
// 将16进制密钥转换为字节
|
||||
keyBuffer, err := hex.DecodeString(keyHex)
|
||||
if err != nil {
|
||||
return "", err
|
||||
}
|
||||
|
||||
// 创建AES密码器
|
||||
block, err := aes.NewCipher(keyBuffer)
|
||||
if err != nil {
|
||||
return "", err
|
||||
}
|
||||
|
||||
blockSize := block.BlockSize() // AES块大小为16字节
|
||||
|
||||
// 生成随机IV
|
||||
iv := make([]byte, blockSize)
|
||||
if _, err := io.ReadFull(rand.Reader, iv); err != nil {
|
||||
return "", err
|
||||
}
|
||||
|
||||
// 创建CBC加密器
|
||||
mode := cipher.NewCBCEncrypter(block, iv)
|
||||
|
||||
// PKCS7填充
|
||||
paddedText := PKCS7Padding(plainText, blockSize)
|
||||
|
||||
// 加密
|
||||
encrypted := make([]byte, len(paddedText))
|
||||
mode.CryptBlocks(encrypted, paddedText)
|
||||
|
||||
// 将IV和加密数据连接在一起,然后Base64编码
|
||||
result := append(iv, encrypted...)
|
||||
return base64.StdEncoding.EncodeToString(result), nil
|
||||
}
|
||||
|
||||
// TianyuanDecrypt 天远数据AES-128-CBC解密,返回解密后的字节数组
|
||||
// 与Node.js中的aesDecrypt函数对应
|
||||
func TianyuanDecrypt(encryptedText, keyHex string) ([]byte, error) {
|
||||
// 将16进制密钥转换为字节
|
||||
keyBuffer, err := hex.DecodeString(keyHex)
|
||||
if err != nil {
|
||||
return nil, err
|
||||
}
|
||||
|
||||
// Base64解码
|
||||
encryptedBuffer, err := base64.StdEncoding.DecodeString(encryptedText)
|
||||
if err != nil {
|
||||
return nil, err
|
||||
}
|
||||
|
||||
// 创建AES密码器
|
||||
block, err := aes.NewCipher(keyBuffer)
|
||||
if err != nil {
|
||||
return nil, err
|
||||
}
|
||||
|
||||
blockSize := block.BlockSize()
|
||||
|
||||
// 检查数据长度
|
||||
if len(encryptedBuffer) < blockSize {
|
||||
return nil, errors.New("encrypted text too short")
|
||||
}
|
||||
|
||||
// 提取IV和加密数据
|
||||
iv := encryptedBuffer[:blockSize]
|
||||
encryptedData := encryptedBuffer[blockSize:]
|
||||
|
||||
// 检查加密数据长度是否为块大小的倍数
|
||||
if len(encryptedData)%blockSize != 0 {
|
||||
return nil, errors.New("encrypted data is not a multiple of the block size")
|
||||
}
|
||||
|
||||
// 创建CBC解密器
|
||||
mode := cipher.NewCBCDecrypter(block, iv)
|
||||
|
||||
// 解密
|
||||
decrypted := make([]byte, len(encryptedData))
|
||||
mode.CryptBlocks(decrypted, encryptedData)
|
||||
|
||||
// 去除PKCS7填充
|
||||
result, err := PKCS7UnPadding(decrypted)
|
||||
if err != nil {
|
||||
return nil, err
|
||||
}
|
||||
|
||||
return result, nil
|
||||
}
|
||||
Reference in New Issue
Block a user