问题
项目中用到对称加密,在windows环境下开发完成,测试一切正常部署到linux服务器上以后出现同一字符串两次加密结果不一致的问题。
解决
掉在坑里浪费了大量时间,网上查了不少资料终于爬出来了。。。
原因是加密工具类中获得key的方法在linux和windows下处理方式是不同的,具体细节懒得深究了。
代码
原来的问题代码:
generator.init(new SecureRandom(key.getBytes()));
修改后代码:
SecureRandom secureRandom = SecureRandom.getInstance("SHA1PRNG");
secureRandom.setSeed(key.getBytes("UTF-8"));
generator.init(secureRandom);
完整代码:
package com.hlkj.modules.utils;
import java.security.Key;
import java.security.SecureRandom;
import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import org.apache.commons.codec.DecoderException;
import org.apache.commons.codec.binary.Base32;
import org.apache.commons.codec.binary.Base64;
import org.apache.commons.codec.binary.Hex;
public class CryptoUtil {
public static Key DEFAULT_KEY = null;
public static final String DEFAULT_SECRET_KEY1 = "?:P)(OL><KI*&UJMNHY^%TGBVFsdsdfsdf!QAZ";
public static final String DEFAULT_SECRET_KEY2 = "1qaz2wsx3edc4rfvasdfdsfastgweqw9ol.0p;/";
public static final String DEFAULT_SECRET_KEY3 = "!QAZ@WSX#EsdfasdfscGB^YHN&UJM*IK<(OL>)P:?";
public static final String DEFAULT_SECRET_KEY4 = "1qaz@WSX3edc$RFV5tgb^YHN7ujm*IK<9ol.)P:?";
public static final String DEFAULT_SECRET_KEY5 = "!QAZ2wsx#Egsdd78866gyhasdaJM8ik,(OL>0p;/";
public static final String DEFAULT_SECRET_KEY6 = "1qaz2wsx3edfas56sdgaf34^YHN&UJM*IK<(OL>)P:?";
public static final String DEFAULT_SECRET_KEY7 = "1hlk2sdf3ewg4hgh5sfgewqqH&NTR*NG<(BT>)H:`";
public static final String DEFAULT_SECRET_KEY8 = "9hlk3sdf5esfwerfagh6tku^MDF&HTU*NG<(DE>)H:`";
public static final String DEFAULT_SECRET_KEY = DEFAULT_SECRET_KEY1;
public static final String DES = "DES";
public static final Base32 base32 = new Base32();
static {
DEFAULT_KEY = obtainKey(DEFAULT_SECRET_KEY);
}
/**
* 获得key
**/
public static Key obtainKey(String key) {
if (key == null) {
return DEFAULT_KEY;
}
KeyGenerator generator = null;
try {
generator = KeyGenerator.getInstance(DES);
//防止linux下 随机生成key
SecureRandom secureRandom = SecureRandom.getInstance("SHA1PRNG");
secureRandom.setSeed(key.getBytes("UTF-8"));
generator.init(secureRandom);
} catch (Exception e) {
e.printStackTrace();
}
Key key1 = generator.generateKey();
generator = null;
return key1;
}
/**
* 加密<br>
* String明文输入,String密文输出
*/
public static String encode(String str) {
return encode64(null, str);
}
/**
* 加密<br>
* String明文输入,String密文输出
*/
public static String encode64(String key, String str) {
return Base64.encodeBase64URLSafeString(obtainEncode(key, str.getBytes()));
}
/**
* 加密<br>
* String明文输入,String密文输出
*/
public static String encode32(String key, String str) {
return base32.encodeAsString(obtainEncode(key, str.getBytes())).replaceAll("=", "");
}
/**
* 加密<br>
* String明文输入,String密文输出
*/
public static String encode16(String key, String str) {
return Hex.encodeHexString(obtainEncode(key, str.getBytes()));
}
/**
* 解密<br>
* 以String密文输入,String明文输出
*/
public static String decode(String str) {
return decode64(null, str);
}
/**
* 解密<br>
* 以String密文输入,String明文输出
*/
public static String decode64(String key, String str) {
return new String(obtainDecode(key, Base64.decodeBase64(str)));
}
/**
* 解密<br>
* 以String密文输入,String明文输出
*/
public static String decode32(String key, String str) {
return new String(obtainDecode(key, base32.decode(str)));
}
/**
* 解密<br>
* 以String密文输入,String明文输出
*/
public static String decode16(String key, String str) {
try {
return new String(obtainDecode(key, Hex.decodeHex(str.toCharArray())));
} catch (DecoderException e) {
e.printStackTrace();
}
return null;
}
/**
* 加密<br>
* 以byte[]明文输入,byte[]密文输出
*/
private static byte[] obtainEncode(String key, byte[] str) {
byte[] byteFina = null;
Cipher cipher;
try {
Key key1 = obtainKey(key);
cipher = Cipher.getInstance(DES);
cipher.init(Cipher.ENCRYPT_MODE, key1);
byteFina = cipher.doFinal(str);
} catch (Exception e) {
e.printStackTrace();
} finally {
cipher = null;
}
return byteFina;
}
/**
* 解密<br>
* 以byte[]密文输入,以byte[]明文输出
*/
private static byte[] obtainDecode(String key, byte[] str) {
Cipher cipher;
byte[] byteFina = null;
try {
Key key1 = obtainKey(key);
cipher = Cipher.getInstance(DES);
cipher.init(Cipher.DECRYPT_MODE, key1);
byteFina = cipher.doFinal(str);
} catch (Exception e) {
e.printStackTrace();
} finally {
cipher = null;
}
return byteFina;
}
/**
* 加密
* @param val
* @return
*/
public static String encrypt(String val){
String m = encode64(DEFAULT_SECRET_KEY7, val);
String m1 = encode32(DEFAULT_SECRET_KEY8, m);
return m1;
}
/**
* 解密
* @param val
* @return
*/
public static String decrypt(String val){
String n = decode32(DEFAULT_SECRET_KEY8, val);
String n1 = decode64(DEFAULT_SECRET_KEY7, n);
return n1;
}
public static void main(String[] args) {
//加密
String m = encrypt("123456");
System.out.println("加密结果:"+m);
//解密
String n = decrypt(m);
System.out.println("解密结果:"+n);
}
}