java 密钥 aes 解密,Java AES解密检测不正确的密钥

I am writing android app that makes AES encryption/decryption of files. I want to be able to detect if incorrect password is specified and thus not matching key is derived for decryption.

I am using AES/CBC/PKCS7Padding with 256 bit key.

If I do cipher.doFinal() I can try/catch the BadPaddingException and it tells me that something is wrong and probably key was incorrect. But if I use CipherInputStream to read encrypted file, I get no feedback on correctness of padding. So if I deliberately specify incorrect password it decrypts file, then reports that everything is ok, however decrypted file is a total junk.

So my question is how to detect bad padding when using CipherInputStream?

解决方案

Here is modified version of getMoreData() method in CipherInputStream, it maybe useful for someone who faced my problem:

private int getMoreData() throws IOException {

if (done) return -1;

int readin = input.read(ibuffer);

if (readin == -1) {

done = true;

try {

obuffer = cipher.doFinal();

}

catch (IllegalBlockSizeException e) {

throw new IOException(e);

}

catch (BadPaddingException e) {

throw new IOException(e);

}

if (obuffer == null)

return -1;

else {

ostart = 0;

ofinish = obuffer.length;

return ofinish;

}

}

try {

obuffer = cipher.update(ibuffer, 0, readin);

} catch (IllegalStateException e) {obuffer = null;};

ostart = 0;

if (obuffer == null)

ofinish = 0;

else ofinish = obuffer.length;

return ofinish;

}