Patrick
/
wechat_hitxy
Observar 1
Favorito 0
Fork 0
Código Issues 0 Pull requests 0 Versões 0 Wiki Atividade
Você não pode selecionar mais de 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
13 Commits
1 Branch
9.4MB
Tag: 371c2e1927
Branches Tags
${ item.name }
Criar branch ${ searchTerm }
de 371c2e1927
${ noResults }
wechat_hitxy/messageEncrypt.go

152 linhas
4.3KB
Original Anotar Histórico 

  1. package main

  2. 

  3. import (

  4. 	"crypto/aes"

  5. 	"crypto/cipher"

  6. 	"encoding/base64"

  7. 	"fmt"

  8. )

  9. 

  10. const txt = "P2DoRtilYwJ1aM+VW1sGs6p11Rhcd/TrFYtvsw53SUVw2Knh27hF5IZUBxRXbz+k87zy983ec5aOwgS+WxYoejmGubaqiYy2yfCBNyGRlWfe+iWc2TnvPIEAJebSWuNOJ7FoITeMndr4tW391XxDdMom8I/VsqKnsZZAangUsxmA1ZEnP/d4Lx8/xt3qJKrJMa4Q8s9VsOOvzLIGhL1IN5bHaXN+CwgBTAUCrHD8AneiX5MLSv/74qozg+jKBSUebZrjRYuTymQ3TBh3pQXyRBQTZNrCAe1tlcNli9e5MSUMsHFIzGw/kiu93/5VkxCYRLgRDQKl9oam4+Rpxywir7EiT7I4X343l9ogcMLWX16evkLlQHoqBhLl6ZcfW7Nmq8/Ghy8jbuwqkR/0jLJ/avtjzgJOwaxdBUz4nYZ452rLJekxIvsmV6PZgCXRrKHzmpZX+i6hIRIWiIaDeMOEsw=="

  11. 

  12. //Decode  Decode encrypt string to xml context

  13. func Decode(s string) string {

  14. 

  15. 	r, _ := base64.StdEncoding.DecodeString(txt)

  16. 

  17. 	key, _ := base64.StdEncoding.DecodeString(APIConfig.EncodingAESKey + "=")

  18. 	var k [32]byte

  19. 	copy(k[:], key)

  20. 	random, raw, err := AESDecryptMsg([]byte(r), APIConfig.Appid, k)

  21. 

  22. 	fmt.Println(len(txt))

  23. 	fmt.Println(random)

  24. 	fmt.Println(string(raw))

  25. 

  26. 	bc, err := aes.NewCipher([]byte(key))

  27. 	if err == nil {

  28. 		fmt.Printf("The block size is %d\n", bc.BlockSize())

  29. 		var decoded = make([]byte, 4096)

  30. 		bc.Decrypt(decoded, r)

  31. 		//AES Decode

  32. 	}

  33. 	fmt.Printf("%s", string(r))

  34. 	return string(r)

  35. }

  36. 

  37. // 把整数 n 格式化成 4 字节的网络字节序

  38. func encodeNetworkBytesOrder(orderBytes []byte, n int) {

  39. 	if len(orderBytes) != 4 {

  40. 		panic("the length of orderBytes must be equal to 4")

  41. 	}

  42. 	orderBytes[0] = byte(n >> 24)

  43. 	orderBytes[1] = byte(n >> 16)

  44. 	orderBytes[2] = byte(n >> 8)

  45. 	orderBytes[3] = byte(n)

  46. }

  47. 

  48. // 从 4 字节的网络字节序里解析出整数

  49. func decodeNetworkBytesOrder(orderBytes []byte) (n int) {

  50. 	if len(orderBytes) != 4 {

  51. 		panic("the length of orderBytes must be equal to 4")

  52. 	}

  53. 	n = int(orderBytes[0])<<24 |

  54. 		int(orderBytes[1])<<16 |

  55. 		int(orderBytes[2])<<8 |

  56. 		int(orderBytes[3])

  57. 	return

  58. }

  59. 

  60. //AESEncryptMsg encryptedMsg = AES_Encrypt[random(16B) + msg_len(4B) + rawXMLMsg + AppId]

  61. func AESEncryptMsg(random, rawXMLMsg []byte, AppId string, AESKey [32]byte) (encryptedMsg []byte) {

  62. 	const BLOCK_SIZE = 32 // PKCS#7

  63. 

  64. 	buf := make([]byte, 20+len(rawXMLMsg)+len(AppId)+BLOCK_SIZE)

  65. 	plain := buf[:20]

  66. 	pad := buf[len(buf)-BLOCK_SIZE:]

  67. 

  68. 	// 拼接

  69. 	copy(plain, random)

  70. 	encodeNetworkBytesOrder(plain[16:20], len(rawXMLMsg))

  71. 	plain = append(plain, rawXMLMsg...)

  72. 	plain = append(plain, AppId...)

  73. 

  74. 	// PKCS#7 补位

  75. 	amountToPad := BLOCK_SIZE - len(plain)%BLOCK_SIZE

  76. 	for i := 0; i < amountToPad; i++ {

  77. 		pad[i] = byte(amountToPad)

  78. 	}

  79. 	plain = buf[:len(plain)+amountToPad]

  80. 

  81. 	// 加密

  82. 	block, err := aes.NewCipher(AESKey[:])

  83. 	if err != nil {

  84. 		panic(err)

  85. 	}

  86. 	mode := cipher.NewCBCEncrypter(block, AESKey[:16])

  87. 	mode.CryptBlocks(plain, plain)

  88. 

  89. 	encryptedMsg = plain

  90. 	return

  91. }

  92. 

  93. // encryptedMsg = AES_Encrypt[random(16B) + msg_len(4B) + rawXMLMsg + AppId]

  94. func AESDecryptMsg(encryptedMsg []byte, AppId string, AESKey [32]byte) (random, rawXMLMsg []byte, err error) {

  95. 	const BLOCK_SIZE = 32 // PKCS#7

  96. 

  97. 	if len(encryptedMsg) < BLOCK_SIZE {

  98. 		err = fmt.Errorf("the length of encryptedMsg too short: %d", len(encryptedMsg))

  99. 		return

  100. 	}

  101. 	if len(encryptedMsg)%BLOCK_SIZE != 0 {

  102. 		err = fmt.Errorf("encryptedMsg is not a multiple of the block size, the length is %d", len(encryptedMsg))

  103. 		return

  104. 	}

  105. 

  106. 	plain := make([]byte, len(encryptedMsg)) // len(plain) >= BLOCK_SIZE

  107. 

  108. 	// 解密

  109. 	block, err := aes.NewCipher(AESKey[:])

  110. 	if err != nil {

  111. 		panic(err)

  112. 	}

  113. 	mode := cipher.NewCBCDecrypter(block, AESKey[:16])

  114. 	mode.CryptBlocks(plain, encryptedMsg)

  115. 

  116. 	// PKCS#7 去除补位

  117. 	amountToPad := int(plain[len(plain)-1])

  118. 	if amountToPad < 1 || amountToPad > BLOCK_SIZE {

  119. 		err = fmt.Errorf("the amount to pad is invalid: %d", amountToPad)

  120. 		return

  121. 	}

  122. 	plain = plain[:len(plain)-amountToPad]

  123. 

  124. 	// 反拼装

  125. 	// len(plain) == 16+4+len(rawXMLMsg)+len(AppId)

  126. 	// len(AppId) > 0

  127. 	if len(plain) <= 20 {

  128. 		err = fmt.Errorf("plain msg too short, the length is %d", len(plain))

  129. 		return

  130. 	}

  131. 	msgLen := decodeNetworkBytesOrder(plain[16:20])

  132. 	if msgLen < 0 {

  133. 		err = fmt.Errorf("invalid msg length: %d", msgLen)

  134. 		return

  135. 	}

  136. 	msgEnd := 20 + msgLen

  137. 	if len(plain) <= msgEnd {

  138. 		err = fmt.Errorf("msg length too large: %d", msgLen)

  139. 		return

  140. 	}

  141. 

  142. 	AppIdHave := string(plain[msgEnd:])

  143. 	if AppIdHave != AppId { // crypto/subtle.ConstantTimeCompare ???

  144. 		err = fmt.Errorf("AppId mismatch, have: %s, want: %s", AppIdHave, AppId)

  145. 		return

  146. 	}

  147. 

  148. 	random = plain[:16:16]

  149. 	rawXMLMsg = plain[20:msgEnd]

  150. 	return

  151. }