forked from wumansgy/goEncrypt
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathtripledescbc.go
115 lines (101 loc) · 3.25 KB
/
tripledescbc.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
package des
import (
"crypto/cipher"
"crypto/des"
"encoding/base64"
"encoding/hex"
"runtime"
log "github.com/sirupsen/logrus"
"github.com/wumansgy/goEncrypt"
)
/**
Triple des encryption and decryption
algorithm : Encryption: key one encryption -> key two decryption -> key three encryption
Decryption: key three decryption -> key two encryption -> key one decryption
*/
func TripleDesEncrypt(plainText, secretKey, ivDes []byte) (cipherText []byte, err error) {
if len(secretKey) != 24 {
return nil, goEncrypt.ErrKeyLengthTwentyFour
}
block, err := des.NewTripleDESCipher(secretKey)
if err != nil {
return nil, err
}
paddingText := goEncrypt.PKCS5Padding(plainText, block.BlockSize())
var iv []byte
if len(ivDes) != 0 {
if len(ivDes) != block.BlockSize() {
return nil, goEncrypt.ErrIvDes
} else {
iv = ivDes
}
} else {
iv = []byte(goEncrypt.Ivdes)
}
blockMode := cipher.NewCBCEncrypter(block, iv)
cipherText = make([]byte, len(paddingText))
blockMode.CryptBlocks(cipherText, paddingText)
return cipherText, nil
}
func TripleDesDecrypt(cipherText, secretKey, ivDes []byte) (plainText []byte, err error) {
if len(secretKey) != 24 {
return nil, goEncrypt.ErrKeyLengthTwentyFour
}
// 1. Specifies that the 3des decryption algorithm creates and returns a cipher.Block interface using the TDEA algorithm。
block, err := des.NewTripleDESCipher(secretKey)
if err != nil {
return nil, err
}
// 2. Delete the filling
// Before deleting, prevent the user from entering different keys twice and causing panic, so do an error handling
defer func() {
if err := recover(); err != nil {
switch err.(type) {
case runtime.Error:
log.Errorf("runtime err=%v,Check that the key or text is correct", err)
default:
log.Errorf("error=%v,check the cipherText ", err)
}
}
}()
var iv []byte
if len(ivDes) != 0 {
if len(ivDes) != block.BlockSize() {
return nil, goEncrypt.ErrIvDes
} else {
iv = ivDes
}
} else {
iv = []byte(goEncrypt.Ivdes)
}
blockMode := cipher.NewCBCDecrypter(block, iv)
paddingText := make([]byte, len(cipherText)) //
blockMode.CryptBlocks(paddingText, cipherText)
plainText, err = goEncrypt.PKCS5UnPadding(paddingText, block.BlockSize())
if err != nil {
return nil, err
}
return plainText, nil
}
func TripleDesEncryptBase64(plainText, secretKey, ivAes []byte) (cipherTextBase64 string, err error) {
encryBytes, err := TripleDesEncrypt(plainText, secretKey, ivAes)
return base64.StdEncoding.EncodeToString(encryBytes), err
}
func TripleDesEncryptHex(plainText, secretKey, ivAes []byte) (cipherTextHex string,err error) {
encryBytes, err := TripleDesEncrypt(plainText, secretKey, ivAes)
return hex.EncodeToString(encryBytes), err
}
func TripleDesDecryptByBase64(cipherTextBase64 string, secretKey, ivAes []byte) (plainText []byte,err error) {
plainTextBytes, err := base64.StdEncoding.DecodeString(cipherTextBase64)
if err != nil {
return []byte{}, err
}
return TripleDesDecrypt(plainTextBytes, secretKey, ivAes)
}
func TripleDesDecryptByHex(cipherTextHex string, secretKey, ivAes []byte) (plainText []byte, err error) {
plainTextBytes, err := hex.DecodeString(cipherTextHex)
if err != nil {
return []byte{}, err
}
return TripleDesDecrypt(plainTextBytes, secretKey, ivAes)
}