登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
开源项目 > 微信开发 > 微信开发包 &&
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
3 Star 6 Fork 1

Walle / ewa

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
克隆/下载
encryptor.go 4.33 KB
一键复制 编辑 原始数据 按行查看 历史
JackHunx 提交于 2021-04-26 12:01 . #增加小程序签名校验与解密
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164
package encryptor



import (

	"bytes"

	"crypto/aes"

	"crypto/cipher"

	"errors"

	"sort"

	"strings"



	"github.com/gogf/gf/crypto/gaes"

	"github.com/gogf/gf/crypto/gsha1"

	"github.com/gogf/gf/encoding/gbase64"

	"github.com/gogf/gf/encoding/gbinary"

	"github.com/gogf/gf/text/gstr"

	"github.com/gogf/gf/util/gconv"

	"github.com/gogf/gf/util/grand"

)



//Encryptor encrypotr struct

type Encryptor struct {

	AppID     string

	Token     string

	AesKey    string

	BlockSize int

}



const (

	ERROR_INVALID_SIGNATURE = -40001 // Signature verification failed

	ERROR_PARSE_XML         = -40002 // Parse XML failed

	ERROR_CALC_SIGNATURE    = -40003 // Calculating the signature failed

	ERROR_INVALID_AES_KEY   = -40004 // Invalid AESKey

	ERROR_INVALID_APP_ID    = -40005 // Check AppID failed

	ERROR_ENCRYPT_AES       = -40006 // AES EncryptionInterface failed

	ERROR_DECRYPT_AES       = -40007 // AES Decryption failed

	ERROR_INVALID_XML       = -40008 // Invaild XML

	EROOR_BASE64_ENCODE     = -40009 // Base64 encoding failed

	ERROR_BASE64_DECODE     = -40010 // Base64 decoding failed

	ERROR_XML_BULID         = -40011 // XML build failed

	ILLEGAL_BUFFER          = -41003 // Illegal buffer



)



//Config config

type Config struct {

	AppID          string `json:"app_id"` //appid

	Token          string `json:"token"`  //token

	EncodingAESKey string `json:"encoding_aes_key"`

	BlockSize      int

}



//New return new point

func New(config Config) *Encryptor {

	aesKey := ""

	if config.EncodingAESKey != "" {

		key, err := gbase64.DecodeToString(config.EncodingAESKey + "=")

		if err != nil {

			panic(err)

		}

		aesKey = key

	}

	if config.BlockSize == 0 {

		config.BlockSize = 32

	}

	return &Encryptor{

		AppID:     config.AppID,

		Token:     config.Token,

		AesKey:    aesKey,

		BlockSize: config.BlockSize,

	}



}



//Encrypt encrypt message.

func (e *Encryptor) Encrypt(rawXML []byte, nonce string, timestamp int) ([]byte, error) {

	text := bytes.Join([][]byte{grand.B(16), gbinary.BeEncodeUint32(gconv.Uint32(len(rawXML))), rawXML, gconv.Bytes(e.AppID)}, []byte(""))

	xml := PKCS7Pad(text, e.BlockSize)

	encrypted, err := gaes.Encrypt(xml, gconv.Bytes(e.AesKey), gconv.Bytes(gstr.SubStr(e.AesKey, 0, 16)))

	if err != nil {

		return nil, err

	}

	return gbase64.Encode(encrypted), nil

}



//Decrypt decrypt message

func (e *Encryptor) Decrypt(content []byte) ([]byte, error) {

	cipherText, err := gbase64.Decode(content)

	if err != nil {

		return nil, NewError(ERROR_BASE64_DECODE, err.Error())

	}

	iv := gconv.Bytes(gstr.SubStr(e.AesKey, 0, 16))



	if len(cipherText)%e.BlockSize != 0 {

		return nil, NewError(ERROR_DECRYPT_AES, "content is not a multiple of the block size")

	}

	block, err := aes.NewCipher(gconv.Bytes(e.AesKey))

	if err != nil {

		return nil, NewError(ERROR_DECRYPT_AES, err.Error())

	}

	blockMode := cipher.NewCBCDecrypter(block, iv)

	plainText := make([]byte, len(cipherText))

	blockMode.CryptBlocks(plainText, cipherText)

	plainText, err = PKCS7Unpad(plainText, e.BlockSize)



	if err != nil {

		return nil, err

	}

	contents := plainText[16:]



	//网络字节序

	msgLen := gbinary.BeDecodeToUint32(contents[:4])

	if gconv.String(contents[msgLen+4:]) != e.AppID {

		return nil, NewError(ERROR_INVALID_APP_ID, "Invalid appId.")

	}

	return contents[4 : msgLen+4], nil

}



//GetToken is this necessary?

func (e *Encryptor) GetToken() string {

	return e.Token

}



//Decrypt

func Decrypt(cipherText []byte, key []byte, iv []byte) ([]byte, error) {

	block, err := aes.NewCipher(key)

	if err != nil {

		return nil, NewError(ERROR_DECRYPT_AES, err.Error())

	}

	blockMode := cipher.NewCBCDecrypter(block, iv)

	plainText := make([]byte, len(cipherText))

	blockMode.CryptBlocks(plainText, cipherText)

	return plainText, nil

}



//Signature

func Signature(s []string) string {

	sort.Strings(s)

	return gsha1.Encrypt(strings.Join(s, ""))

}



//PKCS7Pad pad.

func PKCS7Pad(src []byte, blockSize int) []byte {

	padding := blockSize - len(src)%blockSize

	padtext := bytes.Repeat([]byte{byte(padding)}, padding)

	return append(src, padtext...)

}



//PKCS7Unpad unpad.

func PKCS7Unpad(src []byte, blockSize int) ([]byte, error) {

	length := len(src)



	unpadding := int(src[length-1])



	if unpadding < 1 || unpadding > blockSize {

		unpadding = 0

	}

	padding := src[length-unpadding:]

	for i := 0; i < unpadding; i++ {

		if padding[i] != byte(unpadding) {

			return nil, errors.New("invalid padding")

		}

	}

	return src[:(length - unpadding)], nil

}
Go
1
https://gitee.com/wallesoft/ewa.git
git@gitee.com:wallesoft/ewa.git
wallesoft
ewa
ewa
15a7b9f14a04
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部