| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 |
- package util
- import (
- "crypto/aes"
- "crypto/cipher"
- "crypto/rand"
- "crypto/sha256"
- "errors"
- "io"
- )
- const saltLength = 8
- func Decrypt(payload []byte, secret string) ([]byte, error) {
- salt := payload[:saltLength]
- key := encryptionKeyToBytes(secret, string(salt))
- block, err := aes.NewCipher(key)
- if err != nil {
- return nil, err
- }
- // The IV needs to be unique, but not secure. Therefore it's common to
- // include it at the beginning of the ciphertext.
- if len(payload) < aes.BlockSize {
- return nil, errors.New("payload too short")
- }
- iv := payload[saltLength : saltLength+aes.BlockSize]
- payload = payload[saltLength+aes.BlockSize:]
- stream := cipher.NewCFBDecrypter(block, iv)
- // XORKeyStream can work in-place if the two arguments are the same.
- stream.XORKeyStream(payload, payload)
- return payload, nil
- }
- func Encrypt(payload []byte, secret string) ([]byte, error) {
- salt := GetRandomString(saltLength)
- key := encryptionKeyToBytes(secret, salt)
- block, err := aes.NewCipher(key)
- if err != nil {
- return nil, err
- }
- // The IV needs to be unique, but not secure. Therefore it's common to
- // include it at the beginning of the ciphertext.
- ciphertext := make([]byte, saltLength+aes.BlockSize+len(payload))
- copy(ciphertext[:saltLength], []byte(salt))
- iv := ciphertext[saltLength : saltLength+aes.BlockSize]
- if _, err := io.ReadFull(rand.Reader, iv); err != nil {
- return nil, err
- }
- stream := cipher.NewCFBEncrypter(block, iv)
- stream.XORKeyStream(ciphertext[saltLength+aes.BlockSize:], payload)
- return ciphertext, nil
- }
- // Key needs to be 32bytes
- func encryptionKeyToBytes(secret, salt string) []byte {
- return PBKDF2([]byte(secret), []byte(salt), 10000, 32, sha256.New)
- }
|
