android AES/CTR/NoPadding 中的解密、密码问题

我相信您正在寻找对 ctr 加密数据的随机访问；CipherInputStream 中的 Skip 方法只是不这样做，并且是“独立于 Android 版本”（仍在使用；自 api 级别1以来未弃用或替换！）；查看 CipherInputStream 类文件；它有一些内部属性：private Cipher cipher;//the cipher you pass to constructor;// the underlying input streamprivate InputStream input;/* the buffer holding data that have been read in from the underlying stream, but have not been processed by the cipher engine. the size 512 bytes is somewhat randomly chosen */private byte[] ibuffer = new byte[512];//holds encrypted data// having reached the end of the underlying input streamprivate boolean done = false;/* the buffer holding data that have been processed by the cipher engine, but have not been read out */private byte[] obuffer;//a portion of data that's decrypted but not yet read;// the offset pointing to the next "new" byteprivate int ostart = 0;// the offset pointing to the last "new" byteprivate int ofinish = 0;这就是 skip 在 CipherInputStream 中所做的；public long skip(long n) throws IOException { int available = ofinish - ostart; if (n > available) { n = available; } if (n < 0) { return 0; } ostart += n; return n;}它不会加载新数据到 obuffer 或 ibuffer；它只跳过 obuffer 中可用的内容（只是增加 ostart）；应该这样做（有改进的余地）：private static IvParameterSpec calculateIVForOffset(final IvParameterSpec iv, final long blockOffset) { final BigInteger ivBI = new BigInteger(1, iv.getIV()); final BigInteger ivForOffsetBI = ivBI.add(BigInteger.valueOf(blockOffset / AES_BLOCK_SIZE)); final byte[] ivForOffsetBA = ivForOffsetBI.toByteArray(); final IvParameterSpec ivForOffset; if (ivForOffsetBA.length >= AES_BLOCK_SIZE) { ivForOffset = new IvParameterSpec(ivForOffsetBA, ivForOffsetBA.length - AES_BLOCK_SIZE, AES_BLOCK_SIZE); } else { final byte[] ivForOffsetBASized = new byte[AES_BLOCK_SIZE]; System.arraycopy(ivForOffsetBA, 0, ivForOffsetBASized, AES_BLOCK_SIZE - ivForOffsetBA.length, ivForOffsetBA.length); ivForOffset = new IvParameterSpec(ivForOffsetBASized); } return ivForOffset;}long offset = 113845229;// aka aprivate void decrypt(Cipher cipher, Uri uri) throws Exception { long skip_this_much=offset-(offset%16); InputStream inputStream = getContentResolver().openInputStream(uri); do{ skip_this_much=skip_this_much-inputStream.skip(skip_this_much);//InputStream.skip does not necessarily skip as much as specified in parameter and returns the actually skipped value; }while(skip_this_much!=0);//not there yet; keep skipping; CipherInputStream cipherInputStream = new CipherInputStream(inputStream, cipher); int read_this_much=8; byte[] buffer=new byte[read_this_much+(offset%16)]; cipherInputStream.read(buffer,0,read_this_much+(offset%16));//improve this yourself buffer= Arrays.copyOfRange(buffer,offset%16,read_this_much+(offset%16));}// create cipher for offsetprivate Cipher createCipher(byte[] iv, byte[] salt, String password) throws Exception { IvParameterSpec mIvParameterSpec = new IvParameterSpec(iv); SecretKeySpec mSecretKeySpec = generate(password, salt); Cipher mCipher = Cipher.getInstance("AES/CTR/NoPadding"); mCipher.init(Cipher.DECRYPT_MODE, mSecretKeySpec, calculateIVForOffset(mIvParameterSpec,offset)); return mCipher;}// generate keyprivate SecretKeySpec generate(String password, byte[] salt) throws Exception { MessageDigest md = MessageDigest.getInstance("SHA-256"); md.update(salt); byte[] key = md.digest(password.getBytes(StandardCharsets.UTF_8)); return new SecretKeySpec(key, "AES");}

android AES/CTR/NoPadding 中的解密、密码问题

2回答