是 Java 的问题，还是 PHP 的问题？又或者是我的问题？都搞半天了

This topic created in 1040 days ago, the information mentioned may be changed or developed.

j4pQhWlzoubeaF+/wEI6kA==用 Java 解密后得到ok两个字符，PHP 却做不到。Java 代码如下

import javax.crypto.Cipher;
import javax.crypto.KeyGenerator;
import javax.crypto.spec.SecretKeySpec;

import java.nio.charset.Charset;
import java.security.SecureRandom;
import java.util.Base64;

public class Main {
    public static void main(String[] args) throws Exception {
        String password = "password";
        byte[] secret = Base64.getDecoder().decode(
                "j4pQhWlzoubeaF+/wEI6kA==");

        Cipher cipher = Cipher.getInstance("AES/ECB/PKCS5Padding");
        KeyGenerator kg = KeyGenerator.getInstance("AES");
        SecureRandom random = SecureRandom.getInstance("SHA1PRNG");
        random.setSeed(password.getBytes());
        kg.init(128, random);
        cipher.init(Cipher.DECRYPT_MODE, new SecretKeySpec(kg.generateKey().getEncoded(), "AES"));
        byte[] result = cipher.doFinal(secret);
        System.out.print(new String(result, Charset.forName("UTF-8")));
    }
}

4 replies • 2023-07-15 05:54:08 +08:00

richangfan

Jul 14, 2023

用下面的 PHP 代码只能得到 false
```
var_export(openssl_decrypt(base64_decode('j4pQhWlzoubeaF+/wEI6kA=='), 'aes-128-ecb', 'password', OPENSSL_RAW_DATA));
```

dedemao

Jul 14, 2023

```
$sKey = substr(openssl_digest(openssl_digest('password', 'sha1', true), 'sha1', true), 0, 16);
echo openssl_decrypt(base64_decode('j4pQhWlzoubeaF+/wEI6kA=='), 'AES-128-ECB', $sKey, OPENSSL_RAW_DATA);
```

richangfan

Jul 14, 2023

@dedemao
可以啊，厉害厉害

jhdxr

Jul 15, 2023

@richangfan 你之前的 php 实现忽略了 SecureRandom.getInstance("SHA1PRNG"); 这一段