-
-
Save adamdilek/7a00e51092bf665f1fc6d133dd1e329c to your computer and use it in GitHub Desktop.
Ruby/node encryption/decryption
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| const crypto = require('crypto'); | |
| const PASSWORD = "098f6bcd4621d373cade4e832627b4f6" | |
| , MESSAGE = 'test'; | |
| function InvalidSignatureError() { | |
| Error.captureStackTrace(this, this.constructor); | |
| } | |
| function encipher(message, password, callback) { | |
| crypto.randomBytes(16, function(err, iv) { | |
| if (err) return callback(err); | |
| var cipher = crypto.createCipheriv('aes-256-cbc', password, iv) | |
| , enciphered = ''; | |
| enciphered += cipher.update(message, 'utf-8', 'binary'); | |
| enciphered += cipher.final('binary'); | |
| enciphered = new Buffer(enciphered, 'binary'); | |
| var encipheredMessage = [enciphered.toString('base64'), iv.toString('base64')].join('--'); | |
| callback(null, encipheredMessage); | |
| }); | |
| } | |
| function decipher(encipheredMessage, password, callback) { | |
| var parts = encipheredMessage.split('--', 2) | |
| , enciphered = new Buffer(parts[0], 'base64') | |
| , iv = new Buffer(parts[1], 'base64'); | |
| var decipher = crypto.createDecipheriv('aes-256-cbc', password, iv) | |
| , deciphered = ''; | |
| deciphered += decipher.update(enciphered); | |
| deciphered += decipher.final(); | |
| callback(null, deciphered); | |
| } | |
| function sign(message, password, callback) { | |
| var signer = crypto.createHmac('sha256', password); | |
| signer.update(message); | |
| var signature = signer.digest('binary'); | |
| message = new Buffer(message, 'utf-8'); | |
| signature = new Buffer(signature, 'binary'); | |
| var signedMessage = [message.toString('base64'), signature.toString('base64')].join('--'); | |
| callback(null, signedMessage); | |
| } | |
| function verify(signedMessage, password, callback) { | |
| var parts = signedMessage.split('--', 2) | |
| , encodedMessage = new Buffer(parts[0], 'base64') | |
| , signature = new Buffer(parts[0], 'base64') | |
| , message = encodedMessage.toString('utf-8'); | |
| sign(message, password, function(err, signedMessageForVerification) { | |
| if (signedMessage != signedMessageForVerification) | |
| return callback(new InvalidSignatureError()); | |
| callback(null, message); | |
| }); | |
| } | |
| console.log('MESSAGE =', MESSAGE); | |
| encipher(MESSAGE, PASSWORD, function(err, encipheredMessage) { | |
| if (err) throw err; | |
| console.log('encipheredMessage =', encipheredMessage); | |
| sign(encipheredMessage, PASSWORD, function(err, signedMessage) { | |
| if (err) throw err; | |
| console.log('signedMessage =', signedMessage); | |
| verify(signedMessage, PASSWORD, function(err, verifiedMessage) { | |
| if (err) throw err; | |
| console.log('verifiedMessage =', verifiedMessage); | |
| decipher(verifiedMessage, PASSWORD, function(err, deciphered) { | |
| if (err) throw err; | |
| console.log('deciphered =', deciphered); | |
| }); | |
| }); | |
| }); | |
| }); |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'openssl' | |
| class InvalidSignatureError < StandardError | |
| end | |
| PASSWORD = "098f6bcd4621d373cade4e832627b4f6" | |
| MESSAGE = "test" | |
| def encipher(message, password) | |
| cipher = OpenSSL::Cipher::AES256.new(:CBC) | |
| iv = cipher.random_iv | |
| cipher.encrypt | |
| cipher.key = PASSWORD | |
| cipher.iv = iv | |
| enciphered = cipher.update(MESSAGE) | |
| enciphered << cipher.final | |
| [enciphered, iv].map { |part| [part].pack('m').gsub(/\n/, '') }.join('--') | |
| end | |
| def decipher(enciphered_message, password) | |
| enciphered, iv = enciphered_message.split('--', 2).map { |part| part.unpack('m')[0] } | |
| decipher = OpenSSL::Cipher::AES256.new(:CBC) | |
| decipher.decrypt | |
| decipher.key = PASSWORD | |
| decipher.iv = iv | |
| deciphered = decipher.update(enciphered) | |
| deciphered << decipher.final | |
| end | |
| def sign(message, password) | |
| signature = OpenSSL::HMAC.digest(OpenSSL::Digest::SHA256.new, password, message) | |
| [message, signature].map { |part| [part].pack('m').gsub(/\n/, '') }.join('--') | |
| end | |
| def verify(signed_message, password) | |
| encoded_message, signature = signed_message.split('--', 2) | |
| message = encoded_message.unpack('m')[0] | |
| if sign(message, password) != signed_message | |
| raise InvalidSignatureError | |
| end | |
| message | |
| end | |
| puts "MESSAGE = #{MESSAGE}" | |
| enciphered_message = encipher(MESSAGE, PASSWORD) | |
| puts "enciphered_message = #{enciphered_message}" | |
| signed_message = sign(enciphered_message, PASSWORD) | |
| puts "signed_message = #{signed_message}" | |
| verified_message = verify(signed_message, PASSWORD) | |
| puts "verified_message = #{verified_message}" | |
| deciphered = decipher(verified_message, PASSWORD) | |
| puts "deciphered = #{deciphered}" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment