为什么我的 Java 套接字接收到的数组大小大于发送的数组大小?
Why is my Java socket receiving an array size larger than what was sent?
我正在创建一个 client/server 程序来使用 256 位 AES 执行加密。我从 ECDH 派生我的密钥。我发送了我用来表示各种键和字符串的字节数组的大小。我遇到的问题是,当我尝试将加密字符串的大小时从我的客户端发送到我的服务器时,我的服务器说我发送的大小比我实际发送的大得多。发送大小适用于所有其他需要发送的字节数组。客户端发送的加密字符串大小为16字节。服务器接收到一个大小为 276032497 字节的整数。我已经检查过我实际上是从客户端发送了 16 个字节。
知道问题出在哪里吗?
服务器代码:
//generate public key for server
KeyPairGenerator kpg = KeyPairGenerator.getInstance("EC");
kpg.initialize(256);
KeyPair kp = kpg.generateKeyPair();
byte[] ourPk = kp.getPublic().getEncoded();
String format = kp.getPublic().getFormat();
int ourPkLength = ourPk.length;
int arrSize;
//send client our pk
out.writeInt(ourPkLength);
out.write(ourPk);
System.out.println("sent PK!");
//receive pk from client
arrSize = fromClient.readInt();
byte[] otherPk = new byte[arrSize];
fromClient.read(otherPk);
System.out.println("recived client PK!");
KeyFactory kf = KeyFactory.getInstance("EC");
X509EncodedKeySpec pkSpec = new X509EncodedKeySpec(otherPk);
PublicKey otherPublicKey = kf.generatePublic(pkSpec);
//Perform key agreement
KeyAgreement ka = KeyAgreement.getInstance("ECDH");
ka.init(kp.getPrivate());
ka.doPhase(otherPublicKey, true);
// Send shared secret
byte[] sharedSecret = ka.generateSecret();
// Derive a key from the shared secret and both public keys
MessageDigest hash = MessageDigest.getInstance("SHA-256");
hash.update(sharedSecret);
// Simple deterministic ordering
List<ByteBuffer> keys = Arrays.asList(ByteBuffer.wrap(ourPk), ByteBuffer.wrap(otherPk));
Collections.sort(keys);
hash.update(keys.get(0));
hash.update(keys.get(1));
byte[] derivedKey = hash.digest();
System.out.println("derived key: " + derivedKey + " length: " + derivedKey.length);
//Convert byte [] to secret key
//Define cipher
SecretKeySpec symmetricKey = new SecretKeySpec(derivedKey, 0, 32, "AES");
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.DECRYPT_MODE, symmetricKey, new IvParameterSpec(new byte[16]));
//receive encrypted message from client and try to decrypt.
arrSize = fromClient.readInt();
System.out.println("array size sent: " + arrSize);
byte[] decryptArr = new byte[arrSize];
fromClient.read(decryptArr);
System.out.println("Recieved encrypted string: " + decryptArr + " length: " + decryptArr.length);
String decryptStr = Base64.getEncoder().encodeToString(cipher.doFinal(decryptArr));
System.out.println("Decrypted String: " + decryptStr);
客户代码:
//generate public key for client
KeyPairGenerator kpg = KeyPairGenerator.getInstance("EC");
kpg.initialize(256);
KeyPair kp = kpg.generateKeyPair();
byte[] ourPk = kp.getPublic().getEncoded();
//String format = kp.getPublic().getFormat();
int ourPkLength = ourPk.length;
int arrSize;
//Receive generated public key from the Server
arrSize = fromServ.readInt();
byte[] otherPk = new byte[arrSize];
fromServ.read(otherPk);
System.out.println("recived server PK!");
//Send the server our public key
out.writeInt(ourPkLength);
out.write(ourPk);
System.out.println("sent PK!");
KeyFactory kf = KeyFactory.getInstance("EC");
X509EncodedKeySpec pkSpec = new X509EncodedKeySpec(otherPk);
PublicKey otherPublicKey = kf.generatePublic(pkSpec);
//Perform key agreement
KeyAgreement ka = KeyAgreement.getInstance("ECDH");
ka.init(kp.getPrivate());
ka.doPhase(otherPublicKey, true);
// Generate a shared secret
byte[] sharedSecret = ka.generateSecret();
// Derive a key from the shared secret and both public keys
MessageDigest hash = MessageDigest.getInstance("SHA-256");
hash.update(sharedSecret);
// Simple deterministic ordering
List<ByteBuffer> keys = Arrays.asList(ByteBuffer.wrap(ourPk), ByteBuffer.wrap(otherPk));
Collections.sort(keys);
hash.update(keys.get(0));
hash.update(keys.get(1));
byte[] derivedKey = hash.digest();
System.out.println("derived key: " + derivedKey + " length: " + derivedKey.length);
//Convert the derivedkey from a byte array to a Secret key Spec of type AES
SecretKeySpec secretKey = new SecretKeySpec(derivedKey, 0, 32, "AES");
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.ENCRYPT_MODE, secretKey, new IvParameterSpec(new byte[16]));
String plainText = "Testing!";
byte[] cipherText = cipher.doFinal(plainText.getBytes());
System.out.println("Encrypted str: " + cipherText + " length: "+ cipherText.length);
//Send encrypted string to Server
int len = cipherText.length;
System.out.println("length: " + len);
out.write(len);
out.write(cipherText);
System.out.println("Sent encrypted string!");
在您的客户端中,您写道:out.write(len)
。您的代码片段没有解释 out
是什么,但我猜测 .write(someIntValue)
是来自 java.io.OutputStream
的传递,它具有该方法(.write(int)
)。问题是,这会写入 一个单字节 ,去掉 int 中除底部 8 之外的所有位。
您服务器代码中的匹配调用是:
arrSize = fromClient.readInt();
这是 不是 InputStream
的调用(我猜你有一些 class 扩展了 InputStream 并添加了这些),大概是, readInt
所做的是读取 4 字节,并通过假定大端顺序将它们重组为单个 java int
。
因此,您从客户端发送 1 个字节,然后发送字符串,但服务器将读取 4 个字节的长度:这 1 个字节(客户端发送的实际长度)加上字符串的前 3 个,并试图将其解释为长度,导致 疯狂地 不同的数字。
事实上 276032497 是一个数字,如果通过大端顺序放入字节,则以值为 16 的字节开头,这正是您发送的长度,这强烈暗示这是您的问题。
这个修复看起来很微不足道;将 out.write(len)
变成 out.writeInt(len)
。如果你打算像这样执行字节级协议,你需要一个比¯\_(ツ)_/¯ 更好的测试和调试计划我想我会问 Whosebug。这可能就是为什么大多数人使用不同的解决方案来手动处理原始字节协议的原因(因此,调查 ProtoBuf 和朋友)。至少,让实际的管道成为一个可插入的概念,这样你就可以插入一个不加密任何东西的虚拟管道,这样你就可以观察通过网络传输的字节来发现这样的问题;这不太可能是您最后一次使服务器和客户端代码不匹配。
我正在创建一个 client/server 程序来使用 256 位 AES 执行加密。我从 ECDH 派生我的密钥。我发送了我用来表示各种键和字符串的字节数组的大小。我遇到的问题是,当我尝试将加密字符串的大小时从我的客户端发送到我的服务器时,我的服务器说我发送的大小比我实际发送的大得多。发送大小适用于所有其他需要发送的字节数组。客户端发送的加密字符串大小为16字节。服务器接收到一个大小为 276032497 字节的整数。我已经检查过我实际上是从客户端发送了 16 个字节。
知道问题出在哪里吗?
服务器代码:
//generate public key for server
KeyPairGenerator kpg = KeyPairGenerator.getInstance("EC");
kpg.initialize(256);
KeyPair kp = kpg.generateKeyPair();
byte[] ourPk = kp.getPublic().getEncoded();
String format = kp.getPublic().getFormat();
int ourPkLength = ourPk.length;
int arrSize;
//send client our pk
out.writeInt(ourPkLength);
out.write(ourPk);
System.out.println("sent PK!");
//receive pk from client
arrSize = fromClient.readInt();
byte[] otherPk = new byte[arrSize];
fromClient.read(otherPk);
System.out.println("recived client PK!");
KeyFactory kf = KeyFactory.getInstance("EC");
X509EncodedKeySpec pkSpec = new X509EncodedKeySpec(otherPk);
PublicKey otherPublicKey = kf.generatePublic(pkSpec);
//Perform key agreement
KeyAgreement ka = KeyAgreement.getInstance("ECDH");
ka.init(kp.getPrivate());
ka.doPhase(otherPublicKey, true);
// Send shared secret
byte[] sharedSecret = ka.generateSecret();
// Derive a key from the shared secret and both public keys
MessageDigest hash = MessageDigest.getInstance("SHA-256");
hash.update(sharedSecret);
// Simple deterministic ordering
List<ByteBuffer> keys = Arrays.asList(ByteBuffer.wrap(ourPk), ByteBuffer.wrap(otherPk));
Collections.sort(keys);
hash.update(keys.get(0));
hash.update(keys.get(1));
byte[] derivedKey = hash.digest();
System.out.println("derived key: " + derivedKey + " length: " + derivedKey.length);
//Convert byte [] to secret key
//Define cipher
SecretKeySpec symmetricKey = new SecretKeySpec(derivedKey, 0, 32, "AES");
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.DECRYPT_MODE, symmetricKey, new IvParameterSpec(new byte[16]));
//receive encrypted message from client and try to decrypt.
arrSize = fromClient.readInt();
System.out.println("array size sent: " + arrSize);
byte[] decryptArr = new byte[arrSize];
fromClient.read(decryptArr);
System.out.println("Recieved encrypted string: " + decryptArr + " length: " + decryptArr.length);
String decryptStr = Base64.getEncoder().encodeToString(cipher.doFinal(decryptArr));
System.out.println("Decrypted String: " + decryptStr);
客户代码:
//generate public key for client
KeyPairGenerator kpg = KeyPairGenerator.getInstance("EC");
kpg.initialize(256);
KeyPair kp = kpg.generateKeyPair();
byte[] ourPk = kp.getPublic().getEncoded();
//String format = kp.getPublic().getFormat();
int ourPkLength = ourPk.length;
int arrSize;
//Receive generated public key from the Server
arrSize = fromServ.readInt();
byte[] otherPk = new byte[arrSize];
fromServ.read(otherPk);
System.out.println("recived server PK!");
//Send the server our public key
out.writeInt(ourPkLength);
out.write(ourPk);
System.out.println("sent PK!");
KeyFactory kf = KeyFactory.getInstance("EC");
X509EncodedKeySpec pkSpec = new X509EncodedKeySpec(otherPk);
PublicKey otherPublicKey = kf.generatePublic(pkSpec);
//Perform key agreement
KeyAgreement ka = KeyAgreement.getInstance("ECDH");
ka.init(kp.getPrivate());
ka.doPhase(otherPublicKey, true);
// Generate a shared secret
byte[] sharedSecret = ka.generateSecret();
// Derive a key from the shared secret and both public keys
MessageDigest hash = MessageDigest.getInstance("SHA-256");
hash.update(sharedSecret);
// Simple deterministic ordering
List<ByteBuffer> keys = Arrays.asList(ByteBuffer.wrap(ourPk), ByteBuffer.wrap(otherPk));
Collections.sort(keys);
hash.update(keys.get(0));
hash.update(keys.get(1));
byte[] derivedKey = hash.digest();
System.out.println("derived key: " + derivedKey + " length: " + derivedKey.length);
//Convert the derivedkey from a byte array to a Secret key Spec of type AES
SecretKeySpec secretKey = new SecretKeySpec(derivedKey, 0, 32, "AES");
Cipher cipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
cipher.init(Cipher.ENCRYPT_MODE, secretKey, new IvParameterSpec(new byte[16]));
String plainText = "Testing!";
byte[] cipherText = cipher.doFinal(plainText.getBytes());
System.out.println("Encrypted str: " + cipherText + " length: "+ cipherText.length);
//Send encrypted string to Server
int len = cipherText.length;
System.out.println("length: " + len);
out.write(len);
out.write(cipherText);
System.out.println("Sent encrypted string!");
在您的客户端中,您写道:out.write(len)
。您的代码片段没有解释 out
是什么,但我猜测 .write(someIntValue)
是来自 java.io.OutputStream
的传递,它具有该方法(.write(int)
)。问题是,这会写入 一个单字节 ,去掉 int 中除底部 8 之外的所有位。
您服务器代码中的匹配调用是:
arrSize = fromClient.readInt();
这是 不是 InputStream
的调用(我猜你有一些 class 扩展了 InputStream 并添加了这些),大概是, readInt
所做的是读取 4 字节,并通过假定大端顺序将它们重组为单个 java int
。
因此,您从客户端发送 1 个字节,然后发送字符串,但服务器将读取 4 个字节的长度:这 1 个字节(客户端发送的实际长度)加上字符串的前 3 个,并试图将其解释为长度,导致 疯狂地 不同的数字。
事实上 276032497 是一个数字,如果通过大端顺序放入字节,则以值为 16 的字节开头,这正是您发送的长度,这强烈暗示这是您的问题。
这个修复看起来很微不足道;将 out.write(len)
变成 out.writeInt(len)
。如果你打算像这样执行字节级协议,你需要一个比¯\_(ツ)_/¯ 更好的测试和调试计划我想我会问 Whosebug。这可能就是为什么大多数人使用不同的解决方案来手动处理原始字节协议的原因(因此,调查 ProtoBuf 和朋友)。至少,让实际的管道成为一个可插入的概念,这样你就可以插入一个不加密任何东西的虚拟管道,这样你就可以观察通过网络传输的字节来发现这样的问题;这不太可能是您最后一次使服务器和客户端代码不匹配。