sytelus/CryptoJS

Difference in output of java's crypt lib and crypto-js

Samdacruel opened this issue · 0 comments

Samdacruel commented

This is the java code. I am trying to replicate the same functionality in javascript.

public String populateHMAC(String app_id, String mobile, String token,
String deviceId) {

String hmac = null;
try {
    CryptLib cryptLib = new CryptLib();
    String message = app_id + "|" + mobile + "|" + deviceId;
    byte[] tokenBytes = Base64.decode(token, 2);//cryptLib.hexStringToByteArray(token);

    String temp=Base64.encodeToString(cryptLib.SHA256(message),2);

    byte[] tempArr=Base64.decode(temp,2);

    byte[] hmacBytes = cryptLib.encrypt(
            cryptLib.SHA256(message),
            tokenBytes);
    hmac = Base64.encodeToString(hmacBytes, Base64.DEFAULT);
} catch (Exception e) {
    e.printStackTrace();
}
return hmac;

}
These are the functions inside CryptLib

The SHA256 function

 public byte[] SHA256(String paramString) throws Exception {
MessageDigest md = MessageDigest.getInstance("SHA-256");
md.update(paramString.getBytes("UTF-8"));
byte[] digest = md.digest();
return digest;

}
And the encrypt function

public byte[] encrypt(byte[] data, byte[] key) throws Exception {
SecretKeySpec keySpec = new SecretKeySpec(key, "AES");
byte[] iv = new byte[16];
IvParameterSpec ivSpec = new IvParameterSpec(iv);
Cipher acipher = Cipher.getInstance("AES/CBC/PKCS5Padding");
byte[] arrayOfByte1;
acipher.init(Cipher.ENCRYPT_MODE, keySpec, ivSpec);
arrayOfByte1 = acipher.doFinal(data);
return arrayOfByte1;

}
This is the javascript code for the same functionality. I am using the crypto-js library.

        var crypto = require('crypto-js');

        populateHMAC( app_id,  mobile, token, deviceId){

        var rawStr = token;
        var wordArray = crypto.enc.Utf8.parse(rawStr);
        var base64 = crypto.enc.Base64.stringify(wordArray);

        var enctoken=btoa(token);


        var message= app_id + "|" + mobile + "|" + deviceId;

        var decodedString= atob(enctoken);

        message=encodeURIComponent(message);

        var hash= crypto.SHA256(message);//.toString(crypto.enc.Utf8);

        console.log("params",decodedString,hash.toString(crypto.enc.Hex));


        var iv = crypto.enc.Hex.parse('0000000000000000'); 
        var encryptedString = crypto.AES.encrypt(hash, decodedString, {
                    iv:iv,
                    mode: crypto.mode.CBC,
                    padding: crypto.pad.Pkcs7
                });

        var encodedString= encryptedString.ciphertext.toString(crypto.enc.Base64);


         return encodedString;
        }

The two outputs are different and I am unable to figure out why.