nUpdate/nUpdate.Administration/AesManager.cs at master · dbforge/nUpdate · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
// AesManager.cs, 10.06.2019
// Copyright (C) Dominic Beger 17.06.2019

using System;
using System.IO;
using System.Security;
using System.Security.Cryptography;

namespace nUpdate.Administration
{
    public class AesManager
    {
        /// <summary>
        ///     Decrypts a string with the given key and initializing vector.
        /// </summary>
        /// <param name="cipherText">The byte-array of the encrypted string.</param>
        /// <param name="keyPassword">The key to use.</param>
        /// <param name="ivPassword">The initializing vector to use.</param>
        /// <returns>Returns the plain string as SecureString.</returns>
        public static SecureString Decrypt(byte[] cipherText, string keyPassword, string ivPassword)
        {
            if (cipherText == null || cipherText.Length <= 0)
                throw new ArgumentNullException(nameof(cipherText));
            if (keyPassword == null || keyPassword.Length <= 0)
                throw new ArgumentNullException(nameof(keyPassword));
            if (ivPassword == null || ivPassword.Length <= 0)
                throw new ArgumentNullException(nameof(ivPassword));

            var keyPasswordDeriveBytes = new Rfc2898DeriveBytes(keyPassword,
                new byte[] {0x43, 0x87, 0x23, 0x72, 0x45, 0x56, 0x68, 0x14, 0x62, 0x84});
            var ivPasswordDeriveBytes = new Rfc2898DeriveBytes(ivPassword,
                new byte[] {0x43, 0x87, 0x23, 0x72, 0x45, 0x56, 0x68, 0x14, 0x62, 0x84});

            string plaintext;
            using (var aesAlg = new AesManaged())
            {
                aesAlg.KeySize = 256;
                aesAlg.Key = keyPasswordDeriveBytes.GetBytes(aesAlg.KeySize / 8);
                aesAlg.IV = ivPasswordDeriveBytes.GetBytes(aesAlg.BlockSize / 8);

                // Create a decrytor to perform the stream transform.
                var decryptor = aesAlg.CreateDecryptor(aesAlg.Key, aesAlg.IV);

                // Create the streams used for decryption.
                using (var msDecrypt = new MemoryStream(cipherText))
                {
                    using (var csDecrypt = new CryptoStream(msDecrypt, decryptor, CryptoStreamMode.Read))
                    {
                        using (var srDecrypt = new StreamReader(csDecrypt))
                        {
                            // Read the decrypted bytes from the decrypting stream
                            // and place them in a string.
                            plaintext = srDecrypt.ReadToEnd();
                        }
                    }
                }
            }

            var securedPlainText = new SecureString();
            foreach (var c in plaintext)
                securedPlainText.AppendChar(c);
            return securedPlainText;
        }

        /// <summary>
        ///     Encrypts a string with the given key and initializing vector.
        /// </summary>
        /// <param name="plainText">The text to encrypt.</param>
        /// <param name="keyPassword">The password which the key should be derived from.</param>
        /// <param name="ivPassword">The password which the initializing vector should be drived from.</param>
        /// <returns>Returns the encrypted string as a byte-array.</returns>
        public static byte[] Encrypt(string plainText, string keyPassword, string ivPassword)
        {
            if (string.IsNullOrEmpty(plainText))
                throw new ArgumentNullException(nameof(plainText));
            if (keyPassword == null || keyPassword.Length <= 0)
                throw new ArgumentNullException(nameof(keyPassword));
            if (ivPassword == null || ivPassword.Length <= 0)
                throw new ArgumentNullException(nameof(ivPassword));

            var keyPasswordDeriveBytes = new Rfc2898DeriveBytes(keyPassword,
                new byte[] {0x43, 0x87, 0x23, 0x72, 0x45, 0x56, 0x68, 0x14, 0x62, 0x84});
            var ivPasswordDeriveBytes = new Rfc2898DeriveBytes(ivPassword,
                new byte[] {0x43, 0x87, 0x23, 0x72, 0x45, 0x56, 0x68, 0x14, 0x62, 0x84});
            byte[] encrypted;

            using (var aesAlg = new AesManaged())
            {
                aesAlg.KeySize = 256;
                aesAlg.Key = keyPasswordDeriveBytes.GetBytes(aesAlg.KeySize / 8);
                aesAlg.IV = ivPasswordDeriveBytes.GetBytes(aesAlg.BlockSize / 8);

                // Create a decrytor to perform the stream transform.
                var encryptor = aesAlg.CreateEncryptor(aesAlg.Key, aesAlg.IV);

                // Create the streams used for encryption.
                using (var msEncrypt = new MemoryStream())
                {
                    using (var csEncrypt = new CryptoStream(msEncrypt, encryptor, CryptoStreamMode.Write))
                    {
                        using (var swEncrypt = new StreamWriter(csEncrypt))
                        {
                            //Write all data to the stream.
                            swEncrypt.Write(plainText);
                        }

                        encrypted = msEncrypt.ToArray();
                    }
                }
            }

            // Return the encrypted bytes from the memory stream.
            return encrypted;
        }
    }
}