├── .gitignore ├── LICENSE ├── README.md ├── aescrypt ├── .gitignore ├── build.gradle ├── gradle.properties ├── proguard-rules.pro └── src │ ├── androidTest │ └── java │ │ └── com │ │ └── scottyab │ │ └── aescrypt │ │ └── ApplicationTest.java │ └── main │ ├── AndroidManifest.xml │ └── java │ └── com │ └── scottyab │ └── aescrypt │ └── AESCrypt.java ├── build.gradle ├── gradle.properties ├── gradle └── wrapper │ ├── gradle-wrapper.jar │ └── gradle-wrapper.properties ├── gradlew ├── gradlew.bat └── settings.gradle /.gitignore: -------------------------------------------------------------------------------- 1 | # gimpy mac thingy 2 | .DS_Store 3 | 4 | # IDEA Ignores 5 | *.iml 6 | *.ipr 7 | *.iws 8 | .idea/ 9 | 10 | # Local configuration file (sdk path, etc) 11 | local.properties 12 | 13 | 14 | # Generic Android ignores 15 | bin/ 16 | target 17 | gen/ 18 | 19 | # Built application files 20 | *.apk 21 | *.ap_ 22 | 23 | # Files for the Dalvik VM 24 | *.dex 25 | 26 | # Java class files 27 | *.class 28 | 29 | # Gradle files 30 | .gradle/ 31 | build/ 32 | 33 | # Proguard folder generated by Eclipse 34 | proguard/ 35 | 36 | #Log Files 37 | *.log 38 | 39 | 40 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | Apache License 2 | Version 2.0, January 2004 3 | http://www.apache.org/licenses/ 4 | 5 | TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION 6 | 7 | 1. Definitions. 8 | 9 | "License" shall mean the terms and conditions for use, reproduction, 10 | and distribution as defined by Sections 1 through 9 of this document. 11 | 12 | "Licensor" shall mean the copyright owner or entity authorized by 13 | the copyright owner that is granting the License. 14 | 15 | "Legal Entity" shall mean the union of the acting entity and all 16 | other entities that control, are controlled by, or are under common 17 | control with that entity. For the purposes of this definition, 18 | "control" means (i) the power, direct or indirect, to cause the 19 | direction or management of such entity, whether by contract or 20 | otherwise, or (ii) ownership of fifty percent (50%) or more of the 21 | outstanding shares, or (iii) beneficial ownership of such entity. 22 | 23 | "You" (or "Your") shall mean an individual or Legal Entity 24 | exercising permissions granted by this License. 25 | 26 | "Source" form shall mean the preferred form for making modifications, 27 | including but not limited to software source code, documentation 28 | source, and configuration files. 29 | 30 | "Object" form shall mean any form resulting from mechanical 31 | transformation or translation of a Source form, including but 32 | not limited to compiled object code, generated documentation, 33 | and conversions to other media types. 34 | 35 | "Work" shall mean the work of authorship, whether in Source or 36 | Object form, made available under the License, as indicated by a 37 | copyright notice that is included in or attached to the work 38 | (an example is provided in the Appendix below). 39 | 40 | "Derivative Works" shall mean any work, whether in Source or Object 41 | form, that is based on (or derived from) the Work and for which the 42 | editorial revisions, annotations, elaborations, or other modifications 43 | represent, as a whole, an original work of authorship. For the purposes 44 | of this License, Derivative Works shall not include works that remain 45 | separable from, or merely link (or bind by name) to the interfaces of, 46 | the Work and Derivative Works thereof. 47 | 48 | "Contribution" shall mean any work of authorship, including 49 | the original version of the Work and any modifications or additions 50 | to that Work or Derivative Works thereof, that is intentionally 51 | submitted to Licensor for inclusion in the Work by the copyright owner 52 | or by an individual or Legal Entity authorized to submit on behalf of 53 | the copyright owner. For the purposes of this definition, "submitted" 54 | means any form of electronic, verbal, or written communication sent 55 | to the Licensor or its representatives, including but not limited to 56 | communication on electronic mailing lists, source code control systems, 57 | and issue tracking systems that are managed by, or on behalf of, the 58 | Licensor for the purpose of discussing and improving the Work, but 59 | excluding communication that is conspicuously marked or otherwise 60 | designated in writing by the copyright owner as "Not a Contribution." 61 | 62 | "Contributor" shall mean Licensor and any individual or Legal Entity 63 | on behalf of whom a Contribution has been received by Licensor and 64 | subsequently incorporated within the Work. 65 | 66 | 2. Grant of Copyright License. Subject to the terms and conditions of 67 | this License, each Contributor hereby grants to You a perpetual, 68 | worldwide, non-exclusive, no-charge, royalty-free, irrevocable 69 | copyright license to reproduce, prepare Derivative Works of, 70 | publicly display, publicly perform, sublicense, and distribute the 71 | Work and such Derivative Works in Source or Object form. 72 | 73 | 3. Grant of Patent License. Subject to the terms and conditions of 74 | this License, each Contributor hereby grants to You a perpetual, 75 | worldwide, non-exclusive, no-charge, royalty-free, irrevocable 76 | (except as stated in this section) patent license to make, have made, 77 | use, offer to sell, sell, import, and otherwise transfer the Work, 78 | where such license applies only to those patent claims licensable 79 | by such Contributor that are necessarily infringed by their 80 | Contribution(s) alone or by combination of their Contribution(s) 81 | with the Work to which such Contribution(s) was submitted. If You 82 | institute patent litigation against any entity (including a 83 | cross-claim or counterclaim in a lawsuit) alleging that the Work 84 | or a Contribution incorporated within the Work constitutes direct 85 | or contributory patent infringement, then any patent licenses 86 | granted to You under this License for that Work shall terminate 87 | as of the date such litigation is filed. 88 | 89 | 4. Redistribution. You may reproduce and distribute copies of the 90 | Work or Derivative Works thereof in any medium, with or without 91 | modifications, and in Source or Object form, provided that You 92 | meet the following conditions: 93 | 94 | (a) You must give any other recipients of the Work or 95 | Derivative Works a copy of this License; and 96 | 97 | (b) You must cause any modified files to carry prominent notices 98 | stating that You changed the files; and 99 | 100 | (c) You must retain, in the Source form of any Derivative Works 101 | that You distribute, all copyright, patent, trademark, and 102 | attribution notices from the Source form of the Work, 103 | excluding those notices that do not pertain to any part of 104 | the Derivative Works; and 105 | 106 | (d) If the Work includes a "NOTICE" text file as part of its 107 | distribution, then any Derivative Works that You distribute must 108 | include a readable copy of the attribution notices contained 109 | within such NOTICE file, excluding those notices that do not 110 | pertain to any part of the Derivative Works, in at least one 111 | of the following places: within a NOTICE text file distributed 112 | as part of the Derivative Works; within the Source form or 113 | documentation, if provided along with the Derivative Works; or, 114 | within a display generated by the Derivative Works, if and 115 | wherever such third-party notices normally appear. The contents 116 | of the NOTICE file are for informational purposes only and 117 | do not modify the License. You may add Your own attribution 118 | notices within Derivative Works that You distribute, alongside 119 | or as an addendum to the NOTICE text from the Work, provided 120 | that such additional attribution notices cannot be construed 121 | as modifying the License. 122 | 123 | You may add Your own copyright statement to Your modifications and 124 | may provide additional or different license terms and conditions 125 | for use, reproduction, or distribution of Your modifications, or 126 | for any such Derivative Works as a whole, provided Your use, 127 | reproduction, and distribution of the Work otherwise complies with 128 | the conditions stated in this License. 129 | 130 | 5. Submission of Contributions. Unless You explicitly state otherwise, 131 | any Contribution intentionally submitted for inclusion in the Work 132 | by You to the Licensor shall be under the terms and conditions of 133 | this License, without any additional terms or conditions. 134 | Notwithstanding the above, nothing herein shall supersede or modify 135 | the terms of any separate license agreement you may have executed 136 | with Licensor regarding such Contributions. 137 | 138 | 6. Trademarks. This License does not grant permission to use the trade 139 | names, trademarks, service marks, or product names of the Licensor, 140 | except as required for reasonable and customary use in describing the 141 | origin of the Work and reproducing the content of the NOTICE file. 142 | 143 | 7. Disclaimer of Warranty. Unless required by applicable law or 144 | agreed to in writing, Licensor provides the Work (and each 145 | Contributor provides its Contributions) on an "AS IS" BASIS, 146 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or 147 | implied, including, without limitation, any warranties or conditions 148 | of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A 149 | PARTICULAR PURPOSE. You are solely responsible for determining the 150 | appropriateness of using or redistributing the Work and assume any 151 | risks associated with Your exercise of permissions under this License. 152 | 153 | 8. Limitation of Liability. In no event and under no legal theory, 154 | whether in tort (including negligence), contract, or otherwise, 155 | unless required by applicable law (such as deliberate and grossly 156 | negligent acts) or agreed to in writing, shall any Contributor be 157 | liable to You for damages, including any direct, indirect, special, 158 | incidental, or consequential damages of any character arising as a 159 | result of this License or out of the use or inability to use the 160 | Work (including but not limited to damages for loss of goodwill, 161 | work stoppage, computer failure or malfunction, or any and all 162 | other commercial damages or losses), even if such Contributor 163 | has been advised of the possibility of such damages. 164 | 165 | 9. Accepting Warranty or Additional Liability. While redistributing 166 | the Work or Derivative Works thereof, You may choose to offer, 167 | and charge a fee for, acceptance of support, warranty, indemnity, 168 | or other liability obligations and/or rights consistent with this 169 | License. However, in accepting such obligations, You may act only 170 | on Your own behalf and on Your sole responsibility, not on behalf 171 | of any other Contributor, and only if You agree to indemnify, 172 | defend, and hold each Contributor harmless for any liability 173 | incurred by, or claims asserted against, such Contributor by reason 174 | of your accepting any such warranty or additional liability. 175 | 176 | END OF TERMS AND CONDITIONS 177 | 178 | APPENDIX: How to apply the Apache License to your work. 179 | 180 | To apply the Apache License to your work, attach the following 181 | boilerplate notice, with the fields enclosed by brackets "{}" 182 | replaced with your own identifying information. (Don't include 183 | the brackets!) The text should be enclosed in the appropriate 184 | comment syntax for the file format. We also recommend that a 185 | file or class name and description of purpose be included on the 186 | same "printed page" as the copyright notice for easier 187 | identification within third-party archives. 188 | 189 | Copyright {yyyy} {name of copyright owner} 190 | 191 | Licensed under the Apache License, Version 2.0 (the "License"); 192 | you may not use this file except in compliance with the License. 193 | You may obtain a copy of the License at 194 | 195 | http://www.apache.org/licenses/LICENSE-2.0 196 | 197 | Unless required by applicable law or agreed to in writing, software 198 | distributed under the License is distributed on an "AS IS" BASIS, 199 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 200 | See the License for the specific language governing permissions and 201 | limitations under the License. 202 | 203 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | AESCrypt-Android 2 | ================ 3 | 4 | [![Android Arsenal](https://img.shields.io/badge/Android%20Arsenal-AESCrypt--Android-brightgreen.svg?style=flat)](http://android-arsenal.com/details/1/1686) 5 | 6 | Simple API to perform AES encryption on Android with no dependancies. This is the Android counterpart to the [AESCrypt](https://github.com/Gurpartap/aescrypt) library Ruby and [AESCrypt-ObjC](http://github.com/Gurpartap/AESCrypt-ObjC) created by [Gurpartap Singh](https://github.com/Gurpartap). It used the same *weak* :'( security defaults i.e Blank IV noted below. 7 | 8 | For compatiblity with AESCrypt, AESCrypt-Android has the same defaults namely: 9 | 10 | * 256-bit AES key 11 | * CBC mode 12 | * PKCS7Padding 13 | * Blank/Empty IV **(default*)** 14 | 15 | **\*Using CBC with the default blank IV [is vulnerable](http://security.stackexchange.com/a/35216/77065). This has been left in for compatibility with AESCrypt implementations. See Adv method for providing your own IV.** If you don't need to be compatable with [AESCrypt](https://github.com/Gurpartap/aescrypt) then look at [java-aes-crypto](https://github.com/tozny/java-aes-crypto) it's API is just as simple and generates more secure keys. 16 | 17 | 18 | ## Dependency 19 | 20 | [Download from Maven Central (.aar)](https://oss.sonatype.org/index.html#view-repositories;releases~browsestorage~/com/scottyab/aescrypt/0.0.1/aescrypt-0.0.1.aar) 21 | 22 | **or** 23 | 24 | ```java 25 | dependencies { 26 | compile 'com.scottyab:aescrypt:0.0.1' 27 | } 28 | ``` 29 | 30 | # Usage 31 | 32 | ## Encrypt 33 | 34 | ```java 35 | String password = "password"; 36 | String message = "hello world"; 37 | try { 38 | String encryptedMsg = AESCrypt.encrypt(password, message); 39 | }catch (GeneralSecurityException e){ 40 | //handle error 41 | } 42 | ``` 43 | 44 | ## Decrypt 45 | 46 | ```java 47 | String password = "password"; 48 | String encryptedMsg = "2B22cS3UC5s35WBihLBo8w=="; 49 | try { 50 | String messageAfterDecrypt = AESCrypt.decrypt(password, encryptedMsg); 51 | }catch (GeneralSecurityException e){ 52 | //handle error - could be due to incorrect password or tampered encryptedMsg 53 | } 54 | ``` 55 | 56 | ## Recommended ~Advanced~ usage 57 | 58 | Please if you are going to use this library provide your own key, and use a different IV per message that you encrypt.. 59 | 60 | `AESCrypt.encrypt(final SecretKeySpec key, final byte[] iv, final byte[] message)` 61 | 62 | `AESCrypt.decrypt(final SecretKeySpec key, final byte[] iv, final byte[] decodedCipherText)` 63 | 64 | **Note:** for flexibility these 'adv' methods don't provide BASE64 encoding/decoding. 65 | 66 | 67 | ## Debugging/Logging 68 | 69 | To enable logging simple change switch on the logging flag as shown below. 70 | 71 | `AESCrypt.DEBUG_LOG_ENABLED = true;` 72 | 73 | *Remember to disable in Live, recommend the below snippet if possible* 74 | 75 | 76 | ```java 77 | if (BuildConfig.DEBUG) { 78 | AESCrypt.DEBUG_LOG_ENABLED = true; 79 | } 80 | ``` 81 | 82 | 83 | 84 | To be honest it's a strech to call this a library given it's only a single util class, but I created as went through a ton of pain working out the conpatible settings for AESCrypt. I hope this will save some one time in the future. 85 | 86 | 87 | 88 | # Contributing 89 | 90 | I welcome pull requests, issues and feedback. 91 | 92 | - Fork it 93 | - Create your feature branch (git checkout -b my-new-feature) 94 | - Commit your changes (git commit -am 'Added some feature') 95 | - Push to the branch (git push origin my-new-feature) 96 | - Create new Pull Request 97 | 98 | 99 | ## Licence 100 | 101 | Copyright (c) 2014 Scott Alexander-Bown 102 | 103 | Licensed under the Apache License, Version 2.0 (the "License"); 104 | you may not use this file except in compliance with the License. 105 | You may obtain a copy of the License at 106 | 107 | http://www.apache.org/licenses/LICENSE-2.0 108 | 109 | Unless required by applicable law or agreed to in writing, software 110 | distributed under the License is distributed on an "AS IS" BASIS, 111 | WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 112 | See the License for the specific language governing permissions and 113 | limitations under the License. 114 | -------------------------------------------------------------------------------- /aescrypt/.gitignore: -------------------------------------------------------------------------------- 1 | /build 2 | -------------------------------------------------------------------------------- /aescrypt/build.gradle: -------------------------------------------------------------------------------- 1 | apply plugin: 'com.android.library' 2 | 3 | android { 4 | compileSdkVersion 21 5 | buildToolsVersion "21.1.2" 6 | 7 | defaultConfig { 8 | minSdkVersion 10 9 | targetSdkVersion 21 10 | versionCode versionCode 11 | versionName version 12 | } 13 | buildTypes { 14 | release { 15 | minifyEnabled false 16 | proguardFiles getDefaultProguardFile('proguard-android.txt'), 'proguard-rules.pro' 17 | } 18 | } 19 | 20 | } 21 | 22 | apply from: 'https://raw.github.com/chrisbanes/gradle-mvn-push/master/gradle-mvn-push.gradle' 23 | -------------------------------------------------------------------------------- /aescrypt/gradle.properties: -------------------------------------------------------------------------------- 1 | # Module Gradle settings. 2 | POM_NAME=AESCrypt-Android 3 | POM_ARTIFACT_ID=aescrypt 4 | POM_PACKAGING=jar -------------------------------------------------------------------------------- /aescrypt/proguard-rules.pro: -------------------------------------------------------------------------------- 1 | # Add project specific ProGuard rules here. 2 | # By default, the flags in this file are appended to flags specified 3 | # in /Users/scottab/dev/adt-bundle-mac-x86_64/sdk-macosx-v2/tools/proguard/proguard-android.txt 4 | # You can edit the include path and order by changing the proguardFiles 5 | # directive in build.gradle. 6 | # 7 | # For more details, see 8 | # http://developer.android.com/guide/developing/tools/proguard.html 9 | 10 | # Add any project specific keep options here: 11 | 12 | # If your project uses WebView with JS, uncomment the following 13 | # and specify the fully qualified class name to the JavaScript interface 14 | # class: 15 | #-keepclassmembers class fqcn.of.javascript.interface.for.webview { 16 | # public *; 17 | #} 18 | -------------------------------------------------------------------------------- /aescrypt/src/androidTest/java/com/scottyab/aescrypt/ApplicationTest.java: -------------------------------------------------------------------------------- 1 | package com.scottyab.aescrypt; 2 | 3 | import android.app.Application; 4 | import android.test.ApplicationTestCase; 5 | 6 | import java.security.GeneralSecurityException; 7 | 8 | 9 | /** 10 | * Testing Fundamentals 11 | */ 12 | public class ApplicationTest extends ApplicationTestCase { 13 | public ApplicationTest() { 14 | super(Application.class); 15 | } 16 | 17 | 18 | public void testEncryptDecrypt(){ 19 | 20 | String password = "password"; 21 | String message = "hello world"; 22 | 23 | if (BuildConfig.DEBUG) { 24 | AESCrypt.DEBUG_LOG_ENABLED = true; 25 | } 26 | 27 | String encryptedMsg = null; 28 | try { 29 | encryptedMsg = AESCrypt.encrypt(password, message); 30 | }catch (GeneralSecurityException e){ 31 | fail("error occurred during encrypt"); 32 | e.printStackTrace(); 33 | } 34 | 35 | String messageAfterDecrypt = null; 36 | try { 37 | messageAfterDecrypt = AESCrypt.decrypt(password, encryptedMsg); 38 | 39 | }catch (GeneralSecurityException e){ 40 | fail("error occurred during Decrypt"); 41 | e.printStackTrace(); 42 | } 43 | 44 | if (!messageAfterDecrypt.equals(message)){ 45 | fail("messages don't match after encrypt and decrypt"); 46 | } 47 | } 48 | 49 | 50 | 51 | 52 | 53 | public void testEncryt(){ 54 | 55 | String password = "password"; 56 | String message = "hello world"; 57 | 58 | try { 59 | String encryptedMsg = AESCrypt.encrypt(password, message); 60 | 61 | }catch (GeneralSecurityException e){ 62 | //handle error 63 | 64 | fail("error occurred during encrypt"); 65 | e.printStackTrace(); 66 | } 67 | } 68 | 69 | 70 | public void testDecrpyt(){ 71 | 72 | String password = "password"; 73 | String encryptedMsg = "2B22cS3UC5s35WBihLBo8w=="; 74 | 75 | try { 76 | 77 | String messageAfterDecrypt = AESCrypt.decrypt(password, encryptedMsg); 78 | 79 | }catch (GeneralSecurityException e){ 80 | fail("error occurred during Decrypt"); 81 | e.printStackTrace(); 82 | } 83 | } 84 | 85 | 86 | } -------------------------------------------------------------------------------- /aescrypt/src/main/AndroidManifest.xml: -------------------------------------------------------------------------------- 1 | 3 | 4 | 5 | 6 | 7 | -------------------------------------------------------------------------------- /aescrypt/src/main/java/com/scottyab/aescrypt/AESCrypt.java: -------------------------------------------------------------------------------- 1 | package com.scottyab.aescrypt; 2 | 3 | import android.util.Base64; 4 | import android.util.Log; 5 | 6 | import java.io.UnsupportedEncodingException; 7 | import java.security.GeneralSecurityException; 8 | import java.security.MessageDigest; 9 | import java.security.NoSuchAlgorithmException; 10 | 11 | import javax.crypto.Cipher; 12 | import javax.crypto.spec.IvParameterSpec; 13 | import javax.crypto.spec.SecretKeySpec; 14 | 15 | /** 16 | * Encrypt and decrypt messages using AES 256 bit encryption that are compatible with AESCrypt-ObjC and AESCrypt Ruby. 17 | *

18 | * Created by scottab on 04/10/2014. 19 | */ 20 | public final class AESCrypt { 21 | 22 | private static final String TAG = "AESCrypt"; 23 | 24 | //AESCrypt-ObjC uses CBC and PKCS7Padding 25 | private static final String AES_MODE = "AES/CBC/PKCS7Padding"; 26 | private static final String CHARSET = "UTF-8"; 27 | 28 | //AESCrypt-ObjC uses SHA-256 (and so a 256-bit key) 29 | private static final String HASH_ALGORITHM = "SHA-256"; 30 | 31 | //AESCrypt-ObjC uses blank IV (not the best security, but the aim here is compatibility) 32 | private static final byte[] ivBytes = {0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00}; 33 | 34 | //togglable log option (please turn off in live!) 35 | public static boolean DEBUG_LOG_ENABLED = false; 36 | 37 | 38 | /** 39 | * Generates SHA256 hash of the password which is used as key 40 | * 41 | * @param password used to generated key 42 | * @return SHA256 of the password 43 | */ 44 | private static SecretKeySpec generateKey(final String password) throws NoSuchAlgorithmException, UnsupportedEncodingException { 45 | final MessageDigest digest = MessageDigest.getInstance(HASH_ALGORITHM); 46 | byte[] bytes = password.getBytes("UTF-8"); 47 | digest.update(bytes, 0, bytes.length); 48 | byte[] key = digest.digest(); 49 | 50 | log("SHA-256 key ", key); 51 | 52 | SecretKeySpec secretKeySpec = new SecretKeySpec(key, "AES"); 53 | return secretKeySpec; 54 | } 55 | 56 | 57 | /** 58 | * Encrypt and encode message using 256-bit AES with key generated from password. 59 | * 60 | * 61 | * @param password used to generated key 62 | * @param message the thing you want to encrypt assumed String UTF-8 63 | * @return Base64 encoded CipherText 64 | * @throws GeneralSecurityException if problems occur during encryption 65 | */ 66 | public static String encrypt(final String password, String message) 67 | throws GeneralSecurityException { 68 | 69 | try { 70 | final SecretKeySpec key = generateKey(password); 71 | 72 | log("message", message); 73 | 74 | byte[] cipherText = encrypt(key, ivBytes, message.getBytes(CHARSET)); 75 | 76 | //NO_WRAP is important as was getting \n at the end 77 | String encoded = Base64.encodeToString(cipherText, Base64.NO_WRAP); 78 | log("Base64.NO_WRAP", encoded); 79 | return encoded; 80 | } catch (UnsupportedEncodingException e) { 81 | if (DEBUG_LOG_ENABLED) 82 | Log.e(TAG, "UnsupportedEncodingException ", e); 83 | throw new GeneralSecurityException(e); 84 | } 85 | } 86 | 87 | 88 | /** 89 | * More flexible AES encrypt that doesn't encode 90 | * @param key AES key typically 128, 192 or 256 bit 91 | * @param iv Initiation Vector 92 | * @param message in bytes (assumed it's already been decoded) 93 | * @return Encrypted cipher text (not encoded) 94 | * @throws GeneralSecurityException if something goes wrong during encryption 95 | */ 96 | public static byte[] encrypt(final SecretKeySpec key, final byte[] iv, final byte[] message) 97 | throws GeneralSecurityException { 98 | final Cipher cipher = Cipher.getInstance(AES_MODE); 99 | IvParameterSpec ivSpec = new IvParameterSpec(iv); 100 | cipher.init(Cipher.ENCRYPT_MODE, key, ivSpec); 101 | byte[] cipherText = cipher.doFinal(message); 102 | 103 | log("cipherText", cipherText); 104 | 105 | return cipherText; 106 | } 107 | 108 | 109 | /** 110 | * Decrypt and decode ciphertext using 256-bit AES with key generated from password 111 | * 112 | * @param password used to generated key 113 | * @param base64EncodedCipherText the encrpyted message encoded with base64 114 | * @return message in Plain text (String UTF-8) 115 | * @throws GeneralSecurityException if there's an issue decrypting 116 | */ 117 | public static String decrypt(final String password, String base64EncodedCipherText) 118 | throws GeneralSecurityException { 119 | 120 | try { 121 | final SecretKeySpec key = generateKey(password); 122 | 123 | log("base64EncodedCipherText", base64EncodedCipherText); 124 | byte[] decodedCipherText = Base64.decode(base64EncodedCipherText, Base64.NO_WRAP); 125 | log("decodedCipherText", decodedCipherText); 126 | 127 | byte[] decryptedBytes = decrypt(key, ivBytes, decodedCipherText); 128 | 129 | log("decryptedBytes", decryptedBytes); 130 | String message = new String(decryptedBytes, CHARSET); 131 | log("message", message); 132 | 133 | 134 | return message; 135 | } catch (UnsupportedEncodingException e) { 136 | if (DEBUG_LOG_ENABLED) 137 | Log.e(TAG, "UnsupportedEncodingException ", e); 138 | 139 | throw new GeneralSecurityException(e); 140 | } 141 | } 142 | 143 | 144 | /** 145 | * More flexible AES decrypt that doesn't encode 146 | * 147 | * @param key AES key typically 128, 192 or 256 bit 148 | * @param iv Initiation Vector 149 | * @param decodedCipherText in bytes (assumed it's already been decoded) 150 | * @return Decrypted message cipher text (not encoded) 151 | * @throws GeneralSecurityException if something goes wrong during encryption 152 | */ 153 | public static byte[] decrypt(final SecretKeySpec key, final byte[] iv, final byte[] decodedCipherText) 154 | throws GeneralSecurityException { 155 | final Cipher cipher = Cipher.getInstance(AES_MODE); 156 | IvParameterSpec ivSpec = new IvParameterSpec(iv); 157 | cipher.init(Cipher.DECRYPT_MODE, key, ivSpec); 158 | byte[] decryptedBytes = cipher.doFinal(decodedCipherText); 159 | 160 | log("decryptedBytes", decryptedBytes); 161 | 162 | return decryptedBytes; 163 | } 164 | 165 | 166 | 167 | 168 | private static void log(String what, byte[] bytes) { 169 | if (DEBUG_LOG_ENABLED) 170 | Log.d(TAG, what + "[" + bytes.length + "] [" + bytesToHex(bytes) + "]"); 171 | } 172 | 173 | private static void log(String what, String value) { 174 | if (DEBUG_LOG_ENABLED) 175 | Log.d(TAG, what + "[" + value.length() + "] [" + value + "]"); 176 | } 177 | 178 | 179 | /** 180 | * Converts byte array to hexidecimal useful for logging and fault finding 181 | * @param bytes 182 | * @return 183 | */ 184 | private static String bytesToHex(byte[] bytes) { 185 | final char[] hexArray = {'0', '1', '2', '3', '4', '5', '6', '7', '8', 186 | '9', 'A', 'B', 'C', 'D', 'E', 'F'}; 187 | char[] hexChars = new char[bytes.length * 2]; 188 | int v; 189 | for (int j = 0; j < bytes.length; j++) { 190 | v = bytes[j] & 0xFF; 191 | hexChars[j * 2] = hexArray[v >>> 4]; 192 | hexChars[j * 2 + 1] = hexArray[v & 0x0F]; 193 | } 194 | return new String(hexChars); 195 | } 196 | 197 | private AESCrypt() { 198 | } 199 | } 200 | -------------------------------------------------------------------------------- /build.gradle: -------------------------------------------------------------------------------- 1 | // Top-level build file where you can add configuration options common to all sub-projects/modules. 2 | 3 | buildscript { 4 | repositories { 5 | mavenCentral() 6 | } 7 | dependencies { 8 | classpath 'com.android.tools.build:gradle:1.1.0' 9 | 10 | // NOTE: Do not place your application dependencies here; they belong 11 | // in the individual module build.gradle files 12 | } 13 | } 14 | 15 | def isReleaseBuild() { 16 | return version.contains("SNAPSHOT") == false 17 | } 18 | 19 | allprojects { 20 | version = VERSION_NAME 21 | group = GROUP 22 | 23 | repositories { 24 | mavenCentral() 25 | } 26 | } 27 | 28 | apply plugin: 'android-reporting' -------------------------------------------------------------------------------- /gradle.properties: -------------------------------------------------------------------------------- 1 | # Project-wide Gradle settings. 2 | 3 | # IDE (e.g. Android Studio) users: 4 | # Settings specified in this file will override any Gradle settings 5 | # configured through the IDE. 6 | 7 | # For more details on how to configure your build environment visit 8 | # http://www.gradle.org/docs/current/userguide/build_environment.html 9 | 10 | # Specifies the JVM arguments used for the daemon process. 11 | # The setting is particularly useful for tweaking memory settings. 12 | # Default value: -Xmx10248m -XX:MaxPermSize=256m 13 | # org.gradle.jvmargs=-Xmx2048m -XX:MaxPermSize=512m -XX:+HeapDumpOnOutOfMemoryError -Dfile.encoding=UTF-8 14 | 15 | # When configured, Gradle will run in incubating parallel mode. 16 | # This option should only be used with decoupled projects. More details, visit 17 | # http://www.gradle.org/docs/current/userguide/multi_project_builds.html#sec:decoupled_projects 18 | # org.gradle.parallel=true 19 | 20 | #VERSION_NAME=0.0.1-SNAPSHOT 21 | VERSION_NAME=0.0.1 22 | VERSION_CODE=2 23 | GROUP=com.scottyab 24 | 25 | 26 | POM_DESCRIPTION=Simple API to perform AES encryption on Android. This is the Android counterpart to the AESCrypt library Ruby and Obj-C. 27 | POM_URL=https://github.com/scottyab/AESCrypt-Android.git 28 | POM_SCM_URL=https://github.com/scottyab/AESCrypt-Android.git 29 | POM_SCM_CONNECTION=scm:git@github.com:scottyab/AESCrypt-Android.git 30 | POM_SCM_DEV_CONNECTION=scm:git@github.com:scottyab/AESCrypt-Android.git 31 | POM_LICENCE_NAME=The Apache Software License, Version 2.0 32 | POM_LICENCE_URL=http://www.apache.org/licenses/LICENSE-2.0.txt 33 | POM_LICENCE_DIST=repo 34 | POM_DEVELOPER_ID=scottyab 35 | POM_DEVELOPER_NAME=Scott Alexander-Bown 36 | 37 | RELEASE_REPOSITORY_URL=https://oss.sonatype.org/service/local/staging/deploy/maven2 38 | SNAPSHOT_REPOSITORY_URL=https://oss.sonatype.org/content/repositories/snapshots -------------------------------------------------------------------------------- /gradle/wrapper/gradle-wrapper.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/scottyab/AESCrypt-Android/d7059712bfa10119b3a71d7b32bd91dbaeb34b83/gradle/wrapper/gradle-wrapper.jar -------------------------------------------------------------------------------- /gradle/wrapper/gradle-wrapper.properties: -------------------------------------------------------------------------------- 1 | #Thu Mar 05 08:54:35 GMT 2015 2 | distributionBase=GRADLE_USER_HOME 3 | distributionPath=wrapper/dists 4 | zipStoreBase=GRADLE_USER_HOME 5 | zipStorePath=wrapper/dists 6 | distributionUrl=https\://services.gradle.org/distributions/gradle-2.2.1-all.zip 7 | -------------------------------------------------------------------------------- /gradlew: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env bash 2 | 3 | ############################################################################## 4 | ## 5 | ## Gradle start up script for UN*X 6 | ## 7 | ############################################################################## 8 | 9 | # Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script. 10 | DEFAULT_JVM_OPTS="" 11 | 12 | APP_NAME="Gradle" 13 | APP_BASE_NAME=`basename "$0"` 14 | 15 | # Use the maximum available, or set MAX_FD != -1 to use that value. 16 | MAX_FD="maximum" 17 | 18 | warn ( ) { 19 | echo "$*" 20 | } 21 | 22 | die ( ) { 23 | echo 24 | echo "$*" 25 | echo 26 | exit 1 27 | } 28 | 29 | # OS specific support (must be 'true' or 'false'). 30 | cygwin=false 31 | msys=false 32 | darwin=false 33 | case "`uname`" in 34 | CYGWIN* ) 35 | cygwin=true 36 | ;; 37 | Darwin* ) 38 | darwin=true 39 | ;; 40 | MINGW* ) 41 | msys=true 42 | ;; 43 | esac 44 | 45 | # For Cygwin, ensure paths are in UNIX format before anything is touched. 46 | if $cygwin ; then 47 | [ -n "$JAVA_HOME" ] && JAVA_HOME=`cygpath --unix "$JAVA_HOME"` 48 | fi 49 | 50 | # Attempt to set APP_HOME 51 | # Resolve links: $0 may be a link 52 | PRG="$0" 53 | # Need this for relative symlinks. 54 | while [ -h "$PRG" ] ; do 55 | ls=`ls -ld "$PRG"` 56 | link=`expr "$ls" : '.*-> \(.*\)$'` 57 | if expr "$link" : '/.*' > /dev/null; then 58 | PRG="$link" 59 | else 60 | PRG=`dirname "$PRG"`"/$link" 61 | fi 62 | done 63 | SAVED="`pwd`" 64 | cd "`dirname \"$PRG\"`/" >&- 65 | APP_HOME="`pwd -P`" 66 | cd "$SAVED" >&- 67 | 68 | CLASSPATH=$APP_HOME/gradle/wrapper/gradle-wrapper.jar 69 | 70 | # Determine the Java command to use to start the JVM. 71 | if [ -n "$JAVA_HOME" ] ; then 72 | if [ -x "$JAVA_HOME/jre/sh/java" ] ; then 73 | # IBM's JDK on AIX uses strange locations for the executables 74 | JAVACMD="$JAVA_HOME/jre/sh/java" 75 | else 76 | JAVACMD="$JAVA_HOME/bin/java" 77 | fi 78 | if [ ! -x "$JAVACMD" ] ; then 79 | die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME 80 | 81 | Please set the JAVA_HOME variable in your environment to match the 82 | location of your Java installation." 83 | fi 84 | else 85 | JAVACMD="java" 86 | which java >/dev/null 2>&1 || die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH. 87 | 88 | Please set the JAVA_HOME variable in your environment to match the 89 | location of your Java installation." 90 | fi 91 | 92 | # Increase the maximum file descriptors if we can. 93 | if [ "$cygwin" = "false" -a "$darwin" = "false" ] ; then 94 | MAX_FD_LIMIT=`ulimit -H -n` 95 | if [ $? -eq 0 ] ; then 96 | if [ "$MAX_FD" = "maximum" -o "$MAX_FD" = "max" ] ; then 97 | MAX_FD="$MAX_FD_LIMIT" 98 | fi 99 | ulimit -n $MAX_FD 100 | if [ $? -ne 0 ] ; then 101 | warn "Could not set maximum file descriptor limit: $MAX_FD" 102 | fi 103 | else 104 | warn "Could not query maximum file descriptor limit: $MAX_FD_LIMIT" 105 | fi 106 | fi 107 | 108 | # For Darwin, add options to specify how the application appears in the dock 109 | if $darwin; then 110 | GRADLE_OPTS="$GRADLE_OPTS \"-Xdock:name=$APP_NAME\" \"-Xdock:icon=$APP_HOME/media/gradle.icns\"" 111 | fi 112 | 113 | # For Cygwin, switch paths to Windows format before running java 114 | if $cygwin ; then 115 | APP_HOME=`cygpath --path --mixed "$APP_HOME"` 116 | CLASSPATH=`cygpath --path --mixed "$CLASSPATH"` 117 | 118 | # We build the pattern for arguments to be converted via cygpath 119 | ROOTDIRSRAW=`find -L / -maxdepth 1 -mindepth 1 -type d 2>/dev/null` 120 | SEP="" 121 | for dir in $ROOTDIRSRAW ; do 122 | ROOTDIRS="$ROOTDIRS$SEP$dir" 123 | SEP="|" 124 | done 125 | OURCYGPATTERN="(^($ROOTDIRS))" 126 | # Add a user-defined pattern to the cygpath arguments 127 | if [ "$GRADLE_CYGPATTERN" != "" ] ; then 128 | OURCYGPATTERN="$OURCYGPATTERN|($GRADLE_CYGPATTERN)" 129 | fi 130 | # Now convert the arguments - kludge to limit ourselves to /bin/sh 131 | i=0 132 | for arg in "$@" ; do 133 | CHECK=`echo "$arg"|egrep -c "$OURCYGPATTERN" -` 134 | CHECK2=`echo "$arg"|egrep -c "^-"` ### Determine if an option 135 | 136 | if [ $CHECK -ne 0 ] && [ $CHECK2 -eq 0 ] ; then ### Added a condition 137 | eval `echo args$i`=`cygpath --path --ignore --mixed "$arg"` 138 | else 139 | eval `echo args$i`="\"$arg\"" 140 | fi 141 | i=$((i+1)) 142 | done 143 | case $i in 144 | (0) set -- ;; 145 | (1) set -- "$args0" ;; 146 | (2) set -- "$args0" "$args1" ;; 147 | (3) set -- "$args0" "$args1" "$args2" ;; 148 | (4) set -- "$args0" "$args1" "$args2" "$args3" ;; 149 | (5) set -- "$args0" "$args1" "$args2" "$args3" "$args4" ;; 150 | (6) set -- "$args0" "$args1" "$args2" "$args3" "$args4" "$args5" ;; 151 | (7) set -- "$args0" "$args1" "$args2" "$args3" "$args4" "$args5" "$args6" ;; 152 | (8) set -- "$args0" "$args1" "$args2" "$args3" "$args4" "$args5" "$args6" "$args7" ;; 153 | (9) set -- "$args0" "$args1" "$args2" "$args3" "$args4" "$args5" "$args6" "$args7" "$args8" ;; 154 | esac 155 | fi 156 | 157 | # Split up the JVM_OPTS And GRADLE_OPTS values into an array, following the shell quoting and substitution rules 158 | function splitJvmOpts() { 159 | JVM_OPTS=("$@") 160 | } 161 | eval splitJvmOpts $DEFAULT_JVM_OPTS $JAVA_OPTS $GRADLE_OPTS 162 | JVM_OPTS[${#JVM_OPTS[*]}]="-Dorg.gradle.appname=$APP_BASE_NAME" 163 | 164 | exec "$JAVACMD" "${JVM_OPTS[@]}" -classpath "$CLASSPATH" org.gradle.wrapper.GradleWrapperMain "$@" 165 | -------------------------------------------------------------------------------- /gradlew.bat: -------------------------------------------------------------------------------- 1 | @if "%DEBUG%" == "" @echo off 2 | @rem ########################################################################## 3 | @rem 4 | @rem Gradle startup script for Windows 5 | @rem 6 | @rem ########################################################################## 7 | 8 | @rem Set local scope for the variables with windows NT shell 9 | if "%OS%"=="Windows_NT" setlocal 10 | 11 | @rem Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script. 12 | set DEFAULT_JVM_OPTS= 13 | 14 | set DIRNAME=%~dp0 15 | if "%DIRNAME%" == "" set DIRNAME=. 16 | set APP_BASE_NAME=%~n0 17 | set APP_HOME=%DIRNAME% 18 | 19 | @rem Find java.exe 20 | if defined JAVA_HOME goto findJavaFromJavaHome 21 | 22 | set JAVA_EXE=java.exe 23 | %JAVA_EXE% -version >NUL 2>&1 24 | if "%ERRORLEVEL%" == "0" goto init 25 | 26 | echo. 27 | echo ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH. 28 | echo. 29 | echo Please set the JAVA_HOME variable in your environment to match the 30 | echo location of your Java installation. 31 | 32 | goto fail 33 | 34 | :findJavaFromJavaHome 35 | set JAVA_HOME=%JAVA_HOME:"=% 36 | set JAVA_EXE=%JAVA_HOME%/bin/java.exe 37 | 38 | if exist "%JAVA_EXE%" goto init 39 | 40 | echo. 41 | echo ERROR: JAVA_HOME is set to an invalid directory: %JAVA_HOME% 42 | echo. 43 | echo Please set the JAVA_HOME variable in your environment to match the 44 | echo location of your Java installation. 45 | 46 | goto fail 47 | 48 | :init 49 | @rem Get command-line arguments, handling Windowz variants 50 | 51 | if not "%OS%" == "Windows_NT" goto win9xME_args 52 | if "%@eval[2+2]" == "4" goto 4NT_args 53 | 54 | :win9xME_args 55 | @rem Slurp the command line arguments. 56 | set CMD_LINE_ARGS= 57 | set _SKIP=2 58 | 59 | :win9xME_args_slurp 60 | if "x%~1" == "x" goto execute 61 | 62 | set CMD_LINE_ARGS=%* 63 | goto execute 64 | 65 | :4NT_args 66 | @rem Get arguments from the 4NT Shell from JP Software 67 | set CMD_LINE_ARGS=%$ 68 | 69 | :execute 70 | @rem Setup the command line 71 | 72 | set CLASSPATH=%APP_HOME%\gradle\wrapper\gradle-wrapper.jar 73 | 74 | @rem Execute Gradle 75 | "%JAVA_EXE%" %DEFAULT_JVM_OPTS% %JAVA_OPTS% %GRADLE_OPTS% "-Dorg.gradle.appname=%APP_BASE_NAME%" -classpath "%CLASSPATH%" org.gradle.wrapper.GradleWrapperMain %CMD_LINE_ARGS% 76 | 77 | :end 78 | @rem End local scope for the variables with windows NT shell 79 | if "%ERRORLEVEL%"=="0" goto mainEnd 80 | 81 | :fail 82 | rem Set variable GRADLE_EXIT_CONSOLE if you need the _script_ return code instead of 83 | rem the _cmd.exe /c_ return code! 84 | if not "" == "%GRADLE_EXIT_CONSOLE%" exit 1 85 | exit /b 1 86 | 87 | :mainEnd 88 | if "%OS%"=="Windows_NT" endlocal 89 | 90 | :omega 91 | -------------------------------------------------------------------------------- /settings.gradle: -------------------------------------------------------------------------------- 1 | include ':aescrypt' 2 | --------------------------------------------------------------------------------