How to initialize cipher.init(Cipher.DECRYPT_MODE, masterKey) - IV required when decrypting. Use IvParameterSpec or AlgorithmParameters to provide it
I can not understand what wrong in this code, this is standard Android key-value service without any fantasy
private SecretKey decryptDataKey(String encryptedDataKeyString) throws NoSuchAlgorithmException, InvalidKeyException,
NoSuchPaddingException, IllegalBlockSizeException, BadPaddingException, UnrecoverableKeyException, java.security.KeyStoreException, InvalidAlgorithmParameterException, NoSuchProviderException {
java.security.Key masterKey = getOrCreateKey();
Cipher cipher = Cipher.getInstance(transformation);
cipher.init(Cipher.DECRYPT_MODE, masterKey); // No GCMParameterSpec
byte[] encryptedDataKey = android.util.Base64.decode(encryptedDataKeyString, android.util.Base64.DEFAULT); // Correct Base64 class
byte[] decryptedDataKey = cipher.doFinal(encryptedDataKey);
return new SecretKeySpec(decryptedDataKey, KeyProperties.KEY_ALGORITHM_AES);
}
master key is present, transformation = "AES/GCM/NoPadding"
but code produced error "java.security.InvalidKeyException: IV required when decrypting. Use IvParameterSpec or AlgorithmParameters to provide it."
follow documentation all looking good https://developer.android.com/reference/javax/crypto/Cipher#init(int,%20java.security.Key)
I ask Gemini and other Ai, and even ask specially implement this recipe Issue while using Android fingerprint: IV required when decrypting. Use IvParameterSpec or AlgorithmParameters to provide it , but failed. AI also understand what going wrong in line cipher.init(Cipher.DECRYPT_MODE, masterKey)
follow @Topaco advice "All modes (with the exception of the insecure ECB mode) require an IV for decryption. For GCM, the recommended IV length is 12 bytes (although other IV lengths are technically possible). It is common to concatenate IV (because it is not secret) and ciphertext during encryption" my current workable code is:
private SecretKey decryptDataKey(byte[] encryptedDataKey, byte[] iv) throws NoSuchAlgorithmException, InvalidKeyException,
NoSuchPaddingException, IllegalBlockSizeException, BadPaddingException, UnrecoverableKeyException, java.security.KeyStoreException, InvalidAlgorithmParameterException, NoSuchProviderException {
Key masterKey = getOrCreateKey();
Cipher cipher = Cipher.getInstance(transformation);
GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(gcmTagLength, iv);
cipher.init(Cipher.DECRYPT_MODE, masterKey, gcmParameterSpec);
byte[] decryptedDataKey = cipher.doFinal(encryptedDataKey);
return new SecretKeySpec(decryptedDataKey, KeyProperties.KEY_ALGORITHM_AES);
}
- Provider not updating value
- Android Studio Search (Ctrl + Shift + F) doesn't search all occurrences of a string
- Android Gradle build fails from cached files
- React native react-navigation SafeArea issue
- Alternative to "FLAG_BLUR_BEHIND" in Android?
- How to resolve "source value 8 is obsolete" warning in Android Studio?
- Android Studio - How to make modules inside a subdirectory?
- Jetpack Compose collapsing toolbar
- Koin inject viewmodel into Composable
- Keyboard not being detected. MediaQuery.of(context).viewInsets.bottom always returns 0.0
- Unable to add window -- token null is not valid; is your activity running?
- How to use Secondary Value in a Spinner
- React-native-maps Blank page Only google logo
- Android: .nomedia is ignored, images still appear on the gallery
- Android UIAutomator: failing to obtain an intent to start the entry-activity
- ddms: 'adb.exe,start-server' failed -- run manually if necessary, Android Studio
- Why Android Studio is complaining about this
- Get path to pictures directory
- Android - accessing files in native C/C++ code with Google Scoped Storage API
- startActivity() from BroadcastReceiver
- minimumFetchInterval in Firebase remote config
- How to initialize React Native project
- Android 12, Kotlin: Why is my app is not listed as an installed app under ACESSIBILITY when ACESSIBLITY INTENT is displayed?
- How to mount the android img file under linux?
- error org.json.JSONException: No value for PROJECT_NAME This is my json
- Cannot execute /usr/lib/jvm/java-17-openjdk-amd64/bin/java to determine the version
- I get 'Command Not Found' when I try to run Android Emulator on Mac OS X
- Android Studio 4.2 started to rename resources inside APK in release build
- Edge-to-edge doesn't work when activity recreated or AppCompatDelegate.setDefaultNightMode() applied
- How to make a view transparent in android?