[{"data":1,"prerenderedAt":3217},["ShallowReactive",2],{"search-docs":3,"doc-\u002Fproject\u002Frocket-leaf\u002Fencryption":886},[4,8,12,16,20,24,28,32,36,40,44,48,52,56,60,64,68,72,76,80,84,88,92,96,100,104,108,112,116,120,124,128,132,136,140,144,148,152,156,159,162,165,169,172,175,178,182,186,190,194,198,202,206,210,214,218,222,226,230,234,238,242,246,250,254,258,262,266,269,273,277,281,285,288,291,294,298,301,304,307,310,313,316,319,322,325,329,332,336,340,344,348,352,356,359,362,365,368,371,374,377,380,383,386,389,393,396,399,402,405,408,411,414,417,420,424,428,432,435,438,442,446,450,454,458,462,466,470,474,477,480,483,487,491,494,497,500,504,507,511,515,518,521,524,527,530,533,536,539,542,545,548,551,554,557,560,563,566,569,572,575,579,583,587,591,595,599,603,606,610,614,617,620,623,626,629,633,637,640,643,646,649,652,655,658,661,664,667,670,673,676,679,682,685,688,691,694,697,700,703,706,709,712,716,720,724,728,732,736,740,744,748,752,756,760,764,768,772,775,779,783,787,790,793,796,799,802,805,808,811,814,818,822,825,829,832,835,838,841,844,848,851,854,858,862,865,869,873,876,879,882],{"path":5,"title":6,"description":7},"\u002Fabout\u002Fauthor","作者相关","只想纯粹的做一个程序员...",{"path":9,"title":10,"description":11},"\u002Fabout\u002Fjourney","心路历程","",{"path":13,"title":14,"description":15},"\u002Fai\u002Fagent\u002Fframeworks","Agent 框架","主流 Agent 框架：LangChain、LlamaIndex、AutoGen、CrewAI",{"path":17,"title":18,"description":19},"\u002Fai\u002Fagent\u002Fhooks","Agent Hooks 与自动化","Claude Agent 的 Hooks 生命周期、事件类型、典型自动化场景",{"path":21,"title":22,"description":23},"\u002Fai\u002Fagent\u002Fintroduction","AI Agent 概述","AI Agent 核心概念：感知、规划、执行、记忆",{"path":25,"title":26,"description":27},"\u002Fai\u002Fagent\u002Fpractice","Agent 实战","AI Agent 实战：构建自主任务执行系统",{"path":29,"title":30,"description":31},"\u002Fai\u002Fagent\u002Fsdk","Claude Agent SDK 开发","使用 Claude Agent SDK 构建自定义 AI Agent：架构、API、生命周期",{"path":33,"title":34,"description":35},"\u002Fai\u002Fagent\u002Fsubagents","Subagents 子代理","用 Subagents 分解复杂任务、并发执行、隔离上下文",{"path":37,"title":38,"description":39},"\u002Fai\u002Fagent\u002Ftool-use","工具调用","AI Agent 工具调用：Function Calling、Tool Use 原理与实践",{"path":41,"title":42,"description":43},"\u002Fai\u002Ffundamentals\u002Fdeep-learning","深度学习入门","深度学习基础知识：前向传播、反向传播、损失函数、优化器",{"path":45,"title":46,"description":47},"\u002Fai\u002Ffundamentals\u002Fml-basics","机器学习基础","机器学习核心概念：监督学习、无监督学习、强化学习",{"path":49,"title":50,"description":51},"\u002Fai\u002Ffundamentals\u002Fneural-networks","神经网络原理","神经网络架构：CNN、RNN、注意力机制",{"path":53,"title":54,"description":55},"\u002Fai\u002Fgetting-started","AI 学习路线","AI 技术学习路线图，从基础到实战的完整指南",{"path":57,"title":58,"description":59},"\u002Fai\u002Fllm\u002Ffine-tuning","模型微调","大模型微调技术：LoRA、QLoRA、全量微调、RLHF",{"path":61,"title":62,"description":63},"\u002Fai\u002Fllm\u002Fintroduction","大模型概述","大语言模型发展历程、核心能力与主流模型对比",{"path":65,"title":66,"description":67},"\u002Fai\u002Fllm\u002Flocal-deploy","本地部署","大模型本地部署：Ollama、vLLM、llama.cpp",{"path":69,"title":70,"description":71},"\u002Fai\u002Fllm\u002Ftransformer","Transformer 架构","Transformer 架构详解：自注意力机制、位置编码、多头注意力",{"path":73,"title":74,"description":75},"\u002Fai\u002Fmcp\u002Fclient","MCP Client 开发","MCP Client 开发指南：连接、调用、集成",{"path":77,"title":78,"description":79},"\u002Fai\u002Fmcp\u002Fdebugging","MCP 调试与排错","MCP Server 开发与集成过程中的常见问题、日志分析、诊断工具",{"path":81,"title":82,"description":83},"\u002Fai\u002Fmcp\u002Fintroduction","MCP 概述","Model Context Protocol 协议概述：架构、核心概念、应用场景",{"path":85,"title":86,"description":87},"\u002Fai\u002Fmcp\u002Fserver","MCP Server 开发","MCP Server 开发指南：资源、工具、提示词的实现",{"path":89,"title":90,"description":91},"\u002Fai\u002Fmcp\u002Ftools","MCP Tools 深入","深入理解 MCP Tools：与 Resources\u002FPrompts 的差异、Schema 设计、Annotations 与权限控制",{"path":93,"title":94,"description":95},"\u002Fai\u002Fprompt\u002Fadvanced","高级 Prompt 模式","高级 Prompt 设计模式：Tree-of-Thought、自我反思、多轮对话策略",{"path":97,"title":98,"description":99},"\u002Fai\u002Fprompt\u002Fbasics","Prompt 基础","Prompt Engineering 入门：基本概念、角色设定、输出格式控制",{"path":101,"title":102,"description":103},"\u002Fai\u002Fprompt\u002Ftechniques","提示词技巧","常用提示词技巧：Few-shot、Chain-of-Thought、ReAct",{"path":105,"title":106,"description":107},"\u002Fai\u002Frag\u002Fembedding","文本嵌入","文本嵌入模型：Embedding 原理、模型选择、相似度计算",{"path":109,"title":110,"description":111},"\u002Fai\u002Frag\u002Fintroduction","RAG 概述","检索增强生成（RAG）架构原理、优势与应用场景",{"path":113,"title":114,"description":115},"\u002Fai\u002Frag\u002Fpractice","RAG 实战","RAG 应用实战：文档问答系统、知识库搭建",{"path":117,"title":118,"description":119},"\u002Fai\u002Frag\u002Fvector-database","向量数据库","主流向量数据库对比：Milvus、Pinecone、Chroma、Weaviate",{"path":121,"title":122,"description":123},"\u002Fai\u002Fskills\u002Fbest-practices","Skill 最佳实践","编写高质量 Skill 的设计原则、常见陷阱与优化技巧",{"path":125,"title":126,"description":127},"\u002Fai\u002Fskills\u002Fcreating","创建自定义 Skill","从零编写一个可被 Agent 自动发现和调用的 Skill",{"path":129,"title":130,"description":131},"\u002Fai\u002Fskills\u002Fintroduction","Agent Skills 概述","Claude Agent Skills 概念、工作原理、与 Tools\u002FMCP 的区别",{"path":133,"title":134,"description":135},"\u002Fgolang\u002Fadvanced\u002Fconcurrency","Go - 并发深入","深入理解 Go 并发编程的核心机制。",{"path":137,"title":138,"description":139},"\u002Fgolang\u002Fadvanced\u002Fgc","Go - 垃圾回收","理解 Go 的垃圾回收机制，掌握 GC 调优方法。",{"path":141,"title":142,"description":143},"\u002Fgolang\u002Fadvanced\u002Fgmp","Go - GMP 调度模型","GMP 是 Go 运行时调度器的核心模型，理解它对于编写高性能 Go 程序至关重要。",{"path":145,"title":146,"description":147},"\u002Fgolang\u002Fadvanced\u002Fgo-concurrency","Go - 并发编程","Go 的并发是其核心特性之一，通过 Goroutine 和 Channel 实现。",{"path":149,"title":150,"description":151},"\u002Fgolang\u002Fadvanced\u002Fmemory","Go - 内存模型","理解 Go 的内存分配机制和内存模型。",{"path":153,"title":154,"description":155},"\u002Fgolang\u002Fadvanced\u002Fprofiling","Go - 性能分析","掌握 Go 的性能分析工具：pprof、trace、benchmark。",{"path":157,"title":158,"description":11},"\u002Fgolang\u002Fcore\u002Fgo-basic","Go - 基础语法",{"path":160,"title":161,"description":11},"\u002Fgolang\u002Fcore\u002Fgo-composite","Go - 复合类型",{"path":163,"title":164,"description":11},"\u002Fgolang\u002Fcore\u002Fgo-control","Go - 流程控制",{"path":166,"title":167,"description":168},"\u002Fgolang\u002Fcore\u002Fgo-error","Go - 错误处理","Go 使用显式的错误返回值来处理错误，而不是异常机制。",{"path":170,"title":171,"description":11},"\u002Fgolang\u002Fcore\u002Fgo-function","Go - 函数",{"path":173,"title":174,"description":11},"\u002Fgolang\u002Fcore\u002Fgo-install","Go - 环境搭建",{"path":176,"title":177,"description":11},"\u002Fgolang\u002Fcore\u002Fgo-interface","Go - 接口",{"path":179,"title":180,"description":181},"\u002Fgolang\u002Fcore\u002Fgo-module","Go - 包管理","Go Modules 是 Go 1.11 引入的官方依赖管理方案，Go 1.16 后成为默认模式。",{"path":183,"title":184,"description":185},"\u002Fgolang\u002Fdistributed\u002Fgrpc","Go - gRPC","gRPC 是 Google 开发的高性能 RPC 框架，使用 Protocol Buffers 作为序列化协议。",{"path":187,"title":188,"description":189},"\u002Fgolang\u002Fdistributed\u002Fmicroservice","Go - 微服务","微服务架构的核心组件：服务发现、负载均衡、熔断降级。",{"path":191,"title":192,"description":193},"\u002Fgolang\u002Fdistributed\u002Fmq","Go - 消息队列","使用 Go 操作 Kafka 和 RabbitMQ。",{"path":195,"title":196,"description":197},"\u002Fgolang\u002Fdistributed\u002Fredis","Go - Redis","使用 go-redis 操作 Redis，实现缓存、分布式锁等功能。",{"path":199,"title":200,"description":201},"\u002Fgolang\u002Fengineering\u002Fconfig","Go - 配置管理","使用 viper 进行配置管理，支持多种配置格式和配置中心。",{"path":203,"title":204,"description":205},"\u002Fgolang\u002Fengineering\u002Fdocker","Go - Docker 部署","使用 Docker 容器化部署 Go 应用。",{"path":207,"title":208,"description":209},"\u002Fgolang\u002Fengineering\u002Fkubernetes","Go - Kubernetes 部署","在 Kubernetes 上部署和管理 Go 应用。",{"path":211,"title":212,"description":213},"\u002Fgolang\u002Fengineering\u002Flogging","Go - 日志系统","使用 zap 和 logrus 构建高性能结构化日志系统。",{"path":215,"title":216,"description":217},"\u002Fgolang\u002Fengineering\u002Ftesting","Go - 单元测试","Go 内置了强大的测试框架，掌握测试是编写高质量代码的基础。",{"path":219,"title":220,"description":221},"\u002Fgolang\u002Fstdlib\u002Fbufio","bufio","在 Go 语言中，bufio 包提供了带缓冲的 I\u002FO 操作，能够提高读写性能。以下是一些常用的 bufio 包 API 及其详细说明：",{"path":223,"title":224,"description":225},"\u002Fgolang\u002Fstdlib\u002Fcontainer","container","在Go语言标准库中，container 包提供了几种常用的数据结构实现，这些数据结构对于高效地管理和操作数据非常有用。以下是 container 包中主要的数据结构：",{"path":227,"title":228,"description":229},"\u002Fgolang\u002Fstdlib\u002Fcrypto","crypto","在 Go 语言中，crypto 包提供了一组用于加密和解密的功能。以下是一些常用的 crypto 包及其子包的 API 及其详细说明：",{"path":231,"title":232,"description":233},"\u002Fgolang\u002Fstdlib\u002Fencoding-csv","encoding\u002Fcsv","在 Go 语言中，encoding\u002Fcsv 包提供了对 CSV（逗号分隔值）文件进行读写的功能。以下是一些常用的 encoding\u002Fcsv 包的 API 及其详细说明：",{"path":235,"title":236,"description":237},"\u002Fgolang\u002Fstdlib\u002Fencoding-json","encoding\u002Fjson","在 Go 语言中，encoding\u002Fjson 包提供了对 JSON 数据进行编码和解码的功能。以下是一些常用的 encoding\u002Fjson 包的 API 及其详细说明：",{"path":239,"title":240,"description":241},"\u002Fgolang\u002Fstdlib\u002Fencoding-xml","encoding\u002Fxml","在 Go 语言中，encoding\u002Fxml 包提供了对 XML 数据进行编码和解码的功能。以下是一些常用的 encoding\u002Fxml 包的 API 及其详细说明：",{"path":243,"title":244,"description":245},"\u002Fgolang\u002Fstdlib\u002Fflag","flag","在Go语言中，flag 包是用于处理命令行参数的标准库，它提供了一种简单而直接的方式来解析和使用命令行参数。下面是关于 flag 包的一些基本介绍和常用功能：",{"path":247,"title":248,"description":249},"\u002Fgolang\u002Fstdlib\u002Ffmt","fmt","在 Go 语言的标准库中，fmt 包是非常重要的，它提供了处理格式化输入和输出的基本工具。以下是一些 fmt 包内常用的API：",{"path":251,"title":252,"description":253},"\u002Fgolang\u002Fstdlib\u002Fhttp","net\u002Fhttp","在 Go 语言中，net\u002Fhttp 包提供了用于构建 HTTP 客户端和服务器的强大工具。以下是一些常用的 net\u002Fhttp 包的 API 及其详细说明：",{"path":255,"title":256,"description":257},"\u002Fgolang\u002Fstdlib\u002Fio","io","在 Go 语言中，io 包提供了基本的输入输出功能。以下是一些常用的 io 包的 API 及其详细说明：",{"path":259,"title":260,"description":261},"\u002Fgolang\u002Fstdlib\u002Flog","log","在 Go 语言中，log 包提供了简单的日志记录功能。以下是一些常用的 log 包的 API 及其详细说明：",{"path":263,"title":264,"description":265},"\u002Fgolang\u002Fstdlib\u002Fmath","math","在 Go 语言中，math 包提供了基本的数学函数和常量。以下是一些常用的 math 包的 API 及其详细说明：",{"path":267,"title":268,"description":11},"\u002Fgolang\u002Fstdlib\u002Fnet","net",{"path":270,"title":271,"description":272},"\u002Fgolang\u002Fstdlib\u002Fos","os","在Go语言中，os 包是一个非常重要且常用的标准库，它提供了与操作系统交互的功能，包括文件操作、环境变量管理、进程管理等。下面是一些 os 包中常用的功能和API：",{"path":274,"title":275,"description":276},"\u002Fgolang\u002Fstdlib\u002Fsort","order","在 Go 语言中，sort 包提供了对切片和用户定义的集合进行排序的函数。它实现了常见的排序算法，如快速排序（Quicksort）和堆排序（Heapsort），并且为自定义集合提供了接口，使得用户可以根据特定的需求进行排序。",{"path":278,"title":279,"description":280},"\u002Fgolang\u002Fstdlib\u002Fstrconv","strconv","在 Go 语言中，strconv 包提供了字符串和基本数据类型之间的转换函数，例如将整数转换为字符串、字符串转换为整数，以及其他类型之间的转换。这些功能非常有用，特别是在处理用户输入或从外部数据源读取数据时。",{"path":282,"title":283,"description":284},"\u002Fgolang\u002Fstdlib\u002Ftime","time","在 Go 语言中，time 包提供了处理时间和日期的功能。以下是一些常用的 time 包的 API 及其详细说明：",{"path":286,"title":287,"description":11},"\u002Fgolang\u002Fweb\u002Fgin\u002Ferror","Gin - 错误处理",{"path":289,"title":290,"description":11},"\u002Fgolang\u002Fweb\u002Fgin\u002Ffile","Gin - 文件处理",{"path":292,"title":293,"description":11},"\u002Fgolang\u002Fweb\u002Fgin\u002Fmiddleware","Gin - 中间件",{"path":295,"title":296,"description":297},"\u002Fgolang\u002Fweb\u002Fgin\u002Fquickstart","Gin - 快速开始","Gin 是目前最流行的 Go Web 框架，以高性能和简洁 API 著称。",{"path":299,"title":300,"description":11},"\u002Fgolang\u002Fweb\u002Fgin\u002Frequest","Gin - 请求处理",{"path":302,"title":303,"description":11},"\u002Fgolang\u002Fweb\u002Fgin\u002Fresponse","Gin - 响应处理",{"path":305,"title":306,"description":11},"\u002Fgolang\u002Fweb\u002Fgin\u002Frouter","Gin - 路由",{"path":308,"title":309,"description":11},"\u002Fgolang\u002Fweb\u002Fgin\u002Fvalidation","Gin - 参数校验",{"path":311,"title":312,"description":11},"\u002Fgolang\u002Fweb\u002Fgorm\u002Fassociation","GORM - 关联关系",{"path":314,"title":315,"description":11},"\u002Fgolang\u002Fweb\u002Fgorm\u002Fcrud","GORM - CRUD 操作",{"path":317,"title":318,"description":11},"\u002Fgolang\u002Fweb\u002Fgorm\u002Fmodel","GORM - 模型定义",{"path":320,"title":321,"description":11},"\u002Fgolang\u002Fweb\u002Fgorm\u002Fperformance","GORM - 日志与性能",{"path":323,"title":324,"description":11},"\u002Fgolang\u002Fweb\u002Fgorm\u002Fquery","GORM - 高级查询",{"path":326,"title":327,"description":328},"\u002Fgolang\u002Fweb\u002Fgorm\u002Fquickstart","GORM - 快速开始","GORM 是 Go 语言最流行的 ORM 库，功能强大，使用简单。",{"path":330,"title":331,"description":11},"\u002Fgolang\u002Fweb\u002Fgorm\u002Ftransaction","GORM - 事务与 Hook",{"path":333,"title":334,"description":335},"\u002Finterview\u002Fbasic","计算机基础面经","本章节汇总了面试中常见的通用技术概念，不局限于特定语言或数据库，是考察技术内功的关键考点。",{"path":337,"title":338,"description":339},"\u002Finterview\u002Fgolang","Golang 面试题","Go 语言面试高频考点，覆盖基础语法、数据结构、并发编程、内存管理、GC、调度器等核心知识。",{"path":341,"title":342,"description":343},"\u002Finterview\u002Fk8s","Kubernetes 面试题","Kubernetes（K8s）面试高频考点，覆盖架构原理、核心资源、网络存储、调度策略、运维监控等核心知识。",{"path":345,"title":346,"description":347},"\u002Finterview\u002Fmysql","MySQL 面试题","MySQL 数据库面试高频考点，覆盖索引、事务、锁、优化、主从复制等核心知识。",{"path":349,"title":350,"description":351},"\u002Finterview\u002Fredis","Redis 面试题","Redis 面试高频考点，覆盖数据结构、持久化、集群、缓存一致性、性能优化等核心知识。",{"path":353,"title":354,"description":355},"\u002Finterview\u002Frocketmq","RocketMQ 面试题","RocketMQ 面试高频考点，覆盖消息模型、可靠性、顺序消息、事务消息、存储与高可用等核心知识。",{"path":357,"title":358,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Flist-arraylist","List - ArrayList 源码解析",{"path":360,"title":361,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Flist-linkedlist","List - LinkedList 源码解析",{"path":363,"title":364,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Flist-stack","List - Satck源码解析",{"path":366,"title":367,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Flist-vectore","List - Vector 源码解析",{"path":369,"title":370,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Fmap-hashmap","Map - HashMap 源码解析",{"path":372,"title":373,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Fmap-linkedhashmap","Map - LinkedHashMap 源码解析",{"path":375,"title":376,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Fmap-treemap","Map - TreeMap 源码解析",{"path":378,"title":379,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Fqueue-deque","Queue - Deque 接口解析",{"path":381,"title":382,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Fqueue-queue","Queue - Queue 接口解析",{"path":384,"title":385,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Fset-hashset","Set - HashSet源码解析",{"path":387,"title":388,"description":11},"\u002Fother\u002Fjava\u002Fcollection\u002Fset-linkedhashset","Set - LinkedHashSet 源码解析",{"path":390,"title":391,"description":392},"\u002Fother\u002Fjava\u002Fcollection\u002Fset-treeset","Set - TreeSet源码解析","TreeSet 是一个 Set 集合接口的实现类，与 HashSet 类似，其底层也是通过维护了一个 TreeMap 对象来封装了一些实现方法，故本篇不再对 TreeSet 的底层原理进行详细说明，仅对常用 API 做简单介绍，如需了解 TreeMap 的底层实现原理，请移步 Map - HashMap 源码解析",{"path":394,"title":395,"description":11},"\u002Fother\u002Fjava\u002Fcore\u002Fannotation","Java核心 - 注解",{"path":397,"title":398,"description":11},"\u002Fother\u002Fjava\u002Fcore\u002Fbasic-grammar","Java核心 - 基础语法",{"path":400,"title":401,"description":11},"\u002Fother\u002Fjava\u002Fcore\u002Fclass-and-object","Java核心 - 面向对象",{"path":403,"title":404,"description":11},"\u002Fother\u002Fjava\u002Fcore\u002Fcommon-classes","Java核心 - 常用类",{"path":406,"title":407,"description":11},"\u002Fother\u002Fjava\u002Fcore\u002Fexception","Java核心 - 异常处理",{"path":409,"title":410,"description":11},"\u002Fother\u002Fjava\u002Fcore\u002Fgenerics","Java核心 - 泛型",{"path":412,"title":413,"description":11},"\u002Fother\u002Fjava\u002Fcore\u002Fjdk-env-path","Java核心 - 环境搭建",{"path":415,"title":416,"description":11},"\u002Fother\u002Fjava\u002Fcore\u002Freflection","Java核心 - 反射",{"path":418,"title":419,"description":11},"\u002Fother\u002Fjava\u002Fcore\u002Fstring","Java核心 - String 字符串",{"path":421,"title":422,"description":423},"\u002Fother\u002Fjava\u002Fio\u002Fbuffer-stream","Java IO - 缓冲流","缓冲流是对基本流的包装，通过内置缓冲区减少系统调用次数，大幅提升读写效率。",{"path":425,"title":426,"description":427},"\u002Fother\u002Fjava\u002Fio\u002Fbyte-stream","Java IO - 字节流","字节流是 Java IO 中最基本的流类型，以字节（byte）为单位进行数据读写，可以处理任意类型的文件。",{"path":429,"title":430,"description":431},"\u002Fother\u002Fjava\u002Fio\u002Fchar-stream","Java IO - 字符流","字符流以字符为单位进行读写，专门用于处理文本文件。相比字节流，字符流能够正确处理字符编码，避免中文乱码问题。",{"path":433,"title":434,"description":11},"\u002Fother\u002Fjava\u002Fio\u002Ffile","Java IO - File 类",{"path":436,"title":437,"description":11},"\u002Fother\u002Fjava\u002Fio\u002Fio-stream-system","Java IO - IO流概述",{"path":439,"title":440,"description":441},"\u002Fother\u002Fjava\u002Fio\u002Fnio","Java IO - NIO","NIO（New IO）是 JDK 1.4 引入的新 IO 模型，提供了更高效的 IO 操作方式，支持非阻塞 IO 和多路复用。",{"path":443,"title":444,"description":445},"\u002Fother\u002Fjava\u002Fjvm\u002Fclass-loading","类加载机制","类加载机制是 JVM 将 .class 文件加载到内存，并对数据进行校验、转换解析和初始化，最终形成可被 JVM 直接使用的 Java 类型的过程。",{"path":447,"title":448,"description":449},"\u002Fother\u002Fjava\u002Fjvm\u002Fgarbage-collection","垃圾回收","垃圾回收（Garbage Collection，GC）是 JVM 自动管理内存的机制，负责回收不再使用的对象所占用的内存。",{"path":451,"title":452,"description":453},"\u002Fother\u002Fjava\u002Fjvm\u002Fjvm-memory","JVM 内存结构","JVM 在执行 Java 程序时，会把它管理的内存划分为若干个不同的数据区域。这些区域有各自的用途、创建和销毁时间。",{"path":455,"title":456,"description":457},"\u002Fother\u002Fjava\u002Fjvm\u002Fjvm-tuning","JVM 调优","JVM 调优是优化 Java 应用性能的重要手段，主要包括参数配置、性能监控和问题排查。",{"path":459,"title":460,"description":461},"\u002Fother\u002Fjava\u002Fthread\u002Fatomic","原子类","Java 原子类（Atomic Classes）提供了一种无锁的线程安全方式，基于 CAS（Compare-And-Swap）操作实现。",{"path":463,"title":464,"description":465},"\u002Fother\u002Fjava\u002Fthread\u002Fcompletable-future","CompletableFuture","CompletableFuture 是 JDK 8 引入的异步编程工具，实现了 Future 和 CompletionStage 接口，支持函数式编程和链式调用。",{"path":467,"title":468,"description":469},"\u002Fother\u002Fjava\u002Fthread\u002Fconcurrent-collections","并发集合","Java 并发包提供了多种线程安全的集合类，用于替代传统的同步集合（如 Collections.synchronizedList）。",{"path":471,"title":472,"description":473},"\u002Fother\u002Fjava\u002Fthread\u002Fconcurrent-utils","并发工具类","Java 并发包提供了多种实用的并发工具类，用于控制线程之间的协调与同步。",{"path":475,"title":476,"description":11},"\u002Fother\u002Fjava\u002Fthread\u002Fsynchronized-lock","同步机制",{"path":478,"title":479,"description":11},"\u002Fother\u002Fjava\u002Fthread\u002Fthread-basic","线程基础",{"path":481,"title":482,"description":11},"\u002Fother\u002Fjava\u002Fthread\u002Fthread-pool","线程池",{"path":484,"title":485,"description":486},"\u002Fother\u002Fspring-series\u002Fspring\u002Fannotations-beans","Spring - 基于注解管理Bean","从 Java 5 开始，Java 增加了对注解（Annotation）的支持，它是代码中的一种特殊标记，可以在编译、类加载和运行时被读取，执行相应的处理。开发人员可以通过注解在不改变原有代码和逻辑的情况下，在源代码中嵌入补充信息。",{"path":488,"title":489,"description":490},"\u002Fother\u002Fspring-series\u002Fspring\u002Fimplement-ioc","Spring - 原理手写IoC","Spring 框架的 IOC 是基于 Java 反射机制实现的，在学习手写 IoC 之前，你需要具备一定的 Java 反射相关的知识，参考本站内的 Java 教程。",{"path":492,"title":493,"description":11},"\u002Fother\u002Fspring-series\u002Fspring\u002Fintroduction-case","Spring - 入门案例",{"path":495,"title":496,"description":11},"\u002Fother\u002Fspring-series\u002Fspring\u002Fspring-aop","Spring - 面向切面AOP",{"path":498,"title":499,"description":11},"\u002Fother\u002Fspring-series\u002Fspring\u002Fspring-aot","Spring - AOT提前编译",{"path":501,"title":502,"description":503},"\u002Fother\u002Fspring-series\u002Fspring\u002Fspring-data-validation","Spring - 数据校验","在开发中，我们经常遇到参数校验的需求，比如用户注册的时候，要校验用户名不能为空、用户名长度不超过20个字符、手机号是合法的手机号格式等等。如果使用普通方式，我们会把校验的代码和真正的业务处理逻辑耦合在一起，而且如果未来要新增一种校验逻辑也需要在修改多个地方。而spring validation允许通过注解的方式来定义对象校验规则，把校验和业务逻辑分离开，让代码编写更加方便。Spring Validation其实就是对Hibernate Validator进一步的封装，方便在Spring中使用。",{"path":505,"title":506,"description":11},"\u002Fother\u002Fspring-series\u002Fspring\u002Fspring-i18n","Spring - 国际化i18n",{"path":508,"title":509,"description":510},"\u002Fother\u002Fspring-series\u002Fspring\u002Fspring-ioc","Spring - IOC容器","IoC 是 Inversion of Control 的简写，译为“控制反转”，它不是一门技术，而是一种设计思想，是一个重要的面向对象编程法则，能够指导我们如何设计出松耦合、更优良的程序。",{"path":512,"title":513,"description":514},"\u002Fother\u002Fspring-series\u002Fspring\u002Fspring-junit","Spring - 单元测试JUnit","在之前的测试方法中，几乎都能看到以下的两行代码：",{"path":516,"title":517,"description":11},"\u002Fother\u002Fspring-series\u002Fspring\u002Fspring-resources","Spring - 资源操作",{"path":519,"title":520,"description":11},"\u002Fother\u002Fspring-series\u002Fspring\u002Fspring-summarize","Spring - Spring概述",{"path":522,"title":523,"description":11},"\u002Fother\u002Fspring-series\u002Fspring\u002Fspring-transaction","Spring - 事务",{"path":525,"title":526,"description":11},"\u002Fother\u002Fspring-series\u002Fspring\u002Fxml-beans","Spring - 基于XML管理Bean",{"path":528,"title":529,"description":11},"\u002Fother\u002Fspring-series\u002Fspringboot\u002Fspringboot-config","SpringBoot - 配置详解",{"path":531,"title":532,"description":11},"\u002Fother\u002Fspring-series\u002Fspringboot\u002Fspringboot-data","SpringBoot - 数据访问",{"path":534,"title":535,"description":11},"\u002Fother\u002Fspring-series\u002Fspringboot\u002Fspringboot-quickstart","SpringBoot - 快速入门",{"path":537,"title":538,"description":11},"\u002Fother\u002Fspring-series\u002Fspringboot\u002Fspringboot-web","SpringBoot - Web 开发",{"path":540,"title":541,"description":11},"\u002Fother\u002Fspring-series\u002Fspringcloud\u002Fspringcloud-config","SpringCloud - 配置中心",{"path":543,"title":544,"description":11},"\u002Fother\u002Fspring-series\u002Fspringcloud\u002Fspringcloud-discovery","SpringCloud - 服务注册与发现",{"path":546,"title":547,"description":11},"\u002Fother\u002Fspring-series\u002Fspringcloud\u002Fspringcloud-feign","SpringCloud - 服务调用",{"path":549,"title":550,"description":11},"\u002Fother\u002Fspring-series\u002Fspringcloud\u002Fspringcloud-gateway","SpringCloud - 服务网关",{"path":552,"title":553,"description":11},"\u002Fother\u002Fspring-series\u002Fspringcloud\u002Fspringcloud-introduction","SpringCloud - 微服务概述",{"path":555,"title":556,"description":11},"\u002Fother\u002Fspring-series\u002Fspringcloud\u002Fspringcloud-sentinel","SpringCloud - 服务保护",{"path":558,"title":559,"description":11},"\u002Fother\u002Fspring-series\u002Fspringmvc\u002Fspringmvc-databind","SpringMVC - 数据绑定与转换",{"path":561,"title":562,"description":11},"\u002Fother\u002Fspring-series\u002Fspringmvc\u002Fspringmvc-exception","SpringMVC - 异常处理",{"path":564,"title":565,"description":11},"\u002Fother\u002Fspring-series\u002Fspringmvc\u002Fspringmvc-interceptor","SpringMVC - 拦截器",{"path":567,"title":568,"description":11},"\u002Fother\u002Fspring-series\u002Fspringmvc\u002Fspringmvc-introduction","SpringMVC - 简介与环境搭建",{"path":570,"title":571,"description":11},"\u002Fother\u002Fspring-series\u002Fspringmvc\u002Fspringmvc-request","SpringMVC - 请求处理",{"path":573,"title":574,"description":11},"\u002Fother\u002Fspring-series\u002Fspringmvc\u002Fspringmvc-response","SpringMVC - 响应处理",{"path":576,"title":577,"description":578},"\u002Fproject\u002Frocket-leaf\u002Farchitecture","项目架构","Rocket-Leaf 的目录结构、模块划分、数据流向，以及各层之间的依赖关系。",{"path":580,"title":581,"description":582},"\u002Fproject\u002Frocket-leaf\u002Fbackend-layers","后端分层设计","Rocket-Leaf 的 model \u002F rocketmq \u002F service 三层结构，以及服务之间的依赖关系与设计取舍。",{"path":584,"title":585,"description":586},"\u002Fproject\u002Frocket-leaf\u002Fclient-manager","RocketMQ 客户端管理器","AdminClientManager 的多客户端池、默认连接懒加载、自动重连重试的设计与实现。",{"path":588,"title":589,"description":590},"\u002Fproject\u002Frocket-leaf\u002Fencryption","连接信息加密存储","AES-256-GCM + SHA-256 字段级派生密钥的实现，以及如何在不破坏兼容性的前提下为历史明文数据做透明迁移。",{"path":592,"title":593,"description":594},"\u002Fproject\u002Frocket-leaf\u002Ffrontend","前端结构与类型绑定","React + Vite 目录组织、自动生成的 Wails 绑定、api 薄封装与自定义 hooks 的职责划分。",{"path":596,"title":597,"description":598},"\u002Fproject\u002Frocket-leaf","项目简介","Rocket-Leaf 是一款基于 Wails v3 构建的跨平台 RocketMQ 桌面管理客户端，Go 后端 + React 前端。本文档系列拆解它的架构与关键实现。",{"path":600,"title":601,"description":602},"\u002Fproject\u002Frocket-leaf\u002Fwails-v3","Wails v3 入门","Wails v3 的核心概念、Service 绑定机制，以及 Rocket-Leaf 是如何用它把 Go 后端和 React 前端打通的。",{"path":604,"title":605,"description":11},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-basic","Docker - 入门基础",{"path":607,"title":608,"description":609},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-compose","Docker - Compose","在部署应用时，常常使用到不止一个容器，那么在部署容器的时候就需要一个一个进行部署，这样的部署过程也相对来说比较繁琐复杂，也容易出问题，那么有没有一种更为简单的方法呢？",{"path":611,"title":612,"description":613},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-container-connection","Docker - 容器互联","在上一个章节中我们学习了 Docker 容器的端口映射，可以将 Docker 容器和本地以及网络中的端口进行连接起来。",{"path":615,"title":616,"description":11},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-dockerfile","Docker - Dockerfile",{"path":618,"title":619,"description":11},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-helloworld","Docker - HelloWorld",{"path":621,"title":622,"description":11},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-install","Docker - 安装",{"path":624,"title":625,"description":11},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-introduce","Docker - 简介",{"path":627,"title":628,"description":11},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-object","Docker - 镜像、容器、仓库",{"path":630,"title":631,"description":632},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-warehouse","Docker - 仓库管理","仓库是集中存放资源的地方，代码仓库是存放代码的，那么Docker 中的仓库就是存放 Docker 镜像的。",{"path":634,"title":635,"description":636},"\u002Ftutorials\u002Fcloud\u002Fdocker\u002Fdocker-web-containers","Docker - WEB应用实例","在之前的章节中，仅对普通容器进行了演示，但在实际中常常使用到 Docker 容器中的 WEB 应用程序。",{"path":638,"title":639,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-config","Kubernetes - ConfigMap 与 Secret",{"path":641,"title":642,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-helm","Kubernetes - Helm 包管理",{"path":644,"title":645,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-install","Kubernetes - 集群安装",{"path":647,"title":648,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-introduction","Kubernetes - 简介与架构",{"path":650,"title":651,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-kubectl","Kubernetes - kubectl 命令行工具",{"path":653,"title":654,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-monitoring","Kubernetes - 监控与日志",{"path":656,"title":657,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-network-security","Kubernetes - 网络与安全",{"path":659,"title":660,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-service","Kubernetes - Service 与 Ingress",{"path":662,"title":663,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-storage","Kubernetes - 持久化存储",{"path":665,"title":666,"description":11},"\u002Ftutorials\u002Fcloud\u002Fkubernetes\u002Fk8s-workload","Kubernetes - 工作负载资源",{"path":668,"title":669,"description":11},"\u002Ftutorials\u002Fcloud\u002Flinux\u002Flinux-bash","Linux - Bash 基础语法",{"path":671,"title":672,"description":11},"\u002Ftutorials\u002Fcloud\u002Flinux\u002Flinux-file-directory","Linux - 文件与目录操作",{"path":674,"title":675,"description":11},"\u002Ftutorials\u002Fcloud\u002Flinux\u002Flinux-network","Linux - 网络配置",{"path":677,"title":678,"description":11},"\u002Ftutorials\u002Fcloud\u002Flinux\u002Flinux-package","Linux - 软件包管理",{"path":680,"title":681,"description":11},"\u002Ftutorials\u002Fcloud\u002Flinux\u002Flinux-process","Linux - 进程管理",{"path":683,"title":684,"description":11},"\u002Ftutorials\u002Fcloud\u002Flinux\u002Flinux-scripts","Linux - 常用脚本示例",{"path":686,"title":687,"description":11},"\u002Ftutorials\u002Fcloud\u002Flinux\u002Flinux-service","Linux - 服务管理",{"path":689,"title":690,"description":11},"\u002Ftutorials\u002Fcloud\u002Flinux\u002Flinux-user-permission","Linux - 用户与权限管理",{"path":692,"title":693,"description":11},"\u002Ftutorials\u002Fcloud\u002Fnginx\u002Fnginx-https","Nginx - HTTPS 配置",{"path":695,"title":696,"description":11},"\u002Ftutorials\u002Fcloud\u002Fnginx\u002Fnginx-install","Nginx - 安装与配置",{"path":698,"title":699,"description":11},"\u002Ftutorials\u002Fcloud\u002Fnginx\u002Fnginx-loadbalance","Nginx - 负载均衡",{"path":701,"title":702,"description":11},"\u002Ftutorials\u002Fcloud\u002Fnginx\u002Fnginx-optimization","Nginx - 性能优化",{"path":704,"title":705,"description":11},"\u002Ftutorials\u002Fcloud\u002Fnginx\u002Fnginx-proxy","Nginx - 反向代理",{"path":707,"title":708,"description":11},"\u002Ftutorials\u002Fcloud\u002Fnginx\u002Fnginx-static","Nginx - 静态资源服务",{"path":710,"title":711,"description":11},"\u002Ftutorials\u002Fcloud\u002Fnginx\u002Fnginx-vhost","Nginx - 虚拟主机配置",{"path":713,"title":714,"description":715},"\u002Ftutorials\u002Fdatabase\u002Fmysql\u002Fmysql-architecture","MySQL 高可用架构","主从复制、读写分离、分库分表。",{"path":717,"title":718,"description":719},"\u002Ftutorials\u002Fdatabase\u002Fmysql\u002Fmysql-index","MySQL 索引","索引是帮助 MySQL 高效获取数据的有序数据结构。",{"path":721,"title":722,"description":723},"\u002Ftutorials\u002Fdatabase\u002Fmysql\u002Fmysql-lock","MySQL 锁","锁用于解决并发访问时的数据一致性问题。",{"path":725,"title":726,"description":727},"\u002Ftutorials\u002Fdatabase\u002Fmysql\u002Fmysql-optimize","MySQL 性能优化","SQL 优化是后端开发必备技能。",{"path":729,"title":730,"description":731},"\u002Ftutorials\u002Fdatabase\u002Fmysql\u002Fmysql-transaction","MySQL 事务","事务是一组不可分割的操作，要么全部成功，要么全部失败。",{"path":733,"title":734,"description":735},"\u002Ftutorials\u002Fdatabase\u002Fmysql\u002Fsql-advanced","SQL 进阶","多表查询、子查询、函数、视图、存储过程。",{"path":737,"title":738,"description":739},"\u002Ftutorials\u002Fdatabase\u002Fmysql\u002Fsql-basic","SQL 基础","SQL（Structured Query Language）是操作关系型数据库的标准语言。",{"path":741,"title":742,"description":743},"\u002Ftutorials\u002Fdatabase\u002Fredis\u002Fredis-advanced","Redis 进阶功能","事务、发布订阅、Lua 脚本、Pipeline。",{"path":745,"title":746,"description":747},"\u002Ftutorials\u002Fdatabase\u002Fredis\u002Fredis-basic","Redis 基础","Redis 安装配置与基本命令。",{"path":749,"title":750,"description":751},"\u002Ftutorials\u002Fdatabase\u002Fredis\u002Fredis-cluster","Redis 高可用","主从复制、哨兵、Cluster 集群。",{"path":753,"title":754,"description":755},"\u002Ftutorials\u002Fdatabase\u002Fredis\u002Fredis-datatype","Redis 数据类型","Redis 5 种基本数据类型 + 4 种特殊类型。",{"path":757,"title":758,"description":759},"\u002Ftutorials\u002Fdatabase\u002Fredis\u002Fredis-optimize","Redis 性能优化","内存优化、缓存问题、最佳实践。",{"path":761,"title":762,"description":763},"\u002Ftutorials\u002Fdatabase\u002Fredis\u002Fredis-persistence","Redis 持久化","Redis 提供 RDB 和 AOF 两种持久化方式。",{"path":765,"title":766,"description":767},"\u002Ftutorials\u002Fdatabase\u002Fredis\u002Fredis-principle","Redis 底层原理","数据结构、线程模型、网络模型。",{"path":769,"title":770,"description":771},"\u002Ftutorials\u002Fdev-idea\u002Fdesign-patterns\u002Fbehaiver-patterns\u002Fobserver-pattern","观察者模式","观察者模式属于行为型模式，定义了对象之间的一对多的依赖关系，在这种模式中，当一个对象的状态发生变化时，所有依赖于它的对象都会得到通知，并且执行相关操作。观察者模式又被成为“发布—订阅模式”，即发布者发生改变后，会通知所有订阅者。",{"path":773,"title":774,"description":11},"\u002Ftutorials\u002Fdev-idea\u002Fdesign-patterns\u002Fcreate-patterns\u002Ffactory-pattern","工厂模式",{"path":776,"title":777,"description":778},"\u002Ftutorials\u002Fdev-idea\u002Fdesign-patterns\u002Fcreate-patterns\u002Fsingleton-pattern","单例模式","单例模式是最常用的设计模式之一，他可以保证在整个应用中，某个类只存在一个实例化对象，即全局使用到该类的只有一个对象，这种模式在需要限制某些类的实例数量时非常有用，通常全局只需要一个该对象即可，如一些配置文件映射对象、数据库连接对象等。",{"path":780,"title":781,"description":782},"\u002Ftutorials\u002Fdev-idea\u002Fdesign-patterns\u002Fstructural-patterns\u002Fadapter-pattern","适配器模式","适配器模式是一种结构型模式，可以将一个类的接口转换成客户端所期望的另一种接口，适配器模式可以帮助开发人员在不修改现有代码的情况下，将不兼容的类组合在一起。",{"path":784,"title":785,"description":786},"\u002Ftutorials\u002Fdev-tools\u002Fgit\u002Fgit-basic-operations","Git 创建版本库","在 Git 上创建版本库有两种方式，一种是直接拷贝远程 Git 仓库到本地，另外一种是我们自己创建本地的版本库。",{"path":788,"title":789,"description":11},"\u002Ftutorials\u002Fdev-tools\u002Fgit\u002Fgit-branch-manage","Git 分支管理",{"path":791,"title":792,"description":11},"\u002Ftutorials\u002Fdev-tools\u002Fgit\u002Fgit-content-operations","Git 仓库内容操作",{"path":794,"title":795,"description":11},"\u002Ftutorials\u002Fdev-tools\u002Fgit\u002Fgit-introduce-install","Git 介绍和安装",{"path":797,"title":798,"description":11},"\u002Ftutorials\u002Fdev-tools\u002Fgit\u002Fgit-remote-manage","Git 远程管理",{"path":800,"title":801,"description":11},"\u002Ftutorials\u002Fdev-tools\u002Fgit\u002Fgit-workspace-index-repo","Git 工作原理",{"path":803,"title":804,"description":11},"\u002Ftutorials\u002Fdev-tools\u002Fhomebrew","HomeBrew 教程",{"path":806,"title":807,"description":11},"\u002Ftutorials\u002Fdev-tools\u002Fidea\u002Fshortcuts","快捷键",{"path":809,"title":810,"description":11},"\u002Ftutorials\u002Fdev-tools\u002Fmaven\u002Fintroduce-install-config","Maven - 介绍、安装、配置",{"path":812,"title":813,"description":11},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Fbasic-knowledge","2. 基础知识",{"path":815,"title":816,"description":817},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Fcomponent-communication","9. 组件通信","在前面的章节内，介绍了 Vue 中最核心的内容——组件的介绍和使用，和 Java 等编程语言相反，组件并不近似于这些变成语言中的类，类可以通过类或者其实例化的对象来相互交互，但 Vue 组件之间的作用域是相互独立的，这就意味着不同组件之间的数据无法相互引用。",{"path":819,"title":820,"description":821},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Fcomputed","4. 计算属性","虽然直接在模板中使用表达式方便，但是如果在模板中添加很多逻辑，会让模板变的臃肿且难维护，耦合度较高。有没有一种简单的方式来实现呢？答案是有的。",{"path":823,"title":824,"description":11},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Fcreate-vue-project","1. 环境搭建及安装",{"path":826,"title":827,"description":828},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Flife-cycle","6. 生命周期","生命周期是指组件从创建、挂载、更新到销毁的整个过程中所经历的一系列阶段。在 Vue 中，每个组件都有自己的生命周期，可以通过生命周期钩子函数来监听和处理组件在不同阶段的行为和状态。",{"path":830,"title":831,"description":11},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Fother-api","10. 其他 API",{"path":833,"title":834,"description":11},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Fpinia","8. Pinia",{"path":836,"title":837,"description":11},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Frouter","7. 路由",{"path":839,"title":840,"description":11},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Ftemplate-grammar","3. 指令及模板语法",{"path":842,"title":843,"description":11},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Fvue3-new-component","11. Vue3 新组件",{"path":845,"title":846,"description":847},"\u002Ftutorials\u002Ffront-end\u002Fvue3\u002Fwatch","5. 监视","Watch 是 Vue 提供的一个用于监视响应式数据变化并执行相应操作的 API，能够对响应式数据的变化做出一些操作的功能。Vue3 中的 Watch 支持多种用法，包括监视响应式对象、ref 对象、数组、函数等。",{"path":849,"title":850,"description":11},"\u002Ftutorials\u002Fmq\u002Fkafka\u002Fkafka-introduction","Kafka 简介与安装",{"path":852,"title":853,"description":11},"\u002Ftutorials\u002Fmq\u002Fkafka\u002Fkafka-producer-consumer","Kafka 生产者与消费者",{"path":855,"title":856,"description":857},"\u002Ftutorials\u002Fmq\u002Fkafka\u002Fkafka-springboot","Spring Boot 整合 Kafka","Spring Kafka 提供了对 Apache Kafka 的便捷集成。",{"path":859,"title":860,"description":861},"\u002Ftutorials\u002Fmq\u002Frabbitmq\u002Frabbitmq-exchange","RabbitMQ Exchange 详解","Exchange（交换机）是 RabbitMQ 的核心组件，负责接收生产者发送的消息，并根据规则将消息路由到一个或多个队列。",{"path":863,"title":864,"description":11},"\u002Ftutorials\u002Fmq\u002Frabbitmq\u002Frabbitmq-introduction","RabbitMQ 简介与安装",{"path":866,"title":867,"description":868},"\u002Ftutorials\u002Fmq\u002Frabbitmq\u002Frabbitmq-reliability","RabbitMQ 消息可靠性","消息可靠性是消息队列的核心要求，RabbitMQ 提供了多种机制来保证消息不丢失。",{"path":870,"title":871,"description":872},"\u002Ftutorials\u002Fmq\u002Frabbitmq\u002Frabbitmq-springboot","Spring Boot 整合 RabbitMQ","Spring AMQP 提供了对 RabbitMQ 的便捷集成，大大简化了开发工作。",{"path":874,"title":875,"description":11},"\u002Ftutorials\u002Fmq\u002Frocketmq\u002Frocketmq-client","RocketMQ 客户端使用",{"path":877,"title":878,"description":11},"\u002Ftutorials\u002Fmq\u002Frocketmq\u002Frocketmq-concepts","RocketMQ 核心概念",{"path":880,"title":881,"description":11},"\u002Ftutorials\u002Fmq\u002Frocketmq\u002Frocketmq-installation","RocketMQ 安装部署",{"path":883,"title":884,"description":885},"\u002Ftutorials\u002Fmq\u002Frocketmq\u002Frocketmq-message-type","RocketMQ 消息类型","RocketMQ 支持多种消息类型，满足不同业务场景需求。",{"id":887,"title":589,"body":888,"description":590,"extension":3212,"meta":3213,"navigation":1050,"path":588,"seo":3214,"stem":3215,"__hash__":3216},"docs\u002Fproject\u002Frocket-leaf\u002Fencryption.md",{"type":889,"value":890,"toc":3195},"minimark",[891,895,908,917,920,933,945,948,951,1007,1018,1486,1489,1525,1528,1539,1654,1665,1813,1819,1822,1829,1925,1928,1971,1974,2006,2029,2033,2040,2412,2420,2472,2496,2507,2510,2525,2531,2545,2548,2552,2562,2934,2937,2991,2997,3001,3068,3076,3079,3111,3114,3120,3155,3158,3188,3191],[892,893,894],"h2",{"id":894},"为什么要加密",[896,897,898,899,903,904,907],"p",{},"Rocket-Leaf 把用户的连接配置（含 ",[900,901,902],"code",{},"AccessKey"," \u002F ",[900,905,906],{},"SecretKey","）持久化到本地 JSON 文件：",[909,910,915],"pre",{"className":911,"code":913,"language":914},[912],"language-text","$UserConfigDir\u002Frocket-leaf\u002Fconnections.json\n","text",[900,916,913],{"__ignoreMap":11},[896,918,919],{},"如果裸存明文，会有这些风险：",[921,922,923,927,930],"ul",{},[924,925,926],"li",{},"本地备份\u002F同步工具（如 iCloud、OneDrive）可能无意中把密钥上传",[924,928,929],{},"有人借用电脑时随手翻一下就能看到生产集群凭证",[924,931,932],{},"误把配置文件 commit 进 git（发生过无数次的经典事故）",[896,934,935,936,940,941,944],{},"所以需要在",[937,938,939],"strong",{},"写盘","时加密、在",[937,942,943],{},"读取","时解密，让内存里始终是明文、磁盘上始终是密文。",[892,946,947],{"id":947},"密钥管理",[896,949,950],{},"加密总要有密钥，那密钥放哪儿？三种常见思路：",[952,953,954,970],"table",{},[955,956,957],"thead",{},[958,959,960,964,967],"tr",{},[961,962,963],"th",{},"方案",[961,965,966],{},"优点",[961,968,969],{},"缺点",[971,972,973,985,996],"tbody",{},[958,974,975,979,982],{},[976,977,978],"td",{},"硬编码",[976,980,981],{},"简单",[976,983,984],{},"反编译即可拿到",[958,986,987,990,993],{},[976,988,989],{},"系统 Keychain \u002F Credential Manager",[976,991,992],{},"安全",[976,994,995],{},"跨平台兼容复杂",[958,997,998,1001,1004],{},[976,999,1000],{},"本地密钥文件（权限 0600）",[976,1002,1003],{},"简单 + 跨平台",[976,1005,1006],{},"有本机访问权的人仍可读",[896,1008,1009,1010,1013,1014,1017],{},"Rocket-Leaf 选了",[937,1011,1012],{},"本地密钥文件","方案：用户配置目录下的 ",[900,1015,1016],{},"secret.key"," 保存一个 256 位的随机主密钥，首次运行时生成：",[909,1019,1023],{"className":1020,"code":1021,"language":1022,"meta":11,"style":11},"language-go shiki shiki-themes github-light github-light github-dark","const keyFileName = \"secret.key\"\n\nfunc getOrCreateKey(configDir string) ([]byte, error) {\n    keyPath := filepath.Join(configDir, keyFileName)\n\n    data, err := os.ReadFile(keyPath)\n    if err == nil {\n        decoded, decErr := base64.StdEncoding.DecodeString(strings.TrimSpace(string(data)))\n        if decErr == nil && len(decoded) == 32 {\n            return decoded, nil\n        }\n    }\n\n    \u002F\u002F 生成新密钥\n    key := make([]byte, 32)\n    if _, err := io.ReadFull(rand.Reader, key); err != nil {\n        return nil, fmt.Errorf(\"生成密钥失败: %w\", err)\n    }\n\n    if err := os.MkdirAll(configDir, 0o755); err != nil {\n        return nil, fmt.Errorf(\"创建密钥目录失败: %w\", err)\n    }\n\n    encoded := base64.StdEncoding.EncodeToString(key)\n    if err := os.WriteFile(keyPath, []byte(encoded), 0o600); err != nil {\n        return nil, fmt.Errorf(\"保存密钥失败: %w\", err)\n    }\n    return key, nil\n}\n","go",[900,1024,1025,1045,1052,1088,1106,1111,1128,1146,1174,1203,1215,1221,1227,1232,1239,1263,1289,1317,1322,1327,1359,1381,1386,1391,1407,1442,1464,1469,1480],{"__ignoreMap":11},[1026,1027,1030,1034,1038,1041],"span",{"class":1028,"line":1029},"line",1,[1026,1031,1033],{"class":1032},"s8jYJ","const",[1026,1035,1037],{"class":1036},"sBjJW"," keyFileName",[1026,1039,1040],{"class":1032}," =",[1026,1042,1044],{"class":1043},"sIIMD"," \"secret.key\"\n",[1026,1046,1048],{"class":1028,"line":1047},2,[1026,1049,1051],{"emptyLinePlaceholder":1050},true,"\n",[1026,1053,1055,1058,1062,1066,1070,1073,1076,1079,1082,1085],{"class":1028,"line":1054},3,[1026,1056,1057],{"class":1032},"func",[1026,1059,1061],{"class":1060},"snPdu"," getOrCreateKey",[1026,1063,1065],{"class":1064},"sxrX7","(",[1026,1067,1069],{"class":1068},"sP4rz","configDir",[1026,1071,1072],{"class":1032}," string",[1026,1074,1075],{"class":1064},") ([]",[1026,1077,1078],{"class":1032},"byte",[1026,1080,1081],{"class":1064},", ",[1026,1083,1084],{"class":1032},"error",[1026,1086,1087],{"class":1064},") {\n",[1026,1089,1091,1094,1097,1100,1103],{"class":1028,"line":1090},4,[1026,1092,1093],{"class":1064},"    keyPath ",[1026,1095,1096],{"class":1032},":=",[1026,1098,1099],{"class":1064}," filepath.",[1026,1101,1102],{"class":1060},"Join",[1026,1104,1105],{"class":1064},"(configDir, keyFileName)\n",[1026,1107,1109],{"class":1028,"line":1108},5,[1026,1110,1051],{"emptyLinePlaceholder":1050},[1026,1112,1114,1117,1119,1122,1125],{"class":1028,"line":1113},6,[1026,1115,1116],{"class":1064},"    data, err ",[1026,1118,1096],{"class":1032},[1026,1120,1121],{"class":1064}," os.",[1026,1123,1124],{"class":1060},"ReadFile",[1026,1126,1127],{"class":1064},"(keyPath)\n",[1026,1129,1131,1134,1137,1140,1143],{"class":1028,"line":1130},7,[1026,1132,1133],{"class":1032},"    if",[1026,1135,1136],{"class":1064}," err ",[1026,1138,1139],{"class":1032},"==",[1026,1141,1142],{"class":1036}," nil",[1026,1144,1145],{"class":1064}," {\n",[1026,1147,1149,1152,1154,1157,1160,1163,1166,1168,1171],{"class":1028,"line":1148},8,[1026,1150,1151],{"class":1064},"        decoded, decErr ",[1026,1153,1096],{"class":1032},[1026,1155,1156],{"class":1064}," base64.StdEncoding.",[1026,1158,1159],{"class":1060},"DecodeString",[1026,1161,1162],{"class":1064},"(strings.",[1026,1164,1165],{"class":1060},"TrimSpace",[1026,1167,1065],{"class":1064},[1026,1169,1170],{"class":1032},"string",[1026,1172,1173],{"class":1064},"(data)))\n",[1026,1175,1177,1180,1183,1185,1187,1190,1193,1196,1198,1201],{"class":1028,"line":1176},9,[1026,1178,1179],{"class":1032},"        if",[1026,1181,1182],{"class":1064}," decErr ",[1026,1184,1139],{"class":1032},[1026,1186,1142],{"class":1036},[1026,1188,1189],{"class":1032}," &&",[1026,1191,1192],{"class":1060}," len",[1026,1194,1195],{"class":1064},"(decoded) ",[1026,1197,1139],{"class":1032},[1026,1199,1200],{"class":1036}," 32",[1026,1202,1145],{"class":1064},[1026,1204,1206,1209,1212],{"class":1028,"line":1205},10,[1026,1207,1208],{"class":1032},"            return",[1026,1210,1211],{"class":1064}," decoded, ",[1026,1213,1214],{"class":1036},"nil\n",[1026,1216,1218],{"class":1028,"line":1217},11,[1026,1219,1220],{"class":1064},"        }\n",[1026,1222,1224],{"class":1028,"line":1223},12,[1026,1225,1226],{"class":1064},"    }\n",[1026,1228,1230],{"class":1028,"line":1229},13,[1026,1231,1051],{"emptyLinePlaceholder":1050},[1026,1233,1235],{"class":1028,"line":1234},14,[1026,1236,1238],{"class":1237},"sCsY4","    \u002F\u002F 生成新密钥\n",[1026,1240,1242,1245,1247,1250,1253,1255,1257,1260],{"class":1028,"line":1241},15,[1026,1243,1244],{"class":1064},"    key ",[1026,1246,1096],{"class":1032},[1026,1248,1249],{"class":1060}," make",[1026,1251,1252],{"class":1064},"([]",[1026,1254,1078],{"class":1032},[1026,1256,1081],{"class":1064},[1026,1258,1259],{"class":1036},"32",[1026,1261,1262],{"class":1064},")\n",[1026,1264,1266,1268,1271,1273,1276,1279,1282,1285,1287],{"class":1028,"line":1265},16,[1026,1267,1133],{"class":1032},[1026,1269,1270],{"class":1064}," _, err ",[1026,1272,1096],{"class":1032},[1026,1274,1275],{"class":1064}," io.",[1026,1277,1278],{"class":1060},"ReadFull",[1026,1280,1281],{"class":1064},"(rand.Reader, key); err ",[1026,1283,1284],{"class":1032},"!=",[1026,1286,1142],{"class":1036},[1026,1288,1145],{"class":1064},[1026,1290,1292,1295,1297,1300,1303,1305,1308,1311,1314],{"class":1028,"line":1291},17,[1026,1293,1294],{"class":1032},"        return",[1026,1296,1142],{"class":1036},[1026,1298,1299],{"class":1064},", fmt.",[1026,1301,1302],{"class":1060},"Errorf",[1026,1304,1065],{"class":1064},[1026,1306,1307],{"class":1043},"\"生成密钥失败: ",[1026,1309,1310],{"class":1036},"%w",[1026,1312,1313],{"class":1043},"\"",[1026,1315,1316],{"class":1064},", err)\n",[1026,1318,1320],{"class":1028,"line":1319},18,[1026,1321,1226],{"class":1064},[1026,1323,1325],{"class":1028,"line":1324},19,[1026,1326,1051],{"emptyLinePlaceholder":1050},[1026,1328,1330,1332,1334,1336,1338,1341,1344,1347,1350,1353,1355,1357],{"class":1028,"line":1329},20,[1026,1331,1133],{"class":1032},[1026,1333,1136],{"class":1064},[1026,1335,1096],{"class":1032},[1026,1337,1121],{"class":1064},[1026,1339,1340],{"class":1060},"MkdirAll",[1026,1342,1343],{"class":1064},"(configDir, ",[1026,1345,1346],{"class":1032},"0o",[1026,1348,1349],{"class":1036},"755",[1026,1351,1352],{"class":1064},"); err ",[1026,1354,1284],{"class":1032},[1026,1356,1142],{"class":1036},[1026,1358,1145],{"class":1064},[1026,1360,1362,1364,1366,1368,1370,1372,1375,1377,1379],{"class":1028,"line":1361},21,[1026,1363,1294],{"class":1032},[1026,1365,1142],{"class":1036},[1026,1367,1299],{"class":1064},[1026,1369,1302],{"class":1060},[1026,1371,1065],{"class":1064},[1026,1373,1374],{"class":1043},"\"创建密钥目录失败: ",[1026,1376,1310],{"class":1036},[1026,1378,1313],{"class":1043},[1026,1380,1316],{"class":1064},[1026,1382,1384],{"class":1028,"line":1383},22,[1026,1385,1226],{"class":1064},[1026,1387,1389],{"class":1028,"line":1388},23,[1026,1390,1051],{"emptyLinePlaceholder":1050},[1026,1392,1394,1397,1399,1401,1404],{"class":1028,"line":1393},24,[1026,1395,1396],{"class":1064},"    encoded ",[1026,1398,1096],{"class":1032},[1026,1400,1156],{"class":1064},[1026,1402,1403],{"class":1060},"EncodeToString",[1026,1405,1406],{"class":1064},"(key)\n",[1026,1408,1410,1412,1414,1416,1418,1421,1424,1426,1429,1431,1434,1436,1438,1440],{"class":1028,"line":1409},25,[1026,1411,1133],{"class":1032},[1026,1413,1136],{"class":1064},[1026,1415,1096],{"class":1032},[1026,1417,1121],{"class":1064},[1026,1419,1420],{"class":1060},"WriteFile",[1026,1422,1423],{"class":1064},"(keyPath, []",[1026,1425,1078],{"class":1032},[1026,1427,1428],{"class":1064},"(encoded), ",[1026,1430,1346],{"class":1032},[1026,1432,1433],{"class":1036},"600",[1026,1435,1352],{"class":1064},[1026,1437,1284],{"class":1032},[1026,1439,1142],{"class":1036},[1026,1441,1145],{"class":1064},[1026,1443,1445,1447,1449,1451,1453,1455,1458,1460,1462],{"class":1028,"line":1444},26,[1026,1446,1294],{"class":1032},[1026,1448,1142],{"class":1036},[1026,1450,1299],{"class":1064},[1026,1452,1302],{"class":1060},[1026,1454,1065],{"class":1064},[1026,1456,1457],{"class":1043},"\"保存密钥失败: ",[1026,1459,1310],{"class":1036},[1026,1461,1313],{"class":1043},[1026,1463,1316],{"class":1064},[1026,1465,1467],{"class":1028,"line":1466},27,[1026,1468,1226],{"class":1064},[1026,1470,1472,1475,1478],{"class":1028,"line":1471},28,[1026,1473,1474],{"class":1032},"    return",[1026,1476,1477],{"class":1064}," key, ",[1026,1479,1214],{"class":1036},[1026,1481,1483],{"class":1028,"line":1482},29,[1026,1484,1485],{"class":1064},"}\n",[896,1487,1488],{},"几个关键点：",[1490,1491,1492,1504,1510,1516],"ol",{},[924,1493,1494,1499,1500,1503],{},[937,1495,1496],{},[900,1497,1498],{},"crypto\u002Frand"," 而不是 ",[900,1501,1502],{},"math\u002Frand","：前者是加密安全随机源",[924,1505,1506,1509],{},[937,1507,1508],{},"256 位（32 字节）","：AES-256 的标准密钥长度",[924,1511,1512,1515],{},[937,1513,1514],{},"Base64 存储","：便于调试时查看、避免文件里出现奇怪字节",[924,1517,1518,1524],{},[937,1519,1520,1521],{},"文件权限 ",[900,1522,1523],{},"0600","：只有当前用户可读写",[892,1526,1527],{"id":1527},"主密钥的初始化时机",[896,1529,1530,1531,1534,1535,1538],{},"注意 ",[900,1532,1533],{},"globalKey"," 用 ",[900,1536,1537],{},"sync.Once"," 保护，确保全程只初始化一次：",[909,1540,1542],{"className":1020,"code":1541,"language":1022,"meta":11,"style":11},"var (\n    globalKey     []byte\n    globalKeyOnce sync.Once\n    globalKeyErr  error\n)\n\nfunc InitKey(configDir string) error {\n    globalKeyOnce.Do(func() {\n        globalKey, globalKeyErr = getOrCreateKey(configDir)\n    })\n    return globalKeyErr\n}\n",[900,1543,1544,1552,1560,1574,1582,1586,1590,1610,1625,1638,1643,1650],{"__ignoreMap":11},[1026,1545,1546,1549],{"class":1028,"line":1029},[1026,1547,1548],{"class":1032},"var",[1026,1550,1551],{"class":1064}," (\n",[1026,1553,1554,1557],{"class":1028,"line":1047},[1026,1555,1556],{"class":1064},"    globalKey     []",[1026,1558,1559],{"class":1032},"byte\n",[1026,1561,1562,1565,1568,1571],{"class":1028,"line":1054},[1026,1563,1564],{"class":1064},"    globalKeyOnce ",[1026,1566,1567],{"class":1060},"sync",[1026,1569,1570],{"class":1064},".",[1026,1572,1573],{"class":1060},"Once\n",[1026,1575,1576,1579],{"class":1028,"line":1090},[1026,1577,1578],{"class":1064},"    globalKeyErr  ",[1026,1580,1581],{"class":1032},"error\n",[1026,1583,1584],{"class":1028,"line":1108},[1026,1585,1262],{"class":1064},[1026,1587,1588],{"class":1028,"line":1113},[1026,1589,1051],{"emptyLinePlaceholder":1050},[1026,1591,1592,1594,1597,1599,1601,1603,1606,1608],{"class":1028,"line":1130},[1026,1593,1057],{"class":1032},[1026,1595,1596],{"class":1060}," InitKey",[1026,1598,1065],{"class":1064},[1026,1600,1069],{"class":1068},[1026,1602,1072],{"class":1032},[1026,1604,1605],{"class":1064},") ",[1026,1607,1084],{"class":1032},[1026,1609,1145],{"class":1064},[1026,1611,1612,1615,1618,1620,1622],{"class":1028,"line":1148},[1026,1613,1614],{"class":1064},"    globalKeyOnce.",[1026,1616,1617],{"class":1060},"Do",[1026,1619,1065],{"class":1064},[1026,1621,1057],{"class":1032},[1026,1623,1624],{"class":1064},"() {\n",[1026,1626,1627,1630,1633,1635],{"class":1028,"line":1176},[1026,1628,1629],{"class":1064},"        globalKey, globalKeyErr ",[1026,1631,1632],{"class":1032},"=",[1026,1634,1061],{"class":1060},[1026,1636,1637],{"class":1064},"(configDir)\n",[1026,1639,1640],{"class":1028,"line":1205},[1026,1641,1642],{"class":1064},"    })\n",[1026,1644,1645,1647],{"class":1028,"line":1217},[1026,1646,1474],{"class":1032},[1026,1648,1649],{"class":1064}," globalKeyErr\n",[1026,1651,1652],{"class":1028,"line":1223},[1026,1653,1485],{"class":1064},[896,1655,1656,1657,1660,1661,1664],{},"在 ",[900,1658,1659],{},"main.go"," 的 ",[900,1662,1663],{},"init()"," 里最早被调用：",[909,1666,1668],{"className":1020,"code":1667,"language":1022,"meta":11,"style":11},"func init() {\n    configDir, err := os.UserConfigDir()\n    if err == nil {\n        if initErr := crypto.InitKey(filepath.Join(configDir, \"rocket-leaf\")); initErr != nil {\n            log.Printf(\"[main] 初始化加密密钥失败: %v\", initErr)\n        }\n    }\n    \u002F\u002F 之后才实例化 service\n    settingsService = service.NewSettingsService()\n    connectionService = service.NewConnectionService(settingsService)\n    \u002F\u002F ...\n}\n",[900,1669,1670,1679,1694,1706,1740,1761,1765,1769,1774,1789,1804,1809],{"__ignoreMap":11},[1026,1671,1672,1674,1677],{"class":1028,"line":1029},[1026,1673,1057],{"class":1032},[1026,1675,1676],{"class":1060}," init",[1026,1678,1624],{"class":1064},[1026,1680,1681,1684,1686,1688,1691],{"class":1028,"line":1047},[1026,1682,1683],{"class":1064},"    configDir, err ",[1026,1685,1096],{"class":1032},[1026,1687,1121],{"class":1064},[1026,1689,1690],{"class":1060},"UserConfigDir",[1026,1692,1693],{"class":1064},"()\n",[1026,1695,1696,1698,1700,1702,1704],{"class":1028,"line":1054},[1026,1697,1133],{"class":1032},[1026,1699,1136],{"class":1064},[1026,1701,1139],{"class":1032},[1026,1703,1142],{"class":1036},[1026,1705,1145],{"class":1064},[1026,1707,1708,1710,1713,1715,1718,1721,1724,1726,1728,1731,1734,1736,1738],{"class":1028,"line":1090},[1026,1709,1179],{"class":1032},[1026,1711,1712],{"class":1064}," initErr ",[1026,1714,1096],{"class":1032},[1026,1716,1717],{"class":1064}," crypto.",[1026,1719,1720],{"class":1060},"InitKey",[1026,1722,1723],{"class":1064},"(filepath.",[1026,1725,1102],{"class":1060},[1026,1727,1343],{"class":1064},[1026,1729,1730],{"class":1043},"\"rocket-leaf\"",[1026,1732,1733],{"class":1064},")); initErr ",[1026,1735,1284],{"class":1032},[1026,1737,1142],{"class":1036},[1026,1739,1145],{"class":1064},[1026,1741,1742,1745,1748,1750,1753,1756,1758],{"class":1028,"line":1108},[1026,1743,1744],{"class":1064},"            log.",[1026,1746,1747],{"class":1060},"Printf",[1026,1749,1065],{"class":1064},[1026,1751,1752],{"class":1043},"\"[main] 初始化加密密钥失败: ",[1026,1754,1755],{"class":1036},"%v",[1026,1757,1313],{"class":1043},[1026,1759,1760],{"class":1064},", initErr)\n",[1026,1762,1763],{"class":1028,"line":1113},[1026,1764,1220],{"class":1064},[1026,1766,1767],{"class":1028,"line":1130},[1026,1768,1226],{"class":1064},[1026,1770,1771],{"class":1028,"line":1148},[1026,1772,1773],{"class":1237},"    \u002F\u002F 之后才实例化 service\n",[1026,1775,1776,1779,1781,1784,1787],{"class":1028,"line":1176},[1026,1777,1778],{"class":1064},"    settingsService ",[1026,1780,1632],{"class":1032},[1026,1782,1783],{"class":1064}," service.",[1026,1785,1786],{"class":1060},"NewSettingsService",[1026,1788,1693],{"class":1064},[1026,1790,1791,1794,1796,1798,1801],{"class":1028,"line":1205},[1026,1792,1793],{"class":1064},"    connectionService ",[1026,1795,1632],{"class":1032},[1026,1797,1783],{"class":1064},[1026,1799,1800],{"class":1060},"NewConnectionService",[1026,1802,1803],{"class":1064},"(settingsService)\n",[1026,1805,1806],{"class":1028,"line":1217},[1026,1807,1808],{"class":1237},"    \u002F\u002F ...\n",[1026,1810,1811],{"class":1028,"line":1223},[1026,1812,1485],{"class":1064},[896,1814,1815,1818],{},[937,1816,1817],{},"顺序很重要","：service 启动时会从文件加载连接配置，而加载过程需要解密，所以密钥必须先就位。",[892,1820,1821],{"id":1821},"字段级派生密钥",[896,1823,1824,1825,1828],{},"直接用主密钥加密所有字段并不是最佳实践。Rocket-Leaf 用 SHA-256 ",[937,1826,1827],{},"从主密钥派生每个字段的专属密钥","：",[909,1830,1832],{"className":1020,"code":1831,"language":1022,"meta":11,"style":11},"func deriveFieldKey(masterKey []byte, field string) []byte {\n    h := sha256.New()\n    h.Write(masterKey)\n    h.Write([]byte(field))\n    return h.Sum(nil)\n}\n",[900,1833,1834,1865,1880,1891,1904,1921],{"__ignoreMap":11},[1026,1835,1836,1838,1841,1843,1846,1849,1851,1853,1856,1858,1861,1863],{"class":1028,"line":1029},[1026,1837,1057],{"class":1032},[1026,1839,1840],{"class":1060}," deriveFieldKey",[1026,1842,1065],{"class":1064},[1026,1844,1845],{"class":1068},"masterKey",[1026,1847,1848],{"class":1064}," []",[1026,1850,1078],{"class":1032},[1026,1852,1081],{"class":1064},[1026,1854,1855],{"class":1068},"field",[1026,1857,1072],{"class":1032},[1026,1859,1860],{"class":1064},") []",[1026,1862,1078],{"class":1032},[1026,1864,1145],{"class":1064},[1026,1866,1867,1870,1872,1875,1878],{"class":1028,"line":1047},[1026,1868,1869],{"class":1064},"    h ",[1026,1871,1096],{"class":1032},[1026,1873,1874],{"class":1064}," sha256.",[1026,1876,1877],{"class":1060},"New",[1026,1879,1693],{"class":1064},[1026,1881,1882,1885,1888],{"class":1028,"line":1054},[1026,1883,1884],{"class":1064},"    h.",[1026,1886,1887],{"class":1060},"Write",[1026,1889,1890],{"class":1064},"(masterKey)\n",[1026,1892,1893,1895,1897,1899,1901],{"class":1028,"line":1090},[1026,1894,1884],{"class":1064},[1026,1896,1887],{"class":1060},[1026,1898,1252],{"class":1064},[1026,1900,1078],{"class":1032},[1026,1902,1903],{"class":1064},"(field))\n",[1026,1905,1906,1908,1911,1914,1916,1919],{"class":1028,"line":1108},[1026,1907,1474],{"class":1032},[1026,1909,1910],{"class":1064}," h.",[1026,1912,1913],{"class":1060},"Sum",[1026,1915,1065],{"class":1064},[1026,1917,1918],{"class":1036},"nil",[1026,1920,1262],{"class":1064},[1026,1922,1923],{"class":1028,"line":1113},[1026,1924,1485],{"class":1064},[896,1926,1927],{},"调用时：",[909,1929,1931],{"className":1020,"code":1930,"language":1022,"meta":11,"style":11},"key := deriveFieldKey(globalKey, \"accessKey\") \u002F\u002F AccessKey 用的密钥\nkey := deriveFieldKey(globalKey, \"secretKey\") \u002F\u002F SecretKey 用的密钥\n",[900,1932,1933,1953],{"__ignoreMap":11},[1026,1934,1935,1938,1940,1942,1945,1948,1950],{"class":1028,"line":1029},[1026,1936,1937],{"class":1064},"key ",[1026,1939,1096],{"class":1032},[1026,1941,1840],{"class":1060},[1026,1943,1944],{"class":1064},"(globalKey, ",[1026,1946,1947],{"class":1043},"\"accessKey\"",[1026,1949,1605],{"class":1064},[1026,1951,1952],{"class":1237},"\u002F\u002F AccessKey 用的密钥\n",[1026,1954,1955,1957,1959,1961,1963,1966,1968],{"class":1028,"line":1047},[1026,1956,1937],{"class":1064},[1026,1958,1096],{"class":1032},[1026,1960,1840],{"class":1060},[1026,1962,1944],{"class":1064},[1026,1964,1965],{"class":1043},"\"secretKey\"",[1026,1967,1605],{"class":1064},[1026,1969,1970],{"class":1237},"\u002F\u002F SecretKey 用的密钥\n",[896,1972,1973],{},"派生密钥的好处：",[1490,1975,1976,1990,2000],{},[924,1977,1978,1981,1982,1985,1986,1989],{},[937,1979,1980],{},"语义隔离","：即使 ",[900,1983,1984],{},"accessKey"," 字段的某条密文被破解，也不会影响 ",[900,1987,1988],{},"secretKey"," 字段",[924,1991,1992,1995,1996,1999],{},[937,1993,1994],{},"避免密钥复用","：GCM 模式对同一个 ",[900,1997,1998],{},"(key, nonce)"," 组合重复使用会导致严重的安全漏洞，派生密钥让不同字段使用完全不同的 key，降低 nonce 冲突的影响",[924,2001,2002,2005],{},[937,2003,2004],{},"实现简单","：相比 HKDF，SHA-256 拼接就能满足本地保护场景的需要",[2007,2008,2010],"note",{"title":2009},"和 HKDF 的差异",[896,2011,2012,2013,2016,2017,2020,2021,2024,2025,2028],{},"严格意义上 HKDF（RFC 5869）才是\"派生密钥\"的标准做法：",[900,2014,2015],{},"HKDF = Extract + Expand","，比简单的 ",[900,2018,2019],{},"SHA256(master || info)"," 更严谨。但对于桌面应用",[937,2022,2023],{},"不需要抵抗高等级攻击","的场景，这种简化是可以接受的。如果需要升级，换成 ",[900,2026,2027],{},"golang.org\u002Fx\u002Fcrypto\u002Fhkdf"," 只需改几行。",[892,2030,2032],{"id":2031},"aes-256-gcm-加解密","AES-256-GCM 加解密",[896,2034,2035,2036,2039],{},"GCM（Galois\u002FCounter Mode）是目前主流的 AEAD 模式，同时提供",[937,2037,2038],{},"加密 + 完整性验证","。代码：",[909,2041,2043],{"className":1020,"code":2042,"language":1022,"meta":11,"style":11},"const encryptedPrefix = \"ENC:\"\n\nfunc Encrypt(plaintext string, field string) (string, error) {\n    if plaintext == \"\" {\n        return \"\", nil  \u002F\u002F 空字符串不加密，直接返回\n    }\n    if globalKey == nil {\n        return \"\", errors.New(\"加密密钥未初始化\")\n    }\n\n    key := deriveFieldKey(globalKey, field)\n\n    block, err := aes.NewCipher(key)\n    if err != nil {\n        return \"\", fmt.Errorf(\"创建加密器失败: %w\", err)\n    }\n    gcm, err := cipher.NewGCM(block)\n    if err != nil {\n        return \"\", fmt.Errorf(\"创建 GCM 失败: %w\", err)\n    }\n\n    nonce := make([]byte, gcm.NonceSize())\n    if _, err := io.ReadFull(rand.Reader, nonce); err != nil {\n        return \"\", fmt.Errorf(\"生成 nonce 失败: %w\", err)\n    }\n\n    \u002F\u002F gcm.Seal 会把 nonce 拼到密文前面\n    ciphertext := gcm.Seal(nonce, nonce, []byte(plaintext), nil)\n    return encryptedPrefix + base64.StdEncoding.EncodeToString(ciphertext), nil\n}\n",[900,2044,2045,2057,2061,2092,2106,2119,2123,2136,2154,2158,2162,2173,2177,2192,2204,2225,2229,2245,2257,2278,2282,2286,2308,2329,2350,2354,2358,2363,2388,2407],{"__ignoreMap":11},[1026,2046,2047,2049,2052,2054],{"class":1028,"line":1029},[1026,2048,1033],{"class":1032},[1026,2050,2051],{"class":1036}," encryptedPrefix",[1026,2053,1040],{"class":1032},[1026,2055,2056],{"class":1043}," \"ENC:\"\n",[1026,2058,2059],{"class":1028,"line":1047},[1026,2060,1051],{"emptyLinePlaceholder":1050},[1026,2062,2063,2065,2068,2070,2073,2075,2077,2079,2081,2084,2086,2088,2090],{"class":1028,"line":1054},[1026,2064,1057],{"class":1032},[1026,2066,2067],{"class":1060}," Encrypt",[1026,2069,1065],{"class":1064},[1026,2071,2072],{"class":1068},"plaintext",[1026,2074,1072],{"class":1032},[1026,2076,1081],{"class":1064},[1026,2078,1855],{"class":1068},[1026,2080,1072],{"class":1032},[1026,2082,2083],{"class":1064},") (",[1026,2085,1170],{"class":1032},[1026,2087,1081],{"class":1064},[1026,2089,1084],{"class":1032},[1026,2091,1087],{"class":1064},[1026,2093,2094,2096,2099,2101,2104],{"class":1028,"line":1090},[1026,2095,1133],{"class":1032},[1026,2097,2098],{"class":1064}," plaintext ",[1026,2100,1139],{"class":1032},[1026,2102,2103],{"class":1043}," \"\"",[1026,2105,1145],{"class":1064},[1026,2107,2108,2110,2112,2114,2116],{"class":1028,"line":1108},[1026,2109,1294],{"class":1032},[1026,2111,2103],{"class":1043},[1026,2113,1081],{"class":1064},[1026,2115,1918],{"class":1036},[1026,2117,2118],{"class":1237},"  \u002F\u002F 空字符串不加密，直接返回\n",[1026,2120,2121],{"class":1028,"line":1113},[1026,2122,1226],{"class":1064},[1026,2124,2125,2127,2130,2132,2134],{"class":1028,"line":1130},[1026,2126,1133],{"class":1032},[1026,2128,2129],{"class":1064}," globalKey ",[1026,2131,1139],{"class":1032},[1026,2133,1142],{"class":1036},[1026,2135,1145],{"class":1064},[1026,2137,2138,2140,2142,2145,2147,2149,2152],{"class":1028,"line":1148},[1026,2139,1294],{"class":1032},[1026,2141,2103],{"class":1043},[1026,2143,2144],{"class":1064},", errors.",[1026,2146,1877],{"class":1060},[1026,2148,1065],{"class":1064},[1026,2150,2151],{"class":1043},"\"加密密钥未初始化\"",[1026,2153,1262],{"class":1064},[1026,2155,2156],{"class":1028,"line":1176},[1026,2157,1226],{"class":1064},[1026,2159,2160],{"class":1028,"line":1205},[1026,2161,1051],{"emptyLinePlaceholder":1050},[1026,2163,2164,2166,2168,2170],{"class":1028,"line":1217},[1026,2165,1244],{"class":1064},[1026,2167,1096],{"class":1032},[1026,2169,1840],{"class":1060},[1026,2171,2172],{"class":1064},"(globalKey, field)\n",[1026,2174,2175],{"class":1028,"line":1223},[1026,2176,1051],{"emptyLinePlaceholder":1050},[1026,2178,2179,2182,2184,2187,2190],{"class":1028,"line":1229},[1026,2180,2181],{"class":1064},"    block, err ",[1026,2183,1096],{"class":1032},[1026,2185,2186],{"class":1064}," aes.",[1026,2188,2189],{"class":1060},"NewCipher",[1026,2191,1406],{"class":1064},[1026,2193,2194,2196,2198,2200,2202],{"class":1028,"line":1234},[1026,2195,1133],{"class":1032},[1026,2197,1136],{"class":1064},[1026,2199,1284],{"class":1032},[1026,2201,1142],{"class":1036},[1026,2203,1145],{"class":1064},[1026,2205,2206,2208,2210,2212,2214,2216,2219,2221,2223],{"class":1028,"line":1241},[1026,2207,1294],{"class":1032},[1026,2209,2103],{"class":1043},[1026,2211,1299],{"class":1064},[1026,2213,1302],{"class":1060},[1026,2215,1065],{"class":1064},[1026,2217,2218],{"class":1043},"\"创建加密器失败: ",[1026,2220,1310],{"class":1036},[1026,2222,1313],{"class":1043},[1026,2224,1316],{"class":1064},[1026,2226,2227],{"class":1028,"line":1265},[1026,2228,1226],{"class":1064},[1026,2230,2231,2234,2236,2239,2242],{"class":1028,"line":1291},[1026,2232,2233],{"class":1064},"    gcm, err ",[1026,2235,1096],{"class":1032},[1026,2237,2238],{"class":1064}," cipher.",[1026,2240,2241],{"class":1060},"NewGCM",[1026,2243,2244],{"class":1064},"(block)\n",[1026,2246,2247,2249,2251,2253,2255],{"class":1028,"line":1319},[1026,2248,1133],{"class":1032},[1026,2250,1136],{"class":1064},[1026,2252,1284],{"class":1032},[1026,2254,1142],{"class":1036},[1026,2256,1145],{"class":1064},[1026,2258,2259,2261,2263,2265,2267,2269,2272,2274,2276],{"class":1028,"line":1324},[1026,2260,1294],{"class":1032},[1026,2262,2103],{"class":1043},[1026,2264,1299],{"class":1064},[1026,2266,1302],{"class":1060},[1026,2268,1065],{"class":1064},[1026,2270,2271],{"class":1043},"\"创建 GCM 失败: ",[1026,2273,1310],{"class":1036},[1026,2275,1313],{"class":1043},[1026,2277,1316],{"class":1064},[1026,2279,2280],{"class":1028,"line":1329},[1026,2281,1226],{"class":1064},[1026,2283,2284],{"class":1028,"line":1361},[1026,2285,1051],{"emptyLinePlaceholder":1050},[1026,2287,2288,2291,2293,2295,2297,2299,2302,2305],{"class":1028,"line":1383},[1026,2289,2290],{"class":1064},"    nonce ",[1026,2292,1096],{"class":1032},[1026,2294,1249],{"class":1060},[1026,2296,1252],{"class":1064},[1026,2298,1078],{"class":1032},[1026,2300,2301],{"class":1064},", gcm.",[1026,2303,2304],{"class":1060},"NonceSize",[1026,2306,2307],{"class":1064},"())\n",[1026,2309,2310,2312,2314,2316,2318,2320,2323,2325,2327],{"class":1028,"line":1388},[1026,2311,1133],{"class":1032},[1026,2313,1270],{"class":1064},[1026,2315,1096],{"class":1032},[1026,2317,1275],{"class":1064},[1026,2319,1278],{"class":1060},[1026,2321,2322],{"class":1064},"(rand.Reader, nonce); err ",[1026,2324,1284],{"class":1032},[1026,2326,1142],{"class":1036},[1026,2328,1145],{"class":1064},[1026,2330,2331,2333,2335,2337,2339,2341,2344,2346,2348],{"class":1028,"line":1393},[1026,2332,1294],{"class":1032},[1026,2334,2103],{"class":1043},[1026,2336,1299],{"class":1064},[1026,2338,1302],{"class":1060},[1026,2340,1065],{"class":1064},[1026,2342,2343],{"class":1043},"\"生成 nonce 失败: ",[1026,2345,1310],{"class":1036},[1026,2347,1313],{"class":1043},[1026,2349,1316],{"class":1064},[1026,2351,2352],{"class":1028,"line":1409},[1026,2353,1226],{"class":1064},[1026,2355,2356],{"class":1028,"line":1444},[1026,2357,1051],{"emptyLinePlaceholder":1050},[1026,2359,2360],{"class":1028,"line":1466},[1026,2361,2362],{"class":1237},"    \u002F\u002F gcm.Seal 会把 nonce 拼到密文前面\n",[1026,2364,2365,2368,2370,2373,2376,2379,2381,2384,2386],{"class":1028,"line":1471},[1026,2366,2367],{"class":1064},"    ciphertext ",[1026,2369,1096],{"class":1032},[1026,2371,2372],{"class":1064}," gcm.",[1026,2374,2375],{"class":1060},"Seal",[1026,2377,2378],{"class":1064},"(nonce, nonce, []",[1026,2380,1078],{"class":1032},[1026,2382,2383],{"class":1064},"(plaintext), ",[1026,2385,1918],{"class":1036},[1026,2387,1262],{"class":1064},[1026,2389,2390,2392,2395,2398,2400,2402,2405],{"class":1028,"line":1482},[1026,2391,1474],{"class":1032},[1026,2393,2394],{"class":1064}," encryptedPrefix ",[1026,2396,2397],{"class":1032},"+",[1026,2399,1156],{"class":1064},[1026,2401,1403],{"class":1060},[1026,2403,2404],{"class":1064},"(ciphertext), ",[1026,2406,1214],{"class":1036},[1026,2408,2410],{"class":1028,"line":2409},30,[1026,2411,1485],{"class":1064},[2413,2414,2416,2419],"h3",{"id":2415},"gcmseal-的三个参数",[900,2417,2418],{},"gcm.Seal"," 的三个参数",[909,2421,2423],{"className":1020,"code":2422,"language":1022,"meta":11,"style":11},"func (g *gcm) Seal(dst, nonce, plaintext, additionalData []byte) []byte\n",[900,2424,2425],{"__ignoreMap":11},[1026,2426,2427,2429,2432,2435,2438,2441,2443,2445,2447,2450,2452,2455,2457,2459,2461,2464,2466,2468,2470],{"class":1028,"line":1029},[1026,2428,1057],{"class":1032},[1026,2430,2431],{"class":1064}," (",[1026,2433,2434],{"class":1068},"g ",[1026,2436,2437],{"class":1032},"*",[1026,2439,2440],{"class":1060},"gcm",[1026,2442,1605],{"class":1064},[1026,2444,2375],{"class":1060},[1026,2446,1065],{"class":1064},[1026,2448,2449],{"class":1068},"dst",[1026,2451,1081],{"class":1064},[1026,2453,2454],{"class":1068},"nonce",[1026,2456,1081],{"class":1064},[1026,2458,2072],{"class":1068},[1026,2460,1081],{"class":1064},[1026,2462,2463],{"class":1068},"additionalData",[1026,2465,1848],{"class":1064},[1026,2467,1078],{"class":1032},[1026,2469,1860],{"class":1064},[1026,2471,1559],{"class":1032},[921,2473,2474,2482,2491],{},[924,2475,2476,2478,2479,2481],{},[900,2477,2449],{},"：输出缓冲区；传 ",[900,2480,2454],{}," 的作用是把 nonce 原封不动写到输出开头，后面紧跟密文",[924,2483,2484,2486,2487,2490],{},[900,2485,2454],{},"：本次加密用的随机数，GCM 要求不重复；每次 ",[900,2488,2489],{},"Encrypt"," 都新生成",[924,2492,2493,2495],{},[900,2494,2463],{},"：用于完整性校验但不加密的附加数据，本项目没用",[896,2497,2498,2499,2502,2503,2506],{},"输出结构：",[900,2500,2501],{},"[nonce(12B)] + [密文] + [认证标签(16B)]","，全部 Base64 后前面加 ",[900,2504,2505],{},"\"ENC:\""," 前缀。",[2413,2508,2509],{"id":2509},"前缀的作用",[909,2511,2513],{"className":1020,"code":2512,"language":1022,"meta":11,"style":11},"const encryptedPrefix = \"ENC:\"\n",[900,2514,2515],{"__ignoreMap":11},[1026,2516,2517,2519,2521,2523],{"class":1028,"line":1029},[1026,2518,1033],{"class":1032},[1026,2520,2051],{"class":1036},[1026,2522,1040],{"class":1032},[1026,2524,2056],{"class":1043},[896,2526,2527,2528,2530],{},"加上 ",[900,2529,2505],{}," 前缀后：",[921,2532,2533,2539],{},[924,2534,2535,2538],{},[937,2536,2537],{},"解密时可以识别","：看到前缀才去 base64 + GCM decrypt",[924,2540,2541,2544],{},[937,2542,2543],{},"兼容明文","：没有前缀的字符串直接当明文返回，不报错",[896,2546,2547],{},"这正是下一节要讲的\"平滑迁移\"。",[892,2549,2551],{"id":2550},"平滑迁移兼容历史明文","平滑迁移：兼容历史明文",[896,2553,2554,2555,2557,2558,2561],{},"早期版本 Rocket-Leaf 没有加密，JSON 文件里 ",[900,2556,1984],{}," 是明文。加密功能上线后，",[937,2559,2560],{},"不能要求用户手动迁移","。解密函数里对此做了兜底：",[909,2563,2565],{"className":1020,"code":2564,"language":1022,"meta":11,"style":11},"func Decrypt(ciphertext string, field string) (string, error) {\n    if ciphertext == \"\" {\n        return \"\", nil\n    }\n    if !strings.HasPrefix(ciphertext, encryptedPrefix) {\n        \u002F\u002F 兼容未加密的旧数据：当明文返回\n        return ciphertext, nil\n    }\n    if globalKey == nil {\n        return \"\", errors.New(\"加密密钥未初始化\")\n    }\n\n    data, err := base64.StdEncoding.DecodeString(ciphertext[len(encryptedPrefix):])\n    if err != nil {\n        return \"\", fmt.Errorf(\"解码密文失败: %w\", err)\n    }\n\n    key := deriveFieldKey(globalKey, field)\n    block, _ := aes.NewCipher(key)\n    gcm, _ := cipher.NewGCM(block)\n\n    nonceSize := gcm.NonceSize()\n    if len(data) \u003C nonceSize {\n        return \"\", errors.New(\"密文数据过短\")\n    }\n\n    nonce, sealed := data[:nonceSize], data[nonceSize:]\n    plaintext, err := gcm.Open(nil, nonce, sealed, nil)\n    if err != nil {\n        return \"\", fmt.Errorf(\"解密失败: %w\", err)\n    }\n    return string(plaintext), nil\n}\n",[900,2566,2567,2597,2610,2620,2624,2640,2645,2654,2658,2670,2686,2690,2694,2713,2725,2746,2750,2754,2764,2777,2790,2794,2807,2822,2839,2843,2847,2857,2880,2892,2913,2918,2929],{"__ignoreMap":11},[1026,2568,2569,2571,2574,2576,2579,2581,2583,2585,2587,2589,2591,2593,2595],{"class":1028,"line":1029},[1026,2570,1057],{"class":1032},[1026,2572,2573],{"class":1060}," Decrypt",[1026,2575,1065],{"class":1064},[1026,2577,2578],{"class":1068},"ciphertext",[1026,2580,1072],{"class":1032},[1026,2582,1081],{"class":1064},[1026,2584,1855],{"class":1068},[1026,2586,1072],{"class":1032},[1026,2588,2083],{"class":1064},[1026,2590,1170],{"class":1032},[1026,2592,1081],{"class":1064},[1026,2594,1084],{"class":1032},[1026,2596,1087],{"class":1064},[1026,2598,2599,2601,2604,2606,2608],{"class":1028,"line":1047},[1026,2600,1133],{"class":1032},[1026,2602,2603],{"class":1064}," ciphertext ",[1026,2605,1139],{"class":1032},[1026,2607,2103],{"class":1043},[1026,2609,1145],{"class":1064},[1026,2611,2612,2614,2616,2618],{"class":1028,"line":1054},[1026,2613,1294],{"class":1032},[1026,2615,2103],{"class":1043},[1026,2617,1081],{"class":1064},[1026,2619,1214],{"class":1036},[1026,2621,2622],{"class":1028,"line":1090},[1026,2623,1226],{"class":1064},[1026,2625,2626,2628,2631,2634,2637],{"class":1028,"line":1108},[1026,2627,1133],{"class":1032},[1026,2629,2630],{"class":1032}," !",[1026,2632,2633],{"class":1064},"strings.",[1026,2635,2636],{"class":1060},"HasPrefix",[1026,2638,2639],{"class":1064},"(ciphertext, encryptedPrefix) {\n",[1026,2641,2642],{"class":1028,"line":1113},[1026,2643,2644],{"class":1237},"        \u002F\u002F 兼容未加密的旧数据：当明文返回\n",[1026,2646,2647,2649,2652],{"class":1028,"line":1130},[1026,2648,1294],{"class":1032},[1026,2650,2651],{"class":1064}," ciphertext, ",[1026,2653,1214],{"class":1036},[1026,2655,2656],{"class":1028,"line":1148},[1026,2657,1226],{"class":1064},[1026,2659,2660,2662,2664,2666,2668],{"class":1028,"line":1176},[1026,2661,1133],{"class":1032},[1026,2663,2129],{"class":1064},[1026,2665,1139],{"class":1032},[1026,2667,1142],{"class":1036},[1026,2669,1145],{"class":1064},[1026,2671,2672,2674,2676,2678,2680,2682,2684],{"class":1028,"line":1205},[1026,2673,1294],{"class":1032},[1026,2675,2103],{"class":1043},[1026,2677,2144],{"class":1064},[1026,2679,1877],{"class":1060},[1026,2681,1065],{"class":1064},[1026,2683,2151],{"class":1043},[1026,2685,1262],{"class":1064},[1026,2687,2688],{"class":1028,"line":1217},[1026,2689,1226],{"class":1064},[1026,2691,2692],{"class":1028,"line":1223},[1026,2693,1051],{"emptyLinePlaceholder":1050},[1026,2695,2696,2698,2700,2702,2704,2707,2710],{"class":1028,"line":1229},[1026,2697,1116],{"class":1064},[1026,2699,1096],{"class":1032},[1026,2701,1156],{"class":1064},[1026,2703,1159],{"class":1060},[1026,2705,2706],{"class":1064},"(ciphertext[",[1026,2708,2709],{"class":1060},"len",[1026,2711,2712],{"class":1064},"(encryptedPrefix):])\n",[1026,2714,2715,2717,2719,2721,2723],{"class":1028,"line":1234},[1026,2716,1133],{"class":1032},[1026,2718,1136],{"class":1064},[1026,2720,1284],{"class":1032},[1026,2722,1142],{"class":1036},[1026,2724,1145],{"class":1064},[1026,2726,2727,2729,2731,2733,2735,2737,2740,2742,2744],{"class":1028,"line":1241},[1026,2728,1294],{"class":1032},[1026,2730,2103],{"class":1043},[1026,2732,1299],{"class":1064},[1026,2734,1302],{"class":1060},[1026,2736,1065],{"class":1064},[1026,2738,2739],{"class":1043},"\"解码密文失败: ",[1026,2741,1310],{"class":1036},[1026,2743,1313],{"class":1043},[1026,2745,1316],{"class":1064},[1026,2747,2748],{"class":1028,"line":1265},[1026,2749,1226],{"class":1064},[1026,2751,2752],{"class":1028,"line":1291},[1026,2753,1051],{"emptyLinePlaceholder":1050},[1026,2755,2756,2758,2760,2762],{"class":1028,"line":1319},[1026,2757,1244],{"class":1064},[1026,2759,1096],{"class":1032},[1026,2761,1840],{"class":1060},[1026,2763,2172],{"class":1064},[1026,2765,2766,2769,2771,2773,2775],{"class":1028,"line":1324},[1026,2767,2768],{"class":1064},"    block, _ ",[1026,2770,1096],{"class":1032},[1026,2772,2186],{"class":1064},[1026,2774,2189],{"class":1060},[1026,2776,1406],{"class":1064},[1026,2778,2779,2782,2784,2786,2788],{"class":1028,"line":1329},[1026,2780,2781],{"class":1064},"    gcm, _ ",[1026,2783,1096],{"class":1032},[1026,2785,2238],{"class":1064},[1026,2787,2241],{"class":1060},[1026,2789,2244],{"class":1064},[1026,2791,2792],{"class":1028,"line":1361},[1026,2793,1051],{"emptyLinePlaceholder":1050},[1026,2795,2796,2799,2801,2803,2805],{"class":1028,"line":1383},[1026,2797,2798],{"class":1064},"    nonceSize ",[1026,2800,1096],{"class":1032},[1026,2802,2372],{"class":1064},[1026,2804,2304],{"class":1060},[1026,2806,1693],{"class":1064},[1026,2808,2809,2811,2813,2816,2819],{"class":1028,"line":1388},[1026,2810,1133],{"class":1032},[1026,2812,1192],{"class":1060},[1026,2814,2815],{"class":1064},"(data) ",[1026,2817,2818],{"class":1032},"\u003C",[1026,2820,2821],{"class":1064}," nonceSize {\n",[1026,2823,2824,2826,2828,2830,2832,2834,2837],{"class":1028,"line":1393},[1026,2825,1294],{"class":1032},[1026,2827,2103],{"class":1043},[1026,2829,2144],{"class":1064},[1026,2831,1877],{"class":1060},[1026,2833,1065],{"class":1064},[1026,2835,2836],{"class":1043},"\"密文数据过短\"",[1026,2838,1262],{"class":1064},[1026,2840,2841],{"class":1028,"line":1409},[1026,2842,1226],{"class":1064},[1026,2844,2845],{"class":1028,"line":1444},[1026,2846,1051],{"emptyLinePlaceholder":1050},[1026,2848,2849,2852,2854],{"class":1028,"line":1466},[1026,2850,2851],{"class":1064},"    nonce, sealed ",[1026,2853,1096],{"class":1032},[1026,2855,2856],{"class":1064}," data[:nonceSize], data[nonceSize:]\n",[1026,2858,2859,2862,2864,2866,2869,2871,2873,2876,2878],{"class":1028,"line":1471},[1026,2860,2861],{"class":1064},"    plaintext, err ",[1026,2863,1096],{"class":1032},[1026,2865,2372],{"class":1064},[1026,2867,2868],{"class":1060},"Open",[1026,2870,1065],{"class":1064},[1026,2872,1918],{"class":1036},[1026,2874,2875],{"class":1064},", nonce, sealed, ",[1026,2877,1918],{"class":1036},[1026,2879,1262],{"class":1064},[1026,2881,2882,2884,2886,2888,2890],{"class":1028,"line":1482},[1026,2883,1133],{"class":1032},[1026,2885,1136],{"class":1064},[1026,2887,1284],{"class":1032},[1026,2889,1142],{"class":1036},[1026,2891,1145],{"class":1064},[1026,2893,2894,2896,2898,2900,2902,2904,2907,2909,2911],{"class":1028,"line":2409},[1026,2895,1294],{"class":1032},[1026,2897,2103],{"class":1043},[1026,2899,1299],{"class":1064},[1026,2901,1302],{"class":1060},[1026,2903,1065],{"class":1064},[1026,2905,2906],{"class":1043},"\"解密失败: ",[1026,2908,1310],{"class":1036},[1026,2910,1313],{"class":1043},[1026,2912,1316],{"class":1064},[1026,2914,2916],{"class":1028,"line":2915},31,[1026,2917,1226],{"class":1064},[1026,2919,2921,2923,2925,2927],{"class":1028,"line":2920},32,[1026,2922,1474],{"class":1032},[1026,2924,1072],{"class":1032},[1026,2926,2383],{"class":1064},[1026,2928,1214],{"class":1036},[1026,2930,2932],{"class":1028,"line":2931},33,[1026,2933,1485],{"class":1064},[2413,2935,2936],{"id":2936},"迁移流程",[1490,2938,2939,2942,2950,2963,2970,2980,2988],{},[924,2940,2941],{},"老用户升级后启动 App",[924,2943,2944,2947,2948],{},[900,2945,2946],{},"ConnectionService.loadConnectionsFromFile"," 读到明文 ",[900,2949,1984],{},[924,2951,2952,2955,2956,2959,2960],{},[900,2953,2954],{},"Decrypt"," 看到没有 ",[900,2957,2958],{},"ENC:"," 前缀，",[937,2961,2962],{},"直接返回原文",[924,2964,2965,2966,2969],{},"内存里的 ",[900,2967,2968],{},"Connection"," 对象此刻是明文",[924,2971,2972,2973,2976,2977],{},"用户任何一次 save（比如调用 ",[900,2974,2975],{},"UpdateConnection","）触发 ",[900,2978,2979],{},"saveConnectionsLocked",[924,2981,2982,2984,2985,2987],{},[900,2983,2489],{}," 生成带 ",[900,2986,2958],{}," 前缀的密文写回文件",[924,2989,2990],{},"从此之后，这条记录就是加密状态",[896,2992,2993,2996],{},[937,2994,2995],{},"整个过程对用户完全透明","，不需要手动操作任何东西。",[892,2998,3000],{"id":2999},"小细节空字符串不加密","小细节：空字符串不加密",[909,3002,3004],{"className":1020,"code":3003,"language":1022,"meta":11,"style":11},"func Encrypt(plaintext string, field string) (string, error) {\n    if plaintext == \"\" {\n        return \"\", nil\n    }\n    \u002F\u002F ...\n}\n",[900,3005,3006,3034,3046,3056,3060,3064],{"__ignoreMap":11},[1026,3007,3008,3010,3012,3014,3016,3018,3020,3022,3024,3026,3028,3030,3032],{"class":1028,"line":1029},[1026,3009,1057],{"class":1032},[1026,3011,2067],{"class":1060},[1026,3013,1065],{"class":1064},[1026,3015,2072],{"class":1068},[1026,3017,1072],{"class":1032},[1026,3019,1081],{"class":1064},[1026,3021,1855],{"class":1068},[1026,3023,1072],{"class":1032},[1026,3025,2083],{"class":1064},[1026,3027,1170],{"class":1032},[1026,3029,1081],{"class":1064},[1026,3031,1084],{"class":1032},[1026,3033,1087],{"class":1064},[1026,3035,3036,3038,3040,3042,3044],{"class":1028,"line":1047},[1026,3037,1133],{"class":1032},[1026,3039,2098],{"class":1064},[1026,3041,1139],{"class":1032},[1026,3043,2103],{"class":1043},[1026,3045,1145],{"class":1064},[1026,3047,3048,3050,3052,3054],{"class":1028,"line":1054},[1026,3049,1294],{"class":1032},[1026,3051,2103],{"class":1043},[1026,3053,1081],{"class":1064},[1026,3055,1214],{"class":1036},[1026,3057,3058],{"class":1028,"line":1090},[1026,3059,1226],{"class":1064},[1026,3061,3062],{"class":1028,"line":1108},[1026,3063,1808],{"class":1237},[1026,3065,3066],{"class":1028,"line":1113},[1026,3067,1485],{"class":1064},[921,3069,3070,3073],{},[924,3071,3072],{},"空字符串加密后还是 base64 密文，会污染没填 ACL 的连接",[924,3074,3075],{},"JSON 里保留空字符串更符合语义（\"没设置\"而不是\"加密的空字符串\"）",[896,3077,3078],{},"解密端也有对应的对称分支：",[909,3080,3082],{"className":1020,"code":3081,"language":1022,"meta":11,"style":11},"if ciphertext == \"\" {\n    return \"\", nil\n}\n",[900,3083,3084,3097,3107],{"__ignoreMap":11},[1026,3085,3086,3089,3091,3093,3095],{"class":1028,"line":1029},[1026,3087,3088],{"class":1032},"if",[1026,3090,2603],{"class":1064},[1026,3092,1139],{"class":1032},[1026,3094,2103],{"class":1043},[1026,3096,1145],{"class":1064},[1026,3098,3099,3101,3103,3105],{"class":1028,"line":1047},[1026,3100,1474],{"class":1032},[1026,3102,2103],{"class":1043},[1026,3104,1081],{"class":1064},[1026,3106,1214],{"class":1036},[1026,3108,3109],{"class":1028,"line":1054},[1026,3110,1485],{"class":1064},[892,3112,3113],{"id":3113},"测试点",[896,3115,3116,3117,3119],{},"如果要给 ",[900,3118,228],{}," 包写测试，重点覆盖以下场景：",[921,3121,3122,3125,3132,3138,3141,3147,3150],{},[924,3123,3124],{},"加密后再解密能恢复原文",[924,3126,3127,3128,3131],{},"同一个 plaintext 两次加密的结果",[937,3129,3130],{},"不同","（因为 nonce 随机）",[924,3133,3134,3135,3137],{},"用错误的 ",[900,3136,1855],{}," 解密会失败（验证字段隔离）",[924,3139,3140],{},"密文中间字节被篡改 → GCM 认证失败",[924,3142,3143,3144,3146],{},"没有 ",[900,3145,2958],{}," 前缀的字符串直接作为明文返回",[924,3148,3149],{},"空字符串永远加密\u002F解密为空字符串",[924,3151,3152,3154],{},[900,3153,1533],{}," 未初始化时加密返回错误",[892,3156,3157],{"id":3157},"总结",[921,3159,3160,3167,3170,3173,3180],{},[924,3161,3162,3163,3166],{},"加密是",[937,3164,3165],{},"工程责任","而不是功能亮点，尤其涉及密钥的本地应用更要做",[924,3168,3169],{},"AES-256-GCM 是目前最推荐的对称加密模式，Go 标准库直接支持",[924,3171,3172],{},"字段级派生密钥可以在复杂度几乎不增加的前提下提升安全边界",[924,3174,3175,3176,3179],{},"带前缀的密文 + 兜底读明文，是",[937,3177,3178],{},"平滑迁移","的标准套路",[924,3181,3182],{},[937,3183,3184,3185,3187],{},"永远使用 ",[900,3186,1498],{},"，永远不要复用 nonce",[896,3189,3190],{},"下一章看前端的目录结构与 Wails 类型绑定的使用方式。",[3192,3193,3194],"style",{},"html pre.shiki code .s8jYJ, html code.shiki .s8jYJ{--shiki-light:#D73A49;--shiki-default:#D73A49;--shiki-dark:#F97583}html pre.shiki code .sBjJW, html code.shiki .sBjJW{--shiki-light:#005CC5;--shiki-default:#005CC5;--shiki-dark:#79B8FF}html pre.shiki code .sIIMD, html code.shiki .sIIMD{--shiki-light:#032F62;--shiki-default:#032F62;--shiki-dark:#9ECBFF}html pre.shiki code .snPdu, html code.shiki .snPdu{--shiki-light:#6F42C1;--shiki-default:#6F42C1;--shiki-dark:#B392F0}html pre.shiki code .sxrX7, html code.shiki .sxrX7{--shiki-light:#24292E;--shiki-default:#24292E;--shiki-dark:#E1E4E8}html pre.shiki code .sP4rz, html code.shiki .sP4rz{--shiki-light:#E36209;--shiki-default:#E36209;--shiki-dark:#FFAB70}html pre.shiki code .sCsY4, html code.shiki .sCsY4{--shiki-light:#6A737D;--shiki-default:#6A737D;--shiki-dark:#6A737D}html .light .shiki span {color: var(--shiki-light);background: var(--shiki-light-bg);font-style: var(--shiki-light-font-style);font-weight: var(--shiki-light-font-weight);text-decoration: var(--shiki-light-text-decoration);}html.light .shiki span {color: var(--shiki-light);background: var(--shiki-light-bg);font-style: var(--shiki-light-font-style);font-weight: var(--shiki-light-font-weight);text-decoration: var(--shiki-light-text-decoration);}html .default .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}html .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}html .dark .shiki span {color: var(--shiki-dark);background: var(--shiki-dark-bg);font-style: var(--shiki-dark-font-style);font-weight: var(--shiki-dark-font-weight);text-decoration: var(--shiki-dark-text-decoration);}html.dark .shiki span {color: var(--shiki-dark);background: var(--shiki-dark-bg);font-style: var(--shiki-dark-font-style);font-weight: var(--shiki-dark-font-weight);text-decoration: var(--shiki-dark-text-decoration);}",{"title":11,"searchDepth":1047,"depth":1047,"links":3196},[3197,3198,3199,3200,3201,3206,3209,3210,3211],{"id":894,"depth":1047,"text":894},{"id":947,"depth":1047,"text":947},{"id":1527,"depth":1047,"text":1527},{"id":1821,"depth":1047,"text":1821},{"id":2031,"depth":1047,"text":2032,"children":3202},[3203,3205],{"id":2415,"depth":1054,"text":3204},"gcm.Seal 的三个参数",{"id":2509,"depth":1054,"text":2509},{"id":2550,"depth":1047,"text":2551,"children":3207},[3208],{"id":2936,"depth":1054,"text":2936},{"id":2999,"depth":1047,"text":3000},{"id":3113,"depth":1047,"text":3113},{"id":3157,"depth":1047,"text":3157},"md",{},{"title":589,"description":590},"project\u002Frocket-leaf\u002Fencryption","yMzvaWtpbJ7jdj-rhkGiNkLIHGRpkUkVXYFGH_fyvbw",1775474634076]