Skip to content
This repository has been archived by the owner on Dec 23, 2020. It is now read-only.

AES result is different with aes-js or nodejs #154

Closed
catouse opened this issue Sep 10, 2018 · 7 comments
Closed

AES result is different with aes-js or nodejs #154

catouse opened this issue Sep 10, 2018 · 7 comments

Comments

@catouse
Copy link

catouse commented Sep 10, 2018
edited
Loading

AES/CBC/PKCS7 in pointycastle:

import 'dart:typed_data';
import 'dart:convert';
import "package:pointycastle/export.dart";

Uint8List encrypt(String data, String token, String cipherIV) {
    var key = new SHA256Digest().process(UTF8.encode(token));
    var iv = new SHA256Digest().process(UTF8.encode(cipherIV)).sublist(0, 16);
    CipherParameters params = new PaddedBlockCipherParameters(new ParametersWithIV(new KeyParameter(key), iv), null);

    PaddedBlockCipherImpl cipherImpl = new PaddedBlockCipherImpl(new PKCS7Padding(), new CBCBlockCipher(new AESFastEngine()));
    cipherImpl.init(true, params);
    return cipherImpl.process(UTF8.encode(data));
}

// Test Code:
var message = 'Hello world!';
var token = '01234567890123456789012345678901';
var cipherIV = '0123456789012345';
var result = encrypt(message, token, cipherIV);

print('result=$result');

The result with pointycastle is:

[93, 230, 77, 13, 75, 37, 207, 197, 131, 60, 244, 178, 212, 245, 233, 46]

encrypt with aes-js

AES-JS: https://github.com/ricmoo/aes-js

import AES from 'aes-js';

const encrypt = (data, token, cipherIV) => {
    const key = AES.utils.utf8.toBytes(token);
    const iv = AES.utils.utf8.toBytes(cipherIV);
    const aesCbc = new AES.ModeOfOperation.cbc(key, iv);
    const dataBytes = AES.utils.utf8.toBytes(data);
    const paddedData = AES.padding.pkcs7.pad(dataBytes);
    const encryptedBytes = aesCbc.encrypt(paddedData);
    return encryptedBytes;
};

// Test Code:
var message = 'Hello world!';
var token = '01234567890123456789012345678901';
var cipherIV = '0123456789012345';
var result = encrypt(message, token, cipherIV);

console.log('result: ' + result);

The result with aes-js is:

[200, 168, 149, 245, 48, 112, 221, 227, 109, 217, 11, 202, 214, 71, 87, 107]

encrypt with nodejs

Crypto in Nodejs: https://nodejs.org/api/crypto.html

import crypto from 'crypto';

const encrypt = (data, token, cipherIV) => {
    const cipher = crypto.createCipheriv('aes-256-cbc', token, cipherIV);
    let crypted = cipher.update(data, 'utf8', 'binary');
    crypted += cipher.final('binary');
    crypted = new Buffer(crypted, 'binary');
    return crypted;
};

// Test Code:
var message = 'Hello world!';
var token = '01234567890123456789012345678901';
var cipherIV = '0123456789012345';
var result = encrypt(message, token, cipherIV);

console.log('result: ' + result);

The result with nodejs:

[200, 168, 149, 245, 48, 112, 221, 227, 109, 217, 11, 202, 214, 71, 87, 107]

It is same with aes-js.
@stevenroose
Copy link
Member

DId you take a look at this example? #111

@raodaqi
Copy link

raodaqi commented Dec 18, 2018

I had the same problem

@raodaqi
Copy link

raodaqi commented Dec 18, 2018

Do not use SHA-256 encryption

import 'dart:typed_data';
import 'dart:convert';
import "package:pointycastle/export.dart";

Uint8List encrypt(String data, String token, String cipherIV) {
    var key = utf8.encode(token);
    var iv = utf8.encode(cipherIV);
    CipherParameters params = new PaddedBlockCipherParameters(new ParametersWithIV(new KeyParameter(key), iv), null);

    PaddedBlockCipherImpl cipherImpl = new PaddedBlockCipherImpl(new PKCS7Padding(), new CBCBlockCipher(new AESFastEngine()));
    cipherImpl.init(true, params);
    return cipherImpl.process(utf8.encode(data));
}

// Test Code:
var message = 'Hello world!';
var token = '01234567890123456789012345678901';
var cipherIV = '0123456789012345';
var result = encrypt(message, token, cipherIV);

print('result=$result');

The result with pointycastle is:

[200, 168, 149, 245, 48, 112, 221, 227, 109, 217, 11, 202, 214, 71, 87, 107]

@catouse

@catouse
Copy link
Author

catouse commented Dec 20, 2018

@raodaqi Thanks.

@catouse catouse closed this as completed Dec 20, 2018
@Nguyenpk57
Copy link

Nguyenpk57 commented Mar 13, 2019
edited
Loading 

import 'dart:typed_data';
import 'dart:convert';
import "package:pointycastle/export.dart";

Uint8List encrypt(String data, String token, String cipherIV) {
    var key = utf8.encode(token);
    var iv = utf8.encode(cipherIV);
    CipherParameters params = new PaddedBlockCipherParameters(new ParametersWithIV(new KeyParameter(key), iv), null);

    PaddedBlockCipherImpl cipherImpl = new PaddedBlockCipherImpl(new PKCS7Padding(), new CBCBlockCipher(new AESFastEngine()));
    cipherImpl.init(true, params);
    return cipherImpl.process(utf8.encode(data));
}

// Test Code:
var message = 'Hello world!';
var token = '01234567890123456789012345678901';
var cipherIV = '0123456789012345';
var result = encrypt(message, token, cipherIV);

print('result=$result');

i have used the above code to encrypt on js
But does it seem that AES.js cannot be decrypted?
because there is no unpad method
I see above you have to add the pad
Do you have any way?
@raodaqi

@Nguyenpk57
Copy link 

import 'dart:convert';
import 'dart:typed_data';

import "package:pointycastle/export.dart";


Uint8List encrypt(String data, String token, String cipherIV) {
  var key = utf8.encode(token);
  var iv = utf8.encode(cipherIV);
  CipherParameters params = new PaddedBlockCipherParameters(
      new ParametersWithIV(new KeyParameter(key), iv), null);

  PaddedBlockCipherImpl cipherImpl = new PaddedBlockCipherImpl(
      new PKCS7Padding(), new CBCBlockCipher(new AESFastEngine()));
  cipherImpl.init(true, params);
  return cipherImpl.process(utf8.encode(data));
}

String decrypt(Uint8List data, String token, String cipherIV) {
  var key = utf8.encode(token);
  var iv = utf8.encode(cipherIV);
  CipherParameters params = new PaddedBlockCipherParameters(
      new ParametersWithIV(new KeyParameter(key), iv), null);

  PaddedBlockCipherImpl cipherImpl = new PaddedBlockCipherImpl(new PKCS7Padding(), new CBCBlockCipher(new AESFastEngine()));
  cipherImpl.init(false, params);

  return utf8.decode(cipherImpl.process(data));
}

// Test Code:

void main() {
  var message = 'Ngoc create a chatroom. 👻 👻  김진학테스트 tiếng việt';
  var token = '20180531100733_userUid02_15277360532520000'.substring(0, 32);
  var cipherIV = '20180531100733_userUid02_15277360532520000'.substring(0, 16);
  var result = encrypt(message, token, cipherIV);
  print(result);

  String resultBase64 = base64.encode(result);
  print(resultBase64);

  print(decrypt(base64.decode(resultBase64), token, cipherIV));
}

Here my code on the flutter dart I used to decode and encode. It's okie

@Nguyenpk57
Copy link

const decryptByAES = (message, keyRSA) => {
var cipherIV = keyRSA.substring(0,16);
keyRSA = keyRSA.substring(0,32);

const key = aesjs.utils.utf8.toBytes(keyRSA);
const iv = aesjs.utils.utf8.toBytes(cipherIV);
const aesCbc = new aesjs.ModeOfOperation.cbc(key, iv);


var decryptedBytes = aesCbc.decrypt(aesjs.utils.hex.toBytes(message));

const unpadData = aesjs.padding.pkcs7.strip(decryptedBytes);

return aesjs.utils.utf8.fromBytes(unpadData);

};

here my code decrypt use AES

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@catouse @stevenroose @raodaqi @Nguyenpk57