encryption - Coldfusion "AES/CBC/PKCS5Padding" decryption in Ruby -


i need decrypt text encrypted using aes/cbc/pkcs5padding scheme. encrypted text got generated using coldfusion.

cfml example below:

<table border="1" cellpadding="5" cellspacing="0">     <tr bgcolor="c0c0c0">         <th>decrypted string</th>     <th>3deskey</th>     </tr>         <cfset variables.algorithm ="aes/cbc/pkcs5padding">         <cfset variables.seed ="c610297ce8570750">         <cfset variables.password = "vza0o49shpie/mr4+4jhxhapmkheyl5o2nzzdxvnqbo=">         <cfset variables.decryptedstring = decrypt(variables.password, generate3deskey("#variables.seed#"), "#variables.algorithm#", "base64")>         <cfoutput>         <tr>             <td>#variables.decryptedstring#</td>         <td><cfoutput>#generate3deskey("variables.seed")#</cfoutput></td>         </tr>         </cfoutput> </table>

output is:

decrypted string: name322big563 3deskey: qzyxmdi5n0nfodu3mdc1ma==

i tried ruby:

require 'openssl' require 'base64'  string = "vza0o49shpie/mr4+4jhxhapmkheyl5o2nzzdxvnqbo="  def decrypt(cpass)   des = openssl::cipher::cipher.new('aes-256-cbc')   des.decrypt   des.key = 'c610297ce8570750'   return des.update(base64.decode64(cpass)) + des.final end  decrypted = decrypt(string)  puts "decrypted string: #{decrypted}"

i key length short (openssl::cipher::ciphererror) problem don't know key seed used c610297ce8570750, because key returned cfml script base64 need hex key. tried openssl::cipher::aes256.new(:cbc) same error.

require 'openssl' require 'base64' # decryption  aes = openssl::cipher::aes256.new(:cbc) aes.decrypt aes.padding = 1 # it's on default aes.key = "qzyxmdi5n0nfodu3mdc1ma==" aes.iv = "c610297ce8570750" aes.update(base64::decode64("vza0o49shpie/mr4+4jhxhapmkheyl5o2nzzdxvnqbo="))+aes.final

any idea?

edit:

as hinted @leigh, need use aes-128-cbc, did this:

require 'openssl' require 'base64'  string = "vza0o49shpie/mr4+4jhxhapmkheyl5o2nzzdxvnqbo="  def decrypt(cpass)   des = openssl::cipher::cipher.new('aes-128-cbc')   des.decrypt   des.key = 'c610297ce8570750'   return des.update(base64.decode64(cpass)) + des.final end  decrypted = decrypt(string)  puts "decrypted string: #{decrypted}"

actually seems kinda work (...ish).

decrypted string: ▒▒.ϥd▒▒       ▒▒▒▒▒name322big563

any idea what's still wrong?

(expanded comments)

but need hex key

then convert base64 hex. in cf, can use binaryencode() , binarydecode functions:

binaryencode(binarydecode("qzyxmdi5n0nfodu3mdc1ma==", "base64"), "hex")

looks there few other problems:

  1. the cf code generates 128 bit key, ruby code using aes 256. needs use aes 128.

  2. the cf code generating random iv. ruby code using totally different iv. cbc mode, both sides must use same iv expected results. "decrypting incorrect iv causes first block of plaintext corrupt ...", why decrypted value off. resolve it, ruby code should use same iv used encrypt.

update:

when cf generates iv automatically (as here), prepends iv encrypted value:

when coldfusion creates iv automatically, generates secure, random iv , prepends encrypted data. when coldfusion decrypts data, iv recovered , used. cryptologically important iv varies between encryptions. why encrypted value changes when repeatedly encrypt same string algorithm uses iv, des/cbc/pkcs5padding. unlike encryption key, not necessary iv kept secret.

so iv value can extracted removing first "block" of encrypted binary. block size depends on algorithm. aes, 16. not know exact ruby code, in cf extract iv so: 

blocksize = 16; rawbinary = binarydecode(encryptedstring, "base64"); // iv first block  ivbytes   = arrayslice(rawbinary, 1, blocksize); // remaining bytes encrypted value databytes = arrayslice(rawbinary, blocksize+1, arraylen(rawbinary)-blocksize);

-

Comments

Post a Comment

Popular posts from this blog

java - UnknownEntityTypeException: Unable to locate persister (Hibernate 5.0) -

Image
in code below when try execute main.java getting exception: exception in thread "main" org.hibernate.unknownentitytypeexception: unable locate persister: com.np.vta.test.pojo.users @ org.hibernate.internal.sessionfactoryimpl.locateentitypersister(sessionfactoryimpl.java:792) @ org.hibernate.internal.sessionimpl.locateentitypersister(sessionimpl.java:2637) @ org.hibernate.internal.sessionimpl.access$2500(sessionimpl.java:164) @ org.hibernate.internal.sessionimpl$identifierloadaccessimpl.<init>(sessionimpl.java:2575) @ org.hibernate.internal.sessionimpl$identifierloadaccessimpl.<init>(sessionimpl.java:2562) @ org.hibernate.internal.sessionimpl.byid(sessionimpl.java:1044) @ org.hibernate.internal.sessionimpl.get(sessionimpl.java:955) @ com.app.test.main.main(main.java:20) but if uncomment cfg.addclass( users.class ).addresource( "com/np/vta/test/pojo/users.hbm.xml" ); code works fine. why not reading <mapping...
Read more

python - ValueError: empty vocabulary; perhaps the documents only contain stop words -

i'm using (for first time) scikit library , got error: valueerror: empty vocabulary; perhaps documents contain stop words file "c:\users\a605563\desktop\velibprojetpreso\traitementtwitterdico.py", line 33, in <module> x_train_counts = count_vect.fit_transform(filetweets) file "c:\python27\lib\site-packages\sklearn\feature_extraction\text.py", line 804, in fit_transform self.fixed_vocabulary_) file "c:\python27\lib\site-packages\sklearn\feature_extraction\text.py", line 751, in _count_vocab raise valueerror("empty vocabulary; perhaps documents contain stop words but don't understand why that's happening. import sklearn sklearn.feature_extraction.text import countvectorizer import pandas pd import numpy import unicodedata import nltk tweetsfile = open('tweets2015-08-13.csv', 'r+') f2 = open('analyzer.txt', 'a') print tweetsfile.readline() count_vect = countvectorizer(strip_accents='ascii...
Read more

ubuntu - collect2: fatal error: ld terminated with signal 9 [Killed] -

Image
i'm trying build precimonious on ubuntu 16.04.3 x64. allocated 1gb memory it. file structure looks like ~ |--- llvm/ |--- precimonious/ where llvm on version 3.0 mentioned @ https://github.com/corvette-berkeley/precimonious#requirement . followed steps on readme command make ended with ... llvm[1]: linking debug shared library libllvm-3.0.so collect2: fatal error: ld terminated signal 9 [killed] compilation terminated. ... i went through answers online , might because there's not enough memory perform link. memory usage the gcc version on machine gcc version 5.4.0 20160609 (ubuntu 5.4.0-6ubuntu1~16.04.4) , installed via apt-get install build-essential . fresh droplet created on digitalocean btw. appreciated. it memory exhaustion. sampling interval memory measurement not small enough covers exact point oom killer kicks in. depending on container/vm technology, may able set vm.overcommit_memory=2 before build, process not killed (but doing requires m...
Read more