search

shadowsocks / crypto2

The fastest cryptographic library in the galaxy
MIT License
350 stars 39 forks source link

aes encryption result is incorrect #29

Open tfzxyinhao opened 2 years ago

tfzxyinhao commented 2 years ago

java code

public static String AESEncrypt(String plainText, SecretKey key) throws NoSuchPaddingException, NoSuchAlgorithmException, InvalidKeyException, BadPaddingException, IllegalBlockSizeException {
        if (ObjectUtils.isEmpty(plainText)) return plainText;
        Cipher aesCipher = Cipher.getInstance("AES");
        aesCipher.init(Cipher.ENCRYPT_MODE, key);
        return Base64.getEncoder().encodeToString(aesCipher.doFinal(plainText.getBytes()));
    }

public static void main(String[] args) {
        String key = "MTIzNDU2Nzg5MDEyMzQ1Njc4OTAxMjM0NTY3ODkwMTI=";
        String before = "James";
        try {
            String after = AESEncrypt(before, new SecretKeySpec(Base64.getDecoder().decode(key), "AES"));
            System.out.println(before);
            System.out.println(after);
        } catch (Exception e) {
            System.out.println(e.getMessage());
        }
}

java code ouput

James
u9QmnI+gjMUK9LETbm2eWA==

rust code

pub fn test_aes(&self, password: String, data: String) -> String {
        let key = base64::decode(password).unwrap();
        let cipher = Aes256::new(key.as_slice());
        let mut text = data.as_bytes().clone().to_owned();
        cipher.encrypt(&mut text);
        return base64::encode(text);
    }

pub fn test(&self) {
        let password = "MTIzNDU2Nzg5MDEyMzQ1Njc4OTAxMjM0NTY3ODkwMTI=".to_string();
        let data = "James".to_string();
        println!("{}\n{}", data.clone(), self.test_aes(password, data));
    }

rust code ouput

James
vWkOWA0=

base64("12345678901234567890123456789012") = "MTIzNDU2Nzg5MDEyMzQ1Njc4OTAxMjM0NTY3ODkwMTI"

aes online result image

Is there anything wrong with how I use it?

database64128 commented 2 years ago

Your key length is not 32 bytes.

tfzxyinhao commented 2 years ago

len(12345678901234567890123456789012) = 32

database64128 commented 2 years ago

len(12345678901234567890123456789012) = 32

This is not a key. The key should be a slice of 32 bytes, not a string of 32 characters.

zonyitoo commented 2 years ago

The correctness is already tested with these testcases:

https://github.com/shadowsocks/crypto2/blob/f32eccf5ef588206017ee47c29614e727d8b1183/src/blockcipher/aes/mod.rs#L38-L96

AES is a symmetric cipher algorithm, which means that the cipher text's length should be identical with the text. Your Java output:

James
u9QmnI+gjMUK9LETbm2eWA==

should have included some kind of padding, because it is exactly 16bytes length (128-bits), which is AES's block length.

A little bit of searching shows that:

For Oracle JDK 7 (tested), the default cipher for AES is AES/ECB/PKCS5Padding. The Java Security documentation doesn't mention about this though (http://docs.oracle.com/javase/6/docs/technotes/guides/security/StandardNames.html#algspec), have to do some JUnit testing to find out.