c# - How to change padding option on an existing encrypt/decrypt code? -


i have following code, , working 2 years. have started see random issue padding. when random, mean same thing works 1 day doesn't work other day. , someday decides work randomly.

now, if add padding none mentioned in answers above, mess encrypted files. i'm thinking create different approach using goto statement in catch block in method same way did when changed encryption key. or is there better approach change padding none?

/// <summary> ///  /// </summary> [serializable] public static class encryptdecrypt {     private static string encryptionkey_old = "makv2spbni99212";     private static string encryptionkey = "yi9bpgg1cxr01gbwgpzrtoznojhpkgbozisbg5jl3iru48yhcfgdzu76fdpa5fuu";      /// <summary>     ///      /// </summary>     /// <param name="cleartext"></param>     /// <returns></returns>     public static string encrypt(string cleartext)     {         byte[] whitebs = encoding.unicode.getbytes(cleartext);          using (aes encryptor = aes.create())         {              rfc2898derivebytes pdb = new rfc2898derivebytes(encryptionkey, new byte[] { 0x49, 0x76, 0x61, 0x6e, 0x20, 0x4d, 0x65, 0x64, 0x76, 0x65, 0x64, 0x65, 0x76 });              encryptor.key = pdb.getbytes(32);              encryptor.iv = pdb.getbytes(16);             encryptor.mode = ciphermode.ecb;             encryptor.padding = paddingmode.pkcs7;              using (memorystream ms = new memorystream())             {                  using (cryptostream cs = new cryptostream(ms, encryptor.createencryptor(), cryptostreammode.write))                 {                      cs.write(whitebs, 0, whitebs.length);                     cs.flushfinalblock();                     cs.close();                 }                 cleartext = convert.tobase64string(ms.toarray());             }         }         return cleartext.endswith("==") ? cleartext.remove(cleartext.length - 2) : cleartext;     }     /// <summary>     ///      /// </summary>     /// <param name="ciphertext"></param>     /// <returns></returns>     public static string decrypt(string ciphertext)     {         int attempts = 0;         string exception = string.empty;           starthere:         ciphertext = ciphertext.replace(" ", "+");          byte[] cipherbytes;         try { cipherbytes = convert.frombase64string(ciphertext); }         catch { cipherbytes = convert.frombase64string(ciphertext + "=="); }          using (aes encryptor = aes.create())         {              rfc2898derivebytes pdb = new rfc2898derivebytes(encryptionkey, new byte[] { 0x49, 0x76, 0x61, 0x6e, 0x20, 0x4d, 0x65, 0x64, 0x76, 0x65, 0x64, 0x65, 0x76 });              encryptor.key = pdb.getbytes(32);              encryptor.iv = pdb.getbytes(16);             encryptor.mode = ciphermode.ecb;             encryptor.padding = paddingmode.pkcs7;             try             {                 using (memorystream ms = new memorystream())                 {                      using (cryptostream cs = new cryptostream(ms, encryptor.createdecryptor(), cryptostreammode.write))                     {                          cs.write(cipherbytes, 0, cipherbytes.length);                         cs.flushfinalblock();                         cs.close();                     }                      ciphertext = encoding.unicode.getstring(ms.toarray());                  }             }             catch             {                 if (attempts == 2) throw;                 encryptionkey = encryptionkey_old;                 attempts++;                 goto starthere;             }         }         return ciphertext;     }     '

changing not idea don't know how go doing because there thousands of files encrypted code.

it looks padding error being used determine decryption successful, wrong , not work! need method determine successful decryption, in case if correct key used.

see pkcs#7 padding.

if decryption wrong key result random data , there 1/256 probability last byte 0x01 correct padding , there no padding error reported. lesser extent other valid padding randomly occur.

another method necessary determine if correct decryption obtained, mac used authenticate encryption. can in data known, called crib , success rate determined uniqueness of it.

re: padding: unless length of data encrypted exact multiple of block size (16-bytes aes) padding required , pkcs#7 padding correct padding


Comments

Post a Comment

Popular posts from this blog

sql server - Cannot query correctly (MSSQL - PHP - JSON) -

i have little problem on project. , turns out query result returns nothing when value of first name or last name has 'ñ' in it. here's code config.php: <?php ini_set('mssql.charset', 'utf-8'); header('content-type: text/html; charset=utf-8'); $servername = "192.168.1.21"; /* ip add of db server */ $connection = array("database" => "db", "uid" => "?", "pwd" => "***"); $conn = sqlsrv_connect($servername, $connection); if(!$conn){ echo "connection not established."; die(print_r(sqlsrv_errors(), true)); } ?> myquery: $idnumber = $_post["idnum"]; $response = array(); $query2 = "select clname, cfname, cmname, cqualifier student cidno = '$idnumber'"; try{ $stmt2 = sqlsrv_query($conn, $query2); } catch(pdoexeption $ex){ $response["success"] = 0; $response["message"] = "d...
Read more

php - trouble displaying mysqli database results in correct order -

i have table in database stores events , date expire. want display events on website display current events first expired events after? i have tried following sql $sql = "select noticeid, notice, noticedesc, noticeimg, noticedate, expirydate tbl_notices group noticeid ,expired order expirydate asc"; but returns expired results first due expirydate being ordered asc in query. my tbl_notice structure looks this noticeid => int(4) notice => varchar(100) noticedesc => text noticedate => timestamp noticeimg => varchar(40) expirydate => datetime expired => int(1) 0 current or 1 expired my php code is $sql = "select noticeid, notice, noticedesc, noticeimg, noticedate, expirydate tbl_notices group noticeid ,expired order expirydate asc"; $result = mysqli_query($conn,$sql); if ($result->num_rows > 0) { // output data of each row while($row = $result->fetch_assoc()) { ...
Read more

C++ Linked List -

i trying create linked list download txt file , use linked list handle file line line. when handling downloaded linked list operations performed on such text editor would. encountering problems however. seems "node(string value)" section of code has wrong though original node() declaration no arguments passes. unable figure out quite is. node.h class node { public: node(); node(string value); void setnext(node *nextnode); // allows user set "next" pointer of node points friend class linkedlist; private: string data; // data box node* next; // pointer box }; node.cpp # include <string> # include "node.h" using namespace std; node::node() { data = ""; next = null; } node::node(string value) { data = value; next = null; } void node::setnext(node *nextnode) // allows user set "next" pointer of node points { this->next = nextnode; } your #include <string> ...
Read more