Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add padding when encrypt and remove padding when decrypt #1545

Merged
merged 16 commits into from
Dec 22, 2024
Merged

Add padding when encrypt and remove padding when decrypt #1545

merged 16 commits into from
Dec 22, 2024

Conversation

scott-xu
Copy link
Collaborator

@scott-xu scott-xu commented Nov 30, 2024
edited
Loading

  • Add PKCS7 padding when encrypt no matter the input is divisible or not if pkcs7padding is specified.
  • Add manual padding when encrypt if input is not divisible and pkcs7padding is not specified and cipher mode is CFB or OFB.
  • Remove PKCS7 padding when decrypt if pkcs7padding is specified.
  • Remove manual padding when decrypt if pkcs7padding is not specified and there was manual padding added.

Originally I was to use BCL TripleDES/DES to replace managed implementation. Then I found the padding is wrong and was going to make a fix. During the fix, I noticed that I'm on the same path with @Rob-Hague and @zybexXL 😄 See #1238 and https://github.com/zybexXL/SSH.NET/compare/feature_AES_CSP...zybexXL:SSH.NET:fix_padding?diff=split

@scott-xu
Tighten private key checking to reveal padding issue
56d5254
@scott-xu
Encrypt should take into account padding for length of `inputBuffer…
79ff9a3 
…` passed to `EncryptBlock` if padding is specified, no matter input is divisible or not.
@scott-xu
Decrypt should take into account unpadding for the final output if …
84c3a8d 
…padding is specified.
@scott-xu
Decrypt should take into account *manual* padding for length of `in…
0303aa9 
…putBuffer` passed to `DecryptBlock` and unpadding for the final output if padding is not specified and mode is CFB or OFB.
@scott-xu
Encrypt should take into account *manual* padding for length of `in…
95bd7fd 
…putBuffer` passed to `EncryptBlock` and unpadding for the final output if padding is not specified and mode is CFB or OFB.
@scott-xu
Merge branch 'develop' into padding
8c566f5
@scott-xu
Rectify DES cipher tests. There's no padding in the data.
47cfe86
@scott-xu
Borrow PadCount method from BouncyCastle
0f98ada
scott-xu
scott-xu commented Dec 1, 2024
View reviewed changes
src/Renci.SshNet/Security/Cryptography/Ciphers/CipherPadding.cs
/// </summary>
/// <param name="input">The input.</param>
/// <returns>The padd count.</returns>
public abstract int PadCount(byte[] input);
Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We can consider replacing CipherPadding and PKCS7Padding with BouncyCastle's Pkcs7Padding

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes, I think we should take this opportunity to delete the useless CipherPadding and replace it with BC IBlockCipherPadding, and delete PKCS7Padding and replace it with BC Pkcs7Padding, if possible

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Let me have a try

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just had a quick look. It would be easier to remove it in my next PR #1546.

@scott-xu scott-xu marked this pull request as ready for review December 1, 2024 09:17
@scott-xu scott-xu mentioned this pull request Dec 1, 2024
Merged
@scott-xu
Copy link
Collaborator Author

scott-xu commented Dec 3, 2024

There would be pros and cons about different ways to fix the issue, but anyway, I think we all agree that it is an issue and should be fixed. @Rob-Hague @zybexXL

@Rob-Hague
Copy link
Collaborator

I have started reviewing this, but I need more time to refamiliarise myself in this area. I have been a bit busy lately

@scott-xu
Copy link
Collaborator Author

scott-xu commented Dec 9, 2024

Thanks! Reviewing is usually more difficult than DIY. No hurry, take your time.

zybexXL
zybexXL approved these changes Dec 9, 2024
View reviewed changes
Copy link
Contributor

@zybexXL zybexXL left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me 👍

Rob-Hague
Rob-Hague reviewed Dec 22, 2024
View reviewed changes
Copy link
Collaborator

@Rob-Hague Rob-Hague left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good

src/Renci.SshNet/Security/Cryptography/Ciphers/CipherPadding.cs
/// </summary>
/// <param name="input">The input.</param>
/// <returns>The padd count.</returns>
public abstract int PadCount(byte[] input);
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes, I think we should take this opportunity to delete the useless CipherPadding and replace it with BC IBlockCipherPadding, and delete PKCS7Padding and replace it with BC Pkcs7Padding, if possible

test/Renci.SshNet.Tests/Classes/Security/Cryptography/Ciphers/AesCipherTest.Gen.cs.txt Outdated Show resolved Hide resolved
@Rob-Hague Rob-Hague mentioned this pull request Dec 22, 2024
Closed
@Rob-Hague Rob-Hague merged commit 29997ae into sshnet:develop Dec 22, 2024
3 checks passed
@scott-xu scott-xu deleted the padding branch December 23, 2024 00:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zybexXL zybexXL zybexXL approved these changes

@Rob-Hague Rob-Hague Rob-Hague approved these changes

@drieseng drieseng Awaiting requested review from drieseng drieseng is a code owner

@WojciechNagorski WojciechNagorski Awaiting requested review from WojciechNagorski WojciechNagorski is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@scott-xu @Rob-Hague @zybexXL