diff options
| author | Jesse Luehrs <doy@tozt.net> | 2015-03-15 20:27:45 -0400 |
|---|---|---|
| committer | Jesse Luehrs <doy@tozt.net> | 2015-03-15 20:27:45 -0400 |
| commit | 01dc46bb5fd12b1fe21e1ea45a034b1a14af6243 (patch) | |
| tree | c95a53456ad2d96a586b263fa031ac15a026385c /src | |
| parent | 171dbac2f26b1561b62058c1b952eaa7d7604a90 (diff) | |
| download | matasano-01dc46bb5fd12b1fe21e1ea45a034b1a14af6243.tar.gz matasano-01dc46bb5fd12b1fe21e1ea45a034b1a14af6243.zip | |
handle padding properly
Diffstat (limited to 'src')
| -rw-r--r-- | src/aes.rs | 17 | ||||
| -rw-r--r-- | src/primitives.rs | 5 |
2 files changed, 9 insertions, 13 deletions
@@ -1,7 +1,7 @@ use openssl; use std::collections::HashSet; -use primitives::fixed_xor; +use primitives::{fixed_xor, pad_pkcs7, unpad_pkcs7}; pub fn decrypt_aes_128_ecb (bytes: &[u8], key: &[u8]) -> Vec<u8> { return openssl::crypto::symm::decrypt( @@ -16,25 +16,16 @@ pub fn decrypt_aes_128_cbc (bytes: &[u8], key: &[u8], iv: &[u8]) -> Vec<u8> { let mut prev = iv.clone(); let mut plaintext = vec![]; for block in bytes.chunks(16) { - // XXX not sure what's going on here - decrypt_aes_128_ecb doesn't - // decrypt the last block? - let double_block: Vec<u8> = block - .iter() - .chain(block.iter()).map(|x| *x) - .collect(); let plaintext_block = fixed_xor( - &decrypt_aes_128_ecb(&double_block[..], key)[..], + &decrypt_aes_128_ecb(&pad_pkcs7(block, 16)[..], key)[..], prev ); - for &c in &plaintext_block[..16] { + for c in plaintext_block { plaintext.push(c); } prev = block.clone(); } - let padding = plaintext[plaintext.len() - 1]; - let new_len = plaintext.len() - padding as usize; - plaintext.truncate(new_len); - return plaintext; + return unpad_pkcs7(&plaintext[..]).to_vec(); } pub fn find_aes_128_ecb_encrypted_string (inputs: &[Vec<u8>]) -> Vec<u8> { diff --git a/src/primitives.rs b/src/primitives.rs index b0d7116..76a2024 100644 --- a/src/primitives.rs +++ b/src/primitives.rs @@ -32,6 +32,11 @@ pub fn pad_pkcs7 (block: &[u8], blocksize: u8) -> Vec<u8> { .collect(); } +pub fn unpad_pkcs7 (block: &[u8]) -> &[u8] { + let padding_byte = block[block.len() - 1]; + return &block[..(block.len() - padding_byte as usize)]; +} + fn count_bits (bytes: &[u8]) -> u64 { bytes.iter().map(|&c| { count_bits_byte(c) }).fold(0, |acc, n| acc + n) } |