使用AES-CFB时Go和Pycrypto的结果不同

I am adding a go application to an already existing python codebase. I've been having trouble dealing with encryption between the languages. This is using go 1.2.1 and Python 2.7.x / PyCrypto 2.7a1.

Here is the Python sample:

import Crypto.Cipher
import Crypto.Hash.HMAC
import Crypto.Hash.SHA256
import Crypto.PublicKey.RSA
from binascii import hexlify, unhexlify

#encrypt
payload =  unhexlify("abababababababababababababababababababababababababababababababab")
password = unhexlify("0123456789ABCDEF0123456789ABCDEF0123456789ABCDEF0123456789ABCDEF")
iv = unhexlify("00000000000000000000000000000000")

print "IV: ", hexlify(iv), "len: ", len(iv)
print "Password length: ", len(password)


cipher = Crypto.Cipher.AES.new(
            key=password, 
            mode=Crypto.Cipher.AES.MODE_CFB, 
            IV=iv)

payload = cipher.encrypt(payload)

print hexlify(payload) #dbf6b1877ba903330cb9cf0c4f530d40bf77fe2bf505820e993741c7f698ad6b

And this is the Go sample:

package main

import (
    "fmt"
    "crypto/cipher"
    "crypto/aes"
    "encoding/hex"
)

// encrypt
func main() {
    payload, err1 := hex.DecodeString("abababababababababababababababababababababababababababababababab")
    password, err2 := hex.DecodeString("0123456789ABCDEF0123456789ABCDEF0123456789ABCDEF0123456789ABCDEF")
    iv, err3 := hex.DecodeString("00000000000000000000000000000000")

    if err1 != nil {
        fmt.Printf("error 1: %v", err1)
        return
    }

    if err2 != nil {
        fmt.Printf("error 2: %v", err2)
        return
    }

    if err3 != nil {
        fmt.Printf("error 3: %v", err3)
        return
    }

    aesBlock, err4 := aes.NewCipher(password)

    fmt.Printf("IV length:%v
", len(iv))
    fmt.Printf("password length:%v
", len(password))

    if err4 != nil {
        fmt.Printf("error 4: %v", err4)
        return
    }

    cfbDecrypter := cipher.NewCFBEncrypter(aesBlock, iv)
    cfbDecrypter.XORKeyStream(payload, payload) 

    fmt.Printf("%v
", hex.EncodeToString(payload)) // db70cd9e6904359cb848410bfa38d7d0a47b594f7eff72d547d3772c9d4f5dbe
}

Here is the golang link, I could not find a Python pastebin that had PyCrypto installed.

As suggested by the title & source, the two snippets produce different cyphertext:
Python: dbf6b1877ba903330cb9cf0c4f530d40bf77fe2bf505820e993741c7f698ad6b
Golang: db70cd9e6904359cb848410bfa38d7d0a47b594f7eff72d547d3772c9d4f5dbe

Both languages can decrypt their 'native' cypthertext, but neither can decrypt the others'. Because the python implementation already exists, I'm looking for a solution that will allow Go to decrypt cyphertext encrypted with the example PyCrypto AES settings & key size.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

5条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
drgbpq5930 2014-05-27 21:53
关注
Research on the current system has revealed that our python system uses CFB8 (8 bit segments). Go does not support this out of the box, but the source code used in the current CFBDecrypter / CFBEncrypter looks like it can be adapted fairly easily.

本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
普通网友 2014-10-06 10:24
关注
It seems that the cipher can be made compatible to Go's crypto/cipher if we change segment_size of AES object from the default 8 to AES.block_size*8 (which is 128), like this:

Crypto.Cipher.AES.new( key=password, mode=Crypto.Cipher.AES.MODE_CFB, IV=iv, segment_size=AES.block_size*8 )
解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

dsakktdog498483070 2016-05-15 03:26

关注

If anyone is looking for Go implementation of CFB mode with segment size = 8 you can use this:

import "crypto/cipher"

// CFB stream with 8 bit segment size
// See http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf
type cfb8 struct {
    b         cipher.Block
    blockSize int
    in        []byte
    out       []byte

    decrypt bool
}

func (x *cfb8) XORKeyStream(dst, src []byte) {
    for i := range src {
        x.b.Encrypt(x.out, x.in)
        copy(x.in[:x.blockSize-1], x.in[1:])
        if x.decrypt {
            x.in[x.blockSize-1] = src[i]
        }
        dst[i] = src[i] ^ x.out[0]
        if !x.decrypt {
            x.in[x.blockSize-1] = dst[i]
        }
    }
}

// NewCFB8Encrypter returns a Stream which encrypts with cipher feedback mode
// (segment size = 8), using the given Block. The iv must be the same length as
// the Block's block size.
func newCFB8Encrypter(block cipher.Block, iv []byte) cipher.Stream {
    return newCFB8(block, iv, false)
}

// NewCFB8Decrypter returns a Stream which decrypts with cipher feedback mode
// (segment size = 8), using the given Block. The iv must be the same length as
// the Block's block size.
func newCFB8Decrypter(block cipher.Block, iv []byte) cipher.Stream {
    return newCFB8(block, iv, true)
}

func newCFB8(block cipher.Block, iv []byte, decrypt bool) cipher.Stream {
    blockSize := block.BlockSize()
    if len(iv) != blockSize {
        // stack trace will indicate whether it was de or encryption
        panic("cipher.newCFB: IV length must equal block size")
    }
    x := &cfb8{
        b:         block,
        blockSize: blockSize,
        out:       make([]byte, blockSize),
        in:        make([]byte, blockSize),
        decrypt:   decrypt,
    }
    copy(x.in, iv)

    return x
}

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
douna6802 2016-07-30 14:39
关注
I found that easiest way to deal with this from Python side is to use M2Crypto library.

Final code looks like:

import M2Crypto.EVP iv = ciphertext[:16] ciphertext = ciphertext[16:] cipher = M2Crypto.EVP.Cipher('aes_256_cfb', t, iv, 0) text = cipher.update(ciphertext) print text

Works perfect without need to change something in Go.
解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容
关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
doulan4939 2016-08-01 06:35
关注
i solve by adapt python code like this (golang encode and python decode):

# golang encode padNum := len(data) % 16 if padNum != 0 { for i := 0; i < 16-padNum; i++ { data = append(data, ',') } } # python decode cipher = AES.new(key=self.key, mode=AES.MODE_CFB, IV=iv,segment_size=128)
解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

查看更多回答(4条)

报告相同问题？

关注问题

使用AES-CFB时Go和Pycrypto的结果不同 python
2014-05-27 19:54

回答 5 已采纳 Research on the current system has revealed that our python system uses CFB8 (8 bit segments). Go
AES-CFB从Go到JS forge javascript
2017-01-07 12:55

回答 1 已采纳 You're forgetting to remove the IV. This means the IV gets "decrypted" as well, resulting in nonse
aes-128-cbc和aes-128加密有什么区别吗？ php
2015-10-14 09:31

回答 4 已采纳 3 things: AES: Advanced Encryption Standard. This is the name of the encryption algorithm (symme
aescfb加密,使用AES-CFB在Java中加密并解密
2020-12-19 12:30

BenzzZX的博客 I am aware of a question very similar to this (How do I encrypt in Python and decrypt in Java?) but I have a different problem.My problem is, I am not able to decrypt in Java correctly. Despite using ...
在Golang中解密在Python AES CFB中加密的内容 python
2017-06-30 15:27

回答 1 已采纳 Try encrypting from Python like this. The result can then be unencrypted from Go successfully.
如何在Go中正确编写JVM AES / CFB8加密 kotlin
2019-08-17 22:27

回答 1 已采纳 The solution to this is to implement CFB8 manually since the built in implementation defaults to C
Golang AES CFB-变异IV
2014-08-26 19:16

回答 1 已采纳 Going down the path you're hinting at is a bit ugly, and prone to break when the implementation ch
python AES CFB-128加密
2018-09-27 10:14

我终于有blog了的博客 1.传统的pycrypto已经不更新了有很多bug 导致 CFB模式有问题，网上的99%都是错的，要用pycryptodome包 https://github.com/Legrandin/pycryptodome 2.包出现问题应该去github看wiki或者bug 搜关键词 3.以下是...
如何使用Golang解密AES加密的传输流段？
2018-01-02 07:56

回答 1 已采纳 Your iv is indeed too short so the openssl just padded zero for you: openssl aes-128-cbc -d -in e
Golang，使用AES和Base64加密字符串
2013-09-15 20:45

回答 5 已采纳 This is based on the NewCFBEncrypter / NewCFBDecrypter examples and seems to do what you require:
兼容AES CFB
2014-08-23 13:15

回答 2 已采纳 I investigated this with the following inputs because I was unsure of the bit/byte order for both
python实现AES加密与解密
2020-12-31 02:08

python 在 Linux下使用AES时要安装的是pycrypto模块 pip install pycrypto CBC加密需要一个十六位的key(密钥)和一个十六位iv(偏移量) ECB加密不需要iv AES CBC 加密的python实现 from Crypto.Cipher i
使用Go和PHP进行AES加密 php
2016-03-31 14:42

回答 2 已采纳 CFB mode has an issue, this will work in CBC mode class Crypto { private $encryptKey = "keyfo
aes加密算法python实现_Python基于pycrypto实现的AES加密和解密算法示例
2021-02-06 11:58

程序员良许的博客本文实例讲述了Python基于pycrypto实现的AES加密和解密算法。分享给大家供大家参考，具体如下：一代码# -*- coding: UTF-8 -*-import stringimport randomfrom Crypto.Cipher import AESdef keyGenerater(length):'...
[1155]python--AES加密
2022-07-28 19:11

周小董的博客参考https//www.cnblogs.com/liming19680104/p/12171198.html。AES加密，用的是第三方模块pycryptodome。CBC模式是其中公认的安全性最好的模式。
python 实现AES加密算法
2022-03-21 18:46

埃菲尔没有塔尖的博客 1. AES算法简介 AES算法详解：高级加密标准,它是一种对称加密算法，AES只有一个密钥，这个密钥既用来加密，也用于解密。 AES加密方式有五种：ECB, CBC, CTR, CFB, OFB。...在 Windows下使用AES时要安装的是pycrypto
python加密包_python加密包利用pycrypto包进行AES、DES、MD5等加密
2021-01-14 22:00

格兰芬多小狮子的博客第三方Crypto包提供了较全面的加密算法，包括Cipher、Hash、Protocol、PublicKey、Singature、Util几个子...下面介绍AES及DES的加密解密算法，python版本为2.7.9。5.1 AES加密解密1 # coding=utf-823 from Crypto...
aes加密算法python实现_Python中用PyCrypto实现AES加密的实例代码
2020-12-15 13:54

weixin_39683163的博客 Python使用PyCrypto实现AES加密功能示例本文实例讲述了Python使用PyCrypto实现AES加密功能。分享给大家供大家参考，具体如下：#!/usr/bin/env pythonfrom Crypto.Cipher import AESimport base64import os# the ...
Python实现AES_256 CBC模式加密算法
2021-12-15 14:22

我是个假程序员的博客 AES AES(Advanced Encryption Standard)高级加密标准。是美国联邦政府采用的一种区块加密标准。这个标准用来替代原先的DES，已经被多方分析且...AES最常见的有3种方案，分别是AES-128、AES-192和AES-256，它们的区别
python3 aes加密_Python3 - AES 加密解密
2020-12-09 13:11

weixin_39964978的博客 /usr/bin/env python3from Crypto.Cipher import AESfrom Crypto import Randomfrom base64 import b64encode, b64decodefrom Crypto.Util import Counterfrom binascii import hexlifyprint('```GENERAL```')prin.....
没有解决我的问题, 去提问

悬赏问题

¥15 关于#abap#的问题，请各位专家解答！
¥20 内网通过公网访问外网问题
¥15 怎么使请求通过cors
¥15 WDM 驱动ACPI 相关疑问
¥15 prism 跨窗体共享数据绑定 wpf
¥15 hdl designer突然用不了系统的moduleware组件，请问有人遇到或者怎么解决吗？
¥15 0基础计算机毕设，应该从哪开始？
¥60 使用DKT40脑图划分ROI区域
¥15 有偿解决C51单片机液晶屏12864显示问题
¥15 IDEA构建失败？怎么搞

使用AES-CFB时Go和Pycrypto的结果不同

5条回答 默认 最新

悬赏问题

5条回答默认最新