Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

AES256 on Java vs PHP

Tags:

java

php

encryption

aes

Quick one that's thus far been evading me (long night). I'm comparing AES256 in PHP vs Java and noticing discrepancies. Please for simplicity ignore the ascii key and the null IV, those will be replaced in production. But I need to get past this first and can't figure out where I am erring:

PHP:

echo base64_encode(
    mcrypt_encrypt(
        MCRYPT_RIJNDAEL_128,
        "1234567890ABCDEF1234567890ABCDEF",
        "This is a test",
        MCRYPT_MODE_CBC,
        "\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"
    )
);

Java

byte[] key = "1234567890ABCDEF1234567890ABCDEF".getBytes("UTF-8");
byte[] iv  = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
AlgorithmParameterSpec ivSpec = new IvParameterSpec(iv);
SecretKeySpec newKey = new SecretKeySpec(key, "AES");
Cipher cipher = Cipher.getInstance("AES");
cipher.init(Cipher.ENCRYPT_MODE, newKey, ivSpec);
byte[] results = cipher.doFinal("This is a test".getBytes("UTF-8"));

return Base64.encodeToString(results,Base64.DEFAULT);

PHP output: 0KwK+eubMErzDaPU1+mwTQ==

Java output: DEKGJDo3JPtk48tPgCVN3Q==

Not quite what I was expecting o_O !

I've also tried MCRYPT_MODE_CBC, MCRYPT_MODE_CFB, MCRYPT_MODE_ECB, MCRYPT_MODE_NOFB, etc.. none of them produced the Java string.

like image 936
Authman Apatira Avatar asked Nov 12 '22 11:11

Authman Apatira

1 Answers

PHP pads the input bytes with \0 to make it a multiple of the block size. The equivalent in Java would be this (assuming the string you want to encrypt is in data):

Cipher cipher = Cipher.getInstance("AES/CBC/NoPadding");
int blockSize = cipher.getBlockSize();

byte[] inputBytes = data.getBytes();
int byteLength = inputBytes.length;
if (byteLength % blockSize != 0) {
    byteLength = byteLength + (blockSize - (byteLength % blockSize));
}

byte[] paddedBytes = new byte[byteLength];

System.arraycopy(inputBytes, 0, paddedBytes, 0, inputBytes.length);

cipher.init(Cipher.ENCRYPT_MODE, newKey, ivSpec);
byte[] results = cipher.doFinal(paddedBytes);

As a warning to this - zero-based padding is not desired. There's no way to determine the difference between \0 characters at the end of your string, and the actual padding. It's better to use PKCS5Padding instead, but you will get different results in PHP. Ask yourself if you NEED the encryption cross-platform like this.

like image 60
Colin M Avatar answered Nov 15 '22 04:11

Colin M
Sign in to Comment

Related questions

Where can I save private key used in java code [duplicate]
ThreadDump issues when almost all threads are in NATIVE state
Have some troubles vith xml file. Android. Eclipse. error: Invalid start tag PreferenceScreen
slf4j always use NOPMDCAdapter
How can I create Endpoint for WebService?
Why is there such a big difference in the transfer rates of the Java FTP Clients
BufferedReader: Determine byte offset of lines read
Can I detect target>1.6 dependencies in a <=1.6 project?
Android Google Maps v2 polygon performance issue?
NullPointerException in Netbeans Hibernate Mapping Files and POJOs wizard from Firebird database [duplicate]
Apache Avro ThreadLocal objects linger around on Tomcat un-deploy
Log4j2 auto config
Could not establish the connection to the Exchange Web Service - Java API
Using Generics in Matrix Addition/Multiplication
How to deal with JavaDoc comment repetition?
Transform source code into LaTeX
What are the technical, underlying reasons behind Robot().createScreenCapture() being so slow?
JSESSIONID not expired, SPRING_SECURITY_REMEMBER_ME expired
Error in converted maven project in Eclipse
casting Collection<SomeClass> to Collection<SomeSuperClass>

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!