Unable to decrypt data with mcrypt ..

**Atli** · Mar 2 '10, 12:12 PM

Hey.

Not much we can do for you without seeing your code, I'm afraid.

**akaash19** · Mar 2 '10, 12:37 PM

Oh certainly..
I am using command line ssl to encrypt file using blowfish CBC mode.

The decryption code is using mcrypt.

Code:

<?php
//base 64 decoding the encrypted data.
$data = base64_decode('BdRY7DN8iPDdjdsevowiZQ==');
$key ='12345678';
$iv ='1234';

$res2 = mcrypt_decrypt(MCRYPT_BLOWFISH,$key,$data,MCRYPT_MODE_CBC,$iv);
echo $res2;
?>

Regards
akaash

**akaash19** · Mar 3 '10, 11:49 AM

Any ideas?

Any ideas?
regards
akaash

**Atli** · Mar 3 '10, 12:18 PM

I can't see anything wrong with that, unless:

Your $key or $iv are incorrect.
You input data is invalid
Your C code is doing something wrong. - Which, honestly, is a lot more likely than your PHP code being wrong.
... Nope, that's all I've got.

One thing, though. Why do you decrypt the data as Base64 before sending it to Mcrypt?

**akaash19** · Mar 4 '10, 05:38 AM

hi,,thanks for the input.
I am doing base64 decode because data that i get as encrypted is garbage type.doing base64 helps to make it easy to send.

Regards
sumit

**akaash19** · Mar 9 '10, 05:50 AM

Cross Platform encryption in C and php

Hello friends.I have been trying to encrypt data in C and decrypt in PHP.SO far no success.:(
I want to know if any of you have done encryption in C and PHP.
If yes,please let me know and how.
I encrypt data in c and when in decrypt in php,i get vague characters.
Regards
akaash

**RedSon** · Mar 9 '10, 05:55 AM

Are you sure you are using the same encryption algorithim. If you encrypt something in C and write the encrypted text to a plain old text file, then you should be able to take that to any platform and decrypt it.

If you encrypted file that you encrypted in C will not decrypt using PHP then I would blame the user not the technology.

**akaash19** · Mar 9 '10, 10:09 AM

I do agree that but cross platform encryption has much more that just key and iv like padding,file format etc .
I want to know where i am missing those details and are there more to be counted.I guess person who has done this in php and C is the best judge.

regards all
akaash

**RedSon** · Mar 9 '10, 04:00 PM

does it say that mcrypt_decrypt needs a $data value that has been base64_decoded?

That would be my first suspicion.

**akaash19** · Mar 10 '10, 10:19 AM

NO.no such error..in fact i the first letter of the block is visible.
say i encrypt text HeloheloHelohel o, I am able to get the first and 9th letter and rest is garbage text. It is able to decrypt the first byte of the block.
regards

**RedSon** · Mar 10 '10, 03:41 PM

I would think that the first and 9th letter appearing as if they are decrypted is just a coincidence.

**RedSon** · Mar 10 '10, 04:31 PM

BF encoded string = 'oYmlOpvn9335Kh BzpB2ISh/CefMkAglV6YCPQz YhlXk='
secret key = "\xe2\xa4\xa5\x 99(&\xa6\x105\x 11\x89\xa7\xb7> &\x9a\xc4\xea\x d2\xbcLM\xb0\x9 1'Z\x84\xe4@\x0 5\xf3\xb5"

Code used to encrypt the string:

Code:

define Encode(c,s):
  base64.b64encode(c.encrypt(pad(s)))

define pad(s):
  s+(BLOCK_SIZE - length(s) % BLOCK_SIZE)*PADDING

define BLOCK_SIZE as 32 and PADDING as character '}'

Method call examples:

Code:

pad("test")
>>> 'test}}}}}}}}}}}}}}}}}}}}}}}}}}}}'

CipherObj = create new Blowfish object with argument (secret)
>>> CipherObj = Blowfish object at 0x92f0430

encodedString = Encode(CipherObj, "some BF encrypted text")
>>> encodedString = 'oYmlOpvn9335KhBzpB2ISh/CefMkAglV6YCPQzYhlXk='

Now take my encodedString and secretkey and decrypt it using blowfish. See if you get "some BF encrypted text".

This was encrypted using python, but if anyone is interested in doing it in any other language post your code here.

Attached Files

secretkey.txt (32 Bytes, 470 views)

**jkmyoung** · Mar 11 '10, 09:08 PM

Are you referring to the problem indicated in this message at http://php.net/manual/en/book.mcrypt.php?

When using 3DES between PHP and C#, it is to be noted that there are subtle differences that if not strictly observed, will result in annoying problem encrypt/decrypt data.

1), When using a 16 bytes key, php and c# generates total different outcome string. it seems that a 24 bytes key is required for php and c# to work alike.
2), php doesnt have a "padding" option, while c# has 3 (?). My work around is to add nulls i.e. chr(0) to the end of the source string to make its size times of 8, while in c#, PaddingMode.Zer os is required.
3) the key size has to be times of 8, in php, to make it work for c#.

Try using a 24 byte encryption key.

**RedSon** · Mar 11 '10, 09:53 PM

jkmyong, how is this relevant?

TripleDES =/= Blowfish

Unable to decrypt data with mcrypt ..

Unable to decrypt data with mcrypt ..

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment