Skip Menu |

This queue is for tickets about the Crypt-CBC CPAN distribution.

Report information
The Basics
Id: 716
Status: resolved
Priority: 0/
Queue: Crypt-CBC
People
Owner: LDS [...] cpan.org
Requestors: swaters [...] amicus.com
Cc:
AdminCc:
Bug Information
Severity: Important
Broken in: (no value)
Fixed in: (no value)

History Show all quoted text
  Thu Jun 06 10:16:23 2002 Guest - Ticket created
Subject: CBC fixes for oneandzeroes and compatibility
Fixes (in order of diff): 1. parse buffer into blocks only if buffer is greater than blocksize since ->finish will do pad/encrypt stuff for 1 block. 2. the code ---- . "a*" ---- in the unpack was causing an extra byte to be added to strings which evenly divide into blocks. 3. code formatting inside an if statement 4. oneandzeroes fix. basically, the bit string was being truncated incorrectly. I made it a hex string and truncate /80+$/ (i.e., 0x80 is the 1 plus any zeros) Tested: Perl v5.6.1 built for powerpc-linux Perl v5.6.1 built for i386-linux oneandzeroes padding with Crypt::Rijndael With this patch, Crypt::CBC works out of the box with Cryptix 3.2.0 and Crypt::Rijndael::MODE_CBC. -s
--- CBC.pm Tue Jun 4 15:48:04 2002 +++ CBC.pm.new Wed Jun 5 13:34:45 2002 @@ -174,27 +174,23 @@ my $bs = $self->{'blocksize'}; - return $result unless (length($self->{'buffer'}) >= $bs); + return $result unless (length($self->{'buffer'}) > $bs); # split into blocksize chunks - # used to be: - # my @blocks = $self->{'buffer'}=~/(.{1,$bs})/ogs; - # but this is a little faster (about 1.5 times) - my @blocks = unpack("a$bs "x(int(length($self->{'buffer'})/$bs)) . "a*", $self->{'buffer'}); - $self->{'buffer'} = ''; - - if ($d) { # when decrypting, always leave a free block at the end - $self->{'buffer'} = length($blocks[-1]) < $bs ? join '',splice(@blocks,-2) : pop(@blocks); + my $bcnt = int(length($self->{'buffer'})/$bs); + my @blocks = unpack("a$bs "x $bcnt, $self->{'buffer'}); + if (length($self->{'buffer'}) % $bs == 0) { + $self->{'buffer'} = pop @blocks; } else { - $self->{'buffer'} = pop @blocks if length($blocks[-1]) < $bs; # what's left over + $self->{'buffer'} = substr($self->{'buffer'}, $bcnt * $bs); } foreach my $block (@blocks) { if ($d) { # decrypting - $result .= $iv ^ $self->{'crypt'}->decrypt($block); - $iv = $block; + $result .= $iv ^ $self->{'crypt'}->decrypt($block); + $iv = $block; } else { # encrypting - $result .= $iv = $self->{'crypt'}->encrypt($iv ^ $block); + $result .= $iv = $self->{'crypt'}->encrypt($iv ^ $block); } } $self->{'civ'} = $iv; # remember the iv @@ -280,14 +276,10 @@ my $decrypt = shift; if ($decrypt eq 'd') { # decrypting - my $bitstring = unpack("B*", $block); - $bitstring =~ s/10*$//s; - while (length($bitstring)%8) { - # this shouldn't be the case, but let's make stuff full bytes... - $bitstring .= '0'; - } - $block = pack("B*", $bitstring); - } else { + my $hex = unpack("H*", $block); + $hex =~ s/80+$//s; + $block = pack("H*", $hex); + } elsif (length($block) < $bs) { $block .= pack("H2", "80"); $block = pack("a$bs", $block); }
  Sat Jun 08 14:17:37 2002 lstein [...] cshl.org - Correspondence added
From: Lincoln Stein <lstein [...] cshl.org>
To: bug-Crypt-CBC [...] rt.cpan.org, "'AdminCc of cpan Ticket #716'": ;;, [...] fontina.cshl.org
Subject: Re: [cpan #716] CBC fixes for oneandzeroes and compatibility
Date: Sat, 8 Jun 2002 14:17:30 -0400
Whoever, sent this, please send me the patch directly. rt.cpan.org *does not* work -- at least not whenever I try it. Lincoln On Thursday 06 June 2002 10:16, Guest via RT wrote: Show quoted text
> This message about Crypt-CBC was sent to you by guest via rt.cpan.org > > Full context and any attached attachments can be found at: > <URL: https://rt.cpan.org/Ticket/Display.html?id=716 > > > Fixes (in order of diff): > > 1. parse buffer into blocks only if buffer is greater than blocksize > since ->finish will do pad/encrypt stuff for 1 block. > > 2. the code ---- . "a*" ---- in the unpack was causing an extra byte to > be added to strings which evenly divide into blocks. > > 3. code formatting inside an if statement > > 4. oneandzeroes fix. basically, the bit string was being truncated > incorrectly. I made it a hex string and truncate /80+$/ (i.e., 0x80 is > the 1 plus any zeros) > > Tested: > > Perl v5.6.1 built for powerpc-linux > Perl v5.6.1 built for i386-linux > > oneandzeroes padding with Crypt::Rijndael > > With this patch, Crypt::CBC works out of the box with Cryptix 3.2.0 and > Crypt::Rijndael::MODE_CBC. > > -s
-- ======================================================================== Lincoln D. Stein Cold Spring Harbor Laboratory lstein@cshl.org Cold Spring Harbor, NY ========================================================================
  Sat Jun 08 14:17:55 2002 lstein [...] cshl.org - Correspondence added
From: Lincoln Stein <lstein [...] cshl.org>
To: bug-Crypt-CBC [...] rt.cpan.org
Subject: Re: [cpan #716] CBC fixes for oneandzeroes and compatibility
Date: Sat, 8 Jun 2002 14:17:49 -0400
Whoever, sent this, please send me the patch directly. rt.cpan.org *does not* work -- at least not whenever I try it. Lincoln On Thursday 06 June 2002 10:16, Guest via RT wrote: Show quoted text
> This message about Crypt-CBC was sent to you by guest via rt.cpan.org > > Full context and any attached attachments can be found at: > <URL: https://rt.cpan.org/Ticket/Display.html?id=716 > > > Fixes (in order of diff): > > 1. parse buffer into blocks only if buffer is greater than blocksize > since ->finish will do pad/encrypt stuff for 1 block. > > 2. the code ---- . "a*" ---- in the unpack was causing an extra byte to > be added to strings which evenly divide into blocks. > > 3. code formatting inside an if statement > > 4. oneandzeroes fix. basically, the bit string was being truncated > incorrectly. I made it a hex string and truncate /80+$/ (i.e., 0x80 is > the 1 plus any zeros) > > Tested: > > Perl v5.6.1 built for powerpc-linux > Perl v5.6.1 built for i386-linux > > oneandzeroes padding with Crypt::Rijndael > > With this patch, Crypt::CBC works out of the box with Cryptix 3.2.0 and > Crypt::Rijndael::MODE_CBC. > > -s
-- ======================================================================== Lincoln D. Stein Cold Spring Harbor Laboratory lstein@cshl.org Cold Spring Harbor, NY ========================================================================
  Sat Jun 08 14:22:24 2002 LDS [...] cpan.org - Taken
  Sat Jun 08 14:23:34 2002 LDS [...] cpan.org - Status changed from 'new' to 'resolved'