aes: Add doc.odin with an AES decryption example #3932
Conversation
core/crypto/aes/doc.odin
Outdated
| srcdata := make([]byte, len(data)) | ||
|
|
||
| // Decrypt data in 16-byte blocks | ||
| for i in 0 ..< len(data) / aes.BLOCK_SIZE { |
There was a problem hiding this comment.
I would rename srcdata to plaintext and rewrite the loop like this:
for len(data) > 0 {
aes.decrypt_ecb(&ctx, plaintext[:aes.BLOCK_SIZE], data[:aes.BLOCK_SIZE])
data = data[aes.BLOCK_SIZE:]
plaintext = plaintext[aes.BLOCK_SIZE:]
}There was a problem hiding this comment.
For some reason, when I rewrite the for loop this way, it gives me no output. I'm still studying how to write more idiomatic Odin code, and I will rewrite it properly soon.
There was a problem hiding this comment.
I didn't have an encrypted file to test with so I just wrote it here.
And I think I know why. :-) We're advancing the output slice here, which means it's 0 bytes at the end.
Will need to keep a backup of the original slice, too.
_plaintext := plaintext // Preserve original slice view of the decrypted data
for len(data) > 0 {
aes.decrypt_ecb(&ctx, _plaintext[:aes.BLOCK_SIZE], data[:aes.BLOCK_SIZE])
data = data[aes.BLOCK_SIZE:]
_plaintext = _plaintext[aes.BLOCK_SIZE:] // Advance second view of the same destination memory
}There was a problem hiding this comment.
package foo
import "core:fmt"
import "core:crypto/aes"
import "core:os"
import "core:bytes"
BLOCK_SIZE :: aes.BLOCK_SIZE
main :: proc() {
data, ok := os.read_entire_file("data.bin")
if !ok {
fmt.eprintln("Error Reading File")
return
}
if len(data) % aes.BLOCK_SIZE != 0 {
fmt.eprintln("Error: Data length is not a multiple of AES block size")
return
}
key := transmute([]u8)string("aeskey")
ctx: aes.Context_ECB
aes.init_ecb(&ctx, key)
// Allocate space for decrypted data
plaintext := make([]byte, len(data))
plain := plaintext // Preserve original slice view of the decrypted data
for len(data) > 0 {
aes.decrypt_ecb(&ctx, plain[:BLOCK_SIZE], data[:BLOCK_SIZE])
data = data[BLOCK_SIZE:] // Advance encrypted data
plain = plain[BLOCK_SIZE:] // Advance second view of the same destination memory
}
// Output decrypted data
fmt.println(plaintext)
os.write_entire_file("rcdecrypted.bin", plaintext)
}
|
@Yawning, thoughts? |
So tentatively NACK? The one mode that people should use is GCM, and at some point (Real Soon Now) I want to add |
|
Just so my intentions are extra clear, similar to how the documentation for "how to use the hash functions" lives in So this is (IMO) kind of premature. |
Thank you for the feedback. I understand your point about the organization of documentation, and it makes sense to have the documentation for "how to use the hash functions" located in core/crypto/hash/doc.odin rather than in the individual hash function implementation packages. Once core/crypto/aead exists, it is logical for the documentation to reside there instead of inside the aes and chacha20poly1305 packages. I created this example because I was participating in a CTF that required it, and I wanted to complete the entire CTF using Odin. During this process, I felt the need for some helper functions to accomplish the task, which is why I developed them. My focus was not on security but on practicality and ease of use for the specific CTF challenge. I appreciate your guidance and will keep it in mind for future developments. |
No worries. I understand the need for "someone used AES-ECB to encrypt something, how do I decrypt it", and apologies if the API was cumbersome. When it comes to something like documentation for a library, I lean towards "examples should demonstrate best practices". |
|
I'll close this now. Please don't be discouraged, @sjakk. The impulse to add documentation was a good one. |
No description provided.