-
Notifications
You must be signed in to change notification settings - Fork 41
/
Copy pathPaddingUtilities.cs
168 lines (145 loc) · 6.48 KB
/
PaddingUtilities.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
using System;
using System.Security.Cryptography;
namespace Moserware.AesIllustrated
{
/// <summary>
/// Functions that apply and verify a given <see cref="System.Security.Cryptography.PaddingMode"/>.
/// </summary>
internal static class PaddingUtilities
{
private static readonly RandomNumberGenerator _Random = RandomNumberGenerator.Create();
public static int GetPaddingBytesNeeded(PaddingMode mode, int byteLength, int blockSizeInBytes)
{
if (mode == PaddingMode.None)
{
return 0;
}
return blockSizeInBytes - byteLength;
}
public static byte[] ApplyPadding(PaddingMode mode, byte[] bytes, int blockSizeInBytes)
{
int paddingBytesNeeded = GetPaddingBytesNeeded(mode, bytes.Length, blockSizeInBytes);
if (paddingBytesNeeded == 0)
{
// sanity check
return ByteUtilities.Clone(bytes);
}
byte[] output = new byte[blockSizeInBytes];
Buffer.BlockCopy(bytes, 0, output, 0, bytes.Length);
switch (mode)
{
case PaddingMode.ANSIX923:
ApplyAnsiX923Padding(output, paddingBytesNeeded);
break;
case PaddingMode.ISO10126:
ApplyIso10126Padding(output, paddingBytesNeeded);
break;
case PaddingMode.PKCS7:
ApplyPkcs7Padding(output, paddingBytesNeeded);
break;
case PaddingMode.Zeros:
// nop
break;
default:
throw new NotImplementedException("Padding mode not implemented");
}
return output;
}
public static byte[] RemovePadding(PaddingMode mode, byte[] bytes)
{
switch (mode)
{
case PaddingMode.None:
case PaddingMode.Zeros:
return ByteUtilities.Clone(bytes);
case PaddingMode.ANSIX923:
return RemoveAnsiX923Padding(bytes);
case PaddingMode.ISO10126:
return RemoveIso10126Padding(bytes);
case PaddingMode.PKCS7:
return RemovePkcs7Padding(bytes);
default:
throw new NotImplementedException("Padding mode not implemented");
}
}
// (from MSDN)
// The ANSIX923 padding string consists of a sequence of bytes filled with zeros before the length.
// The following example shows how this mode works. Given a blocklength of 8, a data length of 9, the number of padding octets equal to 7, and the data equal to FF FF FF FF FF FF FF FF FF:
// Data: FF FF FF FF FF FF FF FF FF
// X923 padding: FF FF FF FF FF FF FF FF FF 00 00 00 00 00 00 07
private static void ApplyAnsiX923Padding(byte[] output, int paddingBytesNeeded)
{
output[output.Length - 1] = (byte) paddingBytesNeeded;
// The buffer is initialized to all 0's, so no need to do that here
}
private static byte[] RemoveAnsiX923Padding(byte[] bytes)
{
int paddingByteCount = GetPaddingByteCount(bytes);
return RemovePadding(bytes, paddingByteCount, 0x00);
}
// ISO 10126 Padding:
// (from MSDN)
// The ISO10126 padding string consists of random data before the length.
// The following example shows how this mode works. Given a blocklength of 8, a data length of 9, the number of padding octets equal to 7, and the data equal to FF FF FF FF FF FF FF FF FF:
// Data: FF FF FF FF FF FF FF FF FF
// ISO10126 padding: FF FF FF FF FF FF FF FF FF 7D 2A 75 EF F8 EF 07
private static void ApplyIso10126Padding(byte[] output, int paddingBytesNeeded)
{
byte[] randomBytes = new byte[paddingBytesNeeded - 1];
_Random.GetBytes(randomBytes);
output[output.Length - 1] = (byte) paddingBytesNeeded;
Buffer.BlockCopy(randomBytes, 0, output, output.Length - paddingBytesNeeded, randomBytes.Length);
}
private static byte[] RemoveIso10126Padding(byte[] paddedBytes)
{
int paddingByteCount = GetPaddingByteCount(paddedBytes);
// Can't verify randomness :)
return ByteUtilities.Truncate(paddedBytes, paddedBytes.Length - paddingByteCount);
}
// PKCS #7 Padding:
// (from MSDN)
// The PKCS #7 padding string consists of a sequence of bytes, each of which is equal to the total number of padding bytes added.
// The following example shows how these modes work. Given a blocklength of 8, a data length of 9, the number of padding octets equal to 7, and the data equal to FF FF FF FF FF FF FF FF FF:
// Data: FF FF FF FF FF FF FF FF FF
// PKCS7 padding: FF FF FF FF FF FF FF FF FF 07 07 07 07 07 07 07
private static void ApplyPkcs7Padding(byte[] output, int paddingBytesNeeded)
{
for (int i = output.Length - paddingBytesNeeded; i < output.Length; i++)
{
output[i] = (byte) paddingBytesNeeded;
}
}
private static byte[] RemovePkcs7Padding(byte[] paddedBytes)
{
int paddingByteCount = GetPaddingByteCount(paddedBytes);
return RemovePadding(paddedBytes, paddingByteCount, (byte)paddingByteCount);
}
private static CryptographicException InvalidPadding
{
get
{
return new CryptographicException("Invalid Padding");
}
}
private static int GetPaddingByteCount(byte[] buffer)
{
int paddingBytes = buffer[buffer.Length - 1];
if (paddingBytes > buffer.Length)
{
throw InvalidPadding;
}
return paddingBytes;
}
private static byte[] RemovePadding(byte[] buffer, int paddingByteCount, byte expectedPaddingByte)
{
for (int i = buffer.Length - paddingByteCount; i < (buffer.Length - 1); i++)
{
if (buffer[i] != expectedPaddingByte)
{
throw InvalidPadding;
}
}
return ByteUtilities.Truncate(buffer, buffer.Length - paddingByteCount);
}
}
}