mikeecb/cryptopals_1_10.py

## cryptopals_1_10.py
from Crypto.Cipher import AES

def xor(b1, b2):
    b = bytearray(len(b1))
    for i in range(len(b1)):
        b[i] = b1[i] ^ b2[i]
    return b

def aes_128_ecb_enc(buffer, key):
    obj = AES.new(key, AES.MODE_ECB)
    return bytearray(obj.encrypt(bytes(buffer)))

def aes_128_ecb_dec(buffer, key):
    obj = AES.new(key, AES.MODE_ECB)
    return bytearray(obj.decrypt(bytes(buffer)))

def pad_pkcs7(buffer, block_size):
    if len(buffer) % block_size:
        padding = (len(buffer) / block_size + 1) * block_size - len(buffer)
    else:
        padding = 0
    # Padding size must be less than a byte
    assert 0 <= padding <= 255
    new_buffer = bytearray()
    new_buffer[:] = buffer
    new_buffer += bytearray([chr(padding)] * padding)
    return new_buffer

def unpad_pkcs7(buffer):
    padding = buffer[-1]
    for i in range(len(buffer)-1, len(buffer)-padding, -1):
        if buffer[i] != buffer[-1]:
            return buffer
    new_buffer = bytearray()
    new_buffer[:] = buffer[:-padding]
    return new_buffer

def aes_128_cbc_enc(buffer, key, iv):
    plaintext = pad_pkcs7(buffer, AES.block_size)
    ciphertext = bytearray(len(plaintext))
    prev_block = iv
    for i in range(0, len(plaintext), AES.block_size):
        ciphertext[i: i + AES.block_size] = aes_128_ecb_enc(
            xor(plaintext[i: i + AES.block_size], prev_block),
            key,
        )
        prev_block = ciphertext[i: i + AES.block_size]
    return ciphertext

def aes_128_cbc_dec(ciphertext, key, iv):
    plaintext = bytearray(len(ciphertext))
    prev_block = iv
    for i in range(0, len(ciphertext), AES.block_size):
        plaintext[i: i + AES.block_size] = xor(
            aes_128_ecb_dec(bytes(ciphertext[i: i + AES.block_size]), key),
            prev_block
        )
        prev_block = ciphertext[i: i + AES.block_size]
    return unpad_pkcs7(plaintext)

plaintext = bytearray("Hello my name is Michael")
iv = bytearray([chr(0)] * AES.block_size)
key = "YELLOW SUBMARINE"

assert aes_128_cbc_dec(aes_128_cbc_enc(plaintext, key, iv), key, iv) == plaintext
# Assertion passes - encryption and decryption are correct
	from Crypto.Cipher import AES

	def xor(b1, b2):
	b = bytearray(len(b1))
	for i in range(len(b1)):
	b[i] = b1[i] ^ b2[i]
	return b

	def aes_128_ecb_enc(buffer, key):
	obj = AES.new(key, AES.MODE_ECB)
	return bytearray(obj.encrypt(bytes(buffer)))

	def aes_128_ecb_dec(buffer, key):
	obj = AES.new(key, AES.MODE_ECB)
	return bytearray(obj.decrypt(bytes(buffer)))

	def pad_pkcs7(buffer, block_size):
	if len(buffer) % block_size:
	padding = (len(buffer) / block_size + 1) * block_size - len(buffer)
	else:
	padding = 0
	# Padding size must be less than a byte
	assert 0 <= padding <= 255
	new_buffer = bytearray()
	new_buffer[:] = buffer
	new_buffer += bytearray([chr(padding)] * padding)
	return new_buffer

	def unpad_pkcs7(buffer):
	padding = buffer[-1]
	for i in range(len(buffer)-1, len(buffer)-padding, -1):
	if buffer[i] != buffer[-1]:
	return buffer
	new_buffer = bytearray()
	new_buffer[:] = buffer[:-padding]
	return new_buffer

	def aes_128_cbc_enc(buffer, key, iv):
	plaintext = pad_pkcs7(buffer, AES.block_size)
	ciphertext = bytearray(len(plaintext))
	prev_block = iv
	for i in range(0, len(plaintext), AES.block_size):
	ciphertext[i: i + AES.block_size] = aes_128_ecb_enc(
	xor(plaintext[i: i + AES.block_size], prev_block),
	key,
	)
	prev_block = ciphertext[i: i + AES.block_size]
	return ciphertext

	def aes_128_cbc_dec(ciphertext, key, iv):
	plaintext = bytearray(len(ciphertext))
	prev_block = iv
	for i in range(0, len(ciphertext), AES.block_size):
	plaintext[i: i + AES.block_size] = xor(
	aes_128_ecb_dec(bytes(ciphertext[i: i + AES.block_size]), key),
	prev_block
	)
	prev_block = ciphertext[i: i + AES.block_size]
	return unpad_pkcs7(plaintext)

	plaintext = bytearray("Hello my name is Michael")
	iv = bytearray([chr(0)] * AES.block_size)
	key = "YELLOW SUBMARINE"

	assert aes_128_cbc_dec(aes_128_cbc_enc(plaintext, key, iv), key, iv) == plaintext
	# Assertion passes - encryption and decryption are correct