Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Encrypt with AES::encrypt but, how to decrypt with Java?

Santos_6556
Nimbostratus
Nimbostratus

‎02-Jun-2009 11:06

Hello.

 

 

With Java, you must get a Cypher:

 

 

Cipher decryptCipher = Cipher.getInstance("AES");

 

decryptCipher.init(Cipher.DECRYPT_MODE, getSecretKey());

 

byte[] deciphertext = decryptCipher.doFinal(encripted);

 

String decryptedString = new String(deciphertext);

 

 

But this code causes this error:

 

javax.crypto.IllegalBlockSizeException: 9 trailing bytes

 

at gnu.javax.crypto.jce.cipher.CipherAdapter.engineDoFinal(libgcj.so.90)

 

at javax.crypto.Cipher.doFinal(libgcj.so.90)

 

at javax.crypto.Cipher.doFinal(libgcj.so.90)

 

 

The problem is with PADDING, but I don't know exactly where does the problem is.

 

When I get the Cipher, I can choose with diferent options:

 

 

Cipher decryptCipher = Cipher.getInstance("AES/CBC/PKCS5Padding");

 

Cipher decryptCipher = Cipher.getInstance("AES/CBC/PKCS7Padding");

 

Cipher decryptCipher = Cipher.getInstance("AES/CFB8/NoPadding");

 

...

 

 

Maybe the problem is I don't get the good Cipher.

 

Can anybody help me?

 

 

Thanks.
Labels:
0 Kudos
8 REPLIES 8

spark_86682
Historic F5 Account

‎02-Jun-2009 17:06

AES::encrypt uses CWC mode encryption. I don't know Java, but from some brief searches it doesn't appear to support that encryption mode.
0 Kudos

IheartF5_45022
Nacreous
Nacreous

‎05-Jan-2012 13:48

Hi, I think this has been solved now with the new CRYPTO:: commands in v11. It can now use a encryption mode which is also implemented in Java. The CRYPTO:: doco is here (http://devcentral.f5.com/wiki/iRules.CRYPTO.ashx), but so far is a bit light on detail.
0 Kudos

Colin_Walker_12
Historic F5 Account

‎09-Jan-2012 10:13

Joanna,

 

 

Glad you found the new crypto commands! They're pretty powerful, and we're excited to have them available. What extra documentation would help you make use of the new commands? If there is something specific I can look into getting it added, depending on what it is.

 

 

Colin
0 Kudos

yoggit
Nimbostratus
Nimbostratus

‎04-Jun-2013 19:33

Is there a way to specify padding or not in the CRYPTO::encrypt and CRYPTO::encrypt commands?
0 Kudos

spark_86682
Historic F5 Account

‎05-Jun-2013 14:19

There is no way to control the padding, no. PKCS padding is always used. I would recommend filing an RFE for this. Sorry that this probably isn't what you wanted to hear.
0 Kudos

Wolf46_144992
Nimbostratus
Nimbostratus

‎18-Aug-2014 04:53

Hi Spark,

 

We are having a similar issue between F5 and our Java application. Do you know if there is a way to make encryption and decryption work between systems?

 

Our developers are using AES-128-CBC with PKCS5 padding. However when decrypting the data with an iRule on F5 we are not capable of decrypting the data correctly.

 

Is there a way to know which type of PKCS, F5 is using please?

 

0 Kudos

Kai_Wilke
MVP
MVP

‎08-Dec-2022 01:26

Can someone explain me the difference between AES::encrypt and CRYPTO::encrypt ?

Thanks and Cheers, Bob


iRule can do… 😉
0 Kudos

Kai_Wilke
MVP
MVP
In response to Kai_Wilke

‎14-Dec-2022 12:47

Please Help its urgent!!!

Cheers, Bob


iRule can do… 😉
0 Kudos
Copyright © 2023 Khoros, LLC