diff options
author | rsiddharth <s@ricketyspace.net> | 2020-12-13 14:40:24 -0500 |
---|---|---|
committer | rsiddharth <s@ricketyspace.net> | 2020-12-13 14:40:24 -0500 |
commit | 0086a677805e657d7acf68c79f6ce92e2bbbeb6a (patch) | |
tree | 7572372f0022e686337bdb02c09e4d3eea8af8e4 | |
parent | 0757abde108a039b8ed867132300a87c8cd4d58d (diff) |
challenge: do challenge 12
-rw-r--r-- | challenge/c12.go | 121 | ||||
-rw-r--r-- | cryptopals.go | 2 |
2 files changed, 123 insertions, 0 deletions
diff --git a/challenge/c12.go b/challenge/c12.go new file mode 100644 index 0000000..fbb9fbb --- /dev/null +++ b/challenge/c12.go @@ -0,0 +1,121 @@ +// Copyright © 2020 rsiddharth <s@ricketyspace.net> +// SPDX-License-Identifier: ISC + +package challenge + +import ( + "fmt" + "ricketyspace.net/cryptopals/lib" +) + +var sheep byte = 65 + +func C12() { + if !isOracleUsingECB() { + panic("oracle not using ecb mode") + } + + blocksize := findBlockSize() + nbl, us_sz := findUnknownStringCharacteristics(blocksize) + in := freshSheepBlock(blocksize) + ds := make([]byte, 0) // deciphered unknown string in bytes + for i := 0; i < nbl; i++ { + nby := blocksize + if i == nbl-1 { + nby = us_sz % blocksize + } + for j := 0; j < nby; j++ { + in, ds = decipherUnknownStringIter(blocksize, i+1, j+1, + in, ds) + } + s := 16 * i + e := s + 16 + copy(in, ds[s:e]) + } + fmt.Printf("Unknown String:\n%v", lib.BytesToStr(ds)) +} + +func freshSheepBlock(blocksize int) []byte { + in := make([]byte, blocksize) + for i := 0; i < blocksize; i++ { + in[i] = sheep + } + return in +} + +func findBlockSize() int { + in := make([]byte, 0) + + in = append(in, sheep) + is := len(lib.OracleAESEncryptECB(in)) // initial size + bs := 0 // block size + for { + in = append(in, sheep) + bs = len(lib.OracleAESEncryptECB(in)) + if bs != is { + return (bs - is) + } + } +} + +func findUnknownStringCharacteristics(blocksize int) (int, int) { + in := make([]byte, 0) + c_sz := len(lib.OracleAESEncryptECB(in)) // Cipher size + nblocks := c_sz / 16 // number of blocks + + // Figure out ize of unknown string. + for { + in = append(in, sheep) + bs := len(lib.OracleAESEncryptECB(in)) + if bs != c_sz { + return nblocks, (c_sz - len(in)) + } + } + +} + +func isOracleUsingECB() bool { + in := lib.StrToBytes("OliverMkTukudzi OliverMkTukudzi OliverMkTukudzi") + oo := lib.OracleAESEncryptECB(in) + if lib.CipherUsesECB(oo) != nil { + return true + } + return false +} + +// `blocksize` is the size of a block +// `block` is the nth block that is being deciphered +// `n` is the nth byte of the block `block` that is going to be deciphered. +// `in` (n-1)th block that is known +// `ds` deciphered unknown string +func decipherUnknownStringIter(blocksize, block, n int, in, ds []byte) ([]byte, []byte) { + oo := lib.OracleAESEncryptECB(in[0:(blocksize - n)]) + + s := 16 * (block - 1) + e := s + 16 + nbl := oo[s:e] // nth block of the cipher + + // Shift `in` to the left by one place. + for i := 0; i < blocksize-1; i++ { + in[i] = in[i+1] + } + + // Try all combinations. + for i := 0; i < 256; i++ { + in[15] = byte(i) + oo = lib.OracleAESEncryptECB(in) + + if lib.BlocksEqual(nbl, oo[0:16]) { + ds = append(ds, in[15]) + return in, ds + } + } + panic("not found!") +} + +// Output: +// Unknown String: +// Rollin' in my 5.0 +// With my rag-top down so my hair can blow +// The girlies on standby waving just to say hi +// Did you stop? No, I just drove by diff --git a/cryptopals.go b/cryptopals.go index ab9d08c..3100115 100644 --- a/cryptopals.go +++ b/cryptopals.go @@ -40,5 +40,7 @@ func main() { challenge.C10() case 11: challenge.C11() + case 12: + challenge.C12() } } |