Archive
/
cryptpng
mirror of https://github.com/Trivernis/cryptpng.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Remove base64 encode/decode step

Browse Source 
Remove the base64 encode/decode step as it only increases the size of the cipher but not the security.
develop
trivernis 5 years ago
parent 29b0ed32f2
commit 2136543726
2 changed files with 13 additions and 24 deletions
Show Stats Download Patch File Download Diff File

12
README.md
Unescape Escape View File

@ -25,11 +25,10 @@ image data. The steps for encrypting are:
1. Parse the png file and split it into chunks. 1. Parse the png file and split it into chunks.
2. Prompt for a password and use the sha512 32byte value with a generated salt. 2. Prompt for a password and use the sha512 32byte value with a generated salt.
3. Store the salt in the `saLt` chunk. 3. Store the salt in the `saLt` chunk.
4. Create a base64 string out of the data. 4. Encrypt the data using aes and the provided hashed key.
5. Encrypt the base64 string using aes and the provided hashed key. 5. Split the data into parts of 1 MiB of size.
6. Split the data into parts of 1 MiB of size. 6. Store every data part into a separate `crPt` chunk.
7. Store every data part into a separate `crPt` chunk. 7. Write the png header and chunks to the output file.
8. Write the png header and chunks to the output file.
### Decrypt ### Decrypt
@ -38,5 +37,4 @@ image data. The steps for encrypting are:
3. Get the `crPt` chunks and and concat the data. 3. Get the `crPt` chunks and and concat the data.
4. Prompt for the password and create the sha512 32byte hash with the salt. 4. Prompt for the password and create the sha512 32byte hash with the salt.
5. Decrypt the data using aes and the provided hash key. 5. Decrypt the data using aes and the provided hash key.
6. Decode the base64 data. 6. Write the data to the specified output file.
7. Write the data to the specified output file.

25
cryptpng.go
Unescape Escape View File

@ -5,7 +5,6 @@ import (
"crypto/cipher" "crypto/cipher"
"crypto/rand" "crypto/rand"
"crypto/sha512" "crypto/sha512"
"encoding/base64"
"errors" "errors"
"flag" "flag"
"fmt" "fmt"
@ -145,40 +144,32 @@ func readPassword(passwordSalt *[]byte) ([]byte, []byte) {
} }
} }
// encrypt and decrypt functions taken from func encrypt(key, data []byte) ([]byte, error) {
// https://stackoverflow.com/questions/18817336/golang-encrypting-a-string-with-aes-and-base64
func encrypt(key, text []byte) ([]byte, error) {
block, err := aes.NewCipher(key) block, err := aes.NewCipher(key)
if err != nil { if err != nil {
return nil, err return nil, err
} }
b := base64.StdEncoding.EncodeToString(text) cipherText := make([]byte, aes.BlockSize+len(data))
cipherText := make([]byte, aes.BlockSize+len(b))
iv := cipherText[:aes.BlockSize] iv := cipherText[:aes.BlockSize]
if _, err := io.ReadFull(rand.Reader, iv); err != nil { if _, err := io.ReadFull(rand.Reader, iv); err != nil {
return nil, err return nil, err
} }
cfb := cipher.NewCFBEncrypter(block, iv) cfb := cipher.NewCFBEncrypter(block, iv)
cfb.XORKeyStream(cipherText[aes.BlockSize:], []byte(b)) cfb.XORKeyStream(cipherText[aes.BlockSize:], data)
return cipherText, nil return cipherText, nil
} }
func decrypt(key, text []byte) ([]byte, error) { func decrypt(key, data []byte) ([]byte, error) {
block, err := aes.NewCipher(key) block, err := aes.NewCipher(key)
if err != nil { if err != nil {
return nil, err return nil, err
} }
if len(text) < aes.BlockSize { if len(data) < aes.BlockSize {
return nil, errors.New("ciphertext too short") return nil, errors.New("ciphertext too short")
} }
iv := text[:aes.BlockSize] iv := data[:aes.BlockSize]
text = text[aes.BlockSize:] data = data[aes.BlockSize:]
cfb := cipher.NewCFBDecrypter(block, iv) cfb := cipher.NewCFBDecrypter(block, iv)
cfb.XORKeyStream(text, text) cfb.XORKeyStream(data, data)
data, err := base64.StdEncoding.DecodeString(string(text))
if err != nil {
return nil, err
}
return data, nil return data, nil
} }
Write Preview
Loading…
Cancel
Save