I have a table that is filled with some value, for setting the value I use a stored procedure that also calculate a hash function and save in database.In case of updating value hash should be recalculated. For recalculating hash I use the following procedure:
DELIMITER $$CREATE PROCEDURE `sp_UpdateHash`(IN rkey int)BeginDECLARE AuthCode VarChar(10);SET @input = concat('SELECT r_ac into @AuthCode FROM table_rec where r_key=',rkey);PREPARE squery FROM @input;EXECUTE squery;SET @hashed = SHA2(@AuthCode,256);select @hashed;DEALLOCATE PREPARE squery;end;and procedure just for calculating hash:
CREATE PROCEDURE `sp_GetHash`(IN AuthCode VarChar(10))BEGIN DECLARE hashed VarChar(64); SET hashed = SHA2(AuthCode,256); select hashed as 'Hash';ENDAuthCode identical, but hash is different when I try to process value after select command I get a wrong code. If I compare two hashes with other results, for example from an online generator, the result is similar to the second function: sp_GetHash
Do you have any idea why?
I compile a sketch in Arduino IDE, the code includes sha256.h library:
... #include "sha256.h"...When the codes are compiled, the error says:
fatal error: sha256.h: No such file or directoryI try to install sha256 library from Sketch > Include Library > Manage Libraries, but there are no such library listed.
Where can I get the included library?
Ok, So I now have a working version of a AES decryption function that takes data from a server with yii2 as the framwork. Yii2 has built in encrypt by key and decrypt by key. I have yii2 set to use AES-192-CBC. I recently got help trying to figure out how to decrypt the data and have achieved this task with help from user vstm.
If anyone wants to see the first problem see problem here.
Ok, So I'm pretty sure my issue lies somewhere with how the data is being sent and received. I think I need to convert it somehow to be able to properly compare the Message Authentication Code sent with the data and the MAC I am calculating.
Yii2 and the c# form I have written are both using sha256 to hash the data. Yii2 code below.
$helpers = new Json(); $data = $helpers::encode($array); Yii::$app->security->cipher = "AES-192-CBC"; $string = Yii::$app->security->encryptByKey($data, $key); $response = Yii::$app->getResponse(); $response->format = yii\web\Response::FORMAT_RAW; $response->content = $string; return $response->send();That block of code returns a encrypted string to the program via a web request in the format of. [keySalt][MAC][IV][ciphertext]
I recieve this data in c# with the following code.
try { var data = new MemoryStream(); var WR = (HttpWebRequest)WebRequest.Create(url); ServicePointManager.Expect100Continue = true; ServicePointManager.DefaultConnectionLimit = 9999; ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls | SecurityProtocolType.Tls11 | SecurityProtocolType.Tls12 | SecurityProtocolType.Ssl3; WR.CachePolicy = new System.Net.Cache.RequestCachePolicy(System.Net.Cache.RequestCacheLevel.NoCacheNoStore); WR.UserAgent = "MultiPoolMiner V" + Application.ProductVersion; var Response = WR.GetResponse(); var SS = Response.GetResponseStream(); SS.ReadTimeout = 20 * 100; SS.CopyTo(data); Response.Close(); byte[] dataByteArray = data.ToArray(); string plainTextData = Utils.AesCipher.DecryptString(dataByteArray, password); //check if ticks from the db is bigger than 0; } catch (Exception e) { }below is the decryptString function
public static string DecryptString(byte[] allBytes, string password) { byte[] one = new byte[] { 1 }; string plaintext = null; // this is all of the bytes byte[] passwordByteArray = ToByteArray(password); using (var aes = Aes.Create()) { aes.KeySize = KeySize; aes.BlockSize = BlockSize; aes.Mode = CipherMode.CBC; // get the key salt byte[] keySalt = new byte[KeySize / 8]; Array.Copy(allBytes, keySalt, keySalt.Length); // Yii2 says //$key = $this->hkdf($this->kdfHash, $secret, $keySalt, $info, $keySize); // //Yii2 hkdf says //$prKey = hash_hmac($algo, $inputKey, $salt, true); //$hmac = ''; //$outputKey = ''; //for ($i = 1; $i <= $blocks; $i++) { // $hmac = hash_hmac($algo, $hmac . $info . chr($i), $prKey, true); // $outputKey .= $hmac; //} // chr($i) is the char byte of 1; // the blocksize is 1 // info here is nothing // hash first key with keysalt and password HMACSHA256 hmac = new HMACSHA256(keySalt); byte[] computedHash = hmac.ComputeHash(passwordByteArray); // hash primary key with one byte and computed hash HMACSHA256 hmac2 = new HMACSHA256(computedHash); byte[] prKeyFull = hmac2.ComputeHash(one); byte[] key = new byte[KeySize / 8]; Array.Copy(prKeyFull, 0, key, 0, key.Length); //create the 32 byte array of all 0's for hashing the MAC authKey byte[] zeroByte = ToByteArray("\0"); byte[] newSalt = new byte[32]; for (int i = 0; i < 32; i++) { newSalt[i] = zeroByte[0]; } //calculate MAC authKey // Yii2 is again using the hkdf function as above. Except this time info is "AuthorizationKey". HMACSHA256 hmac3 = new HMACSHA256(newSalt); byte[] preAuthKey = hmac3.ComputeHash(key); string authKeyInfo = "AuthorizationKey"; byte[] authkeyInfoByteArray = ToByteArray(authKeyInfo); // add text authorizationkey and the byte 1 together. byte[] actualByteArrayInfo = new byte[authkeyInfoByteArray.Length + one.Length]; Array.Copy(authkeyInfoByteArray, actualByteArrayInfo, authkeyInfoByteArray.Length); Array.Copy(one, 0, actualByteArrayInfo, authkeyInfoByteArray.Length, one.Length); //second hash of authKey HMACSHA256 hmac4 = new HMACSHA256(preAuthKey); byte[] authKeyFull = hmac4.ComputeHash(actualByteArrayInfo); byte[] authKey = new byte[24]; Array.Copy(authKeyFull, authKey, authKey.Length); // get the MAC code byte[] MAC = new byte[MacHashSize / 8]; Array.Copy(allBytes, keySalt.Length, MAC, 0, MAC.Length); // get our IV byte[] iv = new byte[BlockSize / 8]; Array.Copy(allBytes, (keySalt.Length + MAC.Length), iv, 0, iv.Length); // get the data we need to decrypt byte[] cipherBytes = new byte[allBytes.Length - iv.Length - MAC.Length - keySalt.Length]; Array.Copy(allBytes, (keySalt.Length + MAC.Length + iv.Length), cipherBytes, 0, cipherBytes.Length); // if we want to verify the mac hash this is where we would do it. // Yii2 encryption data. // $encrypted = openssl_encrypt($data, $this->cipher, $key, OPENSSL_RAW_DATA, $iv); // //$authKey = $this->hkdf($this->kdfHash, $key, null, $this->authKeyInfo, $keySize); //hashed = $this->hashData($iv . $encrypted, $authKey); //hashed = [macHash][data] //so I'm putting together the data to hash. byte[] dataToHash = new byte[cipherBytes.Length + iv.Length]; // fist is the iv Array.Copy(iv, dataToHash, iv.Length); // then the data. Array.Copy(cipherBytes, 0, dataToHash, iv.Length, cipherBytes.Length); // hash data to get the MAC HMACSHA256 hmac5 = new HMACSHA256(dataToHash); byte[] calculatedMacHash = hmac5.ComputeHash(authKey); // the calculatedMacHash I come out with is not the same as the MAC that I copied from the // string response. I have verified all of the keys up to the point of hashing the MAC. // Create a decrytor to perform the stream transform. var decryptor = aes.CreateDecryptor(key, iv); // Create the streams used for decryption. using (MemoryStream msDecrypt = new MemoryStream(cipherBytes)) { using (CryptoStream csDecrypt = new CryptoStream(msDecrypt, decryptor, CryptoStreamMode.Read)) { using (StreamReader srDecrypt = new StreamReader(csDecrypt)) { //Read the decrypted bytes from the decrypting stream //and place them in a string. plaintext = srDecrypt.ReadToEnd(); plaintext = plaintext.Remove(0, 32); } } } } return plaintext; } public static byte[] ToByteArray(string value) { byte[] allBytes = new byte[value.Length]; int i = 0; foreach (byte bite in value) { allBytes[i] = Convert.ToByte(bite); i++; } return allBytes; }So my issue is that when I'm calculating the MAC hash code from my keys, which have all been verified as correct keys against the keys in yii2, I'm getting a different byte array than the byte array that is passed as the MAC. I think where I'm having problems is that the MAC isn't raw data like the ciphertext. In yii2 the keys are all returned as raw data. Except for the MAC which isn't.
example hash = [MAC][data]
ace6008a19b91a8d684c2970d31ab6aa7ac4d928be589dddd54d88146a9a57dc� ;siQ�v���H o�@��^�8�<!?������躒�%Ō6I�.4����>*�Q�I!��R�k���eØ* O�>+�M�g��4Kk���K��܇�;N垑H�P���"��K��Ql�t��u��tE&
I was recently looking at the go playground source code and came accross a piece of code that I couldn't understand Here is a simplified version of the code:
func (s *snippet) ID() string { h := sha256.New() h.Write(s.Body) sum := h.Sum(nil) b := make([]byte, base64.URLEncoding.EncodedLen(len(sum))) base64.URLEncoding.Encode(b, sum) hashLen := 11 return string(b)[:hashLen]}original code is here
This code generate an unique ID from a slice of bytes. My question is, why take only the 11 first bytes of the base64 encoded sha256 sum ? Why not the 10 or the 12 first bytes ? And how does this garantee unique ID ?
I am trying to employ an ARMv8/Aarch64 assembly implementation using hardware accelerated SHA256 transform/"data block ordering" through CPU Crypto extensions.
The problem is I do not understand the difference between the existingvoid sha256_transform(uint32_t *state, const uint32_t *block, int swap) (1) https://github.com/fireworm71/veriumMiner/blob/main/algo/sha2.c#LC81and the new ARMv8 sha256 functionvoid sha256_block_data_order (uint32_t *ctx, const void *in, size_t num) (2) https://github.com/glukolog/m-cpuminer-v2.1-armv8/blob/master/miner.h#L135 which I was trying to integrate with a preprocessor conditional to either leave the original code in if not aarch64 or redirect the work to the HW accelerated sha256_block_data_order and merely leaving the original sha256_transform as a wrapper function so the numerous calls to it from other functions do not need much, if any editing.
I would like to draw attention to the int swap parameter for sha256_transform which the original C implementation takes as a conditional doing something to the block data parameter where as the sha256_block_data_order parameter in the same position seems to have something to do with the "number of blocks" and not related. In my most recent attempt I left the "int swap" code in before calling sha256_block_data_order so the data would be manipulated as originally intended and also tried to do casting in its function call thinking that was the culprit behind it all...below is the code I wrote recently for use inside void sha256_transform(uint32_t *state, const uint32_t *block, int swap)
#if defined(__aarch64__) uint32_t W[64]; uint32_t S[8]; int i; // 1. Prepare message schedule W. if (swap) { for (i = 0; i < 16; i++) W[i] = swab32(block[i]); } else memcpy(W, block, 64); for (i = 16; i < 64; i += 2) { W[i] = s1(W[i - 2]) + W[i - 7] + s0(W[i - 15]) + W[i - 16]; W[i+1] = s1(W[i - 1]) + W[i - 6] + s0(W[i - 14]) + W[i - 15]; }sha256_block_data_order(state, (const unsigned char *) W, 1); for (i = 0; i < 8; i++) state[i] += S[i];#elseFor the last loop I have a guess its equivalent in another application where the ARMv8 sha256_block_data_order is being used already at least in its C implementation but do not understand assembly well enough to see if the same is being done there. uint32_t S is being used in the C implementation of sha256_transform but I cannot tell if its being altered in any way before the final loop in my code above.
In link (2) there is a declaration of sha256_transform however is not applicable though you can compare the inputs (the two separate applications share the same implementation of it) to sha256_block_data_order also declared there to see the difference.
In my various attempts to make this work, I am able to get it to compile without errors and run the cpuminer binary in benchmarking mode but when I have it do real work for a server, all results are rejected. Also, I only find single digit differences in performance (measured in hash rates). Would this suggest that even if I could get it to work correctly I am not going to see any worthwhile gains in performance?
I spent days on this and not being very experienced or skilled have resorted to asking here. Any feedback or advice is appreciated.
Please note that by viewing our site you agree to our use of cookies (see Privacy for details). You will only see this message once.