String encryption/decryption - 'block not properly padded' error

I have two simple methods that encrypt and decrypt Strings. Now the ENCRYPT seems to be wokring OK, but the DECRYPT is giving me the following error...

Error:
javax.crypto.BadPaddingException: Given final block not properly padded at com.sun.crypto.provider.SunJCE_h.b(DashoA12275) at com.sun.crypto.provider.SunJCE_h.b(DashoA12275) at com.sun.crypto.provider.DESCipher.engineDoFinal(DashoA12275) at javax.crypto.Cipher.doFinal(DashoA12275) at com.test.security.DecryptData.decryptData(Unknown Source) at com.test.beans.CreateNewAccountBean.decryptGeneralData(Unknown Source) at com.test.beans.CreateNewAccountBean.getTelno(Unknown Source) at org.apache.jsp.pages.unsecure.create_002daccount.confirm_002ddetails_jsp._jspService(confirm_002ddetails_jsp.java:193) at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:111) at javax.servlet.http.HttpServlet.service(HttpServlet.java:820) at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:353) at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:409) at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:317) at javax.servlet.http.HttpServlet.service(HttpServlet.java:820) at org.apache.catalina.core.ApplicationFilterChain.servletService(ApplicationFilterChain.java:397) at org.apache.catalina.core.ApplicationDispatcher.doInvoke(ApplicationDispatcher.java:850) at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:697) at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:532) at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:465) at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:353) at com.test.web.servlets.CreateNewAccountServlet.onInit(Unknown Source) at com.test.web.servlets.CreateNewAccountServlet.doPost(Unknown Source) at javax.servlet.http.HttpServlet.service(HttpServlet.java:727) at javax.servlet.http.HttpServlet.service(HttpServlet.java:820) at org.apache.catalina.core.ApplicationFilterChain.servletService(ApplicationFilterChain.java:397) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:278) at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:566) at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:536) at org.apache.catalina.core.StandardContextValve.invokeInternal(StandardContextValve.java:240) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:179) at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:566) at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:73) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:182) at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:566) at com.sun.enterprise.web.VirtualServerPipeline.invoke(VirtualServerPipeline.java:120) at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:137) at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:566) at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:536) at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:939) at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:231) at com.sun.enterprise.web.connector.grizzly.ProcessorTask.invokeAdapter(ProcessorTask.java:667) at com.sun.enterprise.web.connector.grizzly.ProcessorTask.processNonBlocked(ProcessorTask.java:574) at com.sun.enterprise.web.connector.grizzly.ProcessorTask.process(ProcessorTask.java:844) at com.sun.enterprise.web.connector.grizzly.ReadTask.executeProcessorTask(ReadTask.java:287) at com.sun.enterprise.web.connector.grizzly.ReadTask.doTask(ReadTask.java:212) at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:252) at com.sun.enterprise.web.connector.grizzly.WorkerThread.run(WorkerThread.java:75)

Now I have this working ages ago and have only just gone back to it because I need it for an App I'm working on, I think the problem is to do with the retrieved String that is going into the Decrypter.
Here is the code for the two methods...

Encrypter
public static String encryptData (String value) { System.out.println("before: "+value); byte[] salt = {(byte)0xc7, (byte)0x73, (byte)0x21, (byte)0x8c, (byte)0x7e, (byte)0xc8, (byte)0xee, (byte)0X99}; IvParameterSpec iv = new IvParameterSpec(salt); try { KeyGenerator kg = KeyGenerator.getInstance("DES"); kg.init(56); SecretKey sk = kg.generateKey(); Cipher cipher = Cipher.getInstance("DES/CBC/PKCS5Padding"); cipher.init(Cipher.ENCRYPT_MODE, sk, iv); byte[] bytes = cipher.doFinal(value.getBytes()); System.out.println("after: "+new String(bytes)); return new String(bytes); } catch (IllegalBlockSizeException ex) { ex.printStackTrace(); return value; } catch (BadPaddingException ex) { ex.printStackTrace(); return value; } catch (NoSuchAlgorithmException ex) { ex.printStackTrace(); return value; } catch (NoSuchPaddingException ex) { ex.printStackTrace(); return value; } catch (InvalidKeyException ex) { ex.printStackTrace(); return value; } catch (Exception ex){ ex.printStackTrace(); return value; } }

Decrypter
public static String decryptData (String value) { System.out.println("sEncrypted: "+value); final byte[] salt = {(byte)0xc7, (byte)0x73, (byte)0x21, (byte)0x8c, (byte)0x7e, (byte)0xc8, (byte)0xee, (byte)0x99}; IvParameterSpec iv = new IvParameterSpec(salt); try { KeyGenerator kg = KeyGenerator.getInstance("DES"); kg.init(56); SecretKey sk = kg.generateKey(); Cipher cipher = Cipher.getInstance("DES/CBC/PKCS5Padding"); cipher.init(Cipher.DECRYPT_MODE, sk, iv); byte[] bytes = cipher.doFinal(value.getBytes()); String newValue = new String(bytes); System.out.println("sDecrypted: "+newValue); return newValue; } catch (final IllegalBlockSizeException ex) { ex.printStackTrace(); return FAILED_MSG+" ("+value+")"; } catch (final BadPaddingException ex) { ex.printStackTrace(); return FAILED_MSG+" ("+value+")"; } catch (final NoSuchAlgorithmException ex) { ex.printStackTrace(); return FAILED_MSG+" ("+value+")"; } catch (final NoSuchPaddingException ex) { ex.printStackTrace(); return FAILED_MSG+" ("+value+")"; } catch (final InvalidKeyException ex) { ex.printStackTrace(); return FAILED_MSG+" ("+value+")"; } catch (final Exception ex){ ex.printStackTrace(); return FAILED_MSG+" ("+value+")"; } }

Any help greatly appreciated, many thanks!

KS

return new String(bytes);

This is the problem. Encrypted data is binary - it can't be converted to a String this easily. If you need a string representation of encrypted data, use something like base-64 encoding. The Apache Commons Codec library has an implementation of that.

Even with this

return new String(base64.encode(bytes));

Instead of this
return new String(bytes);


I still get this
javax.crypto.IllegalBlockSizeException: Input length must be multiple of 8 when decrypting with padded cipher

and
javax.crypto.BadPaddingException: Given final block not properly padded

return new String(base64.encode(bytes));

Make sure the same encoding is used for creating the string, and then later for getting the byte[] back from it.

Looking at the code more closely, it seems that you are using two different keys for encryption and decryption. That wouldn't work.

Looking at the code more closely, it seems that you are using two different keys for encryption and decryption. That wouldn't work.

Agreed. It looks like....

The encrypter generates a random key for encryption. It also doesn't save the key anywhere. This mean that it will encrypt it different everytime, and there is no way to get the key for decryption.

The decrypter also generates a random key for decryption. And unless it generates a key that happen to match the random key generated during encryption, it would not decrypt correctly.

Henry

OK, would you be able to show me a quick example of how the decrypter gets the same key as the encrypter?

SecretKey implements Serializable, so you can store it any way you want.

Or, for a cross-language compatible way, SecretKey.getEncoded() gets you the byte[] that makes up the key. If you store that somewhere, you can recreate the key later using "new SecretKeySpec(byte[], String)".

Just so I understand, if I was to generate a SecretKey and store it to a file so that my Decrypt class could read it later... If I was to then run the Encrypt code agai, would it not over-write the old Secretkey and therefore make any data encrypted by the first Encrypt 'lost', as it's SecretKey would now be gone?

Keith Seller wrote:Just so I understand, if I was to generate a SecretKey and store it to a file so that my Decrypt class could read it later... If I was to then run the Encrypt code agai, would it not over-write the old Secretkey and therefore make any data encrypted by the first Encrypt 'lost', as it's SecretKey would now be gone?

Well. thats up to you.... As written, you generate a new key with every encrypt, so you will need to store it in a way that the decrypt can find the matching key. Personally, I would recommend have the key generation, and storage completely separated -- and have both the encrypt and decrypt get the key from this location.

Henry

Got it!

I basically have a seperate method that creates a file on the server called secretkey.dat which contains the generatedKey.

Now each time the doEncryption() and doDecryption() methods run, they check to see if this file exists. If it does they read the key from the file for the encryption, that way all my encrypted adat is using the same key and therefore decryption works!