I'm getting this error in RSAEncrypt when trying to do AES-CBC 256 bit encryption. I think it has to do with the age of the JavaScript engine and use of String.fromCharCode() as it relates to UTF-8 encoding, but I'm not sure.
Any ideas what's wrong?
my code is:
var Bits = 256;
RSAkey = cryptico.generateRSAKey(PassWord, Bits); // PassWord is "12340000000..." 32 characters long
PublicKeyString = cryptico.publicKeyString(RSAkey);
var ret = cryptico.encrypt(ping, PublicKeyString); // fails in here, ping is a JSON (string)

It does not encrypt a paragraph consisting of Turkish characters (like ş, ç, ü, ğ, ö). How can I solve this problem?

Hi,

My usecase is that content would be signed with RSA key in order to be verified with the public part of that key. This is the regular use case.
Signing require the passphrase of the private part of the key.

I would like the user to be able to change the passphrase of the key on a regular basis, but the key itself have to remain the same to avoid the need to sign all the old content again and keep the ability to verify signature with the public key.
Is this usecase (signing + change passphrase) possible with your lib ?

Thanks,
Nico.

Uncaught TypeError: Cannot read property 'toString' of undefined
at Object.a.publicKeyString (cryptico.min.js:105)

I put a KeyString to cryptico.publicKeyString()
and It just happen

re: #3 #28

// global deserializer method
RSAKey.fromJSON = function(key) {
    let json = JSON.parse(key);
    if (json.type !== 'RSAKey') return null;
    let rsa = new RSAKey();
    rsa.setPrivateEx(json.n, json.e, json.d, json.p, json.q, json.dmp1, json.dmq1, json.coeff);
    return rsa;
}

// instance serializer, JSON.stringify(object_with_RSAKey) will serialize as expected.
RSAKey.prototype.toJSON = function() {
    return JSON.stringify({
      type: 'RSAKey',
      coeff: this.coeff.toString(16),
      d: this.d.toString(16),
      dmp1: this.dmp1.toString(16),
      dmq1: this.dmq1.toString(16),
      e: this.e.toString(16),
      n: this.n.toString(16),
      p: this.p.toString(16),
      q: this.q.toString(16)
    })
}

I try to encrypt message
var x = cryptico.encrypt("mytext",cryptico.publicKeyString(staticKeys.RSA));
where staticKeys.RSA is RSAKey
And i get error:

aes.js:131 Uncaught TypeError: Cannot read property '177' of undefined
at Object.my.MixColumns (aes.js:131)
at Object.my.Encrypt (aes.js:86)
at Object.my.encryptAESCBC (cryptico.js:3395)
at Object.my.encrypt (cryptico.js:3493)
at HTMLButtonElement.CreateKeysAsker.generator.onclick (script.js:162)
my.MixColumns @ aes.js:131
my.Encrypt @ aes.js:86
my.encryptAESCBC @ cryptico.js:3395
my.encrypt @ cryptico.js:3493
CreateKeysAsker.generator.onclick @ script.js:162

What's wrong?

According to the documentation, when signing some data, the data encrypted with the public key is appended with the encryptor's public key and the signature of the encrypted data, and all of them are again encrypted again with the originator's public key.

In my use case, the originator's public key will be made publicly available, so anyone can create encrypted messages, and also they can sign this messages. Problem is, I want to use public keys as identifiers, and although I want the receiver to be able to open my encrypted (and signed) message, I don't wan't that he knows my public key/identifier if I don't trust him, so I don't want to send the public key/identifier on the message (send the message anonimously), and instead try to get it checking the signature against a list of public keys/identifiers of peers that trust on me.

So, what I'm asking about, is to be able to get the encrypted data and it's signature previously to be packed and encrypted again, so I can be able to send them without the public key.

P.D.: my use case is more complex than this, involving a signature with a permanent public key for identification purposes that it's not transfered anyway and that's the one I want only know the peers whom I have trusted before and have it on their list of public keys/identifiers for (private) identification purposes, and a session public key that's the one that the messages are encrypted and signed for authentication purposes.

Did this library support RSA OAEP padding?

From the documentation, it is not entirely clear wether the generateRSAKey() function is determinitic or not.
Meaning, if I use the same PassPhrase and Bits values, am I ensured that the generated RSAkey would always be the same or can it be different from one call to the function to another?

Hi, just curious what this library is licensed under?

thanks!

How do install cryptico as a dependency through npm.

Hi,
Is there a way to store the private key object in a javascript session? I've tried JSON.stringify, but when I parse the object, the decryption fails. The object seems to lose part of the object.

Thanks,
Jason

Hello developer,

Thanks for creating this library. One of my project use this library and do encryption for hybrid app. Problem is now I need to create with native application and I don't see any similar library to use. Is there a way to call this library from native code? Or is there any similar library that you know?

Hey I'm a little confused about how I should proceed with my application and using this library:

I have a web application running on a site with a unique ID. The application takes the ID, plays around with it and calls that a challenge_code.

The challenge _code is sent to me (user emails it to me). I encrypt it and call it a license_key. I send that to the application user and he enters the key into the application.

When the app loads, I need to decrypt the key back into the challenge_code and ensure that it matches the challenge_code the application would generate.

I'm not sure what I need to store in the application and what I need to keep on my end of things to ensure that this process works reliably, if at all.

Is it possible to decrypt in the application using only the PublicKey String? I'm trying to avoid storing the passphrase in code.

Is cryptico compatile with Node.js? If so, I would add a package.json file and push it to the NPM registry, and if not, I would add support for it since it's a lot far easier to use that native crypto libraries.

Is it possible to just sign a message without encrypt it?
Just for sender verification at recipients side?

I am not an expert at all in cryptography. As far as I
understand, the output of rsa encryption (for a small enough message)
ought to be of a fixed length. For example with 512 bits keys the
output ought to be 64 bytes, but the following test is consistently
able to produce 63 bytes ciphertexts that decrypt correctly. Is this
normal or a bug?

function test() {
    var k = cryptico.generateRSAKey("",512), i = 0, max = Math.pow(2,12);
    var ciphertext = k.encrypt("");
    while (i < max && ciphertext.length == 128) {
        ciphertext = k.encrypt("");
        i++;
    }
    if (i < max) console.log("Error at iteration " + i + ":
           ciphertext length = " + ciphertext.length + "; ciphertext = " +
            ciphertext);
    return { key : k, ciphertext : ciphertext};
}

plaintext: "Mưa nắng là chuyện của mày, tao đéo quan tâm!!! Được không hả?"

after encrypt & decrypt: "MLa nZng là chuy�n c�a mày, tao ¢éo quan tâm!!! ��Sc không hÈ?"

In the README.md and test.html, its used the function cryptico.generateRSAKey(PassPhrase, Bits);
this not exists in rsa.js
maybe function RSAGenerate(B, E)

How would I store the private key for later decryption? I can easily transfer the public key string, but I don't want to store the RSA key anywhere on a server. However, a user can't just copy the RSA key as text, so how would they retain the private key locally for later decryption?

Can there be a way to convert the private key into something copy-able like base64?

Is there a way to encrypt a message with the private key?

Scenario -- The public key of recipients is unknown, but the originator needs to be verified by all recipients via a 'token' of some sort. The message would be decrypted by the peers with the originators public key -- this decrypted token is then verified against a matching plaintext token, thus verifying the identity of the originator.

Thanks!

The apps I work on have access to a pem that is passed in upon initiation. Does cryptico have a method or series of methods to generate a public/private key pair from a pem?

Some browsers implement a cryptographic random number generator you can use, see: https://developer.mozilla.org/en-US/docs/Web/API/window.crypto.getRandomValues

its not required to make the test example works, it was used during the production of the other js files?

    var aeskey = key.decrypt(my.b64to16(cipherblock[0]));

TypeError: key.decrypt is not a function

I am now wanting to program a web-based public-private key pair generator using javascript.
I am quite curious about how can I get public key from the private and know exactly what the private key is under the hood.

in jsbn.js file

// (protected) set from integer value x, -DV <= x < DV

function bnpFromInt(x) {
this.t = 1;
this.s = (x < 0) ? -1 : 0;
if (x > 0) this[0] = x;
else if (x < -1) this[0] = x + DV;
else this.t = 0;
}

what is the correct function of variable DV?, i mean, DV -> this.DV? or x.DV? or the function is correct?

There seem to be some issues with this protocol.

You seem to sign before encryption, which makes you vulnerable to padding oracle attacks.

Furthermore, you send you public key with the signed message. But this makes no sense, as the receiver has no method of trusting the public key.

Other than that, please be aware that performing encryption/signing in JavaScript may not make sense as the JavaScript code itself cannot be trusted. So you need to at least require the use of TLS/SSL.

In your signing paragraph, you say that you attach information to the ciphertext but you end up adding information to the plaintext.

That said, the documentation of your project is very readable.

Hey wwwtyro,

I'm a developer of 3rd party JavaScript tools that my customers install on their websites. I ran across cryptico, while debugging why my tools broke on my customer's website. The customer had installed cryptico, and it had redefined the global function Math.random() to be non-random.

We all share the global namespace. Could you please reconsider this approach as it breaks the functionality of other scripts on the page that rely on Math.random() to be pseudo-random.

Hey, maintainer(s) of wwwtyro/cryptico!

We at VersionEye are working hard to keep up the quality of the bower's registry.

We just finished our initial analysis of the quality of the Bower.io registry:

7530 - registered packages, 224 of them doesnt exists anymore;

We analysed 7306 existing packages and 1070 of them don't have bower.json on the master branch ( that's where a Bower client pulls a data ).

Sadly, your library wwwtyro/cryptico is one of them.

Can you spare 15 minutes to help us to make Bower better?

Just add a new file bower.json and change attributes.

{
  "name": "wwwtyro/cryptico",
  "version": "1.0.0",
  "main": "path/to/main.css",
  "description": "please add it",
  "license": "Eclipse",
  "ignore": [
    ".jshintrc",
    "**/*.txt"
  ],
  "dependencies": {
    "<dependency_name>": "<semantic_version>",
    "<dependency_name>": "<Local_folder>",
    "<dependency_name>": "<package>"
  },
  "devDependencies": {
    "<test-framework-name>": "<version>"
  }
}

Read more about bower.json on the official spefication and nodejs semver library has great examples of proper versioning.

NB! Please validate your bower.json with jsonlint before commiting your updates.

Thank you!

Timo,
twitter: @versioneye
email: [email protected]
VersionEye - no more legacy software!

pbkdf1 example: http://crypto.stackexchange.com/questions/1842/how-does-pbkdf1-work

Currently Crypto++ supports key generation using pbkdf, pbkdf1, pbkdf2. It'd be nice to have at least one of those available here, so that apps written in C++ and javascript are compatible.

Bug location

file cryptico/lib/cryptico.js at line 749

function bnpFromNumber(a, b, c) {
    if ("number" == typeof b) {
        // new BigInteger(int,int,RNG)
        if (a < 2) this.fromInt(1);
        else {
            this.fromNumber(a, c);
            if (!this.testBit(a - 1)) // force MSB set
            this.bitwiseTo(BigInteger.ONE.shiftLeft(a - 1), op_or, this);
            if (this.isEven()) this.dAddOffset(1, 0); // force odd
            while (!this.isProbablePrime(b)) {
                this.dAddOffset(2, 0);
                if (this.bitLength() > a) this.subTo(BigInteger.ONE.shiftLeft(a - 1), this);
            }
        }
    }
    else {
        // new BigInteger(int,RNG)
        var x = new Array(),
            t = a & 7;
        x.length = (a >> 3) + 1;
        b.nextBytes(x);
        if (t > 0) x[0] &= ((1 << t) - 1);
        else x[0] = 0;
        this.fromString(x, 256);
    }
}

Explanation

If the argument b is of type number, it will crash when running line 769 b.nextBytes(x) since number don't have method nextBytes/1

Steps to product the bug

var key = cryptico.generateRSAKey("test",2048);
key.generate(2048,3)

test case output

> key = lib.default.generateRSAKey("test",2048); key.generate(2048,3)
TypeError: Cannot read property 'nextBytes' of undefined
    at BigInteger.bnpFromNumber [as fromNumber] (/home/beenotung/workspace/github.com/beenotung/typestub-cryptico/node_modules/cryptico/lib/cryptico.js:769:10)
    at BigInteger.bnpFromNumber [as fromNumber] (/home/beenotung/workspace/github.com/beenotung/typestub-cryptico/node_modules/cryptico/lib/cryptico.js:754:18)
    at new BigInteger (/home/beenotung/workspace/github.com/beenotung/typestub-cryptico/node_modules/cryptico/lib/cryptico.js:12:51)
    at RSAKey.RSAGenerate [as generate] (/home/beenotung/workspace/github.com/beenotung/typestub-cryptico/node_modules/cryptico/lib/cryptico.js:2228:14)
    at repl:1:52
    at ContextifyScript.Script.runInThisContext (vm.js:50:33)
    at REPLServer.defaultEval (repl.js:239:29)
    at bound (domain.js:301:14)
    at REPLServer.runBound [as eval] (domain.js:314:12)
    at REPLServer.onLine (repl.js:440:10)

Just as the title said, does this library can do this? Thanks.

it can be hooked to RSAKey.prototype.toString() and RSAKey.fromString(string)

Hello,
Would like to ask if it is possible to encrypt on the client side using cryptico and decrypt on the server side (like using C#).

Thanks

Please, can you add UTF-8 support ?
Thank you !

We are using cryptico for nativescript application. The decryption logic works fine on android however for ios it slows usually takes minutes. We narrowed down the issue to our RSA key generation.

Any help.