Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:97371
Return-Path: <andreas@heigl.org>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 16896 invoked from network); 12 Dec 2016 16:02:16 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 12 Dec 2016 16:02:16 -0000
Authentication-Results: pb1.pair.com smtp.mail=andreas@heigl.org; spf=permerror; sender-id=unknown
Authentication-Results: pb1.pair.com header.from=andreas@heigl.org; sender-id=unknown
Received-SPF: error (pb1.pair.com: domain heigl.org from 195.191.240.18 cause and error)
X-PHP-List-Original-Sender: andreas@heigl.org
X-Host-Fingerprint: 195.191.240.18 hos109.unaxus.net  
Received: from [195.191.240.18] ([195.191.240.18:59729] helo=hos109.unaxus.net)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 64/AB-27518-30ACE485 for <internals@lists.php.net>; Mon, 12 Dec 2016 11:02:14 -0500
Received: from [212.185.30.151] (port=53935 helo=wdv-hg-0.C.07-zX4090-Heigl.Andreas.dhcp.hg.wdv.de)
	by hos109.unaxus.net with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128)
	(Exim 4.87)
	(envelope-from <andreas@heigl.org>)
	id 1cGT3G-000ceI-0E; Mon, 12 Dec 2016 17:02:06 +0100
To: Sammy Kaye Powers <me@sammyk.me>, PHP Internals <internals@lists.php.net>
References: <CALYT1Yr0Ptn+Mb6O5YuKcB=6VnV4b0DTK8G2mVBke2yRWYH0VA@mail.gmail.com>
Message-ID: <a7c0c8d0-ff50-d6c7-f8ba-a0e724ce57d6@heigl.org>
Date: Mon, 12 Dec 2016 17:02:05 +0100
MIME-Version: 1.0
In-Reply-To: <CALYT1Yr0Ptn+Mb6O5YuKcB=6VnV4b0DTK8G2mVBke2yRWYH0VA@mail.gmail.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms010605080604030704040105"
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - hos109.unaxus.net
X-AntiAbuse: Original Domain - lists.php.net
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - heigl.org
X-Get-Message-Sender-Via: hos109.unaxus.net: authenticated_id: a.heigl+heigl.org/only user confirmed/virtual account not confirmed
X-Authenticated-Sender: hos109.unaxus.net: a.heigl@heigl.org
Subject: Re: [PHP-DEV] More secure defaults for openssl_public_encrypt() &
 openssl_private_decrypt()
From: andreas@heigl.org (Andreas Heigl)

--------------ms010605080604030704040105
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable

Am 12.12.16 um 16:26 schrieb Sammy Kaye Powers:
> Hey internals!
>=20
> As pointed out in Paragon's excellent blog post,
> openssl_public_encrypt() & openssl_private_decrypt() defaults to the
> insecure OPENSSL_PKCS1_PADDING constant.
>=20
> https://paragonie.com/blog/2016/12/everything-you-know-about-public-key=
-encryption-in-php-is-wrong#php-openssl-rsa-bad-default
>=20
> What are your thoughts about deprecating OPENSSL_PKCS1_PADDING and
> using OPENSSL_PKCS1_OAEP_PADDING as the new default?

Is that backwards compatible? I'm thinking of decrypting data that was
encrypted with the "old" settings...

I just tested this:

    <?php
    openssl_public_encrypt('Testdata', $crypted, $pubKey,
OPENSSL_PKCS1_OAEP_PADDING);
    openssl_private_decrypt($crypted, $decrypt, $privateKey));
    var_Dump($decrypt);
    // NULL

while this works as expected:

    <?php
    openssl_public_encrypt('Testdata', $crypted, $pubKey,
OPENSSL_PKCS1_OAEP_PADDING);
    openssl_private_decrypt($crypted, $decrypt, $privateKey,
OPENSSL_PKCS1_OAEP_PADDING));
    var_Dump($decrypt);
    // string(8) "Testdata"

So it looks like you're out of luck with your already encrypted data
when the default-padding is changed. And I suppose that those that used
the default aren't aware of that information being a vital part.

And on a first glance I couldn't find a way of retrieving the used
padding from the data. So there might be no way of retrieving that
information other than by guessing/decrypting using all possible
paddings until a valid value is returned...

Just my 0.02 =E2=82=AC

Cheers

Andreas


--=20
                                                              ,,,
                                                             (o o)
+---------------------------------------------------------ooO-(_)-Ooo-+
| Andreas Heigl                                                       |
| mailto:andreas@heigl.org                  N 50=C2=B022'59.5" E 08=C2=B0=
23'58" |
| http://andreas.heigl.org                       http://hei.gl/wiFKy7 |
+---------------------------------------------------------------------+
| http://hei.gl/root-ca                                               |
+---------------------------------------------------------------------+


--------------ms010605080604030704040105
Content-Type: application/pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature

MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCC
BawwggWoMIIDkKADAgECAgMSOD4wDQYJKoZIhvcNAQENBQAweTEQMA4GA1UEChMHUm9vdCBD
QTEeMBwGA1UECxMVaHR0cDovL3d3dy5jYWNlcnQub3JnMSIwIAYDVQQDExlDQSBDZXJ0IFNp
Z25pbmcgQXV0aG9yaXR5MSEwHwYJKoZIhvcNAQkBFhJzdXBwb3J0QGNhY2VydC5vcmcwHhcN
MTYwNzIzMDkxNjU1WhcNMTgwNzIzMDkxNjU1WjBcMRYwFAYDVQQDEw1BbmRyZWFzIEhlaWds
MSAwHgYJKoZIhvcNAQkBFhFhLmhlaWdsQGhlaWdsLm9yZzEgMB4GCSqGSIb3DQEJARYRYW5k
cmVhc0BoZWlnbC5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn6XLcWFLD
vAXgllUikBAU2Rv63m7ZKP+ZU/2HTWDW0BJ2muK7GD3cGZxbKKosO6l6PSqqmLqUJ8G6b/85
iPQmNL5z+LG/+wt/p31SOMAWc5UA7CJAQ9pivUCcV+Yt0LzoxWO5ME2rEZ/ioB2tXMilkJLM
U4f5A9m3YZVSKj3xbM7rIpQEZiK0TrZ4MchTwPMdAwBLBxCoAztcg4Yj4qKd+IQLff0Ldhc5
3tc9b+XT7YzWLY5rQKHE+hKqIAdvYfqqKQZFHBBXptSXUXBeYK5a4UT0fpnMP7toqr/9mLlK
+FvDNeVwSo5I/abiqdek1lH0/xwYy9im8k4SRtLTAp7hAgMBAAGjggFUMIIBUDAMBgNVHRMB
Af8EAjAAMFYGCWCGSAGG+EIBDQRJFkdUbyBnZXQgeW91ciBvd24gY2VydGlmaWNhdGUgZm9y
IEZSRUUgaGVhZCBvdmVyIHRvIGh0dHA6Ly93d3cuQ0FjZXJ0Lm9yZzAOBgNVHQ8BAf8EBAMC
A6gwQAYDVR0lBDkwNwYIKwYBBQUHAwQGCCsGAQUFBwMCBgorBgEEAYI3CgMEBgorBgEEAYI3
CgMDBglghkgBhvhCBAEwMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzABhhZodHRwOi8vb2Nz
cC5jYWNlcnQub3JnMDEGA1UdHwQqMCgwJqAkoCKGIGh0dHA6Ly9jcmwuY2FjZXJ0Lm9yZy9y
ZXZva2UuY3JsMC8GA1UdEQQoMCaBEWEuaGVpZ2xAaGVpZ2wub3JngRFhbmRyZWFzQGhlaWds
Lm9yZzANBgkqhkiG9w0BAQ0FAAOCAgEAxM1hH9lKrDP3N+9mzQnj4LKt3/VDJHMl4jK/NmiK
NKBvKobH+I2knDSeLq66wPMIyg/ynW8dXszb1lcc+5VSFhLYG6WY7HgA/DHUHDK47KrGvVYp
EPsVGVLWJqGrW6JyeCns43Iyd4oXEuusbc8j/aeB93RYUpOW84RrO/GEs+ofKoF9sMz4Zfjl
G0Z2GfPKgRUhPfeFNBvnM/60onKFIo3uuVS/ZuRSP/LcAY1k0AUA2aRDbEIrWgvA/6TjwZgF
4YL/FHqIl0qjP+xKEr4kaTXmZjvGuTuxPVTTBe1PdZdn4KfVCcTJDsorL29L5G+3E+HygykX
58SmQE9atW0Wwc8cv3QSqqNY8O8CA92o0E3vbsOx9qrYwRt19xD2U14RTqa2ejq9TgG88TN0
E79RYsaIt2iwym+1qV+Olrfoo5xJq3F9Mv3u9kXKsEhoNEhxg9qKWSaJsf4dFP377anelziy
6yqvbpJmrA5zHPhYjD6b8XDgwCPfbpGjVGupdrVrLF2Gx8ghVBPFnXY2/S30NPYPca5L5+cE
zxw6UY139RmqXtDHk3qwSnnuS2WjgHqWbk7DNlosduIjk6CFlr/mx2kU3vVX2Nf8fIXnBNUA
w12nFtTPv5ULYXR4t4IAWLFKpFF7n4Px6BZL/ttPWlyOA2xhQ7bvwk5v83vyXqvRexoxggOx
MIIDrQIBATCBgDB5MRAwDgYDVQQKEwdSb290IENBMR4wHAYDVQQLExVodHRwOi8vd3d3LmNh
Y2VydC5vcmcxIjAgBgNVBAMTGUNBIENlcnQgU2lnbmluZyBBdXRob3JpdHkxITAfBgkqhkiG
9w0BCQEWEnN1cHBvcnRAY2FjZXJ0Lm9yZwIDEjg+MA0GCWCGSAFlAwQCAQUAoIICATAYBgkq
hkiG9w0BCQMxCwYJKoZIhvcNAQcBMBwGCSqGSIb3DQEJBTEPFw0xNjEyMTIxNjAyMDVaMC8G
CSqGSIb3DQEJBDEiBCDmX0SB9eXejrnrK357vmIoS8jes9EQo/93mx9JKSb21DBsBgkqhkiG
9w0BCQ8xXzBdMAsGCWCGSAFlAwQBKjALBglghkgBZQMEAQIwCgYIKoZIhvcNAwcwDgYIKoZI
hvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEoMIGRBgkr
BgEEAYI3EAQxgYMwgYAweTEQMA4GA1UEChMHUm9vdCBDQTEeMBwGA1UECxMVaHR0cDovL3d3
dy5jYWNlcnQub3JnMSIwIAYDVQQDExlDQSBDZXJ0IFNpZ25pbmcgQXV0aG9yaXR5MSEwHwYJ
KoZIhvcNAQkBFhJzdXBwb3J0QGNhY2VydC5vcmcCAxI4PjCBkwYLKoZIhvcNAQkQAgsxgYOg
gYAweTEQMA4GA1UEChMHUm9vdCBDQTEeMBwGA1UECxMVaHR0cDovL3d3dy5jYWNlcnQub3Jn
MSIwIAYDVQQDExlDQSBDZXJ0IFNpZ25pbmcgQXV0aG9yaXR5MSEwHwYJKoZIhvcNAQkBFhJz
dXBwb3J0QGNhY2VydC5vcmcCAxI4PjANBgkqhkiG9w0BAQEFAASCAQBullBFj2MUqYmkto0B
xoV/jL7U17iBGH3Q270JUwn3cCBZ6nSoNqrKDDMFD7espV1JZXrgoXs0Z1vVyeBRicK1ENMl
hOIYVWmdw56rK1gDzdf0PeOsFHPQRLBnSlUlXY5H9MBxkvETGqfF1TUZTfz4xK7sYlpWfBhe
RvJ4SEiROskxk040Sm4E3wfLbuP6JmFRQ3+ypDdUlF6cVGKts0F4nWG5tSO2GdJgj0p6qY/1
2DzlhZsqxp+qoyLsHA08ImH87rOTPTr6FMTkqZwUCXn77++wrMrmMSZchiHDfaO9EIF4SH3A
Cb6+NxpnChYw6/Oyokj8TDNsgmvwLdCPgSPAAAAAAAAA
--------------ms010605080604030704040105--