Incorrect HMAC result! #5499
Comments
|
/cc @nodejs/crypto |
|
@kirked The problem is that the default encoding for strings passed to If you are passing utf8 strings, you will need to explicitly pass that encoding as the second argument to |
|
I've submitted #5500 to fix this doc issue. |
|
Heh, thanks for the quick reply and the clarification. Now to just figure out how to match that with the JDK... |
|
I'm going to cross-post this comment (originally from #5500) just for completeness sake, because I talk about what I perceive as the real problem (incompatibility).
|
|
@kirked You can have the same result if you specify an encoding parameter with var crypto = require('crypto');
var hmac = crypto.createHmac('sha1', 'mysecretkey')
var out = hmac.update('{"text":"Accountant I – Corporate Services"}}}https://b985c0c0.ngrok.io/listUpdate', 'utf8').digest('base64')
console.log(out);ohtsu@ubuntu:~/tmp/hmac_test$ node test.js
wnoQmp4wveV73iYetjeaq82WgUY=
ohtsu@ubuntu:~/tmp/hmac_test$ echo -n '{"text":"Accountant I – Corporate Services"}}}https://b985c0c0.ngrok.io/listUpdate' | openssl dgst -sha1 -hmac "mysecretkey" -binary | base64
wnoQmp4wveV73iYetjeaq82WgUY= |
|
Thanks, @shigeki, but that doesn't help me using Scala/Akka on the JVM! All I'm really trying to accomplish is verification of Trello's HMAC so I can process their webhook. |
|
@kirked Or you can change the string into buffer. Doesn't it help you? var crypto = require('crypto');
var hmac = crypto.createHmac('sha1', 'mysecretkey');
var buf = new Buffer('{"text":"Accountant I – Corporate Services"}}}https://b985c0c0.ngrok.io/listUpdate');
var out = hmac.update(buf).digest('base64');
console.log(out);ohtsu@ubuntu:~/tmp/hmac_test$ node test2.js
wnoQmp4wveV73iYetjeaq82WgUY= |
|
Unfortunately that doesn't help either. I'm not using nodejs nor Javascript, but I'm trying to consume/verify an HMAC created with nodejs. What I am using is the standard JDK crypto library, which hashes the same as OpenSSL, and where there is no such thing as |
|
That's too bad. Node historically is using binary encoding in crypto module for a long time. We no longer change it in order to keep backward compatibilities. |
|
I hope #5504 will help to prevent this kind of stuff in future. It may be too hard breakage as it is right now, but I'm sure we will figure out something useful there. |
|
@kirked There is no incompatibility, it's just a matter of how the input is interpreted. This is a bit out of scope for node, but FWIW here is Java code that gets you exactly the same answer with your example input and key: import javax.crypto.*;
import javax.crypto.spec.*;
import java.util.*;
import java.io.*;
import java.security.*;
public class HelloWorld
{
public static void main(String[] args) throws UnsupportedEncodingException, NoSuchAlgorithmException, InvalidKeyException
{
String key = "mysecretkey";
String message = "{\"text\":\"Accountant I \u2013 Corporate Services\"}}}https://b985c0c0.ngrok.io/listUpdate";
SecretKey signingKey = new SecretKeySpec(key.getBytes("UTF-8"), "HMACSHA1");
Mac mac = Mac.getInstance("HMACSHA1");
mac.init(signingKey);
byte[] digest = mac.doFinal(message.getBytes("UTF-8"));
String encoded64 = Base64.getEncoder().encodeToString(digest);
System.out.println("digest: " + encoded64);
// outputs:
// digest: wnoQmp4wveV73iYetjeaq82WgUY=
}
} |
|
Thanks @mscdex, I appreciate the help. Your Java code is a transliteration of my Scala code, and if it'd worked I never would've had a signature mismatch. The actual values I'm getting in the failing source text are 3 bytes: What I have found that seems to work is the implicit conversion implicit class StringHelper(s: String) {
def fromBase64(encoding: String = "UTF-8"): Array[Byte] = Base64.getDecoder.decode(s.getBytes(encoding))
def toNodeBinaryEncoding(): Array[Byte] = (0 until s.length).map { i => (s.codePointAt(i) & 0xff).toByte }.toArray
}which allows me to say |
|
@kirked Yes, unfortunately it does not seem that Java has a built-in |
|
For posterity, here's a Java snippet that provides the conversion matching the above Scala code: public static byte[] toNodejsBinaryEncoding(final String s) {
final int count = s.length();
final byte[] result = new byte[count];
for (int i = 0; i < count; i++) result[i] = (byte)(s.codePointAt(i) & 0xff);
return result;
} |
|
Ok, closing, this is basically a bug in Trello. |
|
Thanks to all of the helpful nodejs community members for all of the quick attention! I agree to close this issue, but I think it's unfair to say it's a bug in Trello. After all, the crypto doc itself states it's a wrapper over OpenSSL functionality, when clearly it's incompatible with OpenSSL, at least without the developer specifying non- |
|
@kirked agreed, there is an obvious documentation problem.
OpenSSL works with byte arrays, not strings. If you pass byte array ( |
* Thanks to nodejs/node#5499 (comment) … it seems that crypto.….update() needs to take an encoding parameter. * Add a test case for non-utf8 text in upload Fixes: IBM-Cloud#34
Trello uses the
cryptosubsystem to provide authentication for webhooks. In some cases an incorrect HMAC is being returned by that subsystem.In the following snippets, the dash is a 3-byte character:
The text was updated successfully, but these errors were encountered: