jasypt: java simplified encryption / Bugs / #37 encrypt.sh supports no more than 7 characters for password

#37 encrypt.sh supports no more than 7 characters for password

Milestone: v1.5

Status: open

Owner: nobody

Labels: None

Priority: 5

Updated: 2015-01-12

Created: 2015-01-12

Creator: Nestor Urquiza

Private: No

Hi,

Thanks for the effort put on providing a straightforward library for encryption/decryption purposes.

At least when using bouncy castle provider the subject stands true. Here is the test case:

Download jasypt zip distro (tested with jasypt-1.9.2)
Uncompress
Download bouncy castle jar (tested with bcprov-jdk15on-151)
Copy bcprov jar into jasypt lib directory
Running an encryption for <8 characters password works as expected:
$ ./encrypt.sh "input=This is a test" password=$password algorithm=PBEWITHSHA256AND128BITAES-CBC-BC providerClassName=org.bouncycastle.jce.provider.BouncyCastleProvider

----ENVIRONMENT-----------------

Runtime: Oracle Corporation Java HotSpot(TM) 64-Bit Server VM 25.11-b03

----ARGUMENTS-------------------

algorithm: PBEWITHSHA256AND128BITAES-CBC-BC
input: This is a test
password: 1234567
providerClassName: org.bouncycastle.jce.provider.BouncyCastleProvider

----OUTPUT----------------------

+uXF0ZOFIv6tW0RwGUhdloJF6s9V1tubiNG3IRswI5c=
6.However running it for a longer password does not work:
$ ./encrypt.sh "input=This is a test" password=$password algorithm=PBEWITHSHA256AND128BITAES-CBC-BC providerClassName=org.bouncycastle.jce.provider.BouncyCastleProvider

----ENVIRONMENT-----------------

Runtime: Oracle Corporation Java HotSpot(TM) 64-Bit Server VM 25.11-b03

----ARGUMENTS-------------------

algorithm: PBEWITHSHA256AND128BITAES-CBC-BC
input: This is a test
password: 12345678
providerClassName: org.bouncycastle.jce.provider.BouncyCastleProvider

----ERROR-----------------------

Operation not possible (Bad input or parameters)

Discussion

Nestor Urquiza - 2015-01-12

This is only related to bouncy castle BTW. With the weak PBEWithMD5AndDES algo it works for very long passwords indeed.

$ ./encrypt.sh "input=This is a test" password=$password algorithm=PBEWithMD5AndDES

----ENVIRONMENT-----------------

Runtime: Oracle Corporation Java HotSpot(TM) 64-Bit Server VM 25.11-b03

----ARGUMENTS-------------------

algorithm: PBEWithMD5AndDES
input: This is a test
password: 1234567890123456789012345678901234567890

----OUTPUT----------------------

Pw/HSwFPFw5nltGjs10IW54R5j8RTga3

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

encrypt.sh supports no more than 7 characters for password

Group

Searches

Help

#37 encrypt.sh supports no more than 7 characters for password

Discussion