Import 2.2

Author: sophiebremer

builder/builder.php

@@ -1,15 +1,15 @@
 <?php
 
 $copyrightInfo = '/*!
- * Crypto-JS v2.1.0
+ * Crypto-JS v2.2.0
  * http://code.google.com/p/crypto-js/
  * Copyright (c) 2011, Jeff Mott. All rights reserved.
  * http://code.google.com/p/crypto-js/wiki/License
  */
 ';
 
 $files = array('crypto', 'md5', 'sha1', 'sha256', 'hmac', 'pbkdf2', 'pbkdf2async',
-               'marc4', 'rabbit', 'aes', 'cbc', 'ofb');
+               'marc4', 'rabbit', 'aes', 'cbc', 'cbc-nopad', 'ofb');
 $rollups = array(
 	array('crypto', 'md5'),
 	array('crypto', 'sha1'),

docs/QuickStartGuide.wiki

@@ -7,7 +7,7 @@
 MD5 is a widely used hash function. It's been used in a variety of security applications and is also commonly used to check the integrity of files. Though, MD5 is not collision resistant, and it isn't suitable for applications like SSL certificates or digital signatures that rely on this property.
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-md5.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-md5.js"></script>
 <script type="text/javascript">
 
 var digest = Crypto.MD5("Message");
@@ -23,7 +23,7 @@ var digestString = Crypto.MD5("Message", { asString: true });
 The SHA hash functions were designed by the National Security Agency (NSA). SHA-1 is the most established of the existing SHA hash functions, and it's used in a variety of security applications and protocols. Though, SHA-1's collision resistance has been weakening as new attacks are discovered or improved.
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-sha1.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-sha1.js"></script>
 <script type="text/javascript">
 
 var digest = Crypto.SHA1("Message");
@@ -39,7 +39,7 @@ var digestString = Crypto.SHA1("Message", { asString: true });
 SHA-256 is one of the three variants in the SHA-2 set. It isn't as widely used as SHA-1, though it appears to provide much better security.
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-sha256.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-sha256.js"></script>
 <script type="text/javascript">
 
 var digest = Crypto.SHA256("Message");
@@ -55,7 +55,7 @@ var digestString = Crypto.SHA256("Message", { asString: true });
 The Advanced Encryption Standard (AES) is a U.S. Federal Information Processing Standard (FIPS). It was selected after a 5-year process where 15 competing designs were evaluated.
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-sha1-hmac-pbkdf2-ofb-aes.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-sha1-hmac-pbkdf2-ofb-aes.js"></script>
 <script type="text/javascript">
 
 var crypted = Crypto.AES.encrypt("Message", "Secret Passphrase");
@@ -69,7 +69,7 @@ var plain = Crypto.AES.decrypt(crypted, "Secret Passphrase");
 Rabbit is a high-performance stream cipher and a finalist in the eSTREAM Portfolio. It is one of the four designs selected after a 3 1/2-year process where 22 designs were evaluated.
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-sha1-hmac-pbkdf2-rabbit.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-sha1-hmac-pbkdf2-rabbit.js"></script>
 <script type="text/javascript">
 
 var crypted = Crypto.Rabbit.encrypt("Message", "Secret Passphrase");
@@ -83,7 +83,7 @@ var plain = Crypto.Rabbit.decrypt(crypted, "Secret Passphrase");
 MARC4 (Modified Allegedly RC4) is based on RC4, a widely-used stream cipher. RC4 is used in popular protocols such as SSL and WEP. But though it's remarkable for its simplicity and speed, it has weaknesses. Crypto-JS provides a modified version that corrects these weaknesses, but the algorithm's history still doesn't inspire confidence in its security.
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-sha1-hmac-pbkdf2-marc4.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-sha1-hmac-pbkdf2-marc4.js"></script>
 <script type="text/javascript">
 
 var crypted = Crypto.MARC4.encrypt("Message", "Secret Passphrase");
@@ -99,8 +99,8 @@ Keyed-hash message authentication codes (HMAC) is a mechanism for message authen
 === HMAC-MD5 ===
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-md5.js"></script>
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-hmac-min.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-md5.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-hmac-min.js"></script>
 <script type="text/javascript">
 
 var hmac = Crypto.HMAC(Crypto.MD5, "Message", "Secret Passphrase");
@@ -114,8 +114,8 @@ var hmacString = Crypto.HMAC(Crypto.MD5, "Message", "Secret Passphrase", { asStr
 === HMAC-SHA1 ===
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-sha1.js"></script>
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-hmac-min.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-sha1.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-hmac-min.js"></script>
 <script type="text/javascript">
 
 var hmac = Crypto.HMAC(Crypto.SHA1, "Message", "Secret Passphrase");
@@ -129,8 +129,8 @@ var hmacString = Crypto.HMAC(Crypto.SHA1, "Message", "Secret Passphrase", { asSt
 === HMAC-SHA256 ===
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-sha256.js"></script>
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-hmac-min.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-sha256.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-hmac-min.js"></script>
 <script type="text/javascript">
 
 var hmac = Crypto.HMAC(Crypto.SHA256, "Message", "Secret Passphrase");
@@ -148,7 +148,7 @@ PBKDF2 is a password-based key derivation function. In many applications of cryp
 A salt provides a large set of keys for any given password, and an iteration count increases the cost of producing keys from a password, thereby also increasing the difficulty of attack.
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-sha1-hmac-pbkdf2.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-sha1-hmac-pbkdf2.js"></script>
 <script type="text/javascript">
 
 var salt = Crypto.util.bytesToString(Crypto.util.randomBytes(16));
@@ -165,7 +165,7 @@ var key512bit1000 = Crypto.PBKDF2("Secret Passphrase", salt, 64, { iterations: 1
 PBKDF2 with a large iteration count can take a long time to compute. To avoid long-running script warnings, CryptoJS provided an alternative version that executes asyncronously and passes the result to a callback. You also have the option to specify an onProgressChange callback that allows you to keep the user updated.
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-sha1-hmac-pbkdf2async.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-sha1-hmac-pbkdf2async.js"></script>
 <script type="text/javascript">
 
 var salt = Crypto.util.bytesToString(Crypto.util.randomBytes(16));
@@ -186,7 +186,7 @@ Crypto.PBKDF2Async("Secret Passphrase", salt, 64, onCompleteHandler, { iteration
 == Utilities ==
 
 {{{
-<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.1.0-crypto-min.js"></script>
+<script type="text/javascript" src="http://crypto-js.googlecode.com/files/2.2.0-crypto-min.js"></script>
 <script type="text/javascript">
 
 var helloBytes = Crypto.charenc.Binary.stringToBytes("Hello, World!");

src/AES.js

@@ -89,13 +89,15 @@ var AES = C.AES = {
 
 	encrypt: function (message, password, options) {
 
+		options = options || {};
+
 		var
 
 			// Convert to bytes
 			m = UTF8.stringToBytes(message),
 
 			// Generate random IV
-			iv = util.randomBytes(AES._blocksize * 4),
+			iv = options.iv || util.randomBytes(AES._blocksize * 4),
 
 			// Generate key
 			k = (
@@ -107,26 +109,28 @@ var AES = C.AES = {
 			),
 
 			// Determine mode
-			mode = options && options.mode || C.mode.OFB;
+			mode = options.mode || C.mode.OFB;
 
 		// Encrypt
 		AES._init(k);
 		mode.encrypt(AES, m, iv);
 
 		// Return ciphertext
-		return util.bytesToBase64(iv.concat(m));
+		return util.bytesToBase64(options.iv ? m : iv.concat(m));
 
 	},
 
 	decrypt: function (ciphertext, password, options) {
 
+		options = options || {};
+
 		var
 
 			// Convert to bytes
 			c = util.base64ToBytes(ciphertext),
 
 			// Separate IV and message
-			iv = c.splice(0, AES._blocksize * 4),
+			iv = options.iv || c.splice(0, AES._blocksize * 4),
 
 			// Generate key
 			k = (
@@ -138,7 +142,7 @@ var AES = C.AES = {
 			),
 
 			// Determine mode
-			mode = options && options.mode || C.mode.OFB;
+			mode = options.mode || C.mode.OFB;
 
 		// Decrypt
 		AES._init(k);

src/CBC-nopad.js

@@ -0,0 +1,59 @@
+Crypto.mode.CBCNoPad = {
+
+	encrypt: function (cipher, m, iv) {
+
+		var blockSizeInBytes = cipher._blocksize * 4;
+
+		// Encrypt each block
+		for (var offset = 0; offset < m.length; offset += blockSizeInBytes) {
+
+			if (offset == 0) {
+				// XOR first block using IV
+				for (var i = 0; i < blockSizeInBytes; i++)
+					m[i] ^= iv[i];
+			}
+			else {
+				// XOR this block using previous crypted block
+				for (var i = 0; i < blockSizeInBytes; i++)
+					m[offset + i] ^= m[offset + i - blockSizeInBytes];
+			}
+
+			// Encrypt block
+			cipher._encryptblock(m, offset);
+
+		}
+
+	},
+
+	decrypt: function (cipher, c, iv) {
+
+		var blockSizeInBytes = cipher._blocksize * 4;
+
+		// Decrypt each block
+		for (var offset = 0; offset < c.length; offset += blockSizeInBytes) {
+
+			// Save this crypted block
+			var thisCryptedBlock = c.slice(offset, offset + blockSizeInBytes);
+
+			// Decrypt block
+			cipher._decryptblock(c, offset);
+
+			if (offset == 0) {
+				// XOR first block using IV
+				for (var i = 0; i < blockSizeInBytes; i++)
+					c[i] ^= iv[i];
+			}
+			else {
+				// XOR decrypted block using previous crypted block
+				for (var i = 0; i < blockSizeInBytes; i++)
+					c[offset + i] ^= prevCryptedBlock[i];
+			}
+
+			// This crypted block is the new previous crypted block
+			var prevCryptedBlock = thisCryptedBlock;
+
+		}
+
+	}
+
+};