1. I was correct in that you were feeding the wrong key, but incorrect about why.
   
   It turns out you need to set -literal_key => 1 because otherwise, as per Crypt::CBC, it helpfully uses a hash of the key you provide rather than the key itself.
   
   And then you also need to set -keysize => 16, because otherwise it complains about you not providing a 32-byte key (and apparently once you set keysize, setting -blocksize => ... makes no difference at all).
   
   
2. You were getting the plaintext wrong. Going back to the source (page 37 of FORM_Integration_and_Protocol_Guidelines_130515.pdf which I assume is what you're working from), which I'll quote

   VendorTxCode=TxCode-1310917599-223087284&Amount=36.95&Currency=GBP&Des
   +cription=description&CustomerName=Fname
   Surname&CustomerEMail=customer@example.com&BillingSurname=Surname&Bill
   +ingFirstnames=Fname&BillingAddress1=BillAddress Line
   1&BillingCity=BillCity&BillingPostCode=W1A
   1BL&BillingCountry=GB&BillingPhone=447933000000&DeliveryFirstnames=Fna
   +me&DeliverySurname=Surname&DeliveryAddress1=BillAddress
   Line 1&DeliveryCity=BillCity&DeliveryPostCode=W1A
   1BL&DeliveryCountry=GB&DeliveryPhone=447933000000&SuccessURL=https://e
   +xample.com/success&FailureURL=https://example.com/failur
   e
   [download]

   and the question you want to ask when you see shit like this is why are the line-breaks where they are.
   
   Sometimes it's because it's running all the way to the end of the (however many characters wide) space provided, as is clearly happening with the word "failure" on the last line, but other places it's clearly doing something else, and the other thing that it's doing is breaking at places where there's a space available to break at because whatever idiot composed this document just did a regular paragraph fill, which helpfully left the spaces at the ends of the lines where you can't seem them unless you drag the mouse over the text in the original .pdf and watch what happens with the highlighting (and then Adobe or Windows helpfully strips out the trailing spaces when you try to paste to another application).
   
   In particular, every place where the postcode "W1A1BL" appeared, it's actually supposed to be "W1A 1BL" (and if the last time I'd been to Britain were more recently than 1997, I might have noticed this sooner).
   
   Also "CustomerName=Fname Surname", and so on. Putting it all together we get

   my $user_string = 'VendorTxCode=TxCode-1310917599-223087284&Amount=36.
   +95&Currency=GBP&Description=description&CustomerName=Fname Surname&Cu
   +stomerEMail=customer@example.com&BillingSurname=Surname&BillingFirstn
   +ames=Fname&BillingAddress1=BillAddress Line 1&BillingCity=BillCity&Bi
   +llingPostCode=W1A 1BL&BillingCountry=GB&BillingPhone=447933000000&Del
   +iveryFirstnames=Fname&DeliverySurname=Surname&DeliveryAddress1=BillAd
   +dress Line 1&DeliveryCity=BillCity&DeliveryPostCode=W1A 1BL&DeliveryC
   +ountry=GB&DeliveryPhone=447933000000&SuccessURL=https://example.com/s
   +uccess&FailureURL=https://example.com/failure';
   [download]

With those two changes, I'm getting the right ciphertext. (It took a bit of doing but with block ciphers used in one of the chaining modes, if you're getting something that's correct up to a point, that tells you which block your mistake is in and you go from there...)

(and apparently, yes, they really are using 16-byte keys consisting entirely of bytes in the hex-digit range, which effectively means they're using 8-byte keys. Just for grins, I looked at their sample .php source and there's no provision for providing arbitrary keys and packing them. These people are screaming to get hacked.)

Many thanks for correcting the code and also for teaching me to never copy and paste and assume its correct.

Very Good wrog,

++ Well Done!

Regards...Ed

"Well done is better than well said." - Benjamin Franklin

I finally managed to figure out what to do to migrate a Perl shopping cart to SagePay version 3.0. I went down a ton of blind alleys and this was an excellent article but I had problems installing Crypt::Cipher::AES. The solution I found that works avoiding a bunch of SagePay Gotchas is:

use Crypt::CBC;

# The Sagepay test login is at:
# https://test.sagepay.com/mysagepay 
# Login using your administrator username and password. If
# you don't know what they are contact SagePay support and
# they will send a reset link to the registered email 
# address of the administrator. After you login you 
# will see Encryption Password: <16 character long string>

my $id = <16 char long Encryption Password>; # e.g. AbcdeFghiJkLmNoP
my $iv = $id;

my $cipher = Crypt::CBC->new(
        -key         => $id,
        -iv          => $iv,
        -cipher      => 'OpenSSL::AES',
        -literal_key => 1,
        -header      => "none",
        -padding     => "standard",
        -keysize     => 16
                             );
$crypt = uc $cipher->encrypt_hex($crypt);
$crypt  = "@".$crypt;
[download]

$crypt is what you submit via your shopping cart CGI form to SagePay. For the test environment the URL to submit your form to is:

https://test.sagepay.com/gateway/service/vspform-register.vsp

To go live you need the live Encryption Password. Its not the same as the test Encryption Password. You can ask SagePay support where to find this.

For the live environment the URL to submit your form to is:

https://live.sagepay.com/gateway/service/vspform-register.vsp

I hope this helps someone else avoid spending ages working through this like I did.

Looks like you're providing the key and the iv in hex format, whereas I'm pretty sure you need to provide the actual key/iv bytes directly (that your encrypted string is coming out in hex format is because you're using encrypt_hex) which means you instead need something like

-key => pack('H32',$key),
-iv  => pack('H32',$iv),
[download]

But aren't they just strings of 16 one-byte chars?

strings of 16 bytes, yes. But the question is which 16 bytes? Each byte can be anything in the {0..255} range; you're not limited to those that are printable or those that are hexdigits (i.e., [0-9a-f] = {48..57,97..102})

So when you supply a key that starts with '55..', as the code was originally written, that specifies a key whose first two bytes are both asc('5') = 53, but if what was intended was a key whose first byte is 0x55 = 85, then you need to pack and you also need to find out what the other 8 bytes of the key were supposed to be (if the goal is to produce a particular ciphertext).

And I could be wrong about what was intended, but it's suspicious to me that they're using a key consisting entirely of hex-digit bytes (which, for one thing, would be a horrible choice of key from a security point of view; even if it is only an example you don't want to give people the idea that that's how you choose your keys)

Welcome mikemc24,

I downloaded your code and verified your results. I made some small changes:

my $encrypted = $cipher->encrypt_hex($user_string);
my $decrypted = $cipher->decrypt_hex($encrypted);

print $encrypted, "\n\n";
print $decrypted, "\n\n";
if ( $user_string eq $decrypted ) { print "Good!\n"; }
[download]

The way it looks to me, you need to verify that the exact '-key' and '-iv' are correct. If they are correct, then your source string for comparison should be verified as being correct.

Good Luck...Ed

I'm really confused now, the result I need is what the provider requires, so is it the hex encryption that's wrong, is there another form of Perl hex encryption decryption I need to use.

Dear Monks,

"...using the provided password as both the key and initialisation vector..."

That looks like your problem. and we can't verify the results without knowing the exact inputs to the conversion. I suspect, as others have stated, that you are taking the 8 byte password and converting to hex to get the 16 bytes that AES requires. That will definitely give you a wrong answer. The way encryption works is: change any character and you get an entirely different encrypted result.

Ask you client for the exact '-key' and '-iv' and then see if it works. If he gave you the password, then the '-key' and '-iv' values should be 'no problem'.

Regards...Ed

"Well done is better than well said." - Benjamin Franklin

I assume you are taking into account the newlines in the input string?

It's what the provider (Sagepay)says should be the result of the encryption. When I decrypt the expected result using my encryption method there is nothing recognisable in the output so I must be doing something wrong somewhere.

Can you provide a link to your provider's instruction ref the situation? I don't see you doing anything wrong in your use of the modules.

Yes, It is one row in the query.

Okay, I see the string is one line now. And I get the same results as you. Why do you think that is wrong? How do you get the other result?