IV Size Mismatch in AES-256-GCM Encryption Between Node.js and Rust

John_Doe · January 24, 2025, 6:11am

I am working with AES-256-GCM encryption in both Node.js and Rust using the aes_gcm library, but I am encountering an issue with the IV (Initialization Vector). When I use a 16-byte IV in Node.js with the crypto module, both encryption and decryption work fine. However, when I encrypt data in Node.js with a 16-byte IV and try to decrypt it in Rust, the Rust AES crate does not support a 16-byte IV. It only supports a 12-byte IV.

assertion left == right failed

left: 16*
right: 12*

Note: I can run with the RUST_BACKTRACE=1 environment variable to display a backtrace.

What is the reason behind this, and what would be the best solution to resolve this issue?

rsn · January 24, 2025, 8:48am

may be because RFC-5116 (section 3.2) recommends it shoud be 12 bytes.

jongiddy · January 24, 2025, 8:50am

Is the Node.js library base64-encoding the IV to give 16 bytes? You may need to decode it in the Rust to get the 12 bytes you need.

John_Doe · January 24, 2025, 10:32am

I have already decoded it using base64 and i got 16 bytes of iv because it is encrypt with 16 bytes in nodejs but i need to decode it in the rust and the error is occured

sfackler · January 24, 2025, 2:44pm

You can explicitly specify the IV size with the NonceSize type parameter: AesGcm in aes_gcm - Rust

Topic		Replies	Views
Implementation of AES-GCM-256 with Rust help	4	2418	May 7, 2023
Equivalent AES-256 Encryption in Rust (Migrating from Node.js crypto.createCipher) help	5	140	February 7, 2025
Encryption and Decryption AES-GCM 256 help	3	2161	December 25, 2023
Using rust_crypto AesSafe256Encryptor help	3	568	February 10, 2021
Random Access Decryption (ring, openssl, AES-GCM) help	1	913	April 4, 2021

IV Size Mismatch in AES-256-GCM Encryption Between Node.js and Rust

Related topics