add stream-based aes decryption
This commit is contained in:
Daniel Larimer
parent
d30891f4af
commit
be836e3e47
2 changed files with 79 additions and 0 deletions
|
|
@ -21,6 +21,19 @@ namespace fc {
|
||||||
struct impl;
|
struct impl;
|
||||||
fc::fwd<impl,96> my;
|
fc::fwd<impl,96> my;
|
||||||
};
|
};
|
||||||
|
class aes_decoder
|
||||||
|
{
|
||||||
|
public:
|
||||||
|
aes_decoder( const fc::sha256& key, const fc::uint128& init_value );
|
||||||
|
~aes_decoder();
|
||||||
|
|
||||||
|
uint32_t encode( const char* plaintxt, uint32_t len, const char* ciphertxt );
|
||||||
|
uint32_t final_encode( const char* ciphertxt );
|
||||||
|
|
||||||
|
private:
|
||||||
|
struct impl;
|
||||||
|
fc::fwd<impl,96> my;
|
||||||
|
};
|
||||||
|
|
||||||
int aes_encrypt(unsigned char *plaintext, int plaintext_len, unsigned char *key,
|
int aes_encrypt(unsigned char *plaintext, int plaintext_len, unsigned char *key,
|
||||||
unsigned char *iv, unsigned char *ciphertext);
|
unsigned char *iv, unsigned char *ciphertext);
|
||||||
|
|
|
||||||
|
|
@ -68,6 +68,72 @@ uint32_t aes_encoder::final_encode( const char* ciphertxt )
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
struct aes_decoder::impl
|
||||||
|
{
|
||||||
|
evp_cipher_ctx ctx;
|
||||||
|
};
|
||||||
|
|
||||||
|
aes_decoder::aes_decoder( const fc::sha256& key, const fc::uint128& init_value )
|
||||||
|
{
|
||||||
|
my->ctx.obj = EVP_CIPHER_CTX_new();
|
||||||
|
/* Create and initialise the context */
|
||||||
|
if(!my->ctx)
|
||||||
|
{
|
||||||
|
FC_THROW_EXCEPTION( exception, "error allocating evp cipher context",
|
||||||
|
("s", ERR_error_string( ERR_get_error(), nullptr) ) );
|
||||||
|
}
|
||||||
|
|
||||||
|
/* Initialise the encryption operation. IMPORTANT - ensure you use a key
|
||||||
|
* and IV size appropriate for your cipher
|
||||||
|
* In this example we are using 256 bit AES (i.e. a 256 bit key). The
|
||||||
|
* IV size for *most* modes is the same as the block size. For AES this
|
||||||
|
* is 128 bits */
|
||||||
|
if(1 != EVP_DecryptInit_ex(my->ctx, EVP_aes_256_cbc(), NULL, (unsigned char*)&key, (unsigned char*)&init_value))
|
||||||
|
{
|
||||||
|
FC_THROW_EXCEPTION( exception, "error durring aes 256 cbc encryption init",
|
||||||
|
("s", ERR_error_string( ERR_get_error(), nullptr) ) );
|
||||||
|
}
|
||||||
|
}
|
||||||
|
aes_decoder::~aes_decoder()
|
||||||
|
{
|
||||||
|
}
|
||||||
|
|
||||||
|
uint32_t aes_decoder::encode( const char* plaintxt, uint32_t plaintext_len, const char* ciphertxt )
|
||||||
|
{
|
||||||
|
int ciphertext_len = 0;
|
||||||
|
/* Provide the message to be encrypted, and obtain the encrypted output.
|
||||||
|
* * EVP_DecryptUpdate can be called multiple times if necessary
|
||||||
|
* */
|
||||||
|
if(1 != EVP_DecryptUpdate(my->ctx, (unsigned char*)ciphertxt, &ciphertext_len, (const unsigned char*)plaintxt, plaintext_len))
|
||||||
|
{
|
||||||
|
FC_THROW_EXCEPTION( exception, "error durring aes 256 cbc encryption update",
|
||||||
|
("s", ERR_error_string( ERR_get_error(), nullptr) ) );
|
||||||
|
}
|
||||||
|
return ciphertext_len;
|
||||||
|
}
|
||||||
|
uint32_t aes_decoder::final_encode( const char* ciphertxt )
|
||||||
|
{
|
||||||
|
int ciphertext_len = 0;
|
||||||
|
/* Finalise the encryption. Further ciphertext bytes may be written at
|
||||||
|
* * this stage.
|
||||||
|
* */
|
||||||
|
if(1 != EVP_DecryptFinal_ex(my->ctx, (unsigned char*)ciphertxt, &ciphertext_len))
|
||||||
|
{
|
||||||
|
FC_THROW_EXCEPTION( exception, "error durring aes 256 cbc encryption final",
|
||||||
|
("s", ERR_error_string( ERR_get_error(), nullptr) ) );
|
||||||
|
}
|
||||||
|
return ciphertext_len;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
/** example method from wiki.opensslfoundation.com */
|
/** example method from wiki.opensslfoundation.com */
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue