Home Explore Help
Sign In
OWEALs
/
openssl
mirror of git://git.openssl.org/openssl.git
2
0
Fork 0
Files Issues 1 Wiki
Tree: e7c27a6c37
Branches Tags
openssl
/
demos
/
evp
/
aesgcm.c

aesgcm.c 4.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121 
  1. /*
    2. 

  2.  * Copyright 2012-2016 The OpenSSL Project Authors. All Rights Reserved.
    3. 

  3.  *
    4. 

  4.  * Licensed under the Apache License 2.0 (the "License").  You may not use
    5. 

  5.  * this file except in compliance with the License.  You can obtain a copy
    6. 

  6.  * in the file LICENSE in the source distribution or at
    7. 

  7.  * https://www.openssl.org/source/license.html
    8. 

  8.  */
    9. 

  9. 

  10. /*
    11. 

  11.  * Simple AES GCM test program, uses the same NIST data used for the FIPS
    12. 

  12.  * self test but uses the application level EVP APIs.
    13. 

  13.  */
    14. 

  14. #include <stdio.h>
    15. 

  15. #include <openssl/bio.h>
    16. 

  16. #include <openssl/evp.h>
    17. 

  17. 

  18. /* AES-GCM test data from NIST public test vectors */
    19. 

  19. 

  20. static const unsigned char gcm_key[] = {
    21. 

  21.     0xee, 0xbc, 0x1f, 0x57, 0x48, 0x7f, 0x51, 0x92, 0x1c, 0x04, 0x65, 0x66,
    22. 

  22.     0x5f, 0x8a, 0xe6, 0xd1, 0x65, 0x8b, 0xb2, 0x6d, 0xe6, 0xf8, 0xa0, 0x69,
    23. 

  23.     0xa3, 0x52, 0x02, 0x93, 0xa5, 0x72, 0x07, 0x8f
    24. 

  24. };
    25. 

  25. 

  26. static const unsigned char gcm_iv[] = {
    27. 

  27.     0x99, 0xaa, 0x3e, 0x68, 0xed, 0x81, 0x73, 0xa0, 0xee, 0xd0, 0x66, 0x84
    28. 

  28. };
    29. 

  29. 

  30. static const unsigned char gcm_pt[] = {
    31. 

  31.     0xf5, 0x6e, 0x87, 0x05, 0x5b, 0xc3, 0x2d, 0x0e, 0xeb, 0x31, 0xb2, 0xea,
    32. 

  32.     0xcc, 0x2b, 0xf2, 0xa5
    33. 

  33. };
    34. 

  34. 

  35. static const unsigned char gcm_aad[] = {
    36. 

  36.     0x4d, 0x23, 0xc3, 0xce, 0xc3, 0x34, 0xb4, 0x9b, 0xdb, 0x37, 0x0c, 0x43,
    37. 

  37.     0x7f, 0xec, 0x78, 0xde
    38. 

  38. };
    39. 

  39. 

  40. static const unsigned char gcm_ct[] = {
    41. 

  41.     0xf7, 0x26, 0x44, 0x13, 0xa8, 0x4c, 0x0e, 0x7c, 0xd5, 0x36, 0x86, 0x7e,
    42. 

  42.     0xb9, 0xf2, 0x17, 0x36
    43. 

  43. };
    44. 

  44. 

  45. static const unsigned char gcm_tag[] = {
    46. 

  46.     0x67, 0xba, 0x05, 0x10, 0x26, 0x2a, 0xe4, 0x87, 0xd7, 0x37, 0xee, 0x62,
    47. 

  47.     0x98, 0xf7, 0x7e, 0x0c
    48. 

  48. };
    49. 

  49. 

  50. void aes_gcm_encrypt(void)
    51. 

  51. {
    52. 

  52.     EVP_CIPHER_CTX *ctx;
    53. 

  53.     int outlen, tmplen;
    54. 

  54.     unsigned char outbuf[1024];
    55. 

  55.     printf("AES GCM Encrypt:\n");
    56. 

  56.     printf("Plaintext:\n");
    57. 

  57.     BIO_dump_fp(stdout, gcm_pt, sizeof(gcm_pt));
    58. 

  58.     ctx = EVP_CIPHER_CTX_new();
    59. 

  59.     /* Set cipher type and mode */
    60. 

  60.     EVP_EncryptInit_ex(ctx, EVP_aes_256_gcm(), NULL, NULL, NULL);
    61. 

  61.     /* Set IV length if default 96 bits is not appropriate */
    62. 

  62.     EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_IVLEN, sizeof(gcm_iv), NULL);
    63. 

  63.     /* Initialise key and IV */
    64. 

  64.     EVP_EncryptInit_ex(ctx, NULL, NULL, gcm_key, gcm_iv);
    65. 

  65.     /* Zero or more calls to specify any AAD */
    66. 

  66.     EVP_EncryptUpdate(ctx, NULL, &outlen, gcm_aad, sizeof(gcm_aad));
    67. 

  67.     /* Encrypt plaintext */
    68. 

  68.     EVP_EncryptUpdate(ctx, outbuf, &outlen, gcm_pt, sizeof(gcm_pt));
    69. 

  69.     /* Output encrypted block */
    70. 

  70.     printf("Ciphertext:\n");
    71. 

  71.     BIO_dump_fp(stdout, outbuf, outlen);
    72. 

  72.     /* Finalise: note get no output for GCM */
    73. 

  73.     EVP_EncryptFinal_ex(ctx, outbuf, &outlen);
    74. 

  74.     /* Get tag */
    75. 

  75.     EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_GET_TAG, 16, outbuf);
    76. 

  76.     /* Output tag */
    77. 

  77.     printf("Tag:\n");
    78. 

  78.     BIO_dump_fp(stdout, outbuf, 16);
    79. 

  79.     EVP_CIPHER_CTX_free(ctx);
    80. 

  80. }
    81. 

  81. 

  82. void aes_gcm_decrypt(void)
    83. 

  83. {
    84. 

  84.     EVP_CIPHER_CTX *ctx;
    85. 

  85.     int outlen, tmplen, rv;
    86. 

  86.     unsigned char outbuf[1024];
    87. 

  87.     printf("AES GCM Decrypt:\n");
    88. 

  88.     printf("Ciphertext:\n");
    89. 

  89.     BIO_dump_fp(stdout, gcm_ct, sizeof(gcm_ct));
    90. 

  90.     ctx = EVP_CIPHER_CTX_new();
    91. 

  91.     /* Select cipher */
    92. 

  92.     EVP_DecryptInit_ex(ctx, EVP_aes_256_gcm(), NULL, NULL, NULL);
    93. 

  93.     /* Set IV length, omit for 96 bits */
    94. 

  94.     EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_IVLEN, sizeof(gcm_iv), NULL);
    95. 

  95.     /* Specify key and IV */
    96. 

  96.     EVP_DecryptInit_ex(ctx, NULL, NULL, gcm_key, gcm_iv);
    97. 

  97.     /* Zero or more calls to specify any AAD */
    98. 

  98.     EVP_DecryptUpdate(ctx, NULL, &outlen, gcm_aad, sizeof(gcm_aad));
    99. 

  99.     /* Decrypt plaintext */
    100. 

  100.     EVP_DecryptUpdate(ctx, outbuf, &outlen, gcm_ct, sizeof(gcm_ct));
    101. 

  101.     /* Output decrypted block */
    102. 

  102.     printf("Plaintext:\n");
    103. 

  103.     BIO_dump_fp(stdout, outbuf, outlen);
    104. 

  104.     /* Set expected tag value. */
    105. 

  105.     EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, sizeof(gcm_tag),
    106. 

  106.                         (void *)gcm_tag);
    107. 

  107.     /* Finalise: note get no output for GCM */
    108. 

  108.     rv = EVP_DecryptFinal_ex(ctx, outbuf, &outlen);
    109. 

  109.     /*
    110. 

  110.      * Print out return value. If this is not successful authentication
    111. 

  111.      * failed and plaintext is not trustworthy.
    112. 

  112.      */
    113. 

  113.     printf("Tag Verify %s\n", rv > 0 ? "Successful!" : "Failed!");
    114. 

  114.     EVP_CIPHER_CTX_free(ctx);
    115. 

  115. }
    116. 

  116. 

  117. int main(int argc, char **argv)
    118. 

  118. {
    119. 

  119.     aes_gcm_encrypt();
    120. 

  120.     aes_gcm_decrypt();
    121. 

  121. }
    122.