Sample code for 30+ languages & platforms
C++

Decrypt 256-bit AES GCM Produced by Something Unknown

See more Encryption Examples

Demonstrates how to decrypt something produced elsewhere (unknown) with 256-bit AES GCM.

Chilkat C++ Downloads

C++
#include <CkCrypt2.h>
#include <CkBinData.h>

void ChilkatSample(void)
    {
    bool success = false;

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // We have the following to decrypt:

    // Key (Base64): 
    const char *keyBase64 = "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx";

    // IV (Base64Url):
    const char *ivBase64Url = "xrvaINMLqotAbWRK";

    // ciphertext (base64url):
    const char *cipherBase64Url = "RtGNAS-zQOxSB8W0HfqJjCoyt9KgImW_l-HjVC40hOOl-RNfRF3hzDIT1kvFVF8i_KX9XmqAftb6lyq-jLCEc_MSgqt3q1ixv3Ez4SbS3G5e3qGzLwxIMi2sCt00aDNwK2ipsJ4aw8s7ePPnl4oY-y1st9rwCWR0rrgEZwS9jmS4uJWGPn9K3jbKRnMslznDbtFLNJctMVXBTP-cv47JelxLCBOQSlK29rMuEFrhHR_VQrPq6gtZaBVSXZSYT0XOklp7nu9mVhrMCRtBCC5oiu5MPE5JYx4ANo3hUY7_NyQl2bpn9GfRXrdvqRGE-gy2upj-cDkm0t_tV8xmYge9DBQTH3B_4BGl2qTk_o-m7pEmKkS8XSdQhGcuFlykqrkE8SzB5I8esfzWOM0pwxbz0H_VaylKYHY=";

    CkCrypt2 crypt;

    crypt.put_CryptAlgorithm("aes");
    crypt.put_CipherMode("gcm");
    crypt.put_KeyLength(256);

    success = crypt.SetEncodedAad("random","ascii");
    crypt.SetEncodedKey(keyBase64,"base64");
    crypt.SetEncodedIV(ivBase64Url,"base64url");

    // The cipher text contains the 16-byte auth tag at the end.
    // get it separately..
    CkBinData bdEncrypted;
    CkBinData bdAuthTag;
    success = bdEncrypted.AppendEncoded(cipherBase64Url,"base64url");

    int numBytes = bdEncrypted.get_NumBytes();
    const char *authTagHex = bdEncrypted.getEncodedChunk(numBytes - 16,16,"hex");

    std::cout << "Auth tag in hex: " << authTagHex << "\r\n";

    success = bdAuthTag.AppendEncoded(authTagHex,"hex");
    bdEncrypted.RemoveChunk(numBytes - 16,16);

    // Use this special value to tell Chilkat to ignore the auth tag.
    success = crypt.SetEncodedAuthTag("FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF","hex");

    // Decrypt
    crypt.put_EncodingMode("base64");
    const char *originalText = crypt.decryptStringENC(bdEncrypted.getEncoded("base64"));
    if (crypt.get_LastMethodSuccess() == false) {
        std::cout << crypt.lastErrorText() << "\r\n";
    }
    else {
        std::cout << originalText << "\r\n";
        std::cout << "Success." << "\r\n";
    }

    // Decrypted text
    }