|
Chilkat • HOME • .NET Core C# • Android™ • AutoIt • C • C# • C++ • Chilkat2-Python • CkPython • Classic ASP • DataFlex • Delphi ActiveX • Delphi DLL • Go • Java • Lianja • Mono C# • Node.js • Objective-C • PHP ActiveX • PHP Extension • Perl • PowerBuilder • PowerShell • PureBasic • Ruby • SQL Server • Swift 2 • Swift 3,4,5... • Tcl • Unicode C • Unicode C++ • VB.NET • VBScript • Visual Basic 6.0 • Visual FoxPro • Xojo Plugin
(Unicode C++) Duplicate PHP's openssl_encrypt and openssl_random_pseudo_bytesDemonstrates how to duplicate PHP's openssl_encrypt function. (https://www.php.net/manual/en/function.openssl-encrypt.php) For more information, see https://www.php.net/manual/en/function.openssl-encrypt.php
#include <CkCrypt2W.h> #include <CkBinDataW.h> void ChilkatSample(void) { // This example requires the Chilkat API to have been previously unlocked. // See Global Unlock Sample for sample code. // Duplicates thw following PHP script: // $text = "This is a test"; // $passphrase = "my password"; // $iv = openssl_random_pseudo_bytes(openssl_cipher_iv_length("AES-256-CBC")); // $crypted = base64_encode($iv.openssl_encrypt($text, "AES-256-CBC", $passphrase, OPENSSL_RAW_DATA, $iv)); // echo $crypted; bool success; CkCrypt2W crypt; const wchar_t *text = L"This is a test"; const wchar_t *passphrase = L"my password"; // AES is a block cipher. The IV size for any block cipher is the size of the block, which is defined by the encryption algorithm. // For AES, the block size is always 16 bytes, regardless of key size (i.e. 128-bits, 192-bits, or 256-bits). // Therefore, generate 16 random bytes for the IV. crypt.put_EncodingMode(L"base64"); const wchar_t *ivBase64 = crypt.genRandomBytesENC(16); wprintf(L"Generated IV = %s\n",ivBase64); // Because we're doing AES-256-CBC, the key length must be 256-bits (i.e. 32 bytes). // Given that our passphrase is a us-ascii string that can be shorter or longer than 32-bytes, we need to // somehow transform the passphrase to a 32-byte secret key. We need to know what openssl_encrypt does. // Here's the answer from the openssl_encrypt documentation: // // "If the passphrase is shorter than expected, it is silently padded with NUL characters; // if the passphrase is longer than expected, it is silently truncated." // OK.... so let's pad or shorten to get a 32-byte key. CkBinDataW bdKey; bdKey.AppendString(passphrase,L"utf-8"); int sz = bdKey.get_NumBytes(); if (sz > 32) { bdKey.RemoveChunk(32,sz - 32); } else { bdKey.Clear(); bdKey.AppendPadded(passphrase,L"utf-8",false,32); } // Setup for encryption. crypt.put_CryptAlgorithm(L"aes"); crypt.put_KeyLength(256); crypt.SetEncodedIV(ivBase64,L"base64"); crypt.SetEncodedKey(bdKey.getEncoded(L"base64"),L"base64"); // Encrypt and base64 encode. const wchar_t *cipherText64 = crypt.encryptStringENC(text); // The PHP code fragment above returns the base64 encoded bytes of the IV and the encrypted text. // So let's do that.. CkBinDataW bd; bd.AppendEncoded(ivBase64,L"base64"); bd.AppendEncoded(cipherText64,L"base64"); const wchar_t *result = bd.getEncoded(L"base64"); wprintf(L"result = %s\n",result); // Sample output: // dN0vS1O0cWi5BbLAAY+NTf7bs3S27xzPf11RkG47sjs= // Now let's decrypt from the output... // Setup for decryption. crypt.put_CryptAlgorithm(L"aes"); crypt.put_KeyLength(256); crypt.SetEncodedKey(bdKey.getEncoded(L"base64"),L"base64"); CkBinDataW bdResult; bdResult.AppendEncoded(result,L"base64"); crypt.SetEncodedIV(bdResult.getEncodedChunk(0,16,L"base64"),L"base64"); // Remove the IV (first 16 bytes) from the result. bdResult.RemoveChunk(0,16); success = crypt.DecryptBd(bdResult); const wchar_t *originalText = bdResult.getString(L"utf-8"); wprintf(L"original text = %s\n",originalText); } |
|||||||
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.