- (NSData *)DESDecrypt:(NSData *)data WithKey:(NSString *)key encryptOrDecrypt:(CCOperation)encryptOperation
{
char keyPtr[kCCKeySizeAES256+1];
bzero(keyPtr, sizeof(keyPtr));
[key getCString:keyPtr maxLength:sizeof(keyPtr) encoding:NSUTF8StringEncoding];
NSUInteger dataLength = [data length];
// size_t bufferSize = dataLength + kCCBlockSizeDES;
size_t bufferSize = (dataLength + kCCBlockSizeDES) & ~(kCCBlockSizeDES - 1);
// unsigned char buffer[(bufferSize * sizeof(char))];
// memset(buffer, 0, sizeof(char));
void *buffer = malloc(bufferSize * sizeof(char));
size_t numBytesDecrypted = 0;
CCCryptorStatus cryptStatus = CCCrypt(encryptOperation, kCCAlgorithmDES,
kCCOptionPKCS7Padding,
keyPtr, kCCBlockSizeDES,
NULL,
[data bytes], dataLength,
buffer, bufferSize,
&numBytesDecrypted);
// | kCCOptionECBMode
if (cryptStatus == kCCSuccess) {
return [NSData dataWithBytesNoCopy:buffer length:numBytesDecrypted];
}
free(buffer);
return nil;
}
通过测试发现:kCCOptionPKCS7Padding与PKCS5Padding加密完成后的nsdata串时一样的,因此判断它们的填充方式是一样的。
测试例子在http://www.dnspod.cn/httpdns.guide下,接口API文档<<D+企业加密版本使用说明>>