linux下使用openssl对socket通信加密

于 2016-09-07 22:05:54 发布
阅读量1.4k 收藏 5
点赞数
分类专栏: -----其他------- 文章标签: socket openssl linux

Openssl AES加密(字符串加密)

1.首先安装openssl和相关库(Ubuntu)
apt-get install openssl libssl-dev
2.编写相关加密解密代码

aes_options.h

     ifndef _ASE_H_ 
     #define _ASE_H_
     int encrypt(char *input_string, char **encrypt_string);
     void decrypt(char *encrypt_string, char **decrypt_string, int len);
     endif

aes_options.c

#include <stdio.h>
#include <openssl/aes.h>
#include <stdlib.h>
#include <string.h>


//这个函数将输入字符串加密
int encrypt(char *input_string, char **encrypt_string)
{
    AES_KEY aes;
    unsigned char key[AES_BLOCK_SIZE];        // AES_BLOCK_SIZE = 16
    unsigned char iv[AES_BLOCK_SIZE];        // init vector
    unsigned int len;        // encrypt length (in multiple of AES_BLOCK_SIZE)
    unsigned int i;

    // set the encryption length
    len = 0;
    if ((strlen(input_string) + 1) % AES_BLOCK_SIZE == 0) 
    {
        len = strlen(input_string) + 1;
    } 
    else 
    {
        len = ((strlen(input_string) + 1) / AES_BLOCK_SIZE + 1) * AES_BLOCK_SIZE;
    }

    // Generate AES 128-bit key
    for (i=0; i<16; ++i) {
        key[i] = 32 + i;
    }

    // Set encryption key
    for (i=0; i<AES_BLOCK_SIZE; ++i) {
        iv[i] = 0;
    }
    if (AES_set_encrypt_key(key, 128, &aes) < 0) {
        fprintf(stderr, "Unable to set encryption key in AES\n");
        exit(0);
    }

    // alloc encrypt_string
    *encrypt_string = (unsigned char*)calloc(len, sizeof(unsigned char));    
    if (*encrypt_string == NULL) {
        fprintf(stderr, "Unable to allocate memory for encrypt_string\n");
        exit(-1);
    }

    // encrypt (iv will change)
    AES_cbc_encrypt(input_string, *encrypt_string, len, &aes, iv, AES_ENCRYPT);
    return len;
}

//这个函数将字符串解密
void decrypt(char *encrypt_string, char **decrypt_string,int len)
{
    unsigned char key[AES_BLOCK_SIZE];        // AES_BLOCK_SIZE = 16
    unsigned char iv[AES_BLOCK_SIZE];        // init vector
    AES_KEY aes;
    int i;
    // Generate AES 128-bit key

    for (i=0; i<16; ++i) {
        key[i] = 32 + i;
    }

    // alloc decrypt_string
    *decrypt_string = (unsigned char*)calloc(len, sizeof(unsigned char));
    if (*decrypt_string == NULL) {
        fprintf(stderr, "Unable to allocate memory for decrypt_string\n");
        exit(-1);
    }

    // Set decryption key
    for (i=0; i<AES_BLOCK_SIZE; ++i) {
        iv[i] = 0;
    }
    if (AES_set_decrypt_key(key, 128, &aes) < 0) {
        fprintf(stderr, "Unable to set decryption key in AES\n");
        exit(-1);
    }

    // decrypt
    AES_cbc_encrypt(encrypt_string, *decrypt_string, len, &aes, iv, 
            AES_DECRYPT);
}

最后很重要的一点
如果客户端用到加密函数,编译的格式:gcc client.c aes_options.c -o client.c -lpthread -lcrypto

-lcryto 是openssl加密必须要加上的动态库
原文链接

ukiy
关注
专栏目录
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值