实验二 初始化阶段-source.c
2019獨角獸企業重金招聘Python工程師標準>>>
//file system
#include<stdio.h>
#include<stdlib.h>
#include<string.h>
//openssl
#include<openssl/evp.h>
#include<openssl/sha.h>
#include<openssl/rsa.h>
#include<openssl/aes.h>
#include<openssl/hmac.h>
#include<openssl/pem.h>
#include<openssl/err.h>
//socket
#include<netinet/in.h> // sockaddr_in
#include<sys/types.h>? // socket
#include<sys/socket.h> // socket
#include<stdio.h>??? // printf
#include<stdlib.h>?? // exit
#include<string.h>?? // bzero
//time
#include<time.h>
#include <stdio.h>
#include <sys/time.h>
//file path
#define PUBEK "ek_pub.key"
#define PRIEK "ek.key"
#define PUBDA "DA_pub.key"
#define PRIDA "DA.key"
//socket parameter
#define SERVER_PORT 8000
#define LENGTH_OF_LISTEN_QUEUE 20
#define BUFFER_SIZE 1024
char*? sign( )
{
??? EVP_MD_CTX mdctx;
??? EVP_PKEY *evpkey=NULL,*evpkey1=NULL;
??? char *signValue;
??? unsigned int signLen;
??? char *text="NO20171228";
??? int textLen=16;
??? //char *signID=NULL;
??? RSA *pri,*pub;
??? FILE *file;
?? ?
??? if((file=fopen(PRIEK,"r"))==NULL){
??????? perror("source TPM: open key file error");
??????? return;
??? }
//??? printf("1\n");
??? //if((p_rsa=PEM_read_RSA_PUBKEY(file,NULL,NULL,NULL))==NULL){
??? if((pri=PEM_read_RSAPrivateKey(file,NULL,NULL,NULL))==NULL){
??????? ERR_print_errors_fp(stdout);
??????? return;
??? }
? // printf("2\n");
?? evpkey=EVP_PKEY_new();
?? if(NULL==evpkey){
????? printf("EVP_KEY_new failed!\n");
????? return;
?? }
?? EVP_PKEY_assign_RSA(evpkey,pri);
?? //printf("3\n");
??? //以下是計算簽名的代碼??? ?
??? EVP_MD_CTX_init(&mdctx);??????? //初始化摘要上下文??? ?
??? if(!EVP_SignInit_ex(&mdctx,EVP_md5(),NULL)) //簽名初始化,設置摘要算法??? ?
??? {?? ?
??????? printf("initerr\n");?????? ?
??????? return;?? ?
??? }?? ?
??? //printf("4\n");
??? if(!EVP_SignUpdate(&mdctx,text,textLen)) //計算簽名(摘要)Update??? ?
??? {?? ?
??????? printf("signupfate err\n");????? ?
??????? return;?? ?
??? }
??? //printf("5\n");?? ?
??? if(!EVP_SignFinal(&mdctx,signValue,&signLen,evpkey))? //簽名輸出??? ?
??? {?? ?
??????? printf("signfinal err\n");????? ?
??????? return;?? ?
??? }?? ?
?? // printf("6\n");
??? //printf("消息%s的簽名值是:\n",text);?? ?
??? //printf("---------------------------\n");
??? //printf("%s",signValue); ?
??? //printf("\n");
?//?? return signValue;?? ?
?//?? EVP_PKEY_free(evpkey);
??? EVP_MD_CTX_cleanup(&mdctx);
?//?? return;
? ?
??? ERR_load_EVP_strings();
??? EVP_MD_CTX mdctx1;?? //摘要算法上下文變量??? ?
??? EVP_MD_CTX_init(&mdctx1);??? //初始化摘要上下文??? ?
?
??? FILE *file1;
??? int flen1;
??? if((file1=fopen(PUBEK,"r"))==NULL){
??????? perror("source TPM: open key file error");
??????? return;
??? }
??? if((pub=PEM_read_RSA_PUBKEY(file1,NULL,NULL,NULL))==NULL){
??? //if((pub=PEM_read_RSAPublicKey(file1,NULL,NULL,NULL))==NULL){
??????? ERR_print_errors_fp(stdout);
??????? return;
??? }
???? evpkey1=EVP_PKEY_new();
?? if(NULL==evpkey1){
????? printf("EVP_KEY_new failed!\n");
????? return;
?? }
?? EVP_PKEY_assign_RSA(evpkey1,pub);
??? if(!EVP_VerifyInit_ex(&mdctx1, EVP_md5(), NULL)) //驗證初始化,設置摘要算法,一定要和簽名一致??? ?
??? {
??????? printf("EVP_VerifyInit_ex err\n");
???? ?
??????? return;
??? }
??? if(!EVP_VerifyUpdate(&mdctx1, text, textLen)) //驗證簽名(摘要)Update??? ?
??? {
??????? printf("err\n");
?????? ?
??????? return;
??? }
??? //printf("%s\n",text);
??? if(EVP_VerifyFinal(&mdctx1,signValue,signLen,evpkey1)==0)
??? {
?????? // printf("verify err\n");
??????? //printf("簽名值是:\n");
//??????? printf("%s\n",signValue);
??????? //printf("end\n");
??????? EVP_MD_CTX_cleanup(&mdctx1);
??????? return;
??? }
??? else
??? {
?????? // printf("驗證簽名正確.\n");
??? }
??? //釋放內存??? ?
??? EVP_PKEY_free(evpkey1);
??? EVP_MD_CTX_cleanup(&mdctx1);
??? return signValue;
}
void aes_box_encrypt(unsigned char* source_string, unsigned char* des_string) ?
{ ?
??? int iLoop = 0; ?
??? int iLen =0; ?
??? AES_KEY aes; ?
??? unsigned char key[AES_BLOCK_SIZE]; ?
??? unsigned char iv[AES_BLOCK_SIZE]; ?
??? if(NULL == source_string || NULL == des_string) ?
??? { ?
?????? printf("NULL\n");
?????? return; ?
??? } ?
?
??? //Generate own AES Key ?
??? for(iLoop = 0; iLoop < 16; iLoop++) ?
??? { ?
??????? key[iLoop] = 32 + iLoop; ?
??? } ?
?
??? // Set encryption key ?
??? for (iLoop=0; iLoop<AES_BLOCK_SIZE; iLoop++)? ?
??? { ?
??????? iv[iLoop] = 0; ?
??? } ?
?
??? if (AES_set_encrypt_key(key, 128, &aes) < 0)? ?
??? { ?
??????? return ; ?
??? } ?
?
??? iLen = strlen(source_string) + 1; ?
?
?? AES_cbc_encrypt(source_string, des_string, iLen, &aes, iv, AES_ENCRYPT); ?
?
} ?
?
void aes_box_decrypt(unsigned char* source_string, unsigned char* des_string) ?
{ ?
??? int iLoop = 0; ?
??? int iLen =0; ?
??? AES_KEY aes; ?
??? unsigned char key[AES_BLOCK_SIZE]; ?
??? unsigned char iv[AES_BLOCK_SIZE]; ?
??? if(NULL == source_string || NULL == des_string) ?
??? { ?
??????? printf("NULL\n");
??????? return; ?
??? } ?
?
??? //Generate own AES Key ?
??? for(iLoop = 0; iLoop < 16; iLoop++) ?
??? { ?
??????? key[iLoop] = 32 + iLoop; ?
??? } ?
?
??? // Set encryption key ?
??? for (iLoop=0; iLoop<AES_BLOCK_SIZE; iLoop++)? ?
??? { ?
??????? iv[iLoop] = 0; ?
??? } ?
?
?? ?
??? if(AES_set_decrypt_key(key, 128, &aes) < 0)? ?
??? { ?
??????? return ; ?
??? } ?
?
??? iLen = strlen(source_string)+1; ?
?
?? AES_cbc_encrypt(source_string, des_string, iLen, &aes, iv, AES_DECRYPT); ?
}
?char *my_encrypt(char *str,char *path_key){
???? char *p_en;
???? RSA *p_rsa;
???? FILE *file;
???? int flen,rsa_len;
???? if((file=fopen(path_key,"r"))==NULL){
???????? perror("source TPM: open key file error");
???????? return NULL;
???? }
???? if((p_rsa=PEM_read_RSA_PUBKEY(file,NULL,NULL,NULL))==NULL){
???? //if((p_rsa=PEM_read_RSAPublicKey(file,NULL,NULL,NULL))==NULL){? // 換成這句死活通不過,無論是否將公鑰分離源文件
???????? ERR_print_errors_fp(stdout);
???????? return NULL;
???? }
???? flen=strlen(str);
???? rsa_len=RSA_size(p_rsa);
???? p_en=(unsigned char *)malloc(rsa_len+1);
???? memset(p_en,0,rsa_len+1);
???? if(RSA_public_encrypt(rsa_len,(unsigned char *)str,(unsigned char*)p_en,p_rsa,RSA_NO_PADDING)<0){
???????? return NULL;
???? }
???? RSA_free(p_rsa);
???? fclose(file);
???? //printf("p_en is %s\n",p_en);
???? return p_en;
?}
?char *my_decrypt(char *str,char *path_key){
???? char *p_de;
???? RSA *p_rsa;
???? FILE *file;
???? int rsa_len;
???? if((file=fopen(path_key,"r"))==NULL){
???????? perror("source TPM: open key file error");
???????? return NULL;
???? }
???? if((p_rsa=PEM_read_RSAPrivateKey(file,NULL,NULL,NULL))==NULL){
???????? ERR_print_errors_fp(stdout);
???????? return NULL;
???? }
???? rsa_len=RSA_size(p_rsa);
???? p_de=(unsigned char *)malloc(rsa_len+1);
???? memset(p_de,0,rsa_len+1);
???? if(RSA_private_decrypt(rsa_len,(unsigned char *)str,(unsigned char*)p_de,p_rsa,RSA_NO_PADDING)<0){
???????? return NULL;
???? }
???? RSA_free(p_rsa);
???? fclose(file);
???? return p_de;
}
int my_server1(int cases,char *sysencseed,char *encryKeyout,char *dups,char *outerHMAC)
{
??? // 聲明并初始化一個服務器端的socket地址結構
? struct sockaddr_in server_addr;
? bzero(&server_addr, sizeof(server_addr));
? server_addr.sin_family = AF_INET;
? server_addr.sin_addr.s_addr = htons(INADDR_ANY);
? server_addr.sin_port = htons(SERVER_PORT);
? // 創建socket,若成功,返回socket描述符
? int server_socket_fd = socket(PF_INET, SOCK_STREAM, 0);
? if(server_socket_fd < 0)
? {
??? perror("Create Socket Failed:");
??? exit(1);
? }
?int opt = 1;
? setsockopt(server_socket_fd, SOL_SOCKET, SO_REUSEADDR, &opt, sizeof(opt));
? // 綁定socket和socket地址結構
? if(-1 == (bind(server_socket_fd, (struct sockaddr*)&server_addr, sizeof(server_addr))))
? {
??? perror("Server Bind Failed:");
??? exit(1);
? }
? // socket監聽
? if(-1 == (listen(server_socket_fd, LENGTH_OF_LISTEN_QUEUE)))
? {
??? perror("Server Listen Failed:");
??? exit(1);
? }
? printf("source TPM:waiting for client connect...........\n");
? // 定義客戶端的socket
? struct sockaddr_in client_addr;
? socklen_t client_addr_length = sizeof(client_addr);
? // 接受連接請求,返回一個新的socket(描述符),這個新socket用于同連接的客戶端>通信
? // accept函數會把連接到的客戶端信息寫到client_addr中
? int new_server_socket_fd = accept(server_socket_fd, (struct sockaddr*)&client_addr, &client_addr_length);
? if(new_server_socket_fd < 0)
? {
??? perror("Server Accept Failed:");
?? // break;
?? return -1;
? }
? else
? {
??? printf("source TPM: client connect success!\n");
? }
? FILE *fp ;
? if(cases==0)
? {
??? char buffer0[BUFFER_SIZE],dstStringTemp[17]={0};
??? int RA=1,Ntpm=1;
??? char *Nda0="2";
??? //send seed
??? printf("-------------source TPM:init stage start--------------\n");
??? bzero(buffer0, BUFFER_SIZE);
??? strncpy( buffer0, sysencseed,strlen(sysencseed)>BUFFER_SIZE?BUFFER_SIZE:strlen(sysencseed));
??? printf("source TPM:send data to DA.....\n");
??? send(new_server_socket_fd, sysencseed, BUFFER_SIZE, 0);
??? send(new_server_socket_fd, dups, BUFFER_SIZE, 0);
??? //recieve data
??? printf("source TPM:recieve data from DA.....\n");
??? recv(new_server_socket_fd, buffer0, BUFFER_SIZE, 0);
??? printf("source TPM:using ks decrypt to get RA,Ntpm,Nda0...\n");
??? aes_box_decrypt(buffer0,dstStringTemp);
??? //printf("source TPM:after decrypt is :%s\n",dstStringTemp);
??? printf("source TPM:Verify Ntpm.....\n");
??? printf("source TPM:Verify success,send data to DA...\n");
??? bzero(buffer0, BUFFER_SIZE);
??? aes_box_encrypt(Nda0,buffer0);
??? send(new_server_socket_fd, buffer0, BUFFER_SIZE, 0);
??? printf("-------------source TPM:init stage end--------------\n");
? }
}
int main(void){
???? int c,timeuse;
???? char dstStringTemp[17]={0},dst[17]={0},dupSensitive1[17]={0},*sss,*encryptionKeyout;
???? unsigned char*outerHMAC,encSensitive[17]={0};
???? unsigned char *dupSensitive={0};
???? unsigned char str[]="你好icd";
???? unsigned char* encryptionKeyin="abcdefghijklmnop";
???? FILE *migkeyfp;
???? char *sysmetricSeed;
???? struct timeval start, end;
??? ?
???? gettimeofday(&start,NULL);
???? //printf("source TPM:init stage start.............\n");
???? //初始化階段
???? char *signID=NULL,*encks=NULL,*decks=NULL;
???? //1.用EK簽名ID
???? //signID=sign();
???? char ks[]="123456";
???? //2.用DA加密ks
???? encks=my_encrypt(ks,PUBDA);
???? //decks=my_decrypt(encks,PRIDA);
???? unsigned char source_string[]="EK&NO1&01&", des_string[128]={0};
???? //3.用ks加密EK,ID,signID,N
???? aes_box_encrypt(source_string,des_string) ;
???? //printf("ks加密:%s\n",des_string);
???? //4.發送數據
???? my_server1(0,encks,NULL,des_string,NULL);
???? gettimeofday(&end,NULL);
???? timeuse=1000000*(end.tv_sec-start.tv_sec)+end.tv_usec-start.tv_usec;
???? printf("source TPM:init stage total run time :%d us\n",timeuse);
???? return 0;
?}
轉載于:https://my.oschina.net/u/3548719/blog/1611196
總結
以上是生活随笔為你收集整理的实验二 初始化阶段-source.c的全部內容,希望文章能夠幫你解決所遇到的問題。
- 上一篇: IO(输入输出)
- 下一篇: 嵌入式tomcat例子