带有WinCrypt& amp;硬编码的AES-256密钥CryptImportKey

时间:2009-05-09 00:16:57

标签: cryptography aes cryptoapi

我需要让Win32应用程序加载硬编码的AES-256密钥,理想情况下使用WinCrypt.h方法。我的密钥在unsigned char [32]中,但我找不到正确的密钥blob格式传递给CryptImportKey。一切似乎都给我无效的参数错误。有没有办法做到这一点?

(同样重要的是如何在WinCrypt中设置IV。我根本看不到怎么做)

1 个答案:

答案 0 :(得分:11)

解决了它。我使用错误的bType并使用256代替keySize而不是32。

BYTE myPrivateKey[] = 
    {1,2,3,4,5,6,7,8,9,10,
    11,12,13,14,15,16,17,18,19,20,
    21,22,23,24,25,26,27,28,29,30,
    31,32};
BYTE myIV[] = 
    {1,2,3,4,5,6,7,8,9,10,
    11,12,13,14,15,16};

struct aes256keyBlob
{
    BLOBHEADER hdr;
    DWORD keySize;
    BYTE bytes[32];
} blob;

blob.hdr.bType = PLAINTEXTKEYBLOB;
blob.hdr.bVersion = CUR_BLOB_VERSION;
blob.hdr.reserved = 0;
blob.hdr.aiKeyAlg = CALG_AES_256;
blob.keySize = 32;
memcpy(blob.bytes, myPrivateKey, 32);

HCRYPTKEY hKey;
if (CryptImportKey(hCryptProv, (BYTE*)&blob, sizeof(aes256keyBlob), NULL, 0, &hKey))
{
    if(CryptSetKeyParam(hKey, KP_IV, myIV, 0))
    {
        //do decryption here
    }
    else{/*error*/}

    CryptDestroyKey(hKey);
}
else{/*error*/}
相关问题
最新问题