# ä½¿ç”¨AESå¯¹ç§°å¯†é’¥ï¼ˆGCMæ¨¡å¼ï¼‰åŠ è§£å¯†(C/C++)


å¯¹åº”çš„ç®—æ³•è§„æ ¼è¯·æŸ¥çœ‹[å¯¹ç§°å¯†é’¥åŠ è§£å¯†ç®—æ³•è§„æ ¼ï¼šAES](crypto-sym-encrypt-decrypt-spec.md#aes)ã€‚


## åœ¨CMakeè„šæœ¬ä¸é“¾æŽ¥ç›¸å…³åŠ¨æ€åº“
```txt
   target_link_libraries(entry PUBLIC libohcrypto.so)
```

## å¼€å‘æ¥éª¤

**åŠ å¯†**


1. è°ƒç”¨[OH_CryptoSymKeyGenerator_Create](../../reference/apis-crypto-architecture-kit/_crypto_sym_key_api.md#oh_cryptosymkeygenerator_create)ã€[OH_CryptoSymKeyGenerator_Generate](../../reference/apis-crypto-architecture-kit/_crypto_sym_key_api.md#oh_cryptosymkeygenerator_generate)ï¼Œç”Ÿæˆå¯†é’¥ç®—æ³•ä¸ºAESã€å¯†é’¥é•¿åº¦ä¸º128ä½çš„å¯¹ç§°å¯†é’¥ï¼ˆOH_CryptoSymKeyï¼‰ã€‚
   
   å¦‚ä½•ç”ŸæˆAESå¯¹ç§°å¯†é’¥ï¼Œå¼€å‘è€…å¯å‚è€ƒä¸‹æ–‡ç¤ºä¾‹ï¼Œå¹¶ç»“åˆ[å¯¹ç§°å¯†é’¥ç”Ÿæˆå’Œè½¬æ¢è§„æ ¼ï¼šAES](crypto-sym-key-generation-conversion-spec.md#aes)å’Œ[éšæœºç”Ÿæˆå¯¹ç§°å¯†é’¥](crypto-generate-sym-key-randomly-ndk.md)ç†è§£ï¼Œå‚è€ƒæ–‡æ¡£ä¸Žå½“å‰ç¤ºä¾‹å¯èƒ½å˜åœ¨å…¥å‚å·®å¼‚ï¼Œè¯·åœ¨é˜…è¯»æ—¶æ³¨æ„åŒºåˆ†ã€‚

2. è°ƒç”¨[OH_CryptoSymCipher_Create](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipher_create)ï¼ŒæŒ‡å®šå—ç¬¦ä¸²å‚æ•°'AES128|GCM|PKCS7'ï¼Œåˆ›å»ºå¯¹ç§°å¯†é’¥ç±»åž‹ä¸ºAES128ã€åˆ†ç»„æ¨¡å¼ä¸ºGCMã€å¡«å……æ¨¡å¼ä¸ºPKCS7çš„Cipherå®žä¾‹ï¼Œç”¨äºŽå®ŒæˆåŠ è§£å¯†æ“ä½œã€‚

3. è°ƒç”¨[OH_CryptoSymCipherParams_Create](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipherparams_create)åˆ›å»ºå‚æ•°å¯¹è±¡ï¼Œè°ƒç”¨[OH_CryptoSymCipherParams_SetParam](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipherparams_setparam)è®¾ç½®å¯¹åº”çš„åŠ å¯†å‚æ•°ã€‚

4. è°ƒç”¨[OH_CryptoSymCipher_Init](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipher_init)ï¼Œè®¾ç½®æ¨¡å¼ä¸ºåŠ å¯†ï¼ˆCRYPTO_ENCRYPT_MODEï¼‰ï¼ŒæŒ‡å®šåŠ å¯†å¯†é’¥ï¼ˆOH_CryptoSymKeyï¼‰å’ŒGCMæ¨¡å¼å¯¹åº”çš„åŠ å¯†å‚æ•°ï¼ˆOH_CryptoSymCipherParamsï¼‰ï¼Œåˆå§‹åŒ–åŠ å¯†Cipherå®žä¾‹ã€‚

5. è°ƒç”¨[OH_CryptoSymCipher_Update](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipher_update)ï¼Œæ›´æ–°æ•°æ®ï¼ˆæ˜Žæ–‡ï¼‰ã€‚
   
   å½“å‰å•æ¬¡updateé•¿åº¦æ²¡æœ‰é™åˆ¶ï¼Œå¼€å‘è€…å¯ä»¥æ ¹æ®æ•°æ®é‡åˆ¤æ–å¦‚ä½•è°ƒç”¨updateã€‚

   - å½“æ•°æ®é‡è¾ƒå°æ—¶ï¼Œå¯ä»¥åœ¨initå®ŒæˆåŽç›´æŽ¥è°ƒç”¨finalã€‚
   - å½“æ•°æ®é‡è¾ƒå¤§æ—¶ï¼Œå¯ä»¥å¤šæ¬¡è°ƒç”¨updateï¼Œå³åˆ†æ®µåŠ è§£å¯†ã€‚

6. è°ƒç”¨[OH_CryptoSymCipher_Final](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipher_final)ï¼ŒèŽ·å–åŠ å¯†åŽçš„æ•°æ®ã€‚
   - ç”±äºŽå·²ä½¿ç”¨updateä¼ å…¥æ•°æ®ï¼Œæ¤å¤„dataä¼ å…¥nullã€‚
   - finalè¾“å‡ºç»“æžœå¯èƒ½ä¸ºnullï¼Œåœ¨è®¿é—®å…·ä½“æ•°æ®å‰ï¼Œéœ€è¦å…ˆåˆ¤æ–ç»“æžœæ˜¯å¦ä¸ºnullï¼Œé¿å…äº§ç”Ÿå¼‚å¸¸ã€‚

7. ä½¿ç”¨[OH_CryptoSymCipherParams_Create](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipherparams_create)åˆ›å»ºParamsï¼Œä½¿ç”¨[OH_CryptoSymCipherParams_SetParam](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipherparams_setparam)è®¾ç½®authTagï¼Œä½œä¸ºè§£å¯†çš„è®¤è¯ä¿¡æ¯ã€‚
   åœ¨GCMæ¨¡å¼ä¸‹ï¼Œéœ€è¦ä»ŽåŠ å¯†åŽçš„æ•°æ®ä¸å–å‡ºæœ«å°¾16å—èŠ‚ï¼Œä½œä¸ºè§£å¯†æ—¶åˆå§‹åŒ–çš„è®¤è¯ä¿¡æ¯ã€‚ç¤ºä¾‹ä¸authTagæ°å¥½ä¸º16å—èŠ‚ã€‚

8. è°ƒç”¨[OH_CryptoSymKeyGenerator_Destroy](../../reference/apis-crypto-architecture-kit/_crypto_sym_key_api.md#oh_cryptosymkeygenerator_destroy)ã€[OH_CryptoSymCipher_Destroy](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipher_destroy)ã€[OH_CryptoSymCipherParams_Destroy](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipherparams_destroy)é”€æ¯å„å¯¹è±¡ã€‚


**è§£å¯†**


1. è°ƒç”¨[OH_CryptoSymCipher_Init](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipher_init)ï¼Œè®¾ç½®æ¨¡å¼ä¸ºè§£å¯†ï¼ˆCRYPTO_DECRYPT_MODEï¼‰ï¼ŒæŒ‡å®šè§£å¯†å¯†é’¥ï¼ˆOH_CryptoSymKeyï¼‰å’ŒGCMæ¨¡å¼å¯¹åº”çš„è§£å¯†å‚æ•°ï¼ˆOH_CryptoSymCipherParamsï¼‰ï¼Œåˆå§‹åŒ–è§£å¯†Cipherå®žä¾‹ã€‚

2. è°ƒç”¨[OH_CryptoSymCipher_Update](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipher_update)ï¼Œæ›´æ–°æ•°æ®ï¼ˆå¯†æ–‡ï¼‰ã€‚

3. è°ƒç”¨[OH_CryptoSymCipher_Final](../../reference/apis-crypto-architecture-kit/_crypto_sym_cipher_api.md#oh_cryptosymcipher_final)ï¼ŒèŽ·å–è§£å¯†åŽçš„æ•°æ®ã€‚


- AES GCMæ¨¡å¼åŠ è§£å¯†ç¤ºä¾‹å¦‚ä¸‹ï¼š

```c++
#include "CryptoArchitectureKit/crypto_common.h"
#include "CryptoArchitectureKit/crypto_sym_cipher.h"
#include <string.h>

static OH_Crypto_ErrCode doTestAesGcm()
{
    OH_CryptoSymKeyGenerator *genCtx = nullptr;
    OH_CryptoSymCipher *encCtx = nullptr;
    OH_CryptoSymCipher *decCtx = nullptr;
    OH_CryptoSymKey *keyCtx = nullptr;
    OH_CryptoSymCipherParams *params = nullptr;

    Crypto_DataBlob outUpdate = {.data = nullptr, .len = 0};
    Crypto_DataBlob decUpdate = {.data = nullptr, .len = 0};

    uint8_t aad[8] = {1, 2, 3, 4, 5, 6, 7, 8};
    uint8_t tag[16] = {0};
    uint8_t iv[12] = {1, 2, 4, 12, 3, 4, 2, 3, 3, 2, 0, 4}; // ivä½¿ç”¨å®‰å…¨éšæœºæ•°ç”Ÿæˆ
    Crypto_DataBlob ivData = {.data = iv, .len = sizeof(iv)};
    Crypto_DataBlob aadData = {.data = aad, .len = sizeof(aad)};
    Crypto_DataBlob tagData = {.data = tag, .len = sizeof(tag)};
    Crypto_DataBlob tagOutPut = {.data = nullptr, .len = 0};
    char *plainText = const_cast<char *>("this is test!");
    Crypto_DataBlob msgBlob = {.data = (uint8_t *)(plainText), .len = strlen(plainText)};

    // ç”Ÿæˆå¯¹ç§°å¯†é’¥
    OH_Crypto_ErrCode ret;
    ret = OH_CryptoSymKeyGenerator_Create("AES128", &genCtx);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymKeyGenerator_Generate(genCtx, &keyCtx);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }

    // è®¾ç½®å‚æ•°
    ret = OH_CryptoSymCipherParams_Create(&params);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymCipherParams_SetParam(params, CRYPTO_IV_DATABLOB, &ivData);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymCipherParams_SetParam(params, CRYPTO_AAD_DATABLOB, &aadData);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymCipherParams_SetParam(params, CRYPTO_TAG_DATABLOB, &tagData);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }

    // åŠ å¯†
    ret = OH_CryptoSymCipher_Create("AES128|GCM|PKCS7", &encCtx);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymCipher_Init(encCtx, CRYPTO_ENCRYPT_MODE, keyCtx, params);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymCipher_Update(encCtx, &msgBlob, &outUpdate);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymCipher_Final(encCtx, nullptr, &tagOutPut);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }

    // è§£å¯†
    ret = OH_CryptoSymCipher_Create("AES128|GCM|PKCS7", &decCtx);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymCipherParams_SetParam(params, CRYPTO_TAG_DATABLOB, &tagOutPut);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymCipher_Init(decCtx, CRYPTO_DECRYPT_MODE, keyCtx, params);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }
    ret = OH_CryptoSymCipher_Final(decCtx, &outUpdate, &decUpdate);
    if (ret != CRYPTO_SUCCESS) {
        goto end;
    }

end:
    OH_CryptoSymCipherParams_Destroy(params);
    OH_CryptoSymCipher_Destroy(encCtx);
    OH_CryptoSymCipher_Destroy(decCtx);
    OH_CryptoSymKeyGenerator_Destroy(genCtx);
    OH_CryptoSymKey_Destroy(keyCtx);
    OH_Crypto_FreeDataBlob(&outUpdate);
    OH_Crypto_FreeDataBlob(&decUpdate);
    OH_Crypto_FreeDataBlob(&tagOutPut);
    return ret;
}
```