Blame - programs/pkey/dh_client.c - mirror/mbed-tls

blob: e9523ce84f07cd4c68dae9dac5bd848cc9ad546e [file] [log] [blame]

Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	1	/*
				2	* Diffie-Hellman-Merkle key exchange (client side)
				3	*
Manuel Pégourié-Gonnard	a658a40	2015-01-23 09:45:19 +0000	[diff] [blame]	4	* Copyright (C) 2006-2011, ARM Limited, All Rights Reserved
Paul Bakker	b96f154	2010-07-18 20:36:00 +0000	[diff] [blame]	5	*
Manuel Pégourié-Gonnard	fe44643	2015-03-06 13:17:10 +0000	[diff] [blame]	6	* This file is part of mbed TLS (https://tls.mbed.org)
Paul Bakker	e0ccd0a	2009-01-04 16:27:10 +0000	[diff] [blame]	7	*
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	8	* This program is free software; you can redistribute it and/or modify
				9	* it under the terms of the GNU General Public License as published by
				10	* the Free Software Foundation; either version 2 of the License, or
				11	* (at your option) any later version.
				12	*
				13	* This program is distributed in the hope that it will be useful,
				14	* but WITHOUT ANY WARRANTY; without even the implied warranty of
				15	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
				16	* GNU General Public License for more details.
				17	*
				18	* You should have received a copy of the GNU General Public License along
				19	* with this program; if not, write to the Free Software Foundation, Inc.,
				20	* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
				21	*/
				22
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	23	#if !defined(MBEDTLS_CONFIG_FILE)
Manuel Pégourié-Gonnard	7f80997	2015-03-09 17:05:11 +0000	[diff] [blame]	24	#include "mbedtls/config.h"
Manuel Pégourié-Gonnard	cef4ad2	2014-04-29 12:39:06 +0200	[diff] [blame]	25	#else
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	26	#include MBEDTLS_CONFIG_FILE
Manuel Pégourié-Gonnard	cef4ad2	2014-04-29 12:39:06 +0200	[diff] [blame]	27	#endif
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	28
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	29	#if defined(MBEDTLS_PLATFORM_C)
Manuel Pégourié-Gonnard	7f80997	2015-03-09 17:05:11 +0000	[diff] [blame]	30	#include "mbedtls/platform.h"
Rich Evans	f90016a	2015-01-19 14:26:37 +0000	[diff] [blame]	31	#else
Rich Evans	18b78c7	2015-02-11 14:06:19 +0000	[diff] [blame]	32	#include <stdio.h>
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	33	#define mbedtls_printf printf
Rich Evans	f90016a	2015-01-19 14:26:37 +0000	[diff] [blame]	34	#endif
				35
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	36	#if defined(MBEDTLS_AES_C) && defined(MBEDTLS_DHM_C) && \
				37	defined(MBEDTLS_ENTROPY_C) && defined(MBEDTLS_NET_C) && \
				38	defined(MBEDTLS_RSA_C) && defined(MBEDTLS_SHA256_C) && \
				39	defined(MBEDTLS_FS_IO) && defined(MBEDTLS_CTR_DRBG_C)
Manuel Pégourié-Gonnard	7f80997	2015-03-09 17:05:11 +0000	[diff] [blame]	40	#include "mbedtls/net.h"
				41	#include "mbedtls/aes.h"
				42	#include "mbedtls/dhm.h"
				43	#include "mbedtls/rsa.h"
				44	#include "mbedtls/sha1.h"
				45	#include "mbedtls/entropy.h"
				46	#include "mbedtls/ctr_drbg.h"
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	47
Rich Evans	18b78c7	2015-02-11 14:06:19 +0000	[diff] [blame]	48	#include <stdio.h>
				49	#include <string.h>
				50	#endif
				51
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	52	#define SERVER_NAME "localhost"
Manuel Pégourié-Gonnard	c0d7494	2015-06-23 12:30:57 +0200	[diff] [blame^]	53	#define SERVER_PORT "11999"
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	54
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	55	#if !defined(MBEDTLS_AES_C) \|\| !defined(MBEDTLS_DHM_C) \|\| \
				56	!defined(MBEDTLS_ENTROPY_C) \|\| !defined(MBEDTLS_NET_C) \|\| \
				57	!defined(MBEDTLS_RSA_C) \|\| !defined(MBEDTLS_SHA256_C) \|\| \
				58	!defined(MBEDTLS_FS_IO) \|\| !defined(MBEDTLS_CTR_DRBG_C)
Rich Evans	85b05ec	2015-02-12 11:37:29 +0000	[diff] [blame]	59	int main( void )
Paul Bakker	5690efc	2011-05-26 13:16:06 +0000	[diff] [blame]	60	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	61	mbedtls_printf("MBEDTLS_AES_C and/or MBEDTLS_DHM_C and/or MBEDTLS_ENTROPY_C "
				62	"and/or MBEDTLS_NET_C and/or MBEDTLS_RSA_C and/or "
				63	"MBEDTLS_SHA256_C and/or MBEDTLS_FS_IO and/or "
				64	"MBEDTLS_CTR_DRBG_C not defined.\n");
Paul Bakker	5690efc	2011-05-26 13:16:06 +0000	[diff] [blame]	65	return( 0 );
				66	}
				67	#else
Rich Evans	85b05ec	2015-02-12 11:37:29 +0000	[diff] [blame]	68	int main( void )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	69	{
				70	FILE *f;
				71
Paul Bakker	23986e5	2011-04-24 08:57:21 +0000	[diff] [blame]	72	int ret;
				73	size_t n, buflen;
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	74	int server_fd = -1;
				75
				76	unsigned char p, end;
Paul Bakker	520ea91	2012-10-24 14:17:01 +0000	[diff] [blame]	77	unsigned char buf[2048];
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	78	unsigned char hash[20];
Paul Bakker	ef3f8c7	2013-06-24 13:01:08 +0200	[diff] [blame]	79	const char *pers = "dh_client";
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	80
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	81	mbedtls_entropy_context entropy;
				82	mbedtls_ctr_drbg_context ctr_drbg;
				83	mbedtls_rsa_context rsa;
				84	mbedtls_dhm_context dhm;
				85	mbedtls_aes_context aes;
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	86
				87	memset( &rsa, 0, sizeof( rsa ) );
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	88	mbedtls_dhm_init( &dhm );
				89	mbedtls_aes_init( &aes );
Manuel Pégourié-Gonnard	ec160c0	2015-04-28 22:52:30 +0200	[diff] [blame]	90	mbedtls_ctr_drbg_init( &ctr_drbg );
Paul Bakker	8cfd9d8	2014-06-18 11:16:11 +0200	[diff] [blame]	91
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	92	/*
				93	* 1. Setup the RNG
				94	*/
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	95	mbedtls_printf( "\n . Seeding the random number generator" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	96	fflush( stdout );
				97
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	98	mbedtls_entropy_init( &entropy );
Manuel Pégourié-Gonnard	ec160c0	2015-04-28 22:52:30 +0200	[diff] [blame]	99	if( ( ret = mbedtls_ctr_drbg_seed( &ctr_drbg, mbedtls_entropy_func, &entropy,
Paul Bakker	ef3f8c7	2013-06-24 13:01:08 +0200	[diff] [blame]	100	(const unsigned char *) pers,
				101	strlen( pers ) ) ) != 0 )
Paul Bakker	508ad5a	2011-12-04 17:09:26 +0000	[diff] [blame]	102	{
Manuel Pégourié-Gonnard	ec160c0	2015-04-28 22:52:30 +0200	[diff] [blame]	103	mbedtls_printf( " failed\n ! mbedtls_ctr_drbg_seed returned %d\n", ret );
Paul Bakker	508ad5a	2011-12-04 17:09:26 +0000	[diff] [blame]	104	goto exit;
				105	}
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	106
				107	/*
				108	* 2. Read the server's public RSA key
				109	*/
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	110	mbedtls_printf( "\n . Reading public key from rsa_pub.txt" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	111	fflush( stdout );
				112
				113	if( ( f = fopen( "rsa_pub.txt", "rb" ) ) == NULL )
				114	{
				115	ret = 1;
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	116	mbedtls_printf( " failed\n ! Could not open rsa_pub.txt\n" \
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	117	" ! Please run rsa_genkey first\n\n" );
				118	goto exit;
				119	}
				120
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	121	mbedtls_rsa_init( &rsa, MBEDTLS_RSA_PKCS_V15, 0 );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	122
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	123	if( ( ret = mbedtls_mpi_read_file( &rsa.N, 16, f ) ) != 0 \|\|
				124	( ret = mbedtls_mpi_read_file( &rsa.E, 16, f ) ) != 0 )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	125	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	126	mbedtls_printf( " failed\n ! mbedtls_mpi_read_file returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	127	goto exit;
				128	}
				129
Manuel Pégourié-Gonnard	c0696c2	2015-06-18 16:47:17 +0200	[diff] [blame]	130	rsa.len = ( mbedtls_mpi_bitlen( &rsa.N ) + 7 ) >> 3;
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	131
				132	fclose( f );
				133
				134	/*
				135	* 3. Initiate the connection
				136	*/
Manuel Pégourié-Gonnard	c0d7494	2015-06-23 12:30:57 +0200	[diff] [blame^]	137	mbedtls_printf( "\n . Connecting to tcp/%s/%s", SERVER_NAME,
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	138	SERVER_PORT );
				139	fflush( stdout );
				140
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	141	if( ( ret = mbedtls_net_connect( &server_fd, SERVER_NAME,
				142	SERVER_PORT, MBEDTLS_NET_PROTO_TCP ) ) != 0 )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	143	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	144	mbedtls_printf( " failed\n ! mbedtls_net_connect returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	145	goto exit;
				146	}
				147
				148	/*
				149	* 4a. First get the buffer length
				150	*/
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	151	mbedtls_printf( "\n . Receiving the server's DH parameters" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	152	fflush( stdout );
				153
				154	memset( buf, 0, sizeof( buf ) );
				155
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	156	if( ( ret = mbedtls_net_recv( &server_fd, buf, 2 ) ) != 2 )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	157	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	158	mbedtls_printf( " failed\n ! mbedtls_net_recv returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	159	goto exit;
				160	}
				161
				162	n = buflen = ( buf[0] << 8 ) \| buf[1];
Paul Bakker	23986e5	2011-04-24 08:57:21 +0000	[diff] [blame]	163	if( buflen < 1 \|\| buflen > sizeof( buf ) )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	164	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	165	mbedtls_printf( " failed\n ! Got an invalid buffer length\n\n" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	166	goto exit;
				167	}
				168
				169	/*
				170	* 4b. Get the DHM parameters: P, G and Ys = G^Xs mod P
				171	*/
				172	memset( buf, 0, sizeof( buf ) );
				173
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	174	if( ( ret = mbedtls_net_recv( &server_fd, buf, n ) ) != (int) n )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	175	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	176	mbedtls_printf( " failed\n ! mbedtls_net_recv returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	177	goto exit;
				178	}
				179
				180	p = buf, end = buf + buflen;
				181
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	182	if( ( ret = mbedtls_dhm_read_params( &dhm, &p, end ) ) != 0 )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	183	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	184	mbedtls_printf( " failed\n ! mbedtls_dhm_read_params returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	185	goto exit;
				186	}
				187
Paul Bakker	520ea91	2012-10-24 14:17:01 +0000	[diff] [blame]	188	if( dhm.len < 64 \|\| dhm.len > 512 )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	189	{
				190	ret = 1;
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	191	mbedtls_printf( " failed\n ! Invalid DHM modulus size\n\n" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	192	goto exit;
				193	}
				194
				195	/*
				196	* 5. Check that the server's RSA signature matches
Manuel Pégourié-Gonnard	6f60cd8	2015-02-10 10:47:03 +0000	[diff] [blame]	197	* the SHA-256 hash of (P,G,Ys)
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	198	*/
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	199	mbedtls_printf( "\n . Verifying the server's RSA signature" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	200	fflush( stdout );
				201
Paul Bakker	88f17b8	2012-04-26 18:52:13 +0000	[diff] [blame]	202	p += 2;
				203
Paul Bakker	23986e5	2011-04-24 08:57:21 +0000	[diff] [blame]	204	if( ( n = (size_t) ( end - p ) ) != rsa.len )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	205	{
				206	ret = 1;
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	207	mbedtls_printf( " failed\n ! Invalid RSA signature size\n\n" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	208	goto exit;
				209	}
				210
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	211	mbedtls_sha1( buf, (int)( p - 2 - buf ), hash );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	212
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	213	if( ( ret = mbedtls_rsa_pkcs1_verify( &rsa, NULL, NULL, MBEDTLS_RSA_PUBLIC,
				214	MBEDTLS_MD_SHA256, 0, hash, p ) ) != 0 )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	215	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	216	mbedtls_printf( " failed\n ! mbedtls_rsa_pkcs1_verify returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	217	goto exit;
				218	}
				219
				220	/*
				221	* 6. Send our public value: Yc = G ^ Xc mod P
				222	*/
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	223	mbedtls_printf( "\n . Sending own public value to server" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	224	fflush( stdout );
				225
				226	n = dhm.len;
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	227	if( ( ret = mbedtls_dhm_make_public( &dhm, (int) dhm.len, buf, n,
				228	mbedtls_ctr_drbg_random, &ctr_drbg ) ) != 0 )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	229	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	230	mbedtls_printf( " failed\n ! mbedtls_dhm_make_public returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	231	goto exit;
				232	}
				233
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	234	if( ( ret = mbedtls_net_send( &server_fd, buf, n ) ) != (int) n )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	235	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	236	mbedtls_printf( " failed\n ! mbedtls_net_send returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	237	goto exit;
				238	}
				239
				240	/*
				241	* 7. Derive the shared secret: K = Ys ^ Xc mod P
				242	*/
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	243	mbedtls_printf( "\n . Shared secret: " );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	244	fflush( stdout );
				245
Manuel Pégourié-Gonnard	3335205	2015-06-02 16:17:08 +0100	[diff] [blame]	246	if( ( ret = mbedtls_dhm_calc_secret( &dhm, buf, sizeof( buf ), &n,
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	247	mbedtls_ctr_drbg_random, &ctr_drbg ) ) != 0 )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	248	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	249	mbedtls_printf( " failed\n ! mbedtls_dhm_calc_secret returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	250	goto exit;
				251	}
				252
				253	for( n = 0; n < 16; n++ )
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	254	mbedtls_printf( "%02x", buf[n] );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	255
				256	/*
				257	* 8. Setup the AES-256 decryption key
				258	*
				259	* This is an overly simplified example; best practice is
				260	* to hash the shared secret with a random value to derive
				261	* the keying material for the encryption/decryption keys,
				262	* IVs and MACs.
				263	*/
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	264	mbedtls_printf( "...\n . Receiving and decrypting the ciphertext" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	265	fflush( stdout );
				266
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	267	mbedtls_aes_setkey_dec( &aes, buf, 256 );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	268
				269	memset( buf, 0, sizeof( buf ) );
				270
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	271	if( ( ret = mbedtls_net_recv( &server_fd, buf, 16 ) ) != 16 )
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	272	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	273	mbedtls_printf( " failed\n ! mbedtls_net_recv returned %d\n\n", ret );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	274	goto exit;
				275	}
				276
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	277	mbedtls_aes_crypt_ecb( &aes, MBEDTLS_AES_DECRYPT, buf, buf );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	278	buf[16] = '\0';
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	279	mbedtls_printf( "\n . Plaintext is \"%s\"\n\n", (char *) buf );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	280
				281	exit:
				282
Paul Bakker	0c22610	2014-04-17 16:02:36 +0200	[diff] [blame]	283	if( server_fd != -1 )
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	284	mbedtls_net_close( server_fd );
Paul Bakker	0c22610	2014-04-17 16:02:36 +0200	[diff] [blame]	285
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	286	mbedtls_aes_free( &aes );
				287	mbedtls_rsa_free( &rsa );
				288	mbedtls_dhm_free( &dhm );
				289	mbedtls_ctr_drbg_free( &ctr_drbg );
				290	mbedtls_entropy_free( &entropy );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	291
Paul Bakker	cce9d77	2011-11-18 14:26:47 +0000	[diff] [blame]	292	#if defined(_WIN32)
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	293	mbedtls_printf( " + Press Enter to exit this program.\n" );
Paul Bakker	5121ce5	2009-01-03 21:22:43 +0000	[diff] [blame]	294	fflush( stdout ); getchar();
				295	#endif
				296
				297	return( ret );
				298	}
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	299	#endif /* MBEDTLS_AES_C && MBEDTLS_DHM_C && MBEDTLS_ENTROPY_C &&
				300	MBEDTLS_NET_C && MBEDTLS_RSA_C && MBEDTLS_SHA256_C &&
				301	MBEDTLS_FS_IO && MBEDTLS_CTR_DRBG_C */