davens
diff --git a/‎QAes/QAes.pri
+8 b/‎QAes/QAes.pri
+8
diff --git a/‎QAes/aes.c
+1,098 b/‎QAes/aes.c
+1,098
diff --git a/‎QAes/aes.h
+124 b/‎QAes/aes.h
+124
diff --git a/‎QAes/qaeswrap.cpp
+197 b/‎QAes/qaeswrap.cpp
+197
diff --git a/‎QAes/qaeswrap.h
+55 b/‎QAes/qaeswrap.h
+55
@@ -0,0 +1,8 @@
+INCLUDEPATH += $$PWD/
+SOURCES +=  \
+    $$PWD/qaeswrap.cpp \
+    $$PWD/aes.c
+
+HEADERS += \
+    $$PWD/qaeswrap.h \
+    $$PWD/aes.h
@@ -0,0 +1,124 @@
+/*********************************************************************
+* Filename:   aes.h
+* Author:     Brad Conte (brad AT bradconte.com)
+* Copyright:
+* Disclaimer: This code is presented "as is" without any guarantees.
+* Details:    Defines the API for the corresponding AES implementation.
+*********************************************************************/
+
+#ifndef AES_H
+#define AES_H
+
+/*************************** HEADER FILES ***************************/
+#include <stddef.h>
+
+/****************************** MACROS ******************************/
+#define AES_BLOCK_SIZE 16               // AES operates on 16 bytes at a time
+
+/**************************** DATA TYPES ****************************/
+typedef unsigned char BYTE;            // 8-bit byte
+typedef unsigned int WORD;             // 32-bit word, change to "long" for 16-bit machines
+
+/*********************** FUNCTION DECLARATIONS **********************/
+///////////////////
+// AES
+///////////////////
+// Key setup must be done before any AES en/de-cryption functions can be used.
+// 128 bits = 16 字节
+// 192 bits = 24 字节
+// 256 bits = 32 字节
+void aes_key_setup(const BYTE key[],          // The key, must be 128, 192, or 256 bits
+                   WORD w[],                  // Output key schedule to be used later
+                   int keysize);              // Bit length of the key, 128, 192, or 256
+
+void aes_encrypt(const BYTE in[],             // 16 bytes of plaintext
+                 BYTE out[],                  // 16 bytes of ciphertext
+                 const WORD key[],            // From the key setup
+                 int keysize);                // Bit length of the key, 128, 192, or 256
+
+void aes_decrypt(const BYTE in[],             // 16 bytes of ciphertext
+                 BYTE out[],                  // 16 bytes of plaintext
+                 const WORD key[],            // From the key setup
+                 int keysize);                // Bit length of the key, 128, 192, or 256
+
+///////////////////
+// AES - CBC
+///////////////////
+void aes_encrypt_cbc(const BYTE in[],          // Plaintext
+                    size_t in_len, const BYTE * lastBlock,            // Must be a multiple of AES_BLOCK_SIZE
+                    BYTE out[],               // Ciphertext, same length as plaintext
+                    const WORD key[],         // From the key setup
+                    int keysize,              // Bit length of the key, 128, 192, or 256
+                    const BYTE iv[]);         // IV, must be AES_BLOCK_SIZE bytes long
+
+void aes_decrypt_cbc(const BYTE in[],
+                    size_t in_len,
+                    BYTE out[],
+                    const WORD key[],
+                    int keysize,
+                    const BYTE iv[]);
+
+//// Only output the CBC-MAC of the input.
+//int aes_encrypt_cbc_mac(const BYTE in[],      // plaintext
+//                        size_t in_len,        // Must be a multiple of AES_BLOCK_SIZE
+//                        BYTE out[],           // Output MAC
+//                        const WORD key[],     // From the key setup
+//                        int keysize,          // Bit length of the key, 128, 192, or 256
+//                        const BYTE iv[]);     // IV, must be AES_BLOCK_SIZE bytes long
+
+///////////////////
+// AES - CTR
+///////////////////
+//void increment_iv(BYTE iv[],                  // Must be a multiple of AES_BLOCK_SIZE
+//                  int counter_size);          // Bytes of the IV used for counting (low end)
+
+void aes_encrypt_ctr(const BYTE in[],         // Plaintext
+                     size_t in_len,           // Any byte length
+                     BYTE out[],              // Ciphertext, same length as plaintext
+                     const WORD key[],        // From the key setup
+                     int keysize,             // Bit length of the key, 128, 192, or 256
+                     const BYTE iv[]);        // IV, must be AES_BLOCK_SIZE bytes long
+
+void aes_decrypt_ctr(const BYTE in[],         // Ciphertext
+                     size_t in_len,           // Any byte length
+                     BYTE out[],              // Plaintext, same length as ciphertext
+                     const WORD key[],        // From the key setup
+                     int keysize,             // Bit length of the key, 128, 192, or 256
+                     const BYTE iv[]);        // IV, must be AES_BLOCK_SIZE bytes long
+
+///////////////////
+// AES - CCM
+///////////////////
+// Returns True if the input parameters do not violate any constraint.
+int aes_encrypt_ccm(const BYTE plaintext[],              // IN  - Plaintext.
+                    WORD plaintext_len,                  // IN  - Plaintext length.
+                    const BYTE associated_data[],        // IN  - Associated Data included in authentication, but not encryption.
+                    unsigned short associated_data_len,  // IN  - Associated Data length in bytes.
+                    const BYTE nonce[],                  // IN  - The Nonce to be used for encryption.
+                    unsigned short nonce_len,            // IN  - Nonce length in bytes.
+                    BYTE ciphertext[],                   // OUT - Ciphertext, a concatination of the plaintext and the MAC.
+                    WORD *ciphertext_len,                // OUT - The length of the ciphertext, always plaintext_len + mac_len.
+                    WORD mac_len,                        // IN  - The desired length of the MAC, must be 4, 6, 8, 10, 12, 14, or 16.
+                    const BYTE key[],                    // IN  - The AES key for encryption.
+                    int keysize);                        // IN  - The length of the key in bits. Valid values are 128, 192, 256.
+
+// Returns True if the input parameters do not violate any constraint.
+// Use mac_auth to ensure decryption/validation was preformed correctly.
+// If authentication does not succeed, the plaintext is zeroed out. To overwride
+// this, call with mac_auth = NULL. The proper proceedure is to decrypt with
+// authentication enabled (mac_auth != NULL) and make a second call to that
+// ignores authentication explicitly if the first call failes.
+int aes_decrypt_ccm(const BYTE ciphertext[],             // IN  - Ciphertext, the concatination of encrypted plaintext and MAC.
+                    WORD ciphertext_len,                 // IN  - Ciphertext length in bytes.
+                    const BYTE assoc[],                  // IN  - The Associated Data, required for authentication.
+                    unsigned short assoc_len,            // IN  - Associated Data length in bytes.
+                    const BYTE nonce[],                  // IN  - The Nonce to use for decryption, same one as for encryption.
+                    unsigned short nonce_len,            // IN  - Nonce length in bytes.
+                    BYTE plaintext[],                    // OUT - The plaintext that was decrypted. Will need to be large enough to hold ciphertext_len - mac_len.
+                    WORD *plaintext_len,                 // OUT - Length in bytes of the output plaintext, always ciphertext_len - mac_len .
+                    WORD mac_len,                        // IN  - The length of the MAC that was calculated.
+                    int *mac_auth,                       // OUT - TRUE if authentication succeeded, FALSE if it did not. NULL pointer will ignore the authentication.
+                    const BYTE key[],                    // IN  - The AES key for decryption.
+                    int keysize);                        // IN  - The length of the key in BITS. Valid values are 128, 192, 256.
+
+#endif   // AES_H
@@ -0,0 +1,197 @@
+#include "qaeswrap.h"
+#include <QCryptographicHash>
+
+QAesWrap::QAesWrap(const QByteArray & passwprd,const QByteArray & salt,AesBit bit):mbit(bit)
+{
+    QByteArray data = QCryptographicHash::hash(passwprd,QCryptographicHash::Sha3_256);
+    aes_key_setup((unsigned char *)data.data(),mpass,mbit);
+    data = QCryptographicHash::hash(salt,QCryptographicHash::Sha3_256);
+    memcpy(msalt,data.data(),AES_BLOCK_SIZE);
+}
+
+bool QAesWrap::encrypt(const QByteArray & in, QByteArray & out, AesMode mode,PaddingMode pad)
+{
+    out.clear();
+    switch (mode) {
+    case AES_CTR:
+        out.resize(in.size());
+        aes_encrypt_ctr((unsigned char *)in.data(),in.size(),(unsigned char *)out.data(),mpass,mbit,msalt);
+        break;
+    case AES_ECB:
+    case AES_CBC:
+        initPadding(in,out,mode,pad);
+        break;
+    default:
+        return false;
+    }
+    return true;
+}
+
+void QAesWrap::initPadding(const QByteArray & in,QByteArray & out,AesMode mode,PaddingMode pad)
+{
+    int size = in.size();
+    int last = size % AES_BLOCK_SIZE;
+    const BYTE * data = (unsigned char *)in.data();
+    if (last == 0) {
+        out.resize(size);
+        if (mode == AES_ECB) {
+            ecbencrypt(data,size,0,out);
+        } else {
+            aes_encrypt_cbc(data,size,0,(unsigned char *)out.data(),mpass,mbit,msalt);
+        }
+        return;
+    }
+    int blocks = size / AES_BLOCK_SIZE;
+
+    BYTE datablocks[AES_BLOCK_SIZE] = {0};
+    memcpy(datablocks,(data + blocks * AES_BLOCK_SIZE),last);
+
+    uchar ch = uchar(AES_BLOCK_SIZE - last);
+
+    switch (pad) {
+    case ANSIX923:
+    case PKCS7:
+    {
+        size  = blocks * AES_BLOCK_SIZE;
+        out.resize((blocks +1) * AES_BLOCK_SIZE);
+        if (pad == ANSIX923) {
+            memset(&datablocks[last],0,(ch -1));
+            datablocks[AES_BLOCK_SIZE -1] = ch;
+        } else {
+            memset(&datablocks[last],ch,ch);
+        }
+
+        if (mode == AES_ECB) {
+            ecbencrypt(data,size,datablocks,out);
+        } else {
+            aes_encrypt_cbc(data,size,datablocks,(unsigned char *)out.data(),mpass,mbit,msalt);
+        }
+    }
+        break;
+    default:
+    {
+        if (blocks <= 0) {out = in; return;}
+        out.resize(size);
+        size  = blocks * AES_BLOCK_SIZE;
+        if (mode == AES_ECB) {
+            ecbencrypt(data,size,0,out);
+        } else {
+            aes_encrypt_cbc(data,size,0,(unsigned char *)out.data(),mpass,mbit,msalt);
+        }
+        for (int i = 0,j = size; i < last; ++i, ++j) {
+            out[j] = datablocks[i];
+        }
+    }
+        break;
+    }
+}
+
+void QAesWrap::ecbencrypt(const BYTE * in, size_t size, BYTE *blcok, QByteArray & out)
+{
+    BYTE buf_in[AES_BLOCK_SIZE] = {0}, buf_out[AES_BLOCK_SIZE] = {0};
+    int blocks, idx;
+    char * data = out.data();
+    blocks = size / AES_BLOCK_SIZE;
+    memset(buf_out,0,AES_BLOCK_SIZE);
+    for (idx = 0; idx < blocks; idx++) {
+        memcpy(buf_in, &in[idx * AES_BLOCK_SIZE], AES_BLOCK_SIZE);
+        aes_encrypt(buf_in, buf_out, mpass, mbit);
+        memcpy(&data[idx * AES_BLOCK_SIZE], buf_out, AES_BLOCK_SIZE);
+        memset(buf_out,0,AES_BLOCK_SIZE);
+    }
+    if (blcok) {
+        memcpy(buf_in, blcok, AES_BLOCK_SIZE);
+        aes_encrypt(blcok, buf_out, mpass, mbit);
+        memcpy(&data[idx * AES_BLOCK_SIZE], buf_out, AES_BLOCK_SIZE);
+    }
+}
+
+void QAesWrap::ecbdecrypt(const BYTE *in, size_t size, QByteArray & out)
+{
+    BYTE buf_in[AES_BLOCK_SIZE] = {0}, buf_out[AES_BLOCK_SIZE] = {0};
+    int blocks, idx;
+    char * data = out.data();
+    blocks = size / AES_BLOCK_SIZE;
+    memset(buf_out,0,AES_BLOCK_SIZE);
+    for (idx = 0; idx < blocks; idx++) {
+        memcpy(buf_in, &in[idx * AES_BLOCK_SIZE], AES_BLOCK_SIZE);
+        aes_decrypt(buf_in, buf_out, mpass, mbit);
+        memcpy(&data[idx * AES_BLOCK_SIZE], buf_out, AES_BLOCK_SIZE);
+        memset(buf_out,0,AES_BLOCK_SIZE);
+    }
+}
+
+bool QAesWrap::decrypt(const QByteArray & in, QByteArray & out, AesMode mode,PaddingMode pad)
+{
+    out.clear();
+    int size = in.size();
+    out.resize(size);
+    if (mode == AES_CTR) {
+        aes_encrypt_ctr((unsigned char *)in.data(),size,(unsigned char *)out.data(),mpass,mbit,msalt);
+        return true;
+    }
+    int last = size % AES_BLOCK_SIZE;
+    int blocks = size / AES_BLOCK_SIZE;
+    int useSize = blocks * AES_BLOCK_SIZE;
+    if (blocks == 0 ) {
+        out = in;
+        return false;
+    }
+    QByteArray tdata;
+    if (last > 0) {
+        if(pad == ANSIX923 || pad == PKCS7) {
+            out.clear();
+            return false;
+        }
+        tdata = in.right(last);
+    }
+
+
+    switch (mode) {
+    case AES_ECB:
+        ecbdecrypt((unsigned char *)in.data(),useSize,out);
+        break;
+    case AES_CBC:
+        aes_decrypt_cbc((unsigned char *)in.data(),useSize,(unsigned char *)out.data(),mpass,mbit,msalt);
+        break;
+    default:
+        return false;
+    }
+    if (last > 0) {
+        for (int i = useSize, j = 0;i < size; ++i,++j) {
+            out[i] = tdata.at(j);
+        }
+    } else {
+        char ch = out.at(size-1);
+        if (ch < 16) { //验证是否需要移除。
+            int removed = 0;
+            int tsize = size - ch;
+            bool isPad = true;
+            if (pad == ANSIX923) {
+                int mysize = size - 1;
+                char tch;
+                for (int i = tsize; i < mysize; ++i) {
+                    tch = out.at(i);
+                    if (tch != char(0x00)) {
+                        isPad = false;
+                    }
+                }
+                if (isPad) removed = ch;
+            }else {
+                char tch;
+                for (int i = tsize; i < size; ++i) {
+                    tch = out.at(i);
+                    if (tch != ch) {
+                        isPad = false;
+                    }
+                }
+                if (isPad) removed = ch;
+            }
+            if (removed > 0) {
+                out.remove(size - removed,removed);
+            }
+        }
+    }
+
+    return true;
+}
@@ -0,0 +1,55 @@
+#ifndef QAESWRAP_H
+#define QAESWRAP_H
+
+extern "C" {
+#include "aes.h"
+}
+#include <QByteArray>
+
+
+class QAesWrap
+{
+public:
+    enum AesBit {
+        AES_128 = 128,
+        AES_192 = 192,
+        AES_256 = 256
+    };
+    enum AesMode {
+        AES_ECB,
+        AES_CBC,
+        AES_CTR
+    };
+    enum PaddingMode {
+        None,
+        ANSIX923,
+        PKCS7
+    };
+public:
+    QAesWrap(const QByteArray & passwprd,const QByteArray & salt,AesBit bit);
+
+    bool encrypt(const QByteArray & in, QByteArray & out, AesMode mode,PaddingMode pad = PKCS7);
+    bool decrypt(const QByteArray & in, QByteArray & out, AesMode mode,PaddingMode pad = PKCS7);
+
+    inline QByteArray encrypt(const QByteArray & data,AesMode mode,PaddingMode pad = PKCS7){
+          QByteArray out;
+          encrypt(data,out,mode,pad);
+          return out;
+    }
+
+    inline QByteArray decrypt(const QByteArray & data,AesMode mode,PaddingMode pad = PKCS7){
+          QByteArray out;
+          decrypt(data,out,mode,pad);
+          return out;
+    }
+private:
+    void ecbencrypt(const BYTE *in, size_t size, BYTE *blcok, QByteArray & out);
+    void ecbdecrypt(const BYTE *in, size_t size, QByteArray & out);
+    void initPadding(const QByteArray & in,QByteArray & out,AesMode mode,PaddingMode pad);
+private:
+    AesBit mbit;
+    WORD mpass[60];
+    BYTE msalt[AES_BLOCK_SIZE];
+};
+
+#endif // QAESWRAP_H