From c2f25b8c2dff646bde4542704d4fa704e69cc517 Mon Sep 17 00:00:00 2001
From: afonso <afonso@francof.net>
Date: Tue, 5 Mar 2024 23:39:41 +0000
Subject: [PATCH] [TP03] Done

---
 TPs/TP03/compile_commands.json |  17 ++++
 TPs/TP03/pbenc_aes_ctr_hmac    | Bin 0 -> 36032 bytes
 TPs/TP03/pbenc_aes_ctr_hmac.c  | 142 +++++++++++++++++++++++----------
 TPs/TP03/plaintext             |  42 ++++++++++
 TPs/TP03/tokefile.toml         |  15 ++++
 5 files changed, 175 insertions(+), 41 deletions(-)
 create mode 100644 TPs/TP03/compile_commands.json
 create mode 100755 TPs/TP03/pbenc_aes_ctr_hmac
 create mode 100644 TPs/TP03/plaintext
 create mode 100644 TPs/TP03/tokefile.toml

diff --git a/TPs/TP03/compile_commands.json b/TPs/TP03/compile_commands.json
new file mode 100644
index 0000000..469619e
--- /dev/null
+++ b/TPs/TP03/compile_commands.json
@@ -0,0 +1,17 @@
+[
+  {
+    "arguments": [
+      "/usr/bin/gcc",
+      "-c",
+      "-Wall",
+      "-O2",
+      "-I/opt/homebrew/opt/openssl@3.2/include",
+      "-o",
+      "pbenc_aes_ctr_hmac",
+      "pbenc_aes_ctr_hmac.c"
+    ],
+    "directory": "/Users/afonso/projects/University/4ano/2sem/ES/2324-G05/TPs/TP03",
+    "file": "/Users/afonso/projects/University/4ano/2sem/ES/2324-G05/TPs/TP03/pbenc_aes_ctr_hmac.c",
+    "output": "/Users/afonso/projects/University/4ano/2sem/ES/2324-G05/TPs/TP03/pbenc_aes_ctr_hmac"
+  }
+]
diff --git a/TPs/TP03/pbenc_aes_ctr_hmac b/TPs/TP03/pbenc_aes_ctr_hmac
new file mode 100755
index 0000000000000000000000000000000000000000..cb2029755e77fe9a509b06178ed8e89613535202
GIT binary patch
literal 36032
zcmeHPeRLGpb$_!XgpffJMtp-c0?dbvB`m%K5@z*90Ar&pG7!i1Xm>TzE|PYa-4!2(
zm<1W*0LO<VIzU{f0b?i99?QY0+(Meh;>2}pLL1Aam{Ys01Wqdg%?T-{5(cZk`(}1E
z8exaD=^s7k%{f>1-uLdi@4nxC^Ja9;&i&=h|M+4!V-mw<1C0WmOk!*|Qy?)m9<&^!
zs^vvrD|@ocv6@;3UVQMtra>C{c@c)HT2Z#XVqiBPZy(sk41EZii4YRMR5h$^2^$KS
z)nE66`eM$G&}~SkbtSGO7D>nuR5cWCaD@_0R)1}abbp=3B1t#<OELTbLw>2MI}{Fj
zeKiSv;Ch=1bbm?4f=D-CX5ZAVstvx)USE~!^;P@1KG5HhrMf?l;e>Rn52K4S%EJ+m
zs+Ja26saYvA77(q!>;>b;QX?18I42)Lk37yYy74(e5t=m12^(Z<KtH{gqd*#oZ`~=
z*{T(fKU!A0BECl=mbjqP)ouVz?&DKX`#i=X6dz@|5);lf^vXuw#IYHN?%zU39}B$5
z*a-l359D%?`5Fp^Xtuf0A}f0si-&6NN`s<+D9qf3P%yX7>&mU#T2}>~u8AOuBlnf@
zu9fTa3*PQ@)IL9ZS#ciP6p+3qc(J8%nPVq?AwPgVzCLiefMJCEG%w_8;t$PBcv7Ff
zAIO8ua{YmDuE$@mxq{keuJ{9*FBGb?&*dQ^Oei^Xa}cZ7rN>XW{15!NgIfb(f4?hu
z(f#F{{7FmlaeGVs7-7~mTSH;3KBqVy1C5&wqIGv7Z^UOAI^~hB$slT1_Az$UydkJl
zTmk`sfIvVXAP^7;2m}NI0s(=5KtLcM5D*9m1Ox&C0fB%(Kp-Fx5C{ka1Ofs9fq+0j
zARrJB2nYlO0s;YnfIvVXAQ1R}ioh-ZPg-u)NG(08t>wl#x#jxmq?X&;hP2!+k)nO_
zsE+@XS@ec1$3B;BvFoxF`%GrB6vjSC`G&nWMY8ucH;(VwFSDk4&`sE;+)5w0V>&x^
zSx$-JcXuCTIPAU5w)FgE>RSTZxc%TlDdiV^HWtOt@lIry=R`Z@(Xm4q-#Lu6k$>L)
zF12UI4xqg<m9<?*``1anhqd*@ZC=TZ;%AN@+CWdCFM_^x;P&CH4P$yw$#RDWx)aoe
zF-Xw~wq;JV`MBIcV`|WTw6UY`SmTF<%23wY+_<KvSsv3v{ZE_w8g~_DH#QdX{>E`V
zEGgpHj{aNl`L8y%(eo<SB^`d*lgxT)EfRbevxs8@Y)G#K?}aVN&qBVD%H|!#9Fi^K
zSOq;RiEVTaXBE_zjd3=#U&7k)JJqHvJG<6Cf>m(LpSJhPz?`q6drou#Y_sKv<C~0S
z4(fj@C(%Czc8|dqej7R1?gQPf2!6<}1a=fBem6PTwlJ6b>_U9V?cn|sdjC%JBc8$i
zNqWpXjk#tTbB*LYGnNjnVxKfOexqj?_RcKqu~}H}QYqz1(fzEVQyvq0r$p+wy{!!U
zv=sZb1pBra`?sj&mjAuxc3C~o@kf4;Uq`CppKvBU8G5CS%^QSO`NMo&&LLkCcasq}
z{18SrZLH~hU*Fh)`5GO&f_BQ+Y2<5>EOopGo%Y>p$ZMxOE`}IByd+PI{R->&A=y&i
zQ(47vS?;JzwfA<R&xY84Wc2OCp4e_<y-SC(Yqd$NVqzrXSXxqWrC{!#OsK@3qrGww
zV=f_IXEDYuvo_k3u3aqZMnBEjC6A4LDo={NWcbWZV-?O__LhriJ7Tn*Mw@F&<WwhY
z$tUf-)9CY{EsLdGkuqpKlYT*Qq~7YQa2@RT9W;D6Q&`20G}h~Ku_&!&i;dPZE+%6=
zTMV0>u<@kXd$V@3YfhSTdgPQ%V)M-N9;bQH&gX^ApQo{TE{vhI#AADzY{(B{D;miv
z#vtbJ>ig|P3ht3i>=`?3B;Z{D-kF}&gEQqob|8<RDbJy;uS8$NBFJ<fxsXrn3qIbs
z#||)-r|%2w*IlOmG4Mar@ITe;-##~r--Oe?=YGiUKErOj*)C~8bc)3;)38f7+g(_I
zc*n%Bd3n4Pr)n9OY>bo4<8IB3rdsT7Nje_?1)jj;Z|8CUiw*yD@8pml<bO6e%{R%k
z?gTFT=W|?+0hhu%^&eRneb_X=c^p2w$fWa={NKP{rJT~9r#(CoZCMd^?U;=7Zic<(
zOpd)JMM^z0OS<PwYHm@>*#$){E2ZIQYNZipQlw$A71BL1;@#Nyam*8Q_2lch>p!ao
z<~GCV#~Ls;k+a13h~7_Yq<j80;f5Ihjq}Xdr{MqiMc-JQ#Rr&YNtEz^23UNI_P!EZ
z$BlK#IHQK*S(?&vTed~%*@<T<Jv&eIKRYM)*f0)=M7uGLo_$^Ns2Jsl^3`l(``&+j
zzvKP-H-f_?b}DNmThuuf&rPi9XXvN%qYLK(-`gh_A(x|L@1i|2gtZa2WXth|{Uz+9
zvor?h)6OCKS^8(tDc4=#WdA+zUx8o5xPN!k{eeD=lQBLiV~=ARI~q(*i8x*%KbZS8
z=Dx`7M!{}$Y$|ZNdb{uNDDatg!t|*{(Yfe54S$4bGyL3lCp$co$c~;#nRn`cSNG#I
za&riN=swv2Zr=BaT+Um}{W-DEXx_cBYi@j+o-rrP&zLTJve60rZ*N<U+<gttmt`%;
zWt5&P8pibfTtZ%x(1-V<ZOJXS8>Q%HUy|4Tu&2BR!Rg(F^12i93!oP%ue<j<TI%}q
z%5%uyg+|5Jz{Z|*=NvlF$8!kmY0bsZDenPr%HeGAfjJyKIETRDLGnX6#J$#^!_1fr
ze6|@mRPKa5-YY0K*#`Ct;b+X9>@Mh-$M2tqU`O$e0l%9ZWy9{PbF>V3C_|1)TaXu?
zqg#w}WW)PGDsp3s4!qa0db&y^dS7(Rq*(Tpv~~`aTDu>$_jXTZy<LsPtz9x}?M}yg
zZSVGj-RZ3NqRhCxgfaK=c+^3AW+(Q{?QJU&gT7BbrWhLO9YueK9u$M&b13}rxukFX
z*gBW|m2;J~z&~GaJIz&+j6FF9Sd7J<9EY<enV&TS=bhY>mBKcTz`F*WG2cnH_wxOA
zt^oJ=sMrPgX~%Pzw|%O&{R7$*v~fTE@0|zO^@3=TaUY$8%{ysqW6@An(S&C{KMNy;
zQEKlh(XsnG$enwNT958o(%StX{$G$M_jEPdTaPss;(hzc9>Ti0aYE0lxVI=bg!Ruc
zhR^G?_uB9b{S3Z3L6Q=2d>eh0$*k>|VgELC?guzp{k(-fyA*L82Ip(5T*Cdl3jLi8
zO1>EbvZ0vUljwaUGd85J?=Z=HO-GhQ?>FsnhL~Q&`wgBuI*#Q9Q7^{ReQ~Efn~i%+
zKUdZxPwTK}*Wz4B<~baM@7Y3rf9*6d#`C`E3Z5$z(}pkl4o5!ko6lqVWJwg?j5UqI
zoR`qQ1Tx;qPh=o2X3ILyW#l;_Q-0#@cy~(3_nPD}CV7HMzRx62G0D?S@&hJ0$0X;O
z<OL>qu}OZ!Bo~|HWhQy0Nq*cUuQkclCV7KN_L=0MN#10VpEb$PndDt2`2~}_*CfAW
zk`J2XLnirUll-S9`Bjtr1Ctyx$#3d%(8bDvL4Q!8PxJ68sp9no8p2Aow@yoCPHU&X
zA>7}qk8=k#XP5@M{XY6!HkB=Ztf<6rn&_mq)H^ly53BOlXrZuSQ=|E`pze3Y+W5fD
zK`)<a#abooH$v2d2x(d^#eimX2K*ry`h8f-faU16h_{MtVOSmX*T?-h9IG9Rm9n+v
zYKb@C(Sj>{-mt1|QL3GQqAEvO4Sd$DS*2)%)?(%U5TfcIgXQ6?SucRQD|3B{CjwQ@
zuy&V2XoiO0KY-^l4iw-Rn6dtV^$3=Eea^Z+Y?akC<St^Sj4O4TuO{qKydlNs4=Z!?
zteNCSmR!d3!~0AbB0Z#3`MIllXV~pYWjUJ9J$T22oORfSo8y}|js`VbH%^rn^lqZv
zP^)d#w?n`g3I#ktX9)X0r%H>vk4MFwn4)?j<gC$XJ1E-_%XSR-mhw%yd(?n4?0Gts
zQH11Xg>RFy&ReC_`>V7Z<%y7{%s|%+1-IS|^v}ovHn@R;N`C;06=QAj$@{zXSVLj#
z<W#2Lav_C-!mv^4&cXKA_oAu6?XM5iX<@BO2{pLgS}0WAP*=B=;hDuIfru+0x)hKN
zB;#{<`mVhcG7)`~P8Z4M3wHSaI0=4e6q73OG4lth%+`*NowM{$>XUT)j0nwxFK8p&
z5}d}8t{Y_FUkzQS@3yI(zKbS~=NjjD$L1XGe4Jwn&gna3veQ4u&xp`>(WIvv9M3PV
zk2Ltb1|MZ`{9k}8BQo0Hcn9S={X<6W;|xCD;1di!(cpw3*-bV${tw|g*3Y?O@N9!m
zG5A!2Pct~)3vgvb=sRTMGYme{;Ij<=fWeU-x+46q_#+Sy2nYlO0s;YnfIvVXAP^7;
z2m}NI0s(=5KtLcM5D*9m1Ox&C0fB%(Kp-Fx5C{ka1Ofs9fq+0jARrJB2nYlO0s;Yn
zfIvVXAP^7;2m}NI0s(=5KtLcM5D*9m1Ox&C0fB%(Kp-Fx5C{ka1OftqyFfsJO*z@2
z2mtEZ5ldV~fdH=S-`eY4T(+YcfIVT#$Dz&{v*9CoTPer~Is`fkx(=EkG20`cO3-s4
z6d1Fe1YH235Sk4|^lS@28$fS@&e@oJ6_h43IS;fR<OA&j9RwW(y$Nau{XOUt(62!#
zP%5V;F?j-LHYgvo9JC(f0X+-a3p$F`si+vD@&Y1iC>%uD3B9F8L!}Wa+yRy9kE|$P
zUgl6sD%PvjK}{Rf=+ib2Xrtk-I={PC4SAo9oAVkb@$w#qxw)>1xk;}>qPI|)5t=zM
z2{lw}sJ7AH&r5*xt5o--U(;)p7<#FS;O3}4XT1@ZQwyni^B1V@u(8;X#|fROt5I7;
zEiZBuJ*J|N4A5zC0~BA?m-IA*tMd~WmOomuX1-cp{AlU2JeA6XFx64?c&X~z8rDKg
zRaLjAHWaQ^tDM2jULQ4t!cM@2W|eAW3~Z@sa0W3g8KF8zFkpzNi^J4vcbz|krBq{C
z@LWwrbHD<~Ww;sw73u(^ax`FJtq#7css0GY)H~~tB&NoVQAo$_aRLSi@D<b$8wO+P
z?s`l`Jg`;gp#Ww<1Ino|HSEUZ&M*NOc83g6zcD10Rggr5HDuPk4u6_9;Lpi=v}x|(
z)<Bru>kT<wby}I*<7Z=K_ER7Fe_D<HL~EXIxKL)ze#VBV^&V7+(cBGTP4!@XT96H+
zG*SvjRIy2jsj%J&TvvCmJC}AreocN}s^jrc80jeVNf+JcR8J!v0@V{Co$6wco{8#H
zq*Hwh(oZhXbt+0ldf`G{FN*7Pb$z9wHyizQuE3n8<(CV8&H6@*{(?n+*`mK~(cib|
zpIG$YSoA)No`zt|@l3YpsGm2WzrdnDX3?Lq=o>8h^A`OF7X6e(|7%^>%dsH#^A;WT
zBq_c`|K}DRbwdaAXIS)c7Cp<NPq*l~79Gd+0RKxYdZ|TUWzj1v`coENv*@)JJ!H|h
zS@cGWzTcuZS@iE)bgFYhHEyWB4b`@xx;9kPhU(c+EgPz1Lw6I^uc6vCRJVp|)=<3~
zy0@rK4LvKVJ`L5Tp?Wk5C>t~dM0IASfvCO=9-EBn%FsPW^<=1)4AqgLXYxa!98fN3
z4(MS}9_Wu9AJxsF7^z+k)ykpsKmq-+;#F{T4?euq_~E6Z>=Hi`)hg4Oh=)$%B!p~O
z@B>afzQyDF|MKyD^IwLy<AnP@ZUG5IS0>u%l-S2?cz?ueD%xs6>!}kLj*5MXV&lhz
z-tv`yN8s(4UsAw@y&b<5R8PIr&B~`O_KjGx?fB*W-ub)7yPC7AmkrzW`jxAv_DuZe
zwAZgTx9)i3$Lsy?U9N6V`lzF$*0y^6kiPA0+n?S2Pk*&<`L}2Pa9PUK@BK~W`e#ee
zJ(B<R;$I&uuG~HH-0{-43ifXQI4^6@FMpHPn!ooa2cPMlzWMF@9TWfZ^M_nF=6!Ve
zcOU(>VMk!i^pCHe{oS<Xn>XdxezZzDbl{EGew6msx}E7m-JOe`NuD+TsPg;f|KIjM
nx#}-k_r+fN#5VJ!Jw>TWuMFnBG)H=4hs)M>ZAt#mO4)w{%4gH*

literal 0
HcmV?d00001

diff --git a/TPs/TP03/pbenc_aes_ctr_hmac.c b/TPs/TP03/pbenc_aes_ctr_hmac.c
index dc03ee6..79e823e 100644
--- a/TPs/TP03/pbenc_aes_ctr_hmac.c
+++ b/TPs/TP03/pbenc_aes_ctr_hmac.c
@@ -19,7 +19,7 @@ int aes_ctr(const char *input_file, const char *output_file, const unsigned char
 
 	int input_size = BUF_SIZE;
 	int output_size = input_size + (cipher_block_size - 1);
-	int u_len = 0, f_len = 0;
+	int f_len = 0;
 
 	unsigned char input_buf[input_size], output_buf[output_size];
 
@@ -45,30 +45,44 @@ int aes_ctr(const char *input_file, const char *output_file, const unsigned char
 		return 1;
 	}
 
-	// EVP_MAC *mac = EVP_MAC_fetch(NULL, "HMAC", NULL);
-	// if (!mac) {
-	// 	fprintf(stderr, "Error creating HMAC\n");
-	// 	fclose(finput);
-	// 	fclose(foutput);
-	// 	return 1;
-	// }
-	//
-	// EVP_MAC_CTX *hctx = NULL;
-	// if (!(hctx = EVP_MAC_CTX_new(mac))) {
-	// 	fprintf(stderr, "Error creating HMAC context\n");
-	// 	fclose(finput);
-	// 	fclose(foutput);
-	// 	return 1;
-	// }
-	// const OSSL_PARAM params[] = {OSSL_PARAM_UTF8_STRING(OSSL_MAC, "SHA256", 0), OSSL_PARAM_END};
+	EVP_MAC *mac = EVP_MAC_fetch(NULL, "HMAC", NULL);
+	if (!mac) {
+		fprintf(stderr, "Error creating HMAC\n");
+		fclose(finput);
+		fclose(foutput);
+		return 1;
+	}
 
-	// Set the digest type to SHA256
-	// if (EVP_MAC_CTX_set_params(hctx, EVP_sha256()) != 1) {
-	// 	fprintf(stderr, "Error setting HMAC digest type\n");
-	// 	fclose(finput);
-	// 	fclose(foutput);
-	// 	return 1;
-	// }
+	EVP_MAC_CTX *hctx = NULL;
+	if (!(hctx = EVP_MAC_CTX_new(mac))) {
+		fprintf(stderr, "Error creating HMAC context\n");
+		fclose(finput);
+		fclose(foutput);
+		return 1;
+	}
+
+	// Set parameters for HMAC algorithm
+	OSSL_PARAM params[2], *p = params;
+	const EVP_MD *md = EVP_sha256();
+	*p++ = OSSL_PARAM_construct_utf8_string("digest", (char *)EVP_MD_name(md), 0);
+	*p = OSSL_PARAM_construct_end();
+
+	unsigned char *hmac = malloc(32);
+	unsigned char *mac_input;
+	if (enc) {
+		mac_input = output_buf;
+	} else {
+		mac_input = input_buf;
+	}
+
+	fseek(finput, 0, SEEK_END);
+	long file_size = ftell(finput);
+	rewind(finput);
+	if (!enc) {
+		// Remove the size of the SALT, IV and HMAC from the file size
+		fseek(finput, 32, SEEK_SET);
+		file_size -= 64;
+	}
 
 	// If enc is 1, then we are encrypting, else we are decrypting
 	// If we are encrypting, we need to generate an IV
@@ -86,6 +100,7 @@ int aes_ctr(const char *input_file, const char *output_file, const unsigned char
 	} else {
 		// Seek forward by 16 bytes to ignore the salt
 		if (fseek(finput, 16, SEEK_SET) != 0) {
+
 			fprintf(stderr, "Error seeking to IV position in input file\n");
 			return 1;
 		}
@@ -102,7 +117,7 @@ int aes_ctr(const char *input_file, const char *output_file, const unsigned char
 		return 1;
 	}
 
-	if (EVP_MAC_init(hctx, key, 32, NULL) != 1) {
+	if (EVP_MAC_init(hctx, key, 32, params) != 1) {
 		fprintf(stderr, "ERROR: EVP_MAC_init failed. OpenSSL error: %s\n",
 				ERR_error_string(ERR_get_error(), NULL));
 		fclose(finput);
@@ -110,10 +125,15 @@ int aes_ctr(const char *input_file, const char *output_file, const unsigned char
 		return 1;
 	}
 
-	int read_size, len;
-	unsigned char *hmac = (unsigned char *)malloc(32);
-	while ((read_size = fread(input_buf, 1, BUF_SIZE, finput)) > 0) {
-		printf("Read %d bytes, passing through CipherUpdate...\n", read_size);
+	int len;
+	while (file_size > 0) {
+		if (file_size < BUF_SIZE) {
+			BUF_SIZE = file_size;
+		}
+		size_t read_size = fread(input_buf, 1, BUF_SIZE, finput);
+		if (read_size == 0) {
+			break;
+		}
 		if (EVP_CipherUpdate(ctx, output_buf, &len, input_buf, read_size) != 1) {
 			fprintf(stderr, "ERROR: EVP_CipherUpdate failed. OpenSSL error: %s\n",
 					ERR_error_string(ERR_get_error(), NULL));
@@ -121,17 +141,18 @@ int aes_ctr(const char *input_file, const char *output_file, const unsigned char
 			fclose(foutput);
 			return 1;
 		}
-		printf("\tGot back %d bytes from CipherUpdate...\n", len);
-		printf("Writing %d bytes to %s...\n", len, output_file);
+		if (EVP_MAC_update(hctx, mac_input, read_size) != 1) {
+			fprintf(stderr, "ERROR: EVP_MAC_update failed. OpenSSL error: %s\n",
+					ERR_error_string(ERR_get_error(), NULL));
+			fclose(finput);
+			fclose(foutput);
+			return 1;
+		}
 		if (fwrite(output_buf, 1, len, foutput) != len) {
 			fprintf(stderr, "Error writing to output file\n");
 			return 1;
 		}
-		printf("\tWrote %d bytes\n", len);
-		u_len += len;
-	}
-	if (read_size == -1) {
-		fprintf(stderr, "ERROR: Reading from the file %s failed.\n", input_file);
+		file_size -= read_size;
 	}
 
 	if (EVP_CipherFinal_ex(ctx, output_buf, &f_len) != 1) {
@@ -141,10 +162,22 @@ int aes_ctr(const char *input_file, const char *output_file, const unsigned char
 		fclose(foutput);
 		return 1;
 	}
-	printf("u_len: %d, f_len: %d\n", u_len, f_len);
+	size_t m_len = 0;
+	if (EVP_MAC_final(hctx, hmac, &m_len, 32) != 1) {
+		fprintf(stderr, "ERROR: EVP_MAC_final failed. OpenSSL error: %s\n",
+				ERR_error_string(ERR_get_error(), NULL));
+		fclose(finput);
+		fclose(foutput);
+		return 1;
+	}
+	if (m_len != 32) {
+		fprintf(stderr, "ERROR: HMAC length is not 32\n");
+		fclose(finput);
+		fclose(foutput);
+		return 1;
+	}
 
 	if (f_len) {
-		printf("Writing final %d bytes to %s...\n", f_len, output_file);
 		if (fwrite(output_buf, 1, f_len, foutput) != f_len) {
 			fprintf(stderr, "Error writing to output file\n");
 			fclose(finput);
@@ -152,7 +185,32 @@ int aes_ctr(const char *input_file, const char *output_file, const unsigned char
 			return 1;
 		}
 	}
-	printf("\tWrote last %d bytes\n", f_len);
+	if (enc) {
+		if (fwrite(hmac, 1, m_len, foutput) != m_len) {
+			fprintf(stderr, "Error writing HMAC to file\n");
+			fclose(finput);
+			fclose(foutput);
+			return 1;
+		}
+	} else {
+		unsigned char *hmac2 = malloc(32);
+		if (fread(hmac2, 1, 32, finput) != 32) {
+			fprintf(stderr, "Error reading HMAC from file\n");
+			fclose(finput);
+			fclose(foutput);
+			return 1;
+		}
+		int cmp = memcmp(hmac, hmac2, 32);
+		if (cmp == 0) {
+			printf("HMACs match\n");
+		} else {
+			fprintf(stderr, "HMACs do not match\n");
+			fclose(finput);
+			fclose(foutput);
+			return 1;
+		}
+	}
+
 	fclose(finput);
 	fclose(foutput);
 
@@ -160,7 +218,7 @@ int aes_ctr(const char *input_file, const char *output_file, const unsigned char
 }
 
 int encrypt(char *input_file, const char *passphrase) {
-	unsigned char key[KEY_SIZE];
+	unsigned char key[KEY_SIZE * 2];
 	unsigned char salt[SALT_SIZE];
 	// Derive key from passphrase using PBKDF2
 	char *output_file = malloc(strlen(input_file) + 5);
@@ -184,8 +242,9 @@ int encrypt(char *input_file, const char *passphrase) {
 	}
 	fclose(foutput);
 
+	int pass_len = strlen(passphrase);
 	// Derive key from passphrase using PBKDF2
-	if (PKCS5_PBKDF2_HMAC(passphrase, strlen(passphrase), salt, SALT_SIZE, ITERATIONS, EVP_sha256(),
+	if (PKCS5_PBKDF2_HMAC(passphrase, pass_len, salt, SALT_SIZE, ITERATIONS, EVP_sha256(),
 						  KEY_SIZE * 2, key) != 1) {
 		fprintf(stderr, "Error deriving key from passphrase\n");
 		return 1;
@@ -268,6 +327,7 @@ int main(int argc, char *argv[]) {
 		return 1;
 	}
 	enableEcho();
+	putchar('\n');
 	passphrase[strcspn(passphrase, "\n")] = '\0'; // Remove trailing newline
 	int suc = 0;
 	if (strcmp(mode, "enc") == 0) {
diff --git a/TPs/TP03/plaintext b/TPs/TP03/plaintext
new file mode 100644
index 0000000..a9c64a9
--- /dev/null
+++ b/TPs/TP03/plaintext
@@ -0,0 +1,42 @@
+This was a triumph.
+I'm making a note here: HUGE SUCCESS.
+It's hard to overstate my satisfaction.
+Aperture Science
+We do what we must because we can.
+For the good of all of us
+Except the ones who are dead.
+But there's no sense crying over every mistake
+You just keep on trying till you run out of cake
+And the science gets done and you make a neat gun
+For the people who are still alive.
+I'm not even angry.
+I'm being so sincere right now.
+Even though you broke my heart and killed me.
+And tore me to pieces.
+And threw every piece into a fire.
+As they burned it hurt because
+I was so happy for you!
+Now these points of data make a beautiful line
+And we're out of beta, we're releasing on time.
+So I'm GLaD. I got burned.
+Think of all the things we learned
+For the people who are still alive.
+Go ahead and leave me.
+I think I prefer to stay inside.
+Maybe you'll find someone else to help you.
+Maybe Black Mesa
+THAT WAS A JOKE. Haha. FAT CHANCE.
+Anyway, this cake is great.
+It's so delicious and moist.
+Look at me still talking when there's science to do.
+When I look out there, it makes me GLaD I'm not you.
+I've experiments to run, there is research to be done
+On the people who are still alive
+And believe me I am still alive.
+I'm doing science and I'm still alive.
+I feel FANTASTIC and I'm still alive.
+While you're dying I'll be still alive.
+And when you're dead I will be still alive.
+Still alive
+Still alive
+Still alive
diff --git a/TPs/TP03/tokefile.toml b/TPs/TP03/tokefile.toml
new file mode 100644
index 0000000..dfcb7ed
--- /dev/null
+++ b/TPs/TP03/tokefile.toml
@@ -0,0 +1,15 @@
+[vars]
+CC="!which gcc"
+CFLAGS="-Wall -O2 -I/opt/homebrew/opt/openssl@3.2/include -L/opt/homebrew/opt/openssl@3.2/lib"
+LDFLAGS="-lssl -lcrypto"
+
+[targets.build]
+wildcards=["!ls -1 *.c","!ls -1 *.c | sed -e 's/\\.c$//'"]
+cmd="${CC} ${CFLAGS} ${LDFLAGS} @@ -o @@"
+
+[targets.debug]
+vars.CC="clang"
+vars.CFLAGS="-Wall -O0 -g -fsanitize=address -g -I/opt/homebrew/opt/openssl@3.2/include -L/opt/homebrew/opt/openssl@3.2/lib"
+wildcards=["!ls -1 *.c","!ls -1 *.c | sed -e 's/\\.c$//'"]
+cmd="${CC} ${CFLAGS} ${LDFLAGS} @@ -o @@"
+