tiny-AES-c/aes.h

#ifndef _AES_H_
#define _AES_H_

#include <stdint.h>
#include <stddef.h>

// #define the macros below to 1/0 to enable/disable the mode of operation.
//
// CBC enables AES encryption in CBC-mode of operation.
// CTR enables encryption in counter-mode.
// ECB enables the basic ECB 16-byte block algorithm. All can be enabled simultaneously.

// The #ifndef-guard allows it to be configured before #include'ing or at compile time.
#ifndef CBC
  #define CBC 1
#endif

#ifndef ECB
  #define ECB 1
#endif

#ifndef CTR
  #define CTR 1
#endif


#define AES128 1
//#define AES192 1
//#define AES256 1

#define AES_BLOCKLEN 16 // Block length in bytes - AES is 128b block only

#if defined(AES256) && (AES256 == 1)
    #define AES_KEYLEN 32
    #define AES_keyExpSize 240
#elif defined(AES192) && (AES192 == 1)
    #define AES_KEYLEN 24
    #define AES_keyExpSize 208
#else
    #define AES_KEYLEN 16   // Key length in bytes
    #define AES_keyExpSize 176
#endif

struct AES_ctx
{
  uint8_t RoundKey[AES_keyExpSize];
#if (defined(CBC) && (CBC == 1)) || (defined(CTR) && (CTR == 1))
  uint8_t Iv[AES_BLOCKLEN];
#endif
};

void AES_init_ctx(struct AES_ctx* ctx, const uint8_t* key);
#if (defined(CBC) && (CBC == 1)) || (defined(CTR) && (CTR == 1))
void AES_init_ctx_iv(struct AES_ctx* ctx, const uint8_t* key, const uint8_t* iv);
void AES_ctx_set_iv(struct AES_ctx* ctx, const uint8_t* iv);
#endif

#if defined(ECB) && (ECB == 1)
// buffer size is exactly AES_BLOCKLEN bytes; 
// you need only AES_init_ctx as IV is not used in ECB 
// NB: ECB is considered insecure for most uses
void AES_ECB_encrypt(const struct AES_ctx* ctx, uint8_t* buf);
void AES_ECB_decrypt(const struct AES_ctx* ctx, uint8_t* buf);

#endif // #if defined(ECB) && (ECB == !)


#if defined(CBC) && (CBC == 1)
// buffer size MUST be mutile of AES_BLOCKLEN;
// Suggest https://en.wikipedia.org/wiki/Padding_(cryptography)#PKCS7 for padding scheme
// NOTES: you need to set IV in ctx via AES_init_ctx_iv() or AES_ctx_set_iv()
//        no IV should ever be reused with the same key 
void AES_CBC_encrypt_buffer(struct AES_ctx* ctx, uint8_t* buf, size_t length);
void AES_CBC_decrypt_buffer(struct AES_ctx* ctx, uint8_t* buf, size_t length);

#endif // #if defined(CBC) && (CBC == 1)


#if defined(CTR) && (CTR == 1)

// Same function for encrypting as for decrypting. 
// IV is incremented for every block, and used after encryption as XOR-compliment for output
// Suggesting https://en.wikipedia.org/wiki/Padding_(cryptography)#PKCS7 for padding scheme
// NOTES: you need to set IV in ctx with AES_init_ctx_iv() or AES_ctx_set_iv()
//        no IV should ever be reused with the same key 
void AES_CTR_xcrypt_buffer(struct AES_ctx* ctx, uint8_t* buf, size_t length);

#endif // #if defined(CTR) && (CTR == 1)


#endif // _AES_H_
Create aes.h 2014-05-29 04:20:28 +04:00			`#ifndef _AES_H_`
			`#define _AES_H_`

			`#include <stdint.h>`
include stddef.h 2021-02-16 14:07:45 +03:00			`#include <stddef.h>`
Create aes.h 2014-05-29 04:20:28 +04:00
Update aes.h 2014-12-15 23:18:25 +03:00			`// #define the macros below to 1/0 to enable/disable the mode of operation.`
			`//`
added AES192 and 256 2017-06-06 23:33:36 +03:00			`// CBC enables AES encryption in CBC-mode of operation.`
Update aes.h 2017-12-01 14:10:29 +03:00			`// CTR enables encryption in counter-mode.`
			`// ECB enables the basic ECB 16-byte block algorithm. All can be enabled simultaneously.`
Update aes.h 2014-12-15 23:18:25 +03:00
			`// The #ifndef-guard allows it to be configured before #include'ing or at compile time.`
			`#ifndef CBC`
Update aes.h 2014-12-15 23:22:32 +03:00			`#define CBC 1`
Update aes.h 2014-12-15 23:18:25 +03:00			`#endif`

			`#ifndef ECB`
			`#define ECB 1`
			`#endif`

adding CTR-mode 2017-12-01 03:00:47 +03:00			`#ifndef CTR`
			`#define CTR 1`
			`#endif`


Update aes.h 2017-07-08 04:13:21 +03:00			`#define AES128 1`
Update aes.h 2017-07-08 04:22:16 +03:00			`//#define AES192 1`
			`//#define AES256 1`
Update aes.h 2014-12-15 23:18:25 +03:00
Update aes.h 2020-03-30 22:43:47 +03:00			`#define AES_BLOCKLEN 16 // Block length in bytes - AES is 128b block only`
make thead safe via context pram; remove padding as non working; opitmise abit 2017-12-05 04:06:57 +03:00
			`#if defined(AES256) && (AES256 == 1)`
			`#define AES_KEYLEN 32`
			`#define AES_keyExpSize 240`
			`#elif defined(AES192) && (AES192 == 1)`
			`#define AES_KEYLEN 24`
			`#define AES_keyExpSize 208`
			`#else`
			`#define AES_KEYLEN 16 // Key length in bytes`
			`#define AES_keyExpSize 176`
			`#endif`

Update aes.h 2017-12-06 04:23:32 +03:00			`struct AES_ctx`
			`{`
make thead safe via context pram; remove padding as non working; opitmise abit 2017-12-05 04:06:57 +03:00			`uint8_t RoundKey[AES_keyExpSize];`
Update aes.h 2017-12-06 04:23:32 +03:00			`#if (defined(CBC) && (CBC == 1)) \|\| (defined(CTR) && (CTR == 1))`
make thead safe via context pram; remove padding as non working; opitmise abit 2017-12-05 04:06:57 +03:00			`uint8_t Iv[AES_BLOCKLEN];`
Update aes.h 2017-12-06 04:23:32 +03:00			`#endif`
make thead safe via context pram; remove padding as non working; opitmise abit 2017-12-05 04:06:57 +03:00			`};`

Update aes.h 2017-12-06 04:22:51 +03:00			`void AES_init_ctx(struct AES_ctx* ctx, const uint8_t* key);`
CTR-only mode still needs functions to update counter (iv) 2018-02-01 00:31:15 +03:00			`#if (defined(CBC) && (CBC == 1)) \|\| (defined(CTR) && (CTR == 1))`
Update aes.h 2017-12-06 04:22:51 +03:00			`void AES_init_ctx_iv(struct AES_ctx* ctx, const uint8_t* key, const uint8_t* iv);`
			`void AES_ctx_set_iv(struct AES_ctx* ctx, const uint8_t* iv);`
make thead safe via context pram; remove padding as non working; opitmise abit 2017-12-05 04:06:57 +03:00			`#endif`
Update aes.h 2014-12-15 23:18:25 +03:00
make thead safe via context pram; remove padding as non working; opitmise abit 2017-12-05 04:06:57 +03:00			`#if defined(ECB) && (ECB == 1)`
			`// buffer size is exactly AES_BLOCKLEN bytes;`
Update aes.h 2017-12-06 04:34:27 +03:00			`// you need only AES_init_ctx as IV is not used in ECB`
			`// NB: ECB is considered insecure for most uses`
Const-qualify all read-only pointers 2019-02-21 11:31:53 +03:00			`void AES_ECB_encrypt(const struct AES_ctx* ctx, uint8_t* buf);`
			`void AES_ECB_decrypt(const struct AES_ctx* ctx, uint8_t* buf);`
Create aes.h 2014-05-29 04:20:28 +04:00
Update aes.h 2017-07-08 04:13:21 +03:00			`#endif // #if defined(ECB) && (ECB == !)`
Update aes.h 2014-12-15 23:18:25 +03:00

Update aes.h 2017-07-08 04:13:21 +03:00			`#if defined(CBC) && (CBC == 1)`
make thead safe via context pram; remove padding as non working; opitmise abit 2017-12-05 04:06:57 +03:00			`// buffer size MUST be mutile of AES_BLOCKLEN;`
Update aes.h 2017-12-06 04:34:27 +03:00			`// Suggest https://en.wikipedia.org/wiki/Padding_(cryptography)#PKCS7 for padding scheme`
			`// NOTES: you need to set IV in ctx via AES_init_ctx_iv() or AES_ctx_set_iv()`
			`// no IV should ever be reused with the same key`
use size_t for buffer size and its indexes - this allows using CBC/CTR with buffers larger than 4GB on 64bit systems; Closes: #172 Signed-off-by: Ihor Dutchak <ihor.youw@gmail.com> 2020-09-26 19:10:19 +03:00			`void AES_CBC_encrypt_buffer(struct AES_ctx* ctx, uint8_t* buf, size_t length);`
			`void AES_CBC_decrypt_buffer(struct AES_ctx* ctx, uint8_t* buf, size_t length);`
Update aes.h 2014-12-15 23:18:25 +03:00
Update aes.h 2017-07-08 04:13:21 +03:00			`#endif // #if defined(CBC) && (CBC == 1)`
Update aes.h 2014-12-15 23:18:25 +03:00

adding CTR-mode 2017-12-01 03:00:47 +03:00			`#if defined(CTR) && (CTR == 1)`
Update aes.h 2017-12-01 14:05:18 +03:00
make thead safe via context pram; remove padding as non working; opitmise abit 2017-12-05 04:06:57 +03:00			`// Same function for encrypting as for decrypting.`
Update aes.h 2017-12-06 04:34:27 +03:00			`// IV is incremented for every block, and used after encryption as XOR-compliment for output`
			`// Suggesting https://en.wikipedia.org/wiki/Padding_(cryptography)#PKCS7 for padding scheme`
			`// NOTES: you need to set IV in ctx with AES_init_ctx_iv() or AES_ctx_set_iv()`
			`// no IV should ever be reused with the same key`
use size_t for buffer size and its indexes - this allows using CBC/CTR with buffers larger than 4GB on 64bit systems; Closes: #172 Signed-off-by: Ihor Dutchak <ihor.youw@gmail.com> 2020-09-26 19:10:19 +03:00			`void AES_CTR_xcrypt_buffer(struct AES_ctx* ctx, uint8_t* buf, size_t length);`
adding CTR-mode 2017-12-01 03:00:47 +03:00
			`#endif // #if defined(CTR) && (CTR == 1)`


Update aes.h 2020-03-30 22:43:47 +03:00			`#endif // _AES_H_`