summaryrefslogblamecommitdiffstats
path: root/aes.h
blob: 021f0c289850a651012204c861778d233a113a2e (plain) (tree) 
351447e





38b0f11



c1c5fb1

fbaaf61


38b0f11



c4e7eb0

38b0f11






0a8bafc





15caccd

67e844a


38b0f11

88f2588

























38b0f11

88f2588






351447e

15caccd

38b0f11


15caccd

88f2588






38b0f11

15caccd

38b0f11


0a8bafc

c09f0de

88f2588







0a8bafc




351447e

1
2
3
4
5

6
7
8

9

10
11

12
13
14

15

16
17
18
19
20
21

22
23
24
25
26

27

28
29

30

31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55

56

57
58
59
60
61
62

63

64

65
66

67

68
69
70
71
72
73

74

75

76
77

78

79

80
81
82
83
84
85
86

87
88
89
90

91





                   


                                                                           
                                                       

                                                                                        


                                                                                       
               





               




               
                

                  
 
























                                                                               
 





                                                                                 
 
                                        

 
                              





                                                                                                   
 
                                        

 
                              
 






                                                                                                  



                                        
                
#ifndef _AES_H_
#define _AES_H_

#include <stdint.h>


// #define the macros below to 1/0 to enable/disable the mode of operation.
//
// CBC enables AES encryption in CBC-mode of operation.
// CTR enables encryption in counter-mode.
// ECB enables the basic ECB 16-byte block algorithm. All can be enabled simultaneously.

// The #ifndef-guard allows it to be configured before #include'ing or at compile time.
#ifndef CBC
  #define CBC 1
#endif

#ifndef ECB
  #define ECB 1
#endif

#ifndef CTR
  #define CTR 1
#endif


#define AES128 1
//#define AES192 1
//#define AES256 1

#define AES_BLOCKLEN 16 //Block length in bytes AES is 128b block only

#if defined(AES256) && (AES256 == 1)
    #define AES_KEYLEN 32
    #define AES_keyExpSize 240
#elif defined(AES192) && (AES192 == 1)
    #define AES_KEYLEN 24
    #define AES_keyExpSize 208
#else
    #define AES_KEYLEN 16   // Key length in bytes
    #define AES_keyExpSize 176
#endif

struct AES_ctx {
  uint8_t RoundKey[AES_keyExpSize];
  #if (defined(CBC) && (CBC == 1)) || (defined(CTR) && (CTR == 1))
  uint8_t Iv[AES_BLOCKLEN];
  #endif
};

void AES_init_ctx(struct AES_ctx *ctx,const uint8_t* key);
#if defined(CBC) && (CBC == 1)
void AES_init_ctx_iv(struct AES_ctx *ctx,const uint8_t* key,const uint8_t* iv);
void AES_ctx_set_iv(struct AES_ctx *ctx,const uint8_t* iv);
#endif

#if defined(ECB) && (ECB == 1)
// buffer size is exactly AES_BLOCKLEN bytes; 
// you need only AES_init_ctx as Iv is not used in ECB 
// NB: ECB s considered insecure
void AES_ECB_encrypt(struct AES_ctx *ctx, const uint8_t* input, uint8_t *output);
void AES_ECB_decrypt(struct AES_ctx *ctx, const uint8_t* input, uint8_t *output);

#endif // #if defined(ECB) && (ECB == !)


#if defined(CBC) && (CBC == 1)
// buffer size MUST be mutile of AES_BLOCKLEN;
// We suggest https://en.wikipedia.org/wiki/Padding_(cryptography)#PKCS7 if you need one
// you need to set iv in ctx via AES_init_ctx_iv or AES_ctx_set_iv
// NB: no IV should ever be reused with the same key 
void AES_CBC_encrypt_buffer(struct AES_ctx *ctx, uint8_t* output, uint8_t* input, uint32_t length);
void AES_CBC_decrypt_buffer(struct AES_ctx *ctx, uint8_t* output, uint8_t* input, uint32_t length);

#endif // #if defined(CBC) && (CBC == 1)


#if defined(CTR) && (CTR == 1)

// Same function for encrypting as for decrypting. 
// iv is incremented for every block, and usesd after  encryption as xor compliment for output
// buffer size MUST be mutile of AES_BLOCKLEN;
// We suggest https://en.wikipedia.org/wiki/Padding_(cryptography)#PKCS7 if you need one
// you need to set iv in ctx via AES_init_ctx_iv or AES_ctx_set_iv
// NB: no IV should ever be reused with the same key 
void AES_CTR_xcrypt_buffer(struct AES_ctx *ctx, uint8_t* output, uint8_t* input, uint32_t length);

#endif // #if defined(CTR) && (CTR == 1)


#endif //_AES_H_
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-09 18:04:00 +0200