gcm_8h_source.html

 // gcm.h - written and placed in the public domain by Wei Dai


 #ifndef CRYPTOPP_GCM_H
 #define CRYPTOPP_GCM_H

 #include "authenc.h"
 #include "modes.h"

 NAMESPACE_BEGIN(CryptoPP)

 enum GCM_TablesOption {
         GCM_2K_Tables,
         GCM_64K_Tables};

 class CRYPTOPP_DLL CRYPTOPP_NO_VTABLE GCM_Base : public AuthenticatedSymmetricCipherBase
 {
 public:
         // AuthenticatedSymmetricCipher
         std::string AlgorithmName() const
                 {return GetBlockCipher().AlgorithmName() + std::string("/GCM");}
         size_t MinKeyLength() const
                 {return GetBlockCipher().MinKeyLength();}
         size_t MaxKeyLength() const
                 {return GetBlockCipher().MaxKeyLength();}
         size_t DefaultKeyLength() const
                 {return GetBlockCipher().DefaultKeyLength();}
         size_t GetValidKeyLength(size_t n) const
                 {return GetBlockCipher().GetValidKeyLength(n);}
         bool IsValidKeyLength(size_t n) const
                 {return GetBlockCipher().IsValidKeyLength(n);}
         unsigned int OptimalDataAlignment() const;
         IV_Requirement IVRequirement() const
                 {return UNIQUE_IV;}
         unsigned int IVSize() const
                 {return 12;}
         unsigned int MinIVLength() const
                 {return 1;}
         unsigned int MaxIVLength() const
                 {return UINT_MAX;}              // (W64LIT(1)<<61)-1 in the standard
         unsigned int DigestSize() const
                 {return 16;}
         lword MaxHeaderLength() const
                 {return (W64LIT(1)<<61)-1;}
         lword MaxMessageLength() const
                 {return ((W64LIT(1)<<39)-256)/8;}

 protected:
         // AuthenticatedSymmetricCipherBase
         bool AuthenticationIsOnPlaintext() const
                 {return false;}
         unsigned int AuthenticationBlockSize() const
                 {return HASH_BLOCKSIZE;}
         void SetKeyWithoutResync(const byte *userKey, size_t keylength, const NameValuePairs &params);
         void Resync(const byte *iv, size_t len);
         size_t AuthenticateBlocks(const byte *data, size_t len);
         void AuthenticateLastHeaderBlock();
         void AuthenticateLastConfidentialBlock();
         void AuthenticateLastFooterBlock(byte *mac, size_t macSize);
         SymmetricCipher & AccessSymmetricCipher() {return m_ctr;}

         virtual BlockCipher & AccessBlockCipher() =0;
         virtual GCM_TablesOption GetTablesOption() const =0;

         const BlockCipher & GetBlockCipher() const {return const_cast<GCM_Base *>(this)->AccessBlockCipher();};
         byte *HashBuffer() {return m_buffer+REQUIRED_BLOCKSIZE;}
         byte *HashKey() {return m_buffer+2*REQUIRED_BLOCKSIZE;}
         byte *MulTable() {return m_buffer+3*REQUIRED_BLOCKSIZE;}
         inline void ReverseHashBufferIfNeeded();

         class CRYPTOPP_DLL GCTR : public CTR_Mode_ExternalCipher::Encryption
         {
         protected:
                 void IncrementCounterBy256();
         };

         GCTR m_ctr;
         static word16 s_reductionTable[256];
         static volatile bool s_reductionTableInitialized;
         enum {REQUIRED_BLOCKSIZE = 16, HASH_BLOCKSIZE = 16};
 };

 template <class T_BlockCipher, GCM_TablesOption T_TablesOption, bool T_IsEncryption>
 class GCM_Final : public GCM_Base
 {
 public:
         static std::string StaticAlgorithmName()
                 {return T_BlockCipher::StaticAlgorithmName() + std::string("/GCM");}
         bool IsForwardTransformation() const
                 {return T_IsEncryption;}

 private:
         GCM_TablesOption GetTablesOption() const {return T_TablesOption;}
         BlockCipher & AccessBlockCipher() {return m_cipher;}
         typename T_BlockCipher::Encryption m_cipher;
 };

 template <class T_BlockCipher, GCM_TablesOption T_TablesOption=GCM_2K_Tables>
 struct GCM : public AuthenticatedSymmetricCipherDocumentation
 {
         typedef GCM_Final<T_BlockCipher, T_TablesOption, true> Encryption;
         typedef GCM_Final<T_BlockCipher, T_TablesOption, false> Decryption;
 };

 NAMESPACE_END

 #endif
GCM_Base
GCM block cipher base implementation.
Definition: gcm.h:27

CipherModeFinalTemplate_ExternalCipher
Definition: modes.h:317

byte
uint8_t byte
Definition: Common.h:57

GCM_Base::HashKey
byte * HashKey()
Definition: gcm.h:78

GCM_Final::AccessBlockCipher
BlockCipher & AccessBlockCipher()
Definition: gcm.h:111

GCM_Base::MaxIVLength
unsigned int MaxIVLength() const
Provides the maximum size of an IV.
Definition: gcm.h:50

GCM_2K_Tables
Use a table with 2K entries.
Definition: gcm.h:19

word16
unsigned short word16
Definition: config.h:230

GCM_Base::GetBlockCipher
const BlockCipher & GetBlockCipher() const
Definition: gcm.h:76

GCM_Base::MinIVLength
unsigned int MinIVLength() const
Provides the minimum size of an IV.
Definition: gcm.h:48

modes.h
Class file for modes of operation.

GCM_Base::HashBuffer
byte * HashBuffer()
Definition: gcm.h:77

GCM_Final::m_cipher
T_BlockCipher::Encryption m_cipher
Definition: gcm.h:112

StreamTransformation::OptimalDataAlignment
virtual unsigned int OptimalDataAlignment() const
Provides input and output data alignment for optimal performance.
Definition: cryptlib.cpp:234

GCM_Base::MaxHeaderLength
lword MaxHeaderLength() const
Provides the maximum length of AAD that can be input.
Definition: gcm.h:54

GCM_Base::MinKeyLength
size_t MinKeyLength() const
Returns smallest valid key length.
Definition: gcm.h:33

GCM::Decryption
GCM_Final< T_BlockCipher, T_TablesOption, false > Decryption
Definition: gcm.h:127

NAMESPACE_BEGIN
#define NAMESPACE_BEGIN(x)
Definition: config.h:200

AuthenticatedSymmetricCipherBase::AuthenticateLastHeaderBlock
virtual void AuthenticateLastHeaderBlock()=0

AuthenticatedSymmetricCipherDocumentation
Provides Encryption and Decryption typedefs used by derived classes to implement an authenticated enc...
Definition: seckey.h:437

GCM_Base::AuthenticationBlockSize
unsigned int AuthenticationBlockSize() const
Definition: gcm.h:63

AuthenticatedSymmetricCipherBase::SetKeyWithoutResync
virtual void SetKeyWithoutResync(const byte *userKey, size_t keylength, const NameValuePairs &params)=0

GCM::Encryption
GCM_Final< T_BlockCipher, T_TablesOption, true > Encryption
Definition: gcm.h:126

BlockCipher
Interface for one direction (encryption or decryption) of a block cipher.
Definition: cryptlib.h:1095

GCM_64K_Tables
Use a table with 64K entries.
Definition: gcm.h:21

AuthenticatedSymmetricCipherBase::AuthenticateBlocks
virtual size_t AuthenticateBlocks(const byte *data, size_t len)=0

AuthenticatedSymmetricCipherBase::AuthenticateLastFooterBlock
virtual void AuthenticateLastFooterBlock(byte *mac, size_t macSize)=0

GCM_Base::m_ctr
GCTR m_ctr
Definition: gcm.h:88

GCM_Base::MulTable
byte * MulTable()
Definition: gcm.h:79

GCM_Base::DigestSize
unsigned int DigestSize() const
Provides the digest size of the hash.
Definition: gcm.h:52

W64LIT
#define W64LIT(x)
Definition: config.h:241

SymmetricCipher
Interface for one direction (encryption or decryption) of a stream cipher or cipher mode...
Definition: cryptlib.h:1103

GCM
GCM block cipher mode of operation.
Definition: gcm.h:124

AuthenticatedSymmetricCipherBase
Base implementation for one direction (encryption or decryption) of a stream cipher or block cipher m...
Definition: authenc.h:19

GCM_Base::MaxKeyLength
size_t MaxKeyLength() const
Returns largest valid key length.
Definition: gcm.h:35

GCM_Base::DefaultKeyLength
size_t DefaultKeyLength() const
Returns default key length.
Definition: gcm.h:37

GCM_Final::IsForwardTransformation
bool IsForwardTransformation() const
Determines if the cipher is being operated in its forward direction.
Definition: gcm.h:106

GCM_Base::MaxMessageLength
lword MaxMessageLength() const
Provides the maximum length of encrypted data.
Definition: gcm.h:56

CRYPTOPP_NO_VTABLE
#define CRYPTOPP_NO_VTABLE
Definition: config.h:369

GCM_Base::GetValidKeyLength
size_t GetValidKeyLength(size_t n) const
Returns a valid key length for the algorithm.
Definition: gcm.h:39

SimpleKeyingInterface::IV_Requirement
IV_Requirement
Secure IVs requirements as enumerated values.
Definition: cryptlib.h:598

AuthenticatedSymmetricCipherBase::AuthenticateLastConfidentialBlock
virtual void AuthenticateLastConfidentialBlock()
Definition: authenc.h:54

GCM_TablesOption
GCM_TablesOption
GCM table size options.
Definition: gcm.h:17

GCM_Final::GetTablesOption
GCM_TablesOption GetTablesOption() const
Definition: gcm.h:110

GCM_Base::AlgorithmName
std::string AlgorithmName() const
Provides the name of this algorithm.
Definition: gcm.h:31

GCM_Base::IVRequirement
IV_Requirement IVRequirement() const
Minimal requirement for secure IVs.
Definition: gcm.h:44

GCM_Base::AccessSymmetricCipher
SymmetricCipher & AccessSymmetricCipher()
Definition: gcm.h:71

GCM_Final::StaticAlgorithmName
static std::string StaticAlgorithmName()
Definition: gcm.h:104

NAMESPACE_END
#define NAMESPACE_END
Definition: config.h:201

CryptoPP

GCM_Final
GCM block cipher final implementation.
Definition: gcm.h:101

lword
word64 lword
Definition: config.h:245

GCM_Base::IVSize
unsigned int IVSize() const
Returns length of the IV accepted by this object.
Definition: gcm.h:46

AuthenticatedSymmetricCipherBase::Resync
virtual void Resync(const byte *iv, size_t len)=0

CRYPTOPP_DLL
#define CRYPTOPP_DLL
Definition: config.h:704

GCM_Base::IsValidKeyLength
bool IsValidKeyLength(size_t n) const
Returns whether keylength is a valid key length.
Definition: gcm.h:41

GCM_Base::s_reductionTableInitialized
static volatile bool s_reductionTableInitialized
Definition: gcm.h:90

authenc.h
Base classes for working with authenticated encryption modes of encryption.

data
uint8_t const * data
Definition: sha3.h:19

GCM_Base::AuthenticationIsOnPlaintext
bool AuthenticationIsOnPlaintext() const
Definition: gcm.h:61

GCM_Base::GCTR
Definition: gcm.h:82

SimpleKeyingInterface::UNIQUE_IV
The IV must be unique.
Definition: cryptlib.h:600

NameValuePairs
Interface for retrieving values given their names.
Definition: cryptlib.h:279