/src/cryptopp/authenc.h

Source (jump to first uncovered line)
// authenc.h - originally written and placed in the public domain by Wei Dai

/// \file
/// \brief Classes for authenticated encryption modes of operation
/// \details Authenticated encryption (AE) schemes combine confidentiality and authenticity
///   into a single mode of operation They gained traction in the early 2000's because manually
///   combining them was error prone for the typical developer. Around that time, the desire to
///   authenticate but not ecrypt additional data (AAD) was also identified. When both features
///   are available from a scheme, the system is referred to as an AEAD scheme.
/// \details Crypto++ provides four authenticated encryption modes of operation - CCM, EAX, GCM
///   and OCB mode. All modes derive from AuthenticatedSymmetricCipherBase() and the
///   motivation for the API, like calling AAD a &quot;header&quot;, can be found in Bellare,
///   Rogaway and Wagner's <A HREF="http://web.cs.ucdavis.edu/~rogaway/papers/eax.pdf">The EAX
///   Mode of Operation</A>. The EAX paper suggested a basic API to help standardize AEAD
///   schemes in software and promote adoption of the modes.
/// \sa <A HREF="http://www.cryptopp.com/wiki/Authenticated_Encryption">Authenticated
///   Encryption</A> on the Crypto++ wiki.
/// \since Crypto++ 5.6.0

#ifndef CRYPTOPP_AUTHENC_H
#define CRYPTOPP_AUTHENC_H

#include "cryptlib.h"
#include "secblock.h"

NAMESPACE_BEGIN(CryptoPP)

/// \brief Base class for authenticated encryption modes of operation
/// \details AuthenticatedSymmetricCipherBase() serves as a base implementation for one direction
///   (encryption or decryption) of a stream cipher or block cipher mode with authentication.
/// \details Crypto++ provides four authenticated encryption modes of operation - CCM, EAX, GCM
///   and OCB mode. All modes derive from AuthenticatedSymmetricCipherBase() and the
///   motivation for the API, like calling AAD a &quot;header&quot;, can be found in Bellare,
///   Rogaway and Wagner's <A HREF="http://web.cs.ucdavis.edu/~rogaway/papers/eax.pdf">The EAX
///   Mode of Operation</A>. The EAX paper suggested a basic API to help standardize AEAD
///   schemes in software and promote adoption of the modes.
/// \sa <A HREF="http://www.cryptopp.com/wiki/Authenticated_Encryption">Authenticated
///   Encryption</A> on the Crypto++ wiki.
/// \since Crypto++ 5.6.0
class CRYPTOPP_DLL CRYPTOPP_NO_VTABLE AuthenticatedSymmetricCipherBase : public AuthenticatedSymmetricCipher
{
public:
  AuthenticatedSymmetricCipherBase() : m_totalHeaderLength(0), m_totalMessageLength(0),
    m_totalFooterLength(0), m_bufferedDataLength(0), m_state(State_Start) {}

  // StreamTransformation interface
  bool IsRandomAccess() const {return false;}
  bool IsSelfInverting() const {return true;}

  void SetKey(const byte *userKey, size_t keylength, const NameValuePairs &params);
  void Restart() {if (m_state > State_KeySet) m_state = State_KeySet;}
  void Resynchronize(const byte *iv, int length=-1);
  void Update(const byte *input, size_t length);
  void ProcessData(byte *outString, const byte *inString, size_t length);
  void TruncatedFinal(byte *mac, size_t macSize);

protected:
  void UncheckedSetKey(const byte * key, unsigned int length,const CryptoPP::NameValuePairs &params)
    {CRYPTOPP_UNUSED(key), CRYPTOPP_UNUSED(length), CRYPTOPP_UNUSED(params); CRYPTOPP_ASSERT(false);}

  void AuthenticateData(const byte *data, size_t len);
  const SymmetricCipher & GetSymmetricCipher() const
    {return const_cast<AuthenticatedSymmetricCipherBase *>(this)->AccessSymmetricCipher();}

  virtual SymmetricCipher & AccessSymmetricCipher() =0;
  virtual bool AuthenticationIsOnPlaintext() const =0;
  virtual unsigned int AuthenticationBlockSize() const =0;
  virtual void SetKeyWithoutResync(const byte *userKey, size_t keylength, const NameValuePairs &params) =0;
  virtual void Resync(const byte *iv, size_t len) =0;
  virtual size_t AuthenticateBlocks(const byte *data, size_t len) =0;
  virtual void AuthenticateLastHeaderBlock() =0;
  virtual void AuthenticateLastConfidentialBlock() {}
  virtual void AuthenticateLastFooterBlock(byte *mac, size_t macSize) =0;

  // State_AuthUntransformed: authentication is applied to plain text (Authenticate-then-Encrypt)
  // State_AuthTransformed: authentication is applied to cipher text (Encrypt-then-Authenticate)
  enum State {State_Start, State_KeySet, State_IVSet, State_AuthUntransformed, State_AuthTransformed, State_AuthFooter};

  AlignedSecByteBlock m_buffer;
  lword m_totalHeaderLength, m_totalMessageLength, m_totalFooterLength;
  unsigned int m_bufferedDataLength;
  State m_state;
};

NAMESPACE_END

#endif

Line	Count	Source (jump to first uncovered line)
1		// authenc.h - originally written and placed in the public domain by Wei Dai
2
3		/// \file
4		/// \brief Classes for authenticated encryption modes of operation
5		/// \details Authenticated encryption (AE) schemes combine confidentiality and authenticity
6		/// into a single mode of operation They gained traction in the early 2000's because manually
7		/// combining them was error prone for the typical developer. Around that time, the desire to
8		/// authenticate but not ecrypt additional data (AAD) was also identified. When both features
9		/// are available from a scheme, the system is referred to as an AEAD scheme.
10		/// \details Crypto++ provides four authenticated encryption modes of operation - CCM, EAX, GCM
11		/// and OCB mode. All modes derive from AuthenticatedSymmetricCipherBase() and the
12		/// motivation for the API, like calling AAD a "header", can be found in Bellare,
13		/// Rogaway and Wagner's <A HREF="http://web.cs.ucdavis.edu/~rogaway/papers/eax.pdf">The EAX
14		/// Mode of Operation</A>. The EAX paper suggested a basic API to help standardize AEAD
15		/// schemes in software and promote adoption of the modes.
16		/// \sa <A HREF="http://www.cryptopp.com/wiki/Authenticated_Encryption">Authenticated
17		/// Encryption</A> on the Crypto++ wiki.
18		/// \since Crypto++ 5.6.0
19
20		#ifndef CRYPTOPP_AUTHENC_H
21		#define CRYPTOPP_AUTHENC_H
22
23		#include "cryptlib.h"
24		#include "secblock.h"
25
26		NAMESPACE_BEGIN(CryptoPP)
27
28		/// \brief Base class for authenticated encryption modes of operation
29		/// \details AuthenticatedSymmetricCipherBase() serves as a base implementation for one direction
30		/// (encryption or decryption) of a stream cipher or block cipher mode with authentication.
31		/// \details Crypto++ provides four authenticated encryption modes of operation - CCM, EAX, GCM
32		/// and OCB mode. All modes derive from AuthenticatedSymmetricCipherBase() and the
33		/// motivation for the API, like calling AAD a "header", can be found in Bellare,
34		/// Rogaway and Wagner's <A HREF="http://web.cs.ucdavis.edu/~rogaway/papers/eax.pdf">The EAX
35		/// Mode of Operation</A>. The EAX paper suggested a basic API to help standardize AEAD
36		/// schemes in software and promote adoption of the modes.
37		/// \sa <A HREF="http://www.cryptopp.com/wiki/Authenticated_Encryption">Authenticated
38		/// Encryption</A> on the Crypto++ wiki.
39		/// \since Crypto++ 5.6.0
40		class CRYPTOPP_DLL CRYPTOPP_NO_VTABLE AuthenticatedSymmetricCipherBase : public AuthenticatedSymmetricCipher
41		{
42		public:
43		AuthenticatedSymmetricCipherBase() : m_totalHeaderLength(0), m_totalMessageLength(0),
44	142	m_totalFooterLength(0), m_bufferedDataLength(0), m_state(State_Start) {}
45
46		// StreamTransformation interface
47	0	bool IsRandomAccess() const {return false;}
48	0	bool IsSelfInverting() const {return true;}
49
50		void SetKey(const byte *userKey, size_t keylength, const NameValuePairs &params);
51	0	void Restart() {if (m_state > State_KeySet) m_state = State_KeySet;}
52		void Resynchronize(const byte *iv, int length=-1);
53		void Update(const byte *input, size_t length);
54		void ProcessData(byte outString, const byte inString, size_t length);
55		void TruncatedFinal(byte *mac, size_t macSize);
56
57		protected:
58		void UncheckedSetKey(const byte * key, unsigned int length,const CryptoPP::NameValuePairs &params)
59	0	{CRYPTOPP_UNUSED(key), CRYPTOPP_UNUSED(length), CRYPTOPP_UNUSED(params); CRYPTOPP_ASSERT(false);}
60
61		void AuthenticateData(const byte *data, size_t len);
62		const SymmetricCipher & GetSymmetricCipher() const
63	0	{return const_cast<AuthenticatedSymmetricCipherBase *>(this)->AccessSymmetricCipher();}
64
65		virtual SymmetricCipher & AccessSymmetricCipher() =0;
66		virtual bool AuthenticationIsOnPlaintext() const =0;
67		virtual unsigned int AuthenticationBlockSize() const =0;
68		virtual void SetKeyWithoutResync(const byte *userKey, size_t keylength, const NameValuePairs &params) =0;
69		virtual void Resync(const byte *iv, size_t len) =0;
70		virtual size_t AuthenticateBlocks(const byte *data, size_t len) =0;
71		virtual void AuthenticateLastHeaderBlock() =0;
72	0	virtual void AuthenticateLastConfidentialBlock() {}
73		virtual void AuthenticateLastFooterBlock(byte *mac, size_t macSize) =0;
74
75		// State_AuthUntransformed: authentication is applied to plain text (Authenticate-then-Encrypt)
76		// State_AuthTransformed: authentication is applied to cipher text (Encrypt-then-Authenticate)
77		enum State {State_Start, State_KeySet, State_IVSet, State_AuthUntransformed, State_AuthTransformed, State_AuthFooter};
78
79		AlignedSecByteBlock m_buffer;
80		lword m_totalHeaderLength, m_totalMessageLength, m_totalFooterLength;
81		unsigned int m_bufferedDataLength;
82		State m_state;
83		};
84
85		NAMESPACE_END
86
87		#endif

Coverage Report

Created: 2024-11-21 07:03