Ordo  0.3.4
Symmetric Cryptography Library
 All Data Structures Files Functions Variables Typedefs Enumerations Enumerator Macros
Functions
enc_block.h File Reference

Module. More...

#include "ordo/primitives/block_modes.h"
Include dependency graph for enc_block.h:
This graph shows which files directly or indirectly include this file:

Go to the source code of this file.

Functions

ORDO_PUBLIC int enc_block_init (struct ENC_BLOCK_CTX *ctx, const void *key, size_t key_len, const void *iv, size_t iv_len, int direction, prim_t cipher, const void *cipher_params, prim_t mode, const void *mode_params)
 
ORDO_PUBLIC void enc_block_update (struct ENC_BLOCK_CTX *ctx, const void *in, size_t in_len, void *out, size_t *out_len)
 
ORDO_PUBLIC int enc_block_final (struct ENC_BLOCK_CTX *ctx, void *out, size_t *out_len)
 
ORDO_PUBLIC size_t enc_block_key_len (prim_t cipher, size_t key_len)
 
ORDO_PUBLIC size_t enc_block_iv_len (prim_t cipher, prim_t mode, size_t iv_len)
 
ORDO_PUBLIC size_t enc_block_bsize (void)
 

Detailed Description

Module.

Module to encrypt plaintext and decrypt ciphertext with different block ciphers and modes of operation. Note it is always possible to skip this API and directly use the lower-level functions available in the individual mode of operation headers, but this interface abstracts away some of the more boilerplate details and so should be preferred.

If you wish to use the lower level API, you will need to manage your block cipher contexts yourself, which can give more flexibility in some particular cases but is often unnecessary.

The padding algorithm for modes of operation which use padding is PKCS7 (RFC 5652), which appends N bytes of value N, where N is the number of padding bytes required, in bytes (between 1 and the block cipher's block size).

Function Documentation

ORDO_PUBLIC int enc_block_init ( struct ENC_BLOCK_CTX *  ctx,
const void *  key,
size_t  key_len,
const void *  iv,
size_t  iv_len,
int  direction,
prim_t  cipher,
const void *  cipher_params,
prim_t  mode,
const void *  mode_params 
)

Initializes a block encryption context.

Parameters
[in,out]ctxA block encryption context.
[in]keyThe cryptographic key to use.
[in]key_lenThe length, in bytes, of the key.
[in]ivThe initialization vector to use.
[in]iv_lenThe length, in bytes, of the IV.
[in]direction1 for encryption, 0 for decryption.
[in]cipherThe block cipher primitive to use.
[in]cipher_paramsBlock cipher specific parameters.
[in]modeThe block mode primitive to use.
[in]mode_paramsMode of operation specific parameters.
Returns
ORDO_SUCCESS on success, else an error code.
Remarks
The initialization vector may be 0, if the mode of operation does not require one - consult the documentation of the mode to know what it expects.
ORDO_PUBLIC void enc_block_update ( struct ENC_BLOCK_CTX *  ctx,
const void *  in,
size_t  in_len,
void *  out,
size_t *  out_len 
)

Encrypts or decrypts a data buffer.

Parameters
[in,out]ctxA block encryption context.
[in]inThe plaintext or ciphertext buffer.
[in]in_lenLength, in bytes, of the input buffer.
[out]outThe ciphertext or plaintext buffer.
[out]out_lenThe number of bytes written to out.
Remarks
This function might not immediately encrypt all data fed into it, and will write the amount of input bytes effectively encrypted in out_len. However, it does not mean that the plaintext left over has been "rejected" or "ignored". It has been taken into account but the corresponding ciphertext simply can't be produced until more data is fed into it (or until enc_block_final() is called).
Some modes of operation always process all input data, in which case they may allow out_len to be 0 - check the documentation of the relevant mode of operation.
ORDO_PUBLIC int enc_block_final ( struct ENC_BLOCK_CTX *  ctx,
void *  out,
size_t *  out_len 
)

Finalizes a block encryption context.

Parameters
[in,out]ctxA block encryption context.
[out]outThe ciphertext or plaintext buffer.
[out]out_lenThe number of bytes written to out.
Returns
ORDO_SUCCESS on success, else an error code.
Remarks
The function will return up to one block size's worth of data and may not return any data at all. For example, for the CBC mode of operation (with padding on), this function will, for encryption, append padding bytes to the final plaintext block, and return the padding block, whereas for decryption, it will take that padding block and strip the padding off, returning the last few bytes of plaintext.
Some modes of operation always process all input data, in which case they may allow out_len to be 0 - check the documentation of the relevant mode of operation.
ORDO_PUBLIC size_t enc_block_key_len ( prim_t  cipher,
size_t  key_len 
)

Queries the key length of a block cipher.

Parameters
[in]cipherA block cipher primitive.
[in]key_lenA suggested key length.
Returns
A suitable key length to use for this cipher.
ORDO_PUBLIC size_t enc_block_iv_len ( prim_t  cipher,
prim_t  mode,
size_t  iv_len 
)

Queries the IV length of a block mode and block cipher.

Parameters
[in]cipherA block cipher primitive.
[in]modeA block mode primitive.
[in]iv_lenA suggested IV length.
Returns
A suitable IV length to use for this mode and cipher.
ORDO_PUBLIC size_t enc_block_bsize ( void  )

Gets the size in bytes of an ENC_BLOCK_CTX.

Returns
The size in bytes of the structure.
Remarks
Binary compatibility layer.
Generated on Sun Jul 27 2014 23:46:11 for Ordo by   doxygen 1.8.6