Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • iframe-security
  • 393-implement-guestlog-endpoints
  • new-baikal
  • case-entity
  • 1149-not-able-to-sign-emails
  • debug-account-recovery
  • 908-account-recovery-ability-to-add-contacts-to-trusted-contacts-list-for-account-recovery
  • 1129-company-redesing-shared-identity-profiles-attached-to-a-user-don-t-show-the-claims-in-the-vcard
  • vereign-service
  • 1062-redesign-of-organization
  • email-sign
  • 1054-re-design-add-memeber-modal
  • 1056-add-profiles-tab-content
  • cpp-integration-layer
  • 891-ability-to-assign-admin-and-power-user-permissions
  • 1054-re-design-employee-page
  • 18-code-generation
  • 18-http-client
  • devops-change-builder
  • 1.9
  • 1.8
  • 1.6
  • 1.7
  • 1.6rc
  • 1.5
  • 1.5rc1
  • 1.4
  • 1.4-rc1
  • 1.3
  • 1.3-rc1
  • 1.2
  • 1.2-rc1
  • 1.1
  • 1.1-rc2
  • 1.1-rc1
  • 1.0
  • 0.23
  • 0.23-rc1
  • 0.23-rc2
40 results
Blame Permalink
aes.hh 1.97 KiB 
#ifndef __VEREIGN_CRYPTO_AES_HH
#define __VEREIGN_CRYPTO_AES_HH

#include <vereign/bytes/buffer.hh>

/**
 * Provides utilities for AES encryption/decryption.
 */
namespace vereign::crypto::aes {

/**
 * Encrypt given bytes with AES256-GCM.
 *
 * Example:
 * @code
 * const std::string input{"foo bar"};
 * auto key = crypto::Rand(32); // 256 bits
 *
 * bytes::Buffer iv;
 * bytes::Buffer tag;
 * bytes::Buffer encrypted;
 *
 * crypto::aes::GCM256Encrypt(bytes::View(input), key.View(), iv, tag, encrypted);
 * @endcode
 *
 * @param src The bytes that will be encrypted.
 * @param key The AES 256 bit key.
 * @param iv The initialization vector that was used during the encryption.
 * @param tag The authentication tag that was produced during the encryption.
 * @param encrypted The result of the encryption.
 *
 * @throws crypto::OpenSSLError on failure.
 */
void GCM256Encrypt(
  bytes::View src,
  bytes::View key,
  bytes::Buffer& iv,
  bytes::Buffer& tag,
  bytes::Buffer& encrypted
);

/**
 * Decrypts given bytes with AES256-GCM.
 *
 * Example:
 * @code
 * const std::string input{"foo bar"};
 * auto key = crypto::Rand(32); // 256 bits
 *
 * bytes::Buffer iv;
 * bytes::Buffer tag;
 * bytes::Buffer encrypted;
 *
 * crypto::aes::GCM256Encrypt(bytes::View(input), key.View(), iv, tag, encrypted);
 *
 * bytes::Buffer decrypted;
 * crypto::aes::GCM256Decrypt(encrypted.View(), key.View(), iv.View(), tag.View(), decrypted);
 *
 * assert(input == decrypted.View().String());
 * @endcode
 *
 * @param src The bytes that will be decrypted.
 * @param key The AES 256 bit key.
 * @param iv The initialization vector that was used during the encryption.
 * @param tag The authentication tag that was produced during the encryption.
 * @param encrypted The result of the decryption.
 *
 * @throws crypto::OpenSSLError on failure.
 */
void GCM256Decrypt(
  bytes::View src,
  bytes::View key,
  bytes::View iv,
  bytes::View tag,
  bytes::Buffer& decrypted
);

} // vereign::crypto::aes

#endif // __VEREIGN_CRYPTO_AES_HH