Add AES-GCM-SIV mode (RFC 8452)

* cipher/Makefile.am: Add 'cipher-gcm-siv.c'. * cipher/cipher-gcm-siv.c: New. * cipher/cipher-gcm.c (_gcry_cipher_gcm_setupM): New. * cipher/cipher-internal.h (gcry_cipher_handle): Add 'siv_keylen'. (_gcry_cipher_gcm_setupM, _gcry_cipher_gcm_siv_encrypt) (_gcry_cipher_gcm_siv_decrypt, _gcry_cipher_gcm_siv_set_nonce) (_gcry_cipher_gcm_siv_authenticate) (_gcry_cipher_gcm_siv_set_decryption_tag) (_gcry_cipher_gcm_siv_get_tag, _gcry_cipher_gcm_siv_check_tag) (_gcry_cipher_gcm_siv_setkey): New prototypes. (cipher_block_bswap): New helper function. * cipher/cipher.c (_gcry_cipher_open_internal): Add 'GCRY_CIPHER_MODE_GCM_SIV'; Refactor mode requirement checks for better size optimization (check pointers & blocksize in same order for all). (cipher_setkey, cipher_reset, _gcry_cipher_setup_mode_ops) (_gcry_cipher_setup_mode_ops, _gcry_cipher_info): Add GCM-SIV. (_gcry_cipher_ctl): Handle 'set decryption tag' for GCM-SIV. * doc/gcrypt.texi: Add GCM-SIV. * src/gcrypt.h.in (GCRY_CIPHER_MODE_GCM_SIV): New. (GCRY_SIV_BLOCK_LEN, gcry_cipher_set_decryption_tag): Add to comment that these are also for GCM-SIV in addition to SIV mode. * tests/basic.c (check_gcm_siv_cipher): New. (check_cipher_modes): Check for GCM-SIV. * tests/bench-slope.c (bench_gcm_siv_encrypt_do_bench) (bench_gcm_siv_decrypt_do_bench, bench_gcm_siv_authenticate_do_bench) (gcm_siv_encrypt_ops, gcm_siv_decrypt_ops) (gcm_siv_authenticate_ops): New. (cipher_modes): Add GCM-SIV. (cipher_bench_one): Check key length requirement for GCM-SIV. -- GnuPG-bug-id: T4485 Signed-off-by: Jussi Kivilinna <jussi.kivilinna@iki.fi>
author: Jussi Kivilinna <jussi.kivilinna@iki.fi> 2021-08-11 18:02:07 +0300
committer: Jussi Kivilinna <jussi.kivilinna@iki.fi> 2021-08-26 20:30:31 +0300
commit: 1b8994c4ecf2cb53fff46fa84a95a7c259e7cec7 (patch)
tree: 8b07e25cdc96e8590ca91c3e4a9e8abd69a55b09 /src/gcrypt.h.in
parent: 659a208cb065d686f60e2c4f51856f460d6b44f5 (diff)
download: libgcrypt-1b8994c4ecf2cb53fff46fa84a95a7c259e7cec7.tar.gz
1 files changed, 4 insertions, 3 deletions
diff --git a/src/gcrypt.h.in b/src/gcrypt.h.in
index 99b21276..0540c60a 100644
--- a/src/gcrypt.h.in
+++ b/src/gcrypt.h.in
@@ -977,7 +977,8 @@ enum gcry_cipher_modes
     GCRY_CIPHER_MODE_CFB8     = 12,  /* Cipher feedback (8 bit mode). */
     GCRY_CIPHER_MODE_XTS      = 13,  /* XTS mode.  */
     GCRY_CIPHER_MODE_EAX      = 14,  /* EAX mode.  */
-    GCRY_CIPHER_MODE_SIV      = 15   /* SIV mode.  */
+    GCRY_CIPHER_MODE_SIV      = 15,  /* SIV mode.  */
+    GCRY_CIPHER_MODE_GCM_SIV  = 16   /* GCM-SIV mode.  */
   };
 
 /* Flags used with the open function. */
@@ -1001,7 +1002,7 @@ enum gcry_cipher_flags
 /* XTS works only with blocks of 128 bits.  */
 #define GCRY_XTS_BLOCK_LEN  (128 / 8)
 
-/* SIV works only with blocks of 128 bits */
+/* SIV and GCM-SIV works only with blocks of 128 bits */
 #define GCRY_SIV_BLOCK_LEN  (128 / 8)
 
 /* Create a handle for algorithm ALGO to be used in MODE.  FLAGS may
@@ -1106,7 +1107,7 @@ size_t gcry_cipher_get_algo_blklen (int algo);
 #define gcry_cipher_test_algo(a) \
             gcry_cipher_algo_info( (a), GCRYCTL_TEST_ALGO, NULL, NULL )
 
-/* Setup tag for decryption (for SIV mode). */
+/* Setup tag for decryption (for SIV and GCM-SIV mode). */
 #define gcry_cipher_set_decryption_tag(a, tag, taglen) \
             gcry_cipher_ctl ((a), GCRYCTL_SET_DECRYPTION_TAG, \
                              (void *)(tag), (taglen))
author	Jussi Kivilinna <jussi.kivilinna@iki.fi>	2021-08-11 18:02:07 +0300
committer	Jussi Kivilinna <jussi.kivilinna@iki.fi>	2021-08-26 20:30:31 +0300
commit	1b8994c4ecf2cb53fff46fa84a95a7c259e7cec7 (patch)
tree	8b07e25cdc96e8590ca91c3e4a9e8abd69a55b09 /src/gcrypt.h.in
parent	659a208cb065d686f60e2c4f51856f460d6b44f5 (diff)
download	libgcrypt-1b8994c4ecf2cb53fff46fa84a95a7c259e7cec7.tar.gz