// Copyright 2015 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #ifndef CRYPTO_AEAD_H_ #define CRYPTO_AEAD_H_ #include #include #include #include #include "base/containers/span.h" #include "base/memory/raw_ptr.h" #include "base/strings/string_piece.h" #include "crypto/crypto_export.h" #include "third_party/abseil-cpp/absl/types/optional.h" struct evp_aead_st; namespace crypto { // This class exposes the AES-128-CTR-HMAC-SHA256 and AES_256_GCM AEAD. Note // that there are two versions of most methods: an historical version based // around |StringPiece| and a more modern version that takes |base::span|. // Prefer the latter in new code. class CRYPTO_EXPORT Aead { public: enum AeadAlgorithm { AES_128_CTR_HMAC_SHA256, AES_256_GCM, AES_256_GCM_SIV, CHACHA20_POLY1305 }; explicit Aead(AeadAlgorithm algorithm); Aead(const Aead&) = delete; Aead& operator=(const Aead&) = delete; ~Aead(); // Note that Init keeps a reference to the data pointed to by |key| thus that // data must outlive this object. void Init(base::span key); // Note that Init keeps a reference to the data pointed to by |key| thus that // data must outlive this object. void Init(const std::string* key); std::vector Seal(base::span plaintext, base::span nonce, base::span additional_data) const; bool Seal(base::StringPiece plaintext, base::StringPiece nonce, base::StringPiece additional_data, std::string* ciphertext) const; absl::optional> Open( base::span ciphertext, base::span nonce, base::span additional_data) const; bool Open(base::StringPiece ciphertext, base::StringPiece nonce, base::StringPiece additional_data, std::string* plaintext) const; size_t KeyLength() const; size_t NonceLength() const; private: bool Seal(base::span plaintext, base::span nonce, base::span additional_data, uint8_t* out, size_t* output_length, size_t max_output_length) const; bool Open(base::span ciphertext, base::span nonce, base::span additional_data, uint8_t* out, size_t* output_length, size_t max_output_length) const; absl::optional> key_; raw_ptr aead_; }; } // namespace crypto #endif // CRYPTO_AEAD_H_