aead aes constructs added #854

gonatienza · 2025-02-05T20:31:40Z

Included low level bindings for newer APIs for AEAD AES-based constructs (crypto_aead_aegis* from 1.0.19), plus old crypto_aead_aes256gcm*.

size_t crypto_aead_aegis256_keybytes(void);
size_t crypto_aead_aegis256_nsecbytes(void);
size_t crypto_aead_aegis256_npubbytes(void);
size_t crypto_aead_aegis256_abytes(void);
size_t crypto_aead_aegis256_messagebytes_max(void);

size_t crypto_aead_aegis128l_keybytes(void);
size_t crypto_aead_aegis128l_nsecbytes(void);
size_t crypto_aead_aegis128l_npubbytes(void);
size_t crypto_aead_aegis128l_abytes(void);
size_t crypto_aead_aegis128l_messagebytes_max(void);

size_t crypto_aead_aes256gcm_keybytes(void);
size_t crypto_aead_aes256gcm_nsecbytes(void);
size_t crypto_aead_aes256gcm_npubbytes(void);
size_t crypto_aead_aes256gcm_abytes(void);
size_t crypto_aead_aes256gcm_messagebytes_max(void);

int crypto_aead_aegis256_encrypt(unsigned char *c,
                                 unsigned long long *clen_p,
                                 const unsigned char *m,
                                 unsigned long long mlen,
                                 const unsigned char *ad,
                                 unsigned long long adlen,
                                 const unsigned char *nsec,
                                 const unsigned char *npub,
                                 const unsigned char *k);

int crypto_aead_aegis256_decrypt(unsigned char *m,
                                 unsigned long long *mlen_p,
                                 unsigned char *nsec,
                                 const unsigned char *c,
                                 unsigned long long clen,
                                 const unsigned char *ad,
                                 unsigned long long adlen,
                                 const unsigned char *npub,
                                 const unsigned char *k);

int crypto_aead_aegis128l_encrypt(unsigned char *c,
                                  unsigned long long *clen_p,
                                  const unsigned char *m,
                                  unsigned long long mlen,
                                  const unsigned char *ad,
                                  unsigned long long adlen,
                                  const unsigned char *nsec,
                                  const unsigned char *npub,
                                  const unsigned char *k);

int crypto_aead_aegis128l_decrypt(unsigned char *m,
                                  unsigned long long *mlen_p,
                                  unsigned char *nsec,
                                  const unsigned char *c,
                                  unsigned long long clen,
                                  const unsigned char *ad,
                                  unsigned long long adlen,
                                  const unsigned char *npub,
                                  const unsigned char *k);

int crypto_aead_aes256gcm_is_available(void);

int crypto_aead_aes256gcm_encrypt(unsigned char *c,
                                  unsigned long long *clen_p,
                                  const unsigned char *m,
                                  unsigned long long mlen,
                                  const unsigned char *ad,
                                  unsigned long long adlen,
                                  const unsigned char *nsec,
                                  const unsigned char *npub,
                                  const unsigned char *k);

int crypto_aead_aes256gcm_decrypt(unsigned char *m,
                                  unsigned long long *mlen_p,
                                  unsigned char *nsec,
                                  const unsigned char *c,
                                  unsigned long long clen,
                                  const unsigned char *ad,
                                  unsigned long long adlen,
                                  const unsigned char *npub,
                                  const unsigned char *k);

With crypto_aead_aegis* (with AES-NI) I noticed a decent performance bump compared with related AES GCM based constructs from cryptography.

Would be a nice addition for the next release, keeping up to date with the latest libsodium versions.

gonatienza · 2025-02-11T19:15:35Z

Hi @reaperhulk, just making sure you got this one.

reaperhulk · 2025-05-06T21:34:47Z

Thanks for your patience here, life things have me operating with very limited bandwidth for open source right now!

gonatienza marked this pull request as draft February 5, 2025 20:44

aead aes constructs added

4e627d3

gonatienza force-pushed the AEAD-AES-CONSTRUCTS branch from 16c40f3 to 4e627d3 Compare February 5, 2025 20:45

gonatienza marked this pull request as ready for review February 5, 2025 20:45

gonatienza force-pushed the AEAD-AES-CONSTRUCTS branch 2 times, most recently from d1e66bf to aea5975 Compare February 5, 2025 21:19

fix mypy whim

83cda47

gonatienza force-pushed the AEAD-AES-CONSTRUCTS branch from aea5975 to 83cda47 Compare February 5, 2025 21:23

reaperhulk approved these changes May 6, 2025

View reviewed changes

reaperhulk merged commit c1d6caf into pyca:main May 6, 2025
34 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

aead aes constructs added #854

aead aes constructs added #854

Uh oh!

gonatienza commented Feb 5, 2025

Uh oh!

gonatienza commented Feb 11, 2025

Uh oh!

Uh oh!

reaperhulk commented May 6, 2025

Uh oh!

Uh oh!

aead aes constructs added #854

aead aes constructs added #854

Uh oh!

Conversation

gonatienza commented Feb 5, 2025

Uh oh!

gonatienza commented Feb 11, 2025

Uh oh!

Uh oh!

reaperhulk commented May 6, 2025

Uh oh!

Uh oh!