aes.h

Go to the documentation of this file.

/* 
 * ================= LICENSE INFORMATION =================
 * 2025 Quantum Resistant Cryptographic Solutions Corporation
 * All Rights Reserved.
 *
 * NOTICE: This software and all accompanying materials are the exclusive 
 * property of Quantum Resistant Cryptographic Solutions Corporation (QRCS).
 * The intellectual and technical concepts contained within this implementation 
 * are proprietary to QRCS and its authorized licensors and are protected under 
 * applicable U.S. and international copyright, patent, and trade secret laws.
 *
 * CRYPTOGRAPHIC STANDARDS:
 * - This software includes implementations of cryptographic algorithms such as 
 *   SHA3, AES, and others. These algorithms are public domain or standardized 
 *   by organizations such as NIST and are NOT the property of QRCS.
 * - However, all source code, optimizations, and implementations in this library 
 *   are original works of QRCS and are protected under this license.
 *
 * RESTRICTIONS:
 * - Redistribution, modification, or unauthorized distribution of this software, 
 *   in whole or in part, is strictly prohibited.
 * - This software is provided for non-commercial, educational, and research 
 *   purposes only. Commercial use in any form is expressly forbidden.
 * - Licensing and authorized distribution are solely at the discretion of QRCS.
 * - Any use of this software implies acceptance of these restrictions.
 *
 * DISCLAIMER:
 * This software is provided "as is," without warranty of any kind, express or 
 * implied, including but not limited to warranties of merchantability or fitness 
 * for a particular purpose. QRCS disclaims all liability for any direct, indirect, 
 * incidental, or consequential damages resulting from the use or misuse of this software.
 *
 * FULL LICENSE:
 * This software is subject to the **Quantum Resistant Cryptographic Solutions 
 * Proprietary License (QRCS-PL)**. The complete license terms are included 
 * in the LICENSE.txt file distributed with this software.
 *
 * Written by: John G. Underhill
 * Contact: john.underhill@protonmail.com
 */
 
#ifndef QSC_AES_H
#define QSC_AES_H
 
#include "common.h"
#include "intrinsics.h"

#define QSC_HBA_KMAC_EXTENSION

#define QSC_HBA_HKDF_EXTENSION
 
#if defined(QSC_HBA_KMAC_EXTENSION)
#   include "sha3.h"
#else
#   include "sha2.h"
#endif

 
QSC_CPLUSPLUS_ENABLED_START

typedef enum
{
    qsc_aes_cipher_128 = 0x01U,   
    qsc_aes_cipher_256 = 0x02U    
} qsc_aes_cipher_type;

typedef enum
{
    qsc_aes_mode_cbc = 0x01U,   
    qsc_aes_mode_ctr = 0x02U,   
    qsc_aes_mode_ecb = 0x03U    
} qsc_aes_cipher_mode;
 
/***********************************
*     AES CONSTANTS AND SIZES      *
***********************************/

#define QSC_AES_BLOCK_SIZE 16ULL

#define QSC_AES_IV_SIZE 16ULL

#define QSC_AES128_KEY_SIZE 16ULL

#define QSC_AES256_KEY_SIZE 32ULL

#define QSC_GCM256_MAC_SIZE 16ULL

#define QSC_GCM_MAXAAD_SIZE 256ULL

#define QSC_GCM_NONCE_SIZE 12ULL

#define QSC_HBA256_MAC_SIZE 32ULL

#define QSC_HBA_MAXAAD_SIZE 256ULL

#define QSC_HBA_MAXINFO_SIZE 256ULL

#if defined(QSC_HBA_KMAC_EXTENSION)
#   define QSC_HBA_KMAC_AUTH
#endif

QSC_EXPORT_API typedef struct
{
    const uint8_t* key;   
    size_t keylen;        
    uint8_t* nonce;       
    size_t noncelen;      
    const uint8_t* info;  
    size_t infolen;       
} qsc_aes_keyparams;

QSC_EXPORT_API typedef struct
{
#if defined(QSC_SYSTEM_AESNI_ENABLED)
    __m128i roundkeys[31];         
#   if defined(QSC_SYSTEM_HAS_AVX512)
        __m512i roundkeysw[31];     
#   endif
#else
    uint32_t roundkeys[124];       
#endif
    size_t roundkeylen;              
    size_t rounds;                    
    uint8_t* nonce;                    
} qsc_aes_state;
 
/* Function Declarations */

QSC_EXPORT_API void qsc_aes_dispose(qsc_aes_state* ctx);

QSC_EXPORT_API void qsc_aes_initialize(qsc_aes_state* ctx, const qsc_aes_keyparams* keyparams, bool encryption, qsc_aes_cipher_type ctype);
 
/* CBC Mode */

QSC_EXPORT_API void qsc_aes_cbc_decrypt(qsc_aes_state* ctx, uint8_t* output, size_t* outputlen, const uint8_t* input, size_t length);

QSC_EXPORT_API void qsc_aes_cbc_encrypt(qsc_aes_state* ctx, uint8_t* output, const uint8_t* input, size_t length);

QSC_EXPORT_API void qsc_aes_cbc_decrypt_block(qsc_aes_state* ctx, uint8_t* output, const uint8_t* input);

QSC_EXPORT_API void qsc_aes_cbc_encrypt_block(qsc_aes_state* ctx, uint8_t* output, const uint8_t* input);
 
/* PKCS#7 Padding */

QSC_EXPORT_API void qsc_pkcs7_add_padding(uint8_t* input, size_t length);

QSC_EXPORT_API size_t qsc_pkcs7_padding_length(const uint8_t* input);
 
/* CTR Mode */

QSC_EXPORT_API void qsc_aes_ctrbe_transform(qsc_aes_state* ctx, uint8_t* output, const uint8_t* input, size_t length);

QSC_EXPORT_API void qsc_aes_ctrle_transform(qsc_aes_state* ctx, uint8_t* output, const uint8_t* input, size_t length);
 
/* ECB Mode */

QSC_EXPORT_API void qsc_aes_ecb_decrypt_block(const qsc_aes_state* ctx, uint8_t* output, const uint8_t* input);

QSC_EXPORT_API void qsc_aes_ecb_encrypt_block(const qsc_aes_state* ctx, uint8_t* output, const uint8_t* input);
 
/* HBA-256 Authenticated Encryption */

QSC_EXPORT_API typedef struct
{
#if defined(QSC_HBA_KMAC_EXTENSION)
    qsc_keccak_state kstate;          
#else
    qsc_hmac256_state kstate;            
#endif
    qsc_aes_state cstate;                
    uint64_t counter;                    
    uint8_t mkey[QSC_HBA256_MAC_SIZE];   
    uint8_t cust[QSC_HBA_MAXINFO_SIZE]; 
    size_t custlen;                      
    bool encrypt;                        
} qsc_aes_hba256_state;

QSC_EXPORT_API void qsc_aes_hba256_dispose(qsc_aes_hba256_state* ctx);

QSC_EXPORT_API void qsc_aes_hba256_initialize(qsc_aes_hba256_state* ctx, const qsc_aes_keyparams* keyparams, bool encrypt);

QSC_EXPORT_API void qsc_aes_hba256_set_associated(qsc_aes_hba256_state* ctx, const uint8_t* data, size_t datalen);

QSC_EXPORT_API bool qsc_aes_hba256_transform(qsc_aes_hba256_state* ctx, uint8_t* output, const uint8_t* input, size_t length);
 
/* GCM-AES-256 RFC 5288/5116 */

QSC_EXPORT_API typedef struct qsc_aes_gcm256_state 
{
    qsc_aes_state cstate;                   
    uint8_t C[QSC_AES_BLOCK_SIZE];           
    uint8_t H[QSC_AES_BLOCK_SIZE];          
    uint8_t J0[QSC_AES_BLOCK_SIZE];         
    uint8_t S[QSC_AES_BLOCK_SIZE];          
    uint64_t aadlen;                      
    uint64_t ctlen;                            
 
} qsc_aes_gcm256_state;

QSC_EXPORT_API bool qsc_aes_gcm256_decrypt(qsc_aes_gcm256_state* ctx, uint8_t* output, const uint8_t* input, size_t length);

QSC_EXPORT_API void qsc_aes_gcm256_dispose(qsc_aes_gcm256_state* ctx);

QSC_EXPORT_API void qsc_aes_gcm256_encrypt(qsc_aes_gcm256_state* ctx, uint8_t* output, const uint8_t* input, size_t length);

QSC_EXPORT_API void qsc_aes_gcm256_initialize(qsc_aes_gcm256_state* ctx, const qsc_aes_keyparams* keyparams);

QSC_EXPORT_API void qsc_aes_gcm256_set_associated(qsc_aes_gcm256_state* ctx, const uint8_t* data, size_t datalen);
 
QSC_CPLUSPLUS_ENABLED_END
 
#endif