commit 0e782a9eb3feeb0cd9445be79cedbf9ce767dc45
author Adam Langley <agl@google.com> Fri Mar 13 12:11:00 2015 -0700
committer Adam Langley <agl@google.com> Wed Mar 18 21:16:55 2015 +0000
tree 592f7e86e3d67f677640d5fdd32123e8e0f34a4c
parent 52f9f62283fcb1061f6d8487dace6dbc83179aa2

Add AEADs for AES-CTR with HMAC-SHA256.

Change-Id: Id035d2c6ab9c6ae034326c313ffe35e0d035dec1
Reviewed-on: https://boringssl-review.googlesource.com/3911
Reviewed-by: Adam Langley <agl@google.com>

include/openssl/aead.h

diff --git a/include/openssl/aead.h b/include/openssl/aead.h
index 4b8f6cd..b39939d 100644
--- a/include/openssl/aead.h
+++ b/include/openssl/aead.h
@@ -115,6 +115,15 @@
  * See |EVP_aead_aes_128_key_wrap| for details. */
 OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_256_key_wrap(void);
 
+/* EVP_aead_aes_128_ctr_hmac_sha256 is AES-128 in CTR mode with HMAC-SHA256 for
+ * authentication. The nonce is 12 bytes; the bottom 32-bits are used as the
+ * block counter, thus the maximum plaintext size is 64GB. */
+OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_128_ctr_hmac_sha256(void);
+
+/* EVP_aead_aes_128_ctr_hmac_sha256 is AES-256 in CTR mode with HMAC-SHA256 for
+ * authentication. See |EVP_aead_aes_128_ctr_hmac_sha256| for details. */
+OPENSSL_EXPORT const EVP_AEAD *EVP_aead_aes_256_ctr_hmac_sha256(void);
+
 /* EVP_has_aes_hardware returns one if we enable hardware support for fast and
  * constant-time AES-GCM. */
 OPENSSL_EXPORT int EVP_has_aes_hardware(void);