d023cd6c95
The rewritten openssl backend does not support this flag anymore, and it was inherently dangerour. Drop it (ignored for compatibility)
42 lines
810 B
Go
42 lines
810 B
Go
// +build !without_openssl
|
|
|
|
package stupidgcm
|
|
|
|
// #include <openssl/evp.h>
|
|
import "C"
|
|
|
|
import (
|
|
"crypto/cipher"
|
|
"log"
|
|
)
|
|
|
|
const (
|
|
// BuiltWithoutOpenssl indicates if openssl been disabled at compile-time
|
|
BuiltWithoutOpenssl = false
|
|
|
|
keyLen = 32
|
|
ivLen = 16
|
|
tagLen = 16
|
|
)
|
|
|
|
type stupidGCM struct {
|
|
stupidAEADCommon
|
|
}
|
|
|
|
// NewAES256GCM returns a new AES-256-GCM cipher that satisfies the cipher.AEAD interface.
|
|
//
|
|
// Only 32-bytes keys and 16-byte IVs are supported.
|
|
func NewAES256GCM(keyIn []byte) cipher.AEAD {
|
|
if len(keyIn) != keyLen {
|
|
log.Panicf("Only %d-byte keys are supported", keyLen)
|
|
}
|
|
return &stupidGCM{
|
|
stupidAEADCommon{
|
|
// Create a private copy of the key
|
|
key: append([]byte{}, keyIn...),
|
|
openSSLEVPCipher: C.EVP_aes_256_gcm(),
|
|
nonceSize: ivLen,
|
|
},
|
|
}
|
|
}
|