Botan 3.4.0
Crypto and TLS for C&
Public Types | Public Member Functions | Static Public Member Functions | List of all members
Botan::TLS::Signature_Scheme Class Reference

#include <tls_signature_scheme.h>

Public Types

enum  Code : uint16_t {
  NONE = 0x0000 , RSA_PKCS1_SHA1 = 0x0201 , RSA_PKCS1_SHA256 = 0x0401 , RSA_PKCS1_SHA384 = 0x0501 ,
  RSA_PKCS1_SHA512 = 0x0601 , ECDSA_SHA1 = 0x0203 , ECDSA_SHA256 = 0x0403 , ECDSA_SHA384 = 0x0503 ,
  ECDSA_SHA512 = 0x0603 , RSA_PSS_SHA256 = 0x0804 , RSA_PSS_SHA384 = 0x0805 , RSA_PSS_SHA512 = 0x0806 ,
  EDDSA_25519 = 0x0807 , EDDSA_448 = 0x0808
}
 

Public Member Functions

AlgorithmIdentifier algorithm_identifier () const noexcept
 
std::string algorithm_name () const noexcept
 
std::optional< Signature_Formatformat () const noexcept
 
std::string hash_function_name () const noexcept
 
bool is_available () const noexcept
 
bool is_compatible_with (const Protocol_Version &protocol_version) const noexcept
 
bool is_set () const noexcept
 
bool is_suitable_for (const Private_Key &private_key) const noexcept
 
AlgorithmIdentifier key_algorithm_identifier () const noexcept
 
bool operator!= (const Signature_Scheme &rhs) const
 
bool operator== (const Signature_Scheme &rhs) const
 
std::string padding_string () const noexcept
 
 Signature_Scheme ()
 
 Signature_Scheme (Signature_Scheme::Code wire_code)
 
 Signature_Scheme (uint16_t wire_code)
 
std::string to_string () const noexcept
 
Signature_Scheme::Code wire_code () const noexcept
 

Static Public Member Functions

static const std::vector< Signature_Scheme > & all_available_schemes ()
 

Detailed Description

Definition at line 23 of file tls_signature_scheme.h.

Member Enumeration Documentation

◆ Code

enum Botan::TLS::Signature_Scheme::Code : uint16_t

Matches with wire encoding

Note that this is intentionally left as a bare enum. It emulates the Botan 2 API where Signature_Scheme was an enum class with associated free-standing functions. Leaving it as a bare enum resembles the legacy user-facing API.

Enumerator
NONE 
RSA_PKCS1_SHA1 
RSA_PKCS1_SHA256 
RSA_PKCS1_SHA384 
RSA_PKCS1_SHA512 
ECDSA_SHA1 
ECDSA_SHA256 
ECDSA_SHA384 
ECDSA_SHA512 
RSA_PSS_SHA256 
RSA_PSS_SHA384 
RSA_PSS_SHA512 
EDDSA_25519 
EDDSA_448 

Definition at line 32 of file tls_signature_scheme.h.

32 : uint16_t {
33 NONE = 0x0000,
34
35 RSA_PKCS1_SHA1 = 0x0201, // not implemented
36 RSA_PKCS1_SHA256 = 0x0401,
37 RSA_PKCS1_SHA384 = 0x0501,
38 RSA_PKCS1_SHA512 = 0x0601,
39
40 ECDSA_SHA1 = 0x0203, // not implemented
41 ECDSA_SHA256 = 0x0403,
42 ECDSA_SHA384 = 0x0503,
43 ECDSA_SHA512 = 0x0603,
44
45 RSA_PSS_SHA256 = 0x0804,
46 RSA_PSS_SHA384 = 0x0805,
47 RSA_PSS_SHA512 = 0x0806,
48
49 EDDSA_25519 = 0x0807,
50 EDDSA_448 = 0x0808,
51 };
Botan::TLS::Signature_Scheme::RSA_PKCS1_SHA1
@ RSA_PKCS1_SHA1
Definition tls_signature_scheme.h:35
Botan::TLS::Signature_Scheme::ECDSA_SHA384
@ ECDSA_SHA384
Definition tls_signature_scheme.h:42
Botan::TLS::Signature_Scheme::NONE
@ NONE
Definition tls_signature_scheme.h:33
Botan::TLS::Signature_Scheme::EDDSA_25519
@ EDDSA_25519
Definition tls_signature_scheme.h:49
Botan::TLS::Signature_Scheme::RSA_PSS_SHA256
@ RSA_PSS_SHA256
Definition tls_signature_scheme.h:45
Botan::TLS::Signature_Scheme::ECDSA_SHA1
@ ECDSA_SHA1
Definition tls_signature_scheme.h:40
Botan::TLS::Signature_Scheme::ECDSA_SHA512
@ ECDSA_SHA512
Definition tls_signature_scheme.h:43
Botan::TLS::Signature_Scheme::RSA_PSS_SHA384
@ RSA_PSS_SHA384
Definition tls_signature_scheme.h:46
Botan::TLS::Signature_Scheme::RSA_PKCS1_SHA512
@ RSA_PKCS1_SHA512
Definition tls_signature_scheme.h:38
Botan::TLS::Signature_Scheme::RSA_PKCS1_SHA384
@ RSA_PKCS1_SHA384
Definition tls_signature_scheme.h:37
Botan::TLS::Signature_Scheme::EDDSA_448
@ EDDSA_448
Definition tls_signature_scheme.h:50
Botan::TLS::Signature_Scheme::RSA_PSS_SHA512
@ RSA_PSS_SHA512
Definition tls_signature_scheme.h:47
Botan::TLS::Signature_Scheme::RSA_PKCS1_SHA256
@ RSA_PKCS1_SHA256
Definition tls_signature_scheme.h:36
Botan::TLS::Signature_Scheme::ECDSA_SHA256
@ ECDSA_SHA256
Definition tls_signature_scheme.h:41

Constructor & Destructor Documentation

◆ Signature_Scheme() [1/3]

Botan::TLS::Signature_Scheme::Signature_Scheme ( )

Construct an uninitialized / invalid scheme

Definition at line 51 of file tls_signature_scheme.cpp.

51: m_code(NONE) {}

◆ Signature_Scheme() [2/3]

Botan::TLS::Signature_Scheme::Signature_Scheme ( uint16_t wire_code)

Definition at line 53 of file tls_signature_scheme.cpp.

53: Signature_Scheme(Signature_Scheme::Code(wire_code)) {}
Botan::TLS::Signature_Scheme::Code
Code
Definition tls_signature_scheme.h:32
Botan::TLS::Signature_Scheme::wire_code
Signature_Scheme::Code wire_code() const noexcept
Definition tls_signature_scheme.h:68
Botan::TLS::Signature_Scheme::Signature_Scheme
Signature_Scheme()
Definition tls_signature_scheme.cpp:51

◆ Signature_Scheme() [3/3]

Botan::TLS::Signature_Scheme::Signature_Scheme ( Signature_Scheme::Code wire_code)

Definition at line 55 of file tls_signature_scheme.cpp.

55: m_code(wire_code) {}

Member Function Documentation

◆ algorithm_identifier()

AlgorithmIdentifier Botan::TLS::Signature_Scheme::algorithm_identifier ( ) const
noexcept

Definition at line 226 of file tls_signature_scheme.cpp.

226 {
227 switch(m_code) {
228 case RSA_PKCS1_SHA1:
229 return AlgorithmIdentifier(OID::from_string("RSA/EMSA3(SHA-1)"), AlgorithmIdentifier::USE_NULL_PARAM);
230 case RSA_PKCS1_SHA256:
231 return AlgorithmIdentifier(OID::from_string("RSA/EMSA3(SHA-256)"), AlgorithmIdentifier::USE_NULL_PARAM);
232 case RSA_PKCS1_SHA384:
233 return AlgorithmIdentifier(OID::from_string("RSA/EMSA3(SHA-384)"), AlgorithmIdentifier::USE_NULL_PARAM);
234 case RSA_PKCS1_SHA512:
235 return AlgorithmIdentifier(OID::from_string("RSA/EMSA3(SHA-512)"), AlgorithmIdentifier::USE_NULL_PARAM);
236
237 case ECDSA_SHA1:
238 return AlgorithmIdentifier(OID::from_string("ECDSA/SHA-1"), AlgorithmIdentifier::USE_EMPTY_PARAM);
239 case ECDSA_SHA256:
240 return AlgorithmIdentifier(OID::from_string("ECDSA/SHA-256"), AlgorithmIdentifier::USE_EMPTY_PARAM);
241 case ECDSA_SHA384:
242 return AlgorithmIdentifier(OID::from_string("ECDSA/SHA-384"), AlgorithmIdentifier::USE_EMPTY_PARAM);
243 case ECDSA_SHA512:
244 return AlgorithmIdentifier(OID::from_string("ECDSA/SHA-512"), AlgorithmIdentifier::USE_EMPTY_PARAM);
245
246 case RSA_PSS_SHA256:
247 return AlgorithmIdentifier(OID::from_string("RSA/EMSA4"), PSS_Params("SHA-256", 32).serialize());
248 case RSA_PSS_SHA384:
249 return AlgorithmIdentifier(OID::from_string("RSA/EMSA4"), PSS_Params("SHA-384", 48).serialize());
250 case RSA_PSS_SHA512:
251 return AlgorithmIdentifier(OID::from_string("RSA/EMSA4"), PSS_Params("SHA-512", 64).serialize());
252
253 default:
254 // Note that Ed25519 and Ed448 end up here
255 return AlgorithmIdentifier();
256 }
257}
Botan::OID::from_string
static OID from_string(std::string_view str)
Definition asn1_oid.cpp:74

References ECDSA_SHA1, ECDSA_SHA256, ECDSA_SHA384, ECDSA_SHA512, Botan::OID::from_string(), RSA_PKCS1_SHA1, RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384, RSA_PSS_SHA512, Botan::AlgorithmIdentifier::USE_EMPTY_PARAM, and Botan::AlgorithmIdentifier::USE_NULL_PARAM.

◆ algorithm_name()

std::string Botan::TLS::Signature_Scheme::algorithm_name ( ) const
noexcept

Definition at line 169 of file tls_signature_scheme.cpp.

169 {
170 switch(m_code) {
171 case RSA_PKCS1_SHA1:
172 case RSA_PKCS1_SHA256:
173 case RSA_PKCS1_SHA384:
174 case RSA_PKCS1_SHA512:
175 case RSA_PSS_SHA256:
176 case RSA_PSS_SHA384:
177 case RSA_PSS_SHA512:
178 return "RSA";
179
180 case ECDSA_SHA1:
181 case ECDSA_SHA256:
182 case ECDSA_SHA384:
183 case ECDSA_SHA512:
184 return "ECDSA";
185
186 case EDDSA_25519:
187 return "Ed25519";
188
189 case EDDSA_448:
190 return "Ed448";
191
192 default:
193 return "Unknown algorithm";
194 }
195}

References ECDSA_SHA1, ECDSA_SHA256, ECDSA_SHA384, ECDSA_SHA512, EDDSA_25519, EDDSA_448, RSA_PKCS1_SHA1, RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384, and RSA_PSS_SHA512.

Referenced by Botan::TLS::Handshake_State::parse_sig_format().

◆ all_available_schemes()

const std::vector< Signature_Scheme > & Botan::TLS::Signature_Scheme::all_available_schemes ( )
static
Returns
all available signature schemes

Definition at line 21 of file tls_signature_scheme.cpp.

21 {
22 /*
23 * This is ordered in some approximate order of preference
24 */
25 static const std::vector<Signature_Scheme> all_schemes = {
26
27 // EdDSA 25519 is currently not supported as a signature scheme for certificates
28 // certificate authentication.
29 // See: https://github.com/randombit/botan/pull/2958#discussion_r851294715
30 //
31 // #if defined(BOTAN_HAS_ED25519)
32 // EDDSA_25519,
33 // #endif
34
35 RSA_PSS_SHA384,
36 RSA_PSS_SHA256,
37 RSA_PSS_SHA512,
38
39 RSA_PKCS1_SHA384,
40 RSA_PKCS1_SHA512,
41 RSA_PKCS1_SHA256,
42
43 ECDSA_SHA384,
44 ECDSA_SHA512,
45 ECDSA_SHA256,
46 };
47
48 return all_schemes;
49}

References ECDSA_SHA256, ECDSA_SHA384, ECDSA_SHA512, RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384, and RSA_PSS_SHA512.

Referenced by Botan::TLS::Policy::allowed_signature_schemes(), and is_available().

◆ format()

std::optional< Signature_Format > Botan::TLS::Signature_Scheme::format ( ) const
noexcept

Definition at line 259 of file tls_signature_scheme.cpp.

259 {
260 switch(m_code) {
261 case RSA_PKCS1_SHA1:
262 case RSA_PKCS1_SHA256:
263 case RSA_PKCS1_SHA384:
264 case RSA_PKCS1_SHA512:
265 case RSA_PSS_SHA256:
266 case RSA_PSS_SHA384:
267 case RSA_PSS_SHA512:
268 return Signature_Format::Standard;
269
270 case ECDSA_SHA1:
271 case ECDSA_SHA256:
272 case ECDSA_SHA384:
273 case ECDSA_SHA512:
274 case EDDSA_25519:
275 case EDDSA_448:
276 return Signature_Format::DerSequence;
277
278 default:
279 return std::nullopt;
280 }
281}

References Botan::DerSequence, ECDSA_SHA1, ECDSA_SHA256, ECDSA_SHA384, ECDSA_SHA512, EDDSA_25519, EDDSA_448, RSA_PKCS1_SHA1, RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384, RSA_PSS_SHA512, and Botan::Standard.

Referenced by Botan::TLS::Certificate_Verify_13::Certificate_Verify_13(), Botan::TLS::Handshake_State::choose_sig_format(), Botan::TLS::Handshake_State::parse_sig_format(), and Botan::TLS::Certificate_Verify_13::verify().

◆ hash_function_name()

std::string Botan::TLS::Signature_Scheme::hash_function_name ( ) const
noexcept

Definition at line 102 of file tls_signature_scheme.cpp.

102 {
103 switch(m_code) {
104 case RSA_PKCS1_SHA1:
105 case ECDSA_SHA1:
106 return "SHA-1";
107
108 case ECDSA_SHA256:
109 case RSA_PKCS1_SHA256:
110 case RSA_PSS_SHA256:
111 return "SHA-256";
112
113 case ECDSA_SHA384:
114 case RSA_PKCS1_SHA384:
115 case RSA_PSS_SHA384:
116 return "SHA-384";
117
118 case ECDSA_SHA512:
119 case RSA_PKCS1_SHA512:
120 case RSA_PSS_SHA512:
121 return "SHA-512";
122
123 case EDDSA_25519:
124 case EDDSA_448:
125 return "Pure";
126
127 default:
128 return "Unknown hash function";
129 }
130}

References ECDSA_SHA1, ECDSA_SHA256, ECDSA_SHA384, ECDSA_SHA512, EDDSA_25519, EDDSA_448, RSA_PKCS1_SHA1, RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384, and RSA_PSS_SHA512.

Referenced by Botan::TLS::Handshake_State::choose_sig_format(), and Botan::TLS::Handshake_State::parse_sig_format().

◆ is_available()

bool Botan::TLS::Signature_Scheme::is_available ( ) const
noexcept
Returns
true if support for this scheme is implemented in this Botan build

Definition at line 57 of file tls_signature_scheme.cpp.

57 {
58 return value_exists(Signature_Scheme::all_available_schemes(), *this);
59}
Botan::TLS::Signature_Scheme::all_available_schemes
static const std::vector< Signature_Scheme > & all_available_schemes()
Definition tls_signature_scheme.cpp:21
Botan::value_exists
bool value_exists(const std::vector< T > &vec, const OT &val)
Definition stl_util.h:118

References all_available_schemes(), and Botan::value_exists().

Referenced by Botan::TLS::Certificate_Verify_13::Certificate_Verify_13(), Botan::TLS::Certificate_Verify_13::Certificate_Verify_13(), Botan::TLS::Handshake_State::parse_sig_format(), and Botan::TLS::Certificate_Verify_13::verify().

◆ is_compatible_with()

bool Botan::TLS::Signature_Scheme::is_compatible_with ( const Protocol_Version & protocol_version) const
noexcept

Definition at line 283 of file tls_signature_scheme.cpp.

283 {
284 // RFC 8446 4.4.3:
285 // The SHA-1 algorithm MUST NOT be used in any signatures of
286 // CertificateVerify messages.
287 //
288 // Note that Botan enforces that for TLS 1.2 as well.
289 if(hash_function_name() == "SHA-1") {
290 return false;
291 }
292
293 // RFC 8446 4.4.3:
294 // RSA signatures MUST use an RSASSA-PSS algorithm, regardless of whether
295 // RSASSA-PKCS1-v1_5 algorithms appear in "signature_algorithms".
296 //
297 // Note that this is enforced for TLS 1.3 and above only.
298 if(!protocol_version.is_pre_tls_13() && (m_code == RSA_PKCS1_SHA1 || m_code == RSA_PKCS1_SHA256 ||
299 m_code == RSA_PKCS1_SHA384 || m_code == RSA_PKCS1_SHA512)) {
300 return false;
301 }
302
303 return true;
304}
Botan::TLS::Signature_Scheme::hash_function_name
std::string hash_function_name() const noexcept
Definition tls_signature_scheme.cpp:102

Referenced by Botan::TLS::Certificate_Verify_13::Certificate_Verify_13(), Botan::TLS::Certificate_Verify_13::Certificate_Verify_13(), and Botan::TLS::Handshake_State::parse_sig_format().

◆ is_set()

bool Botan::TLS::Signature_Scheme::is_set ( ) const
noexcept
Returns
true if the wire_code is set to any value other than NONE

Definition at line 61 of file tls_signature_scheme.cpp.

61 {
62 return m_code != NONE;
63}

References NONE.

Referenced by Botan::TLS::Certificate_Verify::Certificate_Verify(), and Botan::TLS::Certificate_Verify::serialize().

◆ is_suitable_for()

bool Botan::TLS::Signature_Scheme::is_suitable_for ( const Private_Key & private_key) const
noexcept

Definition at line 306 of file tls_signature_scheme.cpp.

306 {
307 if(algorithm_name() != private_key.algo_name()) {
308 return false;
309 }
310
311 // The ECDSA private key length must match the utilized hash output length.
312 const auto keylen = private_key.key_length();
313 if(keylen <= 250) {
314 return false;
315 }
316
317 if(m_code == ECDSA_SHA256 && !(keylen >= 250 && keylen <= 350)) {
318 return false;
319 }
320
321 if(m_code == ECDSA_SHA384 && !(keylen >= 350 && keylen <= 450)) {
322 return false;
323 }
324
325 if(m_code == ECDSA_SHA512 && !(keylen >= 450 && keylen <= 550)) {
326 return false;
327 }
328
329 return true;
330}
Botan::TLS::Signature_Scheme::algorithm_name
std::string algorithm_name() const noexcept
Definition tls_signature_scheme.cpp:169

◆ key_algorithm_identifier()

AlgorithmIdentifier Botan::TLS::Signature_Scheme::key_algorithm_identifier ( ) const
noexcept

Definition at line 197 of file tls_signature_scheme.cpp.

197 {
198 switch(m_code) {
199 // case ECDSA_SHA1: not defined
200 case ECDSA_SHA256:
201 return {"ECDSA", EC_Group("secp256r1").DER_encode(EC_Group_Encoding::NamedCurve)};
202 case ECDSA_SHA384:
203 return {"ECDSA", EC_Group("secp384r1").DER_encode(EC_Group_Encoding::NamedCurve)};
204 case ECDSA_SHA512:
205 return {"ECDSA", EC_Group("secp521r1").DER_encode(EC_Group_Encoding::NamedCurve)};
206
207 case EDDSA_25519:
208 return {"Ed25519", AlgorithmIdentifier::USE_EMPTY_PARAM};
209 case EDDSA_448:
210 return {"Ed448", AlgorithmIdentifier::USE_EMPTY_PARAM};
211
212 case RSA_PKCS1_SHA1:
213 case RSA_PKCS1_SHA256:
214 case RSA_PKCS1_SHA384:
215 case RSA_PKCS1_SHA512:
216 case RSA_PSS_SHA256:
217 case RSA_PSS_SHA384:
218 case RSA_PSS_SHA512:
219 return {"RSA", AlgorithmIdentifier::USE_NULL_PARAM};
220
221 default:
222 return AlgorithmIdentifier();
223 }
224}

References Botan::EC_Group::DER_encode(), ECDSA_SHA256, ECDSA_SHA384, ECDSA_SHA512, EDDSA_25519, EDDSA_448, Botan::NamedCurve, RSA_PKCS1_SHA1, RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384, RSA_PSS_SHA512, Botan::AlgorithmIdentifier::USE_EMPTY_PARAM, and Botan::AlgorithmIdentifier::USE_NULL_PARAM.

Referenced by Botan::TLS::Certificate_Verify_13::verify().

◆ operator!=()

bool Botan::TLS::Signature_Scheme::operator!= ( const Signature_Scheme & rhs) const
inline

Definition at line 93 of file tls_signature_scheme.h.

93{ return !(*this == rhs); }

◆ operator==()

bool Botan::TLS::Signature_Scheme::operator== ( const Signature_Scheme & rhs) const
inline

Definition at line 91 of file tls_signature_scheme.h.

91{ return m_code == rhs.m_code; }

◆ padding_string()

std::string Botan::TLS::Signature_Scheme::padding_string ( ) const
noexcept

Definition at line 132 of file tls_signature_scheme.cpp.

132 {
133 switch(m_code) {
134 case RSA_PKCS1_SHA1:
135 return "EMSA_PKCS1(SHA-1)";
136 case RSA_PKCS1_SHA256:
137 return "EMSA_PKCS1(SHA-256)";
138 case RSA_PKCS1_SHA384:
139 return "EMSA_PKCS1(SHA-384)";
140 case RSA_PKCS1_SHA512:
141 return "EMSA_PKCS1(SHA-512)";
142
143 case ECDSA_SHA1:
144 return "SHA-1";
145 case ECDSA_SHA256:
146 return "SHA-256";
147 case ECDSA_SHA384:
148 return "SHA-384";
149 case ECDSA_SHA512:
150 return "SHA-512";
151
152 case RSA_PSS_SHA256:
153 return "PSSR(SHA-256,MGF1,32)";
154 case RSA_PSS_SHA384:
155 return "PSSR(SHA-384,MGF1,48)";
156 case RSA_PSS_SHA512:
157 return "PSSR(SHA-512,MGF1,64)";
158
159 case EDDSA_25519:
160 return "Pure";
161 case EDDSA_448:
162 return "Pure";
163
164 default:
165 return "Unknown padding";
166 }
167}

References ECDSA_SHA1, ECDSA_SHA256, ECDSA_SHA384, ECDSA_SHA512, EDDSA_25519, EDDSA_448, RSA_PKCS1_SHA1, RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384, and RSA_PSS_SHA512.

Referenced by Botan::TLS::Certificate_Verify_13::Certificate_Verify_13(), Botan::TLS::Handshake_State::choose_sig_format(), Botan::TLS::Handshake_State::parse_sig_format(), and Botan::TLS::Certificate_Verify_13::verify().

◆ to_string()

std::string Botan::TLS::Signature_Scheme::to_string ( ) const
noexcept

Definition at line 65 of file tls_signature_scheme.cpp.

65 {
66 switch(m_code) {
67 case RSA_PKCS1_SHA1:
68 return "RSA_PKCS1_SHA1";
69 case RSA_PKCS1_SHA256:
70 return "RSA_PKCS1_SHA256";
71 case RSA_PKCS1_SHA384:
72 return "RSA_PKCS1_SHA384";
73 case RSA_PKCS1_SHA512:
74 return "RSA_PKCS1_SHA512";
75
76 case ECDSA_SHA1:
77 return "ECDSA_SHA1";
78 case ECDSA_SHA256:
79 return "ECDSA_SHA256";
80 case ECDSA_SHA384:
81 return "ECDSA_SHA384";
82 case ECDSA_SHA512:
83 return "ECDSA_SHA512";
84
85 case RSA_PSS_SHA256:
86 return "RSA_PSS_SHA256";
87 case RSA_PSS_SHA384:
88 return "RSA_PSS_SHA384";
89 case RSA_PSS_SHA512:
90 return "RSA_PSS_SHA512";
91
92 case EDDSA_25519:
93 return "EDDSA_25519";
94 case EDDSA_448:
95 return "EDDSA_448";
96
97 default:
98 return "Unknown signature scheme: " + std::to_string(m_code);
99 }
100}

References ECDSA_SHA1, ECDSA_SHA256, ECDSA_SHA384, ECDSA_SHA512, EDDSA_25519, EDDSA_448, RSA_PKCS1_SHA1, RSA_PKCS1_SHA256, RSA_PKCS1_SHA384, RSA_PKCS1_SHA512, RSA_PSS_SHA256, RSA_PSS_SHA384, and RSA_PSS_SHA512.

◆ wire_code()

Signature_Scheme::Code Botan::TLS::Signature_Scheme::wire_code ( ) const
inlinenoexcept

Definition at line 68 of file tls_signature_scheme.h.

68{ return m_code; }

Referenced by Botan::TLS::Certificate_Verify::serialize().

The documentation for this class was generated from the following files:
Generated by doxygen 1.10.0