Botan 3.0.0-alpha0
Crypto and TLS for C&
ccm.h
Go to the documentation of this file.
1/*
2* CCM Mode
3* (C) 2013 Jack Lloyd
4* (C) 2016 Daniel Neus, Rohde & Schwarz Cybersecurity
5*
6* Botan is released under the Simplified BSD License (see license.txt)
7*/
8
9#ifndef BOTAN_AEAD_CCM_H_
10#define BOTAN_AEAD_CCM_H_
11
12#include <botan/aead.h>
13#include <botan/block_cipher.h>
14
15namespace Botan {
16
17/**
18* Base class for CCM encryption and decryption
19* @see RFC 3610
20*/
21class CCM_Mode : public AEAD_Mode
22 {
23 public:
24 size_t process(uint8_t buf[], size_t sz) override;
25
26 void set_associated_data(const uint8_t ad[], size_t ad_len) override;
27
28 bool associated_data_requires_key() const override { return false; }
29
30 std::string name() const override;
31
32 size_t update_granularity() const override;
33
34 Key_Length_Specification key_spec() const override;
35
36 bool valid_nonce_length(size_t) const override;
37
38 size_t default_nonce_length() const override;
39
40 void clear() override;
41
42 void reset() override;
43
44 size_t tag_size() const override { return m_tag_size; }
45
46 protected:
47 CCM_Mode(std::unique_ptr<BlockCipher> cipher, size_t tag_size, size_t L);
48
49 size_t L() const { return m_L; }
50
51 const BlockCipher& cipher() const { return *m_cipher; }
52
53 void encode_length(uint64_t len, uint8_t out[]);
54
55 static void inc(secure_vector<uint8_t>& C);
56
57 const secure_vector<uint8_t>& ad_buf() const { return m_ad_buf; }
58
59 secure_vector<uint8_t>& msg_buf() { return m_msg_buf; }
60
61 secure_vector<uint8_t> format_b0(size_t msg_size);
62 secure_vector<uint8_t> format_c0();
63 private:
64 void start_msg(const uint8_t nonce[], size_t nonce_len) override;
65
66 void key_schedule(const uint8_t key[], size_t length) override;
67
68 const size_t m_tag_size;
69 const size_t m_L;
70
71 std::unique_ptr<BlockCipher> m_cipher;
72 secure_vector<uint8_t> m_nonce, m_msg_buf, m_ad_buf;
73 };
74
75/**
76* CCM Encryption
77*/
78class CCM_Encryption final : public CCM_Mode
79 {
80 public:
81 /**
82 * @param cipher a 128-bit block cipher
83 * @param tag_size is how big the auth tag will be (even values
84 * between 4 and 16 are accepted)
85 * @param L length of L parameter. The total message length
86 * must be less than 2**L bytes, and the nonce is 15-L bytes.
87 */
88 CCM_Encryption(std::unique_ptr<BlockCipher> cipher, size_t tag_size = 16, size_t L = 3) :
89 CCM_Mode(std::move(cipher), tag_size, L) {}
90
91 void finish(secure_vector<uint8_t>& final_block, size_t offset = 0) override;
92
93 size_t output_length(size_t input_length) const override
94 { return input_length + tag_size(); }
95
96 size_t minimum_final_size() const override { return 0; }
97 };
98
99/**
100* CCM Decryption
101*/
102class CCM_Decryption final : public CCM_Mode
103 {
104 public:
105 /**
106 * @param cipher a 128-bit block cipher
107 * @param tag_size is how big the auth tag will be (even values
108 * between 4 and 16 are accepted)
109 * @param L length of L parameter. The total message length
110 * must be less than 2**L bytes, and the nonce is 15-L bytes.
111 */
112 CCM_Decryption(std::unique_ptr<BlockCipher> cipher, size_t tag_size = 16, size_t L = 3) :
113 CCM_Mode(std::move(cipher), tag_size, L) {}
114
115 void finish(secure_vector<uint8_t>& final_block, size_t offset = 0) override;
116
117 size_t output_length(size_t input_length) const override
118 {
119 BOTAN_ASSERT(input_length >= tag_size(), "Sufficient input");
120 return input_length - tag_size();
121 }
122
123 size_t minimum_final_size() const override { return tag_size(); }
124 };
125
126}
127
128#endif
BOTAN_ASSERT
#define BOTAN_ASSERT(expr, assertion_made)
Definition: assert.h:54
Botan::AEAD_Mode
Definition: aead.h:23
Botan::CCM_Decryption
Definition: ccm.h:103
Botan::CCM_Decryption::finish
void finish(secure_vector< uint8_t > &final_block, size_t offset=0) override
Definition: ccm.cpp:220
Botan::CCM_Decryption::output_length
size_t output_length(size_t input_length) const override
Definition: ccm.h:117
Botan::CCM_Decryption::CCM_Decryption
CCM_Decryption(std::unique_ptr< BlockCipher > cipher, size_t tag_size=16, size_t L=3)
Definition: ccm.h:112
Botan::CCM_Decryption::minimum_final_size
size_t minimum_final_size() const override
Definition: ccm.h:123
Botan::CCM_Encryption
Definition: ccm.h:79
Botan::CCM_Encryption::finish
void finish(secure_vector< uint8_t > &final_block, size_t offset=0) override
Definition: ccm.cpp:167
Botan::CCM_Encryption::minimum_final_size
size_t minimum_final_size() const override
Definition: ccm.h:96
Botan::CCM_Encryption::output_length
size_t output_length(size_t input_length) const override
Definition: ccm.h:93
Botan::CCM_Encryption::CCM_Encryption
CCM_Encryption(std::unique_ptr< BlockCipher > cipher, size_t tag_size=16, size_t L=3)
Definition: ccm.h:88
Botan::CCM_Mode
Definition: ccm.h:22
Botan::CCM_Mode::clear
void clear() override
Definition: ccm.cpp:35
Botan::CCM_Mode::inc
static void inc(secure_vector< uint8_t > &C)
Definition: ccm.cpp:130
Botan::CCM_Mode::associated_data_requires_key
bool associated_data_requires_key() const override
Definition: ccm.h:28
Botan::CCM_Mode::update_granularity
size_t update_granularity() const override
Definition: ccm.cpp:63
Botan::CCM_Mode::name
std::string name() const override
Definition: ccm.cpp:48
Botan::CCM_Mode::msg_buf
secure_vector< uint8_t > & msg_buf()
Definition: ccm.h:59
Botan::CCM_Mode::cipher
const BlockCipher & cipher() const
Definition: ccm.h:51
Botan::CCM_Mode::default_nonce_length
size_t default_nonce_length() const override
Definition: ccm.cpp:58
Botan::CCM_Mode::process
size_t process(uint8_t buf[], size_t sz) override
Definition: ccm.cpp:110
Botan::CCM_Mode::encode_length
void encode_length(uint64_t len, uint8_t out[])
Definition: ccm.cpp:117
Botan::CCM_Mode::set_associated_data
void set_associated_data(const uint8_t ad[], size_t ad_len) override
Definition: ccm.cpp:84
Botan::CCM_Mode::L
size_t L() const
Definition: ccm.h:49
Botan::CCM_Mode::valid_nonce_length
bool valid_nonce_length(size_t) const override
Definition: ccm.cpp:53
Botan::CCM_Mode::format_c0
secure_vector< uint8_t > format_c0()
Definition: ccm.cpp:153
Botan::CCM_Mode::ad_buf
const secure_vector< uint8_t > & ad_buf() const
Definition: ccm.h:57
Botan::CCM_Mode::key_spec
Key_Length_Specification key_spec() const override
Definition: ccm.cpp:74
Botan::CCM_Mode::tag_size
size_t tag_size() const override
Definition: ccm.h:44
Botan::CCM_Mode::CCM_Mode
CCM_Mode(std::unique_ptr< BlockCipher > cipher, size_t tag_size, size_t L)
Definition: ccm.cpp:20
Botan::CCM_Mode::reset
void reset() override
Definition: ccm.cpp:41
Botan::CCM_Mode::format_b0
secure_vector< uint8_t > format_b0(size_t msg_size)
Definition: ccm.cpp:137
Botan::Key_Length_Specification
Definition: sym_algo.h:20
final
int(* final)(unsigned char *, CTX *)
Definition: commoncrypto_hash.cpp:29
Botan
Definition: alg_id.cpp:13
Botan::secure_vector
std::vector< T, secure_allocator< T > > secure_vector
Definition: secmem.h:65
std
Definition: bigint.h:1077
Generated by doxygen 1.9.3