Botan 3.6.1
Crypto and TLS for C&
Botan::ANSI_X923_Padding Class Referencefinal

#include <mode_pad.h>

Inheritance diagram for Botan::ANSI_X923_Padding:
Botan::BlockCipherModePaddingMethod

Public Member Functions

void add_padding (secure_vector< uint8_t > &buffer, size_t final_block_bytes, size_t block_size) const override
 
std::string name () const override
 
size_t unpad (const uint8_t[], size_t) const override
 
bool valid_blocksize (size_t bs) const override
 

Static Public Member Functions

static std::unique_ptr< BlockCipherModePaddingMethodcreate (std::string_view algo_spec)
 

Detailed Description

ANSI X9.23 Padding

Definition at line 84 of file mode_pad.h.

Member Function Documentation

◆ add_padding()

void Botan::ANSI_X923_Padding::add_padding ( secure_vector< uint8_t > & buffer,
size_t final_block_bytes,
size_t block_size ) const
overridevirtual

Add padding bytes to buffer.

Parameters
bufferdata to pad
final_block_bytessize of the final block in bytes
block_sizesize of each block in bytes

Implements Botan::BlockCipherModePaddingMethod.

Definition at line 116 of file mode_pad.cpp.

116 {
117 /*
118 Padding format is
119 01
120 0002
121 000003
122 ...
123 */
124 BOTAN_DEBUG_ASSERT(last_byte_pos < BS);
125
126 const uint8_t padding_len = static_cast<uint8_t>(BS - last_byte_pos);
127
128 buffer.resize(buffer.size() + padding_len);
129
130 CT::poison(&last_byte_pos, 1);
131 CT::poison(buffer.data(), buffer.size());
132
133 BOTAN_DEBUG_ASSERT(buffer.size() % BS == 0);
134 BOTAN_DEBUG_ASSERT(buffer.size() >= BS);
135
136 const size_t start_of_last_block = buffer.size() - BS;
137 const size_t end_of_zero_padding = buffer.size() - 1;
138 const size_t start_of_padding = buffer.size() - padding_len;
139
140 for(size_t i = start_of_last_block; i != end_of_zero_padding; ++i) {
141 auto needs_padding = CT::Mask<uint8_t>(CT::Mask<size_t>::is_gte(i, start_of_padding));
142 buffer[i] = needs_padding.select(0, buffer[i]);
143 }
144
145 buffer[buffer.size() - 1] = padding_len;
146 CT::unpoison(buffer.data(), buffer.size());
147 CT::unpoison(last_byte_pos);
148}
#define BOTAN_DEBUG_ASSERT(expr)
Definition assert.h:98
static constexpr Mask< T > is_gte(T x, T y)
Definition ct_utils.h:460
constexpr void unpoison(const T *p, size_t n)
Definition ct_utils.h:64
constexpr void poison(const T *p, size_t n)
Definition ct_utils.h:53

References BOTAN_DEBUG_ASSERT, Botan::CT::poison(), and Botan::CT::unpoison().

◆ create()

std::unique_ptr< BlockCipherModePaddingMethod > Botan::BlockCipherModePaddingMethod::create ( std::string_view algo_spec)
staticinherited

Get a block cipher padding mode by name (eg "NoPadding" or "PKCS7")

Parameters
algo_specblock cipher padding mode name

Get a block cipher padding method by name

Definition at line 19 of file mode_pad.cpp.

19 {
20 if(algo_spec == "NoPadding") {
21 return std::make_unique<Null_Padding>();
22 }
23
24 if(algo_spec == "PKCS7") {
25 return std::make_unique<PKCS7_Padding>();
26 }
27
28 if(algo_spec == "OneAndZeros") {
29 return std::make_unique<OneAndZeros_Padding>();
30 }
31
32 if(algo_spec == "X9.23") {
33 return std::make_unique<ANSI_X923_Padding>();
34 }
35
36 if(algo_spec == "ESP") {
37 return std::make_unique<ESP_Padding>();
38 }
39
40 return nullptr;
41}

Referenced by Botan::Cipher_Mode::create().

◆ name()

std::string Botan::ANSI_X923_Padding::name ( ) const
inlineoverridevirtual
Returns
name of the mode

Implements Botan::BlockCipherModePaddingMethod.

Definition at line 92 of file mode_pad.h.

92{ return "X9.23"; }

◆ unpad()

size_t Botan::ANSI_X923_Padding::unpad ( const uint8_t block[],
size_t len ) const
overridevirtual

Remove padding bytes from block

Parameters
blockthe last block
lenthe size of the block in bytes
Returns
number of data bytes, or if the padding is invalid returns len

Implements Botan::BlockCipherModePaddingMethod.

Definition at line 153 of file mode_pad.cpp.

153 {
154 if(!valid_blocksize(input_length)) {
155 return input_length;
156 }
157
158 CT::poison(input, input_length);
159
160 const size_t last_byte = input[input_length - 1];
161
162 auto bad_input = CT::Mask<size_t>::is_gt(last_byte, input_length);
163
164 const size_t pad_pos = input_length - last_byte;
165
166 for(size_t i = 0; i != input_length - 1; ++i) {
167 // Ignore values that are not part of the padding
168 const auto in_range = CT::Mask<size_t>::is_gte(i, pad_pos);
169 const auto pad_is_nonzero = CT::Mask<size_t>::expand(input[i]);
170 bad_input |= pad_is_nonzero & in_range;
171 }
172
173 CT::unpoison(input, input_length);
174
175 return bad_input.select_and_unpoison(input_length, pad_pos);
176}
bool valid_blocksize(size_t bs) const override
Definition mode_pad.h:90
static constexpr Mask< T > expand(T v)
Definition ct_utils.h:389
static constexpr Mask< T > is_gt(T x, T y)
Definition ct_utils.h:450

References Botan::CT::Mask< T >::expand(), Botan::CT::Mask< T >::is_gt(), Botan::CT::Mask< T >::is_gte(), Botan::CT::poison(), Botan::CT::unpoison(), and valid_blocksize().

◆ valid_blocksize()

bool Botan::ANSI_X923_Padding::valid_blocksize ( size_t block_size) const
inlineoverridevirtual
Parameters
block_sizeof the cipher
Returns
valid block size for this padding mode

Implements Botan::BlockCipherModePaddingMethod.

Definition at line 90 of file mode_pad.h.

90{ return (bs > 2 && bs < 256); }

Referenced by unpad().


The documentation for this class was generated from the following files: