#include <dilithium.h>
Public Member Functions | |
| virtual Signature_Format | _default_x509_signature_format () const |
| virtual std::optional< size_t > | _signature_element_size_for_DER_encoding () const |
| std::string | algo_name () const override |
| AlgorithmIdentifier | algorithm_identifier () const override |
| bool | check_key (RandomNumberGenerator &rng, bool strong) const override |
| virtual std::unique_ptr< PK_Ops::Decryption > | create_decryption_op (RandomNumberGenerator &rng, std::string_view params, std::string_view provider) const |
| virtual std::unique_ptr< PK_Ops::Encryption > | create_encryption_op (RandomNumberGenerator &rng, std::string_view params, std::string_view provider) const |
| virtual std::unique_ptr< PK_Ops::KEM_Decryption > | create_kem_decryption_op (RandomNumberGenerator &rng, std::string_view params, std::string_view provider) const |
| virtual std::unique_ptr< PK_Ops::KEM_Encryption > | create_kem_encryption_op (std::string_view params, std::string_view provider) const |
| virtual std::unique_ptr< PK_Ops::Key_Agreement > | create_key_agreement_op (RandomNumberGenerator &rng, std::string_view params, std::string_view provider) const |
| std::unique_ptr< PK_Ops::Signature > | create_signature_op (RandomNumberGenerator &rng, std::string_view params, std::string_view provider) const override |
| std::unique_ptr< PK_Ops::Verification > | create_verification_op (std::string_view params, std::string_view provider) const override |
| std::unique_ptr< PK_Ops::Verification > | create_x509_verification_op (const AlgorithmIdentifier &signature_algorithm, std::string_view provider) const override |
| Signature_Format | default_x509_signature_format () const |
| Dilithium_PrivateKey (const AlgorithmIdentifier &alg_id, std::span< const uint8_t > sk) | |
| Dilithium_PrivateKey (RandomNumberGenerator &rng, DilithiumMode mode) | |
| Dilithium_PrivateKey (std::span< const uint8_t > sk, DilithiumMode mode) | |
| size_t | estimated_strength () const override |
| std::string | fingerprint_private (std::string_view alg) const |
| std::string | fingerprint_public (std::string_view alg="SHA-256") const |
| std::unique_ptr< Private_Key > | generate_another (RandomNumberGenerator &rng) const final |
| virtual const BigInt & | get_int_field (std::string_view field) const |
| OID | get_oid () const |
| size_t | key_length () const override |
| size_t | message_part_size () const |
| size_t | message_parts () const |
| OID | object_identifier () const override |
| virtual AlgorithmIdentifier | pkcs8_algorithm_identifier () const |
| secure_vector< uint8_t > | private_key_bits () const override |
| secure_vector< uint8_t > | private_key_info () const |
| std::unique_ptr< Public_Key > | public_key () const override |
| std::vector< uint8_t > | public_key_bits () const override |
| secure_vector< uint8_t > | raw_private_key_bits () const override |
| std::vector< uint8_t > | raw_public_key_bits () const override |
| virtual std::optional< uint64_t > | remaining_operations () const |
| Retrieves the number of remaining operations if this is a stateful private key. | |
| virtual bool | stateful_operation () const |
| std::vector< uint8_t > | subject_public_key () const |
| bool | supports_operation (PublicKeyOperation op) const override |
Protected Attributes | |
| std::shared_ptr< Dilithium_PublicKeyInternal > | m_public |
Friends | |
| class | Dilithium_Signature_Operation |
Detailed Description
Definition at line 112 of file dilithium.h.
Constructor & Destructor Documentation
◆ Dilithium_PrivateKey() [1/3]
| Botan::Dilithium_PrivateKey::Dilithium_PrivateKey | ( | RandomNumberGenerator & | rng, |
| DilithiumMode | m ) |
Generates a new key pair
NIST FIPS 204, Algorithm 1 (ML-DSA.KeyGen), and 6 (ML-DSA.KeyGen_internal)
This integrates the seed generation and the actual key generation into one function. After generation, the relevant components of the key are kept in memory; the key encoding is deferred until explicitly requested.
The calculation of (t1, t0) is done in a separate function, as it is also needed for the decoding of a private key.
Definition at line 413 of file dilithium.cpp.
References BOTAN_ARG_CHECK, Botan::Dilithium_Algos::expand_keypair(), Botan::DilithiumMode::is_available(), Botan::Dilithium_PublicKey::m_public, Botan::DilithiumConstants::mode(), Botan::RandomNumberGenerator::random_vec(), and Botan::DilithiumConstants::SEED_RANDOMNESS_BYTES.
Referenced by Dilithium_PrivateKey().
◆ Dilithium_PrivateKey() [2/3]
| Botan::Dilithium_PrivateKey::Dilithium_PrivateKey | ( | const AlgorithmIdentifier & | alg_id, |
| std::span< const uint8_t > | sk ) |
Read an encoded private key.
Definition at line 420 of file dilithium.cpp.
References Dilithium_PrivateKey().
◆ Dilithium_PrivateKey() [3/3]
| Botan::Dilithium_PrivateKey::Dilithium_PrivateKey | ( | std::span< const uint8_t > | sk, |
| DilithiumMode | mode ) |
Read an encoded private key given the dilithium mode.
Definition at line 423 of file dilithium.cpp.
References Botan::Dilithium_Keypair_Codec::decode_keypair(), Botan::DilithiumConstants::keypair_codec(), and Botan::Dilithium_PublicKey::m_public.
Member Function Documentation
◆ _default_x509_signature_format()
|
virtualinherited |
Reimplemented in Botan::GOST_3410_PublicKey.
Definition at line 30 of file pk_keys.cpp.
References _signature_element_size_for_DER_encoding(), Botan::DerSequence, and Botan::Standard.
Referenced by Botan::X509_Object::choose_sig_format(), Botan::Public_Key::default_x509_signature_format(), and Botan::PK_Verifier::PK_Verifier().
◆ _signature_element_size_for_DER_encoding()
|
inlinevirtualinherited |
Certain signatures schemes such as ECDSA have more than one element, and certain unfortunate protocols decided the thing to do was not concatenate them as normally done, but instead DER encode each of the elements as independent values.
If this returns a value x then the signature is checked to be exactly 2*x bytes and split in half for DER encoding.
Reimplemented in Botan::DSA_PublicKey, Botan::ECDSA_PublicKey, Botan::ECGDSA_PublicKey, Botan::ECKCDSA_PublicKey, Botan::GOST_3410_PublicKey, and Botan::SM2_PublicKey.
Definition at line 144 of file pk_keys.h.
Referenced by _default_x509_signature_format(), Botan::Public_Key::message_part_size(), Botan::Public_Key::message_parts(), Botan::PK_Verifier::PK_Verifier(), and Botan::PK_Verifier::PK_Verifier().
◆ algo_name()
|
overridevirtualinherited |
Get the name of the underlying public key scheme.
- Returns
- name of the public key scheme
Implements Botan::Asymmetric_Key.
Definition at line 331 of file dilithium.cpp.
References m_public, object_identifier(), and Botan::OID::to_formatted_string().
Referenced by Botan::Dilithium_PrivateKey::create_signature_op(), create_verification_op(), and create_x509_verification_op().
◆ algorithm_identifier()
|
overridevirtualinherited |
- Returns
- X.509 AlgorithmIdentifier for this key
Implements Botan::Public_Key.
Definition at line 343 of file dilithium.cpp.
References object_identifier(), and Botan::AlgorithmIdentifier::USE_EMPTY_PARAM.
Referenced by create_x509_verification_op().
◆ check_key()
|
overridevirtual |
Implements Botan::Asymmetric_Key.
Definition at line 456 of file dilithium.cpp.
References Botan::Dilithium_PublicKey::check_key(), and Botan::KeyPair::signature_consistency_check().
◆ create_decryption_op()
|
virtualinherited |
This is an internal library function exposed on key types. In all cases applications should use wrappers in pubkey.h
Return an decryption operation for this key/params or throw
- Parameters
-
Random Number Generators a random number generator. The PK_Op may maintain a reference to the RNG and use it many times. The rng must outlive any operations which reference it. params additional parameters provider the provider to use
Reimplemented in Botan::ElGamal_PrivateKey, Botan::RSA_PrivateKey, Botan::SM2_PrivateKey, and Botan::TPM2::RSA_PrivateKey.
Definition at line 126 of file pk_keys.cpp.
References Botan::Asymmetric_Key::algo_name(), and Botan::fmt().
Referenced by Botan::PK_Decryptor_EME::PK_Decryptor_EME().
◆ create_encryption_op()
|
virtualinherited |
This is an internal library function exposed on key types. In almost all cases applications should use wrappers in pubkey.h
Return an encryption operation for this key/params or throw
- Parameters
-
Random Number Generators a random number generator. The PK_Op may maintain a reference to the RNG and use it many times. The rng must outlive any operations which reference it. params additional parameters provider the provider to use
Reimplemented in Botan::ElGamal_PublicKey, Botan::RSA_PublicKey, Botan::SM2_PublicKey, and Botan::TPM2::RSA_PublicKey.
Definition at line 105 of file pk_keys.cpp.
References Botan::Asymmetric_Key::algo_name(), and Botan::fmt().
Referenced by Botan::PK_Encryptor_EME::PK_Encryptor_EME().
◆ create_kem_decryption_op()
|
virtualinherited |
This is an internal library function exposed on key types. In all cases applications should use wrappers in pubkey.h
Return a KEM decryption operation for this key/params or throw
- Parameters
-
Random Number Generators a random number generator. The PK_Op may maintain a reference to the RNG and use it many times. The rng must outlive any operations which reference it. params additional parameters provider the provider to use
Reimplemented in Botan::Classic_McEliece_PrivateKey, Botan::FrodoKEM_PrivateKey, Botan::KEX_to_KEM_Adapter_PrivateKey, Botan::Kyber_PrivateKey, Botan::McEliece_PrivateKey, Botan::RSA_PrivateKey, and Botan::TLS::Hybrid_KEM_PrivateKey.
Definition at line 132 of file pk_keys.cpp.
References Botan::Asymmetric_Key::algo_name(), and Botan::fmt().
Referenced by Botan::PK_KEM_Decryptor::PK_KEM_Decryptor().
◆ create_kem_encryption_op()
|
virtualinherited |
This is an internal library function exposed on key types. In almost all cases applications should use wrappers in pubkey.h
Return a KEM encryption operation for this key/params or throw
- Parameters
-
params additional parameters provider the provider to use
Reimplemented in Botan::Classic_McEliece_PublicKey, Botan::FrodoKEM_PublicKey, Botan::KEX_to_KEM_Adapter_PublicKey, Botan::Kyber_PublicKey, Botan::McEliece_PublicKey, Botan::RSA_PublicKey, and Botan::TLS::Hybrid_KEM_PublicKey.
Definition at line 111 of file pk_keys.cpp.
References Botan::Asymmetric_Key::algo_name(), and Botan::fmt().
Referenced by Botan::PK_KEM_Encryptor::PK_KEM_Encryptor().
◆ create_key_agreement_op()
|
virtualinherited |
This is an internal library function exposed on key types. In all cases applications should use wrappers in pubkey.h
Return a key agreement operation for this key/params or throw
- Parameters
-
Random Number Generators a random number generator. The PK_Op may maintain a reference to the RNG and use it many times. The rng must outlive any operations which reference it. params additional parameters provider the provider to use
Reimplemented in Botan::DH_PrivateKey, Botan::ECDH_PrivateKey, Botan::X25519_PrivateKey, and Botan::X448_PrivateKey.
Definition at line 144 of file pk_keys.cpp.
References Botan::Asymmetric_Key::algo_name(), and Botan::fmt().
Referenced by Botan::PK_Key_Agreement::PK_Key_Agreement().
◆ create_signature_op()
|
overridevirtual |
Create a signature operation that produces a Dilithium signature either with "Randomized" or "Deterministic" rhoprime. Pass either of those strings as params. Default (i.e. empty params is "Randomized").
Reimplemented from Botan::Private_Key.
Definition at line 437 of file dilithium.cpp.
References Botan::Dilithium_PublicKey::algo_name(), BOTAN_ARG_CHECK, BOTAN_UNUSED, and Botan::Dilithium_PublicKey::m_public.
◆ create_verification_op()
|
overridevirtualinherited |
This is an internal library function exposed on key types. In all cases applications should use wrappers in pubkey.h
Return a verification operation for this key/params or throw
- Parameters
-
params additional parameters provider the provider to use
Reimplemented from Botan::Public_Key.
Definition at line 383 of file dilithium.cpp.
References algo_name(), BOTAN_ARG_CHECK, and m_public.
◆ create_x509_verification_op()
|
overridevirtualinherited |
This is an internal library function exposed on key types. In all cases applications should use wrappers in pubkey.h
Return a verification operation for this combination of key and signature algorithm or throw.
- Parameters
-
signature_algorithm is the X.509 algorithm identifier encoding the padding scheme and hash hash function used in the signature if applicable. provider the provider to use
Reimplemented from Botan::Public_Key.
Definition at line 392 of file dilithium.cpp.
References algo_name(), algorithm_identifier(), and m_public.
◆ default_x509_signature_format()
|
inlineinherited |
Definition at line 237 of file pk_keys.h.
References Botan::Asymmetric_Key::_default_x509_signature_format(), and default_x509_signature_format().
Referenced by default_x509_signature_format().
◆ estimated_strength()
|
overridevirtualinherited |
Return the estimated strength of the underlying key against the best currently known attack. Note that this ignores anything but pure attacks against the key itself and do not take into account padding schemes, usage mistakes, etc which might reduce the strength. However it does suffice to provide an upper bound.
- Returns
- estimated strength in bits
Implements Botan::Asymmetric_Key.
Definition at line 355 of file dilithium.cpp.
References m_public.
◆ fingerprint_private()
|
inherited |
- Returns
- Hash of the PKCS #8 encoding for this key object
Definition at line 101 of file pk_keys.cpp.
References Botan::create_hex_fingerprint(), and private_key_bits().
Referenced by Botan::Certificate_Store_In_SQL::find_certs_for_key(), Botan::Certificate_Store_In_SQL::insert_key(), and Botan::Certificate_Store_In_SQL::remove_key().
◆ fingerprint_public()
|
inherited |
- Returns
- Hash of the subject public key
Definition at line 94 of file pk_keys.cpp.
References Botan::create_hex_fingerprint(), and subject_public_key().
Referenced by public_key_bits().
◆ generate_another()
|
finalvirtualinherited |
Generate another (cryptographically independent) key pair using the same algorithm parameters as this key. This is most useful for algorithms that support PublicKeyOperation::KeyAgreement to generate a fitting ephemeral key pair. For other key types it might throw Not_Implemented.
Implements Botan::Asymmetric_Key.
Definition at line 379 of file dilithium.cpp.
References m_public.
◆ get_int_field()
|
virtualinherited |
Access an algorithm specific field
If the field is not known for this algorithm, an Invalid_Argument is thrown. The interpretation of the result requires knowledge of which algorithm is involved. For instance for RSA "p" represents one of the secret primes, while for DSA "p" is the public prime.
Some algorithms may not implement this method at all.
This is primarily used to implement the FFI botan_pubkey_get_field and botan_privkey_get_field functions.
TODO(Botan4) Change this to return by value
Reimplemented in Botan::DH_PrivateKey, Botan::DH_PublicKey, Botan::DSA_PrivateKey, Botan::DSA_PublicKey, Botan::EC_PrivateKey, Botan::EC_PublicKey, Botan::ElGamal_PrivateKey, Botan::ElGamal_PublicKey, Botan::RSA_PrivateKey, and Botan::RSA_PublicKey.
Definition at line 18 of file pk_keys.cpp.
References algo_name().
Referenced by estimated_strength(), Botan::EC_PublicKey::get_int_field(), and Botan::RSA_PublicKey::get_int_field().
◆ get_oid()
|
inlineinherited |
Deprecated version of object_identifier
Definition at line 168 of file pk_keys.h.
References get_oid(), and Botan::Asymmetric_Key::object_identifier().
Referenced by get_oid().
◆ key_length()
|
overridevirtualinherited |
Return an integer value best approximating the length of the primary security parameter. For example for RSA this will be the size of the modulus, for ECDSA the size of the ECC group, and for McEliece the size of the code will be returned.
Implements Botan::Public_Key.
Definition at line 351 of file dilithium.cpp.
References m_public.
◆ message_part_size()
|
inlineinherited |
Returns how large each of the message parts referred to by message_parts() is
This function is public but applications should have few reasons to ever call this.
- Returns
- size of the message parts in bits
Definition at line 228 of file pk_keys.h.
References Botan::Asymmetric_Key::_signature_element_size_for_DER_encoding(), and message_part_size().
Referenced by message_part_size().
◆ message_parts()
|
inlineinherited |
Returns more than 1 if the output of this algorithm (ciphertext, signature) should be treated as more than one value. This is used for algorithms like DSA and ECDSA, where the (r,s) output pair can be encoded as either a plain binary list or a TLV tagged DER encoding depending on the protocol.
This function is public but applications should have few reasons to ever call this.
- Returns
- number of message parts
Definition at line 215 of file pk_keys.h.
References Botan::Asymmetric_Key::_signature_element_size_for_DER_encoding(), and message_parts().
Referenced by message_parts().
◆ object_identifier()
|
overridevirtualinherited |
Get the OID of the underlying public key scheme.
- Returns
- OID of the public key scheme
Reimplemented from Botan::Asymmetric_Key.
Definition at line 347 of file dilithium.cpp.
References m_public.
Referenced by algo_name(), and algorithm_identifier().
◆ pkcs8_algorithm_identifier()
|
inlinevirtualinherited |
- Returns
- PKCS #8 AlgorithmIdentifier for this key Might be different from the X.509 identifier, but normally is not
Reimplemented in Botan::GOST_3410_PrivateKey, and Botan::HSS_LMS_PrivateKey.
Definition at line 334 of file pk_keys.h.
References Botan::Public_Key::algorithm_identifier().
Referenced by private_key_info().
◆ private_key_bits()
|
overridevirtual |
- Returns
- BER encoded private key bits
Implements Botan::Private_Key.
Definition at line 433 of file dilithium.cpp.
References Botan::Dilithium_PublicKey::m_public.
Referenced by raw_private_key_bits().
◆ private_key_info()
|
inherited |
- Returns
- PKCS #8 private key encoding for this key object
Definition at line 75 of file pk_keys.cpp.
References Botan::DER_Encoder::encode(), Botan::DER_Encoder::end_cons(), Botan::DER_Encoder::get_contents(), Botan::OctetString, pkcs8_algorithm_identifier(), private_key_bits(), and Botan::DER_Encoder::start_sequence().
Referenced by Botan::PKCS8::BER_encode(), Botan::PKCS8::BER_encode_encrypted_pbkdf_iter(), Botan::PKCS8::BER_encode_encrypted_pbkdf_msec(), Botan::PKCS8::PEM_encode(), and public_key().
◆ public_key()
|
overridevirtual |
Allocate a new object for the public key associated with this private key.
- Returns
- public key
Implements Botan::Private_Key.
Definition at line 468 of file dilithium.cpp.
◆ public_key_bits()
|
overridevirtualinherited |
- Returns
- BER encoded public key bits
Implements Botan::Public_Key.
Definition at line 363 of file dilithium.cpp.
References raw_public_key_bits().
◆ raw_private_key_bits()
|
overridevirtual |
- Returns
- binary private key bits, with no additional encoding
Note: some algorithms (for example RSA) do not have an obvious encoding for this value due to having many different values, and thus not implement this function. The default implementation throws Not_Implemented
Reimplemented from Botan::Private_Key.
Definition at line 429 of file dilithium.cpp.
References private_key_bits().
◆ raw_public_key_bits()
|
overridevirtualinherited |
- Returns
- binary public key bits, with no additional encoding
For key agreements this is an alias for PK_Key_Agreement_Key::public_value.
Note: some algorithms (for example RSA) do not have an obvious encoding for this value due to having many different values, and thus throw Not_Implemented when invoking this method.
Implements Botan::Public_Key.
Definition at line 359 of file dilithium.cpp.
References m_public.
Referenced by public_key_bits().
◆ remaining_operations()
|
inlinevirtualinherited |
Retrieves the number of remaining operations if this is a stateful private key.
- Returns
- the number of remaining operations or std::nullopt if not applicable.
Reimplemented in Botan::HSS_LMS_PrivateKey, and Botan::XMSS_PrivateKey.
Definition at line 347 of file pk_keys.h.
◆ stateful_operation()
|
inlinevirtualinherited |
Indicates if this key is stateful, ie that performing a private key operation requires updating the key storage.
Reimplemented in Botan::HSS_LMS_PrivateKey, and Botan::XMSS_PrivateKey.
Definition at line 340 of file pk_keys.h.
◆ subject_public_key()
|
inherited |
- Returns
- X.509 subject key encoding for this key object
Definition at line 63 of file pk_keys.cpp.
References algorithm_identifier(), Botan::BitString, Botan::DER_Encoder::encode(), Botan::DER_Encoder::end_cons(), public_key_bits(), and Botan::DER_Encoder::start_sequence().
Referenced by Botan::X509::BER_encode(), Botan::PKCS10_Request::create(), fingerprint_public(), Botan::X509::PEM_encode(), and public_key_bits().
◆ supports_operation()
|
inlineoverridevirtualinherited |
Return true if this key could be used for the specified type of operation.
Implements Botan::Asymmetric_Key.
Definition at line 86 of file dilithium.h.
References Botan::Signature.
Friends And Related Symbol Documentation
◆ Dilithium_Signature_Operation
|
friend |
Definition at line 148 of file dilithium.h.
References Dilithium_Signature_Operation.
Referenced by Dilithium_Signature_Operation.
Member Data Documentation
◆ m_public
|
protectedinherited |
Definition at line 106 of file dilithium.h.
Referenced by algo_name(), Botan::Dilithium_PrivateKey::create_signature_op(), create_verification_op(), create_x509_verification_op(), Botan::Dilithium_PrivateKey::Dilithium_PrivateKey(), Botan::Dilithium_PrivateKey::Dilithium_PrivateKey(), Dilithium_PublicKey(), estimated_strength(), generate_another(), key_length(), object_identifier(), Botan::Dilithium_PrivateKey::private_key_bits(), and raw_public_key_bits().
The documentation for this class was generated from the following files:
- src/lib/pubkey/dilithium/dilithium_common/dilithium.h
- src/lib/pubkey/dilithium/dilithium_common/dilithium.cpp
Generated by
1.16.1