Botan 3.11.0
Crypto and TLS for C&
Public Member Functions | Protected Member Functions | List of all members
Botan::Kyber_Symmetric_Primitives Class Referenceabstract

#include <kyber_symmetric_primitives.h>

Inheritance diagram for Botan::Kyber_Symmetric_Primitives:
Botan::Kyber_90s_Symmetric_Primitives Botan::Kyber_Modern_Symmetric_Primitives Botan::ML_KEM_Symmetric_Primitives

Public Member Functions

std::pair< KyberSharedSecret, KyberEncryptionRandomnessG (StrongSpan< const KyberMessage > msg, StrongSpan< const KyberHashedPublicKey > pubkey_hash) const
std::pair< KyberSeedRho, KyberSeedSigmaG (StrongSpan< const KyberSeedRandomness > seed, const KyberConstants &mode) const
KyberHashedCiphertext H (StrongSpan< const KyberCompressedCiphertext > r) const
KyberMessage H (StrongSpan< const KyberMessage > m) const
KyberHashedPublicKey H (StrongSpan< const KyberSerializedPublicKey > pk) const
KyberSharedSecret J (StrongSpan< const KyberImplicitRejectionValue > rejection_value, StrongSpan< const KyberCompressedCiphertext > ciphertext) const
void KDF (StrongSpan< KyberSharedSecret > out, StrongSpan< const KyberSharedSecret > shared_secret, StrongSpan< const KyberHashedCiphertext > hashed_ciphertext) const
KyberSamplingRandomness PRF (KyberSigmaOrEncryptionRandomness seed, const uint8_t nonce, const size_t outlen) const
void setup_PRF (std::unique_ptr< Botan::XOF > &xof, std::span< const uint8_t > seed, uint8_t nonce) const
 Setup a seeded PRF XOF for polynomial sampling.
void setup_XOF (std::unique_ptr< Botan::XOF > &xof, StrongSpan< const KyberSeedRho > seed, std::tuple< uint8_t, uint8_t > matrix_position) const
 Setup an XOF object for matrix sampling.
virtual ~Kyber_Symmetric_Primitives ()=default

Protected Member Functions

virtual std::unique_ptr< HashFunctioncreate_G () const =0
virtual std::unique_ptr< HashFunctioncreate_H () const =0
virtual std::unique_ptr< HashFunctioncreate_J () const =0
virtual std::unique_ptr< HashFunctioncreate_KDF () const =0
virtual std::unique_ptr< Botan::XOFcreate_PRF (std::span< const uint8_t > seed, uint8_t nonce) const =0
virtual std::unique_ptr< Botan::XOFcreate_XOF (std::span< const uint8_t > seed, std::tuple< uint8_t, uint8_t > matrix_position) const =0
virtual void init_PRF (Botan::XOF &xof, std::span< const uint8_t > seed, uint8_t nonce) const =0
virtual void init_XOF (Botan::XOF &xof, std::span< const uint8_t > seed, std::tuple< uint8_t, uint8_t > matrix_position) const =0
virtual std::optional< std::array< uint8_t, 1 > > seed_expansion_domain_separator (const KyberConstants &mode) const =0

Detailed Description

Adapter class that uses polymorphy to distinguish Kyber "modern" from Kyber "90s" modes.

Definition at line 28 of file kyber_symmetric_primitives.h.

Constructor & Destructor Documentation

◆ ~Kyber_Symmetric_Primitives()

virtual Botan::Kyber_Symmetric_Primitives::~Kyber_Symmetric_Primitives ( )
virtualdefault

Member Function Documentation

◆ create_G()

virtual std::unique_ptr< HashFunction > Botan::Kyber_Symmetric_Primitives::create_G ( ) const
protectedpure virtual

Implemented in Botan::Kyber_90s_Symmetric_Primitives, Botan::Kyber_Modern_Symmetric_Primitives, and Botan::ML_KEM_Symmetric_Primitives.

◆ create_H()

virtual std::unique_ptr< HashFunction > Botan::Kyber_Symmetric_Primitives::create_H ( ) const
protectedpure virtual

Implemented in Botan::Kyber_90s_Symmetric_Primitives, Botan::Kyber_Modern_Symmetric_Primitives, and Botan::ML_KEM_Symmetric_Primitives.

Referenced by H(), H(), and H().

◆ create_J()

virtual std::unique_ptr< HashFunction > Botan::Kyber_Symmetric_Primitives::create_J ( ) const
protectedpure virtual

Implemented in Botan::Kyber_90s_Symmetric_Primitives, Botan::Kyber_Modern_Symmetric_Primitives, and Botan::ML_KEM_Symmetric_Primitives.

Referenced by J().

◆ create_KDF()

virtual std::unique_ptr< HashFunction > Botan::Kyber_Symmetric_Primitives::create_KDF ( ) const
protectedpure virtual

Implemented in Botan::Kyber_90s_Symmetric_Primitives, Botan::Kyber_Modern_Symmetric_Primitives, and Botan::ML_KEM_Symmetric_Primitives.

Referenced by KDF().

◆ create_PRF()

virtual std::unique_ptr< Botan::XOF > Botan::Kyber_Symmetric_Primitives::create_PRF ( std::span< const uint8_t > seed,
uint8_t nonce ) const
protectedpure virtual

Implemented in Botan::Kyber_90s_Symmetric_Primitives, Botan::Kyber_Modern_Symmetric_Primitives, and Botan::ML_KEM_Symmetric_Primitives.

Referenced by PRF(), and setup_PRF().

◆ create_XOF()

virtual std::unique_ptr< Botan::XOF > Botan::Kyber_Symmetric_Primitives::create_XOF ( std::span< const uint8_t > seed,
std::tuple< uint8_t, uint8_t > matrix_position ) const
protectedpure virtual

Implemented in Botan::Kyber_90s_Symmetric_Primitives, Botan::Kyber_Modern_Symmetric_Primitives, and Botan::ML_KEM_Symmetric_Primitives.

Referenced by setup_XOF().

◆ G() [1/2]

std::pair< KyberSharedSecret, KyberEncryptionRandomness > Botan::Kyber_Symmetric_Primitives::G ( StrongSpan< const KyberMessage > msg,
StrongSpan< const KyberHashedPublicKey > pubkey_hash ) const
inline

Definition at line 53 of file kyber_symmetric_primitives.h.

54 {
55 return G_split<KyberSharedSecret, KyberEncryptionRandomness>(msg, pubkey_hash);
56 }

◆ G() [2/2]

std::pair< KyberSeedRho, KyberSeedSigma > Botan::Kyber_Symmetric_Primitives::G ( StrongSpan< const KyberSeedRandomness > seed,
const KyberConstants & mode ) const
inline

Definition at line 44 of file kyber_symmetric_primitives.h.

45 {
46 if(auto domsep = seed_expansion_domain_separator(mode)) {
47 return G_split<KyberSeedRho, KyberSeedSigma>(seed, *domsep);
48 } else {
49 return G_split<KyberSeedRho, KyberSeedSigma>(seed);
50 }
51 }
Botan::Kyber_Symmetric_Primitives::seed_expansion_domain_separator
virtual std::optional< std::array< uint8_t, 1 > > seed_expansion_domain_separator(const KyberConstants &mode) const =0

References seed_expansion_domain_separator().

Referenced by Botan::Kyber_KEM_Decryptor::decapsulate(), Botan::ML_KEM_Decryptor::decapsulate(), and Botan::Kyber_Algos::expand_keypair().

◆ H() [1/3]

KyberHashedCiphertext Botan::Kyber_Symmetric_Primitives::H ( StrongSpan< const KyberCompressedCiphertext > r) const
inline

Definition at line 36 of file kyber_symmetric_primitives.h.

36 {
37 return create_H()->process<KyberHashedCiphertext>(r);
38 }
Botan::Kyber_Symmetric_Primitives::create_H
virtual std::unique_ptr< HashFunction > create_H() const =0
Botan::KyberHashedCiphertext
Strong< std::vector< uint8_t >, struct KyberHashedCiphertext_ > KyberHashedCiphertext
Definition kyber_types.h:67

References create_H().

◆ H() [2/3]

KyberMessage Botan::Kyber_Symmetric_Primitives::H ( StrongSpan< const KyberMessage > m) const
inline

Definition at line 33 of file kyber_symmetric_primitives.h.

33{ return create_H()->process<KyberMessage>(m); }
Botan::KyberMessage
Strong< secure_vector< uint8_t >, struct KyberMessage_ > KyberMessage
Random message value to be encrypted by the CPA-secure Kyber encryption scheme.
Definition kyber_types.h:45

References create_H().

◆ H() [3/3]

KyberHashedPublicKey Botan::Kyber_Symmetric_Primitives::H ( StrongSpan< const KyberSerializedPublicKey > pk) const
inline

Definition at line 40 of file kyber_symmetric_primitives.h.

40 {
41 return create_H()->process<KyberHashedPublicKey>(pk);
42 }
Botan::KyberHashedPublicKey
Strong< std::vector< uint8_t >, struct KyberHashedPublicKey_ > KyberHashedPublicKey
Hash value of the serialized public key.
Definition kyber_types.h:60

References create_H().

◆ init_PRF()

virtual void Botan::Kyber_Symmetric_Primitives::init_PRF ( Botan::XOF & xof,
std::span< const uint8_t > seed,
uint8_t nonce ) const
protectedpure virtual

Implemented in Botan::Kyber_90s_Symmetric_Primitives, Botan::Kyber_Modern_Symmetric_Primitives, and Botan::ML_KEM_Symmetric_Primitives.

Referenced by setup_PRF().

◆ init_XOF()

virtual void Botan::Kyber_Symmetric_Primitives::init_XOF ( Botan::XOF & xof,
std::span< const uint8_t > seed,
std::tuple< uint8_t, uint8_t > matrix_position ) const
protectedpure virtual

Implemented in Botan::Kyber_90s_Symmetric_Primitives, Botan::Kyber_Modern_Symmetric_Primitives, and Botan::ML_KEM_Symmetric_Primitives.

Referenced by setup_XOF().

◆ J()

KyberSharedSecret Botan::Kyber_Symmetric_Primitives::J ( StrongSpan< const KyberImplicitRejectionValue > rejection_value,
StrongSpan< const KyberCompressedCiphertext > ciphertext ) const
inline

Definition at line 58 of file kyber_symmetric_primitives.h.

59 {
60 auto j = create_J();
61 j->update(rejection_value);
62 j->update(ciphertext);
63 return j->final<KyberSharedSecret>();
64 }
Botan::Kyber_Symmetric_Primitives::create_J
virtual std::unique_ptr< HashFunction > create_J() const =0
Botan::KyberSharedSecret
Strong< secure_vector< uint8_t >, struct KyberSharedSecret_ > KyberSharedSecret
Shared secret value generated during encapsulation and recovered during decapsulation.
Definition kyber_types.h:54

References create_J().

◆ KDF()

void Botan::Kyber_Symmetric_Primitives::KDF ( StrongSpan< KyberSharedSecret > out,
StrongSpan< const KyberSharedSecret > shared_secret,
StrongSpan< const KyberHashedCiphertext > hashed_ciphertext ) const
inline

Definition at line 67 of file kyber_symmetric_primitives.h.

69 {
70 auto kdf = create_KDF();
71 kdf->update(shared_secret);
72 kdf->update(hashed_ciphertext);
73 kdf->final(out);
74 }
Botan::Kyber_Symmetric_Primitives::create_KDF
virtual std::unique_ptr< HashFunction > create_KDF() const =0

References create_KDF().

◆ PRF()

KyberSamplingRandomness Botan::Kyber_Symmetric_Primitives::PRF ( KyberSigmaOrEncryptionRandomness seed,
const uint8_t nonce,
const size_t outlen ) const
inline

Definition at line 76 of file kyber_symmetric_primitives.h.

78 {
79 auto bare_seed_span = std::visit([&](const auto s) { return s.get(); }, seed);
80 return create_PRF(bare_seed_span, nonce)->output<KyberSamplingRandomness>(outlen);
81 }
Botan::Kyber_Symmetric_Primitives::create_PRF
virtual std::unique_ptr< Botan::XOF > create_PRF(std::span< const uint8_t > seed, uint8_t nonce) const =0
Botan::KyberSamplingRandomness
Strong< secure_vector< uint8_t >, struct KyberSamplingRandomness_ > KyberSamplingRandomness
PRF value used for sampling of error polynomials.
Definition kyber_types.h:51

References create_PRF().

◆ seed_expansion_domain_separator()

virtual std::optional< std::array< uint8_t, 1 > > Botan::Kyber_Symmetric_Primitives::seed_expansion_domain_separator ( const KyberConstants & mode) const
protectedpure virtual

Implemented in Botan::Kyber_90s_Symmetric_Primitives, Botan::Kyber_Modern_Symmetric_Primitives, and Botan::ML_KEM_Symmetric_Primitives.

Referenced by G().

◆ setup_PRF()

void Botan::Kyber_Symmetric_Primitives::setup_PRF ( std::unique_ptr< Botan::XOF > & xof,
std::span< const uint8_t > seed,
uint8_t nonce ) const
inline

Setup a seeded PRF XOF for polynomial sampling.

Definition at line 95 of file kyber_symmetric_primitives.h.

95 {
96 if(!xof) {
97 xof = create_PRF(seed, nonce);
98 } else {
99 init_PRF(*xof, seed, nonce);
100 }
101 }
Botan::Kyber_Symmetric_Primitives::init_PRF
virtual void init_PRF(Botan::XOF &xof, std::span< const uint8_t > seed, uint8_t nonce) const =0

References create_PRF(), and init_PRF().

◆ setup_XOF()

void Botan::Kyber_Symmetric_Primitives::setup_XOF ( std::unique_ptr< Botan::XOF > & xof,
StrongSpan< const KyberSeedRho > seed,
std::tuple< uint8_t, uint8_t > matrix_position ) const
inline

Setup an XOF object for matrix sampling.

Definition at line 84 of file kyber_symmetric_primitives.h.

86 {
87 if(!xof) {
88 xof = create_XOF(seed, matrix_position);
89 } else {
90 init_XOF(*xof, seed, matrix_position);
91 }
92 }
Botan::Kyber_Symmetric_Primitives::init_XOF
virtual void init_XOF(Botan::XOF &xof, std::span< const uint8_t > seed, std::tuple< uint8_t, uint8_t > matrix_position) const =0
Botan::Kyber_Symmetric_Primitives::create_XOF
virtual std::unique_ptr< Botan::XOF > create_XOF(std::span< const uint8_t > seed, std::tuple< uint8_t, uint8_t > matrix_position) const =0

References create_XOF(), and init_XOF().

The documentation for this class was generated from the following file:
Generated by doxygen 1.15.0