Botan::SP800_108_Pipeline Class Referencefinal
#include <sp800_108.h>
Inheritance diagram for Botan::SP800_108_Pipeline:
Public Member Functions | |
| KDF * | clone () const |
| template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>> | |
| T | derive_key (size_t key_len, const uint8_t secret[], size_t secret_len, const uint8_t salt[], size_t salt_len, const uint8_t label[]=nullptr, size_t label_len=0) const |
| template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>> | |
| T | derive_key (size_t key_len, const uint8_t secret[], size_t secret_len, std::string_view salt="", std::string_view label="") const |
| template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>> | |
| T | derive_key (size_t key_len, std::span< const uint8_t > secret, const uint8_t salt[], size_t salt_len, std::string_view label="") const |
| template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>> | |
| T | derive_key (size_t key_len, std::span< const uint8_t > secret, std::span< const uint8_t > salt, std::span< const uint8_t > label) const |
| template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>> | |
| T | derive_key (size_t key_len, std::span< const uint8_t > secret, std::string_view salt="", std::string_view label="") const |
| template<size_t key_len> | |
| std::array< uint8_t, key_len > | derive_key (std::span< const uint8_t > secret, std::span< const uint8_t > salt={}, std::span< const uint8_t > label={}) |
| template<size_t key_len> | |
| std::array< uint8_t, key_len > | derive_key (std::span< const uint8_t > secret, std::span< const uint8_t > salt={}, std::string_view label="") |
| template<size_t key_len> | |
| std::array< uint8_t, key_len > | derive_key (std::span< const uint8_t > secret, std::string_view salt="", std::string_view label="") |
| void | derive_key (std::span< uint8_t > key, std::span< const uint8_t > secret, std::span< const uint8_t > salt, std::span< const uint8_t > label) const |
| void | kdf (uint8_t key[], size_t key_len, const uint8_t secret[], size_t secret_len, const uint8_t salt[], size_t salt_len, const uint8_t label[], size_t label_len) const |
| std::string | name () const override |
| std::unique_ptr< KDF > | new_object () const override |
| SP800_108_Pipeline (std::unique_ptr< MessageAuthenticationCode > mac, size_t r, size_t L) | |
Static Public Member Functions | |
| static std::unique_ptr< KDF > | create (std::string_view algo_spec, std::string_view provider="") |
| static std::unique_ptr< KDF > | create_or_throw (std::string_view algo_spec, std::string_view provider="") |
| static std::vector< std::string > | providers (std::string_view algo_spec) |
Detailed Description
NIST SP 800-108 KDF in Double Pipeline Mode (5.3)
Definition at line 101 of file sp800_108.h.
Constructor & Destructor Documentation
◆ SP800_108_Pipeline()
| Botan::SP800_108_Pipeline::SP800_108_Pipeline | ( | std::unique_ptr< MessageAuthenticationCode > | mac, |
| size_t | r, | ||
| size_t | L ) |
- Parameters
-
mac MAC algorithm to use r encoding bit-length of the internal counter {8, 16, 24, or 32} L encoding bit-length of the output length in bits {8, 16, 24, or 32}
Definition at line 190 of file sp800_108.cpp.
190 :
191 m_prf(std::move(mac)), m_counter_bits(r), m_output_length_bits(L) {
192 CounterParams::validate_bit_lengths(m_counter_bits, m_output_length_bits);
193}
Member Function Documentation
◆ clone()
|
inlineinherited |
- Returns
- new object representing the same algorithm as *this
Definition at line 242 of file kdf.h.
virtual std::unique_ptr< KDF > new_object() const =0
References new_object().
◆ create()
|
staticinherited |
Create an instance based on a name If provider is empty then best available is chosen.
- Parameters
-
algo_spec algorithm name provider provider implementation to choose
- Returns
- a null pointer if the algo/provider combination cannot be found
Definition at line 72 of file kdf.cpp.
72 {
73 const SCAN_Name req(algo_spec);
74
75#if defined(BOTAN_HAS_HKDF)
76 if(req.algo_name() == "HKDF" && req.arg_count() == 1) {
77 if(provider.empty() || provider == "base") {
78 return kdf_create_mac_or_hash<HKDF>(req.arg(0));
79 }
80 }
81
82 if(req.algo_name() == "HKDF-Extract" && req.arg_count() == 1) {
83 if(provider.empty() || provider == "base") {
84 return kdf_create_mac_or_hash<HKDF_Extract>(req.arg(0));
85 }
86 }
87
88 if(req.algo_name() == "HKDF-Expand" && req.arg_count() == 1) {
89 if(provider.empty() || provider == "base") {
90 return kdf_create_mac_or_hash<HKDF_Expand>(req.arg(0));
91 }
92 }
93#endif
94
95#if defined(BOTAN_HAS_KDF2)
96 if(req.algo_name() == "KDF2" && req.arg_count() == 1) {
97 if(provider.empty() || provider == "base") {
99 return std::make_unique<KDF2>(std::move(hash));
100 }
101 }
102 }
103#endif
104
105#if defined(BOTAN_HAS_KDF1_18033)
106 if(req.algo_name() == "KDF1-18033" && req.arg_count() == 1) {
107 if(provider.empty() || provider == "base") {
109 return std::make_unique<KDF1_18033>(std::move(hash));
110 }
111 }
112 }
113#endif
114
115#if defined(BOTAN_HAS_KDF1)
116 if(req.algo_name() == "KDF1" && req.arg_count() == 1) {
117 if(provider.empty() || provider == "base") {
119 return std::make_unique<KDF1>(std::move(hash));
120 }
121 }
122 }
123#endif
124
125#if defined(BOTAN_HAS_TLS_V12_PRF)
126 if(req.algo_name() == "TLS-12-PRF" && req.arg_count() == 1) {
127 if(provider.empty() || provider == "base") {
128 return kdf_create_mac_or_hash<TLS_12_PRF>(req.arg(0));
129 }
130 }
131#endif
132
133#if defined(BOTAN_HAS_X942_PRF)
134 if(req.algo_name() == "X9.42-PRF" && req.arg_count() == 1) {
135 if(provider.empty() || provider == "base") {
136 return std::make_unique<X942_PRF>(req.arg(0));
137 }
138 }
139#endif
140
141#if defined(BOTAN_HAS_SP800_108)
142 if(req.algo_name() == "SP800-108-Counter" && req.arg_count_between(1, 3)) {
143 if(provider.empty() || provider == "base") {
144 return kdf_create_mac_or_hash<SP800_108_Counter>(
145 req.arg(0), req.arg_as_integer(1, 32), req.arg_as_integer(2, 32));
146 }
147 }
148
149 if(req.algo_name() == "SP800-108-Feedback" && req.arg_count_between(1, 3)) {
150 if(provider.empty() || provider == "base") {
151 return kdf_create_mac_or_hash<SP800_108_Feedback>(
152 req.arg(0), req.arg_as_integer(1, 32), req.arg_as_integer(2, 32));
153 }
154 }
155
156 if(req.algo_name() == "SP800-108-Pipeline" && req.arg_count_between(1, 3)) {
157 if(provider.empty() || provider == "base") {
158 return kdf_create_mac_or_hash<SP800_108_Pipeline>(
159 req.arg(0), req.arg_as_integer(1, 32), req.arg_as_integer(2, 32));
160 }
161 }
162#endif
163
164#if defined(BOTAN_HAS_SP800_56A)
165 if(req.algo_name() == "SP800-56A" && req.arg_count() == 1) {
167 return std::make_unique<SP800_56C_One_Step_Hash>(std::move(hash));
168 }
169 if(req.arg(0) == "KMAC-128") {
170 return std::make_unique<SP800_56C_One_Step_KMAC128>();
171 }
172 if(req.arg(0) == "KMAC-256") {
173 return std::make_unique<SP800_56C_One_Step_KMAC256>();
174 }
176 return std::make_unique<SP800_56C_One_Step_HMAC>(std::move(mac));
177 }
178 }
179#endif
180
181#if defined(BOTAN_HAS_SP800_56C)
182 if(req.algo_name() == "SP800-56C" && req.arg_count() == 1) {
183 std::unique_ptr<KDF> exp(kdf_create_mac_or_hash<SP800_108_Feedback>(req.arg(0), 32, 32));
184 if(exp) {
186 return std::make_unique<SP800_56C_Two_Step>(std::move(mac), std::move(exp));
187 }
188
190 return std::make_unique<SP800_56C_Two_Step>(std::move(mac), std::move(exp));
191 }
192 }
193 }
194#endif
195
196 BOTAN_UNUSED(req);
197 BOTAN_UNUSED(provider);
198
199 return nullptr;
200}
static std::unique_ptr< HashFunction > create(std::string_view algo_spec, std::string_view provider="")
Definition hash.cpp:107
static std::unique_ptr< MessageAuthenticationCode > create(std::string_view algo_spec, std::string_view provider="")
Definition mac.cpp:51
References Botan::SCAN_Name::algo_name(), Botan::SCAN_Name::arg(), Botan::SCAN_Name::arg_as_integer(), Botan::SCAN_Name::arg_count(), Botan::SCAN_Name::arg_count_between(), BOTAN_UNUSED, Botan::HashFunction::create(), Botan::MessageAuthenticationCode::create(), and Botan::fmt().
Referenced by create_or_throw(), and ~KDF().
◆ create_or_throw()
|
staticinherited |
Create an instance based on a name, or throw if the algo/provider combination cannot be found. If provider is empty then best available is chosen.
Definition at line 203 of file kdf.cpp.
203 {
206 }
207 throw Lookup_Error("KDF", algo, provider);
208}
static std::unique_ptr< KDF > create(std::string_view algo_spec, std::string_view provider="")
Definition kdf.cpp:72
void kdf(uint8_t key[], size_t key_len, const uint8_t secret[], size_t secret_len, const uint8_t salt[], size_t salt_len, const uint8_t label[], size_t label_len) const
Definition kdf.h:67
References create(), and kdf().
Referenced by botan_kdf(), Botan::ECIES_KA_Operation::derive_secret(), Botan::get_kdf(), Botan::PK_Ops::KEM_Decryption_with_KDF::KEM_Decryption_with_KDF(), Botan::PK_Ops::KEM_Encryption_with_KDF::KEM_Encryption_with_KDF(), Botan::PK_Ops::Key_Agreement_with_KDF::Key_Agreement_with_KDF(), Botan::TLS::Handshake_State::protocol_specific_prf(), and ~KDF().
◆ derive_key() [1/9]
template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>>
|
inlineinherited |
Derive a key
- Parameters
-
key_len the desired output length in bytes secret the secret input secret_len size of secret in bytes salt a diversifier salt_len size of salt in bytes label purpose for the derived keying material label_len size of label in bytes
- Returns
- the derived key
Definition at line 91 of file kdf.h.
97 {
99 }
T derive_key(size_t key_len, const uint8_t secret[], size_t secret_len, const uint8_t salt[], size_t salt_len, const uint8_t label[]=nullptr, size_t label_len=0) const
Definition kdf.h:91
References derive_key().
Referenced by derive_key(), derive_key(), derive_key(), derive_key(), derive_key(), Botan::hkdf_expand_label(), and kdf().
◆ derive_key() [2/9]
template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>>
|
inlineinherited |
Derive a key
- Parameters
-
key_len the desired output length in bytes secret the secret input secret_len size of secret in bytes salt a diversifier label purpose for the derived keying material
- Returns
- the derived key
Definition at line 179 of file kdf.h.
183 {
185 }
References derive_key().
◆ derive_key() [3/9]
template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>>
|
inlineinherited |
Derive a key
- Parameters
-
key_len the desired output length in bytes secret the secret input salt a diversifier salt_len size of salt in bytes label purpose for the derived keying material
- Returns
- the derived key
Definition at line 160 of file kdf.h.
References derive_key().
◆ derive_key() [4/9]
template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>>
|
inlineinherited |
Derive a key
- Parameters
-
key_len the desired output length in bytes secret the secret input salt a diversifier label purpose for the derived keying material
- Returns
- the derived key
Definition at line 140 of file kdf.h.
143 {
144 T key(key_len);
145 perform_kdf(key, secret, salt, label);
146 return key;
147 }
virtual void perform_kdf(std::span< uint8_t > key, std::span< const uint8_t > secret, std::span< const uint8_t > salt, std::span< const uint8_t > label) const =0
References perform_kdf().
◆ derive_key() [5/9]
template<concepts::resizable_byte_buffer T = secure_vector<uint8_t>>
|
inlineinherited |
Derive a key
- Parameters
-
key_len the desired output length in bytes secret the secret input salt a diversifier label purpose for the derived keying material
- Returns
- the derived key
Definition at line 110 of file kdf.h.
References derive_key().
◆ derive_key() [6/9]
template<size_t key_len>
|
inlineinherited |
Derive a key
- Template Parameters
-
key_len the desired output length in bytes
- Parameters
-
secret the secret input salt a diversifier label purpose for the derived keying material
- Returns
- the derived key
Definition at line 196 of file kdf.h.
197 {},
198 std::span<const uint8_t> label = {}) {
199 std::array<uint8_t, key_len> key;
200 perform_kdf(key, secret, salt, label);
201 return key;
202 }
◆ derive_key() [7/9]
template<size_t key_len>
|
inlineinherited |
◆ derive_key() [8/9]
template<size_t key_len>
|
inlineinherited |
Derive a key
- Template Parameters
-
key_len the desired output length in bytes
- Parameters
-
secret the secret input salt a diversifier label purpose for the derived keying material
- Returns
- the derived key
Definition at line 228 of file kdf.h.
References derive_key().
◆ derive_key() [9/9]
|
inlineinherited |
Derive a key
- Parameters
-
key the output buffer for the to-be-derived key secret the secret input salt a diversifier label purpose for the derived keying material
Definition at line 124 of file kdf.h.
References perform_kdf().
◆ kdf()
|
inlineinherited |
Derive a key
- Parameters
-
key buffer holding the derived key, must be of length key_len key_len the desired output length in bytes secret the secret input secret_len size of secret in bytes salt a diversifier salt_len size of salt in bytes label purpose for the derived keying material label_len size of label in bytes
Definition at line 67 of file kdf.h.
74 {
75 derive_key({key, key_len}, {secret, secret_len}, {salt, salt_len}, {label, label_len});
76 }
References derive_key(), and kdf().
Referenced by create_or_throw(), and kdf().
◆ name()
|
overridevirtual |
- Returns
- KDF name
Implements Botan::KDF.
Definition at line 195 of file sp800_108.cpp.
195 {
196 // TODO(Botan4): make this always return the explicit lengths
197 return (m_counter_bits == 32 && m_output_length_bits == 32)
198 ? fmt("SP800-108-Pipeline({})", m_prf->name()) // keep the name consistent with previous versions
200}
References Botan::fmt().
◆ new_object()
|
overridevirtual |
- Returns
- new object representing the same algorithm as *this
Implements Botan::KDF.
Definition at line 202 of file sp800_108.cpp.
202 {
203 return std::make_unique<SP800_108_Pipeline>(m_prf->new_object(), m_counter_bits, m_output_length_bits);
204}
◆ providers()
|
staticinherited |
- Returns
- list of available providers for this algorithm, empty if not available
Definition at line 210 of file kdf.cpp.
210 {
212}
std::vector< std::string > probe_providers_of(std::string_view algo_spec, const std::vector< std::string > &possible={"base"})
Definition scan_name.h:105
References Botan::probe_providers_of().
Referenced by ~KDF().
The documentation for this class was generated from the following files:
- src/lib/kdf/sp800_108/sp800_108.h
- src/lib/kdf/sp800_108/sp800_108.cpp
Generated by
1.13.2