doxygen/curve25519_8cpp_source.html

/*

* Curve25519

* (C) 2014 Jack Lloyd

*

* Botan is released under the Simplified BSD License (see license.txt)

*/


#include <botan/curve25519.h>

#include <botan/internal/pk_ops_impl.h>

#include <botan/ber_dec.h>

#include <botan/der_enc.h>

#include <botan/rng.h>


namespace Botan {


void curve25519_basepoint(uint8_t mypublic[32], const uint8_t secret[32])

   {

   const uint8_t basepoint[32] = { 9 };

   curve25519_donna(mypublic, secret, basepoint);

   }


namespace {


void size_check(size_t size, const char* thing)

   {

   if(size != 32)

      throw Decoding_Error("Invalid size " + std::to_string(size) + " for Curve25519 " + thing);

   }


secure_vector<uint8_t> curve25519(const secure_vector<uint8_t>& secret,

                               const uint8_t pubval[32])

   {

   secure_vector<uint8_t> out(32);

   curve25519_donna(out.data(), secret.data(), pubval);

   return out;

   }


}


AlgorithmIdentifier Curve25519_PublicKey::algorithm_identifier() const

   {

   return AlgorithmIdentifier(get_oid(), AlgorithmIdentifier::USE_EMPTY_PARAM);

   }


bool Curve25519_PublicKey::check_key(RandomNumberGenerator& /*rng*/, bool /*strong*/) const

   {

   return true; // no tests possible?

   }


Curve25519_PublicKey::Curve25519_PublicKey(const AlgorithmIdentifier& /*unused*/,

                                           const std::vector<uint8_t>& key_bits)

   {

   m_public = key_bits;


   size_check(m_public.size(), "public key");

   }


std::vector<uint8_t> Curve25519_PublicKey::public_key_bits() const

   {

   return m_public;

   }


Curve25519_PrivateKey::Curve25519_PrivateKey(const secure_vector<uint8_t>& secret_key)

   {

   if(secret_key.size() != 32)

     throw Decoding_Error("Invalid size for Curve25519 private key");


   m_public.resize(32);

   m_private = secret_key;

   curve25519_basepoint(m_public.data(), m_private.data());

   }


Curve25519_PrivateKey::Curve25519_PrivateKey(RandomNumberGenerator& rng)

   {

   m_private = rng.random_vec(32);

   m_public.resize(32);

   curve25519_basepoint(m_public.data(), m_private.data());

   }


Curve25519_PrivateKey::Curve25519_PrivateKey(const AlgorithmIdentifier& /*unused*/,

                                             const secure_vector<uint8_t>& key_bits)

   {

   BER_Decoder(key_bits).decode(m_private, ASN1_Type::OctetString).discard_remaining();


   size_check(m_private.size(), "private key");

   m_public.resize(32);

   curve25519_basepoint(m_public.data(), m_private.data());

   }


std::unique_ptr<Public_Key> Curve25519_PrivateKey::public_key() const

   {

   return std::make_unique<Curve25519_PublicKey>(public_value());

   }


secure_vector<uint8_t> Curve25519_PrivateKey::private_key_bits() const

   {

   return DER_Encoder().encode(m_private, ASN1_Type::OctetString).get_contents();

   }


bool Curve25519_PrivateKey::check_key(RandomNumberGenerator& /*rng*/, bool /*strong*/) const

   {

   std::vector<uint8_t> public_point(32);

   curve25519_basepoint(public_point.data(), m_private.data());

   return public_point == m_public;

   }


secure_vector<uint8_t> Curve25519_PrivateKey::agree(const uint8_t w[], size_t w_len) const

   {

   size_check(w_len, "public value");

   return curve25519(m_private, w);

   }


namespace {


/**

* Curve25519 operation

*/

class Curve25519_KA_Operation final : public PK_Ops::Key_Agreement_with_KDF

   {

   public:


      Curve25519_KA_Operation(const Curve25519_PrivateKey& key, const std::string& kdf) :

         PK_Ops::Key_Agreement_with_KDF(kdf),

         m_key(key) {}


      size_t agreed_value_size() const override { return 32; }


      secure_vector<uint8_t> raw_agree(const uint8_t w[], size_t w_len) override

         {

         return m_key.agree(w, w_len);

         }

   private:

      const Curve25519_PrivateKey& m_key;

   };


}


std::unique_ptr<PK_Ops::Key_Agreement>

Curve25519_PrivateKey::create_key_agreement_op(RandomNumberGenerator& /*rng*/,

                                               const std::string& params,

                                               const std::string& provider) const

   {

   if(provider == "base" || provider.empty())

      return std::make_unique<Curve25519_KA_Operation>(*this, params);

   throw Provider_Not_Found(algo_name(), provider);

   }


}

Botan::AlgorithmIdentifier
Definition: asn1_obj.h:429

Botan::AlgorithmIdentifier::USE_EMPTY_PARAM
@ USE_EMPTY_PARAM
Definition: asn1_obj.h:431

Botan::BER_Decoder
Definition: ber_dec.h:22

Botan::BER_Decoder::decode
BER_Decoder & decode(bool &out)
Definition: ber_dec.h:187

Botan::BER_Decoder::discard_remaining
BER_Decoder & discard_remaining()
Definition: ber_dec.cpp:228

Botan::Curve25519_PrivateKey
Definition: curve25519.h:61

Botan::Curve25519_PrivateKey::public_key
std::unique_ptr< Public_Key > public_key() const override
Definition: curve25519.cpp:90

Botan::Curve25519_PrivateKey::public_value
std::vector< uint8_t > public_value() const override
Definition: curve25519.h:83

Botan::Curve25519_PrivateKey::private_key_bits
secure_vector< uint8_t > private_key_bits() const override
Definition: curve25519.cpp:95

Botan::Curve25519_PrivateKey::agree
secure_vector< uint8_t > agree(const uint8_t w[], size_t w_len) const
Definition: curve25519.cpp:107

Botan::Curve25519_PrivateKey::create_key_agreement_op
std::unique_ptr< PK_Ops::Key_Agreement > create_key_agreement_op(RandomNumberGenerator &rng, const std::string &params, const std::string &provider) const override
Definition: curve25519.cpp:139

Botan::Curve25519_PrivateKey::Curve25519_PrivateKey
Curve25519_PrivateKey(const AlgorithmIdentifier &alg_id, const secure_vector< uint8_t > &key_bits)
Definition: curve25519.cpp:80

Botan::Curve25519_PrivateKey::check_key
bool check_key(RandomNumberGenerator &rng, bool strong) const override
Definition: curve25519.cpp:100

Botan::Curve25519_PublicKey::public_key_bits
std::vector< uint8_t > public_key_bits() const override
Definition: curve25519.cpp:58

Botan::Curve25519_PublicKey::m_public
std::vector< uint8_t > m_public
Definition: curve25519.h:55

Botan::Curve25519_PublicKey::check_key
bool check_key(RandomNumberGenerator &rng, bool strong) const override
Definition: curve25519.cpp:45

Botan::Curve25519_PublicKey::Curve25519_PublicKey
Curve25519_PublicKey()=default

Botan::Curve25519_PublicKey::algorithm_identifier
AlgorithmIdentifier algorithm_identifier() const override
Definition: curve25519.cpp:40

Botan::Curve25519_PublicKey::algo_name
std::string algo_name() const override
Definition: curve25519.h:18

Botan::DER_Encoder
Definition: der_enc.h:23

Botan::DER_Encoder::get_contents
secure_vector< uint8_t > get_contents()
Definition: der_enc.cpp:155

Botan::DER_Encoder::encode
DER_Encoder & encode(bool b)
Definition: der_enc.cpp:288

Botan::Decoding_Error
Definition: exceptn.h:188

Botan::PK_Ops::Key_Agreement_with_KDF
Definition: pk_ops_impl.h:168

Botan::Provider_Not_Found
Definition: exceptn.h:267

Botan::Public_Key::get_oid
virtual OID get_oid() const
Definition: pk_keys.cpp:53

Botan::RandomNumberGenerator
Definition: rng.h:26

Botan::RandomNumberGenerator::random_vec
secure_vector< uint8_t > random_vec(size_t bytes)
Definition: rng.h:167

final
int(* final)(unsigned char *, CTX *)
Definition: commoncrypto_hash.cpp:29

Botan::ASN1::to_string
std::string to_string(const BER_Object &obj)
Definition: asn1_obj.cpp:209

Botan
Definition: alg_id.cpp:13

Botan::ASN1_Type::OctetString
@ OctetString

Botan::curve25519_donna
void curve25519_donna(uint8_t mypublic[32], const uint8_t secret[32], const uint8_t basepoint[32])
Definition: donna.cpp:440

Botan::curve25519_basepoint
void curve25519_basepoint(uint8_t mypublic[32], const uint8_t secret[32])
Definition: curve25519.cpp:16

Botan::secure_vector
std::vector< T, secure_allocator< T > > secure_vector
Definition: secmem.h:65