Botan 3.12.0
Crypto and TLS for C&
ffi_keywrap.cpp
Go to the documentation of this file.
1/*
2* (C) 2017 Ribose Inc
3* 2023 Jack Lloyd
4*
5* Botan is released under the Simplified BSD License (see license.txt)
6*/
7
8#include <botan/ffi.h>
9
10#include <botan/assert.h>
11#include <botan/internal/ffi_util.h>
12
13#if defined(BOTAN_HAS_NIST_KEYWRAP)
14 #include <botan/block_cipher.h>
15 #include <botan/nist_keywrap.h>
16#endif
17
18extern "C" {
19
20using namespace Botan_FFI;
21
22int botan_nist_kw_enc(const char* cipher_algo,
23 int padded,
24 const uint8_t key[],
25 size_t key_len,
26 const uint8_t kek[],
27 size_t kek_len,
28 uint8_t wrapped_key[],
29 size_t* wrapped_key_len) {
30 if(any_null_pointers(cipher_algo, key, kek)) {
31 return BOTAN_FFI_ERROR_NULL_POINTER;
32 }
33#if defined(BOTAN_HAS_NIST_KEYWRAP)
34 return ffi_guard_thunk(__func__, [=]() -> int {
35 if(padded != 0 && padded != 1) {
36 return BOTAN_FFI_ERROR_NOT_IMPLEMENTED;
37 }
38 auto bc = Botan::BlockCipher::create_or_throw(cipher_algo);
39 bc->set_key(kek, kek_len);
40
41 std::vector<uint8_t> output;
42
43 if(padded == 0) {
44 output = Botan::nist_key_wrap(key, key_len, *bc);
45 } else {
46 output = Botan::nist_key_wrap_padded(key, key_len, *bc);
47 }
48
49 return write_vec_output(wrapped_key, wrapped_key_len, output);
50 });
51#else
52 BOTAN_UNUSED(cipher_algo, padded, key, key_len, kek, kek_len, wrapped_key, wrapped_key_len);
53 return BOTAN_FFI_ERROR_NOT_IMPLEMENTED;
54#endif
55}
56
57int botan_nist_kw_dec(const char* cipher_algo,
58 int padded,
59 const uint8_t wrapped_key[],
60 size_t wrapped_key_len,
61 const uint8_t kek[],
62 size_t kek_len,
63 uint8_t key[],
64 size_t* key_len) {
65 if(any_null_pointers(cipher_algo, wrapped_key, kek)) {
66 return BOTAN_FFI_ERROR_NULL_POINTER;
67 }
68#if defined(BOTAN_HAS_NIST_KEYWRAP)
69 return ffi_guard_thunk(__func__, [=]() -> int {
70 if(padded != 0 && padded != 1) {
71 return BOTAN_FFI_ERROR_NOT_IMPLEMENTED;
72 }
73
74 auto bc = Botan::BlockCipher::create_or_throw(cipher_algo);
75 bc->set_key(kek, kek_len);
76
77 Botan::secure_vector<uint8_t> output;
78
79 if(padded == 0) {
80 output = Botan::nist_key_unwrap(wrapped_key, wrapped_key_len, *bc);
81 } else {
82 output = Botan::nist_key_unwrap_padded(wrapped_key, wrapped_key_len, *bc);
83 }
84
85 return write_vec_output(key, key_len, output);
86 });
87#else
88 BOTAN_UNUSED(cipher_algo, padded, key, key_len, kek, kek_len, wrapped_key, wrapped_key_len);
89 return BOTAN_FFI_ERROR_NOT_IMPLEMENTED;
90#endif
91}
92
93int botan_key_wrap3394(const uint8_t key[],
94 size_t key_len,
95 const uint8_t kek[],
96 size_t kek_len,
97 uint8_t wrapped_key[],
98 size_t* wrapped_key_len) {
99 const std::string cipher_name = "AES-" + std::to_string(8 * kek_len);
100
101 return botan_nist_kw_enc(cipher_name.c_str(), 0, key, key_len, kek, kek_len, wrapped_key, wrapped_key_len);
102}
103
104int botan_key_unwrap3394(const uint8_t wrapped_key[],
105 size_t wrapped_key_len,
106 const uint8_t kek[],
107 size_t kek_len,
108 uint8_t key[],
109 size_t* key_len) {
110 const std::string cipher_name = "AES-" + std::to_string(8 * kek_len);
111
112 return botan_nist_kw_dec(cipher_name.c_str(), 0, wrapped_key, wrapped_key_len, kek, kek_len, key, key_len);
113}
114}
BOTAN_UNUSED
#define BOTAN_UNUSED
Definition assert.h:144
Botan::BlockCipher::create_or_throw
static std::unique_ptr< BlockCipher > create_or_throw(std::string_view algo_spec, std::string_view provider="")
Definition block_cipher.cpp:271
BOTAN_FFI_ERROR_NOT_IMPLEMENTED
@ BOTAN_FFI_ERROR_NOT_IMPLEMENTED
Definition ffi.h:140
BOTAN_FFI_ERROR_NULL_POINTER
@ BOTAN_FFI_ERROR_NULL_POINTER
Definition ffi.h:133
botan_nist_kw_enc
int botan_nist_kw_enc(const char *cipher_algo, int padded, const uint8_t key[], size_t key_len, const uint8_t kek[], size_t kek_len, uint8_t wrapped_key[], size_t *wrapped_key_len)
Definition ffi_keywrap.cpp:22
botan_key_unwrap3394
int botan_key_unwrap3394(const uint8_t wrapped_key[], size_t wrapped_key_len, const uint8_t kek[], size_t kek_len, uint8_t key[], size_t *key_len)
Definition ffi_keywrap.cpp:104
botan_key_wrap3394
int botan_key_wrap3394(const uint8_t key[], size_t key_len, const uint8_t kek[], size_t kek_len, uint8_t wrapped_key[], size_t *wrapped_key_len)
Definition ffi_keywrap.cpp:93
botan_nist_kw_dec
int botan_nist_kw_dec(const char *cipher_algo, int padded, const uint8_t wrapped_key[], size_t wrapped_key_len, const uint8_t kek[], size_t kek_len, uint8_t key[], size_t *key_len)
Definition ffi_keywrap.cpp:57
Botan_FFI
Definition ffi.cpp:21
Botan_FFI::ffi_guard_thunk
int ffi_guard_thunk(const char *func_name, T thunk)
Definition ffi_util.h:95
Botan_FFI::write_vec_output
int write_vec_output(uint8_t out[], size_t *out_len, std::span< const uint8_t > buf)
Definition ffi_util.h:264
Botan_FFI::any_null_pointers
bool any_null_pointers(Ptrs... ptr)
Definition mem_utils.h:54
Botan::nist_key_wrap
std::vector< uint8_t > nist_key_wrap(const uint8_t input[], size_t input_len, const BlockCipher &bc)
Definition nist_keywrap.cpp:90
Botan::nist_key_wrap_padded
std::vector< uint8_t > nist_key_wrap_padded(const uint8_t input[], size_t input_len, const BlockCipher &bc)
Definition nist_keywrap.cpp:148
Botan::nist_key_unwrap_padded
secure_vector< uint8_t > nist_key_unwrap_padded(const uint8_t input[], size_t input_len, const BlockCipher &bc)
Definition nist_keywrap.cpp:169
Botan::secure_vector
std::vector< T, secure_allocator< T > > secure_vector
Definition secmem.h:68
Botan::nist_key_unwrap
secure_vector< uint8_t > nist_key_unwrap(const uint8_t input[], size_t input_len, const BlockCipher &bc)
Definition nist_keywrap.cpp:116
Generated by doxygen 1.16.1