doxygen/frodo__constants_8h_source.html

/*

 * FrodoKEM constants

 *

 * The Fellowship of the FrodoKEM:

 * (C) 2023 Jack Lloyd

 *     2023 René Meusel, Amos Treiber - Rohde & Schwarz Cybersecurity

 *

 * Botan is released under the Simplified BSD License (see license.txt)

 */


#ifndef BOTAN_FRODOKEM_CONSTANTS_H_

#define BOTAN_FRODOKEM_CONSTANTS_H_


#include <botan/frodo_mode.h>

#include <botan/internal/frodo_types.h>


#include <memory>

#include <string>

#include <vector>


namespace Botan {


class XOF;


class BOTAN_TEST_API FrodoKEMConstants final {

   public:

      explicit FrodoKEMConstants(FrodoKEMMode mode);


      ~FrodoKEMConstants();


      FrodoKEMConstants(const FrodoKEMConstants& other) : FrodoKEMConstants(other.m_mode) {}


      FrodoKEMConstants(FrodoKEMConstants&& other) = default;

      FrodoKEMConstants& operator=(const FrodoKEMConstants& other) = delete;

      FrodoKEMConstants& operator=(FrodoKEMConstants&& other) = default;


      FrodoKEMMode mode() const { return m_mode; }


      size_t cdf_table_len() const { return m_cdf_table.size(); }


      uint16_t cdf_table_at(size_t i) const { return m_cdf_table.at(i); }


      size_t estimated_strength() const { return m_nist_strength; }


      size_t n() const { return m_n; }


      size_t b() const { return m_b; }  // extracted bits


      size_t d() const { return m_d; }  // D = logq


      size_t n_bar() const { return m_n_bar; }


      size_t len_a_bytes() const { return m_len_a / 8; }  // len of seed_a in bytes


      size_t len_se_bytes() const { return m_len_se / 8; }


      size_t len_sec_bytes() const { return m_nist_strength / 8; }


      size_t len_salt_bytes() const { return m_len_salt / 8; }


      size_t len_ct_bytes() const {

         return (m_d * m_n * m_n_bar + m_d * m_n_bar * m_n_bar + m_len_salt) / 8;

      }  // Ciphertext length in bytes


      size_t len_public_key_bytes() const { return (m_len_a + (m_d * m_n * m_n_bar)) / 8; }


      size_t len_private_key_bytes() const {

         return (m_nist_strength + m_len_a + (m_d * m_n * m_n_bar) + (m_n_bar * m_n * 16) + m_nist_strength) / 8;

      }


      size_t len_packed_b_bytes() const { return (m_d * m_n * m_n_bar) / 8; }


      size_t len_packed_c_bytes() const { return (m_d * m_n_bar * m_n_bar) / 8; }


      FrodoDomainSeparator encapsulation_domain_separator() const { return FrodoDomainSeparator({0x96}); }


      FrodoDomainSeparator keygen_domain_separator() const { return FrodoDomainSeparator({0x5F}); }


      // TODO: those aren't actually const. We worked around some constness

      //       issues when playing with the XOFs that are residing in this class.

      XOF& SHAKE_XOF() const;


   private:

      FrodoKEMMode m_mode;

      size_t m_nist_strength;

      size_t m_len_salt;

      size_t m_len_se;

      size_t m_len_a;

      size_t m_b;

      size_t m_n;

      size_t m_n_bar;

      size_t m_d;


      std::vector<uint16_t> m_cdf_table;  // Distribution table T_chi


      mutable std::unique_ptr<XOF> m_shake_xof;


      std::string m_shake;

};


}  // namespace Botan


#endif

BOTAN_TEST_API
#define BOTAN_TEST_API
Definition api.h:41

Botan::FrodoKEMConstants::len_ct_bytes
size_t len_ct_bytes() const
Definition frodo_constants.h:61

Botan::FrodoKEMConstants::d
size_t d() const
Definition frodo_constants.h:49

Botan::FrodoKEMConstants::estimated_strength
size_t estimated_strength() const
Definition frodo_constants.h:43

Botan::FrodoKEMConstants::keygen_domain_separator
FrodoDomainSeparator keygen_domain_separator() const
Definition frodo_constants.h:77

Botan::FrodoKEMConstants::len_private_key_bytes
size_t len_private_key_bytes() const
Definition frodo_constants.h:67

Botan::FrodoKEMConstants::operator=
FrodoKEMConstants & operator=(FrodoKEMConstants &&other)=default

Botan::FrodoKEMConstants::operator=
FrodoKEMConstants & operator=(const FrodoKEMConstants &other)=delete

Botan::FrodoKEMConstants::len_public_key_bytes
size_t len_public_key_bytes() const
Definition frodo_constants.h:65

Botan::FrodoKEMConstants::FrodoKEMConstants
FrodoKEMConstants(const FrodoKEMConstants &other)
Definition frodo_constants.h:31

Botan::FrodoKEMConstants::len_sec_bytes
size_t len_sec_bytes() const
Definition frodo_constants.h:57

Botan::FrodoKEMConstants::mode
FrodoKEMMode mode() const
Definition frodo_constants.h:37

Botan::FrodoKEMConstants::FrodoKEMConstants
FrodoKEMConstants(FrodoKEMMode mode)
Definition frodo_constants.cpp:18

Botan::FrodoKEMConstants::FrodoKEMConstants
FrodoKEMConstants(FrodoKEMConstants &&other)=default

Botan::FrodoKEMConstants::n
size_t n() const
Definition frodo_constants.h:45

Botan::FrodoKEMConstants::len_se_bytes
size_t len_se_bytes() const
Definition frodo_constants.h:55

Botan::FrodoKEMConstants::cdf_table_at
uint16_t cdf_table_at(size_t i) const
Definition frodo_constants.h:41

Botan::FrodoKEMConstants::len_a_bytes
size_t len_a_bytes() const
Definition frodo_constants.h:53

Botan::FrodoKEMConstants::len_salt_bytes
size_t len_salt_bytes() const
Definition frodo_constants.h:59

Botan::FrodoKEMConstants::len_packed_c_bytes
size_t len_packed_c_bytes() const
Definition frodo_constants.h:73

Botan::FrodoKEMConstants::n_bar
size_t n_bar() const
Definition frodo_constants.h:51

Botan::FrodoKEMConstants::len_packed_b_bytes
size_t len_packed_b_bytes() const
Definition frodo_constants.h:71

Botan::FrodoKEMConstants::encapsulation_domain_separator
FrodoDomainSeparator encapsulation_domain_separator() const
Definition frodo_constants.h:75

Botan::FrodoKEMConstants::~FrodoKEMConstants
~FrodoKEMConstants()

Botan::FrodoKEMConstants::b
size_t b() const
Definition frodo_constants.h:47

Botan::FrodoKEMConstants::cdf_table_len
size_t cdf_table_len() const
Definition frodo_constants.h:39

Botan::FrodoKEMMode
Definition frodo_mode.h:20

Botan::SHAKE_XOF
Definition shake_xof.h:23

Botan::XOF
Definition xof.h:29

Botan
Definition alg_id.cpp:13

Botan::FrodoDomainSeparator
Strong< std::array< uint8_t, 1 >, struct FrodoDoaminSeparator_ > FrodoDomainSeparator
Definition frodo_types.h:47