Botan 3.5.0
Crypto and TLS for C&
kyber_modern.h
Go to the documentation of this file.
1/*
2 * Symmetric primitives for Kyber (modern (non-90s) mode)
3 * (C) 2022 Jack Lloyd
4 * (C) 2022 Hannes Rantzsch, René Meusel, neXenio GmbH
5 * (C) 2024 René Meusel, Rohde & Schwarz Cybersecurity
6 *
7 * Botan is released under the Simplified BSD License (see license.txt)
8 */
9
10#ifndef BOTAN_KYBER_MODERN_H_
11#define BOTAN_KYBER_MODERN_H_
12
13#include <botan/hash.h>
14#include <botan/xof.h>
15
16#include <botan/internal/kyber_symmetric_primitives.h>
17#include <botan/internal/loadstor.h>
18
19#include <memory>
20
21namespace Botan {
22
23class Kyber_Modern_Symmetric_Primitives : public Kyber_Symmetric_Primitives {
24 public:
25 Kyber_Modern_Symmetric_Primitives() :
26 m_sha3_512(HashFunction::create_or_throw("SHA-3(512)")),
27 m_sha3_256(HashFunction::create_or_throw("SHA-3(256)")),
28 m_shake256_256(HashFunction::create_or_throw("SHAKE-256(256)")),
29 m_shake128(Botan::XOF::create_or_throw("SHAKE-128")),
30 m_shake256(Botan::XOF::create_or_throw("SHAKE-256")) {}
31
32 protected:
33 HashFunction& get_G() const override { return *m_sha3_512; }
34
35 HashFunction& get_H() const override { return *m_sha3_256; }
36
37 HashFunction& get_KDF() const override { return *m_shake256_256; }
38
39 Botan::XOF& get_PRF(std::span<const uint8_t> seed, const uint8_t nonce) const override {
40 m_shake256->clear();
41 m_shake256->update(seed);
42 m_shake256->update(store_be(nonce));
43 return *m_shake256;
44 }
45
46 std::unique_ptr<Botan::XOF> get_XOF(std::span<const uint8_t> seed,
47 std::tuple<uint8_t, uint8_t> matrix_position) const override {
48 auto xof = m_shake128->new_object();
49 xof->update(seed);
50 xof->update(store_be(make_uint16(std::get<0>(matrix_position), std::get<1>(matrix_position))));
51 return xof;
52 }
53
54 private:
55 std::unique_ptr<HashFunction> m_sha3_512;
56 std::unique_ptr<HashFunction> m_sha3_256;
57 std::unique_ptr<HashFunction> m_shake256_256;
58 std::unique_ptr<Botan::XOF> m_shake128;
59 std::unique_ptr<Botan::XOF> m_shake256;
60};
61
62} // namespace Botan
63
64#endif
Botan::Kyber_Modern_Symmetric_Primitives
Definition kyber_modern.h:23
Botan::Kyber_Modern_Symmetric_Primitives::get_XOF
std::unique_ptr< Botan::XOF > get_XOF(std::span< const uint8_t > seed, std::tuple< uint8_t, uint8_t > matrix_position) const override
Definition kyber_modern.h:46
Botan::Kyber_Modern_Symmetric_Primitives::get_KDF
HashFunction & get_KDF() const override
Definition kyber_modern.h:37
Botan::Kyber_Modern_Symmetric_Primitives::get_G
HashFunction & get_G() const override
Definition kyber_modern.h:33
Botan::Kyber_Modern_Symmetric_Primitives::get_PRF
Botan::XOF & get_PRF(std::span< const uint8_t > seed, const uint8_t nonce) const override
Definition kyber_modern.h:39
Botan::Kyber_Modern_Symmetric_Primitives::get_H
HashFunction & get_H() const override
Definition kyber_modern.h:35
Botan::Kyber_Modern_Symmetric_Primitives::Kyber_Modern_Symmetric_Primitives
Kyber_Modern_Symmetric_Primitives()
Definition kyber_modern.h:25
Botan::Kyber_Symmetric_Primitives
Definition kyber_symmetric_primitives.h:32
Botan::store_be
constexpr auto store_be(ParamTs &&... params)
Definition loadstor.h:707
Botan::make_uint16
constexpr uint16_t make_uint16(uint8_t i0, uint8_t i1)
Definition loadstor.h:88
Generated by doxygen 1.11.0