Botan::CryptoBox Namespace Reference

Namespaces
namespace	BOTAN_DIAGNOSTIC_IGNORE_DEPRECATED_DECLARATIONS

Functions
std::string	decrypt (const uint8_t input[], size_t input_len, std::string_view passphrase)
std::string	decrypt (std::string_view input, std::string_view passphrase)
secure_vector< uint8_t >	decrypt_bin (const uint8_t input[], size_t input_len, std::string_view passphrase)
secure_vector< uint8_t >	decrypt_bin (std::string_view input, std::string_view passphrase)
std::string	encrypt (const uint8_t input[], size_t input_len, std::string_view passphrase, RandomNumberGenerator &rng)

Detailed Description

This namespace holds various high-level crypto functions

Function Documentation

decrypt() [1/2]

std::string Botan::CryptoBox::decrypt	(	const uint8_t	input[],
		size_t	input_len,
		std::string_view	passphrase )

Decrypt a message encrypted with CryptoBox::encrypt

Parameters

input	the input data
input_len	the length of input in bytes
passphrase	the passphrase used to encrypt the message

Definition at line 168 of file cryptobox.cpp.

                                                                                      {
   return bytes_to_string(decrypt_bin(input, input_len, passphrase));
}

References Botan::bytes_to_string(), and decrypt_bin().

Referenced by Botan::CryptoBox::BOTAN_DIAGNOSTIC_IGNORE_DEPRECATED_DECLARATIONS::decrypt(), and decrypt().

decrypt() [2/2]

std::string Botan::CryptoBox::decrypt	(	std::string_view	input,
		std::string_view	passphrase )

Decrypt a message encrypted with CryptoBox::encrypt

Parameters

input	the input data
passphrase	the passphrase used to encrypt the message

Definition at line 172 of file cryptobox.cpp.

                                                                   {
   return decrypt(as_span_of_bytes(input), passphrase);
}

References Botan::as_span_of_bytes(), and decrypt().

decrypt_bin() [1/2]

secure_vector< uint8_t > Botan::CryptoBox::decrypt_bin	(	const uint8_t	input[],
		size_t	input_len,
		std::string_view	passphrase )

Decrypt a message encrypted with CryptoBox::encrypt

Parameters

input	the input data
input_len	the length of input in bytes
passphrase	the passphrase used to encrypt the message

Definition at line 96 of file cryptobox.cpp.

                                                                                                       {
   DataSource_Memory input_src(input, input_len);
   secure_vector<uint8_t> ciphertext = PEM_Code::decode_check_label(input_src, "BOTAN CRYPTOBOX MESSAGE");
 
   if(ciphertext.size() < CRYPTOBOX_HEADER_LEN) {
      throw Decoding_Error("Invalid CryptoBox input");
   }
 
   for(size_t i = 0; i != VERSION_CODE_LEN; ++i) {
      uint32_t version = load_be<uint32_t>(ciphertext.data(), 0);
      if(version != CRYPTOBOX_VERSION_CODE) {
         throw Decoding_Error("Bad CryptoBox version");
      }
   }
 
   const uint8_t* pbkdf_salt = &ciphertext[VERSION_CODE_LEN];
   const uint8_t* box_mac = &ciphertext[VERSION_CODE_LEN + PBKDF_SALT_LEN];
 
   auto pbkdf_fam = PasswordHashFamily::create_or_throw("PBKDF2(HMAC(SHA-512))");
   auto pbkdf = pbkdf_fam->from_params(PBKDF_ITERATIONS);
 
   secure_vector<uint8_t> master_key(CIPHER_KEY_LEN + MAC_KEY_LEN + CIPHER_IV_LEN);
 
   pbkdf->derive_key(
      master_key.data(), master_key.size(), passphrase.data(), passphrase.size(), pbkdf_salt, PBKDF_SALT_LEN);
 
   const uint8_t* mk = master_key.data();
   const uint8_t* cipher_key = mk;
   const uint8_t* mac_key = mk + CIPHER_KEY_LEN;
   const uint8_t* iv = mk + CIPHER_KEY_LEN + MAC_KEY_LEN;
 
   // Now authenticate and decrypt
   std::unique_ptr<MessageAuthenticationCode> hmac = MessageAuthenticationCode::create_or_throw("HMAC(SHA-512)");
   hmac->set_key(mac_key, MAC_KEY_LEN);
 
   if(ciphertext.size() > CRYPTOBOX_HEADER_LEN) {
      hmac->update(&ciphertext[CRYPTOBOX_HEADER_LEN], ciphertext.size() - CRYPTOBOX_HEADER_LEN);
   }
   secure_vector<uint8_t> computed_mac = hmac->final();
 
   if(!CT::is_equal(computed_mac.data(), box_mac, MAC_OUTPUT_LEN).as_bool()) {
      throw Decoding_Error("CryptoBox integrity failure");
   }
 
   auto ctr = Cipher_Mode::create_or_throw("Serpent/CTR-BE", Cipher_Dir::Decryption);
   ctr->set_key(cipher_key, CIPHER_KEY_LEN);
   ctr->start(iv, CIPHER_IV_LEN);
   ctr->finish(ciphertext, CRYPTOBOX_HEADER_LEN);
 
   ciphertext.erase(ciphertext.begin(), ciphertext.begin() + CRYPTOBOX_HEADER_LEN);
   return ciphertext;
}

References Botan::Cipher_Mode::create_or_throw(), Botan::MessageAuthenticationCode::create_or_throw(), Botan::PasswordHashFamily::create_or_throw(), Botan::PEM_Code::decode_check_label(), Botan::Decryption, Botan::CT::is_equal(), and Botan::load_be().

Referenced by decrypt(), Botan::CryptoBox::BOTAN_DIAGNOSTIC_IGNORE_DEPRECATED_DECLARATIONS::decrypt_bin(), and decrypt_bin().

decrypt_bin() [2/2]

secure_vector< uint8_t > Botan::CryptoBox::decrypt_bin	(	std::string_view	input,
		std::string_view	passphrase )

Decrypt a message encrypted with CryptoBox::encrypt

Parameters

input	the input data
passphrase	the passphrase used to encrypt the message

Definition at line 164 of file cryptobox.cpp.

                                                                                    {
   return decrypt_bin(as_span_of_bytes(input), passphrase);
}

References Botan::as_span_of_bytes(), and decrypt_bin().

encrypt()

std::string Botan::CryptoBox::encrypt	(	const uint8_t	input[],
		size_t	input_len,
		std::string_view	passphrase,
		RandomNumberGenerator &	rng )

Encrypt a message using a passphrase

Parameters

input	the input data
input_len	the length of input in bytes
passphrase	the passphrase used to encrypt the message
rng	a ref to a random number generator, such as AutoSeeded_RNG

Definition at line 42 of file cryptobox.cpp.

                                                                                                                  {
   /*
   Output format is:
      version # (4 bytes)
      salt (10 bytes)
      mac (20 bytes)
      ciphertext
   */
   secure_vector<uint8_t> out_buf(CRYPTOBOX_HEADER_LEN + input_len);
   store_be(CRYPTOBOX_VERSION_CODE, out_buf.data());
   rng.randomize(&out_buf[VERSION_CODE_LEN], PBKDF_SALT_LEN);
   // space left for MAC here
   if(input_len > 0) {
      copy_mem(&out_buf[CRYPTOBOX_HEADER_LEN], input, input_len);
   }
 
   // Generate the keys and IV
 
   auto pbkdf_fam = PasswordHashFamily::create_or_throw("PBKDF2(HMAC(SHA-512))");
   auto pbkdf = pbkdf_fam->from_params(PBKDF_ITERATIONS);
 
   secure_vector<uint8_t> master_key(CIPHER_KEY_LEN + MAC_KEY_LEN + CIPHER_IV_LEN);
 
   pbkdf->derive_key(master_key.data(),
                     master_key.size(),
                     passphrase.data(),
                     passphrase.size(),
                     &out_buf[VERSION_CODE_LEN],
                     PBKDF_SALT_LEN);
 
   const uint8_t* mk = master_key.data();
   const uint8_t* cipher_key = mk;
   const uint8_t* mac_key = mk + CIPHER_KEY_LEN;
   const uint8_t* iv = mk + CIPHER_KEY_LEN + MAC_KEY_LEN;
 
   // Now encrypt and authenticate
   auto ctr = Cipher_Mode::create_or_throw("Serpent/CTR-BE", Cipher_Dir::Encryption);
   ctr->set_key(cipher_key, CIPHER_KEY_LEN);
   ctr->start(iv, CIPHER_IV_LEN);
   ctr->finish(out_buf, CRYPTOBOX_HEADER_LEN);
 
   std::unique_ptr<MessageAuthenticationCode> hmac = MessageAuthenticationCode::create_or_throw("HMAC(SHA-512)");
   hmac->set_key(mac_key, MAC_KEY_LEN);
   if(input_len > 0) {
      hmac->update(&out_buf[CRYPTOBOX_HEADER_LEN], input_len);
   }
 
   // Can't write directly because of MAC truncation
   secure_vector<uint8_t> mac = hmac->final();
   copy_mem(&out_buf[VERSION_CODE_LEN + PBKDF_SALT_LEN], mac.data(), MAC_OUTPUT_LEN);
 
   return PEM_Code::encode(out_buf, "BOTAN CRYPTOBOX MESSAGE");
}

References Botan::copy_mem(), Botan::Cipher_Mode::create_or_throw(), Botan::MessageAuthenticationCode::create_or_throw(), Botan::PasswordHashFamily::create_or_throw(), Botan::PEM_Code::encode(), Botan::Encryption, Botan::RandomNumberGenerator::randomize(), and Botan::store_be().