doxygen/ocb_8h_source.html

 /*
 * OCB Mode
 * (C) 2013,2014 Jack Lloyd
 * (C) 2016 Daniel Neus, Rohde & Schwarz Cybersecurity
 *
 * Botan is released under the Simplified BSD License (see license.txt)
 */

 #ifndef BOTAN_AEAD_OCB_H_
 #define BOTAN_AEAD_OCB_H_

 #include <botan/aead.h>

 namespace Botan {

 class BlockCipher;
 class L_computer;

 /**
 * OCB Mode (base class for OCB_Encryption and OCB_Decryption). Note
 * that OCB is patented, but is freely licensed in some circumstances.
 *
 * @see "The OCB Authenticated-Encryption Algorithm" RFC 7253
 *      https://tools.ietf.org/html/rfc7253
 * @see "OCB For Block Ciphers Without 128-Bit Blocks"
 *      (draft-krovetz-ocb-wide-d3) for the extension of OCB to
 *      block ciphers with larger block sizes.
 * @see Free Licenses http://www.cs.ucdavis.edu/~rogaway/ocb/license.htm
 * @see OCB home page http://www.cs.ucdavis.edu/~rogaway/ocb
 */
 class BOTAN_PUBLIC_API(2,0) OCB_Mode : public AEAD_Mode
    {
    public:
       void set_associated_data(const uint8_t ad[], size_t ad_len) override;

       std::string name() const override;

       size_t update_granularity() const override;

       Key_Length_Specification key_spec() const override;

       bool valid_nonce_length(size_t) const override;

       size_t tag_size() const override { return m_tag_size; }

       void clear() override;

       void reset() override;

       ~OCB_Mode();
    protected:
       /**
       * @param cipher the block cipher to use
       * @param tag_size is how big the auth tag will be
       */
       OCB_Mode(BlockCipher* cipher, size_t tag_size);

       size_t block_size() const { return m_block_size; }
       size_t par_blocks() const { return m_par_blocks; }
       size_t par_bytes() const { return m_checksum.size(); }

       // fixme make these private
       std::unique_ptr<BlockCipher> m_cipher;
       std::unique_ptr<L_computer> m_L;

       size_t m_block_index = 0;

       secure_vector<uint8_t> m_checksum;
       secure_vector<uint8_t> m_ad_hash;
    private:
       void start_msg(const uint8_t nonce[], size_t nonce_len) override;

       void key_schedule(const uint8_t key[], size_t length) override;

       secure_vector<uint8_t> update_nonce(const uint8_t nonce[], size_t nonce_len);

       const size_t m_tag_size;
       const size_t m_block_size;
       const size_t m_par_blocks;
       secure_vector<uint8_t> m_last_nonce;
       secure_vector<uint8_t> m_stretch;
    };

 class BOTAN_PUBLIC_API(2,0) OCB_Encryption final : public OCB_Mode
    {
    public:
       /**
       * @param cipher the block cipher to use
       * @param tag_size is how big the auth tag will be
       */
       OCB_Encryption(BlockCipher* cipher, size_t tag_size = 16) :
          OCB_Mode(cipher, tag_size) {}

       size_t output_length(size_t input_length) const override
          { return input_length + tag_size(); }

       size_t minimum_final_size() const override { return 0; }

       size_t process(uint8_t buf[], size_t size) override;

       void finish(secure_vector<uint8_t>& final_block, size_t offset = 0) override;
    private:
       void encrypt(uint8_t input[], size_t blocks);
    };

 class BOTAN_PUBLIC_API(2,0) OCB_Decryption final : public OCB_Mode
    {
    public:
       /**
       * @param cipher the block cipher to use
       * @param tag_size is how big the auth tag will be
       */
       OCB_Decryption(BlockCipher* cipher, size_t tag_size = 16) :
          OCB_Mode(cipher, tag_size) {}

       size_t output_length(size_t input_length) const override
          {
          BOTAN_ASSERT(input_length >= tag_size(), "Sufficient input");
          return input_length - tag_size();
          }

       size_t minimum_final_size() const override { return tag_size(); }

       size_t process(uint8_t buf[], size_t size) override;

       void finish(secure_vector<uint8_t>& final_block, size_t offset = 0) override;
    private:
       void decrypt(uint8_t input[], size_t blocks);
    };

 }

 #endif
Botan::OCB_Mode::m_cipher
std::unique_ptr< BlockCipher > m_cipher
Definition: ocb.h:63

Botan::OCB_Decryption::output_length
size_t output_length(size_t input_length) const override
Definition: ocb.h:116

Botan::Key_Length_Specification
Definition: key_spec.h:18

BOTAN_PUBLIC_API
#define BOTAN_PUBLIC_API(maj, min)
Definition: compiler.h:27

Botan::OCB_Mode::tag_size
size_t tag_size() const override
Definition: ocb.h:44

Botan::OCB_Mode::par_blocks
size_t par_blocks() const
Definition: ocb.h:59

BOTAN_ASSERT
#define BOTAN_ASSERT(expr, assertion_made)
Definition: assert.h:43

Botan::OCB_Decryption::OCB_Decryption
OCB_Decryption(BlockCipher *cipher, size_t tag_size=16)
Definition: ocb.h:113

Botan::OCB_Encryption
Definition: ocb.h:84

Botan::OCB_Decryption
Definition: ocb.h:106

Botan::CryptoBox::decrypt
std::string decrypt(const uint8_t input[], size_t input_len, const std::string &passphrase)
Definition: cryptobox.cpp:162

Botan::OCB_Encryption::OCB_Encryption
OCB_Encryption(BlockCipher *cipher, size_t tag_size=16)
Definition: ocb.h:91

Botan
Definition: alg_id.cpp:13

Botan::OCB_Mode::m_L
std::unique_ptr< L_computer > m_L
Definition: ocb.h:64

Botan::OCB_Encryption::output_length
size_t output_length(size_t input_length) const override
Definition: ocb.h:94

Botan::AEAD_Mode
Definition: aead.h:22

Botan::OCB_Mode::block_size
size_t block_size() const
Definition: ocb.h:58

Botan::OCB_Mode::m_ad_hash
secure_vector< uint8_t > m_ad_hash
Definition: ocb.h:69

Botan::OCB_Mode
Definition: ocb.h:31

Botan::OCB_Decryption::minimum_final_size
size_t minimum_final_size() const override
Definition: ocb.h:122

Botan::OCB_Mode::m_checksum
secure_vector< uint8_t > m_checksum
Definition: ocb.h:68

Botan::secure_vector
std::vector< T, secure_allocator< T > > secure_vector
Definition: secmem.h:88

Botan::OCB_Encryption::minimum_final_size
size_t minimum_final_size() const override
Definition: ocb.h:97

Botan::CryptoBox::encrypt
std::string encrypt(const uint8_t input[], size_t input_len, const std::string &passphrase, RandomNumberGenerator &rng)
Definition: cryptobox.cpp:43

Botan::BlockCipher
Definition: block_cipher.h:20

Botan::OCB_Mode::par_bytes
size_t par_bytes() const
Definition: ocb.h:60