Botan 3.9.0
Crypto and TLS for C&
sp_hash_shake.h
Go to the documentation of this file.
1/*
2 * SLH-DSA Hash Implementation for SHA-256
3 * (C) 2023 Jack Lloyd
4 * 2023 Fabian Albert, René Meusel, Amos Treiber - Rohde & Schwarz Cybersecurity
5 *
6 * Botan is released under the Simplified BSD License (see license.txt)
7 */
8
9#ifndef BOTAN_SP_HASH_SHAKE_H_
10#define BOTAN_SP_HASH_SHAKE_H_
11
12#include <botan/internal/sp_hash.h>
13
14#include <botan/internal/shake.h>
15
16namespace Botan {
17
18/**
19 * Implementation of SLH-DSA hash function abstraction for SHAKE256
20 */
21class Sphincs_Hash_Functions_Shake : public Sphincs_Hash_Functions {
22 private:
23 HashFunction& tweak_hash(const Sphincs_Address& address, size_t input_length) override {
24 BOTAN_UNUSED(input_length);
25 m_hash.update(m_pub_seed);
26 m_hash.update(address.to_bytes());
27 return m_hash;
28 }
29
30 std::vector<uint8_t> H_msg_digest(StrongSpan<const SphincsMessageRandomness> r,
31 const SphincsTreeNode& root,
32 const SphincsMessageInternal& message) override {
33 m_h_msg_hash.update(r);
34 m_h_msg_hash.update(m_pub_seed);
35 m_h_msg_hash.update(root);
36 m_h_msg_hash.update(message.prefix);
37 m_h_msg_hash.update(message.message);
38
39 return m_h_msg_hash.final_stdvec();
40 }
41
42 public:
43 Sphincs_Hash_Functions_Shake(const Sphincs_Parameters& sphincs_params, const SphincsPublicSeed& pub_seed) :
44 Sphincs_Hash_Functions(sphincs_params, pub_seed),
45 m_seeded_hash(sphincs_params.n() * 8),
46 m_hash(sphincs_params.n() * 8),
47 m_h_msg_hash(8 * sphincs_params.h_msg_digest_bytes()) {
48 m_seeded_hash.update(m_pub_seed);
49 }
50
51 void PRF_msg(StrongSpan<SphincsMessageRandomness> out,
52 StrongSpan<const SphincsSecretPRF> sk_prf,
53 StrongSpan<const SphincsOptionalRandomness> opt_rand,
54 const SphincsMessageInternal& msg) override {
55 m_hash.update(sk_prf);
56 m_hash.update(opt_rand);
57 m_hash.update(msg.prefix);
58 m_hash.update(msg.message);
59 m_hash.final(out);
60 }
61
62 std::string msg_hash_function_name() const override { return m_h_msg_hash.name(); }
63
64 private:
65 SHAKE_256 m_seeded_hash;
66 SHAKE_256 m_hash;
67 SHAKE_256 m_h_msg_hash;
68};
69
70} // namespace Botan
71
72#endif
BOTAN_UNUSED
#define BOTAN_UNUSED
Definition assert.h:144
Botan::SHAKE_256
Definition shake.h:52
Botan::Sphincs_Address
Definition sp_address.h:34
Botan::Sphincs_Address::to_bytes
std::array< uint8_t, 32 > to_bytes() const
Definition sp_address.h:138
Botan::Sphincs_Hash_Functions_Shake::Sphincs_Hash_Functions_Shake
Sphincs_Hash_Functions_Shake(const Sphincs_Parameters &sphincs_params, const SphincsPublicSeed &pub_seed)
Definition sp_hash_shake.h:43
Botan::Sphincs_Hash_Functions_Shake::msg_hash_function_name
std::string msg_hash_function_name() const override
Definition sp_hash_shake.h:62
Botan::Sphincs_Hash_Functions_Shake::PRF_msg
void PRF_msg(StrongSpan< SphincsMessageRandomness > out, StrongSpan< const SphincsSecretPRF > sk_prf, StrongSpan< const SphincsOptionalRandomness > opt_rand, const SphincsMessageInternal &msg) override
Definition sp_hash_shake.h:51
Botan::Sphincs_Hash_Functions::m_pub_seed
const SphincsPublicSeed & m_pub_seed
Definition sp_hash.h:103
Botan::Sphincs_Hash_Functions::Sphincs_Hash_Functions
Sphincs_Hash_Functions(const Sphincs_Parameters &sphincs_params, const SphincsPublicSeed &pub_seed)
Definition sp_hash.cpp:30
Botan::Sphincs_Parameters
Definition sp_parameters.h:45
Botan::root
Gf448Elem root(const Gf448Elem &elem)
Compute the root of elem in the field.
Definition curve448_gf.cpp:317
Botan::SphincsTreeNode
Strong< std::vector< uint8_t >, struct SphincsTreeNode_ > SphincsTreeNode
Either an XMSS or FORS tree node or leaf.
Definition sp_types.h:70
Botan::SphincsPublicSeed
Strong< std::vector< uint8_t >, struct SphincsPublicSeed_ > SphincsPublicSeed
Definition sp_types.h:60
Botan::SphincsMessageInternal
M' representation of FIPS 205 (the input to slh_sign_internal and slh_verify_internal)
Definition sp_types.h:52
Botan::SphincsMessageInternal::message
SphincsInputMessage message
Definition sp_types.h:54
Botan::SphincsMessageInternal::prefix
SphincsMessagePrefix prefix
Definition sp_types.h:53
Generated by doxygen 1.14.0