doxygen/sp__hash__shake_8h_source.html

/*

 * SLH-DSA Hash Implementation for SHA-256

 * (C) 2023 Jack Lloyd

 *     2023 Fabian Albert, René Meusel, Amos Treiber - Rohde & Schwarz Cybersecurity

 *

 * Botan is released under the Simplified BSD License (see license.txt)

 */


#ifndef BOTAN_SP_HASH_SHAKE_H_

#define BOTAN_SP_HASH_SHAKE_H_


#include <botan/internal/sp_hash.h>


#include <botan/internal/shake.h>


namespace Botan {


/**

 * Implementation of SLH-DSA hash function abstraction for SHAKE256

 */


class Sphincs_Hash_Functions_Shake : public Sphincs_Hash_Functions {

   private:

      HashFunction& tweak_hash(const Sphincs_Address& address, size_t input_length) override {

         BOTAN_UNUSED(input_length);

         m_hash.update(m_pub_seed);

         m_hash.update(address.to_bytes());

         return m_hash;

      }


      std::vector<uint8_t> H_msg_digest(StrongSpan<const SphincsMessageRandomness> r,

                                        const SphincsTreeNode& root,

                                        const SphincsMessageInternal& message) override {

         m_h_msg_hash.update(r);

         m_h_msg_hash.update(m_pub_seed);

         m_h_msg_hash.update(root);

         m_h_msg_hash.update(message.prefix);

         m_h_msg_hash.update(message.message);


         return m_h_msg_hash.final_stdvec();

      }


   public:


      Sphincs_Hash_Functions_Shake(const Sphincs_Parameters& sphincs_params, const SphincsPublicSeed& pub_seed) :

            Sphincs_Hash_Functions(sphincs_params, pub_seed),

            m_seeded_hash(sphincs_params.n() * 8),

            m_hash(sphincs_params.n() * 8),

            m_h_msg_hash(8 * sphincs_params.h_msg_digest_bytes()) {

         m_seeded_hash.update(m_pub_seed);

      }


      void PRF_msg(StrongSpan<SphincsMessageRandomness> out,

                   StrongSpan<const SphincsSecretPRF> sk_prf,

                   StrongSpan<const SphincsOptionalRandomness> opt_rand,

                   const SphincsMessageInternal& msg) override {

         m_hash.update(sk_prf);

         m_hash.update(opt_rand);

         m_hash.update(msg.prefix);

         m_hash.update(msg.message);

         m_hash.final(out);

      }


      std::string msg_hash_function_name() const override { return m_h_msg_hash.name(); }


   private:

      SHAKE_256 m_seeded_hash;

      SHAKE_256 m_hash;

      SHAKE_256 m_h_msg_hash;

};


}  // namespace Botan


#endif

BOTAN_UNUSED
#define BOTAN_UNUSED
Definition assert.h:118

Botan::Buffered_Computation::update
void update(const uint8_t in[], size_t length)
Definition buf_comp.h:35

Botan::Buffered_Computation::final_stdvec
std::vector< uint8_t > final_stdvec()
Definition buf_comp.h:84

Botan::Buffered_Computation::final
void final(uint8_t out[])
Definition buf_comp.h:70

Botan::HashFunction
Definition hash.h:21

Botan::SHAKE_256
Definition shake.h:52

Botan::SHAKE_256::name
std::string name() const override
Definition shake.cpp:49

Botan::Sphincs_Address
Definition sp_address.h:34

Botan::Sphincs_Address::to_bytes
std::array< uint8_t, 32 > to_bytes() const
Definition sp_address.h:139

Botan::Sphincs_Hash_Functions_Shake
Definition sp_hash_shake.h:21

Botan::Sphincs_Hash_Functions_Shake::Sphincs_Hash_Functions_Shake
Sphincs_Hash_Functions_Shake(const Sphincs_Parameters &sphincs_params, const SphincsPublicSeed &pub_seed)
Definition sp_hash_shake.h:43

Botan::Sphincs_Hash_Functions_Shake::msg_hash_function_name
std::string msg_hash_function_name() const override
Definition sp_hash_shake.h:62

Botan::Sphincs_Hash_Functions_Shake::PRF_msg
void PRF_msg(StrongSpan< SphincsMessageRandomness > out, StrongSpan< const SphincsSecretPRF > sk_prf, StrongSpan< const SphincsOptionalRandomness > opt_rand, const SphincsMessageInternal &msg) override
Definition sp_hash_shake.h:51

Botan::Sphincs_Hash_Functions
Definition sp_hash.h:23

Botan::Sphincs_Hash_Functions::m_pub_seed
const SphincsPublicSeed & m_pub_seed
Definition sp_hash.h:103

Botan::Sphincs_Parameters
Definition sp_parameters.h:45

Botan::StrongSpan
Definition strong_type.h:614

Botan::Strong< std::vector< uint8_t >, struct SphincsTreeNode_ >

Botan
Definition alg_id.cpp:13

Botan::root
Gf448Elem root(const Gf448Elem &elem)
Compute the root of elem in the field.
Definition curve448_gf.cpp:354

Botan::SphincsMessageInternal
M' representation of FIPS 205 (the input to slh_sign_internal and slh_verify_internal)
Definition sp_types.h:52

Botan::SphincsMessageInternal::message
SphincsInputMessage message
Definition sp_types.h:54

Botan::SphincsMessageInternal::prefix
SphincsMessagePrefix prefix
Definition sp_types.h:53