Botan  2.7.0
Crypto and TLS for C++11
xmss_common_ops.cpp
Go to the documentation of this file.
1 /*
2  * XMSS Common Ops
3  * Operations shared by XMSS signature generation and verification operations.
4  * (C) 2016,2017 Matthias Gierlings
5  *
6  * Botan is released under the Simplified BSD License (see license.txt)
7  **/
8 
9 #include <botan/xmss_common_ops.h>
10 
11 namespace Botan {
12 
13 void
15  const secure_vector<uint8_t>& left,
16  const secure_vector<uint8_t>& right,
17  XMSS_Address& adrs,
18  const secure_vector<uint8_t>& seed,
19  XMSS_Hash& hash)
20  {
22  secure_vector<uint8_t> key { hash.prf(seed, adrs.bytes()) };
23 
25  secure_vector<uint8_t> bitmask_l { hash.prf(seed, adrs.bytes()) };
26 
28  secure_vector<uint8_t> bitmask_r { hash.prf(seed, adrs.bytes()) };
29 
30  BOTAN_ASSERT(bitmask_l.size() == left.size() &&
31  bitmask_r.size() == right.size(),
32  "Bitmask size doesn't match node size.");
33 
35  for(size_t i = 0; i < left.size(); i++)
36  {
37  concat_xor[i] = left[i] ^ bitmask_l[i];
38  concat_xor[i + left.size()] = right[i] ^ bitmask_r[i];
39  }
40 
41  hash.h(result, key, concat_xor);
42  }
43 
44 
45 void
47  wots_keysig_t pk,
48  XMSS_Address& adrs,
49  const secure_vector<uint8_t>& seed,
50  XMSS_Hash& hash)
51  {
52  size_t l = m_xmss_params.len();
53  adrs.set_tree_height(0);
54 
55  while(l > 1)
56  {
57  for(size_t i = 0; i < l >> 1; i++)
58  {
59  adrs.set_tree_index(i);
60  randomize_tree_hash(pk[i], pk[2 * i], pk[2 * i + 1], adrs, seed, hash);
61  }
62  if(l & 0x01)
63  {
64  pk[l >> 1] = pk[l - 1];
65  }
66  l = (l >> 1) + (l & 0x01);
67  adrs.set_tree_height(adrs.get_tree_height() + 1);
68  }
69  result = pk[0];
70  }
71 
72 }
void set_tree_height(uint32_t value)
Definition: xmss_address.h:251
void create_l_tree(secure_vector< uint8_t > &result, wots_keysig_t pk, XMSS_Address &adrs, const secure_vector< uint8_t > &seed, XMSS_Hash &hash)
const secure_vector< uint8_t > & bytes() const
Definition: xmss_address.h:322
#define BOTAN_ASSERT(expr, assertion_made)
Definition: assert.h:43
uint32_t get_tree_height() const
Definition: xmss_address.h:235
XMSS_Parameters m_xmss_params
Definition: alg_id.cpp:13
std::vector< secure_vector< uint8_t > > wots_keysig_t
void set_key_mask_mode(Key_Mask value)
Definition: xmss_address.h:134
size_t element_size() const
std::vector< T, secure_allocator< T > > secure_vector
Definition: secmem.h:88
void randomize_tree_hash(secure_vector< uint8_t > &result, const secure_vector< uint8_t > &left, const secure_vector< uint8_t > &right, XMSS_Address &adrs, const secure_vector< uint8_t > &seed, XMSS_Hash &hash)
void set_tree_index(uint32_t value)
Definition: xmss_address.h:313
MechanismType hash