doxygen/xmss__hash_8h_source.html

/*

 * XMSS Hash

 * (C) 2016,2017 Matthias Gierlings

 *

 * Botan is released under the Simplified BSD License (see license.txt)

 **/


#ifndef BOTAN_XMSS_HASH_H_

#define BOTAN_XMSS_HASH_H_


#include <botan/hash.h>


//BOTAN_FUTURE_INTERNAL_HEADER(xmss_hash.h)


namespace Botan {


/**

 * A collection of pseudorandom hash functions required for XMSS and WOTS

 * computations.

 **/

class XMSS_Hash final

   {

   public:

      XMSS_Hash(const std::string& h_func_name);

      XMSS_Hash(const XMSS_Hash& hash);


      /**

       * Pseudoranom function creating a hash out of a key and data using

       * a cryptographic hash function.

       *

       * @param[out] result The hash calculated using key and data.

       * @param[in] key An n-byte key value.

       * @param[in] data A 32-byte XMSS_Address data value

       **/

      inline void prf(secure_vector<uint8_t>& result,

                      const secure_vector<uint8_t>& key,

                      const secure_vector<uint8_t>& data)

         {

         m_hash->update(m_zero_padding);

         m_hash->update(m_id_prf);

         m_hash->update(key);

         m_hash->update(data);

         m_hash->final(result);

         }


      /**

       * Pseudoranom function creating a hash out of a key and data using

       * a cryptographic hash function.

       *

       * @param[in] key An n-byte key value.

       * @param[in] data A 32-byte XMSS_Address data value

       * @return result The hash calculated using key and data.

       **/

      inline secure_vector<uint8_t> prf(const secure_vector<uint8_t>& key,

                                        const secure_vector<uint8_t>& data)

         {

         m_hash->update(m_zero_padding);

         m_hash->update(m_id_prf);

         m_hash->update(key);

         m_hash->update(data);

         return m_hash->final();

         }


      /**

       * F is a keyed cryptographic hash function used by the WOTS+ algorithm.

       *

       * @param[out] result The hash calculated using key and data.

       * @param[in] key key of length n bytes.

       * @param[in] data string of arbitrary length.

       **/

      void f(secure_vector<uint8_t>& result,

             const secure_vector<uint8_t>& key,

             const secure_vector<uint8_t>& data)

         {

         m_hash->update(m_zero_padding);

         m_hash->update(m_id_f);

         m_hash->update(key);

         m_hash->update(data);

         m_hash->final(result);

         }


      /**

       * Cryptographic hash function h accepting n byte keys and 2n byte

       * strings of data.

       *

       * @param[out] result The hash calculated using key and data.

       * @param[in] key key of length n bytes.

       * @param[in] data string of 2n bytes length.

       **/

      void h(secure_vector<uint8_t>& result,

             const secure_vector<uint8_t>& key,

             const secure_vector<uint8_t>& data);


      /**

       * Cryptographic hash function h accepting 3n byte keys and data

       * strings of arbitrary length.

       *

       * @param randomness n-byte value.

       * @param root n-byte root node.

       * @param index_bytes Index value padded with leading zeros.

       * @param data string of arbitrary length.

       *

       * @return hash value of n-bytes length.

       **/

      secure_vector<uint8_t> h_msg(const secure_vector<uint8_t>& randomness,

                                   const secure_vector<uint8_t>& root,

                                   const secure_vector<uint8_t>& index_bytes,

                                   const secure_vector<uint8_t>& data);


      /**

       * Initializes buffered h_msg computation with prefix data.

       *

       * @param randomness random n-byte value.

       * @param root n-byte root node.

       * @param index_bytes Index value padded with leading zeros.

       **/

      void h_msg_init(const secure_vector<uint8_t>& randomness,

                      const secure_vector<uint8_t>& root,

                      const secure_vector<uint8_t>& index_bytes);


      /**

       * Adds a message block to buffered h_msg computation.

       *

       * @param data A message block

       * @param size Length of the message block in bytes.

       **/

      void h_msg_update(const uint8_t data[], size_t size);


      /**

       * Finalizes buffered h_msg computation and retrieves the result.

       *

       * @return Hash calculated using the prefix set by h_msg_init() and

       *         message blocks provided through calls to h_msg_update().

       **/

      secure_vector<uint8_t> h_msg_final();


      size_t output_length() const { return m_output_length; }


   private:

      static const uint8_t m_id_f = 0x00;

      static const uint8_t m_id_h = 0x01;

      static const uint8_t m_id_hmsg = 0x02;

      static const uint8_t m_id_prf = 0x03;


      std::unique_ptr<HashFunction> m_hash;

      std::unique_ptr<HashFunction> m_msg_hash;

      //32 byte id prefixes prepended to the hash input.

      std::vector<uint8_t> m_zero_padding;

      size_t m_output_length;

      const std::string m_hash_func_name;


   };


}


#endif

Botan::XMSS_Hash
Definition: xmss_hash.h:22

Botan::XMSS_Hash::h_msg
secure_vector< uint8_t > h_msg(const secure_vector< uint8_t > &randomness, const secure_vector< uint8_t > &root, const secure_vector< uint8_t > &index_bytes, const secure_vector< uint8_t > &data)
Definition: xmss_hash.cpp:70

Botan::XMSS_Hash::f
void f(secure_vector< uint8_t > &result, const secure_vector< uint8_t > &key, const secure_vector< uint8_t > &data)
Definition: xmss_hash.h:71

Botan::XMSS_Hash::prf
secure_vector< uint8_t > prf(const secure_vector< uint8_t > &key, const secure_vector< uint8_t > &data)
Definition: xmss_hash.h:54

Botan::XMSS_Hash::output_length
size_t output_length() const
Definition: xmss_hash.h:137

Botan::XMSS_Hash::h_msg_update
void h_msg_update(const uint8_t data[], size_t size)
Definition: xmss_hash.cpp:59

Botan::XMSS_Hash::h_msg_final
secure_vector< uint8_t > h_msg_final()
Definition: xmss_hash.cpp:64

Botan::XMSS_Hash::h_msg_init
void h_msg_init(const secure_vector< uint8_t > &randomness, const secure_vector< uint8_t > &root, const secure_vector< uint8_t > &index_bytes)
Definition: xmss_hash.cpp:47

Botan::XMSS_Hash::h
void h(secure_vector< uint8_t > &result, const secure_vector< uint8_t > &key, const secure_vector< uint8_t > &data)
Definition: xmss_hash.cpp:36

Botan::XMSS_Hash::XMSS_Hash
XMSS_Hash(const std::string &h_func_name)
Definition: xmss_hash.cpp:20

Botan::XMSS_Hash::prf
void prf(secure_vector< uint8_t > &result, const secure_vector< uint8_t > &key, const secure_vector< uint8_t > &data)
Definition: xmss_hash.h:35

final
int(* final)(unsigned char *, CTX *)
Definition: commoncrypto_hash.cpp:29

Botan
Definition: alg_id.cpp:13

Botan::secure_vector
std::vector< T, secure_allocator< T > > secure_vector
Definition: secmem.h:65

hash
MechanismType hash
Definition: p11_mechanism.cpp:64