diff options
author | Jack Lloyd <[email protected]> | 2019-02-18 09:49:50 -0500 |
---|---|---|
committer | Jack Lloyd <[email protected]> | 2019-02-18 09:49:50 -0500 |
commit | a789e032124af190deba80dc663b34b0a32a4f76 (patch) | |
tree | 8d727ea65c87f2068e9a161b66067aa25c64dd39 /src/lib | |
parent | 4969317f3863c0f7b605e586ee69094b59870056 (diff) |
Default McEliece and XMSS to SIV mode
Diffstat (limited to 'src/lib')
-rw-r--r-- | src/lib/pubkey/pkcs8.cpp | 12 |
1 files changed, 10 insertions, 2 deletions
diff --git a/src/lib/pubkey/pkcs8.cpp b/src/lib/pubkey/pkcs8.cpp index b6d33cfcb..d5add2adf 100644 --- a/src/lib/pubkey/pkcs8.cpp +++ b/src/lib/pubkey/pkcs8.cpp @@ -159,13 +159,21 @@ choose_pbe_params(const std::string& pbe_algo, const std::string& key_algo) { if(pbe_algo.empty()) { - // Defaults: + /* + * For algorithms where we are using a non-RFC format anyway, default to + * SIV or GCM. For others (RSA, ECDSA, ...) default to something widely + * compatible. + */ const bool nonstandard_pk = (key_algo == "McEliece" || key_algo == "XMSS"); -#if defined(BOTAN_HAS_GCM) && defined(BOTAN_HAS_SHA2_64) if(nonstandard_pk) + { +#if defined(BOTAN_HAS_AEAD_SIV) && defined(BOTAN_HAS_SHA2_64) + return std::make_pair("AES-256/SIV", "SHA-512"); +#elif defined(BOTAN_HAS_AEAD_GCM) && defined(BOTAN_HAS_SHA2_64) return std::make_pair("AES-256/GCM", "SHA-512"); #endif + } // Default is something compatible with everyone else return std::make_pair("AES-256/CBC", "SHA-256"); |