1 files changed, 94 insertions, 0 deletions

diff --git a/src/constructs/srp6/srp6.h b/src/constructs/srp6/srp6.h
new file mode 100644
index 000000000..fbb4a686d
--- /dev/null
+++ b/src/constructs/srp6/srp6.h
@@ -0,0 +1,94 @@
+/*
+* SRP-6a (RFC 5054 compatatible)
+* (C) 2011 Jack Lloyd
+*
+* Distributed under the terms of the Botan license
+*/
+
+#ifndef BOTAN_RFC5054_SRP6_H__
+#define BOTAN_RFC5054_SRP6_H__
+
+#include <botan/bigint.h>
+#include <botan/hash.h>
+#include <botan/rng.h>
+#include <botan/symkey.h>
+#include <string>
+
+namespace Botan {
+
+/**
+
+*/
+class BOTAN_DLL SRP6_Client_Session
+   {
+   public:
+
+      /**
+      * Client side step 1
+      * @param username the username we are attempting login for
+      * @param password the password we are attempting to use
+      * @param group_id specifies the shared SRP group
+      * @param hash_id specifies a secure hash function
+      * @param salt is the salt value sent by the server
+      * @param B is the server's public value
+      * @param rng is a random number generator
+      *
+      * @return (A,M1) the client public key and verification values,
+                which are sent to the server
+      */
+      std::pair<BigInt, BigInt> step1(const std::string& username,
+                                      const std::string& password,
+                                      const std::string& group_id,
+                                      const std::string& hash_id,
+                                      const MemoryRegion<byte>& salt,
+                                      const BigInt& B,
+                                      RandomNumberGenerator& rng);
+
+      /**
+      * Client side step 2
+      * @param M2 the server verification value
+      * @return shared secret key
+      */
+      SymmetricKey step2(const BigInt& M2);
+
+      /**
+      * Generate a new SRP-6 verifier
+      * @param identifier a username or other client identifier
+      * @param password the secret used to authenticate user
+      * @param salt a randomly chosen value, at least 128 bits long
+      */
+      static BigInt generate_verifier(const std::string& identifier,
+                                      const std::string& password,
+                                      const MemoryRegion<byte>& salt,
+                                      const std::string& group_id,
+                                      const std::string& hash_id);
+
+   private:
+      std::string hash_id;
+      BigInt A, M1, S;
+      size_t p_bytes;
+   };
+
+class BOTAN_DLL SRP6_Server_Session
+   {
+   public:
+      /**
+      * Server side step 1
+      * @param v the verification value saved from client registration
+      */
+      BigInt step1(const BigInt& v,
+                   const std::string& group_id,
+                   const std::string& hash_id,
+                   RandomNumberGenerator& rng);
+
+      std::pair<SymmetricKey, BigInt> step2(const BigInt& A, const BigInt& M1);
+
+   private:
+      std::string hash_id;
+      BigInt B, b, v, S, p;
+      size_t p_bytes;
+   };
+
+}
+
+#endif