/* * XMSS Verification Operation * (C) 2016 Matthias Gierlings * * Botan is released under the Simplified BSD License (see license.txt) **/ #ifndef BOTAN_XMSS_VERIFICATION_OPERATION_H__ #define BOTAN_XMSS_VERIFICATION_OPERATION_H__ #include #include #include #include #include #include #include #include #include #include namespace Botan { /** * Provides signature verification capabilities for Extended Hash-Based * Signatures (XMSS). **/ class XMSS_Verification_Operation : public virtual PK_Ops::Verification, public XMSS_Common_Ops { public: XMSS_Verification_Operation( const XMSS_PublicKey& public_key); virtual ~XMSS_Verification_Operation() {} virtual bool is_valid_signature(const uint8_t sig[], size_t sig_len) override; void update(const uint8_t msg[], size_t msg_len) override; private: /** * Algorithm 13: "XMSS_rootFromSig" * Computes a root node using an XMSS signature, a message and a seed. * * @param msg A message. * @param sig The XMSS signature for msg. * @param adrs A XMSS tree address. * @param seed A seed. * * @return An n-byte string holding the value of the root of a tree * defined by the input parameters. **/ secure_vector root_from_signature( const XMSS_Signature& sig, const secure_vector& msg, XMSS_Address& ards, const secure_vector& seed); /** * Algorithm 14: "XMSS_verify" * Verifies a XMSS signature using the corresponding XMSS public key. * * @param sig A XMSS signature. * @param msg The message signed with sig. * @paeam pub_key * * @return true if signature sig is valid for msg, false otherwise. **/ bool verify(const XMSS_Signature& sig, const secure_vector& msg, const XMSS_PublicKey& pub_key); XMSS_PublicKey m_pub_key; secure_vector m_msg_buf; }; } #endif