blob: e2393750ac405fa1753d2085ea3f018227c4babb (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
|
/*
* XMSS Signature Operation
* (C) 2016 Matthias Gierlings
*
* Botan is released under the Simplified BSD License (see license.txt)
**/
#ifndef BOTAN_XMSS_SIGNATURE_OPERATION_H__
#define BOTAN_XMSS_SIGNATURE_OPERATION_H__
#include <cstddef>
#include <string>
#include <botan/secmem.h>
#include <botan/types.h>
#include <botan/assert.h>
#include <botan/xmss_parameters.h>
#include <botan/xmss_privatekey.h>
#include <botan/xmss_address.h>
#include <botan/xmss_common_ops.h>
#include <botan/pk_ops.h>
#include <botan/internal/xmss_signature.h>
#include <botan/xmss_wots_publickey.h>
namespace Botan {
/**
* Signature generation operation for Extended Hash-Based Signatures (XMSS) as
* defined in:
*
* [1] XMSS: Extended Hash-Based Signatures,
* draft-itrf-cfrg-xmss-hash-based-signatures-06
* Release: July 2016.
* https://datatracker.ietf.org/doc/
* draft-irtf-cfrg-xmss-hash-based-signatures/?include_text=1
**/
class XMSS_Signature_Operation : public virtual PK_Ops::Signature,
public XMSS_Common_Ops
{
public:
XMSS_Signature_Operation(const XMSS_PrivateKey& private_key);
virtual ~XMSS_Signature_Operation() = default;
/**
* Creates an XMSS signature for the message provided through call to
* update().
*
* @return serialized XMSS signature.
**/
secure_vector<uint8_t> sign(RandomNumberGenerator&) override;
void update(const uint8_t msg[], size_t msg_len) override;
private:
/**
* Algorithm 11: "treeSig"
* Generate a WOTS+ signature on a message with corresponding auth path.
*
* @param msg A message.
* @param xmss_priv_key A XMSS private key.
* @param adrs A XMSS Address.
**/
XMSS_WOTS_PublicKey::TreeSignature generate_tree_signature(
const secure_vector<uint8_t>& msg,
XMSS_PrivateKey& xmss_priv_key,
XMSS_Address& adrs);
/**
* Algorithm 12: "XMSS_sign"
* Generate an XMSS signature and update the XMSS secret key
*
* @param msg A message to sign of arbitrary length.
* @param [out] xmss_priv_key A XMSS private key. The private key will be
* updated during the signing process.
*
* @return The signature of msg signed using xmss_priv_key.
**/
XMSS_Signature sign(
const secure_vector<uint8_t>& msg,
XMSS_PrivateKey& xmss_priv_key);
wots_keysig_t build_auth_path(XMSS_PrivateKey& priv_key,
XMSS_Address& adrs);
void initialize();
XMSS_PrivateKey m_priv_key;
secure_vector<uint8_t> m_randomness;
size_t m_leaf_idx;
bool m_is_initialized;
};
}
#endif
|
