Interface for one direction (encryption or decryption) of a stream cipher or block cipher mode with authentication. More...
Classes | |
class | BadState |
this indicates that a member function was called in the wrong state, for example trying to encrypt a message before having set the key or IV More... | |
Public Types | |
enum | IV_Requirement { UNIQUE_IV = 0, RANDOM_IV, UNPREDICTABLE_RANDOM_IV, INTERNALLY_GENERATED_IV, NOT_RESYNCHRONIZABLE } |
Provides IV requirements as an enumerated value. More... | |
Public Member Functions | |
virtual lword | MaxHeaderLength () const =0 |
the maximum length of AAD that can be input before the encrypted data | |
virtual lword | MaxMessageLength () const =0 |
the maximum length of encrypted data | |
virtual lword | MaxFooterLength () const |
the maximum length of AAD that can be input after the encrypted data | |
virtual bool | NeedsPrespecifiedDataLengths () const |
if this function returns true, SpecifyDataLengths() must be called before attempting to input data | |
void | SpecifyDataLengths (lword headerLength, lword messageLength, lword footerLength=0) |
this function only needs to be called if NeedsPrespecifiedDataLengths() returns true | |
virtual void | EncryptAndAuthenticate (byte *ciphertext, byte *mac, size_t macSize, const byte *iv, int ivLength, const byte *header, size_t headerLength, const byte *message, size_t messageLength) |
encrypt and generate MAC in one call. will truncate MAC if macSize < TagSize() | |
virtual bool | DecryptAndVerify (byte *message, const byte *mac, size_t macLength, const byte *iv, int ivLength, const byte *header, size_t headerLength, const byte *ciphertext, size_t ciphertextLength) |
decrypt and verify MAC in one call, returning true iff MAC is valid. will assume MAC is truncated if macLength < TagSize() | |
virtual std::string | AlgorithmName () const =0 |
Provides the name of this algorithm. | |
virtual size_t | MinKeyLength () const =0 |
Returns smallest valid key length in bytes. | |
virtual size_t | MaxKeyLength () const =0 |
Returns largest valid key length in bytes. | |
virtual size_t | DefaultKeyLength () const =0 |
Returns default (recommended) key length in bytes. | |
virtual size_t | GetValidKeyLength (size_t n) const =0 |
virtual bool | IsValidKeyLength (size_t keylength) const |
Returns whether keylength is a valid key length. | |
virtual void | SetKey (const byte *key, size_t length, const NameValuePairs ¶ms=g_nullNameValuePairs) |
Sets or reset the key of this object. | |
void | SetKeyWithRounds (const byte *key, size_t length, int rounds) |
Sets or reset the key of this object. | |
void | SetKeyWithIV (const byte *key, size_t length, const byte *iv, size_t ivLength) |
Sets or reset the key of this object. | |
void | SetKeyWithIV (const byte *key, size_t length, const byte *iv) |
Sets or reset the key of this object. | |
virtual IV_Requirement | IVRequirement () const =0 |
returns the minimal requirement for secure IVs | |
bool | IsResynchronizable () const |
returns whether the object can be resynchronized (i.e. supports initialization vectors) | |
bool | CanUseRandomIVs () const |
returns whether the object can use random IVs (in addition to ones returned by GetNextIV) | |
bool | CanUsePredictableIVs () const |
returns whether the object can use random but possibly predictable IVs (in addition to ones returned by GetNextIV) | |
bool | CanUseStructuredIVs () const |
returns whether the object can use structured IVs, for example a counter (in addition to ones returned by GetNextIV) | |
virtual unsigned int | IVSize () const |
Returns length of the IV accepted by this object. | |
unsigned int | DefaultIVLength () const |
returns default length of IVs accepted by this object | |
virtual unsigned int | MinIVLength () const |
returns minimal length of IVs accepted by this object | |
virtual unsigned int | MaxIVLength () const |
returns maximal length of IVs accepted by this object | |
virtual void | Resynchronize (const byte *iv, int ivLength=-1) |
resynchronize with an IV. ivLength=-1 means use IVSize() | |
virtual void | GetNextIV (RandomNumberGenerator &rng, byte *iv) |
Gets a secure IV for the next message. | |
HashTransformation & | Ref () |
Provides a reference to this object. | |
virtual void | Update (const byte *input, size_t length)=0 |
Updates a hash with additional input. | |
virtual byte * | CreateUpdateSpace (size_t &size) |
Request space which can be written into by the caller. | |
virtual void | Final (byte *digest) |
Computes the hash of the current message. | |
virtual void | Restart () |
Restart the hash. | |
virtual unsigned int | DigestSize () const =0 |
Provides the digest size of the hash. | |
unsigned int | TagSize () const |
Provides the tag size of the hash. | |
virtual unsigned int | BlockSize () const |
Provides the block size of the compression function. | |
virtual unsigned int | OptimalBlockSize () const |
Provides the input block size most efficient for this hash. | |
virtual unsigned int | OptimalDataAlignment () const |
Provides input and output data alignment for optimal performance. | |
virtual void | CalculateDigest (byte *digest, const byte *input, size_t length) |
Updates the hash with additional input and computes the hash of the current message. | |
virtual bool | Verify (const byte *digest) |
Verifies the hash of the current message. | |
virtual bool | VerifyDigest (const byte *digest, const byte *input, size_t length) |
Updates the hash with additional input and verifies the hash of the current message. | |
virtual void | TruncatedFinal (byte *digest, size_t digestSize)=0 |
Computes the hash of the current message. | |
virtual void | CalculateTruncatedDigest (byte *digest, size_t digestSize, const byte *input, size_t length) |
Updates the hash with additional input and computes the hash of the current message. | |
virtual bool | TruncatedVerify (const byte *digest, size_t digestLength) |
Verifies the hash of the current message. | |
virtual bool | VerifyTruncatedDigest (const byte *digest, size_t digestLength, const byte *input, size_t length) |
Updates the hash with additional input and verifies the hash of the current message. | |
virtual Clonable * | Clone () const |
Copies this object. | |
StreamTransformation & | Ref () |
Provides a reference to this object. | |
virtual unsigned int | MandatoryBlockSize () const |
Provides the mandatory block size of the cipher. | |
virtual unsigned int | OptimalBlockSize () const |
Provides the input block size most efficient for this cipher. | |
virtual unsigned int | GetOptimalBlockSizeUsed () const |
Provides the number of bytes used in the current block when processing at optimal block size. | |
virtual unsigned int | OptimalDataAlignment () const |
Provides input and output data alignment for optimal performance. | |
virtual void | ProcessData (byte *outString, const byte *inString, size_t length)=0 |
Encrypt or decrypt an array of bytes. | |
virtual void | ProcessLastBlock (byte *outString, const byte *inString, size_t length) |
Encrypt or decrypt the last block of data. | |
virtual unsigned int | MinLastBlockSize () const |
returns the minimum size of the last block, 0 indicating the last block is not special | |
void | ProcessString (byte *inoutString, size_t length) |
Encrypt or decrypt a string of bytes. | |
void | ProcessString (byte *outString, const byte *inString, size_t length) |
Encrypt or decrypt a string of bytes. | |
byte | ProcessByte (byte input) |
Encrypt or decrypt a byte. | |
virtual bool | IsRandomAccess () const =0 |
Determines whether the cipher supports random access. | |
virtual void | Seek (lword pos) |
Seek to an absolute position. | |
virtual bool | IsSelfInverting () const =0 |
Determines whether the cipher is self-inverting. | |
virtual bool | IsForwardTransformation () const =0 |
Determines if the cipher is being operated in its forward direction. |
Interface for one direction (encryption or decryption) of a stream cipher or block cipher mode with authentication.
The StreamTransformation part of this interface is used to encrypt/decrypt the data, and the MessageAuthenticationCode part of this interface is used to input additional authenticated data (AAD, which is MAC'ed but not encrypted), and to generate/verify the MAC.
Definition at line 1036 of file cryptlib.h.
enum SimpleKeyingInterface::IV_Requirement [inherited] |
Provides IV requirements as an enumerated value.
Definition at line 555 of file cryptlib.h.
virtual bool AuthenticatedSymmetricCipher::NeedsPrespecifiedDataLengths | ( | ) | const [inline, virtual] |
if this function returns true, SpecifyDataLengths() must be called before attempting to input data
This is the case for some schemes, such as CCM.
Reimplemented in CCM_Base.
Definition at line 1055 of file cryptlib.h.
virtual std::string AuthenticatedSymmetricCipher::AlgorithmName | ( | ) | const [pure virtual] |
Provides the name of this algorithm.
The standard algorithm name can be a name like AES or AES/GCM. Some algorithms do not have standard names yet. For example, there is no standard algorithm name for Shoup's ECIES.
Reimplemented from Algorithm.
Implemented in CCM_Base, EAX_Base, and GCM_Base.
Referenced by AuthenticatedSymmetricCipherBase::ProcessData(), AuthenticatedSymmetricCipherBase::Resynchronize(), SpecifyDataLengths(), AuthenticatedSymmetricCipherBase::TruncatedFinal(), and AuthenticatedSymmetricCipherBase::Update().
virtual size_t SimpleKeyingInterface::GetValidKeyLength | ( | size_t | n | ) | const [pure virtual, inherited] |
min(n, GetMaxKeyLength())
Implemented in CCM_Base, EAX_Base, GCM_Base, CipherModeBase, SimpleKeyingInterfaceImpl< TTMAC_Base, TTMAC_Base >, SimpleKeyingInterfaceImpl< HMAC_Base, HMAC< T > >, SimpleKeyingInterfaceImpl< DMAC_Base< T >, DMAC_Base< T > >, SimpleKeyingInterfaceImpl< CMAC_Base, CMAC< T > >, SimpleKeyingInterfaceImpl< VMAC_Base, SameKeyLengthAs< T_BlockCipher, SimpleKeyingInterface::UNIQUE_IV, T_BlockCipher::BLOCKSIZE > >, SimpleKeyingInterfaceImpl< BlockCipher, BTEA_Info >, SimpleKeyingInterfaceImpl< CBC_MAC_Base, CBC_MAC< T > >, and SimpleKeyingInterfaceImpl< CMAC_Base, CMAC< T_BlockCipher > >.
virtual bool SimpleKeyingInterface::IsValidKeyLength | ( | size_t | keylength | ) | const [inline, virtual, inherited] |
Returns whether keylength is a valid key length.
Internally the function calls GetValidKeyLength()
Reimplemented in CCM_Base, EAX_Base, GCM_Base, and CipherModeBase.
Definition at line 515 of file cryptlib.h.
void SimpleKeyingInterface::SetKey | ( | const byte * | key, | |
size_t | length, | |||
const NameValuePairs & | params = g_nullNameValuePairs | |||
) | [virtual, inherited] |
Sets or reset the key of this object.
key | the key to use when keying the object | |
length | the size of the key, in bytes | |
params | additional initialization parameters that cannot be passed directly through the constructor |
Reimplemented in AuthenticatedSymmetricCipherBase, and ECB_OneWay.
Definition at line 100 of file cryptlib.cpp.
Referenced by HKDF< T >::DeriveKey(), SimpleKeyingInterface::SetKeyWithIV(), SimpleKeyingInterface::SetKeyWithRounds(), VMAC_Base::UncheckedSetKey(), and CMAC_Base::UncheckedSetKey().
void SimpleKeyingInterface::SetKeyWithRounds | ( | const byte * | key, | |
size_t | length, | |||
int | rounds | |||
) | [inherited] |
Sets or reset the key of this object.
key | the key to use when keying the object | |
length | the size of the key, in bytes | |
rounds | the number of rounds to apply the transformation function, if applicable |
SetKeyWithRounds calls SetKey with an NameValuePairs object that just specifies rounds. rounds is an integer parameter, and -1
means use the default number of rounds.
Definition at line 106 of file cryptlib.cpp.
References MakeParameters(), Rounds(), and SimpleKeyingInterface::SetKey().
void SimpleKeyingInterface::SetKeyWithIV | ( | const byte * | key, | |
size_t | length, | |||
const byte * | iv, | |||
size_t | ivLength | |||
) | [inherited] |
Sets or reset the key of this object.
key | the key to use when keying the object | |
length | the size of the key, in bytes | |
iv | the intiialization vector to use when keying the object | |
ivLength | the size of the iv, in bytes |
SetKeyWithIV calls SetKey with an NameValuePairs object that just specifies iv. iv is a byte buffer with size ivLength.
Definition at line 111 of file cryptlib.cpp.
References IV(), MakeParameters(), and SimpleKeyingInterface::SetKey().
void SimpleKeyingInterface::SetKeyWithIV | ( | const byte * | key, | |
size_t | length, | |||
const byte * | iv | |||
) | [inline, inherited] |
Sets or reset the key of this object.
key | the key to use when keying the object | |
length | the size of the key, in bytes | |
iv | the intiialization vector to use when keying the object |
SetKeyWithIV calls SetKey with an NameValuePairs object that just specifies iv. iv is a byte buffer, and it must have a size IVSize.
Definition at line 551 of file cryptlib.h.
References SimpleKeyingInterface::SetKeyWithIV().
Referenced by SimpleKeyingInterface::SetKeyWithIV().
bool SimpleKeyingInterface::IsResynchronizable | ( | ) | const [inline, inherited] |
returns whether the object can be resynchronized (i.e. supports initialization vectors)
If this function returns true, and no IV is passed to SetKey() and CanUseStructuredIVs()==true, an IV of all 0's will be assumed.
Definition at line 573 of file cryptlib.h.
Referenced by BlockOrientedCipherModeBase::UncheckedSetKey().
virtual unsigned int SimpleKeyingInterface::IVSize | ( | ) | const [inline, virtual, inherited] |
Returns length of the IV accepted by this object.
The default implementation throws NotImplemented
Reimplemented in CCM_Base, EAX_Base, GCM_Base, CipherModeBase, VMAC_Base, SimpleKeyingInterfaceImpl< TTMAC_Base, TTMAC_Base >, SimpleKeyingInterfaceImpl< HMAC_Base, HMAC< T > >, SimpleKeyingInterfaceImpl< DMAC_Base< T >, DMAC_Base< T > >, SimpleKeyingInterfaceImpl< CMAC_Base, CMAC< T > >, SimpleKeyingInterfaceImpl< VMAC_Base, SameKeyLengthAs< T_BlockCipher, SimpleKeyingInterface::UNIQUE_IV, T_BlockCipher::BLOCKSIZE > >, SimpleKeyingInterfaceImpl< BlockCipher, BTEA_Info >, SimpleKeyingInterfaceImpl< CBC_MAC_Base, CBC_MAC< T > >, and SimpleKeyingInterfaceImpl< CMAC_Base, CMAC< T_BlockCipher > >.
Definition at line 583 of file cryptlib.h.
Referenced by SimpleKeyingInterface::GetNextIV().
void SimpleKeyingInterface::GetNextIV | ( | RandomNumberGenerator & | rng, | |
byte * | iv | |||
) | [virtual, inherited] |
Gets a secure IV for the next message.
rng | a RandomNumberGenerator to produce keying material | |
iv | a block of bytes to receive the IV |
This method should be called after you finish encrypting one message and are ready to start the next one. After calling it, you must call SetKey() or Resynchronize() before using this object again.
key must be at least IVSize() in length.
Reimplemented in VMAC_Base.
Definition at line 176 of file cryptlib.cpp.
References RandomNumberGenerator::GenerateBlock(), and SimpleKeyingInterface::IVSize().
HashTransformation& HashTransformation::Ref | ( | ) | [inline, inherited] |
Provides a reference to this object.
Useful for passing a temporary object to a function that takes a non-const reference
Definition at line 864 of file cryptlib.h.
virtual void HashTransformation::Update | ( | const byte * | input, | |
size_t | length | |||
) | [pure virtual, inherited] |
Updates a hash with additional input.
input | the additional input as a buffer | |
length | the size of the buffer, in bytes |
Implemented in Adler32, AuthenticatedSymmetricCipherBase, CBC_MAC_Base, CMAC_Base, CRC32, DMAC_Base< T >, HMAC_Base, Weak::MD2, PK_MessageAccumulatorBase, SHA3, NullHash, and TruncatedHashTemplate< T >.
Referenced by DecryptAndVerify(), EncryptAndAuthenticate(), HashFilter::Put2(), HMAC_Base::TruncatedFinal(), and HMAC_Base::Update().
virtual byte* HashTransformation::CreateUpdateSpace | ( | size_t & | size | ) | [inline, virtual, inherited] |
Request space which can be written into by the caller.
size | the requested size of the buffer |
The purpose of this method is to help avoid extra memory allocations.
size is an IN and OUT parameter and used as a hint. When the call is made, size is the requested size of the buffer. When the call returns, size is the size of the array returned to the caller.
The base class implementation sets size to 0 and returns NULL.
Definition at line 879 of file cryptlib.h.
virtual void HashTransformation::Final | ( | byte * | digest | ) | [inline, virtual, inherited] |
Computes the hash of the current message.
digest | a pointer to the buffer to receive the hash |
digest must be equal to (or greater than) DigestSize(). Final() restarts the hash for a new message.
Definition at line 885 of file cryptlib.h.
References DigestSize().
Referenced by PKCS5_PBKDF2_HMAC< T >::DeriveKey(), RandomPool::IncorporateEntropy(), and HMAC_Base::TruncatedFinal().
virtual void HashTransformation::Restart | ( | ) | [inline, virtual, inherited] |
Restart the hash.
Discards the current state, and restart for a new message
Reimplemented in AuthenticatedSymmetricCipherBase, HMAC_Base, SHA3, and TruncatedHashTemplate< T >.
Definition at line 890 of file cryptlib.h.
Referenced by HMAC_Base::Restart().
virtual unsigned int HashTransformation::DigestSize | ( | ) | const [pure virtual, inherited] |
Provides the digest size of the hash.
Calls to Final() require a buffer that is equal to (or greater than) DigestSize().
Implemented in Adler32, CBC_MAC_Base, CCM_Base, CMAC_Base, CRC32, PK_MessageAccumulator, DMAC_Base< T >, EAX_Base, GCM_Base, HMAC_Base, IteratedHashWithStaticTransform< T_HashWordType, T_Endianness, T_BlockSize, T_StateSize, T_Transform, T_DigestSize, T_StateAligned >, Weak::MD2, Weak::PanamaHash< B >, SHA3, NullHash, TruncatedHashTemplate< T >, TTMAC_Base, VMAC_Base, IteratedHashWithStaticTransform< word32, LittleEndian, 64, 32, RIPEMD256 >, IteratedHashWithStaticTransform< word32, LittleEndian, 64, 16, MD5 >, IteratedHashWithStaticTransform< word32, LittleEndian, 64, 16, MD4 >, IteratedHashWithStaticTransform< word32, LittleEndian, 64, 40, RIPEMD320 >, IteratedHashWithStaticTransform< word32, BigEndian, 64, 20, SHA1 >, IteratedHashWithStaticTransform< word32, LittleEndian, 64, 16, RIPEMD128 >, IteratedHashWithStaticTransform< word32, BigEndian, 64, 32, SHA224, 28, true >, IteratedHashWithStaticTransform< word32, BigEndian, 64, 32, SHA256, 32, true >, IteratedHashWithStaticTransform< word32, LittleEndian, 64, 20, RIPEMD160 >, IteratedHashWithStaticTransform< word64, LittleEndian, 64, 24, Tiger >, IteratedHashWithStaticTransform< word64, BigEndian, 128, 64, SHA384, 48,(0|0)>, IteratedHashWithStaticTransform< word64, BigEndian, 64, 64, Whirlpool >, and IteratedHashWithStaticTransform< word64, BigEndian, 128, 64, SHA512, 64,(0|0)>.
Referenced by TF_VerifierBase::InputSignature(), HashFilter::IsolatedInitialize(), TF_VerifierBase::RecoverAndRestart(), TF_SignerBase::SignAndRestart(), HMAC_Base::TruncatedFinal(), HMAC_Base::UncheckedSetKey(), and TF_VerifierBase::VerifyAndRestart().
unsigned int HashTransformation::TagSize | ( | ) | const [inline, inherited] |
Provides the tag size of the hash.
Same as DigestSize().
Definition at line 901 of file cryptlib.h.
References DigestSize().
virtual unsigned int HashTransformation::BlockSize | ( | ) | const [inline, virtual, inherited] |
Provides the block size of the compression function.
BlockSize() will return 0 if the hash is not block based. For example, SHA3 is a recursive hash (not an iterative hash), and it does not have a block size.
Reimplemented in Weak::MD2, and VMAC_Base.
Definition at line 907 of file cryptlib.h.
Referenced by HMAC_Base::TruncatedFinal(), CBC_MAC_Base::TruncatedFinal(), and HMAC_Base::UncheckedSetKey().
virtual unsigned int HashTransformation::OptimalBlockSize | ( | ) | const [inline, virtual, inherited] |
Provides the input block size most efficient for this hash.
The base class implemnetation returns MandatoryBlockSize().
n * OptimalBlockSize() - GetOptimalBlockSizeUsed()
for any n > 0
. Reimplemented in CMAC_Base, and HMAC_Base.
Definition at line 914 of file cryptlib.h.
unsigned int HashTransformation::OptimalDataAlignment | ( | ) | const [virtual, inherited] |
virtual void HashTransformation::CalculateDigest | ( | byte * | digest, | |
const byte * | input, | |||
size_t | length | |||
) | [inline, virtual, inherited] |
Updates the hash with additional input and computes the hash of the current message.
digest | a pointer to the buffer to receive the hash | |
input | the additional input as a buffer | |
length | the size of the buffer, in bytes |
Use this if your input is in one piece and you don't want to call Update() and Final() separately
CalculateDigest() restarts the hash for the next nmessage.
Definition at line 927 of file cryptlib.h.
Referenced by PKCS5_PBKDF2_HMAC< T >::DeriveKey(), and HKDF< T >::DeriveKey().
virtual bool HashTransformation::Verify | ( | const byte * | digest | ) | [inline, virtual, inherited] |
Verifies the hash of the current message.
digest | a pointer to the buffer of an existing hash |
true
if the existing hash matches the computed hash, false
otherwise ThrowIfInvalidTruncatedSize() | if the existing hash's size exceeds DigestSize() |
Calls to Verify() require a buffer that is equal to (or greater than) DigestSize().
Verify() performs a bitwise compare on the buffers using VerifyBufsEqual(), which is a constant time comparison function. digestLength cannot exceed DigestSize().
Verify() restarts the hash for the next nmessage.
Definition at line 938 of file cryptlib.h.
References DigestSize().
virtual bool HashTransformation::VerifyDigest | ( | const byte * | digest, | |
const byte * | input, | |||
size_t | length | |||
) | [inline, virtual, inherited] |
Updates the hash with additional input and verifies the hash of the current message.
digest | a pointer to the buffer of an existing hash | |
input | the additional input as a buffer | |
length | the size of the buffer, in bytes |
true
if the existing hash matches the computed hash, false
otherwise ThrowIfInvalidTruncatedSize() | if the existing hash's size exceeds DigestSize() |
Use this if your input is in one piece and you don't want to call Update() and Verify() separately
VerifyDigest() performs a bitwise compare on the buffers using VerifyBufsEqual(), which is a constant time comparison function. digestLength cannot exceed DigestSize().
VerifyDigest() restarts the hash for the next nmessage.
Definition at line 952 of file cryptlib.h.
virtual void HashTransformation::TruncatedFinal | ( | byte * | digest, | |
size_t | digestSize | |||
) | [pure virtual, inherited] |
Computes the hash of the current message.
digest | a pointer to the buffer to receive the hash | |
digestSize | the size of the truncated digest, in bytes |
TruncatedFinal() call Final() and then copies digestSize bytes to digest
TruncatedFinal() restarts the hash for the next nmessage.
Implemented in Adler32, AuthenticatedSymmetricCipherBase, CBC_MAC_Base, CMAC_Base, CRC32, PK_MessageAccumulator, DMAC_Base< T >, HMAC_Base, Weak::MD2, Weak::PanamaHash< B >, SHA3, Tiger, NullHash, TruncatedHashTemplate< T >, TTMAC_Base, VMAC_Base, and Whirlpool.
Referenced by EncryptAndAuthenticate(), HashFilter::Put2(), HMAC_Base::TruncatedFinal(), and HashTransformation::TruncatedVerify().
virtual void HashTransformation::CalculateTruncatedDigest | ( | byte * | digest, | |
size_t | digestSize, | |||
const byte * | input, | |||
size_t | length | |||
) | [inline, virtual, inherited] |
Updates the hash with additional input and computes the hash of the current message.
digest | a pointer to the buffer to receive the hash | |
digestSize | the length of the truncated hash, in bytes | |
input | the additional input as a buffer | |
length | the size of the buffer, in bytes |
Use this if your input is in one piece and you don't want to call Update() and CalculateDigest() separately.
CalculateTruncatedDigest() restarts the hash for the next nmessage.
Definition at line 970 of file cryptlib.h.
bool HashTransformation::TruncatedVerify | ( | const byte * | digest, | |
size_t | digestLength | |||
) | [virtual, inherited] |
Verifies the hash of the current message.
digest | a pointer to the buffer of an existing hash | |
digestLength | the size of the truncated hash, in bytes |
true
if the existing hash matches the computed hash, false
otherwise ThrowIfInvalidTruncatedSize() | if digestLength exceeds DigestSize() |
TruncatedVerify() is a truncated version of Verify(). It can operate on a buffer smaller than DigestSize(). However, digestLength cannot exceed DigestSize().
Verify() performs a bitwise compare on the buffers using VerifyBufsEqual(), which is a constant time comparison function. digestLength cannot exceed DigestSize().
TruncatedVerify() restarts the hash for the next nmessage.
Reimplemented in NullHash, and TruncatedHashTemplate< T >.
Definition at line 411 of file cryptlib.cpp.
References HashTransformation::TruncatedFinal().
Referenced by DecryptAndVerify().
virtual bool HashTransformation::VerifyTruncatedDigest | ( | const byte * | digest, | |
size_t | digestLength, | |||
const byte * | input, | |||
size_t | length | |||
) | [inline, virtual, inherited] |
Updates the hash with additional input and verifies the hash of the current message.
digest | a pointer to the buffer of an existing hash | |
digestLength | the size of the truncated hash, in bytes | |
input | the additional input as a buffer | |
length | the size of the buffer, in bytes |
true
if the existing hash matches the computed hash, false
otherwise ThrowIfInvalidTruncatedSize() | if digestLength exceeds DigestSize() |
Use this if your input is in one piece and you don't want to call Update() and TruncatedVerify() separately.
VerifyTruncatedDigest() is a truncated version of VerifyDigest(). It can operate on a buffer smaller than DigestSize(). However, digestLength cannot exceed DigestSize().
VerifyTruncatedDigest() restarts the hash for the next nmessage.
Definition at line 997 of file cryptlib.h.
virtual Clonable* Clonable::Clone | ( | ) | const [inline, virtual, inherited] |
Copies this object.
NotImplemented |
Definition at line 464 of file cryptlib.h.
StreamTransformation& StreamTransformation::Ref | ( | ) | [inline, inherited] |
Provides a reference to this object.
Useful for passing a temporary object to a function that takes a non-const reference
Definition at line 758 of file cryptlib.h.
virtual unsigned int StreamTransformation::MandatoryBlockSize | ( | ) | const [inline, virtual, inherited] |
Provides the mandatory block size of the cipher.
Reimplemented in BlockOrientedCipherModeBase.
Definition at line 762 of file cryptlib.h.
Referenced by StreamTransformation::ProcessLastBlock().
virtual unsigned int StreamTransformation::OptimalBlockSize | ( | ) | const [inline, virtual, inherited] |
Provides the input block size most efficient for this cipher.
The base class implemnetation returns MandatoryBlockSize().
n * OptimalBlockSize() - GetOptimalBlockSizeUsed()
for any n > 0
. Reimplemented in ECB_OneWay.
Definition at line 769 of file cryptlib.h.
virtual unsigned int StreamTransformation::GetOptimalBlockSizeUsed | ( | ) | const [inline, virtual, inherited] |
Provides the number of bytes used in the current block when processing at optimal block size.
Definition at line 773 of file cryptlib.h.
unsigned int StreamTransformation::OptimalDataAlignment | ( | ) | const [virtual, inherited] |
Provides input and output data alignment for optimal performance.
Reimplemented in CCM_Base, EAX_Base, GCM_Base, and CipherModeBase.
Definition at line 237 of file cryptlib.cpp.
virtual void StreamTransformation::ProcessData | ( | byte * | outString, | |
const byte * | inString, | |||
size_t | length | |||
) | [pure virtual, inherited] |
Encrypt or decrypt an array of bytes.
outString | the output byte buffer | |
inString | the input byte buffer | |
length | the size of the input and output byte buffers, in bytes |
Either inString == outString
, or they must not overlap.
Implemented in Weak1::ARC4_Base, AuthenticatedSymmetricCipherBase, PublicBlumBlumShub, ECB_OneWay, CBC_Encryption, and CBC_Decryption.
Referenced by AuthenticatedSymmetricCipherBase::ProcessData(), and StreamTransformation::ProcessLastBlock().
void StreamTransformation::ProcessLastBlock | ( | byte * | outString, | |
const byte * | inString, | |||
size_t | length | |||
) | [virtual, inherited] |
Encrypt or decrypt the last block of data.
outString | the output byte buffer | |
inString | the input byte buffer | |
length | the size of the input and output byte buffers, in bytes ProcessLastBlock is used when the last block of data is special. Currently the only use of this function is CBC-CTS mode. |
Reimplemented in CBC_CTS_Encryption, and CBC_CTS_Decryption.
Definition at line 247 of file cryptlib.cpp.
References Algorithm::AlgorithmName(), StreamTransformation::MandatoryBlockSize(), StreamTransformation::MinLastBlockSize(), and StreamTransformation::ProcessData().
void StreamTransformation::ProcessString | ( | byte * | inoutString, | |
size_t | length | |||
) | [inline, inherited] |
Encrypt or decrypt a string of bytes.
inoutString | the string to process | |
length | the size of the inoutString, in bytes |
Internally, the base class implementation calls ProcessData().
Definition at line 801 of file cryptlib.h.
Referenced by DecryptAndVerify(), and EncryptAndAuthenticate().
void StreamTransformation::ProcessString | ( | byte * | outString, | |
const byte * | inString, | |||
size_t | length | |||
) | [inline, inherited] |
Encrypt or decrypt a string of bytes.
outString | the output string to process | |
inString | the input string to process | |
length | the size of the input and output strings, in bytes |
Internally, the base class implementation calls ProcessData().
Definition at line 809 of file cryptlib.h.
byte StreamTransformation::ProcessByte | ( | byte | input | ) | [inline, inherited] |
Encrypt or decrypt a byte.
input | the input byte to process |
Internally, the base class implementation calls ProcessData() with a size of 1.
Definition at line 815 of file cryptlib.h.
virtual bool StreamTransformation::IsRandomAccess | ( | ) | const [pure virtual, inherited] |
Determines whether the cipher supports random access.
Implemented in Weak1::ARC4_Base, AuthenticatedSymmetricCipherBase, BlumBlumShub, and BlockOrientedCipherModeBase.
virtual void StreamTransformation::Seek | ( | lword | pos | ) | [inline, virtual, inherited] |
Seek to an absolute position.
pos | position to seek |
NotImplemented |
The base class implementation throws NotImplemented. The function asserts IsRandomAccess() in debug builds.
Reimplemented in BlumBlumShub.
Definition at line 827 of file cryptlib.h.
virtual bool StreamTransformation::IsSelfInverting | ( | ) | const [pure virtual, inherited] |
Determines whether the cipher is self-inverting.
IsSelfInverting determines whether this transformation is self-inverting (e.g. xor with a keystream).
Implemented in Weak1::ARC4_Base, AuthenticatedSymmetricCipherBase, PublicBlumBlumShub, and BlockOrientedCipherModeBase.
Referenced by AuthenticatedDecryptionFilter::AuthenticatedDecryptionFilter().
virtual bool StreamTransformation::IsForwardTransformation | ( | ) | const [pure virtual, inherited] |
Determines if the cipher is being operated in its forward direction.
Implemented in Weak1::ARC4_Base, PublicBlumBlumShub, CCM_Final< T_BlockCipher, T_DefaultDigestSize, T_IsEncryption >, EAX_Final< T_BlockCipher, T_IsEncryption >, GCM_Final< T_BlockCipher, T_TablesOption, T_IsEncryption >, and BlockOrientedCipherModeBase.
Referenced by AuthenticatedDecryptionFilter::AuthenticatedDecryptionFilter(), AuthenticatedEncryptionFilter::AuthenticatedEncryptionFilter(), and AuthenticatedSymmetricCipherBase::ProcessData().