1 // Copyright 2023 Google LLC
2 //
3 // Licensed under the Apache License, Version 2.0 (the "License");
4 // you may not use this file except in compliance with the License.
5 // You may obtain a copy of the License at
6 //
7 // http://www.apache.org/licenses/LICENSE-2.0
8 //
9 // Unless required by applicable law or agreed to in writing, software
10 // distributed under the License is distributed on an "AS IS" BASIS,
11 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 // See the License for the specific language governing permissions and
13 // limitations under the License.
14 //
15 ////////////////////////////////////////////////////////////////////////////////
16
17 #include "tink/config/key_gen_v0.h"
18
19 #include "absl/log/check.h"
20 #include "tink/aead/aes_ctr_hmac_aead_key_manager.h"
21 #include "tink/aead/aes_eax_key_manager.h"
22 #include "tink/aead/aes_gcm_key_manager.h"
23 #include "tink/aead/aes_gcm_siv_key_manager.h"
24 #include "tink/aead/xchacha20_poly1305_key_manager.h"
25 #include "tink/configuration.h"
26 #include "tink/daead/aes_siv_key_manager.h"
27 #include "tink/hybrid/ecies_aead_hkdf_private_key_manager.h"
28 #include "tink/hybrid/ecies_aead_hkdf_public_key_manager.h"
29 #include "tink/hybrid/internal/hpke_private_key_manager.h"
30 #include "tink/hybrid/internal/hpke_public_key_manager.h"
31 #include "tink/internal/key_gen_configuration_impl.h"
32 #include "tink/mac/aes_cmac_key_manager.h"
33 #include "tink/mac/hmac_key_manager.h"
34 #include "tink/prf/aes_cmac_prf_key_manager.h"
35 #include "tink/prf/hkdf_prf_key_manager.h"
36 #include "tink/prf/hmac_prf_key_manager.h"
37 #include "tink/signature/ecdsa_verify_key_manager.h"
38 #include "tink/signature/ed25519_sign_key_manager.h"
39 #include "tink/signature/ed25519_verify_key_manager.h"
40 #include "tink/signature/rsa_ssa_pkcs1_sign_key_manager.h"
41 #include "tink/signature/rsa_ssa_pkcs1_verify_key_manager.h"
42 #include "tink/signature/rsa_ssa_pss_sign_key_manager.h"
43 #include "tink/signature/rsa_ssa_pss_verify_key_manager.h"
44 #include "tink/streamingaead/aes_ctr_hmac_streaming_key_manager.h"
45 #include "tink/streamingaead/aes_gcm_hkdf_streaming_key_manager.h"
46 #include "tink/signature/ecdsa_sign_key_manager.h"
47
48 namespace crypto {
49 namespace tink {
50 namespace {
51
AddMac(KeyGenConfiguration & config)52 util::Status AddMac(KeyGenConfiguration& config) {
53 util::Status status = internal::KeyGenConfigurationImpl::AddKeyTypeManager(
54 absl::make_unique<HmacKeyManager>(), config);
55 if (!status.ok()) {
56 return status;
57 }
58 return internal::KeyGenConfigurationImpl::AddKeyTypeManager(
59 absl::make_unique<AesCmacKeyManager>(), config);
60 }
61
AddAead(KeyGenConfiguration & config)62 util::Status AddAead(KeyGenConfiguration& config) {
63 util::Status status = internal::KeyGenConfigurationImpl::AddKeyTypeManager(
64 absl::make_unique<AesCtrHmacAeadKeyManager>(), config);
65 if (!status.ok()) {
66 return status;
67 }
68 status = internal::KeyGenConfigurationImpl::AddKeyTypeManager(
69 absl::make_unique<AesGcmKeyManager>(), config);
70 if (!status.ok()) {
71 return status;
72 }
73 status = internal::KeyGenConfigurationImpl::AddKeyTypeManager(
74 absl::make_unique<AesGcmSivKeyManager>(), config);
75 if (!status.ok()) {
76 return status;
77 }
78 status = internal::KeyGenConfigurationImpl::AddKeyTypeManager(
79 absl::make_unique<AesEaxKeyManager>(), config);
80 if (!status.ok()) {
81 return status;
82 }
83 return internal::KeyGenConfigurationImpl::AddKeyTypeManager(
84 absl::make_unique<XChaCha20Poly1305KeyManager>(), config);
85 }
86
AddDeterministicAead(KeyGenConfiguration & config)87 util::Status AddDeterministicAead(KeyGenConfiguration& config) {
88 return internal::KeyGenConfigurationImpl::AddKeyTypeManager(
89 absl::make_unique<AesSivKeyManager>(), config);
90 }
91
AddStreamingAead(KeyGenConfiguration & config)92 util::Status AddStreamingAead(KeyGenConfiguration& config) {
93 util::Status status = internal::KeyGenConfigurationImpl::AddKeyTypeManager(
94 absl::make_unique<AesGcmHkdfStreamingKeyManager>(), config);
95 if (!status.ok()) {
96 return status;
97 }
98 return internal::KeyGenConfigurationImpl::AddKeyTypeManager(
99 absl::make_unique<AesCtrHmacStreamingKeyManager>(), config);
100 }
101
AddHybrid(KeyGenConfiguration & config)102 util::Status AddHybrid(KeyGenConfiguration& config) {
103 util::Status status =
104 internal::KeyGenConfigurationImpl::AddAsymmetricKeyManagers(
105 absl::make_unique<EciesAeadHkdfPrivateKeyManager>(),
106 absl::make_unique<EciesAeadHkdfPublicKeyManager>(), config);
107 if (!status.ok()) {
108 return status;
109 }
110 return internal::KeyGenConfigurationImpl::AddAsymmetricKeyManagers(
111 absl::make_unique<internal::HpkePrivateKeyManager>(),
112 absl::make_unique<internal::HpkePublicKeyManager>(), config);
113 }
114
AddPrf(KeyGenConfiguration & config)115 util::Status AddPrf(KeyGenConfiguration& config) {
116 util::Status status = internal::KeyGenConfigurationImpl::AddKeyTypeManager(
117 absl::make_unique<HmacPrfKeyManager>(), config);
118 if (!status.ok()) {
119 return status;
120 }
121 status = internal::KeyGenConfigurationImpl::AddKeyTypeManager(
122 absl::make_unique<HkdfPrfKeyManager>(), config);
123 if (!status.ok()) {
124 return status;
125 }
126 return internal::KeyGenConfigurationImpl::AddKeyTypeManager(
127 absl::make_unique<AesCmacPrfKeyManager>(), config);
128 }
129
AddSignature(KeyGenConfiguration & config)130 util::Status AddSignature(KeyGenConfiguration& config) {
131 util::Status status =
132 internal::KeyGenConfigurationImpl::AddAsymmetricKeyManagers(
133 absl::make_unique<EcdsaSignKeyManager>(),
134 absl::make_unique<EcdsaVerifyKeyManager>(), config);
135 if (!status.ok()) {
136 return status;
137 }
138 status = internal::KeyGenConfigurationImpl::AddAsymmetricKeyManagers(
139 absl::make_unique<RsaSsaPssSignKeyManager>(),
140 absl::make_unique<RsaSsaPssVerifyKeyManager>(), config);
141 if (!status.ok()) {
142 return status;
143 }
144 status = internal::KeyGenConfigurationImpl::AddAsymmetricKeyManagers(
145 absl::make_unique<RsaSsaPkcs1SignKeyManager>(),
146 absl::make_unique<RsaSsaPkcs1VerifyKeyManager>(), config);
147 if (!status.ok()) {
148 return status;
149 }
150 return internal::KeyGenConfigurationImpl::AddAsymmetricKeyManagers(
151 absl::make_unique<Ed25519SignKeyManager>(),
152 absl::make_unique<Ed25519VerifyKeyManager>(), config);
153 }
154
155 } // namespace
156
KeyGenConfigV0()157 const KeyGenConfiguration& KeyGenConfigV0() {
158 static const KeyGenConfiguration* instance = [] {
159 static KeyGenConfiguration* config = new KeyGenConfiguration();
160 CHECK_OK(AddMac(*config));
161 CHECK_OK(AddAead(*config));
162 CHECK_OK(AddDeterministicAead(*config));
163 CHECK_OK(AddStreamingAead(*config));
164 CHECK_OK(AddHybrid(*config));
165 CHECK_OK(AddPrf(*config));
166 CHECK_OK(AddSignature(*config));
167 return config;
168 }();
169 return *instance;
170 }
171
172 } // namespace tink
173 } // namespace crypto
174