1*e7b1675dSTing-Kang Chang // Copyright 2023 Google LLC 2*e7b1675dSTing-Kang Chang // 3*e7b1675dSTing-Kang Chang // Licensed under the Apache License, Version 2.0 (the "License"); 4*e7b1675dSTing-Kang Chang // you may not use this file except in compliance with the License. 5*e7b1675dSTing-Kang Chang // You may obtain a copy of the License at 6*e7b1675dSTing-Kang Chang // 7*e7b1675dSTing-Kang Chang // http://www.apache.org/licenses/LICENSE-2.0 8*e7b1675dSTing-Kang Chang // 9*e7b1675dSTing-Kang Chang // Unless required by applicable law or agreed to in writing, software 10*e7b1675dSTing-Kang Chang // distributed under the License is distributed on an "AS IS" BASIS, 11*e7b1675dSTing-Kang Chang // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12*e7b1675dSTing-Kang Chang // See the License for the specific language governing permissions and 13*e7b1675dSTing-Kang Chang // limitations under the License. 14*e7b1675dSTing-Kang Chang // 15*e7b1675dSTing-Kang Chang //////////////////////////////////////////////////////////////////////////////// 16*e7b1675dSTing-Kang Chang 17*e7b1675dSTing-Kang Chang #ifndef TINK_DAEAD_AES_SIV_PARAMETERS_H_ 18*e7b1675dSTing-Kang Chang #define TINK_DAEAD_AES_SIV_PARAMETERS_H_ 19*e7b1675dSTing-Kang Chang 20*e7b1675dSTing-Kang Chang #include "tink/daead/deterministic_aead_parameters.h" 21*e7b1675dSTing-Kang Chang #include "tink/util/statusor.h" 22*e7b1675dSTing-Kang Chang 23*e7b1675dSTing-Kang Chang namespace crypto { 24*e7b1675dSTing-Kang Chang namespace tink { 25*e7b1675dSTing-Kang Chang 26*e7b1675dSTing-Kang Chang // Describes the parameters of an `AesSivKey`. 27*e7b1675dSTing-Kang Chang class AesSivParameters : public DeterministicAeadParameters { 28*e7b1675dSTing-Kang Chang public: 29*e7b1675dSTing-Kang Chang // Description of the output prefix prepended to the ciphertext. 30*e7b1675dSTing-Kang Chang enum class Variant : int { 31*e7b1675dSTing-Kang Chang // Prepends '0x01<big endian key id>' to the ciphertext. 32*e7b1675dSTing-Kang Chang kTink = 1, 33*e7b1675dSTing-Kang Chang // Prepends '0x00<big endian key id>' to the ciphertext. 34*e7b1675dSTing-Kang Chang kCrunchy = 2, 35*e7b1675dSTing-Kang Chang // Does not prepend any prefix (i.e., keys must have no ID requirement). 36*e7b1675dSTing-Kang Chang kNoPrefix = 3, 37*e7b1675dSTing-Kang Chang // Added to guard from failures that may be caused by future expansions. 38*e7b1675dSTing-Kang Chang kDoNotUseInsteadUseDefaultWhenWritingSwitchStatements = 20, 39*e7b1675dSTing-Kang Chang }; 40*e7b1675dSTing-Kang Chang 41*e7b1675dSTing-Kang Chang // Copyable and movable. 42*e7b1675dSTing-Kang Chang AesSivParameters(const AesSivParameters& other) = default; 43*e7b1675dSTing-Kang Chang AesSivParameters& operator=(const AesSivParameters& other) = default; 44*e7b1675dSTing-Kang Chang AesSivParameters(AesSivParameters&& other) = default; 45*e7b1675dSTing-Kang Chang AesSivParameters& operator=(AesSivParameters&& other) = default; 46*e7b1675dSTing-Kang Chang 47*e7b1675dSTing-Kang Chang // Creates `AesSivParameters` object from `key_size_in_bytes` and `variant`. 48*e7b1675dSTing-Kang Chang // Only allows 32-, 48-, and 64-byte key sizes as specified in RFC 5297. 49*e7b1675dSTing-Kang Chang static util::StatusOr<AesSivParameters> Create(int key_size_in_bytes, 50*e7b1675dSTing-Kang Chang Variant variant); 51*e7b1675dSTing-Kang Chang KeySizeInBytes()52*e7b1675dSTing-Kang Chang int KeySizeInBytes() const { return key_size_in_bytes_; } 53*e7b1675dSTing-Kang Chang GetVariant()54*e7b1675dSTing-Kang Chang Variant GetVariant() const { return variant_; } 55*e7b1675dSTing-Kang Chang HasIdRequirement()56*e7b1675dSTing-Kang Chang bool HasIdRequirement() const override { 57*e7b1675dSTing-Kang Chang return variant_ != Variant::kNoPrefix; 58*e7b1675dSTing-Kang Chang } 59*e7b1675dSTing-Kang Chang 60*e7b1675dSTing-Kang Chang bool operator==(const Parameters& other) const override; 61*e7b1675dSTing-Kang Chang 62*e7b1675dSTing-Kang Chang private: AesSivParameters(int key_size_in_bytes,Variant variant)63*e7b1675dSTing-Kang Chang AesSivParameters(int key_size_in_bytes, Variant variant) 64*e7b1675dSTing-Kang Chang : key_size_in_bytes_(key_size_in_bytes), variant_(variant) {} 65*e7b1675dSTing-Kang Chang 66*e7b1675dSTing-Kang Chang int key_size_in_bytes_; 67*e7b1675dSTing-Kang Chang Variant variant_; 68*e7b1675dSTing-Kang Chang }; 69*e7b1675dSTing-Kang Chang 70*e7b1675dSTing-Kang Chang } // namespace tink 71*e7b1675dSTing-Kang Chang } // namespace crypto 72*e7b1675dSTing-Kang Chang 73*e7b1675dSTing-Kang Chang #endif // TINK_DAEAD_AES_SIV_PARAMETERS_H_ 74