xref: /aosp_15_r20/external/tink/cc/hybrid/internal/hpke_decrypt.cc (revision e7b1675dde1b92d52ec075b0a92829627f2c52a5) 
1*e7b1675dSTing-Kang Chang // Copyright 2021 Google LLC
2*e7b1675dSTing-Kang Chang //
3*e7b1675dSTing-Kang Chang // Licensed under the Apache License, Version 2.0 (the "License");
4*e7b1675dSTing-Kang Chang // you may not use this file except in compliance with the License.
5*e7b1675dSTing-Kang Chang // You may obtain a copy of the License at
6*e7b1675dSTing-Kang Chang //
7*e7b1675dSTing-Kang Chang //     http://www.apache.org/licenses/LICENSE-2.0
8*e7b1675dSTing-Kang Chang //
9*e7b1675dSTing-Kang Chang // Unless required by applicable law or agreed to in writing, software
10*e7b1675dSTing-Kang Chang // distributed under the License is distributed on an "AS IS" BASIS,
11*e7b1675dSTing-Kang Chang // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12*e7b1675dSTing-Kang Chang // See the License for the specific language governing permissions and
13*e7b1675dSTing-Kang Chang // limitations under the License.
14*e7b1675dSTing-Kang Chang //
15*e7b1675dSTing-Kang Chang ///////////////////////////////////////////////////////////////////////////////
16*e7b1675dSTing-Kang Chang 
17*e7b1675dSTing-Kang Chang #include "tink/hybrid/internal/hpke_decrypt.h"
18*e7b1675dSTing-Kang Chang 
19*e7b1675dSTing-Kang Chang #include <memory>
20*e7b1675dSTing-Kang Chang #include <string>
21*e7b1675dSTing-Kang Chang #include <utility>
22*e7b1675dSTing-Kang Chang 
23*e7b1675dSTing-Kang Chang #include "absl/status/status.h"
24*e7b1675dSTing-Kang Chang #include "tink/hybrid/internal/hpke_context.h"
25*e7b1675dSTing-Kang Chang #include "tink/hybrid/internal/hpke_util.h"
26*e7b1675dSTing-Kang Chang #include "tink/util/secret_data.h"
27*e7b1675dSTing-Kang Chang #include "tink/util/status.h"
28*e7b1675dSTing-Kang Chang #include "tink/util/statusor.h"
29*e7b1675dSTing-Kang Chang #include "proto/hpke.pb.h"
30*e7b1675dSTing-Kang Chang 
31*e7b1675dSTing-Kang Chang namespace crypto {
32*e7b1675dSTing-Kang Chang namespace tink {
33*e7b1675dSTing-Kang Chang namespace {
34*e7b1675dSTing-Kang Chang 
35*e7b1675dSTing-Kang Chang using ::google::crypto::tink::HpkePrivateKey;
36*e7b1675dSTing-Kang Chang 
37*e7b1675dSTing-Kang Chang }  // namespace
38*e7b1675dSTing-Kang Chang 
New(const HpkePrivateKey & recipient_private_key)39*e7b1675dSTing-Kang Chang util::StatusOr<std::unique_ptr<HybridDecrypt>> HpkeDecrypt::New(
40*e7b1675dSTing-Kang Chang     const HpkePrivateKey& recipient_private_key) {
41*e7b1675dSTing-Kang Chang   if (recipient_private_key.private_key().empty()) {
42*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInvalidArgument,
43*e7b1675dSTing-Kang Chang                         "Recipient private key is empty.");
44*e7b1675dSTing-Kang Chang   }
45*e7b1675dSTing-Kang Chang   if (!recipient_private_key.has_public_key()) {
46*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInvalidArgument,
47*e7b1675dSTing-Kang Chang                         "Recipient private key is missing public key.");
48*e7b1675dSTing-Kang Chang   }
49*e7b1675dSTing-Kang Chang   if (!recipient_private_key.public_key().has_params()) {
50*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInvalidArgument,
51*e7b1675dSTing-Kang Chang                         "Recipient private key is missing HPKE parameters.");
52*e7b1675dSTing-Kang Chang   }
53*e7b1675dSTing-Kang Chang   return {absl::WrapUnique(new HpkeDecrypt(
54*e7b1675dSTing-Kang Chang       recipient_private_key.public_key().params(),
55*e7b1675dSTing-Kang Chang       util::SecretDataFromStringView(recipient_private_key.private_key())))};
56*e7b1675dSTing-Kang Chang }
57*e7b1675dSTing-Kang Chang 
Decrypt(absl::string_view ciphertext,absl::string_view context_info) const58*e7b1675dSTing-Kang Chang util::StatusOr<std::string> HpkeDecrypt::Decrypt(
59*e7b1675dSTing-Kang Chang     absl::string_view ciphertext, absl::string_view context_info) const {
60*e7b1675dSTing-Kang Chang   util::StatusOr<int32_t> encoding_size =
61*e7b1675dSTing-Kang Chang       internal::HpkeEncapsulatedKeyLength(hpke_params_.kem());
62*e7b1675dSTing-Kang Chang   if (!encoding_size.ok()) return encoding_size.status();
63*e7b1675dSTing-Kang Chang 
64*e7b1675dSTing-Kang Chang   // Verify that ciphertext length is at least the encapsulated key length.
65*e7b1675dSTing-Kang Chang   if (ciphertext.size() < *encoding_size) {
66*e7b1675dSTing-Kang Chang     return util::Status(absl::StatusCode::kInvalidArgument,
67*e7b1675dSTing-Kang Chang                         "Ciphertext is too short.");
68*e7b1675dSTing-Kang Chang   }
69*e7b1675dSTing-Kang Chang   absl::string_view encapsulated_key = ciphertext.substr(0, *encoding_size);
70*e7b1675dSTing-Kang Chang   absl::string_view ciphertext_payload = ciphertext.substr(*encoding_size);
71*e7b1675dSTing-Kang Chang 
72*e7b1675dSTing-Kang Chang   util::StatusOr<internal::HpkeParams> params =
73*e7b1675dSTing-Kang Chang       internal::HpkeParamsProtoToStruct(hpke_params_);
74*e7b1675dSTing-Kang Chang   if (!params.ok()) return params.status();
75*e7b1675dSTing-Kang Chang 
76*e7b1675dSTing-Kang Chang   util::StatusOr<std::unique_ptr<internal::HpkeContext>> recipient_context =
77*e7b1675dSTing-Kang Chang       internal::HpkeContext::SetupRecipient(*params, recipient_private_key_,
78*e7b1675dSTing-Kang Chang                                             encapsulated_key, context_info);
79*e7b1675dSTing-Kang Chang   if (!recipient_context.ok()) return recipient_context.status();
80*e7b1675dSTing-Kang Chang 
81*e7b1675dSTing-Kang Chang   return (*recipient_context)->Open(ciphertext_payload, /*associated_data=*/"");
82*e7b1675dSTing-Kang Chang }
83*e7b1675dSTing-Kang Chang 
84*e7b1675dSTing-Kang Chang }  // namespace tink
85*e7b1675dSTing-Kang Chang }  // namespace crypto
86