1*e7b1675dSTing-Kang Chang// Copyright 2018 Google LLC 2*e7b1675dSTing-Kang Chang// 3*e7b1675dSTing-Kang Chang// Licensed under the Apache License, Version 2.0 (the "License"); 4*e7b1675dSTing-Kang Chang// you may not use this file except in compliance with the License. 5*e7b1675dSTing-Kang Chang// You may obtain a copy of the License at 6*e7b1675dSTing-Kang Chang// 7*e7b1675dSTing-Kang Chang// http://www.apache.org/licenses/LICENSE-2.0 8*e7b1675dSTing-Kang Chang// 9*e7b1675dSTing-Kang Chang// Unless required by applicable law or agreed to in writing, software 10*e7b1675dSTing-Kang Chang// distributed under the License is distributed on an "AS IS" BASIS, 11*e7b1675dSTing-Kang Chang// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12*e7b1675dSTing-Kang Chang// See the License for the specific language governing permissions and 13*e7b1675dSTing-Kang Chang// limitations under the License. 14*e7b1675dSTing-Kang Chang// 15*e7b1675dSTing-Kang Chang//////////////////////////////////////////////////////////////////////////////// 16*e7b1675dSTing-Kang Chang 17*e7b1675dSTing-Kang Changpackage mac 18*e7b1675dSTing-Kang Chang 19*e7b1675dSTing-Kang Changimport ( 20*e7b1675dSTing-Kang Chang "fmt" 21*e7b1675dSTing-Kang Chang 22*e7b1675dSTing-Kang Chang "google.golang.org/protobuf/proto" 23*e7b1675dSTing-Kang Chang "github.com/google/tink/go/internal/tinkerror" 24*e7b1675dSTing-Kang Chang cmacpb "github.com/google/tink/go/proto/aes_cmac_go_proto" 25*e7b1675dSTing-Kang Chang commonpb "github.com/google/tink/go/proto/common_go_proto" 26*e7b1675dSTing-Kang Chang hmacpb "github.com/google/tink/go/proto/hmac_go_proto" 27*e7b1675dSTing-Kang Chang tinkpb "github.com/google/tink/go/proto/tink_go_proto" 28*e7b1675dSTing-Kang Chang) 29*e7b1675dSTing-Kang Chang 30*e7b1675dSTing-Kang Chang// This file contains pre-generated KeyTemplate for MAC. 31*e7b1675dSTing-Kang Chang 32*e7b1675dSTing-Kang Chang// HMACSHA256Tag128KeyTemplate is a KeyTemplate that generates a HMAC key with the following parameters: 33*e7b1675dSTing-Kang Chang// - Key size: 32 bytes 34*e7b1675dSTing-Kang Chang// - Tag size: 16 bytes 35*e7b1675dSTing-Kang Chang// - Hash function: SHA256 36*e7b1675dSTing-Kang Changfunc HMACSHA256Tag128KeyTemplate() *tinkpb.KeyTemplate { 37*e7b1675dSTing-Kang Chang return createHMACKeyTemplate(32, 16, commonpb.HashType_SHA256) 38*e7b1675dSTing-Kang Chang} 39*e7b1675dSTing-Kang Chang 40*e7b1675dSTing-Kang Chang// HMACSHA256Tag256KeyTemplate is a KeyTemplate that generates a HMAC key with the following parameters: 41*e7b1675dSTing-Kang Chang// - Key size: 32 bytes 42*e7b1675dSTing-Kang Chang// - Tag size: 32 bytes 43*e7b1675dSTing-Kang Chang// - Hash function: SHA256 44*e7b1675dSTing-Kang Changfunc HMACSHA256Tag256KeyTemplate() *tinkpb.KeyTemplate { 45*e7b1675dSTing-Kang Chang return createHMACKeyTemplate(32, 32, commonpb.HashType_SHA256) 46*e7b1675dSTing-Kang Chang} 47*e7b1675dSTing-Kang Chang 48*e7b1675dSTing-Kang Chang// HMACSHA512Tag256KeyTemplate is a KeyTemplate that generates a HMAC key with the following parameters: 49*e7b1675dSTing-Kang Chang// - Key size: 64 bytes 50*e7b1675dSTing-Kang Chang// - Tag size: 32 bytes 51*e7b1675dSTing-Kang Chang// - Hash function: SHA512 52*e7b1675dSTing-Kang Changfunc HMACSHA512Tag256KeyTemplate() *tinkpb.KeyTemplate { 53*e7b1675dSTing-Kang Chang return createHMACKeyTemplate(64, 32, commonpb.HashType_SHA512) 54*e7b1675dSTing-Kang Chang} 55*e7b1675dSTing-Kang Chang 56*e7b1675dSTing-Kang Chang// HMACSHA512Tag512KeyTemplate is a KeyTemplate that generates a HMAC key with the following parameters: 57*e7b1675dSTing-Kang Chang// - Key size: 64 bytes 58*e7b1675dSTing-Kang Chang// - Tag size: 64 bytes 59*e7b1675dSTing-Kang Chang// - Hash function: SHA512 60*e7b1675dSTing-Kang Changfunc HMACSHA512Tag512KeyTemplate() *tinkpb.KeyTemplate { 61*e7b1675dSTing-Kang Chang return createHMACKeyTemplate(64, 64, commonpb.HashType_SHA512) 62*e7b1675dSTing-Kang Chang} 63*e7b1675dSTing-Kang Chang 64*e7b1675dSTing-Kang Chang// AESCMACTag128KeyTemplate is a KeyTemplate that generates a AES-CMAC key with the following parameters: 65*e7b1675dSTing-Kang Chang// - Key size: 32 bytes 66*e7b1675dSTing-Kang Chang// - Tag size: 16 bytes 67*e7b1675dSTing-Kang Changfunc AESCMACTag128KeyTemplate() *tinkpb.KeyTemplate { 68*e7b1675dSTing-Kang Chang return createCMACKeyTemplate(32, 16) 69*e7b1675dSTing-Kang Chang} 70*e7b1675dSTing-Kang Chang 71*e7b1675dSTing-Kang Chang// createHMACKeyTemplate creates a new KeyTemplate for HMAC using the given parameters. 72*e7b1675dSTing-Kang Changfunc createHMACKeyTemplate(keySize, tagSize uint32, hashType commonpb.HashType) *tinkpb.KeyTemplate { 73*e7b1675dSTing-Kang Chang params := hmacpb.HmacParams{ 74*e7b1675dSTing-Kang Chang Hash: hashType, 75*e7b1675dSTing-Kang Chang TagSize: tagSize, 76*e7b1675dSTing-Kang Chang } 77*e7b1675dSTing-Kang Chang format := hmacpb.HmacKeyFormat{ 78*e7b1675dSTing-Kang Chang Params: ¶ms, 79*e7b1675dSTing-Kang Chang KeySize: keySize, 80*e7b1675dSTing-Kang Chang } 81*e7b1675dSTing-Kang Chang serializedFormat, err := proto.Marshal(&format) 82*e7b1675dSTing-Kang Chang if err != nil { 83*e7b1675dSTing-Kang Chang tinkerror.Fail(fmt.Sprintf("failed to marshal key format: %s", err)) 84*e7b1675dSTing-Kang Chang } 85*e7b1675dSTing-Kang Chang return &tinkpb.KeyTemplate{ 86*e7b1675dSTing-Kang Chang TypeUrl: hmacTypeURL, 87*e7b1675dSTing-Kang Chang Value: serializedFormat, 88*e7b1675dSTing-Kang Chang OutputPrefixType: tinkpb.OutputPrefixType_TINK, 89*e7b1675dSTing-Kang Chang } 90*e7b1675dSTing-Kang Chang} 91*e7b1675dSTing-Kang Chang 92*e7b1675dSTing-Kang Chang// createCMACKeyTemplate creates a new KeyTemplate for CMAC using the given parameters. 93*e7b1675dSTing-Kang Changfunc createCMACKeyTemplate(keySize uint32, tagSize uint32) *tinkpb.KeyTemplate { 94*e7b1675dSTing-Kang Chang params := cmacpb.AesCmacParams{ 95*e7b1675dSTing-Kang Chang TagSize: tagSize, 96*e7b1675dSTing-Kang Chang } 97*e7b1675dSTing-Kang Chang format := cmacpb.AesCmacKeyFormat{ 98*e7b1675dSTing-Kang Chang Params: ¶ms, 99*e7b1675dSTing-Kang Chang KeySize: keySize, 100*e7b1675dSTing-Kang Chang } 101*e7b1675dSTing-Kang Chang serializedFormat, err := proto.Marshal(&format) 102*e7b1675dSTing-Kang Chang if err != nil { 103*e7b1675dSTing-Kang Chang tinkerror.Fail(fmt.Sprintf("failed to marshal key format: %s", err)) 104*e7b1675dSTing-Kang Chang } 105*e7b1675dSTing-Kang Chang return &tinkpb.KeyTemplate{ 106*e7b1675dSTing-Kang Chang TypeUrl: cmacTypeURL, 107*e7b1675dSTing-Kang Chang Value: serializedFormat, 108*e7b1675dSTing-Kang Chang OutputPrefixType: tinkpb.OutputPrefixType_TINK, 109*e7b1675dSTing-Kang Chang } 110*e7b1675dSTing-Kang Chang} 111