1*e7b1675dSTing-Kang Chang// Copyright 2020 Google LLC 2*e7b1675dSTing-Kang Chang// 3*e7b1675dSTing-Kang Chang// Licensed under the Apache License, Version 2.0 (the "License"); 4*e7b1675dSTing-Kang Chang// you may not use this file except in compliance with the License. 5*e7b1675dSTing-Kang Chang// You may obtain a copy of the License at 6*e7b1675dSTing-Kang Chang// 7*e7b1675dSTing-Kang Chang// http://www.apache.org/licenses/LICENSE-2.0 8*e7b1675dSTing-Kang Chang// 9*e7b1675dSTing-Kang Chang// Unless required by applicable law or agreed to in writing, software 10*e7b1675dSTing-Kang Chang// distributed under the License is distributed on an "AS IS" BASIS, 11*e7b1675dSTing-Kang Chang// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12*e7b1675dSTing-Kang Chang// See the License for the specific language governing permissions and 13*e7b1675dSTing-Kang Chang// limitations under the License. 14*e7b1675dSTing-Kang Chang// 15*e7b1675dSTing-Kang Chang//////////////////////////////////////////////////////////////////////////////// 16*e7b1675dSTing-Kang Chang 17*e7b1675dSTing-Kang Changpackage prf 18*e7b1675dSTing-Kang Chang 19*e7b1675dSTing-Kang Changimport ( 20*e7b1675dSTing-Kang Chang "fmt" 21*e7b1675dSTing-Kang Chang 22*e7b1675dSTing-Kang Chang "google.golang.org/protobuf/proto" 23*e7b1675dSTing-Kang Chang "github.com/google/tink/go/internal/tinkerror" 24*e7b1675dSTing-Kang Chang cmacpb "github.com/google/tink/go/proto/aes_cmac_prf_go_proto" 25*e7b1675dSTing-Kang Chang commonpb "github.com/google/tink/go/proto/common_go_proto" 26*e7b1675dSTing-Kang Chang hkdfpb "github.com/google/tink/go/proto/hkdf_prf_go_proto" 27*e7b1675dSTing-Kang Chang hmacpb "github.com/google/tink/go/proto/hmac_prf_go_proto" 28*e7b1675dSTing-Kang Chang tinkpb "github.com/google/tink/go/proto/tink_go_proto" 29*e7b1675dSTing-Kang Chang) 30*e7b1675dSTing-Kang Chang 31*e7b1675dSTing-Kang Chang// This file contains pre-generated KeyTemplate for PRF. 32*e7b1675dSTing-Kang Chang 33*e7b1675dSTing-Kang Chang// HMACSHA256PRFKeyTemplate is a KeyTemplate that generates an HMAC key with the following parameters: 34*e7b1675dSTing-Kang Chang// - Key size: 32 bytes 35*e7b1675dSTing-Kang Chang// - Hash function: SHA256 36*e7b1675dSTing-Kang Changfunc HMACSHA256PRFKeyTemplate() *tinkpb.KeyTemplate { 37*e7b1675dSTing-Kang Chang return createHMACPRFKeyTemplate(32, commonpb.HashType_SHA256) 38*e7b1675dSTing-Kang Chang} 39*e7b1675dSTing-Kang Chang 40*e7b1675dSTing-Kang Chang// HMACSHA512PRFKeyTemplate is a KeyTemplate that generates an HMAC key with the following parameters: 41*e7b1675dSTing-Kang Chang// - Key size: 64 bytes 42*e7b1675dSTing-Kang Chang// - Hash function: SHA512 43*e7b1675dSTing-Kang Changfunc HMACSHA512PRFKeyTemplate() *tinkpb.KeyTemplate { 44*e7b1675dSTing-Kang Chang return createHMACPRFKeyTemplate(64, commonpb.HashType_SHA512) 45*e7b1675dSTing-Kang Chang} 46*e7b1675dSTing-Kang Chang 47*e7b1675dSTing-Kang Chang// HKDFSHA256PRFKeyTemplate is a KeyTemplate that generates an HKDF key with the following parameters: 48*e7b1675dSTing-Kang Chang// - Key size: 32 bytes 49*e7b1675dSTing-Kang Chang// - Salt: empty 50*e7b1675dSTing-Kang Chang// - Hash function: SHA256 51*e7b1675dSTing-Kang Changfunc HKDFSHA256PRFKeyTemplate() *tinkpb.KeyTemplate { 52*e7b1675dSTing-Kang Chang return createHKDFPRFKeyTemplate(32, commonpb.HashType_SHA256, make([]byte, 0)) 53*e7b1675dSTing-Kang Chang} 54*e7b1675dSTing-Kang Chang 55*e7b1675dSTing-Kang Chang// AESCMACPRFKeyTemplate is a KeyTemplate that generates a AES-CMAC key with the following parameters: 56*e7b1675dSTing-Kang Chang// - Key size: 32 bytes 57*e7b1675dSTing-Kang Changfunc AESCMACPRFKeyTemplate() *tinkpb.KeyTemplate { 58*e7b1675dSTing-Kang Chang return createAESCMACPRFKeyTemplate(32) 59*e7b1675dSTing-Kang Chang} 60*e7b1675dSTing-Kang Chang 61*e7b1675dSTing-Kang Chang// createHMACPRFKeyTemplate creates a new KeyTemplate for HMAC using the given parameters. 62*e7b1675dSTing-Kang Changfunc createHMACPRFKeyTemplate(keySize uint32, hashType commonpb.HashType) *tinkpb.KeyTemplate { 63*e7b1675dSTing-Kang Chang params := hmacpb.HmacPrfParams{ 64*e7b1675dSTing-Kang Chang Hash: hashType, 65*e7b1675dSTing-Kang Chang } 66*e7b1675dSTing-Kang Chang format := hmacpb.HmacPrfKeyFormat{ 67*e7b1675dSTing-Kang Chang Params: ¶ms, 68*e7b1675dSTing-Kang Chang KeySize: keySize, 69*e7b1675dSTing-Kang Chang } 70*e7b1675dSTing-Kang Chang serializedFormat, err := proto.Marshal(&format) 71*e7b1675dSTing-Kang Chang if err != nil { 72*e7b1675dSTing-Kang Chang tinkerror.Fail(fmt.Sprintf("failed to marshal key format: %s", err)) 73*e7b1675dSTing-Kang Chang } 74*e7b1675dSTing-Kang Chang return &tinkpb.KeyTemplate{ 75*e7b1675dSTing-Kang Chang TypeUrl: hmacprfTypeURL, 76*e7b1675dSTing-Kang Chang OutputPrefixType: tinkpb.OutputPrefixType_RAW, 77*e7b1675dSTing-Kang Chang Value: serializedFormat, 78*e7b1675dSTing-Kang Chang } 79*e7b1675dSTing-Kang Chang} 80*e7b1675dSTing-Kang Chang 81*e7b1675dSTing-Kang Chang// createHKDFPRFKeyTemplate creates a new KeyTemplate for HKDF using the given parameters. 82*e7b1675dSTing-Kang Changfunc createHKDFPRFKeyTemplate(keySize uint32, hashType commonpb.HashType, salt []byte) *tinkpb.KeyTemplate { 83*e7b1675dSTing-Kang Chang params := hkdfpb.HkdfPrfParams{ 84*e7b1675dSTing-Kang Chang Hash: hashType, 85*e7b1675dSTing-Kang Chang Salt: salt, 86*e7b1675dSTing-Kang Chang } 87*e7b1675dSTing-Kang Chang format := hkdfpb.HkdfPrfKeyFormat{ 88*e7b1675dSTing-Kang Chang Params: ¶ms, 89*e7b1675dSTing-Kang Chang KeySize: keySize, 90*e7b1675dSTing-Kang Chang } 91*e7b1675dSTing-Kang Chang serializedFormat, err := proto.Marshal(&format) 92*e7b1675dSTing-Kang Chang if err != nil { 93*e7b1675dSTing-Kang Chang tinkerror.Fail(fmt.Sprintf("failed to marshal key format: %s", err)) 94*e7b1675dSTing-Kang Chang } 95*e7b1675dSTing-Kang Chang return &tinkpb.KeyTemplate{ 96*e7b1675dSTing-Kang Chang TypeUrl: hkdfprfTypeURL, 97*e7b1675dSTing-Kang Chang OutputPrefixType: tinkpb.OutputPrefixType_RAW, 98*e7b1675dSTing-Kang Chang Value: serializedFormat, 99*e7b1675dSTing-Kang Chang } 100*e7b1675dSTing-Kang Chang} 101*e7b1675dSTing-Kang Chang 102*e7b1675dSTing-Kang Chang// createAESCMACPRFKeyTemplate creates a new KeyTemplate for AES-CMAC using the given parameters. 103*e7b1675dSTing-Kang Changfunc createAESCMACPRFKeyTemplate(keySize uint32) *tinkpb.KeyTemplate { 104*e7b1675dSTing-Kang Chang format := cmacpb.AesCmacPrfKeyFormat{ 105*e7b1675dSTing-Kang Chang KeySize: keySize, 106*e7b1675dSTing-Kang Chang } 107*e7b1675dSTing-Kang Chang serializedFormat, err := proto.Marshal(&format) 108*e7b1675dSTing-Kang Chang if err != nil { 109*e7b1675dSTing-Kang Chang tinkerror.Fail(fmt.Sprintf("failed to marshal key format: %s", err)) 110*e7b1675dSTing-Kang Chang } 111*e7b1675dSTing-Kang Chang return &tinkpb.KeyTemplate{ 112*e7b1675dSTing-Kang Chang TypeUrl: aescmacprfTypeURL, 113*e7b1675dSTing-Kang Chang OutputPrefixType: tinkpb.OutputPrefixType_RAW, 114*e7b1675dSTing-Kang Chang Value: serializedFormat, 115*e7b1675dSTing-Kang Chang } 116*e7b1675dSTing-Kang Chang} 117