8#include <botan/mceies.h>
11#include <botan/mceliece.h>
12#include <botan/pubkey.h>
18secure_vector<uint8_t> aead_key(
const secure_vector<uint8_t>& mk,
19 const AEAD_Mode& aead)
22 if(aead.valid_keylength(mk.size()))
25 secure_vector<uint8_t> r(aead.key_spec().maximum_keylength());
27 for(
size_t i = 0; i != mk.size(); ++i)
28 r[i % r.size()] ^= mk[i];
36 const uint8_t pt[],
size_t pt_len,
37 const uint8_t ad[],
size_t ad_len,
39 const std::string& algo)
44 kem_op.
encrypt(mce_ciphertext, mce_key, 64, rng);
48 BOTAN_ASSERT(mce_ciphertext.size() == mce_code_bytes,
"Unexpected size");
52 const size_t nonce_len = aead->default_nonce_length();
54 aead->set_key(aead_key(mce_key, *aead));
55 aead->set_associated_data(ad, ad_len);
60 copy_mem(msg.data(), mce_ciphertext.data(), mce_ciphertext.size());
61 copy_mem(msg.data() + mce_ciphertext.size(), nonce.data(), nonce.size());
62 copy_mem(msg.data() + mce_ciphertext.size() + nonce.size(), pt, pt_len);
65 aead->finish(msg, mce_ciphertext.size() + nonce.size());
71 const uint8_t ct[],
size_t ct_len,
72 const uint8_t ad[],
size_t ad_len,
73 const std::string& algo)
84 const size_t nonce_len = aead->default_nonce_length();
86 if(ct_len < mce_code_bytes + nonce_len + aead->tag_size())
91 aead->set_key(aead_key(mce_key, *aead));
92 aead->set_associated_data(ad, ad_len);
96 aead->start(&ct[mce_code_bytes], nonce_len);
104 catch(std::exception& e)
106 throw Decoding_Error(
"mce_decrypt failed: " + std::string(e.what()));
#define BOTAN_ASSERT_NOMSG(expr)
#define BOTAN_ASSERT(expr, assertion_made)
static std::unique_ptr< AEAD_Mode > create_or_throw(const std::string &algo, Cipher_Dir direction, const std::string &provider="")
size_t get_code_length() const
secure_vector< uint8_t > decrypt(const uint8_t encap_key[], size_t encap_key_len, size_t desired_shared_key_len, const uint8_t salt[], size_t salt_len)
void encrypt(secure_vector< uint8_t > &out_encapsulated_key, secure_vector< uint8_t > &out_shared_key, size_t desired_shared_key_len, Botan::RandomNumberGenerator &rng, const uint8_t salt[], size_t salt_len)
secure_vector< uint8_t > random_vec(size_t bytes)
secure_vector< uint8_t > mceies_encrypt(const McEliece_PublicKey &pubkey, const uint8_t pt[], size_t pt_len, const uint8_t ad[], size_t ad_len, RandomNumberGenerator &rng, const std::string &algo)
void copy_mem(T *out, const T *in, size_t n)
secure_vector< uint8_t > mceies_decrypt(const McEliece_PrivateKey &privkey, const uint8_t ct[], size_t ct_len, const uint8_t ad[], size_t ad_len, const std::string &algo)
std::vector< T, secure_allocator< T > > secure_vector