10#include <botan/loadstor.h>
15 const uint8_t secret[],
size_t secret_len,
16 const uint8_t salt[],
size_t salt_len,
17 const uint8_t label[],
size_t label_len)
const
23 extract.
kdf(prk.data(), prk.size(), secret, secret_len, salt,
salt_len,
nullptr, 0);
24 return expand.
kdf(key, key_len, prk.data(), prk.size(),
nullptr, 0, label, label_len);
28 const uint8_t secret[],
size_t secret_len,
29 const uint8_t salt[],
size_t salt_len,
30 const uint8_t[],
size_t)
const
35 m_prf->set_key(std::vector<uint8_t>(m_prf->output_length()));
42 m_prf->update(secret, secret_len);
45 const size_t written = std::min(prk.size(), key_len);
46 copy_mem(&key[0], prk.data(), written);
52 const uint8_t secret[],
size_t secret_len,
53 const uint8_t salt[],
size_t salt_len,
54 const uint8_t label[],
size_t label_len)
const
56 m_prf->set_key(secret, secret_len);
62 while(offset != key_len && counter != 0)
65 m_prf->update(label, label_len);
67 m_prf->update(counter++);
70 const size_t written = std::min(h.size(), key_len - offset);
71 copy_mem(&key[offset], h.data(), written);
81 const uint8_t secret[],
size_t secret_len,
82 const std::string& label,
83 const uint8_t hash_val[],
size_t hash_val_len,
86 BOTAN_ARG_CHECK(length <= 0xFFFF,
"HKDF-Expand-Label requested output too large");
87 BOTAN_ARG_CHECK(label.size() <= 0xFF,
"HKDF-Expand-Label label too long");
88 BOTAN_ARG_CHECK(hash_val_len <= 0xFF,
"HKDF-Expand-Label hash too long");
90 const uint16_t length16 =
static_cast<uint16_t
>(length);
97 std::vector<uint8_t> prefix(3 + label.size() + 1);
101 prefix[2] =
static_cast<uint8_t
>(label.size());
107 prefix[3 + label.size()] =
static_cast<uint8_t
>(hash_val_len);
114 hkdf.
kdf(output.data(), output.size(),
116 hash_val, hash_val_len,
117 prefix.data(), prefix.size());
#define BOTAN_ARG_CHECK(expr, msg)
size_t kdf(uint8_t key[], size_t key_len, const uint8_t secret[], size_t secret_len, const uint8_t salt[], size_t salt_len, const uint8_t label[], size_t label_len) const override
size_t kdf(uint8_t key[], size_t key_len, const uint8_t secret[], size_t secret_len, const uint8_t salt[], size_t salt_len, const uint8_t label[], size_t label_len) const override
static std::unique_ptr< MessageAuthenticationCode > create_or_throw(const std::string &algo_spec, const std::string &provider="")
secure_vector< uint8_t > hkdf_expand_label(const std::string &hash_fn, const uint8_t secret[], size_t secret_len, const std::string &label, const uint8_t hash_val[], size_t hash_val_len, size_t length)
void copy_mem(T *out, const T *in, size_t n)
constexpr uint8_t get_byte(size_t byte_num, T input)
std::vector< T, secure_allocator< T > > secure_vector
const uint8_t * cast_char_ptr_to_uint8(const char *s)