// Copyright 2018 Google Inc. // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. // /////////////////////////////////////////////////////////////////////////////// #ifndef TINK_AEAD_XCHACHA20_POLY1305_KEY_MANAGER_H_ #define TINK_AEAD_XCHACHA20_POLY1305_KEY_MANAGER_H_ #include #include #include #include "absl/memory/memory.h" #include "absl/status/status.h" #include "absl/strings/str_cat.h" #include "tink/aead.h" #include "tink/core/key_type_manager.h" #include "tink/core/template_util.h" #include "tink/input_stream.h" #include "tink/subtle/random.h" #include "tink/subtle/xchacha20_poly1305_boringssl.h" #include "tink/util/constants.h" #include "tink/util/input_stream_util.h" #include "tink/util/secret_data.h" #include "tink/util/status.h" #include "tink/util/statusor.h" #include "tink/util/validation.h" #include "proto/tink.pb.h" #include "proto/xchacha20_poly1305.pb.h" namespace crypto { namespace tink { class XChaCha20Poly1305KeyManager : public KeyTypeManager> { public: class AeadFactory : public PrimitiveFactory { crypto::tink::util::StatusOr> Create( const google::crypto::tink::XChaCha20Poly1305Key& key) const override { return subtle::XChacha20Poly1305BoringSsl::New( util::SecretDataFromStringView(key.key_value())); } }; XChaCha20Poly1305KeyManager() : KeyTypeManager(absl::make_unique()) {} uint32_t get_version() const override { return 0; } google::crypto::tink::KeyData::KeyMaterialType key_material_type() const override { return google::crypto::tink::KeyData::SYMMETRIC; } const std::string& get_key_type() const override { return key_type_; } crypto::tink::util::Status ValidateKey( const google::crypto::tink::XChaCha20Poly1305Key& key) const override { crypto::tink::util::Status status = ValidateVersion(key.version(), get_version()); if (!status.ok()) return status; uint32_t key_size = key.key_value().size(); if (key.key_value().size() != kKeySizeInBytes) { return crypto::tink::util::Status( absl::StatusCode::kInvalidArgument, absl::StrCat("Invalid XChaCha20Poly1305Key: key_value has ", key_size, " bytes; supported size: ", kKeySizeInBytes, " bytes.")); } return crypto::tink::util::OkStatus(); } crypto::tink::util::Status ValidateKeyFormat( const google::crypto::tink::XChaCha20Poly1305KeyFormat& key_format) const override { return crypto::tink::util::OkStatus(); } crypto::tink::util::StatusOr CreateKey(const google::crypto::tink::XChaCha20Poly1305KeyFormat& key_format) const override { google::crypto::tink::XChaCha20Poly1305Key result; result.set_version(get_version()); result.set_key_value(subtle::Random::GetRandomBytes(kKeySizeInBytes)); return result; } crypto::tink::util::StatusOr DeriveKey(const google::crypto::tink::XChaCha20Poly1305KeyFormat& key_format, InputStream* input_stream) const override { crypto::tink::util::Status status = ValidateVersion(key_format.version(), get_version()); if (!status.ok()) return status; crypto::tink::util::StatusOr randomness = ReadBytesFromStream(kKeySizeInBytes, input_stream); if (!randomness.ok()) { if (randomness.status().code() == absl::StatusCode::kOutOfRange) { return crypto::tink::util::Status( absl::StatusCode::kInvalidArgument, "Could not get enough pseudorandomness from input stream"); } return randomness.status(); } google::crypto::tink::XChaCha20Poly1305Key key; key.set_version(get_version()); key.set_key_value(randomness.value()); return key; } private: const std::string key_type_ = absl::StrCat(kTypeGoogleapisCom, google::crypto::tink::XChaCha20Poly1305Key().GetTypeName()); const int kKeySizeInBytes = 32; }; } // namespace tink } // namespace crypto #endif // TINK_AEAD_XCHACHA20_POLY1305_KEY_MANAGER_H_