{
goto failure;
}
+ if (kdf_has_fixed_output_length(alg))
+ {
+ if (kdf->get_length(kdf) != vector->out.len)
+ {
+ goto failure;
+ }
+ }
+ else if (kdf->get_length(kdf) != SIZE_MAX)
+ {
+ goto failure;
+ }
/* allocated bytes */
if (!kdf->allocate_bytes(kdf, vector->out.len, &out))
{
{
goto failure;
}
+ /* allocate without knowing the length */
+ if (kdf_has_fixed_output_length(alg))
+ {
+ chunk_free(&out);
+ if (!kdf->allocate_bytes(kdf, 0, &out))
+ {
+ goto failure;
+ }
+ if (!chunk_equals(out, vector->out))
+ {
+ goto failure;
+ }
+ }
/* bytes to existing buffer */
memset(out.ptr, 0, out.len);
if (!kdf->get_bytes(kdf, out.len, out.ptr))
"KDF_UNDEFINED",
"KDF_PRF_PLUS",
);
+
+/*
+ * Described in header
+ */
+bool kdf_has_fixed_output_length(key_derivation_function_t type)
+{
+ switch (type)
+ {
+ case KDF_PRF_PLUS:
+ case KDF_UNDEFINED:
+ break;
+ }
+ return FALSE;
+}
*/
key_derivation_function_t (*get_type)(kdf_t *this);
+ /**
+ * Output length for KDFs that produce a fixed amount of output.
+ *
+ * @return fixed output length, SIZE_MAX for variable length
+ */
+ size_t (*get_length)(kdf_t *this);
+
/**
* Derives a key of the given length and writes it to the buffer.
*
+ * @note Fails if out_len doesn't match for KDFs with fixed output length.
+ *
* @param out_len number of key bytes requested
* @param buffer pointer where the derived key will be written
* @return TRUE if key derived successfully
/**
* Derives a key of the given length and allocates space for it.
*
- * @param out_len number of key bytes requested
+ * @note Fails if out_len doesn't match for KDFs with fixed output length.
+ * However, for simplified usage, 0 can be passed for out_len to
+ * automatically allocate a chunk of the correct size.
+ *
+ * @param out_len number of key bytes requested, or 0 for KDFs with fixed
+ * output length
* @param chunk chunk which will hold the derived key
* @return TRUE if key derived successfully
*/
void (*destroy)(kdf_t *this);
};
+/**
+ * Check if the given KDF type has a fixed output length.
+ *
+ * @param type KDF type
+ * @return TRUE if the KDF type has a fixed output length
+ */
+bool kdf_has_fixed_output_length(key_derivation_function_t type);
+
#endif /** KDF_H_ @}*/
return KDF_PRF_PLUS;
}
+METHOD(kdf_t, get_length, size_t,
+ private_kdf_t *this)
+{
+ return SIZE_MAX;
+}
+
METHOD(kdf_t, get_bytes, bool,
private_kdf_t *this, size_t out_len, uint8_t *buffer)
{
INIT(this,
.public = {
.get_type = _get_type,
+ .get_length = _get_length,
.get_bytes = _get_bytes,
.allocate_bytes = _allocate_bytes,
.set_param = _set_param,
return KDF_PRF_PLUS;
}
+METHOD(kdf_t, get_length, size_t,
+ private_kdf_t *this)
+{
+ return SIZE_MAX;
+}
+
METHOD(kdf_t, get_bytes, bool,
private_kdf_t *this, size_t out_len, uint8_t *buffer)
{
INIT(this,
.public = {
.get_type = _get_type,
+ .get_length = _get_length,
.get_bytes = _get_bytes,
.allocate_bytes = _allocate_bytes,
.set_param = _set_param,
return KDF_PRF_PLUS;
}
+METHOD(kdf_t, get_length, size_t,
+ private_kdf_t *this)
+{
+ return SIZE_MAX;
+}
+
METHOD(kdf_t, get_bytes, bool,
private_kdf_t *this, size_t out_len, uint8_t *buffer)
{
INIT(this,
.public = {
.get_type = _get_type,
+ .get_length = _get_length,
.get_bytes = _get_bytes,
.allocate_bytes = _allocate_bytes,
.set_param = _set_param,
return KDF_PRF_PLUS;
}
+METHOD(kdf_t, get_length, size_t,
+ private_kdf_t *this)
+{
+ return SIZE_MAX;
+}
+
METHOD(kdf_t, get_bytes, bool,
private_kdf_t *this, size_t out_len, uint8_t *buffer)
{
INIT(this,
.public = {
.get_type = _get_type,
+ .get_length = _get_length,
.get_bytes = _get_bytes,
.allocate_bytes = _allocate_bytes,
.set_param = _set_param,
projects / thirdparty / strongswan.git / commitdiff
