<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/xhtml;charset=UTF-8"/> <meta http-equiv="X-UA-Compatible" content="IE=9"/> <meta name="generator" content="Doxygen 1.8.14"/> <meta name="viewport" content="width=device-width, initial-scale=1"/> <title>Crypto++: hmqv.h Source File</title> <link href="tabs.css" rel="stylesheet" type="text/css"/> <script type="text/javascript" src="jquery.js"></script> <script type="text/javascript" src="dynsections.js"></script> <link href="doxygen.css" rel="stylesheet" type="text/css" /> </head> <body> <div id="top"><!-- do not remove this div, it is closed by doxygen! --> <div id="titlearea"> <table cellspacing="0" cellpadding="0"> <tbody> <tr style="height: 56px;"> <td id="projectalign" style="padding-left: 0.5em;"> <div id="projectname">Crypto++  <span id="projectnumber">7.0</span> </div> <div id="projectbrief">Free C++ class library of cryptographic schemes</div> </td> </tr> </tbody> </table> </div> <!-- end header part --> <!-- Generated by Doxygen 1.8.14 --> <script type="text/javascript" src="menudata.js"></script> <script type="text/javascript" src="menu.js"></script> <script type="text/javascript"> /* @license magnet:?xt=urn:btih:cf05388f2679ee054f2beb29a391d25f4e673ac3&dn=gpl-2.0.txt GPL-v2 */ $(function() { initMenu('',false,false,'search.php','Search'); }); /* @license-end */</script> <div id="main-nav"></div> </div><!-- top --> <div class="header"> <div class="headertitle"> <div class="title">hmqv.h</div> </div> </div><!--header--> <div class="contents"> <a href="hmqv_8h.html">Go to the documentation of this file.</a><div class="fragment"><div class="line"><a name="l00001"></a><span class="lineno"> 1</span> <span class="comment">// hmqv.h - written and placed in the public domain by Uri Blumenthal</span></div><div class="line"><a name="l00002"></a><span class="lineno"> 2</span> <span class="comment">// Shamelessly based upon Jeffrey Walton's FHMQV and Wei Dai's MQV source files</span></div><div class="line"><a name="l00003"></a><span class="lineno"> 3</span> </div><div class="line"><a name="l00004"></a><span class="lineno"> 4</span> <span class="preprocessor">#ifndef CRYPTOPP_HMQV_H</span></div><div class="line"><a name="l00005"></a><span class="lineno"> 5</span> <span class="preprocessor">#define CRYPTOPP_HMQV_H</span></div><div class="line"><a name="l00006"></a><span class="lineno"> 6</span> <span class="comment"></span></div><div class="line"><a name="l00007"></a><span class="lineno"> 7</span> <span class="comment">/// \file hmqv.h</span></div><div class="line"><a name="l00008"></a><span class="lineno"> 8</span> <span class="comment">/// \brief Classes for Hashed Menezes-Qu-Vanstone key agreement in GF(p)</span></div><div class="line"><a name="l00009"></a><span class="lineno"> 9</span> <span class="comment">/// \since Crypto++ 5.6.4</span></div><div class="line"><a name="l00010"></a><span class="lineno"> 10</span> <span class="comment"></span></div><div class="line"><a name="l00011"></a><span class="lineno"> 11</span> <span class="preprocessor">#include "<a class="code" href="gfpcrypt_8h.html">gfpcrypt.h</a>"</span></div><div class="line"><a name="l00012"></a><span class="lineno"> 12</span> <span class="preprocessor">#include "<a class="code" href="algebra_8h.html">algebra.h</a>"</span></div><div class="line"><a name="l00013"></a><span class="lineno"> 13</span> <span class="preprocessor">#include "<a class="code" href="sha_8h.html">sha.h</a>"</span></div><div class="line"><a name="l00014"></a><span class="lineno"> 14</span> </div><div class="line"><a name="l00015"></a><span class="lineno"> 15</span> NAMESPACE_BEGIN(<a class="code" href="namespace_crypto_p_p.html">CryptoPP</a>)</div><div class="line"><a name="l00016"></a><span class="lineno"> 16</span> </div><div class="line"><a name="l00017"></a><span class="lineno"> 17</span> <span class="comment">/// \brief Hashed Menezes-Qu-Vanstone in GF(p)</span></div><div class="line"><a name="l00018"></a><span class="lineno"> 18</span> <span class="comment"></span><span class="comment">/// \details This implementation follows Hugo Krawczyk's <a href="http://eprint.iacr.org/2005/176">HMQV: A High-Performance</span></div><div class="line"><a name="l00019"></a><span class="lineno"> 19</span> <span class="comment"></span><span class="comment">/// Secure Diffie-Hellman Protocol</a>. Note: this implements HMQV only. HMQV-C with Key Confirmation is not provided.</span></div><div class="line"><a name="l00020"></a><span class="lineno"> 20</span> <span class="comment"></span><span class="comment">/// \sa MQV, HMQV, FHMQV, and AuthenticatedKeyAgreementDomain</span></div><div class="line"><a name="l00021"></a><span class="lineno"> 21</span> <span class="comment"></span><span class="comment">/// \since Crypto++ 5.6.4</span></div><div class="line"><a name="l00022"></a><span class="lineno"> 22</span> <span class="comment"></span><span class="keyword">template</span> <<span class="keyword">class</span> GROUP_PARAMETERS, <span class="keyword">class</span> COFACTOR_OPTION = <span class="keyword">typename</span> GROUP_PARAMETERS::DefaultCofactorOption, <span class="keyword">class</span> HASH = SHA512></div><div class="line"><a name="l00023"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html"> 23</a></span> <span class="keyword">class </span><a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain</a>: <span class="keyword">public</span> <a class="code" href="class_authenticated_key_agreement_domain.html">AuthenticatedKeyAgreementDomain</a></div><div class="line"><a name="l00024"></a><span class="lineno"> 24</span> {</div><div class="line"><a name="l00025"></a><span class="lineno"> 25</span> <span class="keyword">public</span>:</div><div class="line"><a name="l00026"></a><span class="lineno"> 26</span>  <span class="keyword">typedef</span> GROUP_PARAMETERS GroupParameters;</div><div class="line"><a name="l00027"></a><span class="lineno"> 27</span>  <span class="keyword">typedef</span> <span class="keyword">typename</span> GroupParameters::Element Element;</div><div class="line"><a name="l00028"></a><span class="lineno"> 28</span>  <span class="keyword">typedef</span> <a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain<GROUP_PARAMETERS, COFACTOR_OPTION, HASH></a> <a class="code" href="class_h_m_q_v___domain.html">Domain</a>;</div><div class="line"><a name="l00029"></a><span class="lineno"> 29</span> </div><div class="line"><a name="l00030"></a><span class="lineno"> 30</span>  <span class="keyword">virtual</span> ~<a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain</a>() {}</div><div class="line"><a name="l00031"></a><span class="lineno"> 31</span> </div><div class="line"><a name="l00032"></a><span class="lineno"> 32</span>  <a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain</a>(<span class="keywordtype">bool</span> clientRole = <span class="keyword">true</span>): m_role(clientRole ? RoleClient : RoleServer) {}</div><div class="line"><a name="l00033"></a><span class="lineno"> 33</span> </div><div class="line"><a name="l00034"></a><span class="lineno"> 34</span>  <a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain</a>(<span class="keyword">const</span> GroupParameters &params, <span class="keywordtype">bool</span> clientRole = <span class="keyword">true</span>)</div><div class="line"><a name="l00035"></a><span class="lineno"> 35</span>  : m_role(clientRole ? RoleClient : RoleServer), m_groupParameters(params) {}</div><div class="line"><a name="l00036"></a><span class="lineno"> 36</span> </div><div class="line"><a name="l00037"></a><span class="lineno"> 37</span>  <a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain</a>(<a class="code" href="class_buffered_transformation.html">BufferedTransformation</a> &bt, <span class="keywordtype">bool</span> clientRole = <span class="keyword">true</span>)</div><div class="line"><a name="l00038"></a><span class="lineno"> 38</span>  : m_role(clientRole ? RoleClient : RoleServer)</div><div class="line"><a name="l00039"></a><span class="lineno"> 39</span>  {m_groupParameters.BERDecode(bt);}</div><div class="line"><a name="l00040"></a><span class="lineno"> 40</span> </div><div class="line"><a name="l00041"></a><span class="lineno"> 41</span>  <span class="keyword">template</span> <<span class="keyword">class</span> T1></div><div class="line"><a name="l00042"></a><span class="lineno"> 42</span>  <a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain</a>(T1 v1, <span class="keywordtype">bool</span> clientRole = <span class="keyword">true</span>)</div><div class="line"><a name="l00043"></a><span class="lineno"> 43</span>  : m_role(clientRole ? RoleClient : RoleServer)</div><div class="line"><a name="l00044"></a><span class="lineno"> 44</span>  {m_groupParameters.Initialize(v1);}</div><div class="line"><a name="l00045"></a><span class="lineno"> 45</span> </div><div class="line"><a name="l00046"></a><span class="lineno"> 46</span>  <span class="keyword">template</span> <<span class="keyword">class</span> T1, <span class="keyword">class</span> T2></div><div class="line"><a name="l00047"></a><span class="lineno"> 47</span>  <a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain</a>(T1 v1, T2 v2, <span class="keywordtype">bool</span> clientRole = <span class="keyword">true</span>)</div><div class="line"><a name="l00048"></a><span class="lineno"> 48</span>  : m_role(clientRole ? RoleClient : RoleServer)</div><div class="line"><a name="l00049"></a><span class="lineno"> 49</span>  {m_groupParameters.Initialize(v1, v2);}</div><div class="line"><a name="l00050"></a><span class="lineno"> 50</span> </div><div class="line"><a name="l00051"></a><span class="lineno"> 51</span>  <span class="keyword">template</span> <<span class="keyword">class</span> T1, <span class="keyword">class</span> T2, <span class="keyword">class</span> T3></div><div class="line"><a name="l00052"></a><span class="lineno"> 52</span>  <a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain</a>(T1 v1, T2 v2, T3 v3, <span class="keywordtype">bool</span> clientRole = <span class="keyword">true</span>)</div><div class="line"><a name="l00053"></a><span class="lineno"> 53</span>  : m_role(clientRole ? RoleClient : RoleServer)</div><div class="line"><a name="l00054"></a><span class="lineno"> 54</span>  {m_groupParameters.Initialize(v1, v2, v3);}</div><div class="line"><a name="l00055"></a><span class="lineno"> 55</span> </div><div class="line"><a name="l00056"></a><span class="lineno"> 56</span>  <span class="keyword">template</span> <<span class="keyword">class</span> T1, <span class="keyword">class</span> T2, <span class="keyword">class</span> T3, <span class="keyword">class</span> T4></div><div class="line"><a name="l00057"></a><span class="lineno"> 57</span>  <a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain</a>(T1 v1, T2 v2, T3 v3, T4 v4, <span class="keywordtype">bool</span> clientRole = <span class="keyword">true</span>)</div><div class="line"><a name="l00058"></a><span class="lineno"> 58</span>  : m_role(clientRole ? RoleClient : RoleServer)</div><div class="line"><a name="l00059"></a><span class="lineno"> 59</span>  {m_groupParameters.Initialize(v1, v2, v3, v4);}</div><div class="line"><a name="l00060"></a><span class="lineno"> 60</span> </div><div class="line"><a name="l00061"></a><span class="lineno"> 61</span> <span class="keyword">public</span>:</div><div class="line"><a name="l00062"></a><span class="lineno"> 62</span> </div><div class="line"><a name="l00063"></a><span class="lineno"> 63</span>  <span class="keyword">const</span> GroupParameters & GetGroupParameters()<span class="keyword"> const </span>{<span class="keywordflow">return</span> m_groupParameters;}</div><div class="line"><a name="l00064"></a><span class="lineno"> 64</span>  GroupParameters & AccessGroupParameters(){<span class="keywordflow">return</span> m_groupParameters;}</div><div class="line"><a name="l00065"></a><span class="lineno"> 65</span> </div><div class="line"><a name="l00066"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#a6e17a9bd0f489294987a891902b2a68e"> 66</a></span>  <a class="code" href="class_crypto_parameters.html">CryptoParameters</a> & <a class="code" href="class_h_m_q_v___domain.html#a6e17a9bd0f489294987a891902b2a68e">AccessCryptoParameters</a>(){<span class="keywordflow">return</span> AccessAbstractGroupParameters();}</div><div class="line"><a name="l00067"></a><span class="lineno"> 67</span> <span class="comment"></span></div><div class="line"><a name="l00068"></a><span class="lineno"> 68</span> <span class="comment"> /// return length of agreed value produced</span></div><div class="line"><a name="l00069"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#ab63c64474cafb81de06b04f59c468e1c"> 69</a></span> <span class="comment"></span> <span class="keywordtype">unsigned</span> <span class="keywordtype">int</span> <a class="code" href="class_h_m_q_v___domain.html#ab63c64474cafb81de06b04f59c468e1c">AgreedValueLength</a>()<span class="keyword"> const </span>{<span class="keywordflow">return</span> GetAbstractGroupParameters().GetEncodedElementSize(<span class="keyword">false</span>);}<span class="comment"></span></div><div class="line"><a name="l00070"></a><span class="lineno"> 70</span> <span class="comment"> /// return length of static private keys in this domain</span></div><div class="line"><a name="l00071"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b"> 71</a></span> <span class="comment"></span> <span class="keywordtype">unsigned</span> <span class="keywordtype">int</span> <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>()<span class="keyword"> const </span>{<span class="keywordflow">return</span> GetAbstractGroupParameters().GetSubgroupOrder().ByteCount();}<span class="comment"></span></div><div class="line"><a name="l00072"></a><span class="lineno"> 72</span> <span class="comment"> /// return length of static public keys in this domain</span></div><div class="line"><a name="l00073"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#aca01fa98db1675423953049dc7288fc7"> 73</a></span> <span class="comment"></span> <span class="keywordtype">unsigned</span> <span class="keywordtype">int</span> <a class="code" href="class_h_m_q_v___domain.html#aca01fa98db1675423953049dc7288fc7">StaticPublicKeyLength</a>()<span class="keyword"> const</span>{<span class="keywordflow">return</span> GetAbstractGroupParameters().GetEncodedElementSize(<span class="keyword">true</span>);}</div><div class="line"><a name="l00074"></a><span class="lineno"> 74</span> <span class="comment"></span></div><div class="line"><a name="l00075"></a><span class="lineno"> 75</span> <span class="comment"> /// generate static private key</span></div><div class="line"><a name="l00076"></a><span class="lineno"> 76</span> <span class="comment"></span><span class="comment"> /*! \pre size of privateKey == PrivateStaticKeyLength() */</span></div><div class="line"><a name="l00077"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#a3c283a1124242a10243d9f2fa55e4ebc"> 77</a></span>  <span class="keywordtype">void</span> <a class="code" href="class_h_m_q_v___domain.html#a3c283a1124242a10243d9f2fa55e4ebc">GenerateStaticPrivateKey</a>(<a class="code" href="class_random_number_generator.html">RandomNumberGenerator</a> &rng, byte *privateKey)<span class="keyword"> const</span></div><div class="line"><a name="l00078"></a><span class="lineno"> 78</span> <span class="keyword"> </span>{</div><div class="line"><a name="l00079"></a><span class="lineno"> 79</span>  <a class="code" href="class_integer.html">Integer</a> x(rng, <a class="code" href="class_integer.html#a8c070592581bf6c2f928c72bfa1c1638">Integer::One</a>(), GetAbstractGroupParameters().GetMaxExponent());</div><div class="line"><a name="l00080"></a><span class="lineno"> 80</span>  x.Encode(privateKey, <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00081"></a><span class="lineno"> 81</span>  }</div><div class="line"><a name="l00082"></a><span class="lineno"> 82</span> <span class="comment"></span></div><div class="line"><a name="l00083"></a><span class="lineno"> 83</span> <span class="comment"> /// generate static public key</span></div><div class="line"><a name="l00084"></a><span class="lineno"> 84</span> <span class="comment"></span><span class="comment"> /*! \pre size of publicKey == PublicStaticKeyLength() */</span></div><div class="line"><a name="l00085"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#ac89aea97b86688d190ce29a638e80c5c"> 85</a></span>  <span class="keywordtype">void</span> <a class="code" href="class_h_m_q_v___domain.html#ac89aea97b86688d190ce29a638e80c5c">GenerateStaticPublicKey</a>(<a class="code" href="class_random_number_generator.html">RandomNumberGenerator</a> &rng, <span class="keyword">const</span> byte *privateKey, byte *publicKey)<span class="keyword"> const</span></div><div class="line"><a name="l00086"></a><span class="lineno"> 86</span> <span class="keyword"> </span>{</div><div class="line"><a name="l00087"></a><span class="lineno"> 87</span>  CRYPTOPP_UNUSED(rng);</div><div class="line"><a name="l00088"></a><span class="lineno"> 88</span>  <span class="keyword">const</span> <a class="code" href="class_d_l___group_parameters.html">DL_GroupParameters<Element></a> &params = GetAbstractGroupParameters();</div><div class="line"><a name="l00089"></a><span class="lineno"> 89</span>  <a class="code" href="class_integer.html">Integer</a> x(privateKey, <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00090"></a><span class="lineno"> 90</span>  Element y = params.<a class="code" href="class_d_l___group_parameters.html#ae5bf9692b8879e0ed5ad7e16a696818d">ExponentiateBase</a>(x);</div><div class="line"><a name="l00091"></a><span class="lineno"> 91</span>  params.<a class="code" href="class_d_l___group_parameters.html#a71c6058bd5ddcd54bd36565b0ba0cae0">EncodeElement</a>(<span class="keyword">true</span>, y, publicKey);</div><div class="line"><a name="l00092"></a><span class="lineno"> 92</span>  }</div><div class="line"><a name="l00093"></a><span class="lineno"> 93</span> </div><div class="line"><a name="l00094"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#ac288ec5ed6e6f793fdc44af246358727"> 94</a></span>  <span class="keywordtype">unsigned</span> <span class="keywordtype">int</span> <a class="code" href="class_h_m_q_v___domain.html#ac288ec5ed6e6f793fdc44af246358727">EphemeralPrivateKeyLength</a>()<span class="keyword"> const </span>{<span class="keywordflow">return</span> <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>() + <a class="code" href="class_h_m_q_v___domain.html#aca01fa98db1675423953049dc7288fc7">StaticPublicKeyLength</a>();}</div><div class="line"><a name="l00095"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#ad26c33a539bdc3b31718f6cfe26bf9ea"> 95</a></span>  <span class="keywordtype">unsigned</span> <span class="keywordtype">int</span> <a class="code" href="class_h_m_q_v___domain.html#ad26c33a539bdc3b31718f6cfe26bf9ea">EphemeralPublicKeyLength</a>()<span class="keyword"> const</span>{<span class="keywordflow">return</span> <a class="code" href="class_h_m_q_v___domain.html#aca01fa98db1675423953049dc7288fc7">StaticPublicKeyLength</a>();}</div><div class="line"><a name="l00096"></a><span class="lineno"> 96</span> <span class="comment"></span></div><div class="line"><a name="l00097"></a><span class="lineno"> 97</span> <span class="comment"> /// return length of ephemeral private keys in this domain</span></div><div class="line"><a name="l00098"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#a37b468af095df8fd85ee7dad8ff07b09"> 98</a></span> <span class="comment"></span> <span class="keywordtype">void</span> <a class="code" href="class_h_m_q_v___domain.html#a37b468af095df8fd85ee7dad8ff07b09">GenerateEphemeralPrivateKey</a>(<a class="code" href="class_random_number_generator.html">RandomNumberGenerator</a> &rng, byte *privateKey)<span class="keyword"> const</span></div><div class="line"><a name="l00099"></a><span class="lineno"> 99</span> <span class="keyword"> </span>{</div><div class="line"><a name="l00100"></a><span class="lineno"> 100</span>  <span class="keyword">const</span> <a class="code" href="class_d_l___group_parameters.html">DL_GroupParameters<Element></a> &params = GetAbstractGroupParameters();</div><div class="line"><a name="l00101"></a><span class="lineno"> 101</span>  <a class="code" href="class_integer.html">Integer</a> x(rng, <a class="code" href="class_integer.html#a8c070592581bf6c2f928c72bfa1c1638">Integer::One</a>(), params.<a class="code" href="class_d_l___group_parameters.html#a7275e04a4d21d985e698bb191e6cbdf1">GetMaxExponent</a>());</div><div class="line"><a name="l00102"></a><span class="lineno"> 102</span>  x.Encode(privateKey, <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00103"></a><span class="lineno"> 103</span>  Element y = params.<a class="code" href="class_d_l___group_parameters.html#ae5bf9692b8879e0ed5ad7e16a696818d">ExponentiateBase</a>(x);</div><div class="line"><a name="l00104"></a><span class="lineno"> 104</span>  params.<a class="code" href="class_d_l___group_parameters.html#a71c6058bd5ddcd54bd36565b0ba0cae0">EncodeElement</a>(<span class="keyword">true</span>, y, privateKey+<a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00105"></a><span class="lineno"> 105</span>  }</div><div class="line"><a name="l00106"></a><span class="lineno"> 106</span> <span class="comment"></span></div><div class="line"><a name="l00107"></a><span class="lineno"> 107</span> <span class="comment"> /// return length of ephemeral public keys in this domain</span></div><div class="line"><a name="l00108"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#a555c19cf2475e0afc4a911f16d65375c"> 108</a></span> <span class="comment"></span> <span class="keywordtype">void</span> <a class="code" href="class_h_m_q_v___domain.html#a555c19cf2475e0afc4a911f16d65375c">GenerateEphemeralPublicKey</a>(<a class="code" href="class_random_number_generator.html">RandomNumberGenerator</a> &rng, <span class="keyword">const</span> byte *privateKey, byte *publicKey)<span class="keyword"> const</span></div><div class="line"><a name="l00109"></a><span class="lineno"> 109</span> <span class="keyword"> </span>{</div><div class="line"><a name="l00110"></a><span class="lineno"> 110</span>  CRYPTOPP_UNUSED(rng);</div><div class="line"><a name="l00111"></a><span class="lineno"> 111</span>  memcpy(publicKey, privateKey+<a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>(), <a class="code" href="class_h_m_q_v___domain.html#ad26c33a539bdc3b31718f6cfe26bf9ea">EphemeralPublicKeyLength</a>());</div><div class="line"><a name="l00112"></a><span class="lineno"> 112</span>  }</div><div class="line"><a name="l00113"></a><span class="lineno"> 113</span> <span class="comment"></span></div><div class="line"><a name="l00114"></a><span class="lineno"> 114</span> <span class="comment"> /// derive agreed value from your private keys and couterparty's public keys, return false in case of failure</span></div><div class="line"><a name="l00115"></a><span class="lineno"> 115</span> <span class="comment"></span><span class="comment"> /*! \note The ephemeral public key will always be validated.</span></div><div class="line"><a name="l00116"></a><span class="lineno"> 116</span> <span class="comment"> If you have previously validated the static public key, use validateStaticOtherPublicKey=false to save time.</span></div><div class="line"><a name="l00117"></a><span class="lineno"> 117</span> <span class="comment"> \pre size of agreedValue == AgreedValueLength()</span></div><div class="line"><a name="l00118"></a><span class="lineno"> 118</span> <span class="comment"> \pre length of staticPrivateKey == StaticPrivateKeyLength()</span></div><div class="line"><a name="l00119"></a><span class="lineno"> 119</span> <span class="comment"> \pre length of ephemeralPrivateKey == EphemeralPrivateKeyLength()</span></div><div class="line"><a name="l00120"></a><span class="lineno"> 120</span> <span class="comment"> \pre length of staticOtherPublicKey == StaticPublicKeyLength()</span></div><div class="line"><a name="l00121"></a><span class="lineno"> 121</span> <span class="comment"> \pre length of ephemeralOtherPublicKey == EphemeralPublicKeyLength()</span></div><div class="line"><a name="l00122"></a><span class="lineno"> 122</span> <span class="comment"> */</span></div><div class="line"><a name="l00123"></a><span class="lineno"><a class="line" href="class_h_m_q_v___domain.html#ab162ce29c3f9e76a10bf04230a0960ca"> 123</a></span>  <span class="keywordtype">bool</span> <a class="code" href="class_h_m_q_v___domain.html#ab162ce29c3f9e76a10bf04230a0960ca">Agree</a>(byte *agreedValue,</div><div class="line"><a name="l00124"></a><span class="lineno"> 124</span>  <span class="keyword">const</span> byte *staticPrivateKey, <span class="keyword">const</span> byte *ephemeralPrivateKey,</div><div class="line"><a name="l00125"></a><span class="lineno"> 125</span>  <span class="keyword">const</span> byte *staticOtherPublicKey, <span class="keyword">const</span> byte *ephemeralOtherPublicKey,</div><div class="line"><a name="l00126"></a><span class="lineno"> 126</span>  <span class="keywordtype">bool</span> validateStaticOtherPublicKey=<span class="keyword">true</span>)<span class="keyword"> const</span></div><div class="line"><a name="l00127"></a><span class="lineno"> 127</span> <span class="keyword"> </span>{</div><div class="line"><a name="l00128"></a><span class="lineno"> 128</span>  byte *XX = NULLPTR, *YY = NULLPTR, *AA = NULLPTR, *BB = NULLPTR;</div><div class="line"><a name="l00129"></a><span class="lineno"> 129</span>  <span class="keywordtype">size_t</span> xxs = 0, yys = 0, aas = 0, bbs = 0;</div><div class="line"><a name="l00130"></a><span class="lineno"> 130</span> </div><div class="line"><a name="l00131"></a><span class="lineno"> 131</span>  <span class="comment">// Depending on the role, this will hold either A's or B's static</span></div><div class="line"><a name="l00132"></a><span class="lineno"> 132</span>  <span class="comment">// (long term) public key. AA or BB will then point into tt.</span></div><div class="line"><a name="l00133"></a><span class="lineno"> 133</span>  <a class="code" href="class_sec_byte_block.html">SecByteBlock</a> tt(<a class="code" href="class_h_m_q_v___domain.html#aca01fa98db1675423953049dc7288fc7">StaticPublicKeyLength</a>());</div><div class="line"><a name="l00134"></a><span class="lineno"> 134</span> </div><div class="line"><a name="l00135"></a><span class="lineno"> 135</span>  <span class="keywordflow">try</span></div><div class="line"><a name="l00136"></a><span class="lineno"> 136</span>  {</div><div class="line"><a name="l00137"></a><span class="lineno"> 137</span>  <span class="keyword">const</span> <a class="code" href="class_d_l___group_parameters.html">DL_GroupParameters<Element></a> &params = GetAbstractGroupParameters();</div><div class="line"><a name="l00138"></a><span class="lineno"> 138</span> </div><div class="line"><a name="l00139"></a><span class="lineno"> 139</span>  <span class="keywordflow">if</span>(m_role == RoleServer)</div><div class="line"><a name="l00140"></a><span class="lineno"> 140</span>  {</div><div class="line"><a name="l00141"></a><span class="lineno"> 141</span>  <a class="code" href="class_integer.html">Integer</a> b(staticPrivateKey, <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00142"></a><span class="lineno"> 142</span>  Element B = params.<a class="code" href="class_d_l___group_parameters.html#ae5bf9692b8879e0ed5ad7e16a696818d">ExponentiateBase</a>(b);</div><div class="line"><a name="l00143"></a><span class="lineno"> 143</span>  params.<a class="code" href="class_d_l___group_parameters.html#a71c6058bd5ddcd54bd36565b0ba0cae0">EncodeElement</a>(<span class="keyword">true</span>, B, tt);</div><div class="line"><a name="l00144"></a><span class="lineno"> 144</span> </div><div class="line"><a name="l00145"></a><span class="lineno"> 145</span>  XX = <span class="keyword">const_cast<</span>byte*<span class="keyword">></span>(ephemeralOtherPublicKey);</div><div class="line"><a name="l00146"></a><span class="lineno"> 146</span>  xxs = <a class="code" href="class_h_m_q_v___domain.html#ad26c33a539bdc3b31718f6cfe26bf9ea">EphemeralPublicKeyLength</a>();</div><div class="line"><a name="l00147"></a><span class="lineno"> 147</span>  YY = <span class="keyword">const_cast<</span>byte*<span class="keyword">></span>(ephemeralPrivateKey) + <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>();</div><div class="line"><a name="l00148"></a><span class="lineno"> 148</span>  yys = <a class="code" href="class_h_m_q_v___domain.html#ad26c33a539bdc3b31718f6cfe26bf9ea">EphemeralPublicKeyLength</a>();</div><div class="line"><a name="l00149"></a><span class="lineno"> 149</span>  AA = <span class="keyword">const_cast<</span>byte*<span class="keyword">></span>(staticOtherPublicKey);</div><div class="line"><a name="l00150"></a><span class="lineno"> 150</span>  aas = <a class="code" href="class_h_m_q_v___domain.html#aca01fa98db1675423953049dc7288fc7">StaticPublicKeyLength</a>();</div><div class="line"><a name="l00151"></a><span class="lineno"> 151</span>  BB = tt.<a class="code" href="class_sec_block.html#a5565f51350846fb7224720c403674216">BytePtr</a>();</div><div class="line"><a name="l00152"></a><span class="lineno"> 152</span>  bbs = tt.<a class="code" href="class_sec_block.html#a93e1256d8021ba4ab9007ea4e19ae8c2">SizeInBytes</a>();</div><div class="line"><a name="l00153"></a><span class="lineno"> 153</span>  }</div><div class="line"><a name="l00154"></a><span class="lineno"> 154</span>  <span class="keywordflow">else</span> <span class="keywordflow">if</span>(m_role == RoleClient)</div><div class="line"><a name="l00155"></a><span class="lineno"> 155</span>  {</div><div class="line"><a name="l00156"></a><span class="lineno"> 156</span>  <a class="code" href="class_integer.html">Integer</a> a(staticPrivateKey, <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00157"></a><span class="lineno"> 157</span>  Element A = params.<a class="code" href="class_d_l___group_parameters.html#ae5bf9692b8879e0ed5ad7e16a696818d">ExponentiateBase</a>(a);</div><div class="line"><a name="l00158"></a><span class="lineno"> 158</span>  params.<a class="code" href="class_d_l___group_parameters.html#a71c6058bd5ddcd54bd36565b0ba0cae0">EncodeElement</a>(<span class="keyword">true</span>, A, tt);</div><div class="line"><a name="l00159"></a><span class="lineno"> 159</span> </div><div class="line"><a name="l00160"></a><span class="lineno"> 160</span>  XX = <span class="keyword">const_cast<</span>byte*<span class="keyword">></span>(ephemeralPrivateKey) + <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>();</div><div class="line"><a name="l00161"></a><span class="lineno"> 161</span>  xxs = <a class="code" href="class_h_m_q_v___domain.html#ad26c33a539bdc3b31718f6cfe26bf9ea">EphemeralPublicKeyLength</a>();</div><div class="line"><a name="l00162"></a><span class="lineno"> 162</span>  YY = <span class="keyword">const_cast<</span>byte*<span class="keyword">></span>(ephemeralOtherPublicKey);</div><div class="line"><a name="l00163"></a><span class="lineno"> 163</span>  yys = <a class="code" href="class_h_m_q_v___domain.html#ad26c33a539bdc3b31718f6cfe26bf9ea">EphemeralPublicKeyLength</a>();</div><div class="line"><a name="l00164"></a><span class="lineno"> 164</span>  AA = tt.<a class="code" href="class_sec_block.html#a5565f51350846fb7224720c403674216">BytePtr</a>();</div><div class="line"><a name="l00165"></a><span class="lineno"> 165</span>  aas = tt.<a class="code" href="class_sec_block.html#a93e1256d8021ba4ab9007ea4e19ae8c2">SizeInBytes</a>();</div><div class="line"><a name="l00166"></a><span class="lineno"> 166</span>  BB = <span class="keyword">const_cast<</span>byte*<span class="keyword">></span>(staticOtherPublicKey);</div><div class="line"><a name="l00167"></a><span class="lineno"> 167</span>  bbs = <a class="code" href="class_h_m_q_v___domain.html#aca01fa98db1675423953049dc7288fc7">StaticPublicKeyLength</a>();</div><div class="line"><a name="l00168"></a><span class="lineno"> 168</span>  }</div><div class="line"><a name="l00169"></a><span class="lineno"> 169</span>  <span class="keywordflow">else</span></div><div class="line"><a name="l00170"></a><span class="lineno"> 170</span>  {</div><div class="line"><a name="l00171"></a><span class="lineno"> 171</span>  <a class="code" href="trap_8h.html#adf3b392588bc94cbeae9f415a78c7b95">CRYPTOPP_ASSERT</a>(0);</div><div class="line"><a name="l00172"></a><span class="lineno"> 172</span>  <span class="keywordflow">return</span> <span class="keyword">false</span>;</div><div class="line"><a name="l00173"></a><span class="lineno"> 173</span>  }</div><div class="line"><a name="l00174"></a><span class="lineno"> 174</span> </div><div class="line"><a name="l00175"></a><span class="lineno"> 175</span>  <span class="comment">// DecodeElement calls ValidateElement at level 1. Level 1 only calls</span></div><div class="line"><a name="l00176"></a><span class="lineno"> 176</span>  <span class="comment">// VerifyPoint to ensure the element is in G*. If the other's PublicKey is</span></div><div class="line"><a name="l00177"></a><span class="lineno"> 177</span>  <span class="comment">// requested to be validated, we manually call ValidateElement at level 3.</span></div><div class="line"><a name="l00178"></a><span class="lineno"> 178</span>  Element VV1 = params.<a class="code" href="class_d_l___group_parameters.html#af3dc6d48394c356bb30dc72371aa02e7">DecodeElement</a>(staticOtherPublicKey, <span class="keyword">false</span>);</div><div class="line"><a name="l00179"></a><span class="lineno"> 179</span>  <span class="keywordflow">if</span>(!params.<a class="code" href="class_d_l___group_parameters.html#a1e6cc62adbecdd858be49f6f4db15f50">ValidateElement</a>(validateStaticOtherPublicKey ? 3 : 1, VV1, NULLPTR))</div><div class="line"><a name="l00180"></a><span class="lineno"> 180</span>  <span class="keywordflow">return</span> <span class="keyword">false</span>;</div><div class="line"><a name="l00181"></a><span class="lineno"> 181</span> </div><div class="line"><a name="l00182"></a><span class="lineno"> 182</span>  <span class="comment">// DecodeElement calls ValidateElement at level 1. Level 1 only calls</span></div><div class="line"><a name="l00183"></a><span class="lineno"> 183</span>  <span class="comment">// VerifyPoint to ensure the element is in G*. Crank it up.</span></div><div class="line"><a name="l00184"></a><span class="lineno"> 184</span>  Element VV2 = params.<a class="code" href="class_d_l___group_parameters.html#af3dc6d48394c356bb30dc72371aa02e7">DecodeElement</a>(ephemeralOtherPublicKey, <span class="keyword">false</span>);</div><div class="line"><a name="l00185"></a><span class="lineno"> 185</span>  <span class="keywordflow">if</span>(!params.<a class="code" href="class_d_l___group_parameters.html#a1e6cc62adbecdd858be49f6f4db15f50">ValidateElement</a>(3, VV2, NULLPTR))</div><div class="line"><a name="l00186"></a><span class="lineno"> 186</span>  <span class="keywordflow">return</span> <span class="keyword">false</span>;</div><div class="line"><a name="l00187"></a><span class="lineno"> 187</span> </div><div class="line"><a name="l00188"></a><span class="lineno"> 188</span>  <span class="comment">// const Integer& p = params.GetGroupOrder(); // not used, remove later</span></div><div class="line"><a name="l00189"></a><span class="lineno"> 189</span>  <span class="keyword">const</span> <a class="code" href="class_integer.html">Integer</a>& q = params.<a class="code" href="class_d_l___group_parameters.html#aeff4e59562d2c9b0ffc6b677e8ce409a">GetSubgroupOrder</a>();</div><div class="line"><a name="l00190"></a><span class="lineno"> 190</span>  <span class="keyword">const</span> <span class="keywordtype">unsigned</span> <span class="keywordtype">int</span> len <span class="comment">/*bytes*/</span> = (((q.<a class="code" href="class_integer.html#a867356d88074424328d0ebb9bea63254">BitCount</a>()+1)/2 +7)/8);</div><div class="line"><a name="l00191"></a><span class="lineno"> 191</span> </div><div class="line"><a name="l00192"></a><span class="lineno"> 192</span>  <a class="code" href="class_integer.html">Integer</a> d, e;</div><div class="line"><a name="l00193"></a><span class="lineno"> 193</span>  <a class="code" href="class_sec_byte_block.html">SecByteBlock</a> dd(len), ee(len);</div><div class="line"><a name="l00194"></a><span class="lineno"> 194</span> </div><div class="line"><a name="l00195"></a><span class="lineno"> 195</span>  <span class="comment">// Compute $d = \hat{H}(X, \hat{B})$</span></div><div class="line"><a name="l00196"></a><span class="lineno"> 196</span>  Hash(NULLPTR, XX, xxs, BB, bbs, dd.BytePtr(), dd.SizeInBytes());</div><div class="line"><a name="l00197"></a><span class="lineno"> 197</span>  d.Decode(dd.BytePtr(), dd.SizeInBytes());</div><div class="line"><a name="l00198"></a><span class="lineno"> 198</span> </div><div class="line"><a name="l00199"></a><span class="lineno"> 199</span>  <span class="comment">// Compute $e = \hat{H}(Y, \hat{A})$</span></div><div class="line"><a name="l00200"></a><span class="lineno"> 200</span>  Hash(NULLPTR, YY, yys, AA, aas, ee.<a class="code" href="class_sec_block.html#a5565f51350846fb7224720c403674216">BytePtr</a>(), ee.<a class="code" href="class_sec_block.html#a93e1256d8021ba4ab9007ea4e19ae8c2">SizeInBytes</a>());</div><div class="line"><a name="l00201"></a><span class="lineno"> 201</span>  e.Decode(ee.<a class="code" href="class_sec_block.html#a5565f51350846fb7224720c403674216">BytePtr</a>(), ee.<a class="code" href="class_sec_block.html#a93e1256d8021ba4ab9007ea4e19ae8c2">SizeInBytes</a>());</div><div class="line"><a name="l00202"></a><span class="lineno"> 202</span> </div><div class="line"><a name="l00203"></a><span class="lineno"> 203</span>  Element sigma;</div><div class="line"><a name="l00204"></a><span class="lineno"> 204</span>  <span class="keywordflow">if</span>(m_role == RoleServer)</div><div class="line"><a name="l00205"></a><span class="lineno"> 205</span>  {</div><div class="line"><a name="l00206"></a><span class="lineno"> 206</span>  <a class="code" href="class_integer.html">Integer</a> y(ephemeralPrivateKey, <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00207"></a><span class="lineno"> 207</span>  <a class="code" href="class_integer.html">Integer</a> b(staticPrivateKey, <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00208"></a><span class="lineno"> 208</span>  <a class="code" href="class_integer.html">Integer</a> s_B = (y + e * b) % q;</div><div class="line"><a name="l00209"></a><span class="lineno"> 209</span> </div><div class="line"><a name="l00210"></a><span class="lineno"> 210</span>  Element A = params.<a class="code" href="class_d_l___group_parameters.html#af3dc6d48394c356bb30dc72371aa02e7">DecodeElement</a>(AA, <span class="keyword">false</span>);</div><div class="line"><a name="l00211"></a><span class="lineno"> 211</span>  Element X = params.<a class="code" href="class_d_l___group_parameters.html#af3dc6d48394c356bb30dc72371aa02e7">DecodeElement</a>(XX, <span class="keyword">false</span>);</div><div class="line"><a name="l00212"></a><span class="lineno"> 212</span> </div><div class="line"><a name="l00213"></a><span class="lineno"> 213</span>  Element t1 = params.<a class="code" href="class_d_l___group_parameters.html#a11e487f345f8f9831f550647c0a609b0">ExponentiateElement</a>(A, d);</div><div class="line"><a name="l00214"></a><span class="lineno"> 214</span>  Element t2 = m_groupParameters.MultiplyElements(X, t1);</div><div class="line"><a name="l00215"></a><span class="lineno"> 215</span> </div><div class="line"><a name="l00216"></a><span class="lineno"> 216</span>  <span class="comment">// $\sigma_B}=(X \cdot A^{d})^{s_B}</span></div><div class="line"><a name="l00217"></a><span class="lineno"> 217</span>  sigma = params.<a class="code" href="class_d_l___group_parameters.html#a11e487f345f8f9831f550647c0a609b0">ExponentiateElement</a>(t2, s_B);</div><div class="line"><a name="l00218"></a><span class="lineno"> 218</span>  }</div><div class="line"><a name="l00219"></a><span class="lineno"> 219</span>  <span class="keywordflow">else</span></div><div class="line"><a name="l00220"></a><span class="lineno"> 220</span>  {</div><div class="line"><a name="l00221"></a><span class="lineno"> 221</span>  <a class="code" href="class_integer.html">Integer</a> x(ephemeralPrivateKey, <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00222"></a><span class="lineno"> 222</span>  <a class="code" href="class_integer.html">Integer</a> a(staticPrivateKey, <a class="code" href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">StaticPrivateKeyLength</a>());</div><div class="line"><a name="l00223"></a><span class="lineno"> 223</span>  <a class="code" href="class_integer.html">Integer</a> s_A = (x + d * a) % q;</div><div class="line"><a name="l00224"></a><span class="lineno"> 224</span> </div><div class="line"><a name="l00225"></a><span class="lineno"> 225</span>  Element B = params.<a class="code" href="class_d_l___group_parameters.html#af3dc6d48394c356bb30dc72371aa02e7">DecodeElement</a>(BB, <span class="keyword">false</span>);</div><div class="line"><a name="l00226"></a><span class="lineno"> 226</span>  Element Y = params.<a class="code" href="class_d_l___group_parameters.html#af3dc6d48394c356bb30dc72371aa02e7">DecodeElement</a>(YY, <span class="keyword">false</span>);</div><div class="line"><a name="l00227"></a><span class="lineno"> 227</span> </div><div class="line"><a name="l00228"></a><span class="lineno"> 228</span>  Element t1 = params.<a class="code" href="class_d_l___group_parameters.html#a11e487f345f8f9831f550647c0a609b0">ExponentiateElement</a>(B, e);</div><div class="line"><a name="l00229"></a><span class="lineno"> 229</span>  Element t2 = m_groupParameters.MultiplyElements(Y, t1);</div><div class="line"><a name="l00230"></a><span class="lineno"> 230</span> </div><div class="line"><a name="l00231"></a><span class="lineno"> 231</span>  <span class="comment">// $\sigma_A}=(Y \cdot B^{e})^{s_A}</span></div><div class="line"><a name="l00232"></a><span class="lineno"> 232</span>  sigma = params.<a class="code" href="class_d_l___group_parameters.html#a11e487f345f8f9831f550647c0a609b0">ExponentiateElement</a>(t2, s_A);</div><div class="line"><a name="l00233"></a><span class="lineno"> 233</span>  }</div><div class="line"><a name="l00234"></a><span class="lineno"> 234</span>  Hash(&sigma, NULLPTR, 0, NULLPTR, 0, agreedValue, <a class="code" href="class_h_m_q_v___domain.html#ab63c64474cafb81de06b04f59c468e1c">AgreedValueLength</a>());</div><div class="line"><a name="l00235"></a><span class="lineno"> 235</span>  }</div><div class="line"><a name="l00236"></a><span class="lineno"> 236</span>  <span class="keywordflow">catch</span> (<a class="code" href="class_d_l___bad_element.html">DL_BadElement</a> &)</div><div class="line"><a name="l00237"></a><span class="lineno"> 237</span>  {</div><div class="line"><a name="l00238"></a><span class="lineno"> 238</span>  <span class="keywordflow">return</span> <span class="keyword">false</span>;</div><div class="line"><a name="l00239"></a><span class="lineno"> 239</span>  }</div><div class="line"><a name="l00240"></a><span class="lineno"> 240</span>  <span class="keywordflow">return</span> <span class="keyword">true</span>;</div><div class="line"><a name="l00241"></a><span class="lineno"> 241</span>  }</div><div class="line"><a name="l00242"></a><span class="lineno"> 242</span> </div><div class="line"><a name="l00243"></a><span class="lineno"> 243</span> <span class="keyword">protected</span>:</div><div class="line"><a name="l00244"></a><span class="lineno"> 244</span>  <span class="comment">// Hash invocation by client and server differ only in what keys</span></div><div class="line"><a name="l00245"></a><span class="lineno"> 245</span>  <span class="comment">// each provides.</span></div><div class="line"><a name="l00246"></a><span class="lineno"> 246</span> </div><div class="line"><a name="l00247"></a><span class="lineno"> 247</span>  <span class="keyword">inline</span> <span class="keywordtype">void</span> Hash(<span class="keyword">const</span> Element* sigma,</div><div class="line"><a name="l00248"></a><span class="lineno"> 248</span>  <span class="keyword">const</span> byte* e1, <span class="keywordtype">size_t</span> e1len, <span class="comment">// Ephemeral key and key length</span></div><div class="line"><a name="l00249"></a><span class="lineno"> 249</span>  <span class="keyword">const</span> byte* s1, <span class="keywordtype">size_t</span> s1len, <span class="comment">// Static key and key length</span></div><div class="line"><a name="l00250"></a><span class="lineno"> 250</span>  byte* digest, <span class="keywordtype">size_t</span> dlen)<span class="keyword"> const</span></div><div class="line"><a name="l00251"></a><span class="lineno"> 251</span> <span class="keyword"> </span>{</div><div class="line"><a name="l00252"></a><span class="lineno"> 252</span>  HASH hash;</div><div class="line"><a name="l00253"></a><span class="lineno"> 253</span>  <span class="keywordtype">size_t</span> idx = 0, req = dlen;</div><div class="line"><a name="l00254"></a><span class="lineno"> 254</span>  <span class="keywordtype">size_t</span> blk = <a class="code" href="misc_8h.html#abe412b0409249cb54899e97bc7d86424">STDMIN</a>(dlen, (<span class="keywordtype">size_t</span>)HASH::DIGESTSIZE);</div><div class="line"><a name="l00255"></a><span class="lineno"> 255</span> </div><div class="line"><a name="l00256"></a><span class="lineno"> 256</span>  <span class="keywordflow">if</span>(sigma)</div><div class="line"><a name="l00257"></a><span class="lineno"> 257</span>  {</div><div class="line"><a name="l00258"></a><span class="lineno"> 258</span>  <span class="keywordflow">if</span> (e1len != 0 || s1len != 0) {</div><div class="line"><a name="l00259"></a><span class="lineno"> 259</span>  <a class="code" href="trap_8h.html#adf3b392588bc94cbeae9f415a78c7b95">CRYPTOPP_ASSERT</a>(0);</div><div class="line"><a name="l00260"></a><span class="lineno"> 260</span>  }</div><div class="line"><a name="l00261"></a><span class="lineno"> 261</span>  <a class="code" href="class_integer.html">Integer</a> x = GetAbstractGroupParameters().ConvertElementToInteger(*sigma);</div><div class="line"><a name="l00262"></a><span class="lineno"> 262</span>  <a class="code" href="class_sec_byte_block.html">SecByteBlock</a> sbb(x.MinEncodedSize());</div><div class="line"><a name="l00263"></a><span class="lineno"> 263</span>  x.Encode(sbb.BytePtr(), sbb.SizeInBytes());</div><div class="line"><a name="l00264"></a><span class="lineno"> 264</span>  hash.Update(sbb.BytePtr(), sbb.SizeInBytes());</div><div class="line"><a name="l00265"></a><span class="lineno"> 265</span>  } <span class="keywordflow">else</span> {</div><div class="line"><a name="l00266"></a><span class="lineno"> 266</span>  <span class="keywordflow">if</span> (e1len == 0 || s1len == 0) {</div><div class="line"><a name="l00267"></a><span class="lineno"> 267</span>  <a class="code" href="trap_8h.html#adf3b392588bc94cbeae9f415a78c7b95">CRYPTOPP_ASSERT</a>(0);</div><div class="line"><a name="l00268"></a><span class="lineno"> 268</span>  }</div><div class="line"><a name="l00269"></a><span class="lineno"> 269</span>  hash.Update(e1, e1len);</div><div class="line"><a name="l00270"></a><span class="lineno"> 270</span>  hash.Update(s1, s1len);</div><div class="line"><a name="l00271"></a><span class="lineno"> 271</span>  }</div><div class="line"><a name="l00272"></a><span class="lineno"> 272</span> </div><div class="line"><a name="l00273"></a><span class="lineno"> 273</span>  hash.TruncatedFinal(digest, blk);</div><div class="line"><a name="l00274"></a><span class="lineno"> 274</span>  req -= blk;</div><div class="line"><a name="l00275"></a><span class="lineno"> 275</span> </div><div class="line"><a name="l00276"></a><span class="lineno"> 276</span>  <span class="comment">// All this to catch tail bytes for large curves and small hashes</span></div><div class="line"><a name="l00277"></a><span class="lineno"> 277</span>  <span class="keywordflow">while</span>(req != 0)</div><div class="line"><a name="l00278"></a><span class="lineno"> 278</span>  {</div><div class="line"><a name="l00279"></a><span class="lineno"> 279</span>  hash.Update(&digest[idx], (<span class="keywordtype">size_t</span>)HASH::DIGESTSIZE);</div><div class="line"><a name="l00280"></a><span class="lineno"> 280</span> </div><div class="line"><a name="l00281"></a><span class="lineno"> 281</span>  idx += (size_t)HASH::DIGESTSIZE;</div><div class="line"><a name="l00282"></a><span class="lineno"> 282</span>  blk = <a class="code" href="misc_8h.html#abe412b0409249cb54899e97bc7d86424">STDMIN</a>(req, (<span class="keywordtype">size_t</span>)HASH::DIGESTSIZE);</div><div class="line"><a name="l00283"></a><span class="lineno"> 283</span>  hash.TruncatedFinal(&digest[idx], blk);</div><div class="line"><a name="l00284"></a><span class="lineno"> 284</span> </div><div class="line"><a name="l00285"></a><span class="lineno"> 285</span>  req -= blk;</div><div class="line"><a name="l00286"></a><span class="lineno"> 286</span>  }</div><div class="line"><a name="l00287"></a><span class="lineno"> 287</span>  }</div><div class="line"><a name="l00288"></a><span class="lineno"> 288</span> </div><div class="line"><a name="l00289"></a><span class="lineno"> 289</span> <span class="keyword">private</span>:</div><div class="line"><a name="l00290"></a><span class="lineno"> 290</span> </div><div class="line"><a name="l00291"></a><span class="lineno"> 291</span>  <span class="comment">// The paper uses Initiator and Recipient - make it classical.</span></div><div class="line"><a name="l00292"></a><span class="lineno"> 292</span>  <span class="keyword">enum</span> KeyAgreementRole{ RoleServer = 1, RoleClient };</div><div class="line"><a name="l00293"></a><span class="lineno"> 293</span> </div><div class="line"><a name="l00294"></a><span class="lineno"> 294</span>  <a class="code" href="class_d_l___group_parameters.html">DL_GroupParameters<Element></a> & AccessAbstractGroupParameters() {<span class="keywordflow">return</span> m_groupParameters;}</div><div class="line"><a name="l00295"></a><span class="lineno"> 295</span>  <span class="keyword">const</span> <a class="code" href="class_d_l___group_parameters.html">DL_GroupParameters<Element></a> & GetAbstractGroupParameters()<span class="keyword"> const</span>{<span class="keywordflow">return</span> m_groupParameters;}</div><div class="line"><a name="l00296"></a><span class="lineno"> 296</span> </div><div class="line"><a name="l00297"></a><span class="lineno"> 297</span>  GroupParameters m_groupParameters;</div><div class="line"><a name="l00298"></a><span class="lineno"> 298</span>  KeyAgreementRole m_role;</div><div class="line"><a name="l00299"></a><span class="lineno"> 299</span> };</div><div class="line"><a name="l00300"></a><span class="lineno"> 300</span> <span class="comment"></span></div><div class="line"><a name="l00301"></a><span class="lineno"> 301</span> <span class="comment">/// \brief Hashed Menezes-Qu-Vanstone in GF(p)</span></div><div class="line"><a name="l00302"></a><span class="lineno"> 302</span> <span class="comment">/// \details This implementation follows Hugo Krawczyk's <a href="http://eprint.iacr.org/2005/176">HMQV: A High-Performance</span></div><div class="line"><a name="l00303"></a><span class="lineno"> 303</span> <span class="comment">/// Secure Diffie-Hellman Protocol</a>. Note: this implements HMQV only. HMQV-C with Key Confirmation is not provided.</span></div><div class="line"><a name="l00304"></a><span class="lineno"> 304</span> <span class="comment">/// \sa HMQV, MQV_Domain, FHMQV_Domain, AuthenticatedKeyAgreementDomain</span></div><div class="line"><a name="l00305"></a><span class="lineno"> 305</span> <span class="comment">/// \since Crypto++ 5.6.4</span></div><div class="line"><a name="l00306"></a><span class="lineno"><a class="line" href="hmqv_8h.html#a7e819fbd915da58cb3391be3a0c96bf7"> 306</a></span> <span class="comment"></span><span class="keyword">typedef</span> <a class="code" href="class_h_m_q_v___domain.html">HMQV_Domain<DL_GroupParameters_GFP_DefaultSafePrime></a> <a class="code" href="hmqv_8h.html#a7e819fbd915da58cb3391be3a0c96bf7">HMQV</a>;</div><div class="line"><a name="l00307"></a><span class="lineno"> 307</span> </div><div class="line"><a name="l00308"></a><span class="lineno"> 308</span> NAMESPACE_END</div><div class="line"><a name="l00309"></a><span class="lineno"> 309</span> </div><div class="line"><a name="l00310"></a><span class="lineno"> 310</span> <span class="preprocessor">#endif</span></div><div class="ttc" id="class_h_m_q_v___domain_html_ac288ec5ed6e6f793fdc44af246358727"><div class="ttname"><a href="class_h_m_q_v___domain.html#ac288ec5ed6e6f793fdc44af246358727">HMQV_Domain::EphemeralPrivateKeyLength</a></div><div class="ttdeci">unsigned int EphemeralPrivateKeyLength() const</div><div class="ttdoc">Provides the size of ephemeral private key. </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00094">hmqv.h:94</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html_a555c19cf2475e0afc4a911f16d65375c"><div class="ttname"><a href="class_h_m_q_v___domain.html#a555c19cf2475e0afc4a911f16d65375c">HMQV_Domain::GenerateEphemeralPublicKey</a></div><div class="ttdeci">void GenerateEphemeralPublicKey(RandomNumberGenerator &rng, const byte *privateKey, byte *publicKey) const</div><div class="ttdoc">return length of ephemeral public keys in this domain </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00108">hmqv.h:108</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html_ab63c64474cafb81de06b04f59c468e1c"><div class="ttname"><a href="class_h_m_q_v___domain.html#ab63c64474cafb81de06b04f59c468e1c">HMQV_Domain::AgreedValueLength</a></div><div class="ttdeci">unsigned int AgreedValueLength() const</div><div class="ttdoc">return length of agreed value produced </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00069">hmqv.h:69</a></div></div> <div class="ttc" id="class_sec_block_html_a93e1256d8021ba4ab9007ea4e19ae8c2"><div class="ttname"><a href="class_sec_block.html#a93e1256d8021ba4ab9007ea4e19ae8c2">SecBlock::SizeInBytes</a></div><div class="ttdeci">size_type SizeInBytes() const</div><div class="ttdoc">Provides the number of bytes in the SecBlock. </div><div class="ttdef"><b>Definition:</b> <a href="secblock_8h_source.html#l00575">secblock.h:575</a></div></div> <div class="ttc" id="class_d_l___group_parameters_html"><div class="ttname"><a href="class_d_l___group_parameters.html">DL_GroupParameters</a></div><div class="ttdoc">Interface for Discrete Log (DL) group parameters. </div><div class="ttdef"><b>Definition:</b> <a href="pubkey_8h_source.html#l00753">pubkey.h:753</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html"><div class="ttname"><a href="class_h_m_q_v___domain.html">HMQV_Domain</a></div><div class="ttdoc">Hashed Menezes-Qu-Vanstone in GF(p) </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00023">hmqv.h:23</a></div></div> <div class="ttc" id="class_random_number_generator_html"><div class="ttname"><a href="class_random_number_generator.html">RandomNumberGenerator</a></div><div class="ttdoc">Interface for random number generators. </div><div class="ttdef"><b>Definition:</b> <a href="cryptlib_8h_source.html#l01330">cryptlib.h:1330</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html_a37b468af095df8fd85ee7dad8ff07b09"><div class="ttname"><a href="class_h_m_q_v___domain.html#a37b468af095df8fd85ee7dad8ff07b09">HMQV_Domain::GenerateEphemeralPrivateKey</a></div><div class="ttdeci">void GenerateEphemeralPrivateKey(RandomNumberGenerator &rng, byte *privateKey) const</div><div class="ttdoc">return length of ephemeral private keys in this domain </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00098">hmqv.h:98</a></div></div> <div class="ttc" id="class_sec_byte_block_html"><div class="ttname"><a href="class_sec_byte_block.html">SecByteBlock</a></div><div class="ttdoc">SecBlock<byte> typedef. </div><div class="ttdef"><b>Definition:</b> <a href="secblock_8h_source.html#l00822">secblock.h:822</a></div></div> <div class="ttc" id="algebra_8h_html"><div class="ttname"><a href="algebra_8h.html">algebra.h</a></div><div class="ttdoc">Classes for performing mathematics over different fields. </div></div> <div class="ttc" id="class_buffered_transformation_html"><div class="ttname"><a href="class_buffered_transformation.html">BufferedTransformation</a></div><div class="ttdoc">Interface for buffered transformations. </div><div class="ttdef"><b>Definition:</b> <a href="cryptlib_8h_source.html#l01545">cryptlib.h:1545</a></div></div> <div class="ttc" id="class_d_l___group_parameters_html_ae5bf9692b8879e0ed5ad7e16a696818d"><div class="ttname"><a href="class_d_l___group_parameters.html#ae5bf9692b8879e0ed5ad7e16a696818d">DL_GroupParameters::ExponentiateBase</a></div><div class="ttdeci">virtual Element ExponentiateBase(const Integer &exponent) const</div><div class="ttdoc">Exponentiates the base. </div><div class="ttdef"><b>Definition:</b> <a href="pubkey_8h_source.html#l00839">pubkey.h:839</a></div></div> <div class="ttc" id="class_integer_html_a8c070592581bf6c2f928c72bfa1c1638"><div class="ttname"><a href="class_integer.html#a8c070592581bf6c2f928c72bfa1c1638">Integer::One</a></div><div class="ttdeci">static const Integer & One()</div><div class="ttdoc">Integer representing 1. </div><div class="ttdef"><b>Definition:</b> <a href="integer_8cpp_source.html#l04824">integer.cpp:4824</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html_a3c283a1124242a10243d9f2fa55e4ebc"><div class="ttname"><a href="class_h_m_q_v___domain.html#a3c283a1124242a10243d9f2fa55e4ebc">HMQV_Domain::GenerateStaticPrivateKey</a></div><div class="ttdeci">void GenerateStaticPrivateKey(RandomNumberGenerator &rng, byte *privateKey) const</div><div class="ttdoc">generate static private key </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00077">hmqv.h:77</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html_aca01fa98db1675423953049dc7288fc7"><div class="ttname"><a href="class_h_m_q_v___domain.html#aca01fa98db1675423953049dc7288fc7">HMQV_Domain::StaticPublicKeyLength</a></div><div class="ttdeci">unsigned int StaticPublicKeyLength() const</div><div class="ttdoc">return length of static public keys in this domain </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00073">hmqv.h:73</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html_ab162ce29c3f9e76a10bf04230a0960ca"><div class="ttname"><a href="class_h_m_q_v___domain.html#ab162ce29c3f9e76a10bf04230a0960ca">HMQV_Domain::Agree</a></div><div class="ttdeci">bool Agree(byte *agreedValue, const byte *staticPrivateKey, const byte *ephemeralPrivateKey, const byte *staticOtherPublicKey, const byte *ephemeralOtherPublicKey, bool validateStaticOtherPublicKey=true) const</div><div class="ttdoc">derive agreed value from your private keys and couterparty&#39;s public keys, return false in case of fai...</div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00123">hmqv.h:123</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html_a6e17a9bd0f489294987a891902b2a68e"><div class="ttname"><a href="class_h_m_q_v___domain.html#a6e17a9bd0f489294987a891902b2a68e">HMQV_Domain::AccessCryptoParameters</a></div><div class="ttdeci">CryptoParameters & AccessCryptoParameters()</div><div class="ttdoc">Retrieves a reference to Crypto Parameters. </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00066">hmqv.h:66</a></div></div> <div class="ttc" id="hmqv_8h_html_a7e819fbd915da58cb3391be3a0c96bf7"><div class="ttname"><a href="hmqv_8h.html#a7e819fbd915da58cb3391be3a0c96bf7">HMQV</a></div><div class="ttdeci">HMQV_Domain< DL_GroupParameters_GFP_DefaultSafePrime > HMQV</div><div class="ttdoc">Hashed Menezes-Qu-Vanstone in GF(p) </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00306">hmqv.h:306</a></div></div> <div class="ttc" id="class_integer_html"><div class="ttname"><a href="class_integer.html">Integer</a></div><div class="ttdoc">Multiple precision integer with arithmetic operations. </div><div class="ttdef"><b>Definition:</b> <a href="integer_8h_source.html#l00049">integer.h:49</a></div></div> <div class="ttc" id="gfpcrypt_8h_html"><div class="ttname"><a href="gfpcrypt_8h.html">gfpcrypt.h</a></div><div class="ttdoc">Classes and functions for schemes based on Discrete Logs (DL) over GF(p) </div></div> <div class="ttc" id="class_d_l___group_parameters_html_af3dc6d48394c356bb30dc72371aa02e7"><div class="ttname"><a href="class_d_l___group_parameters.html#af3dc6d48394c356bb30dc72371aa02e7">DL_GroupParameters::DecodeElement</a></div><div class="ttdeci">virtual Element DecodeElement(const byte *encoded, bool checkForGroupMembership) const =0</div><div class="ttdoc">Decodes the element. </div></div> <div class="ttc" id="class_d_l___bad_element_html"><div class="ttname"><a href="class_d_l___bad_element.html">DL_BadElement</a></div><div class="ttdoc">Exception thrown when an invalid group element is encountered. </div><div class="ttdef"><b>Definition:</b> <a href="pubkey_8h_source.html#l00743">pubkey.h:743</a></div></div> <div class="ttc" id="misc_8h_html_abe412b0409249cb54899e97bc7d86424"><div class="ttname"><a href="misc_8h.html#abe412b0409249cb54899e97bc7d86424">STDMIN</a></div><div class="ttdeci">const T & STDMIN(const T &a, const T &b)</div><div class="ttdoc">Replacement function for std::min. </div><div class="ttdef"><b>Definition:</b> <a href="misc_8h_source.html#l00507">misc.h:507</a></div></div> <div class="ttc" id="trap_8h_html_adf3b392588bc94cbeae9f415a78c7b95"><div class="ttname"><a href="trap_8h.html#adf3b392588bc94cbeae9f415a78c7b95">CRYPTOPP_ASSERT</a></div><div class="ttdeci">#define CRYPTOPP_ASSERT(exp)</div><div class="ttdoc">Debugging and diagnostic assertion. </div><div class="ttdef"><b>Definition:</b> <a href="trap_8h_source.html#l00060">trap.h:60</a></div></div> <div class="ttc" id="class_d_l___group_parameters_html_a1e6cc62adbecdd858be49f6f4db15f50"><div class="ttname"><a href="class_d_l___group_parameters.html#a1e6cc62adbecdd858be49f6f4db15f50">DL_GroupParameters::ValidateElement</a></div><div class="ttdeci">virtual bool ValidateElement(unsigned int level, const Element &element, const DL_FixedBasePrecomputation< Element > *precomp) const =0</div><div class="ttdoc">Check the element for errors. </div></div> <div class="ttc" id="sha_8h_html"><div class="ttname"><a href="sha_8h.html">sha.h</a></div><div class="ttdoc">Classes for SHA-1 and SHA-2 family of message digests. </div></div> <div class="ttc" id="class_integer_html_a867356d88074424328d0ebb9bea63254"><div class="ttname"><a href="class_integer.html#a867356d88074424328d0ebb9bea63254">Integer::BitCount</a></div><div class="ttdeci">unsigned int BitCount() const</div><div class="ttdoc">Determines the number of bits required to represent the Integer. </div><div class="ttdef"><b>Definition:</b> <a href="integer_8cpp_source.html#l03319">integer.cpp:3319</a></div></div> <div class="ttc" id="class_d_l___group_parameters_html_a71c6058bd5ddcd54bd36565b0ba0cae0"><div class="ttname"><a href="class_d_l___group_parameters.html#a71c6058bd5ddcd54bd36565b0ba0cae0">DL_GroupParameters::EncodeElement</a></div><div class="ttdeci">virtual void EncodeElement(bool reversible, const Element &element, byte *encoded) const =0</div><div class="ttdoc">Encodes the element. </div></div> <div class="ttc" id="class_crypto_parameters_html"><div class="ttname"><a href="class_crypto_parameters.html">CryptoParameters</a></div><div class="ttdoc">Interface for crypto prameters. </div><div class="ttdef"><b>Definition:</b> <a href="cryptlib_8h_source.html#l02379">cryptlib.h:2379</a></div></div> <div class="ttc" id="class_d_l___group_parameters_html_a7275e04a4d21d985e698bb191e6cbdf1"><div class="ttname"><a href="class_d_l___group_parameters.html#a7275e04a4d21d985e698bb191e6cbdf1">DL_GroupParameters::GetMaxExponent</a></div><div class="ttdeci">virtual Integer GetMaxExponent() const =0</div><div class="ttdoc">Retrieves the maximum exponent for the group. </div></div> <div class="ttc" id="class_h_m_q_v___domain_html_ad26c33a539bdc3b31718f6cfe26bf9ea"><div class="ttname"><a href="class_h_m_q_v___domain.html#ad26c33a539bdc3b31718f6cfe26bf9ea">HMQV_Domain::EphemeralPublicKeyLength</a></div><div class="ttdeci">unsigned int EphemeralPublicKeyLength() const</div><div class="ttdoc">Provides the size of ephemeral public key. </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00095">hmqv.h:95</a></div></div> <div class="ttc" id="namespace_crypto_p_p_html"><div class="ttname"><a href="namespace_crypto_p_p.html">CryptoPP</a></div><div class="ttdoc">Crypto++ library namespace. </div></div> <div class="ttc" id="class_authenticated_key_agreement_domain_html"><div class="ttname"><a href="class_authenticated_key_agreement_domain.html">AuthenticatedKeyAgreementDomain</a></div><div class="ttdoc">Interface for domains of authenticated key agreement protocols. </div><div class="ttdef"><b>Definition:</b> <a href="cryptlib_8h_source.html#l02900">cryptlib.h:2900</a></div></div> <div class="ttc" id="class_d_l___group_parameters_html_a11e487f345f8f9831f550647c0a609b0"><div class="ttname"><a href="class_d_l___group_parameters.html#a11e487f345f8f9831f550647c0a609b0">DL_GroupParameters::ExponentiateElement</a></div><div class="ttdeci">virtual Element ExponentiateElement(const Element &base, const Integer &exponent) const</div><div class="ttdoc">Exponentiates an element. </div><div class="ttdef"><b>Definition:</b> <a href="pubkey_8h_source.html#l00849">pubkey.h:849</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html_ac89aea97b86688d190ce29a638e80c5c"><div class="ttname"><a href="class_h_m_q_v___domain.html#ac89aea97b86688d190ce29a638e80c5c">HMQV_Domain::GenerateStaticPublicKey</a></div><div class="ttdeci">void GenerateStaticPublicKey(RandomNumberGenerator &rng, const byte *privateKey, byte *publicKey) const</div><div class="ttdoc">generate static public key </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00085">hmqv.h:85</a></div></div> <div class="ttc" id="class_h_m_q_v___domain_html_a9ea3d9207cb1bfbd22d1478afdb4ca2b"><div class="ttname"><a href="class_h_m_q_v___domain.html#a9ea3d9207cb1bfbd22d1478afdb4ca2b">HMQV_Domain::StaticPrivateKeyLength</a></div><div class="ttdeci">unsigned int StaticPrivateKeyLength() const</div><div class="ttdoc">return length of static private keys in this domain </div><div class="ttdef"><b>Definition:</b> <a href="hmqv_8h_source.html#l00071">hmqv.h:71</a></div></div> <div class="ttc" id="class_sec_block_html_a5565f51350846fb7224720c403674216"><div class="ttname"><a href="class_sec_block.html#a5565f51350846fb7224720c403674216">SecBlock::BytePtr</a></div><div class="ttdeci">byte * BytePtr()</div><div class="ttdoc">Provides a byte pointer to the first element in the memory block. </div><div class="ttdef"><b>Definition:</b> <a href="secblock_8h_source.html#l00568">secblock.h:568</a></div></div> <div class="ttc" id="class_d_l___group_parameters_html_aeff4e59562d2c9b0ffc6b677e8ce409a"><div class="ttname"><a href="class_d_l___group_parameters.html#aeff4e59562d2c9b0ffc6b677e8ce409a">DL_GroupParameters::GetSubgroupOrder</a></div><div class="ttdeci">virtual const Integer & GetSubgroupOrder() const =0</div><div class="ttdoc">Retrieves the subgroup order. </div></div> </div><!-- fragment --></div><!-- contents --> <!-- start footer part --> <hr class="footer"/><address class="footer"><small> Generated on Sun Sep 16 2018 07:57:53 for Crypto++ by  <a href="http://www.doxygen.org/index.html"> <img class="footer" src="doxygen.png" alt="doxygen"/> </a> 1.8.14 </small></address> </body> </html>