rfc3961

package

v0.0.0-...-fc028b1 Latest Latest Go to latest Published: May 31, 2017 License: Apache-2.0 Imports: 11 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Encryption and checksum methods as specified in RFC 3961

This section is empty.

This section is empty.

func DES3DecryptData(key, data []byte, e etype.EType) ([]byte, error)

func DES3DecryptMessage(key, ciphertext []byte, usage uint32, e etype.EType) ([]byte, error)

func DES3EncryptData(key, data []byte, e etype.EType) ([]byte, []byte, error)

func DES3EncryptMessage(key, message []byte, usage uint32, e etype.EType) ([]byte, []byte, error)

func DES3RandomToKey(b []byte) []byte

func DES3StringToKey(secret, salt string, e etype.EType) ([]byte, error)

func DeriveKey(protocolKey, usage []byte, e etype.EType) ([]byte, error)

func DeriveRandom(key, usage []byte, e etype.EType) ([]byte, error)

RFC 3961: DR(Key, Constant) = k-truncate(E(Key, Constant, initial-cipher-state)).

key: base key or protocol key. Likely to be a key from a keytab file.

usage: a constant.

n: block size in bits (not bytes) - note if you use something like aes.BlockSize this is in bytes.

k: key length / key seed length in bits. Eg. for AES256 this value is 256.

e: the encryption etype function to use.

func Nfold(m []byte, n int) []byte

RFC 3961: n-fold algorithm.

m input bytes that will be "stretched" to the least common multiple of n bits and the bit length of m.

func PseudoRandom(key, b []byte, e etype.EType) ([]byte, error)

func RandomToKey(b []byte) []byte

func S2KparamsToItertions(s2kparams string) (int, error)

func StringToKey(secret, salt, s2kparams string, e etype.EType) ([]byte, error)

func StringToKeyIter(secret, salt string, iterations int, e etype.EType) ([]byte, error)

func StringToPBKDF2(secret, salt string, iterations int, e etype.EType) []byte

func VerifyIntegrity(key, ct, pt []byte, usage uint32, etype etype.EType) bool

Verify the integrity of cipertext bytes ct.

This section is empty.