A descriptor of encryption method and key to be used in container. More...

#include <Recipient.h>

Public Types
enum	Type : uint8_t { NONE , SYMMETRIC_KEY , PUBLIC_KEY }
	The recipient type. More...

Public Member Functions
	Recipient ()=default
bool	isEmpty () const
	test whether the Recipient structure is initialized
bool	isSymmetric () const
	check whether Recipient is based on symmetric key
bool	isPKI () const
	check whether Recipient is based on public key
bool	isCertificate () const
	check whether Recipient is based on certificate
bool	isKeyServer () const
	check whether Recipient is keyserver
bool	isTheSameRecipient (const Recipient &other) const
	A convenience method to check whether two recipients are both public key based and have the same keys.
bool	isTheSameRecipient (const std::vector< uint8_t > &public_key) const
	A convenience method to check whether a recipient is public key based and has the given key.
std::string	getLabel (std::map< std::string_view, std::string_view > extra) const
	Get the label for this recipient.
void	setLabelValue (std::string_view key, std::string_view value)
	Set a property for automatic label generation.
bool	validate () const
	Validate recipient record.
bool	operator== (const Recipient &other) const =default

Static Public Member Functions
static Recipient	makeSymmetric (std::string label, int32_t kdf_iter)
	Create a new symmetric key based Recipient.
static Recipient	makePublicKey (std::string label, std::vector< uint8_t > public_key, std::string server_id={})
	Create a new public key based Recipient.
static Recipient	makePublicKey (const Lock &lock, std::string server_id={})
	Create a new public key based Recipient.
static Recipient	makeCertificate (std::string label, std::vector< uint8_t > cert, std::string server_id={})
	Create a new certificate based Recipient.

Public Attributes
Type	type = Type::NONE
	The recipient type.
Algorithm	pk_type = Algorithm::ECC
	The public key type.
Curve	ec_type = Curve::SECP_384_R1
int32_t	kdf_iter = 0
	The number of iterations for PBKDF. Value 0 means directly provided symmetric key.
std::string	label
	The recipient's label (if empty the lock label will be autogenerated).
std::vector< uint8_t >	rcpt_key
	Recipient's public key (for all PKI types).
std::vector< uint8_t >	cert
	The recipient's certificate (if present).
std::string	server_id
	The keyserver or share server list id (if present).
uint64_t	expiry_ts = 0
	The requested capsule expiry timestamp (0 - use server default).

Protected Member Functions
	Recipient (Type _type)

Detailed Description

A descriptor of encryption method and key to be used in container.

Recipient determines all the relevant properties to encrypt the FMK for a certain target.

Member Enumeration Documentation

◆ Type

enum libcdoc::Recipient::Type : uint8_t

The recipient type.

Enumerator
NONE	Uninitialized recipient
SYMMETRIC_KEY	Symmetric key (or password).
PUBLIC_KEY	Public key.

Constructor & Destructor Documentation

◆ Recipient() [1/2]

libcdoc::Recipient::Recipient ( )

default

Referenced by isTheSameRecipient(), makeCertificate(), makePublicKey(), makePublicKey(), makeSymmetric(), and operator==().

◆ Recipient() [2/2]

libcdoc::Recipient::Recipient ( Type _type )

inlineprotected

References type.

Member Function Documentation

◆ getLabel()

std::string libcdoc::Recipient::getLabel ( std::map< std::string_view, std::string_view > extra ) const

Get the label for this recipient.

Either returns user-specified label or generate machine-readable if empty

Parameters

extra additional parameter values to use

Returns: a label value

◆ isCertificate()

bool libcdoc::Recipient::isCertificate ( ) const

inline

check whether Recipient is based on certificate

Returns: true if type is CERTIFICATE

References cert, PUBLIC_KEY, and type.

◆ isEmpty()

bool libcdoc::Recipient::isEmpty ( ) const

inline

test whether the Recipient structure is initialized

Returns: true if not initialized

References NONE, and type.

◆ isKeyServer()

bool libcdoc::Recipient::isKeyServer ( ) const

inline

check whether Recipient is keyserver

Returns: true if type is SERVER

References PUBLIC_KEY, server_id, and type.

◆ isPKI()

bool libcdoc::Recipient::isPKI ( ) const

inline

check whether Recipient is based on public key

Returns: true if type is CERTIFICATE, PUBLIC_KEY or SERVER

References PUBLIC_KEY, and type.

◆ isSymmetric()

bool libcdoc::Recipient::isSymmetric ( ) const

inline

check whether Recipient is based on symmetric key

Returns: true if type is SYMMETRIC_KEY

References SYMMETRIC_KEY, and type.

◆ isTheSameRecipient() [1/2]

bool libcdoc::Recipient::isTheSameRecipient ( const Recipient & other ) const

A convenience method to check whether two recipients are both public key based and have the same keys.

Parameters

other another Recipient

Returns: true if the public keys are identical

References Recipient().

◆ isTheSameRecipient() [2/2]

bool libcdoc::Recipient::isTheSameRecipient ( const std::vector< uint8_t > & public_key ) const

A convenience method to check whether a recipient is public key based and has the given key.

Parameters

public_key a public key to test

Returns: true if the public keys are identical

◆ makeCertificate()

Recipient libcdoc::Recipient::makeCertificate	(	std::string	label,
		std::vector< uint8_t >	cert,
		std::string	server_id = {} )

static

Create a new certificate based Recipient.

If the label is empty, a machine-readable label will be created according to CDoc2 specification

Parameters

label	the label text
cert	the certificate value (der-encoded)
server_id	the keyserver id or empty string for offline capsule

Returns: a new Recipient structure

References cert, label, Recipient(), and server_id.

◆ makePublicKey() [1/2]

Recipient libcdoc::Recipient::makePublicKey	(	const Lock &	lock,
		std::string	server_id = {} )

static

Create a new public key based Recipient.

Parameters

lock	Lock to derive parameters from
server_id	the keyserver id or empty string for offline capsule

Returns: a new Recipient structure

References Recipient(), and server_id.

◆ makePublicKey() [2/2]

Recipient libcdoc::Recipient::makePublicKey	(	std::string	label,
		std::vector< uint8_t >	public_key,
		std::string	server_id = {} )

static

Create a new public key based Recipient.

If the label is empty, a machine-readable label will be created according to CDoc2 specification

Parameters

label	the label text
public_key	the public key value
server_id	the keyserver id or empty string for offline capsule

Returns: a new Recipient structure

References label, Recipient(), and server_id.

◆ makeSymmetric()

Recipient libcdoc::Recipient::makeSymmetric	(	std::string	label,
		int32_t	kdf_iter )

static

Create a new symmetric key based Recipient.

If the label is empty, a machine-readable label will be created according to CDoc2 specification

Parameters

label	the label text
kdf_iter	the number of PBKDF iterations (0 if full key is provided)

Returns: a new Recipient structure

References kdf_iter, label, and Recipient().

◆ operator==()

bool libcdoc::Recipient::operator== ( const Recipient & other ) const

default

References Recipient().

◆ setLabelValue()

void libcdoc::Recipient::setLabelValue	(	std::string_view	key,
		std::string_view	value )

inline

Set a property for automatic label generation.

Parameters

key	the property name
value	the property value

◆ validate()

bool libcdoc::Recipient::validate ( ) const

Validate recipient record.

Returns: true if Recipient is valid

Member Data Documentation

◆ cert

std::vector<uint8_t> libcdoc::Recipient::cert

The recipient's certificate (if present).

Referenced by isCertificate(), and makeCertificate().

◆ ec_type

Curve libcdoc::Recipient::ec_type = Curve::SECP_384_R1

◆ expiry_ts

uint64_t libcdoc::Recipient::expiry_ts = 0

The requested capsule expiry timestamp (0 - use server default).

◆ kdf_iter

int32_t libcdoc::Recipient::kdf_iter = 0

The number of iterations for PBKDF. Value 0 means directly provided symmetric key.

Referenced by makeSymmetric().

◆ label

std::string libcdoc::Recipient::label

The recipient's label (if empty the lock label will be autogenerated).

Referenced by makeCertificate(), makePublicKey(), and makeSymmetric().

◆ pk_type

Algorithm libcdoc::Recipient::pk_type = Algorithm::ECC

The public key type.

◆ rcpt_key

std::vector<uint8_t> libcdoc::Recipient::rcpt_key

Recipient's public key (for all PKI types).

◆ server_id

std::string libcdoc::Recipient::server_id

The keyserver or share server list id (if present).

Referenced by isKeyServer(), makeCertificate(), makePublicKey(), and makePublicKey().

◆ type

Type libcdoc::Recipient::type = Type::NONE

The recipient type.

Referenced by isCertificate(), isEmpty(), isKeyServer(), isPKI(), isSymmetric(), and Recipient().

The documentation for this struct was generated from the following file:

Recipient.h

Public Types

Public Member Functions

Static Public Member Functions

Public Attributes

Protected Member Functions

Detailed Description

Member Enumeration Documentation

◆ Type

Constructor & Destructor Documentation

◆ Recipient() [1/2]

◆ Recipient() [2/2]

Member Function Documentation

◆ getLabel()

◆ isCertificate()

◆ isEmpty()

◆ isKeyServer()

◆ isPKI()

◆ isSymmetric()

◆ isTheSameRecipient() [1/2]

◆ isTheSameRecipient() [2/2]

◆ makeCertificate()

◆ makePublicKey() [1/2]

◆ makePublicKey() [2/2]

◆ makeSymmetric()

◆ operator==()

◆ setLabelValue()

◆ validate()

Member Data Documentation

◆ cert

◆ ec_type

◆ expiry_ts

◆ kdf_iter

◆ label

◆ pk_type

◆ rcpt_key

◆ server_id

◆ type