// 
// Decompiled by Procyon v0.6.0
// 

package com.google.crypto.tink.daead;

import com.google.crypto.tink.internal.OutputPrefixUtil;
import java.security.GeneralSecurityException;
import com.google.errorprone.annotations.CanIgnoreReturnValue;
import com.google.crypto.tink.Parameters;
import java.util.Objects;
import com.google.crypto.tink.Key;
import com.google.crypto.tink.AccessesPartialKey;
import com.google.errorprone.annotations.RestrictedApi;
import javax.annotation.Nullable;
import com.google.crypto.tink.util.Bytes;
import com.google.crypto.tink.util.SecretBytes;
import com.google.errorprone.annotations.Immutable;

@Immutable
public final class AesSivKey extends DeterministicAeadKey
{
    private final AesSivParameters parameters;
    private final SecretBytes keyBytes;
    private final Bytes outputPrefix;
    @Nullable
    private final Integer idRequirement;
    
    private AesSivKey(final AesSivParameters parameters, final SecretBytes keyBytes, final Bytes outputPrefix, @Nullable final Integer idRequirement) {
        this.parameters = parameters;
        this.keyBytes = keyBytes;
        this.outputPrefix = outputPrefix;
        this.idRequirement = idRequirement;
    }
    
    @RestrictedApi(explanation = "Accessing parts of keys can produce unexpected incompatibilities, annotate the function with @AccessesPartialKey", link = "https://developers.google.com/tink/design/access_control#accessing_partial_keys", allowedOnPath = ".*Test\\.java", allowlistAnnotations = { AccessesPartialKey.class })
    public static Builder builder() {
        return new Builder();
    }
    
    @RestrictedApi(explanation = "Accessing parts of keys can produce unexpected incompatibilities, annotate the function with @AccessesPartialKey", link = "https://developers.google.com/tink/design/access_control#accessing_partial_keys", allowedOnPath = ".*Test\\.java", allowlistAnnotations = { AccessesPartialKey.class })
    public SecretBytes getKeyBytes() {
        return this.keyBytes;
    }
    
    @Override
    public Bytes getOutputPrefix() {
        return this.outputPrefix;
    }
    
    @Override
    public AesSivParameters getParameters() {
        return this.parameters;
    }
    
    @Nullable
    @Override
    public Integer getIdRequirementOrNull() {
        return this.idRequirement;
    }
    
    @Override
    public boolean equalsKey(final Key o) {
        if (!(o instanceof AesSivKey)) {
            return false;
        }
        final AesSivKey that = (AesSivKey)o;
        return that.parameters.equals(this.parameters) && that.keyBytes.equalsSecretBytes(this.keyBytes) && Objects.equals(that.idRequirement, this.idRequirement);
    }
    
    public static class Builder
    {
        @Nullable
        private AesSivParameters parameters;
        @Nullable
        private SecretBytes keyBytes;
        @Nullable
        private Integer idRequirement;
        
        private Builder() {
            this.parameters = null;
            this.keyBytes = null;
            this.idRequirement = null;
        }
        
        @CanIgnoreReturnValue
        public Builder setParameters(final AesSivParameters parameters) {
            this.parameters = parameters;
            return this;
        }
        
        @CanIgnoreReturnValue
        public Builder setKeyBytes(final SecretBytes keyBytes) {
            this.keyBytes = keyBytes;
            return this;
        }
        
        @CanIgnoreReturnValue
        public Builder setIdRequirement(@Nullable final Integer idRequirement) {
            this.idRequirement = idRequirement;
            return this;
        }
        
        public AesSivKey build() throws GeneralSecurityException {
            if (this.parameters == null || this.keyBytes == null) {
                throw new IllegalArgumentException("Cannot build without parameters and/or key material");
            }
            if (this.parameters.getKeySizeBytes() != this.keyBytes.size()) {
                throw new GeneralSecurityException("Key size mismatch");
            }
            if (this.parameters.hasIdRequirement() && this.idRequirement == null) {
                throw new GeneralSecurityException("Cannot create key without ID requirement with parameters with ID requirement");
            }
            if (!this.parameters.hasIdRequirement() && this.idRequirement != null) {
                throw new GeneralSecurityException("Cannot create key with ID requirement with parameters without ID requirement");
            }
            final Bytes outputPrefix = this.getOutputPrefix();
            return new AesSivKey(this.parameters, this.keyBytes, outputPrefix, this.idRequirement, null);
        }
        
        private Bytes getOutputPrefix() {
            if (this.parameters.getVariant() == AesSivParameters.Variant.NO_PREFIX) {
                return OutputPrefixUtil.EMPTY_PREFIX;
            }
            if (this.parameters.getVariant() == AesSivParameters.Variant.CRUNCHY) {
                return OutputPrefixUtil.getLegacyOutputPrefix(this.idRequirement);
            }
            if (this.parameters.getVariant() == AesSivParameters.Variant.TINK) {
                return OutputPrefixUtil.getTinkOutputPrefix(this.idRequirement);
            }
            throw new IllegalStateException("Unknown AesSivParameters.Variant: " + this.parameters.getVariant());
        }
    }
}