2024-02-17 17:12:16 +01:00
|
|
|
use crate::canonicalization::canonicalize;
|
2024-02-17 16:29:54 +01:00
|
|
|
use crate::ikm::InputKeyMaterial;
|
|
|
|
|
|
|
|
pub(crate) type KdfFunction = dyn Fn(&str, &[u8]) -> Vec<u8>;
|
|
|
|
|
2024-03-02 14:53:38 +01:00
|
|
|
pub struct KeyContext {
|
|
|
|
ctx: Vec<String>,
|
|
|
|
periodicity: Option<u64>,
|
|
|
|
}
|
|
|
|
|
|
|
|
impl KeyContext {
|
|
|
|
pub(crate) fn get_value(&self, ts: Option<u64>) -> Vec<Vec<u8>> {
|
|
|
|
let mut ret: Vec<Vec<u8>> = self.ctx.iter().map(|s| s.as_bytes().to_vec()).collect();
|
|
|
|
if let Some(p) = self.periodicity {
|
|
|
|
let ts = ts.unwrap_or(0);
|
|
|
|
let c = ts % p;
|
|
|
|
ret.push(c.to_le_bytes().to_vec());
|
|
|
|
}
|
|
|
|
ret
|
|
|
|
}
|
|
|
|
|
|
|
|
pub(crate) fn is_periodic(&self) -> bool {
|
|
|
|
self.periodicity.is_some()
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
impl<const N: usize> From<[&str; N]> for KeyContext {
|
|
|
|
fn from(ctx: [&str; N]) -> Self {
|
|
|
|
Self {
|
|
|
|
ctx: ctx.iter().map(|s| s.to_string()).collect(),
|
|
|
|
periodicity: None,
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
pub(crate) fn derive_key(ikm: &InputKeyMaterial, ctx: &KeyContext, ts: Option<u64>) -> Vec<u8> {
|
|
|
|
let key_context = canonicalize(&ctx.get_value(ts));
|
2024-02-17 16:29:54 +01:00
|
|
|
let kdf = ikm.scheme.get_kdf();
|
|
|
|
kdf(&key_context, &ikm.content)
|
|
|
|
}
|
|
|
|
|
2024-02-17 17:58:42 +01:00
|
|
|
#[cfg(test)]
|
|
|
|
mod tests {
|
|
|
|
use crate::ikm::InputKeyMaterial;
|
2024-03-02 14:53:38 +01:00
|
|
|
use crate::KeyContext;
|
2024-02-17 17:58:42 +01:00
|
|
|
|
|
|
|
#[test]
|
|
|
|
fn derive_key() {
|
|
|
|
let ikm_raw = [
|
|
|
|
0x0a, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x7b, 0x85, 0x27, 0xef, 0xf2, 0xbd,
|
|
|
|
0x58, 0x9f, 0x6e, 0xb1, 0x7b, 0x71, 0xc3, 0x1e, 0xf6, 0xfd, 0x7f, 0x90, 0xdb, 0xc6,
|
|
|
|
0x43, 0xea, 0xe9, 0x9c, 0xa3, 0xb5, 0xee, 0xcc, 0xb6, 0xb6, 0x28, 0x6a, 0xbd, 0xe4,
|
|
|
|
0xd0, 0x65, 0x00, 0x00, 0x00, 0x00, 0x3d, 0x82, 0x6f, 0x8b, 0x00, 0x00, 0x00, 0x00,
|
|
|
|
0x00,
|
|
|
|
];
|
2024-03-02 11:00:59 +01:00
|
|
|
let ikm = InputKeyMaterial::from_bytes(&ikm_raw).unwrap();
|
2024-02-17 17:58:42 +01:00
|
|
|
|
2024-03-02 14:53:38 +01:00
|
|
|
let ctx = KeyContext::from(["some", "context"]);
|
2024-02-17 17:58:42 +01:00
|
|
|
assert_eq!(
|
2024-03-02 14:53:38 +01:00
|
|
|
super::derive_key(&ikm, &ctx, None),
|
2024-02-17 17:58:42 +01:00
|
|
|
vec![
|
|
|
|
0xc1, 0xd2, 0xf0, 0xa7, 0x4d, 0xc5, 0x32, 0x6e, 0x89, 0x86, 0x85, 0xae, 0x3f, 0xdf,
|
|
|
|
0x16, 0x0b, 0xec, 0xe6, 0x63, 0x46, 0x41, 0x8a, 0x28, 0x2b, 0x04, 0xa1, 0x23, 0x20,
|
|
|
|
0x36, 0xe3, 0x2f, 0x0a
|
|
|
|
]
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|