rodolphe/coffio
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Allow to revoke an IKM

Browse source
This commit is contained in:
Rodolphe Bréard 2024-02-25 15:23:04 +01:00
parent a1bf9e0bcc
commit c6a3855847
1 changed files with 30 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

30
src/ikm.rs
View file

@ -98,6 +98,17 @@ impl InputKeyMaterialList {
Ok(()) Ok(())
} }
#[cfg(feature = "ikm-management")]
pub fn revoke_ikm(&mut self, id: IkmId) -> Result<()> {
let ikm = self
.ikm_lst
.iter_mut()
.find(|ikm| ikm.id == id)
.ok_or(Error::IkmNotFound(id))?;
ikm.is_revoked = true;
Ok(())
}
#[cfg(feature = "ikm-management")] #[cfg(feature = "ikm-management")]
pub fn export(&self) -> Result<String> { pub fn export(&self) -> Result<String> {
let data_size = (self.ikm_lst.len() * IKM_STRUCT_SIZE) + 4; let data_size = (self.ikm_lst.len() * IKM_STRUCT_SIZE) + 4;
@ -277,6 +288,25 @@ mod tests {
} }
} }
#[test]
#[cfg(feature = "ikm-management")]
fn revoke_ikm() {
let mut lst = InputKeyMaterialList::new();
let _ = lst.add_ikm();
let _ = lst.add_ikm();
let latest_ikm = lst.get_latest_ikm().unwrap();
assert_eq!(latest_ikm.id, 2);
let _ = lst.revoke_ikm(2);
let latest_ikm = lst.get_latest_ikm().unwrap();
assert_eq!(latest_ikm.id, 1);
let _ = lst.revoke_ikm(1);
let res = lst.get_latest_ikm();
assert!(res.is_err());
}
#[test] #[test]
#[cfg(feature = "encryption")] #[cfg(feature = "encryption")]
fn get_latest_ikm() { fn get_latest_ikm() {