Skip to content

Add more setters for EcKdf. #292

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Add more setters for EcKdf. #292

wants to merge 3 commits into from

Conversation

nwalfield
Copy link

Adds setters for the ANSI X9.63 KDFs (EcKdf::sha1, etc) and the NIST SP800-56A KDFs (EcKdf::sha1_sp800) to EcKdf.

Fixes EcKdf::sha256.

Fixes #281.

The SP800 variants were recently added to Kryoptic.

I've tested this using Sequoia, but I haven't included any unit tests. First, the unit tests will fail, because the current released version of Kryoptic doesn't include support for the SP800 yet. Second, creating test vectors will be a huge amount of work. Given how simple the implementation is, do you want unit tests for these functions?

Thanks for taking a look.

@Jakuje
Copy link
Collaborator

Jakuje commented Jun 25, 2025

Code wise looks good. I would prefer to have some test prepared so we can enable it once the kryoptic version will get updated in Fedora, if nothing to prevent the case of having mechanisms like the sha256 added without any testing.

I do not think it needs to be full coverage of all combinations, but at least one test with NIST SP800 and one with ANSI with known answer test to make sure it works.

@hug-dev
Copy link
Member

hug-dev commented Jun 26, 2025

Thanks for this, looks good! Agree with @Jakuje about adding two simple tests where this is available in Fedora!

@nwalfield
Copy link
Author

I've updated the MR to include a test that uses known good values. I created the test vector by instrumenting Sequoia OpenPGP and dumping the relevant values. The test vector is for SHA256-SP800. It would be straightforward (although still some work) to create test vectors for SHA384-SP800 and SHA512-SP800.

As Sequoia does not use the ANSI functions, I cannot create test vectors for them without a lot of work. That said, I'm not sure of the value of additional test vectors: I think the test suite is about testing the library, not the underlying token implementation. The test demonstrates that the shape of the API is correct, and that the shared value is passed correctly.

Thoughts?

Jakuje
Jakuje reviewed Jun 27, 2025
View reviewed changes
@Jakuje
Copy link
Collaborator

Jakuje commented Jun 27, 2025

Regarding the ANSI variant, I think its ok to skip it as it is mostly the same (for the rust-cryptoki).

Jakuje
Jakuje reviewed Jun 27, 2025
View reviewed changes
@nwalfield nwalfield force-pushed the eckdf branch 4 times, most recently from 4bf4ba6 to 797edfa Compare June 30, 2025 09:29
@nwalfield
Copy link
Author

The MR is currently failing, because this relies on Kryoptic support the SP 800 KDF, which has been added to Kryoptic, but has not yet been released.

@Jakuje
Copy link
Collaborator

Jakuje commented Jun 30, 2025

The MR is currently failing, because this relies on Kryoptic support the SP 800 KDF, which has been added to Kryoptic, but has not yet been released.

I think the cleanest way would be now to expect it to fail now (with appropriate comment or even ideally in separate commit that can be reverted later) and change it (revert that separate commit) once the new kryoptict will be released.

The other option would be to start building kryoptic from source, but that is also outside of the scope of this PR.

@nwalfield
Copy link
Author

The MR is currently failing, because this relies on Kryoptic support the SP 800 KDF, which has been added to Kryoptic, but has not yet been released.

I think the cleanest way would be now to expect it to fail now (with appropriate comment or even ideally in separate commit that can be reverted later) and change it (revert that separate commit) once the new kryoptict will be released.

The other option would be to start building kryoptic from source, but that is also outside of the scope of this PR.

I added two helper functions: one to check if we're using Kryoptic and one to get the token's version. I then modified the test to check if we're using at least Kryopic 1.3, which I assume will be the next version of Kryoptic. What do you think?

Jakuje
Jakuje reviewed Jun 30, 2025
View reviewed changes
nwalfield added 2 commits June 30, 2025 12:12
@nwalfield
Add helper function to get the version of the token's firmware.
2a252c0 
Signed-off-by: Neal H. Walfield <[email protected]>
@nwalfield
Add more setters for EcKdf.
fb1efbc 
Adds setters for the ANSI X9.63 KDFs (`EcKdf::sha1`, etc) and the NIST
SP800-56A KDFs (`EcKdf::sha1_sp800`) to `EcKdf`.

Fixes `EcKdf::sha256`.

Fixes parallaxsecond#281.

Signed-off-by: Neal H. Walfield <[email protected]>
@Jakuje Jakuje requested review from wiktor-k and hug-dev June 30, 2025 10:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Jakuje Jakuje Jakuje approved these changes

@wiktor-k wiktor-k Awaiting requested review from wiktor-k

@hug-dev hug-dev Awaiting requested review from hug-dev

At least 2 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

EcKdf documentation unclear
3 participants
@nwalfield @Jakuje @hug-dev