From fec1681b518b2eaa85218f9879e42c77edd519b1 Mon Sep 17 00:00:00 2001 From: chrysn Date: Sat, 30 Sep 2023 12:31:02 +0200 Subject: [PATCH] feat!: Allow applications to pick their c_x This initially only alters the message 2 API, but follow-ups will do this throughout the library. The change allows applications to pick usable C_x values, which they are in a position to decide, because unlike the EDHOC library, they keep track of all the ongoing exchanges. BREAKING CHANGE: APIs for creating messager 2 change --- hacspec/src/lib.rs | 4 ++-- lib/src/edhoc.rs | 4 ++-- lib/src/lib.rs | 24 +++++++++++++----------- 3 files changed, 17 insertions(+), 15 deletions(-) diff --git a/hacspec/src/lib.rs b/hacspec/src/lib.rs index 7e8f49e3..c86d5f05 100644 --- a/hacspec/src/lib.rs +++ b/hacspec/src/lib.rs @@ -196,7 +196,7 @@ pub fn r_prepare_message_2( y: BytesP256ElemLen, // R's ephemeral private DH key g_y: BytesP256ElemLen, // R's ephemeral public DH key c_r: U8, -) -> Result<(State, BufferMessage2, U8), EDHOCError> { +) -> Result<(State, BufferMessage2), EDHOCError> { let State( mut current_state, mut _y, @@ -265,7 +265,7 @@ pub fn r_prepare_message_2( } match error { - EDHOCError::Success => Ok((state, message_2, c_r)), + EDHOCError::Success => Ok((state, message_2)), _ => Err(error), } } diff --git a/lib/src/edhoc.rs b/lib/src/edhoc.rs index e4dfb2c9..5141bff0 100644 --- a/lib/src/edhoc.rs +++ b/lib/src/edhoc.rs @@ -179,7 +179,7 @@ pub fn r_prepare_message_2( y: BytesP256ElemLen, g_y: BytesP256ElemLen, c_r: U8, -) -> Result<(State, BufferMessage2, U8), EDHOCError> { +) -> Result<(State, BufferMessage2), EDHOCError> { let State( mut current_state, mut _y, @@ -247,7 +247,7 @@ pub fn r_prepare_message_2( } match error { - EDHOCError::Success => Ok((state, message_2, c_r)), + EDHOCError::Success => Ok((state, message_2)), _ => Err(error), } } diff --git a/lib/src/lib.rs b/lib/src/lib.rs index 95f1b5f8..664b087d 100644 --- a/lib/src/lib.rs +++ b/lib/src/lib.rs @@ -130,7 +130,8 @@ mod hacspec { pub fn prepare_message_2( self: &mut HacspecEdhocResponder<'a>, - ) -> Result<(EdhocMessageBuffer, u8), EDHOCError> { + c_r: U8, + ) -> Result { // init hacspec structs for id_cred_r and cred_r let id_cred_r = BytesIdCred::from_hex(self.id_cred_r); let mut cred_r = BytesMaxBuffer::new(); @@ -142,13 +143,12 @@ mod hacspec { // Generate ephemeral key pair let (y, g_y) = edhoc_crypto::p256_generate_key_pair(); - let c_r = generate_connection_identifier_cbor(); match r_prepare_message_2(self.state, &id_cred_r, &cred_r, cred_r_len, &r, y, g_y, c_r) { - Ok((state, message_2, c_r)) => { + Ok((state, message_2)) => { self.state = state; - Ok((message_2.to_public_buffer(), c_r.declassify())) + Ok(message_2.to_public_buffer()) } Err(error) => Err(error), } @@ -475,12 +475,12 @@ mod rust { pub fn prepare_message_2( self: &mut RustEdhocResponder<'a>, - ) -> Result<(BufferMessage2, u8), EDHOCError> { + c_r: U8, + ) -> Result { let mut cred_r: BytesMaxBuffer = [0x00; MAX_BUFFER_LEN]; hex::decode_to_slice(self.cred_r, &mut cred_r[..self.cred_r.len() / 2]) .expect("Decoding failed"); let (y, g_y) = edhoc_crypto::p256_generate_key_pair(); - let c_r = generate_connection_identifier_cbor(); match r_prepare_message_2( self.state, @@ -492,9 +492,9 @@ mod rust { g_y, c_r, ) { - Ok((state, message_2, c_r)) => { + Ok((state, message_2)) => { self.state = state; - Ok((message_2, c_r)) + Ok(message_2) } Err(error) => Err(error), } @@ -818,10 +818,11 @@ mod test { let error = responder.process_message_1(&result.unwrap()); assert!(error.is_ok()); - let ret = responder.prepare_message_2(); + let c_r = generate_connection_identifier_cbor(); + let ret = responder.prepare_message_2(c_r); assert!(ret.is_ok()); - let (message_2, c_r) = ret.unwrap(); + let message_2 = ret.unwrap(); assert!(c_r != 0xff); let _c_r = initiator.process_message_2(&message_2); @@ -917,7 +918,8 @@ mod test { EADResponderProtocolState::ProcessedEAD1 ); - let (message_2, _c_r) = responder.prepare_message_2().unwrap(); + let c_r = generate_connection_identifier_cbor(); + let message_2 = responder.prepare_message_2(c_r).unwrap(); assert_eq!( ead_responder_state.protocol_state, EADResponderProtocolState::Completed