test: update test vectors

upstream bug was closed

Author: TobTheRock

src/crypto/key_derivation.rs

@@ -31,23 +31,14 @@ pub fn get_hkdf_salt_expand_info(key_id: u64) -> Vec<u8> {
 
 const SFRAME_LABEL: &[u8] = b"SFrame 1.0 ";
 
-// For the current test vectors different labels than specified were used
-// see https://github.com/sframe-wg/sframe/issues/137
-cfg_if::cfg_if! {
-    if #[cfg(test)] {
-        const SFRAME_HKDF_KEY_EXPAND_INFO: &[u8] = b"key ";
-        const SFRAME_HDKF_SALT_EXPAND_INFO: &[u8] = b"salt ";
-    } else {
-        const SFRAME_HKDF_KEY_EXPAND_INFO: &[u8] = b"Secret key ";
-        const SFRAME_HDKF_SALT_EXPAND_INFO: &[u8] = b"Secret salt ";
-    }
-}
+const SFRAME_HKDF_KEY_EXPAND_INFO: &[u8] = b"Secret key ";
+const SFRAME_HDKF_SALT_EXPAND_INFO: &[u8] = b"Secret salt ";
 
 cfg_if::cfg_if! {
     if #[cfg(feature = "openssl")] {
         pub fn get_hkdf_aead_label(tag_len: usize) -> Vec<u8> {
             // for current platforms there is no issue casting from usize to u64
-            return [SFRAME_HDKF_SUB_AEAD_LABEL, &(tag_len).to_be_bytes()].concat()
+            [SFRAME_HDKF_SUB_AEAD_LABEL, &(tag_len).to_be_bytes()].concat()
         }
 
         pub const SFRAME_HDKF_SUB_AEAD_LABEL: &[u8] = b"SFrame 1.0 AES CTR AEAD ";
@@ -56,7 +47,6 @@ cfg_if::cfg_if! {
     }
 }
 
-#[cfg(feature = "openssl")]
 #[cfg(test)]
 mod test {
     use super::KeyDerivation;
@@ -66,7 +56,7 @@ mod test {
     use crate::{crypto::cipher_suite::CipherSuiteVariant, util::test::assert_bytes_eq};
 
     mod aes_gcm {
-        use crate::crypto::key_derivation::SFRAME_LABEL;
+        use crate::crypto::key_derivation::{get_hkdf_key_expand_info, get_hkdf_salt_expand_info};
 
         use super::*;
 
@@ -78,7 +68,14 @@ mod test {
         fn derive_correct_base_keys(variant: CipherSuiteVariant) {
             let test_vec = get_sframe_test_vector(&variant.to_string());
 
-            assert_bytes_eq(SFRAME_LABEL, &test_vec.sframe_label);
+            assert_bytes_eq(
+                &get_hkdf_key_expand_info(test_vec.key_id),
+                &test_vec.sframe_key_label,
+            );
+            assert_bytes_eq(
+                &get_hkdf_salt_expand_info(test_vec.key_id),
+                &test_vec.sframe_salt_label,
+            );
 
             let secret = Secret::expand_from(
                 &CipherSuite::from(variant),

src/test_vectors/mod.rs

@@ -17,15 +17,15 @@ pub fn get_header_test_vectors() -> &'static Vec<HeaderTest> {
 }
 
 pub fn get_aes_ctr_test_vector(cipher_suite_variant: &str) -> &'static AesCtrHmacTest {
-    &TEST_VECTORS
+    TEST_VECTORS
         .aes_ctr_hmac
         .iter()
         .find(|v| v.cipher_suite_variant == cipher_suite_variant)
         .unwrap()
 }
 
 pub fn get_sframe_test_vector(cipher_suite_variant: &str) -> &'static SframeTest {
-    &TEST_VECTORS
+    TEST_VECTORS
         .sframe
         .iter()
         .find(|v| v.cipher_suite_variant == cipher_suite_variant)
@@ -111,7 +111,10 @@ pub struct SframeTest {
     pub key_material: Vec<u8>,
 
     #[serde(deserialize_with = "vec_from_hex_str")]
-    pub sframe_label: Vec<u8>,
+    pub sframe_key_label: Vec<u8>,
+
+    #[serde(deserialize_with = "vec_from_hex_str")]
+    pub sframe_salt_label: Vec<u8>,
 
     #[serde(deserialize_with = "vec_from_hex_str")]
     pub sframe_secret: Vec<u8>,

src/test_vectors/test-vectors.json

@@ -1490,75 +1490,80 @@
       "kid": 291,
       "ctr": 17767,
       "base_key": "000102030405060708090a0b0c0d0e0f",
-      "sframe_label": "534672616d6520312e3020",
+      "sframe_key_label": "534672616d6520312e3020536563726574206b6579200000000000000123",
+      "sframe_salt_label": "534672616d6520312e30205365637265742073616c74200000000000000123",
       "sframe_secret": "d926952ca8b7ec4a95941d1ada3a5203ceff8cceee34f574d23909eb314c40c0",
-      "sframe_key": "52cef96e29191912a6be442a9651c43a",
-      "sframe_salt": "9655c98fdad276683deb279c",
+      "sframe_key": "73bb177a9fe6c02597132fe430ca2d99",
+      "sframe_salt": "55582aa5aaced36a74544d91",
       "metadata": "4945544620534672616d65205747",
-      "nonce": "9655c98fdad276683deb62fb",
+      "nonce": "55582aa5aaced36a745408f6",
       "aad": "19012345674945544620534672616d65205747",
       "pt": "64726166742d696574662d736672616d652d656e63",
-      "ct": "1901234567b6a27b2d24f1f06d49cffe6c82af5a96e0d89443a7a93a8700f96fdda3e43c"
+      "ct": "190123456740043f25262c0ca52e9374b070f24b02764715c2e303388c9495324037d043"
     },
     {
       "cipher_suite": 2,
       "kid": 291,
       "ctr": 17767,
       "base_key": "000102030405060708090a0b0c0d0e0f",
-      "sframe_label": "534672616d6520312e3020",
+      "sframe_key_label": "534672616d6520312e3020536563726574206b6579200000000000000123",
+      "sframe_salt_label": "534672616d6520312e30205365637265742073616c74200000000000000123",
       "sframe_secret": "d926952ca8b7ec4a95941d1ada3a5203ceff8cceee34f574d23909eb314c40c0",
-      "sframe_key": "52cef96e29191912a6be442a9651c43a",
-      "sframe_salt": "9655c98fdad276683deb279c",
+      "sframe_key": "73bb177a9fe6c02597132fe430ca2d99",
+      "sframe_salt": "55582aa5aaced36a74544d91",
       "metadata": "4945544620534672616d65205747",
-      "nonce": "9655c98fdad276683deb62fb",
+      "nonce": "55582aa5aaced36a745408f6",
       "aad": "19012345674945544620534672616d65205747",
       "pt": "64726166742d696574662d736672616d652d656e63",
-      "ct": "190123456728b1faac3515d5ca29f3db9c52f27789c5ec8386ff0b570853ebcf721c"
+      "ct": "1901234567729eef4910d734abfd392cdff0f67d2a8d06041eef5f895e4cecc03a6d"
     },
     {
       "cipher_suite": 3,
       "kid": 291,
       "ctr": 17767,
       "base_key": "000102030405060708090a0b0c0d0e0f",
-      "sframe_label": "534672616d6520312e3020",
+      "sframe_key_label": "534672616d6520312e3020536563726574206b6579200000000000000123",
+      "sframe_salt_label": "534672616d6520312e30205365637265742073616c74200000000000000123",
       "sframe_secret": "d926952ca8b7ec4a95941d1ada3a5203ceff8cceee34f574d23909eb314c40c0",
-      "sframe_key": "52cef96e29191912a6be442a9651c43a",
-      "sframe_salt": "9655c98fdad276683deb279c",
+      "sframe_key": "73bb177a9fe6c02597132fe430ca2d99",
+      "sframe_salt": "55582aa5aaced36a74544d91",
       "metadata": "4945544620534672616d65205747",
-      "nonce": "9655c98fdad276683deb62fb",
+      "nonce": "55582aa5aaced36a745408f6",
       "aad": "19012345674945544620534672616d65205747",
       "pt": "64726166742d696574662d736672616d652d656e63",
-      "ct": "190123456754719dcfbe065e1606068cb6b6b5f1a9a371e633ff088485e7"
+      "ct": "190123456717fd0a325fdcd5f0d68089ee5bd17df6296b69b6b0e70c8d73"
     },
     {
       "cipher_suite": 4,
       "kid": 291,
       "ctr": 17767,
       "base_key": "000102030405060708090a0b0c0d0e0f",
-      "sframe_label": "534672616d6520312e3020",
+      "sframe_key_label": "534672616d6520312e3020536563726574206b6579200000000000000123",
+      "sframe_salt_label": "534672616d6520312e30205365637265742073616c74200000000000000123",
       "sframe_secret": "d926952ca8b7ec4a95941d1ada3a5203ceff8cceee34f574d23909eb314c40c0",
-      "sframe_key": "52cef96e29191912a6be442a9651c43a",
-      "sframe_salt": "9655c98fdad276683deb279c",
+      "sframe_key": "73bb177a9fe6c02597132fe430ca2d99",
+      "sframe_salt": "55582aa5aaced36a74544d91",
       "metadata": "4945544620534672616d65205747",
-      "nonce": "9655c98fdad276683deb62fb",
+      "nonce": "55582aa5aaced36a745408f6",
       "aad": "19012345674945544620534672616d65205747",
       "pt": "64726166742d696574662d736672616d652d656e63",
-      "ct": "1901234567d4dfcd537dbd054dcf4bdab53bf451826843325838178391f63dc15b9475d6081b59c776a5"
+      "ct": "1901234567b8bf87709717f709a35b4e91b2109e5c1ca4f76179415f8bb15d70a9be7eb89c7adb76d300"
     },
     {
       "cipher_suite": 5,
       "kid": 291,
       "ctr": 17767,
       "base_key": "000102030405060708090a0b0c0d0e0f",
-      "sframe_label": "534672616d6520312e3020",
+      "sframe_key_label": "534672616d6520312e3020536563726574206b6579200000000000000123",
+      "sframe_salt_label": "534672616d6520312e30205365637265742073616c74200000000000000123",
       "sframe_secret": "0fc3ea6de6aac97a35f194cf9bed94d4b5230f1cb45a785c9fe5dce9c188938ab6ba005bc4c0a19181599e9d1bcf7b74aca48b60bf5e254e546d809313e083a3",
-      "sframe_key": "5f3f7c1b277d9cad86b906da39702c3fcdf720902817977ae99bd10f2e5ad56a",
-      "sframe_salt": "a653f558a8018877314fb8d9",
+      "sframe_key": "e9e405efb7cd325030760935bf49fd5669d7c19eb84ca74b419a1487cf835107",
+      "sframe_salt": "11007b537a1cf728a4c544c1",
       "metadata": "4945544620534672616d65205747",
-      "nonce": "a653f558a8018877314ffdbe",
+      "nonce": "11007b537a1cf728a4c501a6",
       "aad": "19012345674945544620534672616d65205747",
       "pt": "64726166742d696574662d736672616d652d656e63",
-      "ct": "19012345672f55e5feb46d118576dc715566003f4becf5252149c839aea7dd5434bf8eceb8b4d59bbfb2"
+      "ct": "19012345671e11c62748536fd55fdbc9560daea4825bfecbb05489cd41cb7a1556e001989a4485e8a02f"
     }
   ]
 }