Skip to content

Enable direct+HKDF-SHA algorithms to be used in recipients #131

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
BrianSipos wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Enable direct+HKDF-SHA algorithms to be used in recipients #131

BrianSipos wants to merge 2 commits into from

Conversation

@BrianSipos
Copy link
Contributor

@BrianSipos BrianSipos commented Oct 29, 2025
edited
Loading

This deals only with the SHA-2 variants of direct+HKDF, not the AES-MAC variants (which I don't fully understand to even try to implement).

Closes #35
Closes #130
Closes #139

@BrianSipos
Copy link
Contributor Author

BrianSipos commented Oct 29, 2025

This PR does have an API change that for MacMessage and EncMessage, the direct shared key needs to be set on the first recipient instead of on the message itself (because the message layer-0 key is always derived from a recipient key). I think this was an inconsistency in the original API for direct key use, but there could be a workaround for API compatibility (e.g. only set the self.key if it is None).

@BrianSipos BrianSipos marked this pull request as ready for review October 29, 2025 14:09
@BrianSipos
Copy link
Contributor Author

BrianSipos commented Oct 29, 2025

If there is a need for direct+HKDF-SHA-256 test inputs, one of the examples from RFC 5869 could be used (one has a salt and one does not).

@BrianSipos BrianSipos force-pushed the 130-enable-direct-hkdf-sha branch from 65658ba to bb415b2 Compare November 19, 2025 16:16
@BrianSipos BrianSipos force-pushed the 130-enable-direct-hkdf-sha branch from bb415b2 to fdda499 Compare December 17, 2025 02:37
@sonarqubecloud
Copy link

sonarqubecloud bot commented Dec 23, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

1 participant

@BrianSipos