public IKdfParameter CreateParameter(OneStepConfiguration kdfConfiguration)
{
var fiPieces = kdfConfiguration.FixedInfoPattern.Split("||", StringSplitOptions.RemoveEmptyEntries).ToList();
var fiPiecesRemovedDelimiter = fiPieces.Select(fiPiece => fiPiece.Replace("||", "")).ToList();
var param = new KdfParameterOneStep()
{
L = kdfConfiguration.L,
AuxFunction = kdfConfiguration.AuxFunction,
FixedInfoPattern = kdfConfiguration.FixedInfoPattern,
FixedInputEncoding = kdfConfiguration.FixedInfoEncoding,
// If the fixedInfoPattern contains these optional context specific fields, make up a value for them
Context = kdfConfiguration.FixedInfoPattern.Contains(nameof(KdfParameterOneStep.Context), StringComparison.OrdinalIgnoreCase) ?
_entropyProvider.GetEntropy(BitsOfEntropy) : null,
AlgorithmId = kdfConfiguration.FixedInfoPattern.Contains(nameof(KdfParameterOneStep.AlgorithmId), StringComparison.OrdinalIgnoreCase) ?
_entropyProvider.GetEntropy(BitsOfEntropy) : null,
Label = kdfConfiguration.FixedInfoPattern.Contains(nameof(KdfParameterOneStep.Label), StringComparison.OrdinalIgnoreCase) ?
_entropyProvider.GetEntropy(BitsOfEntropy) : null,
T = GetNullOrT(kdfConfiguration.FixedInfoPattern),
EntropyBits = GetEntropyBitsOrNull(kdfConfiguration.FixedInfoPattern),
};
if (kdfConfiguration.SaltLen > 0)
{
param.Salt = kdfConfiguration.SaltMethod == MacSaltMethod.Default
? new BitString(kdfConfiguration.SaltLen)
: _entropyProvider.GetEntropy(kdfConfiguration.SaltLen);
}
return(param);
}
public KdfResult Kdf(KdfParameterOneStep param, BitString fixedInfo)
{
var result = _kdfVisitor.Kdf(param, fixedInfo);
var dkmBytesLen = result.DerivedKey.BitLength.CeilingDivide(BitString.BITSINBYTE);
// Modify a random byte within DKM
result.DerivedKey[_random.GetRandomInt(0, dkmBytesLen)] += 2;
return(result);
}
public void ShouldKmac(
string label,
string fixedInfoPattern,
Kda kdfType,
KdaOneStepAuxFunction kdfAuxFunction,
int l,
BitString salt,
BitString z,
BitString algorithmId,
BitString uPartyId,
BitString uEphemData,
BitString vPartyid,
BitString vEphemData,
BitString issueFixedData,
BitString issueDkm,
BitString expectedDkm)
{
var param = new KdfParameterOneStep()
{
L = l,
Salt = salt,
Z = z,
AlgorithmId = algorithmId,
AuxFunction = kdfAuxFunction,
FixedInfoPattern = fixedInfoPattern,
FixedInputEncoding = FixedInfoEncoding.Concatenation
};
var fixedInfoFactory = new FixedInfoFactory(new FixedInfoStrategyFactory());
var fixedInfoParameter = new FixedInfoParameter()
{
AlgorithmId = algorithmId,
FixedInfoPattern = fixedInfoPattern,
Encoding = FixedInfoEncoding.Concatenation,
L = l,
Salt = salt
};
fixedInfoParameter.SetFixedInfo(
new PartyFixedInfo(uPartyId, uEphemData),
new PartyFixedInfo(vPartyid, vEphemData));
var fixedInfo = fixedInfoFactory
.Get()
.Get(fixedInfoParameter);
var kdf = _kdfOneStepFactory.GetInstance(param.AuxFunction, true);
var result = kdf.DeriveKey(param.Z, param.L, fixedInfo, param.Salt);
Assert.AreEqual(issueFixedData.ToHex(), fixedInfo.ToHex(), nameof(issueFixedData));
Assert.AreEqual(issueDkm.ToHex(), result.DerivedKey.ToHex(), nameof(issueDkm));
//Assert.AreEqual(expectedDkm.ToHex(), result.DerivedKey.ToHex(), nameof(expectedDkm));
}
public KdfResult Kdf(KdfParameterOneStep param, BitString fixedInfo)
{
var zBytesLen = param.Z.BitLength.CeilingDivide(BitString.BITSINBYTE);
var modifiedParam = new KdfParameterOneStep()
{
L = param.L,
Salt = param.Salt,
Z = param.Z.GetDeepCopy(),
AuxFunction = param.AuxFunction,
FixedInfoPattern = param.FixedInfoPattern,
FixedInputEncoding = param.FixedInputEncoding
};
// Modify a random byte within Z
modifiedParam.Z[_random.GetRandomInt(0, zBytesLen)] += 2;
return(_kdfVisitor.Kdf(modifiedParam, fixedInfo));
}
public KdfResult Kdf(KdfParameterOneStep param, BitString fixedInfo)
{
var kdf = _kdfOneStepFactory.GetInstance(param.AuxFunction, true);
return(kdf.DeriveKey(param.Z, param.L, fixedInfo, param.Salt));
}
