lib-q-hpke 0.0.5

HPKE implementation for lib-q
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148

//! Debug test for Auth mode

#![cfg(feature = "std")]

use std::sync::Arc;

use lib_q_core::{
    Algorithm,
    KemContext,
};
use lib_q_hpke::hpke_core::{
    setup_receiver_with_mode,
    setup_sender_with_mode,
};
use lib_q_hpke::providers::post_quantum::PostQuantumProvider;
use lib_q_hpke::providers::traits::HpkeCryptoProvider;
use lib_q_hpke::types::{
    HpkeAead,
    HpkeCipherSuite,
    HpkeKdf,
    HpkeKem,
    HpkeMode,
    HpkePskWireFormat,
};
use lib_q_kem::LibQKemProvider;

/// Debug Auth mode step by step
#[test]
fn debug_auth_mode() {
    let provider = Box::new(LibQKemProvider::new().expect("Failed to create KEM provider"));
    let mut kem_ctx = KemContext::with_provider(provider);
    let hpke_crypto: Arc<dyn HpkeCryptoProvider + Send + Sync> =
        Arc::new(PostQuantumProvider::new());

    // Create cipher suite
    let cipher_suite = HpkeCipherSuite::new(
        HpkeKem::MlKem512,
        HpkeKdf::HkdfShake256,
        HpkeAead::Saturnin256,
    );

    // Generate recipient key pair
    let recipient_keypair = kem_ctx
        .generate_keypair(Algorithm::MlKem512, None)
        .expect("Recipient key generation should work");

    // Generate sender key pair for Auth mode
    let sender_keypair = kem_ctx
        .generate_keypair(Algorithm::MlKem512, None)
        .expect("Sender key generation should work");

    println!(
        "Recipient PK size: {}",
        recipient_keypair.public_key().as_bytes().len()
    );
    println!(
        "Recipient SK size: {}",
        recipient_keypair.secret_key().as_bytes().len()
    );
    println!(
        "Sender PK size: {}",
        sender_keypair.public_key().as_bytes().len()
    );
    println!(
        "Sender SK size: {}",
        sender_keypair.secret_key().as_bytes().len()
    );

    // Setup sender context with Auth mode
    let mut rng = lib_q_hpke::security::prng::SimpleRng::new();
    let sender_ctx = setup_sender_with_mode(
        &mut kem_ctx,
        recipient_keypair.public_key(),
        b"test-info",
        &cipher_suite,
        hpke_crypto.as_ref(),
        &mut rng,
        HpkeMode::Auth,
        None,
        None,
        Some(sender_keypair.secret_key()),
        Some(sender_keypair.public_key()),
        HpkePskWireFormat::default(),
        hpke_crypto.clone(),
    )
    .expect("Auth mode sender setup should work");

    println!(
        "Sender encapsulated key size: {}",
        sender_ctx.encapsulated_key.len()
    );
    println!(
        "Sender shared secret size: {}",
        sender_ctx.shared_secret.len()
    );
    println!("Sender key size: {}", sender_ctx.key.len());
    println!("Sender nonce size: {}", sender_ctx.nonce.len());

    // Setup receiver context with Auth mode
    let receiver_ctx = setup_receiver_with_mode(
        &mut kem_ctx,
        &sender_ctx.encapsulated_key,
        recipient_keypair.secret_key(),
        b"test-info",
        &cipher_suite,
        hpke_crypto.as_ref(),
        HpkeMode::Auth,
        None,
        None,
        Some(sender_keypair.public_key()),
        HpkePskWireFormat::default(),
        hpke_crypto.clone(),
    )
    .expect("Auth mode receiver setup should work");

    println!(
        "Receiver shared secret size: {}",
        receiver_ctx.shared_secret.len()
    );
    println!("Receiver key size: {}", receiver_ctx.key.len());
    println!("Receiver nonce size: {}", receiver_ctx.nonce.len());

    // Check if keys match
    println!("Keys match: {}", sender_ctx.key == receiver_ctx.key);
    println!("Nonces match: {}", sender_ctx.nonce == receiver_ctx.nonce);
    println!(
        "Shared secrets match: {}",
        sender_ctx.shared_secret == receiver_ctx.shared_secret
    );

    if sender_ctx.key != receiver_ctx.key {
        println!("Sender key: {:?}", &sender_ctx.key[..8]);
        println!("Receiver key: {:?}", &receiver_ctx.key[..8]);
    }

    if sender_ctx.shared_secret != receiver_ctx.shared_secret {
        println!("Sender shared secret: {:?}", &sender_ctx.shared_secret[..8]);
        println!(
            "Receiver shared secret: {:?}",
            &receiver_ctx.shared_secret[..8]
        );
    }

    // This should pass if Auth mode is working correctly
    assert_eq!(sender_ctx.key, receiver_ctx.key);
    assert_eq!(sender_ctx.nonce, receiver_ctx.nonce);
    assert_eq!(sender_ctx.shared_secret, receiver_ctx.shared_secret);
}