wolfcrypt-ring-compat 1.16.5

wolfcrypt-ring-compat is a cryptographic library using wolfSSL for its cryptographic operations. This library strives to be API-compatible with the popular Rust library named ring.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62

// Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
// SPDX-License-Identifier: Apache-2.0 OR ISC

#![cfg(debug_assertions)]

use crate::fips::{assert_fips_status_indicator, FipsServiceStatus};
use crate::tls_prf::{Secret, P_SHA256, P_SHA384, P_SHA512};

macro_rules! prf_test {
    ($name:ident, $alg:expr, $size:expr, $label:expr, $expect:path) => {
        #[test]
        fn $name() {
            let secret = Secret::new($alg, &[42u8; $size]).expect("secret created");

            assert_fips_status_indicator!(secret.derive($label, b"seed", $size), $expect)
                .expect("derive successful");
        }
    };
}

prf_test!(
    sha256_extended_master_secret,
    &P_SHA256,
    32,
    b"extended master secret",
    FipsServiceStatus::Approved
);
prf_test!(
    sha384_extended_master_secret,
    &P_SHA384,
    48,
    b"extended master secret",
    FipsServiceStatus::Approved
);
prf_test!(
    sha512_extended_master_secret,
    &P_SHA512,
    64,
    b"extended master secret",
    FipsServiceStatus::Approved
);
prf_test!(
    sha256_master_secret,
    &P_SHA256,
    32,
    b"master secret",
    FipsServiceStatus::NonApproved
);
prf_test!(
    sha384_master_secret,
    &P_SHA384,
    48,
    b"master secret",
    FipsServiceStatus::NonApproved
);
prf_test!(
    sha512_master_secret,
    &P_SHA512,
    64,
    b"master secret",
    FipsServiceStatus::NonApproved
);