wolfhsm 0.1.1

Rust bindings to wolfHSM
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79

use wolfhsm_sys::wolfhsm_cmac;

use crate::client::Client;
use crate::error::Error;
use crate::key::{with_key, KeyId};

/// CMAC-AES key handle. Key lives in HSM cache.
///
/// Keys are accessed exclusively through [`Client::with_cmac_key`], which
/// caches the key bytes, runs the provided closure, and always evicts it on exit —
/// including when the closure returns `Err`.
pub struct CmacKey {
    pub(crate) id: KeyId,
}

impl CmacKey {
    /// Cache raw AES key bytes for CMAC. Key must be 16, 24, or 32 bytes.
    pub(crate) fn cache(client: &mut Client, key_bytes: &[u8]) -> Result<Self, Error> {
        if !matches!(key_bytes.len(), 16 | 24 | 32) {
            return Err(Error::BadArgs {
                msg: "key must be 16, 24, or 32 bytes",
            });
        }
        let id = client.key_cache(key_bytes, b"cmac")?;
        Ok(CmacKey { id })
    }

    /// Compute a 16-byte CMAC tag over data.
    pub fn compute(&self, client: &mut Client, data: &[u8]) -> Result<[u8; 16], Error> {
        let in_len = u32::try_from(data.len()).map_err(|_| Error::BadArgs {
            msg: "data exceeds u32::MAX bytes",
        })?;
        let mut out = [0u8; 16];
        let mut out_len: u32 = 16;
        // SAFETY: all pointers are valid stack/heap allocations for this call.
        let rc = unsafe {
            wolfhsm_cmac(
                client.ctx_ptr(),
                self.id.0,
                data.as_ptr(),
                in_len,
                out.as_mut_ptr(),
                &mut out_len,
            )
        };
        Error::check(rc, "wolfhsm_cmac")?;
        if out_len != 16 {
            return Err(Error::ProtocolError {
                msg: "wolfhsm_cmac: unexpected output length",
            });
        }
        Ok(out)
    }
}

impl Drop for CmacKey {
    fn drop(&mut self) {
        if self.id != KeyId::ERASED {
            log::warn!(
                "wolfhsm: CmacKey (id={}) dropped without eviction — \
                 HSM cache slot leaked. Use with_cmac_key().",
                self.id.0
            );
        }
    }
}

impl Client {
    /// Cache a CMAC-AES key, run `f`, then always evict.
    ///
    /// Guarantees the HSM cache slot is released even when `f` returns `Err`.
    pub fn with_cmac_key<F, R>(&mut self, key_bytes: &[u8], f: F) -> Result<R, Error>
    where
        F: FnOnce(&CmacKey, &mut Client) -> Result<R, Error>,
    {
        let key = CmacKey::cache(self, key_bytes)?;
        with_key!(key, self, f)
    }
}