Struct SFrameSession 

pub struct SFrameSession { /* private fields */ }

An SFrame session bound to one MLS epoch.

A new session must be created whenever the MLS group commits (epoch changes) — the old base key becomes unreachable and all per-sender keys are rotated automatically.

Implementations

impl SFrameSession

pub fn new(base_key: [u8; 32], epoch: u64, suite: CipherSuite) -> Self

Creates a session from a raw 32-byte base key.

Prefer from_mls when an MlsContext is available; this constructor is mainly for testing.

pub fn from_mls( mls: &MlsContext, label: &str, suite: CipherSuite, ) -> Result<Self, SFrameError>

Derives a session from the current MLS group state.

Calls MLS.ExportSecret(label, context=epoch_be8, length=32) to obtain the base key, then stores it alongside the current epoch and ciphersuite.

label is application-defined (e.g. "gbp/sframe v1").

pub fn epoch(&self) -> u64

Returns the MLS epoch this session was created for.

pub fn suite(&self) -> CipherSuite

Returns the active ciphersuite.

pub fn encryptor(&self, leaf_index: u32) -> SFrameEncryptor

Creates a sender-side encryptor for leaf_index.

The returned SFrameEncryptor owns the derived key+salt for this sender and maintains an internal counter. Create one per sender; do not share an encryptor across multiple goroutines/threads.

pub fn decryptor(&self) -> SFrameDecryptor

Creates a receiver-side decryptor for this epoch.

The SFrameDecryptor lazily derives per-sender keys as new KIDs arrive, and maintains an independent 1024-entry replay window per sender.