KeyConfig

Struct KeyConfig

pub struct KeyConfig { /* private fields */ }

Expand description

The key configuration of a server. This can be used by both client and server. An important invariant of this structure is that it does not include any combination of KEM, KDF, and AEAD that is not supported.

Implementations§

impl KeyConfig

pub fn new( key_id: u8, kem: Kem, symmetric: Vec<SymmetricSuite>, ) -> Result<Self, Error>

Construct a configuration for the server side.

§Panics

If the configurations don’t include a supported configuration.

pub fn derive( key_id: u8, kem: Kem, symmetric: Vec<SymmetricSuite>, ikm: &[u8], ) -> Result<Self, Error>

Derive a configuration for the server side from input keying material, using the DeriveKeyPair functionality of the HPKE KEM defined here: https://www.ietf.org/archive/id/draft-irtf-cfrg-hpke-12.html#section-4

§Panics

If the configurations don’t include a supported configuration.

pub fn encode_list(list: &[impl AsRef<Self>]) -> Result<Vec<u8>, Error>

Encode a list of key configurations.

This produces the key configuration format that is used for the “application/ohttp-keys” media type. Each item in the list is written as per encode().

§Panics

Not as a result of this function.

pub fn encode(&self) -> Result<Vec<u8>, Error>

Encode into a wire format. This shares a format with the core of ECH:

opaque HpkePublicKey[Npk];
uint16 HpkeKemId;  // Defined in I-D.irtf-cfrg-hpke
uint16 HpkeKdfId;  // Defined in I-D.irtf-cfrg-hpke
uint16 HpkeAeadId; // Defined in I-D.irtf-cfrg-hpke

struct {
  HpkeKdfId kdf_id;
  HpkeAeadId aead_id;
} ECHCipherSuite;

struct {
  uint8 key_id;
  HpkeKemId kem_id;
  HpkePublicKey public_key;
  ECHCipherSuite cipher_suites<4..2^16-4>;
} ECHKeyConfig;

§Panics

Not as a result of this function.

pub fn decode(encoded_config: &[u8]) -> Result<Self, Error>

Construct a configuration from the encoded server configuration. The format of encoded_config is the output of Self::encode.

pub fn decode_list(encoded_list: &[u8]) -> Result<Vec<Self>, Error>

Decode a list of key configurations. This only returns the valid and supported key configurations; unsupported configurations are dropped silently.

pub fn select(&self, sym: SymmetricSuite) -> Result<HpkeConfig, Error>

Select creates a new configuration that contains the identified symmetric suite.

§Errors

If the given suite is not supported by this configuration.

Trait Implementations§

impl AsRef<KeyConfig> for KeyConfig

fn as_ref(&self) -> &Self

Converts this type into a shared reference of the (usually inferred) input type.

impl Clone for KeyConfig

fn clone(&self) -> KeyConfig

Returns a duplicate of the value. Read more

1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

impl Debug for KeyConfig

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Auto Trait Implementations§

impl Freeze for KeyConfig

impl RefUnwindSafe for KeyConfig

impl Send for KeyConfig

impl Sync for KeyConfig

impl Unpin for KeyConfig

impl UnwindSafe for KeyConfig

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> CloneToUninit for T
where T: Clone,

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)

Performs copy-assignment from self to dest. Read more

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> Same for T

type Output = T

Should always be Self

impl<T> ToOwned for T
where T: Clone,

type Owned = T

The resulting type after obtaining ownership.

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

fn vzip(self) -> V