Struct KeySchedule

struct KeySchedule {
    current: Box<dyn HkdfExpander>,
    suite: &'static Tls13CipherSuite,
}

This is the TLS1.3 key schedule. It stores the current secret and the type of hash. This isn’t used directly; but only through the typestates.

Fields

current: Box<dyn HkdfExpander>

suite: &'static Tls13CipherSuite

Implementations

impl KeySchedule

fn new(suite: &'static Tls13CipherSuite, secret: &[u8]) -> Self

fn set_encrypter(&self, secret: &OkmBlock, common: &mut CommonState)

fn set_decrypter(&self, secret: &OkmBlock, common: &mut CommonState)

fn derive_decrypter(&self, secret: &OkmBlock) -> Box<dyn MessageDecrypter>

fn new_with_empty_secret(suite: &'static Tls13CipherSuite) -> Self

fn input_empty(&mut self)

Input the empty secret.

fn input_secret(&mut self, secret: &[u8])

Input the given secret.

fn derive(&self, kind: SecretKind, hs_hash: &[u8]) -> OkmBlock

Derive a secret of given kind, using current handshake hash hs_hash.

fn derive_logged_secret( &self, kind: SecretKind, hs_hash: &[u8], key_log: &dyn KeyLog, client_random: &[u8; 32], ) -> OkmBlock

fn derive_for_empty_hash(&self, kind: SecretKind) -> OkmBlock

Derive a secret of given kind using the hash of the empty string for the handshake hash. Useful only for SecretKind::ResumptionPSKBinderKey and SecretKind::DerivedSecret.

fn sign_finish(&self, base_key: &OkmBlock, hs_hash: &Output) -> Tag

Sign the finished message consisting of hs_hash using a current traffic secret.

fn sign_verify_data(&self, base_key: &OkmBlock, hs_hash: &Output) -> Tag

Sign the finished message consisting of hs_hash using the key material base_key.

fn derive_next(&self, base_key: &OkmBlock) -> OkmBlock

Derive the next application traffic secret, returning it.

fn derive_ticket_psk(&self, rms: &OkmBlock, nonce: &[u8]) -> OkmBlock

Derive the PSK to use given a resumption_master_secret and ticket_nonce.

fn export_keying_material( &self, current_exporter_secret: &OkmBlock, out: &mut [u8], label: &[u8], context: Option<&[u8]>, ) -> Result<(), Error>