def create_message_two(self, message_one: bytes) -> bytes:
"""
Decodes an incoming EDHOC message 1 and creates and EDHOC message 2 or error message based on the content
of message 1.
:param message_one: Bytes representing an EDHOC message 1.
:returns: Bytes of an EDHOC message 2 or an EDHOC error message.
"""
self.msg_1 = MessageOne.decode(message_one)
self._internal_state = EdhocState.MSG_1_RCVD
if not self._verify_cipher_selection(self.msg_1.selected_cipher,
self.msg_1.cipher_suites):
self._internal_state = EdhocState.EDHOC_FAIL
return MessageError(err_msg="").encode()
if self.aad1_cb is not None:
self.aad1_cb(self.msg_1.aad1)
self._generate_ephemeral_key()
self.msg_2 = MessageTwo(self.g_y, self.conn_idr, self.ciphertext_2,
self.conn_idi)
self._internal_state = EdhocState.MSG_2_SENT
return self.msg_2.encode(self.corr)
def test_initiator_finalize(initiator, test_vectors):
initiator.msg_1 = MessageOne.decode(initiator.create_message_one())
initiator.msg_2 = MessageTwo.decode(test_vectors['R']['message_2'])
initiator.msg_3 = MessageThree.decode(
initiator.create_message_three(test_vectors['R']['message_2']))
c_i, c_r, app_aead, app_hash = initiator.finalize()
assert c_i == test_vectors['I']['conn_id']
assert c_r == test_vectors['R']['conn_id']
assert app_aead == CipherSuite(test_vectors['I']['selected']).app_aead.id
assert app_hash == CipherSuite(test_vectors['I']['selected']).app_hash.id
def test_initiator_finalize(initiator, test_vectors):
initiator.msg_1 = MessageOne.decode(initiator.create_message_one())
initiator.msg_2 = MessageTwo.decode(test_vectors['S']['message_2'])
if getattr(initiator, 'remote_authkey', None) is None:
warnings.warn(NoRemoteKey())
return
initiator.msg_3 = MessageThree.decode(initiator.create_message_three(test_vectors['S']['message_2']))
c_i, c_r, app_aead, app_hash = initiator.finalize()
assert c_i == test_vectors['I']['conn_id']
assert c_r == test_vectors['R']['conn_id']
assert app_aead == CipherSuite.from_id(test_vectors['I']['selected']).app_aead.identifier
assert app_hash == CipherSuite.from_id(test_vectors['I']['selected']).app_hash.identifier
def test_initiator_message3(initiator, test_vectors):
initiator.msg_1 = MessageOne.decode(test_vectors['I']['message_1'])
initiator.msg_2 = MessageTwo.decode(test_vectors['R']['message_2'])
crv = CoseEllipticCurves(CipherSuite(initiator._selected_cipher).dh_curve)
hash_func = config_cose(CipherSuite(initiator._selected_cipher).hash).hash
assert initiator.data_2 == test_vectors['R']['data_2']
assert initiator._th2_input == test_vectors['R']['input_th_2']
assert initiator._prk2e == test_vectors['R']['prk_2e']
assert initiator._prk3e2m == test_vectors['R']['prk_3e2m']
assert initiator.transcript(
hash_func, initiator._th2_input) == test_vectors['R']['th_2']
assert initiator._decrypt(
initiator.msg_2.ciphertext) == test_vectors['R']['p_2e']
assert initiator.shared_secret(initiator.ephemeral_key,
OKP(x=initiator.g_y,
crv=crv)) == test_vectors['S']['g_xy']
assert initiator.data_3 == test_vectors['I']['data_3']
assert initiator._th3_input == test_vectors['I']['input_th_3']
assert initiator.transcript(
hash_func, initiator._th3_input) == test_vectors['I']['th_3']
assert initiator.cred_id == test_vectors['I']['id_cred']
assert initiator._prk4x3m == test_vectors['I']['prk_4x3m']
assert initiator._external_aad(
initiator._th3_input,
initiator.aad3_cb) == test_vectors['I']['eaad_3m']
assert initiator._hkdf3(16, 'K_3m',
initiator._prk4x3m) == test_vectors['I']['k_3m']
assert initiator._hkdf3(13, 'IV_3m',
initiator._prk4x3m) == test_vectors['I']['iv_3m']
assert initiator._mac(initiator._hkdf3, 'K_3m', 16, 'IV_3m', 13,
initiator._th3_input, initiator._prk4x3m,
initiator.aad2_cb) == test_vectors['I']['mac3']
assert initiator.signature_or_mac3(
test_vectors['I']['mac3']) == test_vectors['I']['sign_or_mac3']
assert initiator._p_3ae == test_vectors['I']['p_3ae']
assert initiator._hkdf3(16, 'K_3ae',
initiator._prk3e2m) == test_vectors['I']['k_3ae']
assert initiator._hkdf3(13, 'IV_3ae',
initiator._prk3e2m) == test_vectors['I']['iv_3ae']
assert initiator.ciphertext_3 == test_vectors['I']['ciphertext_3']
assert initiator.create_message_three(
test_vectors['R']['message_2']) == test_vectors['I']['message_3']
def test_initiator_message3(initiator, test_vectors):
initiator.msg_1 = MessageOne.decode(test_vectors['S']['message_1'])
initiator.msg_2 = MessageTwo.decode(test_vectors['S']['message_2'])
crv = CipherSuite.from_id(initiator._selected_cipher).dh_curve
hash_func = CipherSuite.from_id(initiator._selected_cipher).hash.hash_cls
assert initiator.data_2 == test_vectors['S']['data_2']
assert initiator._th2_input == test_vectors['S']['input_th_2']
assert initiator._prk2e == test_vectors['S']['prk_2e']
assert initiator._prk3e2m == test_vectors['S']['prk_3e2m']
assert initiator.transcript(hash_func, initiator._th2_input) == test_vectors['S']['th_2']
assert initiator._decrypt(initiator.msg_2.ciphertext) == test_vectors['S']['p_2e']
assert initiator.shared_secret(initiator.ephemeral_key, OKPKey(x=initiator.g_y, crv=crv)) == test_vectors['S'][
'g_xy']
assert initiator.data_3 == test_vectors['S']['data_3']
assert initiator._th3_input == test_vectors['S']['input_th_3']
assert initiator.transcript(hash_func, initiator._th3_input) == test_vectors['S']['th_3']
assert initiator.cred_id == cbor2.loads(test_vectors['I']['cred_id'])
assert initiator._prk4x3m == test_vectors['S']['prk_4x3m']
assert initiator._hkdf3(16, 'K_3m', initiator._prk4x3m) == test_vectors['S']['k_3m']
assert initiator._hkdf3(13, 'IV_3m', initiator._prk4x3m) == test_vectors['S']['iv_3m']
assert initiator._mac(
initiator.cred_idi,
initiator.cred,
initiator._hkdf3,
'K_3m',
16,
'IV_3m',
13,
initiator._th3_input,
initiator._prk4x3m,
initiator.aad2_cb) == test_vectors['S']['mac_3']
assert initiator.signature_or_mac3(test_vectors['S']['mac_3']) == test_vectors['S']['signature_3']
assert initiator._p_3ae == test_vectors['S']['p_3ae']
assert initiator._hkdf3(16, 'K_3ae', initiator._prk3e2m) == test_vectors['S']['k_3ae']
assert initiator._hkdf3(13, 'IV_3ae', initiator._prk3e2m) == test_vectors['S']['iv_3ae']
assert initiator.ciphertext_3 == test_vectors['S']['ciphertext_3']
if initiator.remote_authkey is None:
warnings.warn(NoRemoteKey())
return
assert initiator.create_message_three(test_vectors['S']['message_2']) == test_vectors['S']['message_3']