diff --git a/libnacl/__init__.py b/libnacl/__init__.py index 0f80f49..f716d8d 100644 --- a/libnacl/__init__.py +++ b/libnacl/__init__.py @@ -8,7 +8,7 @@ import sys import os -__SONAMES = (23, 18, 17, 13, 10, 5, 4) +__SONAMES = (26, 23, 18, 17, 13, 10, 5, 4) def _get_nacl(): @@ -128,6 +128,23 @@ class CryptError(Exception): HAS_AEAD_CHACHA20POLY1305_IETF = False HAS_AEAD_XCHACHA20POLY1305_IETF = False HAS_AEAD = False + + try: + crypto_aead_aegis256_KEYBYTES = nacl.crypto_aead_aegis256_keybytes() + crypto_aead_aegis256_NPUBBYTES = nacl.crypto_aead_aegis256_npubbytes() + crypto_aead_aegis256_ABYTES = nacl.crypto_aead_aegis256_abytes() + HAS_AEAD_AEGIS256 = True + except AttributeError: + HAS_AEAD_AEGIS256 = False + + try: + crypto_aead_aegis128l_KEYBYTES = nacl.crypto_aead_aegis128l_keybytes() + crypto_aead_aegis128l_NPUBBYTES = nacl.crypto_aead_aegis128l_npubbytes() + crypto_aead_aegis128l_ABYTES = nacl.crypto_aead_aegis128l_abytes() + HAS_AEAD_AEGIS128L = True + except AttributeError: + HAS_AEAD_AEGIS128L = False + crypto_box_SECRETKEYBYTES = nacl.crypto_box_secretkeybytes() crypto_box_SEEDBYTES = nacl.crypto_box_seedbytes() @@ -185,6 +202,23 @@ class CryptError(Exception): HAS_CRYPT_KDF = True except AttributeError: HAS_CRYPT_KDF = False + + try: + crypto_kdf_hkdf_sha256_KEYBYTES = nacl.crypto_kdf_hkdf_sha256_keybytes() + crypto_kdf_hkdf_sha256_BYTES_MIN = nacl.crypto_kdf_hkdf_sha256_bytes_min() + crypto_kdf_hkdf_sha256_BYTES_MAX = nacl.crypto_kdf_hkdf_sha256_bytes_max() + HAS_CRYPT_KDF_HKDF_SHA256 = True + except AttributeError: + HAS_CRYPT_KDF_HKDF_SHA256 = False + + try: + crypto_kdf_hkdf_sha512_KEYBYTES = nacl.crypto_kdf_hkdf_sha512_keybytes() + crypto_kdf_hkdf_sha512_BYTES_MIN = nacl.crypto_kdf_hkdf_sha512_bytes_min() + crypto_kdf_hkdf_sha512_BYTES_MAX = nacl.crypto_kdf_hkdf_sha512_bytes_max() + HAS_CRYPT_KDF_HKDF_SHA512 = True + except AttributeError: + HAS_CRYPT_KDF_HKDF_SHA512 = False + try: crypto_kx_PUBLICKEYBYTES = nacl.crypto_kx_publickeybytes() @@ -905,6 +939,100 @@ def crypto_aead_xchacha20poly1305_ietf_decrypt(ctxt, aad, nonce, key): raise ValueError('Failed to decrypt message') return m.raw +def crypto_aead_aegis256_encrypt(message, aad, nonce, key): + if not HAS_AEAD_AEGIS256: + raise ValueError('Underlying Sodium library does not support AEGIS256 AEAD') + + if len(key) != crypto_aead_aegis256_KEYBYTES: + raise ValueError('Invalid key') + + if len(key) != crypto_aead_aegis256_NPUBBYTES: + raise ValueError('Invalid nonce') + + length = len(message) + crypto_aead_aegis256_ABYTES + clen = ctypes.c_ulonglong() + c = ctypes.create_string_buffer(length) + ret = nacl.crypto_aead_aegis256_encrypt( + c, ctypes.pointer(clen), + message, ctypes.c_ulonglong(len(message)), + aad, ctypes.c_ulonglong(len(aad)), + None, + nonce, key) + if ret: + raise ValueError('Failed to encrypt message') + return c.raw + +def crypto_aead_aegis256_decrypt(ctxt, aad, nonce, key): + if not HAS_AEAD_AEGIS256: + raise ValueError('Underlying Sodium library does not support AEGIS256 AEAD') + + if len(key) != crypto_aead_aegis256_KEYBYTES: + raise ValueError('Invalid key') + + if len(nonce) != crypto_aead_aegis256_NPUBBYTES: + raise ValueError('Invalid nonce') + + length = len(ctxt)-crypto_aead_aegis256_ABYTES + mlen = ctypes.c_ulonglong() + m = ctypes.create_string_buffer(length) + + ret = nacl.crypto_aead_aegis256_decrypt( + m, ctypes.byref(mlen), + None, + ctxt, ctypes.c_ulonglong(len(ctxt)), + aad, ctypes.c_ulonglong(len(aad)), + nonce, key) + if ret: + raise ValueError('Failed to decrypt message') + return m.raw + +def crypto_aead_aegis128l_encrypt(message, aad, nonce, key): + if not HAS_AEAD_AEGIS128L: + raise ValueError('Underlying Sodium library does not support AEGIS128L AEAD') + + if len(key) != crypto_aead_aegis128l_KEYBYTES: + raise ValueError('Invalid key') + + if len(key) != crypto_aead_aegis128l_NPUBBYTES: + raise ValueError('Invalid nonce') + + length = len(message) + crypto_aead_aegis128l_ABYTES + clen = ctypes.c_ulonglong() + c = ctypes.create_string_buffer(length) + ret = nacl.crypto_aead_aegis128l_encrypt( + c, ctypes.pointer(clen), + message, ctypes.c_ulonglong(len(message)), + aad, ctypes.c_ulonglong(len(aad)), + None, + nonce, key) + if ret: + raise ValueError('Failed to encrypt message') + return c.raw + +def crypto_aead_aegis128l_decrypt(ctxt, aad, nonce, key): + if not HAS_AEAD_AEGIS128L: + raise ValueError('Underlying Sodium library does not support AES256-GCM AEAD') + + if len(key) != crypto_aead_aegis128l_KEYBYTES: + raise ValueError('Invalid key') + + if len(nonce) != crypto_aead_aegis128l_NPUBBYTES: + raise ValueError('Invalid nonce') + + length = len(ctxt)-crypto_aead_aegis128l_ABYTES + mlen = ctypes.c_ulonglong() + m = ctypes.create_string_buffer(length) + + ret = nacl.crypto_aead_aegis128l_decrypt( + m, ctypes.byref(mlen), + None, + ctxt, ctypes.c_ulonglong(len(ctxt)), + aad, ctypes.c_ulonglong(len(aad)), + nonce, key) + if ret: + raise ValueError('Failed to decrypt message') + return m.raw + # Symmetric Encryption @@ -1260,6 +1388,56 @@ def crypto_kdf_derive_from_key(subkey_size, subkey_id, context, master_key): nacl.crypto_kdf_derive_from_key(buf, subkey_size, ctypes.c_ulonglong(subkey_id), context, master_key) return buf.raw +def crypto_kdf_hkdf_sha256_keygen(): + buf = ctypes.create_string_buffer(crypto_kdf_hkdf_sha256_KEYBYTES) + nacl.crypto_kdf_hkdf_sha256_keygen(buf) + return buf.raw + +def crypto_kdf_hkdf_sha256_extract(salt, key): + prk = ctypes.create_string_buffer(crypto_kdf_hkdf_sha256_KEYBYTES) + nacl.crypto_kdf_hkdf_sha256_extract( + prk, + salt, len(salt), + key, len(key) + ) + return prk.raw + +def crypto_kdf_hkdf_sha256_expand(size, ctx, prk): + out = ctypes.create_string_buffer(size) + ret = nacl.crypto_kdf_hkdf_sha256_expand( + out, size, + ctx, len(ctx), + prk + ) + if ret: + raise ValueError("Error") + return out.raw + +def crypto_kdf_hkdf_sha512_keygen(): + buf = ctypes.create_string_buffer(crypto_kdf_hkdf_sha512_KEYBYTES) + nacl.crypto_kdf_hkdf_sha512_keygen(buf) + return buf.raw + +def crypto_kdf_hkdf_sha512_extract(salt, key): + prk = ctypes.create_string_buffer(crypto_kdf_hkdf_sha512_KEYBYTES) + nacl.crypto_kdf_hkdf_sha512_extract( + prk, + salt, len(salt), + key, len(key) + ) + return prk.raw + +def crypto_kdf_hkdf_sha512_expand(size, ctx, prk): + out = ctypes.create_string_buffer(size) + ret = nacl.crypto_kdf_hkdf_sha512_expand( + out, size, + ctx, len(ctx), + prk + ) + if ret: + raise ValueError("Error") + return out.raw + # Key Exchange API def crypto_kx_keypair(): diff --git a/libnacl/aead.py b/libnacl/aead.py index 0a519b1..f443bac 100644 --- a/libnacl/aead.py +++ b/libnacl/aead.py @@ -7,28 +7,53 @@ import libnacl.utils import libnacl.base +_DEFAULT_KEY_SIZE = libnacl.crypto_aead_chacha20poly1305_ietf_KEYBYTES + class AEAD(libnacl.base.BaseKey): ''' - Manage AEAD encryption using the IETF ChaCha20-Poly1305(default) or AES-GCM algorithm + Manage AEAD encryption using the IETF ChaCha20-Poly1305(default), AES-GCM, AEGIS128l or AEGIS256 algorithm + If using AEGIS128l, you must set keysize to appropriate size, or use AEAD_AEGIS128L class. ''' - def __init__(self, key=None): + def __init__(self, key=None, keysize=_DEFAULT_KEY_SIZE): if key is None: - key = libnacl.utils.aead_key() - if len(key) != libnacl.crypto_aead_chacha20poly1305_ietf_KEYBYTES: # same size for both - raise ValueError('Invalid key') + if keysize == _DEFAULT_KEY_SIZE: + key = libnacl.utils.aead_key() + elif keysize == libnacl.crypto_aead_aegis128l_KEYBYTES: + key = libnacl.utils.aead_aegis128l_key() + self.sk = key + if len(self.sk) != keysize: # same size for both + raise ValueError('Invalid key') self.usingAES = False self.usingXCHACHA = False + self.usingAEGIS256 = False + self.usingAEGIS128L = False super().__init__() def useAESGCM(self): self.usingAES = True + if len(self.sk) != libnacl.crypto_aead_aes256gcm_KEYBYTES: # same size for both + raise ValueError('Invalid key') return self def useXCHACHA(self): self.usingXCHACHA = True + if len(self.sk) != libnacl.crypto_aead_xchacha20poly1305_ietf_KEYBYTES: # same size for both + raise ValueError('Invalid key') + return self + + def useAEGIS256(self): + if len(self.sk) != libnacl.crypto_aead_aegis256_KEYBYTES: # same size for both + raise ValueError('Invalid key') + self.usingAEGIS256 = True + return self + + def useAEGIS128L(self): + if len(self.sk) != libnacl.crypto_aead_aegis128l_KEYBYTES: # same size for both + raise ValueError('Invalid key') + self.usingAEGIS128L = True return self def encrypt(self, msg, aad, nonce=None, pack_nonce_aad=True): @@ -39,18 +64,33 @@ def encrypt(self, msg, aad, nonce=None, pack_nonce_aad=True): if nonce is None: if self.usingXCHACHA: nonce = libnacl.utils.rand_aead_xchacha_nonce() + elif self.usingAEGIS256: + nonce = libnacl.utils.rand_aead_aegis256_nonce() + elif self.usingAEGIS128L: + nonce = libnacl.utils.rand_aead_aegis128l_nonce() else: nonce = libnacl.utils.rand_aead_nonce() if self.usingXCHACHA: if len(nonce) != libnacl.crypto_aead_xchacha20poly1305_ietf_NPUBBYTES: raise ValueError('Invalid nonce') + elif self.usingAEGIS256: + if len(nonce) != libnacl.crypto_aead_aegis256_NPUBBYTES: + raise ValueError('Invalid nonce') + elif self.usingAEGIS128L: + if len(nonce) != libnacl.crypto_aead_aegis128l_NPUBBYTES: + raise ValueError('Invalid nonce') else: if len(nonce) != libnacl.crypto_aead_aes256gcm_NPUBBYTES: raise ValueError('Invalid nonce') + if self.usingXCHACHA: ctxt = libnacl.crypto_aead_xchacha20poly1305_ietf_encrypt(msg, aad, nonce, self.sk) elif self.usingAES: ctxt = libnacl.crypto_aead_aes256gcm_encrypt(msg, aad, nonce, self.sk) + elif self.usingAEGIS256: + ctxt = libnacl.crypto_aead_aegis256_encrypt(msg, aad, nonce, self.sk) + elif self.usingAEGIS128L: + ctxt = libnacl.crypto_aead_aegis128l_encrypt(msg, aad, nonce, self.sk) else: ctxt = libnacl.crypto_aead_chacha20poly1305_ietf_encrypt(msg, aad, nonce, self.sk) @@ -70,6 +110,16 @@ def decrypt(self, ctxt, aadLen): ctxt = ctxt[aadLen+libnacl.crypto_aead_xchacha20poly1305_ietf_NPUBBYTES:] if len(nonce) != libnacl.crypto_aead_xchacha20poly1305_ietf_NPUBBYTES: raise ValueError('Invalid nonce') + elif self.usingAEGIS256: + nonce = ctxt[aadLen:aadLen+libnacl.crypto_aead_aegis256_NPUBBYTES] + ctxt = ctxt[aadLen+libnacl.crypto_aead_aegis256_NPUBBYTES:] + if len(nonce) != libnacl.crypto_aead_aegis256_NPUBBYTES: + raise ValueError('Invalid nonce') + elif self.usingAEGIS128L: + nonce = ctxt[aadLen:aadLen+libnacl.crypto_aead_aegis128l_NPUBBYTES] + ctxt = ctxt[aadLen+libnacl.crypto_aead_aegis128l_NPUBBYTES:] + if len(nonce) != libnacl.crypto_aead_aegis128l_NPUBBYTES: + raise ValueError('Invalid nonce') else: nonce = ctxt[aadLen:aadLen+libnacl.crypto_aead_aes256gcm_NPUBBYTES] ctxt = ctxt[aadLen+libnacl.crypto_aead_aes256gcm_NPUBBYTES:] @@ -79,6 +129,10 @@ def decrypt(self, ctxt, aadLen): return libnacl.crypto_aead_xchacha20poly1305_ietf_decrypt(ctxt, aad, nonce, self.sk) if self.usingAES: return libnacl.crypto_aead_aes256gcm_decrypt(ctxt, aad, nonce, self.sk) + if self.usingAEGIS256: + return libnacl.crypto_aead_aegis256_decrypt(ctxt, aad, nonce, self.sk) + if self.usingAEGIS128L: + return libnacl.crypto_aead_aegis128l_decrypt(ctxt, aad, nonce, self.sk) return libnacl.crypto_aead_chacha20poly1305_ietf_decrypt(ctxt, aad, nonce, self.sk) def decrypt_unpacked(self, aad, nonce, ctxt): @@ -90,6 +144,10 @@ def decrypt_unpacked(self, aad, nonce, ctxt): raise ValueError('Invalid nonce') if self.usingAES: return libnacl.crypto_aead_aes256gcm_decrypt(ctxt, aad, nonce, self.sk) + if self.usingAEGIS256: + return libnacl.crypto_aead_aegis256_decrypt(ctxt, aad, nonce, self.sk) + if self.usingAEGIS128L: + return libnacl.crypto_aead_aegis128l_decrypt(ctxt, aad, nonce, self.sk) return libnacl.crypto_aead_chacha20poly1305_ietf_decrypt(ctxt, aad, nonce, self.sk) @@ -108,3 +166,13 @@ def __init__(self, key=None): class AEAD_CHACHA(AEAD): def __init__(self, key=None): super().__init__(key) + +class AEAD_AEGIS256(AEAD): + def __init__(self, key=None): + super().__init__(key) + self.useAEGIS256() + +class AEAD_AEGIS128L(AEAD): + def __init__(self, key=None): + super().__init__(key, keysize=libnacl.crypto_aead_aegis128l_KEYBYTES) + self.useAEGIS128L() diff --git a/libnacl/utils.py b/libnacl/utils.py index bd22b91..d0e4cc9 100644 --- a/libnacl/utils.py +++ b/libnacl/utils.py @@ -77,6 +77,12 @@ def aead_key(): ''' return libnacl.randombytes(libnacl.crypto_aead_aes256gcm_KEYBYTES) +def aead_aegis128l_key(): + ''' + Generates an AEAD key (both implementations use the same size) + ''' + return libnacl.randombytes(libnacl.crypto_aead_aegis128l_KEYBYTES) + def rand_aead_nonce(): ''' @@ -93,6 +99,19 @@ def rand_aead_xchacha_nonce(): ''' return libnacl.randombytes(libnacl.crypto_aead_xchacha20poly1305_ietf_NPUBBYTES) +def rand_aead_aegis256_nonce(): + ''' + Generates and returns a random bytestring of the size defined in libsodium + as crypto_aead_aegis256_NPUBBYTES + ''' + return libnacl.randombytes(libnacl.crypto_aead_aegis256_NPUBBYTES) + +def rand_aead_aegis128l_nonce(): + ''' + Generates and returns a random bytestring of the size defined in libsodium + as crypto_aead_aegis256_NPUBBYTES + ''' + return libnacl.randombytes(libnacl.crypto_aead_aegis128l_NPUBBYTES) def rand_nonce(): ''' diff --git a/tests/unit/test_aead.py b/tests/unit/test_aead.py index b404975..e0fe343 100644 --- a/tests/unit/test_aead.py +++ b/tests/unit/test_aead.py @@ -109,3 +109,77 @@ def test_ietf_aead_xchacha_class(self): self.assertEqual(clear3, msg) self.assertEqual(clear3, msg) + + @unittest.skipUnless(libnacl.HAS_AEAD_AEGIS256, 'AEAD AEGIS256 not available') + def test_ietf_aead_aegis256(self): + msg = b"Our King? Well i didn't vote for you!!" + aad = b'\x00\x11\x22\x33' + box = libnacl.aead.AEAD().useAEGIS256() + ctxt = box.encrypt(msg, aad) + self.assertNotEqual(msg, ctxt) + + box2 = libnacl.aead.AEAD(box.sk).useAEGIS256() + clear1 = box.decrypt(ctxt, len(aad)) + self.assertEqual(msg, clear1) + clear2 = box2.decrypt(ctxt, len(aad)) + self.assertEqual(clear1, clear2) + ctxt2 = box2.encrypt(msg, aad) + clear3 = box.decrypt(ctxt2, len(aad)) + self.assertEqual(clear3, msg) + self.assertEqual(clear3, msg) + + + @unittest.skipUnless(libnacl.HAS_AEAD_AEGIS256, 'AEAD AEGIS256 not available') + def test_ietf_aead_aegis256_class(self): + msg = b"Our King? Well i didn't vote for you!!" + aad = b'\x00\x11\x22\x33' + box = libnacl.aead.AEAD_AEGIS256() + ctxt = box.encrypt(msg, aad) + self.assertNotEqual(msg, ctxt) + + box2 = libnacl.aead.AEAD_AEGIS256(box.sk) + clear1 = box.decrypt(ctxt, len(aad)) + self.assertEqual(msg, clear1) + clear2 = box2.decrypt(ctxt, len(aad)) + self.assertEqual(clear1, clear2) + ctxt2 = box2.encrypt(msg, aad) + clear3 = box.decrypt(ctxt2, len(aad)) + self.assertEqual(clear3, msg) + self.assertEqual(clear3, msg) + + @unittest.skipUnless(libnacl.HAS_AEAD_AEGIS128L, 'AEAD AEGIS128L not available') + def test_ietf_aead_aegis128l(self): + msg = b"Our King? Well i didn't vote for you!!" + aad = b'\x00\x11\x22\x33' + box = libnacl.aead.AEAD(keysize=libnacl.crypto_aead_aegis128l_KEYBYTES).useAEGIS128L() + ctxt = box.encrypt(msg, aad) + self.assertNotEqual(msg, ctxt) + + box2 = libnacl.aead.AEAD(box.sk,keysize=libnacl.crypto_aead_aegis128l_KEYBYTES).useAEGIS128L() + clear1 = box.decrypt(ctxt, len(aad)) + self.assertEqual(msg, clear1) + clear2 = box2.decrypt(ctxt, len(aad)) + self.assertEqual(clear1, clear2) + ctxt2 = box2.encrypt(msg, aad) + clear3 = box.decrypt(ctxt2, len(aad)) + self.assertEqual(clear3, msg) + self.assertEqual(clear3, msg) + + + @unittest.skipUnless(libnacl.HAS_AEAD_AEGIS128L, 'AEAD AEGIS128L not available') + def test_ietf_aead_aegis128l_class(self): + msg = b"Our King? Well i didn't vote for you!!" + aad = b'\x00\x11\x22\x33' + box = libnacl.aead.AEAD_AEGIS128L() + ctxt = box.encrypt(msg, aad) + self.assertNotEqual(msg, ctxt) + + box2 = libnacl.aead.AEAD_AEGIS128L(box.sk) + clear1 = box.decrypt(ctxt, len(aad)) + self.assertEqual(msg, clear1) + clear2 = box2.decrypt(ctxt, len(aad)) + self.assertEqual(clear1, clear2) + ctxt2 = box2.encrypt(msg, aad) + clear3 = box.decrypt(ctxt2, len(aad)) + self.assertEqual(clear3, msg) + self.assertEqual(clear3, msg) diff --git a/tests/unit/test_kdf.py b/tests/unit/test_kdf.py new file mode 100644 index 0000000..0c50296 --- /dev/null +++ b/tests/unit/test_kdf.py @@ -0,0 +1,280 @@ +# Import libnacl libs +import libnacl + +# Import python libs +import unittest + + +class TestKdf(unittest.TestCase): + """ """ + + @unittest.skipUnless( + libnacl.HAS_CRYPT_KDF_HKDF_SHA256, "KDF HKDF-SHA256 not available" + ) + def test_crypto_kdf_hkdf_sha256_keygen(self): + prk = libnacl.crypto_kdf_hkdf_sha256_keygen() + self.assertEqual(len(prk), libnacl.crypto_kdf_hkdf_sha256_KEYBYTES) + + @unittest.skipUnless( + libnacl.HAS_CRYPT_KDF_HKDF_SHA512, "KDF HKDF-SHA512 not available" + ) + def test_crypto_kdf_hkdf_sha512_keygen(self): + prk = libnacl.crypto_kdf_hkdf_sha512_keygen() + self.assertEqual(len(prk), libnacl.crypto_kdf_hkdf_sha512_KEYBYTES) + + @unittest.skipUnless( + libnacl.HAS_CRYPT_KDF_HKDF_SHA256, "KDF HKDF-SHA256 not available" + ) + def test_crypto_kdf_hkdf_sha256(self): + # Test cases from libsodium test suite + test_cases = [ + "", + "92", + "2ebf", + "e29531", + "8e563a1b", + "1fa58d77ee", + "50f1a4e15ba2", + "4fb3724b7d4174", + "d10853ceb46b11db", + "0fdf31228221242833", + "98acb29e0993ec45f8cc", + "f4481a5e6d263d7bdc59ed", + "e620eb399337a9aace16765c", + "dbe8924351577475584731979f", + "371a112305dfd4264feb29c28a2f", + "d0a4b022f748c96141ec6b4aac6dcb", + "d2b38fe15e0f95bcff87822ff4df3d90", + "e4bf8fde7d77899a5f85d68b039ee7119b", + "6766b092971ec2e616286925708c7ed6c9e9", + "c4f9d36cddfe89b3194282a084881e6c429099", + "49be5bc10c278f39b5be391a55e765560deca0ad", + "6e7d3031d08c5658a19a7d647dad0250418435febc", + "07cb6356aa7f978cbab87e7814fa90af9ce729aa2b3f", + "2ea1c08eb04c75806f80ccf0fca683a8998bb663e99993", + "bb111699f6c32263474dc5569a6950c767e3b8201f838345", + "e81e9086d3e035cc1a288fa521ce8b43b7f93d3d9bbac5085b", + "29c398bfafa672bc315e192110575691607118759f9e7669f3c5", + "60840e8bc6d86733752787232a0321257c82d691722bfba07af839", + "b0ec22e547dae3f04fc6ef146203604f0d604a8ce8a20fce229a688f", + "81ae6add3344b25d14115a38bc10553a75ce0a4be3aa8f3579299227f7", + "242c65f95ee0bce1c5e1b01b1ff68e8634fac096edb18997dfd3baf3817d", + "14b5afe2cc0d8fe10e5359667b2b310365fba93d62f7fd3df2dddfc34c1de5", + "24a79d4c0c69e0a524ca91f356e64ab40345973ba82ce68992dbdd16bf161cbe", + "3edbfc22f9a1e3a5c774cfec8fff3cc4febdfc61d98aecedf6a16eca0546316b56", + "b8bad2b04b9b382f9ad2559afc33b8dece4a7fe9b8ac9d74557dfc51ed8949b78ee8", + "1d01316d7767f068171f08a8c2f05d2cd571f623fd5fc9916b3476115aac9d7f635cb4", + "a7c5763a3b678ee2fa05a57dab377b67e448a38f94531ce83bab9eff8035e105e8889b91", + "ab6721825aefb2cb9f9d0ce5123882573abebe94404e0e3a923a7aac84efc084f84ee5b2ed", + "4815da740c872a9816850c8757be64cb3096dca7994f3af7bd8c10e83a2d3bbb14b40da93d40", + "abb141fbb64faec34c09e9c784b1e8aba15b6e916f70996ad803b963d2de676669ebff3ed4b711", + "231a7a47a81c21dd6a0969c67b6ff446a73a145fb1d4f0a2d268af8fd56ac6d67b6ef55d13194440", + "74e40130ca102c22acc109cc6b8b66d840b984fe729c156edd05eb4f44d1869e6ae6260b41931179ff", + "3817d2cf7b7c7c7bfe4ab51e9178343f31fa8eea20899ec96d21eebdbf55f44327e7dc23cf669e215c02", + "d5ab755f5631d08b70718d2ba3e2775fbc3cdfe69b7ac74afcc73ffbd7b91b9d3a7fef364cda9816c8c367", + "93c15afc2cf1baec84b8e3c89f50a3e4cc3a2c1b72aeaa894a45bf09f22aac0711994f0873ac69b099e47d02", + "7b359dd2abb995a8bb0d1a01a986bfcf28d47b9215f000b240f5080dc78a84cc65e34ff098074ae237a0238b6f", + "182ec78776f5ba3818c2ccc7b84aa7bb1a54386134b3215e8f8f709757f3c8e4f9bef3800e3a9eda8b9794e95f8a", + "0cf1874215b38ab1900ce7137d9b8817fbe99d3196eab5b845971a46a38c479d81fc8033a641533e2c39dd550e672a", + "3f5a283ca862e6a5f79c5ab39f8d4984b54a86e132d40adcca249f6419caf5b61fbbf61d54d80e78af3e613adfea5f9e", + "ce6bceffd4ae50e8465c3d5179c661da2f18dcb37f95f9cc66808d2f848b55dd0c1d2201bb37a2e339e9385233e687a711", + "7ce3f4575d3edab2f989b0a975b279ac21af117184130911dba4e7c70e19f96b5595ec8910e737c019f3392390f8b9af6439", + "9c1b37296ed2ad9b556938d30814c47f822807be8cf9bfb26a05651061015493d4ed551f8a6f1a5cef7df88dd7426f03681935", + "0d1f6f49c38c4d6fbc57103193b544ec1a73f40ed8aaac53da2b1a28a4a35838036ec9d50d719af22f3f89ebb7f340f50ce8c180", + "fe6786d7d7728a1ed057c329f68cf698b163ae1e6c1b48290e6ba2c325740155f0f90f216111f3bc16d61b8338d910d429241899c4", + "c729c63757fa5a421704ba88f8c13f23606e59cb1e7d2396a130742c31b98dc9461cc1fa9d8d24f79f7303dd416bf66adbb08562f832", + "44cf07d63adc85de7c0aa524962c29dfad1b37b253fc9559fd1f5b8237d8bd6e6449e5f3997d6b0571ae50da1e164be845523c8630b1df", + "c1040513a53f652e0ba7bc30f84deaaec13a15919855dd76148ae1fc86cd147ba686ff0ee025f9a00cbf7b6e190c7b87ea458974cf147ae3", + "0a67afc69f00ddbdd6794ed7b06285c00d70fd86fb8b959bd8c686e96c72032f2726c4f0fb607a7f4d4f66b410eff17354b6db803c9c910a72", + "faad9414932446902309147f8f2c1d2d48c95a7ddb8856219aa36ed30f971e160542ed8272ef9bdf72551cd059ca6c81ea76b5a3b49cbfb07738", + "14ee2fc3899650164beb828a557afc7253e4b89cba8a1908d3641d47eb23d50ef34a0dafaa1388328fc33b1db37f2f74db6934d398bacbec785f03", + "2333128e004f61ba45c524dbf72a9973fdcc288d76236402f63b0f4a39867b18e73135f35945f1791ae537b215c69941194258103419558c0a477fa9", + "70f1a4c027d950573c5ea8f9b34069d1b85ac0b6daabc9de5c4cd1844d6781c0b15ca7b01c2a33dd06272e7c8729b74ea71a0f35486252461a3d83bc62", + "8b9199ebc5ae61365d6cc78c9d1b1a466565639c50c317cddcdc13db96b4f6ec612bbc1c6e5d2479147040f313a168e4471b9093f47548899265d8472aab", + "5f420864258d597766beb7c55ef0dc9c85aab5e296677e1fd9201a8c8a0c7b74b573276b0ce11f797a5816e5ed7ea3a02ca5c338f78c0c6a41322e0cdbb5d6", + "13029325fb0fbbe2221caaa6c3797a967335c4a857fafe23b4fb221433afc84da6876cbd74ac631d18f2478aae8def5a85a227b3bb496a81e9d29171a5b501fc", + "44ef825de340dbcb1b2ce9325eb78650d574d1c9fc13ed3b4517ee3f2f95bd97c8ab62988455a1639d0e4b2e404d661c3881dbdb52d86b7bd5593713b10e8d1086", + "2c67d0e2fbdb55cf649c97e1053c717636c526ee4f58f86e9671a1086e5ef6ef7ae109eca2cd482affb1add956aad7225debca3420c4cae6cf590e8e8c1a0398a9cd", + "6900b97c5783d5856e4eda7816e27326cb71f8c9cda3bfdc88c4a5aa49b580aa4341cd100fd3084b447a24c9d521c8ddb7a55af52c998c4a9b53bae6c86caa02424df6", + "c63f43dd3d29e0e92fc2adf18a50e33f11dbe9746f16bfc518397e0df3bd4eff491963cd2a0d25022c535a425fe3cfcea4ffd7dfbe98e2ae9fb40a007012acc31460ef25", + "dd61268207f4452ce4a1f212aa4f4ffff1d0cd4df9ac1730b0f4acc07f75e86afb02c0d99aeb512bf3bb138183364a4b800af446b403add2b30d73eca024fb5e3eeebf10dc", + "4eb2c6dc6159bb82eba32aa839bc4b3d46be87cd358f47aeb7b488d91230414a40fe35a2c0bcde81de243b6974c49ac0af113904a8995928931e867f5b7d131c2c9caf4adde5", + "22cef8bbb9f6874c1be53adc6687e3b28d0b9b8574d22212e4d60074585d17751fdcb80a1ed6143a7471fd3b1a0dddbce5b8b1ae859441413d99b069252f39c3a0b7eafc65ab34", + "6f0a07f43c6d00649b516cc986fce770aed949875a17164beed5305ceaf74131574eb2cf489dc13fad53e2b10cb757b69eecb481a76a8d99a7cfb2e0aee40dde6f7d44c2be5a5e63", + "bf701b835481d47ee85d390caa8f63bd3e7dfa48f4307d51989b4660e465de31329589bd5e3293f75b63d320b8f53211cf1209e426869c3c3b506dde3f819cae07672af9ef74f36de6", + "92cc25c67b65fc9c57381457e7752441782dc4d2d62828c13992a7c2eda57811fe7c2de66b725e08f361fee4d8370d3dff2cdba6c603cd03ae54d813e44793387ded1add2c006b320058", + "e3ec7f8ccf313fac832d3ef5c3b8b10f1faf5ae8ec32bce0f5f98b9f4464624a58b0f74ffdb827d52d94fa77a8456ca550017f3c31d8e8e6827b6a9ac9664355bc57e9b46cc66b6e396a50", + "636ffbeb1cb2e834ae37213247ca8e615fc52f00e79c13f37874edc549f4b629901312b685f3e1ae3394a6beebc5e0c1364c562b3579f34cbbe9ed80c5cc045b9ab7a749950d005e785832e0", + "3ae686a5e1abf936d472963d6272226f920c8df4eed5c4b26d9afc910f509c205ffb56a0289fb62d38790dca4f85028f76b4339e9eee32c1c2690abd02c74ef9a7cc822f901ae596ef1b2f2f42", + "e542066a18aed627ea3feea7a962b9c69a9a2f00bc0f22c7186c389701283807801d2cd79d678010d91379cfc6d72cf30830a34fd9983a0c011e775be61eb0d093a1432493abb703c8b5bf99ad63", + "1392b4676365c1ee01f75811cabe0fa989faa6a222b65e72bf4016f7767c0e9f822de2ad0034098dd9867a787abe9b97adb1a345e96b345aea898682d71fc3febc0e2ef579874da073285d0ba4edc4", + "2ddd472dd4090528036d7bf01cacfca7c71ce3d89bab2299b3d6f1b987c51e5f884cfed55ca25008811fa4f44d9bb8563d83cfeccc580865978972cec981f431e4b74857e2a565e5d6e0bc9f0a3c45ec", + "d2a855d0e2a912ce3ff5ffa99c464c215d9ae1195e92b022d4518dde9fa5ecbdbac4f1877c1a94df35421a122a04073dbe7fce959c87497cb30774bac3441140089b4b714e025509fa3cd41d683ab46edf", + "00bcf365897640b9268fad068977a11b7eb3006482b51c97543ba4359db31adcd18497d174844c9ec47a0f6132b16d14aa5a02c42583aabd033e520a8a9c5c430cc6708e8b9cdd4fd56c1023a744af67fd14", + "0e20beb1a84e9c252b54c4db895324e85436f29e4855cdfa5bf4bbe7868bdbc51b7f0ac428ce54750e2cd16829051e95cd97f2f40c5a1a3db17f90b68570a05ac55a9eaa7c8bf377c7a752666de779ef46764f", + "20ddf3ccd89c8bf4c084324858c0f0c7d4dcfd4a76a7526183a5bf4344f62320f29e7c0650d3c55ad587128e667d5d4e69689850fa741b49d3ceef45b134327ac89186248d1157aa4b16263731138777811e508b", + "2a8fadda7001128cf59e3fcc93dc5c98e75ac92d66d536330eb90a558920e4416c210658b3bf44a451db23c62caac1a79fad1437a81d66ab98e4423d8a1ce9ed9a0586a160c4819a019a93781775c6510c6ed09cb9", + "9049524d223052ee507450e65112e1f4331c4d7fd71e8237b8f79feb2fa30504c856d6907cc4eb814694e9a7b8a8b10d85f956df72062c5f4752dc42d37f164eae1a3155a11ecb413f92a0e49e0a89d398c21d76e100", + "86a92236b4e0dc16e0a17e92825e31b66a417784b7f6c0a53c274ca5100847a929c0a30430ff67e6c8913a41c3437d8313fd11b2c0eebc75e5bdffeb95a4d100c7eb36216494f3c7a8f19403080941e3d1c9e319ede000", + "4b15b094db5789ff78fafabdd0f0aa06d3f4ded903c89e8ae22982d152017295de63ad0b43d3d303243de1bbf2637e8e0c042024e307739ab3b02a5b7d299167909edd51f82229c0093a68768d56c2e774285ed95bdc24d9", + "9bbca463a5142ea7dad0522f073eabc7eed63e4baea13efec9d7c198b75a9c4db88623c406edc5bf61ec61e047357358541aa66e44a364b779b6a8842c1b1e8131c594ac8298755ba532937b5bdbcbbd1f2c2152d03af55120", + "edc5fe50b3f3a7de5ddc14b467e41ec0ce68a44f734c4cd46b5ee1d98337d8a917cf1dd13e09946d22918eaf31f83de1e035209a6f2de32bb7caf119d0db73e4075cb9a714adb84b4d0a6163aac56bb4299a71e8979a97e363f4", + "e2770541945a0395fbf597fb58cc4e6f6a2883b707aa79df9c2da5a7165a8838b1e7f4736b5418bd2f99d3eb8020f9b4cb7ff3a620f8bef276f22f3e98ffe20adeac2f62a9e5758136d222a9c562f81f151d3980bdad54f52dbf55", + "248474ddc86ce5e07be50fdd3a6a113ab7f2319e3fb86f1d2d361372fa1d89926ef501c5a62b9d2efeb409d0be8fb67f12c1624d04bcf9d555dad09dffdba76948b0eecba430110ab9e738db70e51c4e2f27350a49aecf1282410ab8", + "37d75ee27cc14c95c9d930bb1324d8aa6cc77ba833504253d91002fb622d9e578a3f3b1439dad7d9d7af8ea17cebee86fe13c59f316434d46208c019c2e673168b5aaa397525cbce3a0b2f1c59c853600711e719218311e15d1ab9a0cf", + "981461afd5756cc5d6a953c188b0a537fbcd18b41034cc4f40870cc2c97bcc48e3e4d563c2ee1d60d8c9f714996fc32e2977aaf7c3544e437f40f61d7281548efc22d7c298853304444c4184605b7b55148c24e88f362e41a8c919bf0288", + "d65ac485824f9490c5f70fe674fe1da39b4583b25f3580b636a06135761eb0fb5e36a59dcb070dd9bfd5b2d69503a5c3ef295eb9cb3a9346578556d56fdd0c81cbdd960d292f8410681643af154b2550e2d586119b82cb17a79c1447cb26f6", + "cdd5bd495ed8c2c41dc511577051ffa30ee02eddb95b3650337e8aeae161d2b81a9ebc1514524c52dbe2c4d0739706dbdcea1a7ba21d9cab36ca10f753fc82b218c01094e288bbcd96d6678e06e1a03f55c3bc6aea67b9637e87a4ce8e2aa0e8", + "1d07389dad745981eb7ae03162bf249996cb836316872a4de4241d1fea49044541b9ababc2a10f7d5455ad3c0519997698a52039fd5517c53f7963aea8917e1b8ce3c63c5a2b23331cc473c1ff0986b08e8dd1257847256ded17e6d0409855f8e5", + "a1245e0117a0e7c3cfbcd3d3eeb21a5aa7f2a73aea4465f4d83c8d0c6237c5c093ada99ada6ad75dcf18d1eb58982c7316d5c366ce5128a832d433c960e6bf7be42e4dce2747e3cc78101ed44aebcdbbf6bcd42f5160ca40784ea3ee3dd6be537475", + ] + master_key_hex = "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f4041" + master_key = libnacl.encode.hex_decode(master_key_hex) + salt_hex = "fffefdfcfbfaf9f8f7f6f5f4f3f2f1f0efeeedecebeae9e8e7e6e5e4e3e2e1e0dfdedddcdbdad9d8d7d6d5d4d3d2d1d0cfcecdcccbcac9c8c7c6c5c4c3c2c1c0bfbebdbcbbbab9b8b7b6b5b4b3" + salt = libnacl.encode.hex_decode(salt_hex) + context_hex = "32707172737475767778797a7b7c7d7e7f808182838485868788898a8b8c8d8e8f909192939495969798999a9b9c9d9e9fa0a1a2a3a4a5a6a7a8a9aaabacadaeafb0b1b2b3b4b5b6b7b8b9babbbcbdbebfc0c1c2c3c4c5c6" + context = bytearray().fromhex(context_hex) + + # Test extract + prk = libnacl.crypto_kdf_hkdf_sha256_extract(salt, master_key) + prk_hex = libnacl.encode.hex_encode(prk) + self.assertEqual( + prk_hex, b"8c3725c0ea8e14106d8c342887ccd1218cc205acecd8095ae1efc099ec195e7e" + ) + + # Test expand + for idx, expected in enumerate(test_cases): + context[0] = idx + context_bytes = bytes(context) + key = libnacl.crypto_kdf_hkdf_sha256_expand(idx, context_bytes, prk) + key_hex = libnacl.encode.hex_encode(key) + self.assertEqual(key_hex, expected.encode()) + + @unittest.skipUnless( + libnacl.HAS_CRYPT_KDF_HKDF_SHA512, "KDF HKDF-SHA512 not available" + ) + def test_crypto_kdf_hkdf_sha512(self): + # Test cases from libsodium test suite + test_cases = [ + "", + "4c", + "abec", + "6d7647", + "a3397e73", + "15b3f69cec", + "fb5c266f8785", + "7147d8a6bff246", + "1dd7f9b2ab2583ab", + "725aee4e2d8d7f1f90", + "046f63a1e2d606d7893e", + "fc2026603b032dc6c862de", + "03127d298ea441e3ae1d3781", + "a8f163b5b9476eb50dcb304bc2", + "9430c3aa31857951320feaa65e4e", + "14e4918f7b7eaa9c6d39dc08e9abc1", + "3480c9854b8f0bb4a97920338dce7573", + "42714ad1af787467b0388cb6663864ba89", + "700cd7f28075fc3a28d98672207b45df5b20", + "528c93053c63c5fa5ff1f0a6e7cde8d4aec5a8", + "d225940fcd325eecf827666ebcb9ea3881dbfc3f", + "0341475a114b87cdae767a4a68432889145748b0aa", + "bbbf499a74a2c22dc4a2295bc904fdcd7d4e91b32060", + "deb06fe0b094b65da9febfed81f990ae77fd3f458a1bf3", + "f64b7ac1473232a727ff461af2f650cc8a8419d7c97b7298", + "3ca9c302e1096302185e2288beb6d91124c6abc9f9f97d5a4f", + "81dfa7213143feb429dae2c641d25bf913aca03feead6ab7df10", + "5d428190aad0539c0c2e6037e7745218dbf4e5c5aa0102996ceead", + "7e76c9dcd614d730eaab145be60584c7bbe925bddc64d9dccde16142", + "4b2be1c3dd5cd41d53ead2ce0aa220823ec4f3cf8656b14449e50cb48b", + "4ceb80935422dba37af63ba59a460204dcd6639741d478185fd1a1e48de6", + "633e555556c5288d808b2483d7e99bcc9876b42b61cbcc4d3e9ed42bcaee33", + "0d28411da5a660b2eb063af0ed7e031c463a64eddd6c48882add6fad4cc9da92", + "30b734f5768d26c4f8d641037b3e425c3d75c5c0c97cf8a3e684d1d2f1ba4f37b6", + "970db4152321c2bac15898927aa25db90246c494017765b01ff21ae9a6aef7b89b88", + "f168959f62696ea32a46ee67cdd3375684533f799e346fd1d26ad29aecd51de7c2c473", + "76a81fa4b90ee1d1b05986c837f10f098cf1ac8f7d6be8097caec980b125185e8f9ee56d", + "ed95ff4a9919f45c08151fb7f610f5155dac10c92e84bebf2a6bf0fc653585158c19ef59fe", + "16ff87fb87760dfbaa53a2820c9ef365ee3b539b4a7fd1a4e626d313f24db495319f98c247d3", + "f514b605b74bb3a35b86f8c96fb08e751d916b3ecd8b5e84b364e57f1fb6e5928a3a46f4cf7b1a", + "ecef871f30ca56fbd6b242b9d095a33b9d60472da4914af80dbb8672a84d8ba4640ff1b459cb9b1d", + "9220ed520c628b7e7e249c334573ff2402d573e34b27c25c4ba22e2b472ccdd2ef4d060eeef5387dc6", + "b431fd9eaba69bc20967d1d02014913637df29c855faa6e93a8571ea3c27ad2c542700c77f9f3d19e5bb", + "7ebd91db579ec5879f81a922c58ee82a91b8cb648294f63b97f728a53411438f54157cb6459ae762b5ef3f", + "c28a1322e46a89f7a2b6b3dd6d39cbcaa84368bca33a53c04bb7bc90c3f51065143d8e93a279a403aea8ca8a", + "089ca5fb6e4de86c77cac49f92c8d3356697a1fa51c8e4a207ec44428c4da0b82aadad5f196510d0ae7abc25ab", + "31b08873dafc0d8c11afacb5efd3fcabbb7cc5ff7aab6e1d40a7451ec715de4a4a6e7e15f9d1f9f832a0e1bc39d7", + "984f57235036e6d44777a7bf41fa4333f3077d3f2d92b46bc36c29b123de8580d81e22b2969d9a5abf3bb5fb7b422d", + "2730edbf85f4e35152af0f22fbc4f23f7968cb430fde9685cf4e1bb64611ba6459acedad777fe1a6d70c88733d83661f", + "0eb2a97a6d6a5901535399caa5ccb7192e1f1488f9a06d3150ccafe1eeaa8d6e50e039a9344f68d1783973fcb34719c2fa", + "24d7e154d4b7382daa4d1fb47a8badf0d1020e97f75efe74f302b983584e26bc1865d44c3761b65c4d745766da0bfce5682a", + "cb7503ad874932bfc2c7b18176d3e03f3e66666613e3e8e2ac83a29965b56afb0aa74d1080ac2ffeb1c43ee160c9f120cc4c61", + "0ad5086f6cf363dfbf14c13e82faf14dde185b7142bd0ae44da8692339ed31f47f10773578af23cd7a632352087d07a7f4133474", + "72873f68ad5874e1146a70e96c98360ccf0e5e9a5e31e4e38c7829241a531b0712eee8f22729e244da3d94d92703d975e54d84c36c", + "b05200d914edd05309a7aaafcde50cfbc201d988387d2b7fb7b7315b56d58ecaebc2f7c7b5d2607d041dfd3486e849cf2535c8ef76f4", + "6324ea52a00274312457f451953302d02e3e9107aed0a4007c04d26f4b5ce37f31fbc5a2606575a464f64b507691646e2d773c62aac387", + "e0c68ed5571a90bc8db36c948b5ffd9179cd80218ae47b86cc7bf4aa4adccc438ddf670ea817d324ca709b612522d510913eb64012462acb", + "61d3ec6537c084df5981a79545847cbf204c3a267080e2cba06a29b4fa591bc43668f701cc0d9e33e123b774b066e212fd1989d253120bfdf6", + "7b74db37484227d237eb7d4039ddade342827d0075322c14de32985d616ffe38c4786e2e0df89de856051796e1f922b6b47578c3428fade6b372", + "feea8d891c65fb37dc20095946b9f5db5aa936a2331fc9609ea45ee146107bf561710edceef2cea29e7c25032cb6764bc361eac0c148553e62ca5d", + "a95341f8f7536d95f14181e4aa01c540a345bd172b67279f5b6dfebe2c8fb7b366edb8ad7e4545eed29903eeb6f486fa9f9d825185a0333eeddd2b45", + "5b7fd7b9d6623c25d508712d585fd541089c8b4721b9dc219baa9cfe14022b5ffb0ded9a546ddf183c543d1f26f9c4183f4c7ff012d61de8cb822bccb4", + "fa0fc08f49144cf85dcefd25717f37de8469a943fdeaa8c764bbf483af7a37b0dcf1f50451b20e693635e94976c44ead0ef83ac632eec781e9d50efb2f9d", + "6ec1e621af3a878ad836aeb322e67752de29a310d7e6fbe6d164bb79e8f939d7a8f9f77a72733482d323c50ae7dc2170b90a48c59da782865eb7a9e254aba3", + "10d13645bc853dcac6b71dadf4327ea0c7497822a6e0691d93a5e9d32cbafb883f9ff0c245126e391666fed31747e92c81ab886d5e75bb057faac5b3b0f1afa8", + "dfb3872da01656cddd9abcb389e75a4a01d89d0d49f571e77655ad1ae0c14c87d4146accaf59f3e402767e6666228ef8e52aa32cd18306f69666769159423d8141", + "d3a86236f119fa35c480d5b4b71d3aec93e226db5d2173c04e5d1d88c696594f51ec36470487fb72044a039cc081607be2a99e5d8f1c653848176f97cd2e9d50a742", + "0d1f5a47c4917f6158b039e68fdeda5fa3889bbac6dff571f6353f83ada55c26bb99dac4416b2dea7d0fec2b585877aed2709f2b25516551004fee20b68e21efded761", + "79a910c7f74b303d5844b609148a5a723e31c6b00d16a773547fb6d97fd35bf4a452eefd7ac3466ea520d61be4b75493156c9ae39ce6698e7120e92ebb366adeafb21d09", + "a893878e100dc628ec674c4b48556c067419a3c317be94ed37cfd8ed8cae2ff035985579238f4dc13576677d527f21cde829a54466a911ab81888016c2094fda50e6dab622", + "6faefe6e6bad59fab2a801aefd26d05ea3ac3ce546b0abfff524ec2ea80f3cc5c8c7015d18ae766cc84a2de75bc4c8a44cafb3743c6147e934d5de803d74ff8ca507d505065b", + "ef32b102fb18681c02cee796ba8bb602d927d3428c4387150a5c342532380d3234d69e58a607396af5802cfeece1554de5722931f4e09fe51ae4b74dcd7e851e9a95cf4218f96e", + "efe653c021ff38cabba1a76f8df2b0737ccffe6dba0506074143c88f6547afb06bcf1a36ba8e48bad9e7ee76c70717e089e1c31f052ee8859f65d6cc0d4bdccf845c8a8955d316bb", + "8bf54ff6ef8b0f73a569d908ef432227d7fff0e1300503c1d41f3b2618b089ba76873cc5abd22039f3bffd2bb88b4a169e1f55b8280ba8b474aee9a19a93710cdc05a51062ea5970a2", + "126a003e4194b577fbf4070e8ecd47f3807afc7d9e733760a23b350649e924ebe702eaefedb70490b77fc8dbccd068baab02bcd64517aee6005d37a496f8dd92093ec34f5ec6af703836", + "3b025057a1a889389b105956cffae970b21e3a1179382bb626856c793727ba9ca14706741b94b4704ce0089a378c1efadb7961fbbfd146d657b6ee605231d9ffc60eadcc6af32c43ec7e75", + "0c2eadac7883bb59c278aa115b10b8d1459066b9e0061b7e4e2e1ec4caca02c6fc443e5f78c80779360f260507bc2d49beae6bf7470da5c8dca5ee51d251ed1db892db23a43c62fe088d07fc", + "2f40a09aea1a9b7c32e7b68845de40452c9b753c31c46118d14d3b34c8c7f3eae0f3c0018300ce4d583715debeb9bac31de392080fe2630225a0f0e0d4c5b6e19ff1fa5bf5a0cb8840fed794fc", + "155e5eef1e32ec06bd7a51741fbeafcbd82bddbb18fc34a984e9018f4b62d1b7ed4fc0b0d7843d4e8983ccdba6bb30d28f964994650e692a5b0b746171563be70a0c622f6a022ac4c655f216bb68", + "142e1d62a31895b3a916453a0c01ca2a096d9b0747b3a2c9584822819cbffdab6c6461d4e4374e4d9363f8cc52861e2be1f4ad4edbdf4a72f1fc3667903df83a32a8810398e156ea8dd3385d416e9a", + "08a01d87455bfb057d64a6374f8da7ae52f4575af5085e7aa3c390de0fe528c14767525b9af87e7e5ef053bf03b2390c98f7eef36161ae1c0d9eba83c4a78d9ae5d4322cbd0b3f7aaed183f18616e49d", + "1c8ccae6d387f360c2fca138f1c65410918ca0cb47c15cbdee931ed03cbcec6e871f11f2692a9b9136f82b274a338805e863f87c5c0f99604c03484b1a2020732e5473bec84ced8ba05cd9490e75563628", + "ac3916dc874442f05ca2409bd5c63957bca4c5363dda23846a5901010818c57874aff1787bd7c554c95aae8e354ec55beb1b79966bae64197d4383c894485c8a509064957abe7f3fa4154dc0f0e958121fcc", + "f0b7a82a962c7faa238acb98ebe4b904e8d5998e1856dbf68aea0933dfb3d80a44f0eaad678dacf31ee5c985fe6f9844f9490319745e89bf790d3e0cf2a788a177de8401119ebc9f7e48f58c279ef723fda7cc", + "6d87c3942bc4ebbc224fac383f1b22af13a4ccdfae5ee66ab8f954ebbb874f583ef07152872ce03de5c3584574b91d91d2f6fc4b14625e3e2bdfd04fc7b9441d73f9c09411f08938429c9f12e31caea17e094d9d", + "2e0d7c7f1c03ce9d4479fa800645abda4aade87bca0bbe547e889f8d32af7530d212171baae32831ecbd84cc27bb3da8496982a183e2785a0731220677341bcf75ae345ddb8bcdb7dccd2c4e1094d33ca53b0768cf", + "9bec3f01c35ba5436e44b01a96077f41aa61516dff5cef6185818e7f57d2dd0b9d9ebfeb35a0cff1ae8d98975a0cdcf2b626dd7b1f8fa2534ffc058abc1b81e1c68aaeaf8e9b255c3eabe1d675399220d4b6d967fc5f", + "b0d54ba8f86b01d511acb7ddb567198dabe835512d0033991a221b2bdf815d8063d073d1bbf5704f954df8f73a4ecec48417c2fec643f9e15d1d41b51f955f2422a69a2a8f73b6154881e6f6721f8e73a80efa5bfb1717", + "cd41ad000e15e9b261e52b459bf79c7f7ffeb281629fba3c986c08b90a058abf76799dc72e430a1df8b64641cc2e03339ebb37fe7eabced490f77b58b3dcf492f981687036dcb94328cd9ad9f4e489de5d06bbd3671a9bf1", + "21233d332c3fa9b056520c06fe55aa388773ee12ae893395df1d75c4932b54a5d679637d33930f2f8afa22be2fb4b1fd36a6c83b51057611c8119bd8cdb1efd8ee7063d5f13c09d2f8e5f8888eda3ece738e34f667aee451b9", + "86418350d07d8f9d8b7e1190eb13634dc0a59f267730afe9409cecab0ac4f57feacaee8dec7321b8512991d51d4fe3b7cc2cbb5e6728ba115f022087606d15b39810032b3945e052574c7464c2b2434b2a54a801991d093f9390", + "5501bfd8c7b1784515a192c0db6516b1fda893702ed45db7a5c07b32b3d9d41f396f9ed61cc4f9a143d4b4ab16c9f6975ee0a8851c62f80ddd4fdfef6c9f6f27c130a13109cd20779e4bab78200129900ecedae564c790153d2227", + "7d45d142bdeff8e1b941537dab8685697988e60cd0ca0926dacc9a227de9f33e0dca5c7c17bcb3f3d3a1f39c4999313786933cb931c725b6359a1b10e31b77cd30f28e3bd4ebe898ef0ae1ee5e3a28a911fdc3759d04929c74321a9d", + "36f11d276af5958a737c5f457ae997455025cde0503ecf1431ea68b6567530cf3abeee2391c1c549fd3bb274120b0613828839ae74b6a071ee9d29b6247ca6a8a1cd2195d24c6215f58be04e197b541828b99e3a71d0991be8245303ad", + "efe64e5b4341239a2e60d342b89a302c2b8cbd45a33a5301936a051f69dd1644164bf7e24d269d341285a2c22aaa93517b1e9ae6a3d6b18961d4b1f58b357a113a12e9c6519ce7533f602b026dbd885c0584f21e099e74516d5db197dec0", + "e5d90cf622738f73973fc448b7be40b044fac3dfc65d36db47f3fa9d01d41fb9808ad83e51729c0c2c35cc08226fbcd20a988ea24bb8373991e702c911d1764b309eda4d1500592ce0fee42fe111e9f9e346734b9e2758194ff9f0713613d1", + "1444dfb0694d36937eb77a0b1f04c2e29e9904d1dcf03cf8d420315c5cb38463f8f3327df5cd34485b0e6db3eefedcd9015f4953a99c125f3ee803c4727c10e0ca943408d82a0c6c1b797a7a3a9e6446df53b8de29894309e81d09a321564b40", + "171e9fb9e3867ac3ae4cbe09884cccb7561c2c0773ea8200c492ac338512f2017bc843b1ae5fb998c7d1f155b01b707f70dcbf68dab56d74a561b5fe7759788b5651a9ab0fe7006d0c096cacbc9ba93736bda0b967b7f1ebfb4c7a032e73f40392", + "db14a6d9c6311aadd73d9fb5b38b654bf306e0ea3880d22a12032971115d22dc38f9bf03ac83a177a0e36be7f710d4a903934601d15911942f11364692d77958be02be75eb6c697e3d963f6ca2c26449272bd05cd3ec41b884a6a97381f57f19d70c", + ] + master_key_hex = "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f4041" + master_key = libnacl.encode.hex_decode(master_key_hex) + salt_hex = "fffefdfcfbfaf9f8f7f6f5f4f3f2f1f0efeeedecebeae9e8e7e6e5e4e3e2e1e0dfdedddcdbdad9d8d7d6d5d4d3d2d1d0cfcecdcccbcac9c8c7c6c5c4c3c2c1c0bfbebdbcbbbab9b8b7b6b5b4b3" + salt = libnacl.encode.hex_decode(salt_hex) + context_hex = "08707172737475767778797a7b7c7d7e7f808182838485868788898a8b8c8d8e8f909192939495969798999a9b9c9d9e9fa0a1a2a3a4a5a6a7a8a9aaabacadaeafb0b1b2b3b4b5b6b7b8b9babbbcbdbebfc0c1c2c3c4c5c6" + context = bytearray().fromhex(context_hex) + + # Test extract + prk = libnacl.crypto_kdf_hkdf_sha512_extract(salt, master_key) + prk_hex = libnacl.encode.hex_encode(prk) + self.assertEqual( + prk_hex, + b"2502bc897dc1b23f9f2d8c35d519c5280ea960bf9154ebb07d377a12a81a4794ea8bdc0cb6ec59ab3303f5cbd713027825715f8af2ac0203e560fd2e55f4ff2b", + ) + + # Test expand + for idx, expected in enumerate(test_cases): + context[0] = idx + context_bytes = bytes(context) + key = libnacl.crypto_kdf_hkdf_sha512_expand(idx, context_bytes, prk) + key_hex = libnacl.encode.hex_encode(key) + self.assertEqual(key_hex, expected.encode())