wbond
commented
2 years ago Sorry that I missed this earlier. Could you rebase on master so we can try and get all of the CI jobs to run? For some reason only a couple did.
Closed geitda closed 2 years ago
wbond
commented
2 years ago Sorry that I missed this earlier. Could you rebase on master so we can try and get all of the CI jobs to run? For some reason only a couple did.
wbond
commented
2 years ago Awesome, thank you for this enhancement!
Add a new KDF algorithm type for scrypt. Field names are pulled exactly from RFC7914. Added some logic (but no direct tests for it) in
EncryptionAlgorithm.kdf_hmacandEncryptionAlgorithm.kdf_iterationsto returnNoneas scrypt has no concept of those, but as it has both asaltand (optional)key_lengthparameter,EncryptionAlgorithm.kdf_saltandEncryptionAlgorithm.key_lengthcan be left as-is. I created a test case modeled after the ccmparameters test - it loads an entireEncryptionAlgorithmbut only tests theKdfAlgorithmpart we're interested in. Again, additional tests for the `kdf*andkey_lengthproperties may be prudent. Creating other files to test with is easy usingopenssl pkcs8 -scryptand any of the optional switches that go with that (-scrypt_N N,-scrypt_r r, or-scrypt_p p`)