Skip to content

switch hkdf to use RustCrypto hdkf and sha2 #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
michaelx11 merged 4 commits into from
Feb 7, 2023
Merged

switch hkdf to use RustCrypto hdkf and sha2 #3

michaelx11 merged 4 commits into from
Feb 7, 2023

Conversation

@michaelx11
Copy link
Contributor

@michaelx11 michaelx11 commented Feb 7, 2023

Goal

@jazzz made the excellent suggestion to use RustCrypto libraries. NCC has audited most of their repos and:

  1. they're implemented in pure Rust => much easier toolchain down the line
  2. no-std support => better WASM support

I also think the APIs are simpler than ring

Changes

Swap out the Keystore::hkdf implementation to use RustCrypto's hkdf and sha2 crates. Confirm tests still pass.

Tests

Unit test vectors for hkdf still pass

@michaelx11 michaelx11 requested a review from jazzz February 7, 2023 19:59
jazzz
jazzz approved these changes Feb 7, 2023
View reviewed changes
crates/xmtp-keystore/src/lib.rs Outdated
} else {
Err(ring::error::Unspecified)
fn hkdf(secret: &[u8], salt: &[u8]) -> Result<[u8; 32], String> {
let hk = Hkdf::<Sha256>::new(Some(&salt[..]), &secret);
Copy link
Contributor

@jazzz jazzz Feb 7, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is the range operator needed here on salt?

jazzz
jazzz reviewed Feb 7, 2023
View reviewed changes
Michael Xu and others added 2 commits February 7, 2023 12:58
@jazzz
Update crates/xmtp-keystore/Cargo.toml
a347091 
Co-authored-by: Jazz Turner-Baggs <473256+jazzz@users.noreply.github.com>
fix: no need for range operator on salt
698a93d
@michaelx11 michaelx11 merged commit 8b25bfa into main Feb 7, 2023
@jazzz jazzz deleted the switch-to-rust-crypto-library branch April 26, 2023 15:51
This was referenced Oct 2, 2025
Merged
Closed
Closed
Closed
Closed
Closed
Closed
This was referenced Oct 10, 2025
Closed
Closed
Closed
Closed
Closed
Closed
This was referenced Oct 20, 2025
Merged
Merged
Merged
Merged
Draft
Merged
Merged
Closed
This was referenced Nov 12, 2025
Merged
Merged
Merged
Open
Merged
Merged
Closed
Merged
Merged
This was referenced Nov 21, 2025
Closed
Merged
Open
Merged
Merged
Open
This was referenced Dec 2, 2025
Merged
Merged
Merged
Merged
Open
Merged
Merged
This was referenced Dec 9, 2025
Merged
Merged
Merged
Closed
Merged
This was referenced Dec 17, 2025
Merged
Merged
@claude claude bot mentioned this pull request Jan 8, 2026
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@jazzz jazzz jazzz approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@michaelx11 @jazzz