km
c9844dc0ba
鍵導出チェーン (KDF): - wg_kdf_init(): 初期化(ゼロ鍵) - wg_kdf1(): IKM -> CK1, TK1(最初の導出) - wg_kdf2(): CK, TK1 -> CK2, TK2(2 番目の導出) - wg_kdf3(): CK, TK2, data -> CK3(データ混合) ハンドシェイクメッセージ構造: - wg_handshake_init (148 bytes): Initiation message - wg_handshake_resp (92 bytes): Response message - wg_cookie_reply (64 bytes): Cookie reply 実装詳細: - RFC 5861 HKDF ベース - WireGuard 固有ラベル (K1, K2, K3) - チェーン鍵 (Ck) とセッション鍵 (tk) の導出 テスト: - tests/test_wireguard_kdf.c (5/5 PASS) - 完全なハンドシェイクチェーンシミュレーション
54 lines
1.4 KiB
Makefile
54 lines
1.4 KiB
Makefile
# SE050 WireGuard Makefile
|
|
CC = gcc
|
|
AR = ar
|
|
CFLAGS = -Wall -Wextra -std=c11 -I include
|
|
LDFLAGS =
|
|
|
|
SRCS = src/se050_i2c_hal.c src/se050_session.c src/se050_keystore.c \
|
|
src/se050_rng.c src/se050_x25519.c src/se050_x25519_sw.c \
|
|
src/se050_chacha20_poly1305.c src/se050_blake2s.c \
|
|
src/se050_hmac_blake2s.c src/se050_hkdf_blake2s.c src/se050_tai64n.c \
|
|
src/se050_scp03.c src/se050_scp03_keys.c src/se050_wireguard_proto.c
|
|
|
|
OBJS = $(SRCS:.c=.o)
|
|
LIB = libse050_wireguard.a
|
|
|
|
.PHONY: all test clean
|
|
|
|
all: $(LIB) test_blake2s test_hmac_blake2s test_hkdf_blake2s
|
|
|
|
$(LIB): $(OBJS)
|
|
@mkdir -p build
|
|
$(AR) rcs build/$@ $^
|
|
|
|
test_blake2s: src/se050_blake2s.c
|
|
@mkdir -p build
|
|
$(CC) $(CFLAGS) -DBLAKE2S_TEST -o build/$@ $<
|
|
|
|
test_hmac_blake2s: tests/test_hmac_hkdf.c $(LIB)
|
|
@mkdir -p build
|
|
$(CC) $(CFLAGS) -o build/$@ $< build/$(LIB)
|
|
|
|
test_hkdf_blake2s: tests/test_hmac_hkdf.c $(LIB)
|
|
@mkdir -p build
|
|
$(CC) $(CFLAGS) -DHKDF_TEST -o build/$@ $< build/$(LIB)
|
|
|
|
test: all
|
|
@./build/test_blake2s
|
|
@./build/test_hmac_blake2s
|
|
@./build/test_hkdf_blake2s
|
|
|
|
clean:
|
|
rm -rf build *.o src/*.o tests/*.o
|
|
|
|
# WireGuard protocol test
|
|
test_wireguard_kdf: tests/test_wireguard_kdf.c $(LIB)
|
|
@mkdir -p build
|
|
$(CC) $(CFLAGS) -o build/$@ $< build/$(LIB)
|
|
|
|
test: all test_wireguard_kdf
|
|
@./build/test_blake2s
|
|
@./build/test_hmac_blake2s
|
|
@./build/test_hkdf_blake2s
|
|
@./build/test_wireguard_kdf
|