Google Git
Sign in
boringssl/boringssl.git/22e2952cc06d0eb3df168d9ba5de96ba39fddc0d^!/.
commit
22e2952cc06d0eb3df168d9ba5de96ba39fddc0d
[log]
author
xfding <xfding@google.com>
Mon Feb 09 12:09:37 2026 +0000
committer
Boringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com>
Thu Feb 12 14:30:52 2026 -0800
tree
033c3fd892b821ce00f50853fbe9d4e46aa292ad
parent
33f307c903fe1b5bd9c8ecf4ca725df79426aae8 [diff]
rust: Make HPKE layouts more precise and improve documentation

Signed-off-by: Xiangfei Ding <xfding@google.com>
Change-Id: Ib1c3bb28be7b63ebe489cbcd68ca436e6a6a6964
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/89191
Reviewed-by: Adam Langley <agl@google.com>

diff --git a/rust/bssl-crypto/src/hpke.rs b/rust/bssl-crypto/src/hpke.rs
index c3051e0..735e3ab 100644
--- a/rust/bssl-crypto/src/hpke.rs
+++ b/rust/bssl-crypto/src/hpke.rs

@@ -79,6 +79,7 @@
 
 /// Supported KEM algorithms with values detailed in RFC 9180.
 #[derive(Clone, Copy)]
+#[repr(u16)]
 pub enum Kem {
     /// KEM using DHKEM P-256 and HKDF-SHA256.
     P256HkdfSha256 = 16, // 0x0010
@@ -216,19 +217,27 @@
     }
 }
 
-/// Supported KDF algorithms with values detailed in RFC 9180.
+/// Supported KDF algorithms with values detailed in §7.2 of [RFC 9180].
+///
+/// [RFC 9180]: https://datatracker.ietf.org/doc/html/rfc9180#section-7.2
 #[derive(Clone, Copy)]
+#[repr(u16)]
 pub enum Kdf {
-    #[allow(missing_docs)]
+    /// HKDF-SHA256 as defined in [RFC 5869]
+    /// [RFC 5869]: https://datatracker.ietf.org/doc/html/rfc5869
     HkdfSha256 = 1,
 }
 
-/// Supported AEAD algorithms with values detailed in RFC 9180.
+/// Supported AEAD algorithms with values detailed in §7.3 of [RFC 9180].
+///
+/// [RFC 9180]: https://datatracker.ietf.org/doc/html/rfc9180#section-7.3
 #[derive(Clone, Copy)]
-#[allow(missing_docs)]
 pub enum Aead {
+    /// AES-GCM-128 defined by [NIST](https://doi.org/10.6028/nist.sp.800-38d)
     Aes128Gcm = 1,
+    /// AES-GCM-256 defined by [NIST](https://doi.org/10.6028/nist.sp.800-38d)
     Aes256Gcm = 2,
+    /// ChaCha20-Poly1305 defined by [RFC 8439](https://datatracker.ietf.org/doc/html/rfc8439)
     Chacha20Poly1305 = 3,
 }
 
@@ -270,14 +279,14 @@
 impl Params {
     /// New `Params` from KEM, KDF, and AEAD enums.
     pub fn new(kem: Kem, _kdf: Kdf, aead: Aead) -> Self {
-        // Safety: EVP_hpke_hkdf_sha256 just returns pointer to static data.
-        unsafe {
-            Self {
-                kem: kem.as_ffi_ptr(),
-                // Only one KDF is supported thus far.
-                kdf: bssl_sys::EVP_hpke_hkdf_sha256(),
-                aead: aead.as_ffi_ptr(),
-            }
+        Self {
+            kem: kem.as_ffi_ptr(),
+            // Only one KDF is supported thus far.
+            kdf: unsafe {
+                // Safety: EVP_hpke_hkdf_sha256 just returns pointer to static data.
+                bssl_sys::EVP_hpke_hkdf_sha256()
+            },
+            aead: aead.as_ffi_ptr(),
         }
     }