Merge pull request #603 from Dstack-TEE/issue-553-stable-der

kvinwang · web-flow · commit 01c26b787889 · 2026-03-30T04:04:59.000Z
fix(ra-tls): stabilize derive_dh_secret encoding
diff --git a/ra-tls/src/kdf.rs b/ra-tls/src/kdf.rs
@@ -65,10 +65,29 @@ fn sha256(data: &[u8]) -> [u8; 32] {
     hasher.finalize().into()
 }
 
+/// Returns the canonical PKCS#8 DER encoding of a P-256 key pair.
+///
+/// This uses `p256::SecretKey::to_pkcs8_der()` directly instead of
+/// `rcgen::KeyPair::serialized_der()` to decouple the encoding from the
+/// rcgen library version. The p256 crate produces canonical ASN.1 DER which
+/// is deterministic and identical to rcgen's current output.
+///
+/// This matters because `derive_dh_secret` hashes the PKCS#8 DER bytes
+/// (including the public key) to produce a secret — a historical design
+/// choice that we must preserve for backward compatibility.
+fn p256_keypair_to_pkcs8_der(key_pair: &KeyPair) -> Result<Vec<u8>> {
+    let sk = p256::SecretKey::from_pkcs8_der(key_pair.serialized_der())
+        .context("failed to decode secret key")?;
+    let pkcs8_der = sk
+        .to_pkcs8_der()
+        .context("failed to encode secret key to PKCS#8 DER")?;
+    Ok(pkcs8_der.as_bytes().to_vec())
+}
+
 /// Derives a X25519 secret from a given key pair.
 pub fn derive_dh_secret(from: &KeyPair, context_data: &[&[u8]]) -> Result<[u8; 32]> {
     let key_pair = derive_p256_key_pair(from, context_data)?;
-    let derived_secret = sha256(key_pair.serialized_der());
+    let derived_secret = sha256(&p256_keypair_to_pkcs8_der(&key_pair)?);
     Ok(derived_secret)
 }
 
@@ -95,4 +114,35 @@ mod tests {
         let key = KeyPair::generate_for(&PKCS_ECDSA_P256_SHA256).unwrap();
         let _derived_key = derive_p256_key_pair(&key, &[b"context one"]).unwrap();
     }
+
+    #[test]
+    fn test_derive_dh_secret_stable_output() {
+        // Fixed test vector generated from the original rcgen-based implementation.
+        // If this test fails after a dependency upgrade, the PKCS#8 encoding has
+        // changed and deployed secrets would be silently broken.
+        // Do NOT update the expected value — fix the encoding instead.
+        let root_der = hex::decode(
+            "308187020100301306072a8648ce3d020106082a8648ce3d030107046d306b02\
+             01010420f57527cea4ab7ffb49af99b158cdc0e3ec06398f528349ea236b7d2a\
+             fe19cec1a1440342000491f50522407ce29dce3ed7d31a15d80c1c42f13a2355\
+             2d2b33a0ce09ee11e47bce95936f3e7f80d195f879e28e1b144ef37ac9ab8e36\
+             a690cbf930b775897b27",
+        )
+        .unwrap();
+        let expected_secret = "663afd58820be8ad645f9c035e93199d114ab16f738db62393bc1d7d623e8813";
+
+        let root_key = KeyPair::from_der_and_sign_algo(
+            &PrivateKeyDer::try_from(root_der.as_slice()).unwrap(),
+            &PKCS_ECDSA_P256_SHA256,
+        )
+        .unwrap();
+        let context = [b"context one".as_ref(), b"context two".as_ref()];
+        let secret = derive_dh_secret(&root_key, &context).unwrap();
+
+        assert_eq!(
+            hex::encode(secret),
+            expected_secret,
+            "derive_dh_secret output changed — this would break existing deployments"
+        );
+    }
 }
