refactor: Enhance encryption handling by defining constants for AES block length and HKDF salt length, and update decryption methods to use these constants.

DennisDyallo · DennisDyallo · commit ca5812cef5e9 · 2025-11-28T17:31:17.000+01:00
diff --git a/Yubico.YubiKey/src/Yubico/YubiKey/Fido2/AuthenticatorInfo.cs b/Yubico.YubiKey/src/Yubico/YubiKey/Fido2/AuthenticatorInfo.cs
@@ -80,6 +80,26 @@ public class AuthenticatorInfo
         /// </summary>
         public const int DefaultMinimumPinLength = 4;
 
+        /// <summary>
+        /// The length of the IV and ciphertext blocks used in AES-128-CBC encryption for encrypted fields.
+        /// </summary>
+        private const int AesBlockLength = 16;
+
+        /// <summary>
+        /// The length of the salt used in HKDF key derivation for encrypted fields.
+        /// </summary>
+        private const int HkdfSaltLength = 32;
+
+        /// <summary>
+        /// The HKDF info string used to derive the decryption key for the encrypted identifier.
+        /// </summary>
+        private static ReadOnlySpan<byte> HkdfInfoEncIdentifier => "encIdentifier"u8;
+
+        /// <summary>
+        /// The HKDF info string used to derive the decryption key for the encrypted credential store state.
+        /// </summary>
+        private static ReadOnlySpan<byte> HkdfInfoEncCredStoreState => "encCredStoreState"u8;
+
         /// <summary>
         /// The string in the <see cref="Versions"/> property that indicates
         /// FIDO U2F.
@@ -598,7 +618,7 @@ List<PinUvAuthProtocol> ParsePinUvAuthProtocols(CborMap<int> cborMap)
         /// The decrypted identifier as a read-only memory block of bytes, or null if the encrypted identifier is not set.
         /// </returns>
         public ReadOnlyMemory<byte>? GetIdentifier(ReadOnlyMemory<byte> persistentUvAuthToken) =>
-            DecryptEncryptedField(EncIdentifier, persistentUvAuthToken, "encIdentifier"u8);
+            DecryptEncryptedField(EncIdentifier, persistentUvAuthToken, HkdfInfoEncIdentifier);
 
         /// <summary>
         /// Retrieves the credential store state derived from the encrypted credential store state, using the provided persistent UV authentication token.
@@ -610,7 +630,7 @@ List<PinUvAuthProtocol> ParsePinUvAuthProtocols(CborMap<int> cborMap)
         /// The decrypted credential store state as a read-only memory block of bytes, or null if the encrypted credential store state is not set.
         /// </returns>
         public ReadOnlyMemory<byte>? GetCredStoreState(ReadOnlyMemory<byte> persistentPinUvAuthToken) =>
-            DecryptEncryptedField(EncCredStoreState, persistentPinUvAuthToken, "encCredStoreState"u8);
+            DecryptEncryptedField(EncCredStoreState, persistentPinUvAuthToken, HkdfInfoEncCredStoreState);
 
         /// <summary>
         /// Decrypts an encrypted field using the provided persistent PIN/UV authentication token.
@@ -650,13 +670,13 @@ List<PinUvAuthProtocol> ParsePinUvAuthProtocols(CborMap<int> cborMap)
                 return null;
             }
 
-            Span<byte> iv = stackalloc byte[16];
-            Span<byte> ct = stackalloc byte[16];
-            Span<byte> salt = stackalloc byte[32];
-            encryptedData.Value.Span[..16].CopyTo(iv);
-            encryptedData.Value.Span[16..].CopyTo(ct);
+            Span<byte> iv = stackalloc byte[AesBlockLength];
+            Span<byte> ct = stackalloc byte[AesBlockLength];
+            Span<byte> salt = stackalloc byte[HkdfSaltLength];
+            encryptedData.Value.Span[..AesBlockLength].CopyTo(iv);
+            encryptedData.Value.Span[AesBlockLength..].CopyTo(ct);
 
-            var key = HkdfUtilities.DeriveKey(persistentPinUvAuthToken.Span, salt, hkdfInfo, 16);
+            var key = HkdfUtilities.DeriveKey(persistentPinUvAuthToken.Span, salt, hkdfInfo, AesBlockLength);
             var decrypted = AesUtilities.AesCbcDecrypt(key.Span, iv, ct);
             CryptographicOperations.ZeroMemory(key.Span);
 
