From 426e6acb7129756aea295c01b56a902d655efa6d Mon Sep 17 00:00:00 2001
From: Lars Wirzenius <liw@liw.fi>
Date: Sat, 29 May 2021 11:39:31 +0300
Subject: feat! drop MAC passphrase, fix key derivation

Previously we were deriving a key that was of the wrong length for the
aead crate. Now we make it the right length.
---
 src/passwords.rs | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/src/passwords.rs b/src/passwords.rs
index b8ca3f5..a1cf42e 100644
--- a/src/passwords.rs
+++ b/src/passwords.rs
@@ -8,18 +8,23 @@ use std::io::prelude::Write;
 use std::os::unix::fs::PermissionsExt;
 use std::path::{Path, PathBuf};
 
+const KEY_LEN: usize = 32; // Only size accepted by aead crate?
+
 #[derive(Debug, Serialize, Deserialize, Clone)]
 pub struct Passwords {
     encryption: String,
-    mac: String,
 }
 
 impl Passwords {
     pub fn new(passphrase: &str) -> Self {
-        Self {
-            encryption: derive_password(passphrase),
-            mac: derive_password(passphrase),
-        }
+        let mut key = derive_password(passphrase);
+        let _ = key.split_off(KEY_LEN);
+        assert_eq!(key.len(), KEY_LEN);
+        Self { encryption: key }
+    }
+
+    pub fn encryption_key(&self) -> &[u8] {
+        self.encryption.as_bytes()
     }
 
     pub fn load(filename: &Path) -> Result<Self, PasswordError> {
-- 
cgit v1.2.1