aead_io/

lib.rs

//! Provides a wrapper around a [`Write`](std::io::Write)/[`Read`](std::io::Read) object and a
//! [`StreamPrimitive`](aead::stream::StreamPrimitive) to provide an easy interface for doing
//! correct encryption.
//!
//! ```
//! # use aead_io::{DecryptBE32BufReader, EncryptBE32BufWriter, ArrayBuffer};
//! # use aead::stream::{Nonce, StreamBE32};
//! # use aead::KeyInit;
//! # use chacha20poly1305::{ChaCha20Poly1305, Key};
//! # use std::io::{Read, Write, Result};
//! # fn main() -> Result<()> {
//! let key = b"my very super super secret key!!".into();
//! let plaintext = b"hello world!";
//!
//! let mut ciphertext = Vec::default();
//! {
//!     let mut writer = EncryptBE32BufWriter::<ChaCha20Poly1305, _, _>::new(
//!         key,
//!         &Default::default(), // please use a better nonce ;)
//!         ArrayBuffer::<128>::new(),
//!         &mut ciphertext,
//!     )
//!     .unwrap();
//!     writer.write_all(plaintext)?;
//!     writer.flush()?;
//! };
//!
//! let mut decrypted = Vec::new();
//! {
//!     let mut reader = DecryptBE32BufReader::<ChaCha20Poly1305, _, _>::new(
//!         key,
//!         ArrayBuffer::<256>::new(),
//!         ciphertext.as_slice(),
//!     )
//!     .unwrap();
//!     let _ = reader.read_to_end(&mut decrypted).unwrap();
//! };
//!
//! assert_eq!(decrypted, plaintext);
//! #
//! # Ok(())
//! # }
//! ```
//!
//! # `no_std`, `array-buffer`
//!
//! This package is compatible with `no_std` environments. Just disable the default features! The
//! std `Vec`, `io::Read` and `io::Write` interfaces are reimplemented internally via
//! the [`Buffer`](aead::Buffer), [`CappedBuffer`](CappedBuffer),
//! [`ResizeBuffer`](ResizeBuffer), [`Write`](Write) and
//! [`Read`](Read) traits accordingly. There should be some default implementations
//! for `Vec<u8>`, byte slices and a no alloc compatible [`ArrayBuffer`](ArrayBuffer)
//! if the `array-buffer` feature is enabled

#![cfg_attr(not(feature = "std"), no_std)]

#[cfg(feature = "alloc")]
extern crate alloc;

#[cfg(feature = "array-buffer")]
mod array_buffer;
mod buffer;
mod error;
mod reader;
mod rw;
mod writer;

pub use aead;

#[cfg(feature = "array-buffer")]
pub use array_buffer::ArrayBuffer;
pub use buffer::{CappedBuffer, ResizeBuffer};
pub use error::{Error, IntoInnerError, InvalidCapacity};
pub use reader::DecryptBufReader;
pub use rw::{Read, Write};
pub use writer::EncryptBufWriter;

use aead::stream::{StreamBE32, StreamLE31};

/// Convenience type for constructing a [`BufWriter`](EncryptBufWriter) with a [`StreamBE32`](StreamBE32)
pub type EncryptBE32BufWriter<A, B, W> = EncryptBufWriter<A, B, W, StreamBE32<A>>;
/// Convenience type for constructing a [`BufWriter`](EncryptBufWriter) with a [`StreamLE31`](StreamLE31)
pub type EncryptLE31BufWriter<A, B, W> = EncryptBufWriter<A, B, W, StreamLE31<A>>;
/// Convenience type for constructing a [`BufReader`](DecryptBufReader) with a [`StreamBE32`](StreamBE32)
pub type DecryptBE32BufReader<A, B, W> = DecryptBufReader<A, B, W, StreamBE32<A>>;
/// Convenience type for constructing a [`BufReader`](DecryptBufReader) with a [`StreamLE31`](StreamLE31)
pub type DecryptLE31BufReader<A, B, W> = DecryptBufReader<A, B, W, StreamLE31<A>>;

#[cfg(feature = "std")]
#[cfg(test)]
mod tests {
    use super::*;
    use aead::generic_array::ArrayLength;
    use aead::stream::{NewStream, Nonce, NonceSize, StreamBE32, StreamPrimitive};
    use aead::{AeadCore, AeadInPlace, Key, KeyInit};
    use chacha20poly1305::ChaCha20Poly1305;
    use core::ops::Sub;
    use std::io::{Read, Write};

    fn encrypt_decrypt<A, S>(plaintext: &[u8])
    where
        A: AeadInPlace + KeyInit + Clone,
        S: StreamPrimitive<A> + NewStream<A>,
        <A as AeadCore>::NonceSize: Sub<S::NonceOverhead>,
        NonceSize<A, S>: ArrayLength<u8>,
    {
        let aead = {
            let mut key = Key::<A>::default();
            key.copy_from_slice(b"my very super super secret key!!");
            A::new(&key)
        };
        let nonce = Nonce::<A, S>::default();

        let mut blob = Vec::default();

        let mut writer = EncryptBufWriter::<A, _, _, S>::from_aead(
            aead.clone(),
            &nonce,
            ArrayBuffer::<128>::new(),
            &mut blob,
        )
        .unwrap();
        writer.write_all(plaintext).unwrap();
        std::io::Write::flush(&mut writer).unwrap();
        drop(writer);

        let mut reader = DecryptBufReader::<A, _, _, S>::from_aead(
            aead,
            ArrayBuffer::<256>::new(),
            blob.as_slice(),
        )
        .unwrap();
        let mut out = Vec::new();
        let _ = reader.read_to_end(&mut out).unwrap();
        assert_eq!(out, plaintext);
    }

    #[test]
    fn short_message() {
        let plaintext = b"hello world!";
        encrypt_decrypt::<ChaCha20Poly1305, StreamBE32<ChaCha20Poly1305>>(plaintext);
        encrypt_decrypt::<ChaCha20Poly1305, StreamLE31<ChaCha20Poly1305>>(plaintext);
    }

    #[test]
    fn long_message() {
        let plaintext = b"Lorem ipsum dolor sit amet, consectetur adipiscing elit. Curabitur eu erat non turpis viverra mollis vel a mauris. Vestibulum luctus justo vitae diam ultrices, eget vehicula velit consectetur. Sed ut sapien odio. Nullam non porttitor augue. Duis euismod, augue sed blandit eleifend, leo enim rhoncus lacus, in efficitur metus massa quis justo. Nunc velit quam, aliquam vitae enim ut, facilisis molestie odio. Phasellus nec euismod nisi, sit amet dignissim arcu. Nullam pulvinar aliquam purus ut aliquet. Sed iaculis, odio in luctus molestie, purus dui vehicula est, sed egestas erat diam sed arcu. Cras venenatis magna vitae tristique mattis.";
        encrypt_decrypt::<ChaCha20Poly1305, StreamBE32<ChaCha20Poly1305>>(plaintext);
        encrypt_decrypt::<ChaCha20Poly1305, StreamLE31<ChaCha20Poly1305>>(plaintext);
    }
}