anubis-wormhole 1.0.0

A post-quantum secure file transfer tool based on the Magic Wormhole protocol.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44

use crate::error::{AnubisError, Result};
use crate::traits::Aead as AeadTrait;
use aes_gcm_siv::aead::{Aead, KeyInit, Payload};
use aes_gcm_siv::{Aes256GcmSiv, Key, Nonce};

pub type Key32 = [u8; 32];
pub type Nonce96 = [u8; 12];

#[derive(Clone, Copy, Debug)]
pub struct Aes256GcmSivProvider;

impl AeadTrait for Aes256GcmSivProvider {
    type Key = Key32;
    type Nonce = Nonce96;

    fn seal(
        &self,
        key: &Self::Key,
        nonce: &Self::Nonce,
        aad: &[u8],
        plaintext: &[u8],
    ) -> Result<Vec<u8>> {
        let cipher = Aes256GcmSiv::new(Key::<Aes256GcmSiv>::from_slice(key));
        let n = Nonce::from_slice(nonce);
        cipher
            .encrypt(n, Payload { msg: plaintext, aad })
            .map_err(|_| AnubisError::DecryptFailed)
    }

    fn open(
        &self,
        key: &Self::Key,
        nonce: &Self::Nonce,
        aad: &[u8],
        ciphertext: &[u8],
    ) -> Result<Vec<u8>> {
        let cipher = Aes256GcmSiv::new(Key::<Aes256GcmSiv>::from_slice(key));
        let n = Nonce::from_slice(nonce);
        cipher
            .decrypt(n, Payload { msg: ciphertext, aad })
            .map_err(|_| AnubisError::DecryptFailed)
    }
}