bc-envelope 0.43.0

Gordian Envelope for Rust.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258

#![cfg(all(feature = "signature", feature = "recipient"))]

//! # Envelope Sealing and Unsealing
//!
//! This module provides convenience functions for combining signing and
//! encryption operations in a single step, creating secure, authenticated
//! envelopes.
//!
//! ## Sealing
//!
//! Sealing an envelope:
//! 1. Signs the envelope with the sender's private key
//! 2. Encrypts the signed envelope to the recipient's public key
//!
//! This creates a secure container where:
//! - The recipient can verify who sent the envelope (authentication)
//! - Only the intended recipient can decrypt the content (confidentiality)
//! - The signature ensures the content hasn't been modified (integrity)
//!
//! ## Unsealing
//!
//! Unsealing performs these operations in reverse:
//! 1. Decrypts the envelope using the recipient's private key
//! 2. Verifies the signature using the sender's public key

use bc_components::{Decrypter, Encrypter, Signer, SigningOptions, Verifier};

use crate::{Envelope, Result};

impl Envelope {
    /// Seals an envelope by signing it with the sender's key and then
    /// encrypting it to the recipient.
    ///
    /// This is a convenience method that combines signing and encryption in one
    /// step.
    ///
    /// # Arguments
    ///
    /// * `sender` - The private key used to sign the envelope
    /// * `recipient` - The public key used to encrypt the envelope
    ///
    /// # Returns
    ///
    /// A new envelope that has been signed and encrypted
    ///
    /// # Example
    ///
    /// ```
    /// # #[cfg(all(feature = "signature", feature = "recipient"))]
    /// # {
    /// use bc_components::{EncapsulationScheme, SignatureScheme};
    /// use bc_envelope::prelude::*;
    ///
    /// // Create an envelope
    /// let envelope = Envelope::new("Confidential message");
    ///
    /// // Generate keys for sender and recipient using specific schemes
    /// let (sender_private, _) = SignatureScheme::Ed25519.keypair();
    /// let (_, recipient_public) = EncapsulationScheme::X25519.keypair();
    ///
    /// // Seal the envelope
    /// let sealed_envelope = envelope.seal(&sender_private, &recipient_public);
    /// # }
    /// ```
    pub fn seal(
        &self,
        sender: &dyn Signer,
        recipient: &dyn Encrypter,
    ) -> Envelope {
        self.sign(sender).encrypt_to_recipient(recipient)
    }

    /// Seals an envelope by signing it with the sender's key and then
    /// encrypting it to the recipient, with optional signing options.
    ///
    /// This is a convenience method that combines signing and encryption in one
    /// step.
    ///
    /// # Arguments
    ///
    /// * `sender` - The private key used to sign the envelope
    /// * `recipient` - The public key used to encrypt the envelope
    /// * `options` - Optional signing options to control how the signature is
    ///   created
    ///
    /// # Returns
    ///
    /// A new envelope that has been signed and encrypted
    ///
    /// # Example
    ///
    /// ```
    /// # #[cfg(all(feature = "signature", feature = "recipient"))]
    /// # fn main() -> Result<(), bc_envelope::Error> {
    /// use bc_components::{EncapsulationScheme, SignatureScheme, SigningOptions};
    /// use bc_envelope::prelude::*;
    ///
    /// // Create an envelope
    /// let envelope = Envelope::new("Confidential message");
    ///
    /// // Generate keys for sender and recipient using specific schemes
    /// let (sender_private, _) = SignatureScheme::Ed25519.keypair();
    /// let (_, recipient_public) = EncapsulationScheme::X25519.keypair();
    ///
    /// // Create signing options for SSH
    /// let options = SigningOptions::Ssh {
    ///     namespace: "test".to_string(),
    ///     hash_alg: ssh_key::HashAlg::Sha512,
    /// };
    ///
    /// // Seal the envelope with options
    /// let sealed_envelope =
    ///     envelope.seal_opt(&sender_private, &recipient_public, Some(options));
    /// # Ok(())
    /// # }
    /// ```
    pub fn seal_opt(
        &self,
        sender: &dyn Signer,
        recipient: &dyn Encrypter,
        options: Option<SigningOptions>,
    ) -> Envelope {
        self.sign_opt(sender, options)
            .encrypt_to_recipient(recipient)
    }

    /// Unseals an envelope by decrypting it with the recipient's private key
    /// and then verifying the signature using the sender's public key.
    ///
    /// This is a convenience method that combines decryption and signature
    /// verification in one step.
    ///
    /// # Arguments
    ///
    /// * `sender` - The public key used to verify the signature
    /// * `recipient` - The private key used to decrypt the envelope
    ///
    /// # Returns
    ///
    /// A Result containing the unsealed envelope if successful, or an error if
    /// decryption or signature verification fails
    ///
    /// # Example
    ///
    /// ```
    /// # #[cfg(all(feature = "signature", feature = "recipient"))]
    /// # fn main() -> Result<(), bc_envelope::Error> {
    /// use bc_components::{EncapsulationScheme, SignatureScheme};
    /// use bc_envelope::prelude::*;
    ///
    /// // Create an envelope
    /// let envelope = Envelope::new("Confidential message");
    ///
    /// // Generate keys for sender and recipient using specific schemes
    /// let (sender_private, sender_public) = SignatureScheme::Ed25519.keypair();
    /// let (recipient_private, recipient_public) =
    ///     EncapsulationScheme::X25519.keypair();
    ///
    /// // Seal the envelope
    /// let sealed_envelope = envelope.seal(&sender_private, &recipient_public);
    ///
    /// // Unseal the envelope using the recipient's private key
    /// let unsealed_envelope =
    ///     sealed_envelope.unseal(&sender_public, &recipient_private)?;
    ///
    /// // Verify we got back the original message
    /// let message: String = unsealed_envelope.extract_subject()?;
    /// assert_eq!(message, "Confidential message");
    /// # Ok(())
    /// # }
    /// ```
    pub fn unseal(
        &self,
        sender: &dyn Verifier,
        recipient: &dyn Decrypter,
    ) -> Result<Envelope> {
        self.decrypt_to_recipient(recipient)?.verify(sender)
    }
}

#[cfg(all(test, feature = "signature", feature = "recipient"))]
mod tests {
    use bc_components::{EncapsulationScheme, SignatureScheme, SigningOptions};

    use super::*;
    use crate::Result;

    #[test]
    fn test_seal_and_unseal() -> Result<()> {
        // Create a test envelope

        let message = "Top secret message";
        let original_envelope = Envelope::new(message);

        // Generate keys for sender and recipient using established schemes
        let (sender_private, sender_public) =
            SignatureScheme::Ed25519.keypair();
        let (recipient_private, recipient_public) =
            EncapsulationScheme::X25519.keypair();

        // Step 1: Seal the envelope
        let sealed_envelope =
            original_envelope.seal(&sender_private, &recipient_public);

        // Verify the envelope is encrypted
        assert!(sealed_envelope.is_subject_encrypted());

        // Step 2: Unseal the envelope
        let unsealed_envelope =
            sealed_envelope.unseal(&sender_public, &recipient_private)?;

        // Verify we got back the original message
        let extracted_message: String = unsealed_envelope.extract_subject()?;
        assert_eq!(extracted_message, message);

        Ok(())
    }

    #[test]
    #[cfg(all(feature = "signature", feature = "recipient"))]
    fn test_seal_opt_with_options() -> Result<()> {
        // Create a test envelope
        let message = "Confidential data";
        let original_envelope = Envelope::new(message);

        // Generate keys for sender and recipient
        let (sender_private, sender_public) =
            SignatureScheme::Ed25519.keypair();
        let (recipient_private, recipient_public) =
            EncapsulationScheme::X25519.keypair();

        // Create signing options
        let options = SigningOptions::Ssh {
            namespace: "test".to_string(),
            hash_alg: ssh_key::HashAlg::Sha512,
        };

        // Seal the envelope with options
        let sealed_envelope = original_envelope.seal_opt(
            &sender_private,
            &recipient_public,
            Some(options),
        );

        // Verify the envelope is encrypted
        assert!(sealed_envelope.is_subject_encrypted());

        // Unseal the envelope
        let unsealed_envelope =
            sealed_envelope.unseal(&sender_public, &recipient_private)?;

        // Verify we got back the original message
        let extracted_message: String = unsealed_envelope.extract_subject()?;
        assert_eq!(extracted_message, message);

        Ok(())
    }
}