culper-lib 0.1.0

library of common code for culper & culper-server
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124

use base64::{decode, encode};
use failure::*;

#[derive(Debug)]
#[allow(non_camel_case_types)]
pub enum EncryptionFormat {
    GPG_KEY,
}

impl EncryptionFormat {
    pub fn as_str(&self) -> String {
        match *self {
            EncryptionFormat::GPG_KEY => String::from("GPG_KEY"),
        }
    }
    pub fn from_str(value: &str) -> Result<EncryptionFormat, failure::Error> {
        match value {
            "GPG_KEY" => Ok(EncryptionFormat::GPG_KEY),
            _ => Err(format_err!("Unknown encryption format given: {}", value).into()),
        }
    }
}

pub struct UnsealedVault {
    pub plain_secret: String,
    pub format: EncryptionFormat,
}

pub trait SealableVault {
    fn seal<F>(self, f: &F) -> Result<SealedVault, failure::Error>
    where
        F: Fn(UnsealedVault) -> Result<SealedVault, failure::Error>;
}

impl UnsealedVault {
    pub fn new(plain_secret: String, format: EncryptionFormat) -> UnsealedVault {
        UnsealedVault {
            plain_secret,
            format,
        }
    }
}

impl SealableVault for UnsealedVault {
    fn seal<F>(self, f: &F) -> Result<SealedVault, failure::Error>
    where
        F: Fn(UnsealedVault) -> Result<SealedVault, failure::Error>,
    {
        f(self)
    }
}

pub struct SealedVault {
    pub secret: Vec<u8>,
    pub format: EncryptionFormat,
}

pub trait OpenableVault {
    fn unseal<F>(self, f: &F) -> Result<UnsealedVault, failure::Error>
    where
        F: Fn(SealedVault) -> Result<UnsealedVault, failure::Error>;
    fn to_string(&self) -> String;
}

impl SealedVault {
    pub fn new(secret: Vec<u8>, format: EncryptionFormat) -> SealedVault {
        SealedVault { secret, format }
    }
}

impl OpenableVault for SealedVault {
    fn unseal<F>(self, f: &F) -> Result<UnsealedVault, failure::Error>
    where
        F: Fn(SealedVault) -> Result<UnsealedVault, failure::Error>,
    {
        f(self)
    }

    fn to_string(&self) -> String {
        format!("CULPER.{}.{}", self.format.as_str(), encode(&self.secret),)
    }
}

pub trait VaultHandler {
    fn encrypt(&self, u: UnsealedVault) -> Result<SealedVault, failure::Error>;
    fn decrypt(&self, s: SealedVault) -> Result<UnsealedVault, failure::Error>;
}

pub fn parse(value: &str) -> Result<SealedVault, failure::Error> {
    let value_list: Vec<&str> = value.split('.').collect();
    match value_list.as_slice() {
        ["CULPER", encryption_format, secret_bytes] => Ok(SealedVault::new(
            decode(secret_bytes).context("Failed to decode base64 payload")?,
            EncryptionFormat::from_str(&encryption_format.to_string())?,
        )),
        _ => Err(format_err!("Could not parse string into Culper vault.")),
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn can_encrypt() {
        let nuclear_codes =
            UnsealedVault::new("zerozerozerozero".to_string(), EncryptionFormat::GPG_KEY);
        let secret_nuclear_codes = nuclear_codes
            .seal(&|vault: UnsealedVault| {
                let secret = vault.plain_secret.chars().map(|c| match c {
                    'A'...'M' | 'a'...'m' => ((c as u8) + 13),
                    'N'...'Z' | 'n'...'z' => ((c as u8) - 13),
                    _ => c as u8,
                });

                Ok(SealedVault::new(secret.collect(), vault.format))
            })
            .unwrap();
        assert_eq!(
            "mrebmrebmrebmreb",
            String::from_utf8(secret_nuclear_codes.secret).unwrap()
        );
    }
}