dcrypt-pke 1.2.3

Public Key Encryption schemes for the dcrypt library
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158

//! Tests for ECIES P-192

use super::*; // Import from parent mod (p192/mod.rs)
use dcrypt_api::traits::Pke; // The main PKE trait
use rand::rngs::OsRng;

#[test]
fn test_ecies_p192_keypair_generation() {
    let mut rng = OsRng;
    let keypair_result = EciesP192::keypair(&mut rng);
    assert!(
        keypair_result.is_ok(),
        "Keypair generation failed: {:?}",
        keypair_result.err()
    );
    if let Ok((pk, sk)) = keypair_result {
        assert_eq!(pk.as_ref().len(), ec::P192_POINT_UNCOMPRESSED_SIZE);
        assert_eq!(sk.as_ref().len(), ec::P192_SCALAR_SIZE);
    }
}

#[test]
fn test_ecies_p192_encrypt_decrypt_roundtrip_no_aad() {
    let mut rng = OsRng;
    let (pk_recipient, sk_recipient) =
        EciesP192::keypair(&mut rng).expect("Keypair generation failed");

    let plaintext = b"This is a secret message for ECIES P-192!";
    let aad: Option<&[u8]> = None;

    // Encrypt
    let ciphertext_result = EciesP192::encrypt(&pk_recipient, plaintext, aad, &mut rng);
    assert!(
        ciphertext_result.is_ok(),
        "Encryption failed: {:?}",
        ciphertext_result.err()
    );
    let ciphertext = ciphertext_result.unwrap();

    // Decrypt
    let decrypted_result = EciesP192::decrypt(&sk_recipient, &ciphertext, aad);
    assert!(
        decrypted_result.is_ok(),
        "Decryption failed: {:?}",
        decrypted_result.err()
    );
    let decrypted_plaintext = decrypted_result.unwrap();

    assert_eq!(plaintext, decrypted_plaintext.as_slice());
}

#[test]
fn test_ecies_p192_encrypt_decrypt_roundtrip_with_aad() {
    let mut rng = OsRng;
    let (pk_recipient, sk_recipient) =
        EciesP192::keypair(&mut rng).expect("Keypair generation failed");

    let plaintext = b"Another secret message for ECIES P-192 with AAD.";
    let aad = Some(b"Authenticated Associated Data".as_slice());

    // Encrypt
    let ciphertext =
        EciesP192::encrypt(&pk_recipient, plaintext, aad, &mut rng).expect("Encryption failed");

    // Decrypt
    let decrypted_plaintext =
        EciesP192::decrypt(&sk_recipient, &ciphertext, aad).expect("Decryption failed");

    assert_eq!(plaintext, decrypted_plaintext.as_slice());
}

#[test]
fn test_ecies_p192_decrypt_wrong_key() {
    let mut rng = OsRng;
    let (pk_recipient1, _sk_recipient1) =
        EciesP192::keypair(&mut rng).expect("Keypair 1 generation failed");
    let (_pk_recipient2, sk_recipient2) =
        EciesP192::keypair(&mut rng).expect("Keypair 2 generation failed"); // Wrong key

    let plaintext = b"Message for recipient 1.";
    let aad: Option<&[u8]> = None;

    // Encrypt for recipient 1
    let ciphertext =
        EciesP192::encrypt(&pk_recipient1, plaintext, aad, &mut rng).expect("Encryption failed");

    // Try to decrypt with recipient 2's key (should fail)
    let decrypted_result = EciesP192::decrypt(&sk_recipient2, &ciphertext, aad);
    assert!(
        decrypted_result.is_err(),
        "Decryption with wrong key should fail"
    );
    if let Err(ApiError::DecryptionFailed { context, .. }) = decrypted_result {
        assert!(context.contains("ECIES Decryption"));
    } else {
        panic!(
            "Expected DecryptionFailed error, got {:?}",
            decrypted_result
        );
    }
}

#[test]
fn test_ecies_p192_decrypt_tampered_ciphertext() {
    let mut rng = OsRng;
    let (pk_recipient, sk_recipient) =
        EciesP192::keypair(&mut rng).expect("Keypair generation failed");

    let plaintext = b"Message to be tampered.";
    let aad: Option<&[u8]> = None;

    let mut ciphertext =
        EciesP192::encrypt(&pk_recipient, plaintext, aad, &mut rng).expect("Encryption failed");

    // Tamper with the ciphertext (e.g., flip a bit in the AEAD part)
    if ciphertext.len() > ec::P192_POINT_UNCOMPRESSED_SIZE + CHACHA20POLY1305_NONCE_LEN + 5 {
        // Ensure we are past headers
        let target_index = ec::P192_POINT_UNCOMPRESSED_SIZE + CHACHA20POLY1305_NONCE_LEN + 4 + 1; // after R, N, CT_len, first byte of C
        if target_index < ciphertext.len() {
            ciphertext[target_index] ^= 0xff;
        }
    }

    let decrypted_result = EciesP192::decrypt(&sk_recipient, &ciphertext, aad);
    assert!(
        decrypted_result.is_err(),
        "Decryption of tampered ciphertext should fail"
    );
    if let Err(ApiError::DecryptionFailed { context, .. }) = decrypted_result {
        assert!(context.contains("AEAD authentication failed"));
    } else {
        panic!(
            "Expected DecryptionFailed (AEAD) error, got {:?}",
            decrypted_result
        );
    }
}

#[test]
fn test_ecies_p192_decrypt_wrong_aad() {
    let mut rng = OsRng;
    let (pk_recipient, sk_recipient) =
        EciesP192::keypair(&mut rng).expect("Keypair generation failed");

    let plaintext = b"Message with specific AAD.";
    let aad_encrypt = Some(b"Correct AAD".as_slice());
    let aad_decrypt = Some(b"Incorrect AAD".as_slice());

    let ciphertext = EciesP192::encrypt(&pk_recipient, plaintext, aad_encrypt, &mut rng)
        .expect("Encryption failed");

    // Try to decrypt with wrong AAD (should fail)
    let decrypted_result = EciesP192::decrypt(&sk_recipient, &ciphertext, aad_decrypt);
    assert!(
        decrypted_result.is_err(),
        "Decryption with wrong AAD should fail"
    );
}