dcrypt 0.14.0-beta.7

dcrypt is a pure Rust software-only cryptographic library for DePIN Network's Web4 infrastructure framework providing both traditional and post-quantum cryptography. Designed with emphasis on security, modularity, performance, and usability, dcrypt eliminates foreign function interfaces (FFI) ensuring memory safety and cross-platform compatibility.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132

# Stream Ciphers

## Overview

This module provides implementations of stream ciphers, which are symmetric key ciphers that encrypt plaintext one byte at a time using a pseudorandom keystream. The design prioritizes security, correctness, and a type-safe, ergonomic API.

The core implementation, **ChaCha20**, is designed to be constant-time and utilizes secure memory handling to automatically zeroize sensitive state and key material when it goes out of scope.

### Key Features

*   **Security-First:** Uses secure wrappers like `SecretBuffer` and implements `Zeroize` on stateful structs to prevent sensitive data leakage.
*   **Type Safety:** Leverages Rust's type system with generic `Nonce<N>` types and compatibility traits (`ChaCha20Compatible`) to prevent API misuse at compile time.
*   **Stateful Operations:** Provides a full suite of stream cipher operations, including `encrypt`, `decrypt`, direct `keystream` generation, `seek` to arbitrary block positions, and `reset`.
*   **RFC Compliance:** The ChaCha20 implementation is validated against official RFC 8439 test vectors.
*   **`no_std` Compatible:** Suitable for use in embedded and resource-constrained environments (requires an allocator).

---

## Available Ciphers

*   **ChaCha20:** A high-speed, secure stream cipher as specified in [RFC 8439](https://tools.ietf.org/html/rfc8439). It is widely used in protocols like TLS 1.3 and WireGuard.

---

## The `StreamCipher` Trait

A common interface is provided through the `StreamCipher` trait, which defines the core functionality for all stream ciphers in this module.

### Methods

*   `process(&mut self, data: &mut [u8])`: Encrypts or decrypts data in place by XORing it with the keystream. In a stream cipher, these two operations are identical.
*   `keystream(&mut self, output: &mut [u8])`: Generates the raw keystream and writes it directly to the output buffer without requiring any plaintext or ciphertext.
*   `seek(&mut self, block_offset: u64)`: Jumps to a specific block position in the keystream. This is useful for randomly accessing encrypted data without processing the entire stream.
*   `reset(&mut self)`: Resets the cipher to its initial state (counter = 0), allowing it to be reused with the same key and nonce.

---

## ⚠️ Critical Security Warning: Nonce Reuse

The security of all stream ciphers, including ChaCha20, depends critically on the uniqueness of the **nonce** for every message encrypted with the same key.

**NEVER REUSE A (KEY, NONCE) PAIR.**

Reusing a nonce allows an attacker to compute the XOR of the two plaintexts, which can lead to a complete loss of confidentiality. It is the responsibility of the user to ensure nonce uniqueness, for example, by using a counter or a random number generator.

---

## Usage Examples

### Basic Encryption and Decryption

```rust
use dcrypt::algorithms::stream::ChaCha20;
use dcrypt::algorithms::types::Nonce;

// A 32-byte (256-bit) key
let key = [0x42; 32];
// A 12-byte (96-bit) nonce, which must be unique for each message
let nonce_data = [0x24; 12];
let nonce = Nonce::<12>::new(nonce_data);

// Create a new cipher instance
let mut cipher = ChaCha20::new(&key, &nonce);

let mut message = *b"this is a secret message";

// Encrypt the message in place
cipher.encrypt(&mut message);

println!("Ciphertext: {:?}", message);
// Ciphertext will be different from the original plaintext

// To decrypt, reset the cipher to its initial state
cipher.reset();

// Decrypt the message in place
cipher.decrypt(&mut message);

println!("Decrypted: {:?}", String::from_utf8_lossy(&message));
assert_eq!(&message, b"this is a secret message");
```

### Direct Keystream Generation

You can also generate the raw keystream for use in other protocols.

```rust
use dcrypt::algorithms::stream::ChaCha20;
use dcrypt::algorithms::types::Nonce;

let key = [0x01; 32];
let nonce = Nonce::<12>::new([0x02; 12]);
let mut cipher = ChaCha20::new(&key, &nonce);

// Generate 128 bytes of keystream
let mut keystream = [0u8; 128];
cipher.keystream(&mut keystream).unwrap();

// The `keystream` buffer is now filled with the pseudorandom output.
// This is equivalent to encrypting a buffer of 128 zero bytes.
```

### Seeking to a Keystream Position

The `seek` method allows you to jump to a specific block in the keystream without generating all preceding blocks. Each block is 64 bytes long.

```rust
use dcrypt::algorithms::stream::ChaCha20;
use dcrypt::algorithms::types::Nonce;

let key = [0x03; 32];
let nonce = Nonce::<12>::new([0x04; 12]);

// Create two identical cipher instances
let mut cipher1 = ChaCha20::new(&key, &nonce);
let mut cipher2 = ChaCha20::new(&key, &nonce);

// 1. Advance the first cipher by processing 64 bytes of data (1 full block)
let mut data = [0u8; 64];
cipher1.process(&mut data);

// 2. Seek the second cipher to the start of the second block (offset 1)
cipher2.seek(1).unwrap();

// 3. The keystream generated by both ciphers should now be identical
let mut keystream1 = [0u8; 32];
let mut keystream2 = [0u8; 32];
cipher1.keystream(&mut keystream1).unwrap();
cipher2.keystream(&mut keystream2).unwrap();

assert_eq!(keystream1, keystream2);
```