enc_file 0.6.3

Password-based file encryption tool with a versioned header, AEAD, Argon2id KDF, and streaming mode. Library + CLI + GUI.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182

use assert_fs::prelude::*;
use ciborium::Value;
use secrecy::SecretString;
use std::fs;

use enc_file::{AeadAlg, EncFileError, EncryptOptions, decrypt_file, encrypt_file_streaming};

/// Build a small streaming ciphertext with the chosen algorithm
fn make_stream_ct(
    alg: AeadAlg,
) -> (
    assert_fs::TempDir,
    std::path::PathBuf,
    SecretString,
    Vec<u8>,
) {
    let td = assert_fs::TempDir::new().unwrap();
    let pw = SecretString::new("pw".to_string().into());
    let input = td.child("in.bin");
    input.write_binary(b"some streaming input").unwrap();

    let ct_path = td.child("ct.enc");
    let opts = EncryptOptions {
        alg,
        stream: true,
        chunk_size: 65536,
        ..Default::default()
    };
    let out = encrypt_file_streaming(input.path(), Some(ct_path.path()), pw.clone(), opts).unwrap();
    let bytes = fs::read(&out).unwrap();
    (td, out, pw, bytes)
}

/// Helper function to safely find and update or insert a key in a CBOR map.
/// This abstracts away the internal Vec structure and makes the code more robust.
fn update_or_insert_map_key(map: &mut Vec<(Value, Value)>, key: Value, new_value: Value) {
    // Try to find and update existing key
    for (k, v) in map.iter_mut() {
        if *k == key {
            *v = new_value;
            return;
        }
    }
    // Key not found, insert new key-value pair
    map.push((key, new_value));
}

/// Helper function to safely find a key in a CBOR map and return mutable reference to its value.
/// This abstracts away the internal Vec structure for better maintainability.
fn find_map_value_mut<'a>(map: &'a mut Vec<(Value, Value)>, key: &Value) -> Option<&'a mut Value> {
    for (k, v) in map.iter_mut() {
        if k == key {
            return Some(v);
        }
    }
    None
}

fn tamper_chunk_size(file_bytes: Vec<u8>, new_chunk: u32) -> Vec<u8> {
    // Use helper functions to adapt to ciborium's Value::Map API, which differs from serde_cbor.
    // These helpers abstract away the Vec operations required by ciborium's map representation.
    // This is necessary due to library differences, not a general code improvement.
    assert!(file_bytes.len() >= 4);
    let mut len_le = [0u8; 4];
    len_le.copy_from_slice(&file_bytes[..4]);
    let header_len = u32::from_le_bytes(len_le) as usize;

    let start = 4;
    let end = 4 + header_len;

    // Parse header as generic CBOR value
    let mut header_val: Value = ciborium::de::from_reader(&file_bytes[start..end]).unwrap();

    // header: Map(Value -> Value) with text keys like "stream", "chunk_size"
    if let Value::Map(ref mut top) = header_val {
        let stream_key = Value::Text("stream".to_string());
        let cs_key = Value::Text("chunk_size".to_string());

        // Use helper function to find stream entry safely
        if let Some(stream_value) = find_map_value_mut(top, &stream_key) {
            if let Value::Map(stream_map) = stream_value {
                // Update chunk_size in existing stream map
                update_or_insert_map_key(stream_map, cs_key, Value::Integer(new_chunk.into()));
            }
        } else {
            // Stream not found, create new stream map with chunk_size
            let stream_map = vec![(cs_key, Value::Integer(new_chunk.into()))];
            update_or_insert_map_key(top, stream_key, Value::Map(stream_map));
        }
    } else {
        panic!("header is not a CBOR map");
    }

    // Re-encode header and rebuild the file
    let mut new_header = Vec::new();
    ciborium::ser::into_writer(&header_val, &mut new_header).unwrap();
    let mut rebuilt = Vec::with_capacity(4 + new_header.len() + (file_bytes.len() - end));
    rebuilt.extend_from_slice(&(new_header.len() as u32).to_le_bytes());
    rebuilt.extend_from_slice(&new_header);
    rebuilt.extend_from_slice(&file_bytes[end..]); // ciphertext unchanged
    rebuilt
}

fn msg_contains_any(msg: &str, needles: &[&str]) -> bool {
    let msg_l = msg.to_lowercase();
    needles.iter().any(|n| msg_l.contains(n))
}

#[test]
fn dec_rejects_zero_chunk_size_in_header_for_both_algs() {
    for alg in [AeadAlg::XChaCha20Poly1305, AeadAlg::Aes256GcmSiv] {
        let (td, _ct_path, pw, bytes) = make_stream_ct(alg);
        let tampered = tamper_chunk_size(bytes, 0); // invalid per validator

        // Write tampered file
        let bad = td.child("bad.enc");
        bad.write_binary(&tampered).unwrap();

        // Decrypt should fail with Invalid
        let out = td.child("out.bin");
        let res = decrypt_file(bad.path(), Some(out.path()), pw.clone());
        match res {
            Err(EncFileError::Invalid(msg)) => {
                // Accept multiple valid phrasings from different implementations
                let ok = msg_contains_any(
                    msg,
                    &[
                        "chunk_size",     // underscore form
                        "chunk size",     // space form
                        "must be > 0",    // explicit lower bound
                        "cannot be zero", // alternate phrasing
                        "zero",           // generic zero mention
                    ],
                );
                assert!(ok, "unexpected Invalid message: {msg}");
            }
            other => panic!("expected Invalid for zero chunk_size, got: {:?}", other),
        }

        td.close().ok();
    }
}

#[test]
fn dec_rejects_too_large_chunk_size_in_header_for_both_algs() {
    const TAG: u32 = 16;
    let too_big = (u32::MAX - TAG) + 1;

    for alg in [AeadAlg::XChaCha20Poly1305, AeadAlg::Aes256GcmSiv] {
        let (td, _ct_path, pw, bytes) = make_stream_ct(alg);
        let tampered = tamper_chunk_size(bytes, too_big); // invalid per validator

        let bad = td.child("bad2.enc");
        bad.write_binary(&tampered).unwrap();

        let out = td.child("out2.bin");
        let res = decrypt_file(bad.path(), Some(out.path()), pw.clone());
        match res {
            Err(EncFileError::Invalid(msg)) => {
                // Accept both underscore/space and explicit 32-bit framing hints
                let ok = msg_contains_any(
                    msg,
                    &[
                        "chunk_size",           // underscore form
                        "chunk size",           // space form
                        "32-bit",               // framing width
                        "too large for 32-bit", // explicit phrasing
                        "too large for frame",  // alternate
                        "frame format",         // generic framing mention
                    ],
                );
                assert!(ok, "unexpected Invalid message: {msg}");
            }
            other => panic!(
                "expected Invalid for oversized chunk_size, got: {:?}",
                other
            ),
        }

        td.close().ok();
    }
}