1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126

use ::std::fmt;

use ::lazy_static::lazy_static;
use ::semver::Version;

use crate::util::version::get_current_version;
use crate::util::FedResult;
use std::fmt::Formatter;

#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum Verbosity {
    Quiet,
    Normal,
    Debug,
}

impl Default for Verbosity {
    fn default() -> Self {
        Verbosity::Normal
    }
}

impl Verbosity {
    pub fn debug(self) -> bool {
        Verbosity::Debug == self
    }

    pub fn quiet(self) -> bool {
        Verbosity::Quiet == self
    }
}

#[derive(Debug, Clone, Hash, PartialEq, Eq)]
pub enum CompressionAlg {
    Brotli,
}

impl fmt::Display for CompressionAlg {
    fn fmt(&self, f: &mut Formatter<'_>) -> Result<(), fmt::Error> {
        f.write_str(match self {
            CompressionAlg::Brotli => "brotli",
        })
    }
}

#[derive(Debug, Clone, Hash, PartialEq, Eq)]
pub enum KeyHashAlg {
    BCrypt,
    Argon2i,
    Sha512,
}

impl fmt::Display for KeyHashAlg {
    fn fmt(&self, f: &mut Formatter<'_>) -> Result<(), fmt::Error> {
        f.write_str(match self {
            KeyHashAlg::BCrypt => "bcrypt",
            KeyHashAlg::Argon2i => "argon2i",
            KeyHashAlg::Sha512 => "sha512",
        })
    }
}

#[derive(Debug, Clone, Hash, PartialEq, Eq)]
pub enum SymmetricEncryptionAlg {
    // Aes 256 with Iso7816 padding and cipher block chaining
    Aes256,
    // Twofish with Iso7816 padding and cipher block chaining
    Twofish,
}

impl fmt::Display for SymmetricEncryptionAlg {
    fn fmt(&self, f: &mut Formatter<'_>) -> Result<(), fmt::Error> {
        f.write_str(match self {
            SymmetricEncryptionAlg::Aes256 => "aes256",
            SymmetricEncryptionAlg::Twofish => "twofish",
        })
    }
}

#[derive(Debug, PartialEq, Eq)]
pub struct Strategy {
    pub stretch_count: u64,
    pub compression_algorithm: Option<CompressionAlg>,
    pub key_hash_algorithms: Vec<KeyHashAlg>,
    pub symmetric_algorithms: Vec<SymmetricEncryptionAlg>,
}

lazy_static! {
    static ref STRATEGY_1_0_0: Strategy = Strategy {
        stretch_count: 5,
        compression_algorithm: Some(CompressionAlg::Brotli),
        key_hash_algorithms: vec![KeyHashAlg::BCrypt, KeyHashAlg::Argon2i, KeyHashAlg::Sha512],
        symmetric_algorithms: vec![
            SymmetricEncryptionAlg::Aes256,
            SymmetricEncryptionAlg::Twofish
        ],
    };
}

/// Get the encryption strategy used for a specific code version.
pub fn get_version_strategy(version: &Version, verbose: bool) -> FedResult<&'static Strategy> {
    // This should return the strategy for all old versions - don't delete any, just add new ones!
    if version < &Version::parse("1.0.0").unwrap() {
        return Err(if verbose {
            "non-existent version".to_owned()
        } else {
            format!("non-existent version {} (minimum is 1.0.0)", version)
        });
    }
    Ok(&*STRATEGY_1_0_0)
}

pub fn get_current_version_strategy(verbose: bool) -> &'static Strategy {
    get_version_strategy(&get_current_version(), verbose).unwrap()
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_current_version_strategy() {
        get_current_version_strategy(true);
        get_current_version_strategy(false);
    }
}