hexz-common 0.8.0

Common utilities and configuration for Hexz
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218

//! Cryptographic utilities for Hexz archive encryption.
//!
//! Defines key-derivation parameters (PBKDF2 salt and iteration count) used
//! when creating or opening encrypted archives. These parameters are
//! serialized into archive metadata so that the same password reproduces
//! the same key on restore.

use crate::constants::{PBKDF2_ITERATIONS, SALT_SIZE};
use serde::{Deserialize, Serialize};

/// Parameters for deriving an encryption key from a user-supplied secret.
///
/// **Architectural intent:** Encapsulates the tunable inputs for PBKDF2-based
/// key derivation so that archive metadata fully describes how to reproduce
/// the encryption key on restore.
///
/// **Constraints:** `salt` must be unique per archive to avoid key reuse, and
/// `iterations` is chosen to be intentionally expensive (hundreds of thousands
/// of rounds) to raise the cost of offline brute-force attacks while remaining
/// acceptable for interactive CLI usage.
///
/// **Side effects:** Instances produced via `Default` consume randomness from
/// the process RNG and implicitly fix the work factor at the compile-time
/// constant embedded in this type.
#[derive(Debug, Clone, Serialize, Deserialize, PartialEq, Eq)]
pub struct KeyDerivationParams {
    /// Unique per-archive random salt to prevent key reuse.
    pub salt: [u8; SALT_SIZE],
    /// Number of PBKDF2 rounds (hundreds of thousands for brute-force resistance).
    pub iterations: u32,
}

impl Default for KeyDerivationParams {
    /// Generates key-derivation parameters for a new archive.
    ///
    /// **Architectural intent:** Produces a fresh random salt and a stable
    /// iteration count that all writers and readers agree on, so that keys can
    /// be recomputed deterministically from the password and stored metadata.
    ///
    /// **Constraints:** The salt is 128 bits and sampled uniformly from the
    /// system RNG; the iteration count is fixed to a value calibrated for this
    /// application and must be kept in sync with password prompts.
    ///
    /// **Side effects:** Pulls entropy from `rand::thread_rng` and performs no
    /// I/O; increasing the iteration count will linearly increase CPU cost for
    /// both archive creation and decryption.
    fn default() -> Self {
        let mut salt = [0u8; SALT_SIZE];
        rand::RngCore::fill_bytes(&mut rand::thread_rng(), &mut salt);
        Self {
            salt,
            iterations: PBKDF2_ITERATIONS,
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_key_derivation_params_default() {
        let params = KeyDerivationParams::default();

        // Verify iterations match the constant
        assert_eq!(params.iterations, PBKDF2_ITERATIONS);

        // Verify salt has the correct size
        assert_eq!(params.salt.len(), SALT_SIZE);
    }

    #[test]
    fn test_default_salt_is_random() {
        // Generate two separate instances
        let params1 = KeyDerivationParams::default();
        let params2 = KeyDerivationParams::default();

        // Salts should be different (extremely unlikely to be equal if random)
        assert_ne!(params1.salt, params2.salt);

        // Verify salt is not all zeros (would indicate RNG failure)
        assert_ne!(params1.salt, [0u8; SALT_SIZE]);
        assert_ne!(params2.salt, [0u8; SALT_SIZE]);
    }

    #[test]
    fn test_key_derivation_params_clone() {
        let params = KeyDerivationParams::default();
        let cloned = params.clone();

        // Cloned instance should be equal
        assert_eq!(params, cloned);
        assert_eq!(params.salt, cloned.salt);
        assert_eq!(params.iterations, cloned.iterations);
    }

    #[test]
    fn test_key_derivation_params_equality() {
        let params1 = KeyDerivationParams {
            salt: [42u8; SALT_SIZE],
            iterations: 100_000,
        };
        let params2 = KeyDerivationParams {
            salt: [42u8; SALT_SIZE],
            iterations: 100_000,
        };
        let params3 = KeyDerivationParams {
            salt: [43u8; SALT_SIZE],
            iterations: 100_000,
        };

        // Same values should be equal
        assert_eq!(params1, params2);

        // Different salt should not be equal
        assert_ne!(params1, params3);
    }

    #[test]
    fn test_key_derivation_params_serialization() {
        let params = KeyDerivationParams {
            salt: [123u8; SALT_SIZE],
            iterations: 200_000,
        };

        // Serialize to JSON
        let json = serde_json::to_string(&params).expect("Serialization failed");

        // Deserialize back
        let deserialized: KeyDerivationParams =
            serde_json::from_str(&json).expect("Deserialization failed");

        // Should match original
        assert_eq!(params, deserialized);
        assert_eq!(params.salt, deserialized.salt);
        assert_eq!(params.iterations, deserialized.iterations);
    }

    #[test]
    fn test_key_derivation_params_debug() {
        let params = KeyDerivationParams {
            salt: [1u8; SALT_SIZE],
            iterations: 150_000,
        };

        // Debug output should contain key information
        let debug_str = format!("{params:?}");
        assert!(debug_str.contains("KeyDerivationParams"));
        assert!(debug_str.contains("salt"));
        assert!(debug_str.contains("iterations"));
    }

    #[test]
    fn test_iterations_constant_is_reasonable() {
        // Verify PBKDF2_ITERATIONS is in a reasonable range
        // Too low: insufficient security
        // Too high: unusable in practice
        #[allow(clippy::assertions_on_constants)]
        {
            assert!(
                PBKDF2_ITERATIONS >= 100_000,
                "Iterations too low for security"
            );
        }
        #[allow(clippy::assertions_on_constants)]
        {
            assert!(
                PBKDF2_ITERATIONS <= 10_000_000,
                "Iterations too high for usability"
            );
        }
    }

    #[test]
    fn test_salt_size_is_reasonable() {
        // Verify SALT_SIZE is sufficient for security
        // Minimum recommended: 128 bits (16 bytes)
        #[allow(clippy::assertions_on_constants)]
        {
            assert!(SALT_SIZE >= 16, "Salt size too small for security");
        }
        #[allow(clippy::assertions_on_constants)]
        {
            assert!(SALT_SIZE <= 64, "Salt size unnecessarily large");
        }
    }

    #[test]
    fn test_manual_construction() {
        let custom_salt = [99u8; SALT_SIZE];
        let custom_iterations = 500_000;

        let params = KeyDerivationParams {
            salt: custom_salt,
            iterations: custom_iterations,
        };

        assert_eq!(params.salt, custom_salt);
        assert_eq!(params.iterations, custom_iterations);
    }

    #[test]
    fn test_different_defaults_have_different_salts() {
        // Create multiple default instances
        let instances: Vec<KeyDerivationParams> =
            (0..5).map(|_| KeyDerivationParams::default()).collect();

        // All salts should be unique
        for i in 0..instances.len() {
            for j in (i + 1)..instances.len() {
                assert_ne!(
                    instances[i].salt, instances[j].salt,
                    "Salts at indices {i} and {j} should be different"
                );
            }
        }
    }
}