libsignal-protocol 0.1.0

An idiomatic high-level interface to the libsignal-protocol-c crate.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144

//! Create a signal session.
//!
//! A rust equivalent of the [Building A Session][bas] example from
//! `libsignal-protocol-c`'s README.
//!
//! ```c
//! /* Create the data store context, and add all the callbacks to it */
//! signal_protocol_store_context *store_context;
//! signal_protocol_store_context_create(&store_context, context);
//! signal_protocol_store_context_set_session_store(store_context, &session_store);
//! signal_protocol_store_context_set_pre_key_store(store_context, &pre_key_store);
//! signal_protocol_store_context_set_signed_pre_key_store(store_context, &signed_pre_key_store);
//! signal_protocol_store_context_set_identity_key_store(store_context, &identity_key_store);
//!
//! /* Instantiate a session_builder for a recipient address. */
//! signal_protocol_address address = {
//!     "+14159998888", 12, 1
//! };
//! session_builder *builder;
//! session_builder_create(&builder, store_context, &address, global_context);
//!
//! /* Build a session with a pre key retrieved from the server. */
//! session_builder_process_pre_key_bundle(builder, retrieved_pre_key);
//!
//! /* Create the session cipher and encrypt the message */
//! session_cipher *cipher;
//! session_cipher_create(&cipher, store_context, &address, global_context);
//!
//! ciphertext_message *encrypted_message;
//! session_cipher_encrypt(cipher, message, message_len, &encrypted_message);
//!
//! /* Get the serialized content and deliver it */
//! signal_buffer *serialized = ciphertext_message_get_serialized(encrypted_message);
//!
//! deliver(signal_buffer_data(serialized), signal_buffer_len(serialized));
//!
//! /* Cleanup */
//! SIGNAL_UNREF(encrypted_message);
//! session_cipher_free(cipher);
//! session_builder_free(builder);
//! signal_protocol_store_context_destroy(store_context);
//! ```
//!
//! [bas]: https://github.com/signalapp/libsignal-protocol-c#building-a-session

extern crate libsignal_protocol as sig;

use std::time::SystemTime;

use failure::{Error, ResultExt};

use sig::{
    stores::{
        InMemoryIdentityKeyStore, InMemoryPreKeyStore, InMemorySessionStore,
        InMemorySignedPreKeyStore,
    },
    Address, Context, PreKeyBundle, Serializable, SessionBuilder,
    SessionCipher,
};

#[path = "../tests/helpers/mod.rs"]
mod helpers;

cfg_if::cfg_if! {
    if #[cfg(feature = "crypto-native")] {
        type Crypto = sig::crypto::DefaultCrypto;
    } else if #[cfg(feature = "crypto-openssl")] {
        type Crypto = sig::crypto::OpenSSLCrypto;
    } else {
        compile_error!("These tests require one of the crypto features to be enabled");
    }
}
fn main() -> Result<(), Error> {
    env_logger::init();
    let ctx = Context::new(Crypto::default()).unwrap();

    // first we'll need a copy of bob's public key and some of his pre-keys
    let bob_address = Address::new("+14159998888", 1);
    let bob_identity_keys = sig::generate_identity_key_pair(&ctx)
        .context("Unable to generate bob's keys")?;
    let bob_public_identity_key = bob_identity_keys.public();
    let bob_pre_keys: Vec<_> = sig::generate_pre_keys(&ctx, 0, 10)
        .context("Unable to generate bob's pre-keys")?
        .collect();
    let pre_key = &bob_pre_keys[0];
    let bob_signed_pre_key = sig::generate_signed_pre_key(
        &ctx,
        &bob_identity_keys,
        12,
        SystemTime::now(),
    )
    .context("Unable to generate a signed pre-key for bob")?;

    // alice will need an identity
    let alice_registration_id = sig::generate_registration_id(&ctx, 0)?;
    let alice_identity = sig::generate_identity_key_pair(&ctx)?;

    // set up some key stores for alice
    let alice_store_ctx = sig::store_context(
        &ctx,
        InMemoryPreKeyStore::default(),
        InMemorySignedPreKeyStore::default(),
        InMemorySessionStore::default(),
        InMemoryIdentityKeyStore::new(alice_registration_id, &alice_identity),
    )?;

    // Instantiate a session_builder for a recipient address.
    let alice_session_builder =
        SessionBuilder::new(&ctx, &alice_store_ctx, &bob_address);

    let pre_key_bundle = PreKeyBundle::builder()
        .registration_id(42)
        .device_id(bob_address.device_id())
        .identity_key(&bob_public_identity_key)
        .pre_key(pre_key.id(), &pre_key.key_pair().public())
        .signed_pre_key(
            bob_signed_pre_key.id(),
            &bob_signed_pre_key.key_pair().public(),
        )
        .signature(bob_signed_pre_key.signature())
        .build()
        .context("Unable to generate the pre-key bundle")?;

    // Create a session using a pre key retrieved from the server.
    alice_session_builder
        .process_pre_key_bundle(&pre_key_bundle)
        .context("Unable to create a session with bob")?;

    // Now we've established a session alice can start encrypting messages to
    // send to bob
    let cipher = SessionCipher::new(&ctx, &alice_store_ctx, &bob_address)?;
    let message = "Hello, World!";
    let encrypted_message = cipher
        .encrypt(message.as_bytes())
        .context("Encryption failed")?;

    let serialized = encrypted_message
        .serialize()
        .context("Unable to serialize the message for transmission")?;

    println!("Encrypted Message: {:?}", serialized.as_slice());

    Ok(())
}