lora-snapshot 0.11.0

LoraDB — efficient column-oriented graph snapshots with compression and encryption.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84

use std::io::{Cursor, Read, Write};

use argon2::{Algorithm, Argon2, Params, Version};
use chacha20poly1305::aead::{Aead, KeyInit, Payload};
use chacha20poly1305::{ChaCha20Poly1305, Key, Nonce};
use flate2::read::GzDecoder;
use flate2::write::GzEncoder;
use flate2::Compression as GzipCompression;

use crate::errors::{Result, SnapshotCodecError};
use crate::format::MAGIC;
use crate::options::{Compression, PasswordKdfParams};

pub(crate) fn compress(mut bytes: Vec<u8>, compression: Compression) -> Result<Vec<u8>> {
    match compression {
        Compression::None => {
            bytes.shrink_to_fit();
            Ok(bytes)
        }
        Compression::Gzip { level } => {
            let mut encoder = GzEncoder::new(Vec::new(), GzipCompression::new(level.min(9)));
            encoder.write_all(&bytes)?;
            Ok(encoder.finish()?)
        }
    }
}

pub(crate) fn decompress(bytes: Vec<u8>, compression: Compression) -> Result<Vec<u8>> {
    match compression {
        Compression::None => Ok(bytes),
        Compression::Gzip { .. } => {
            let mut decoder = GzDecoder::new(Cursor::new(bytes));
            let mut out = Vec::new();
            decoder.read_to_end(&mut out)?;
            Ok(out)
        }
    }
}

pub(crate) fn derive_password_key(
    password: &[u8],
    salt: &[u8; 16],
    params: PasswordKdfParams,
) -> Result<[u8; 32]> {
    let params = Params::new(
        params.memory_cost_kib,
        params.time_cost,
        params.parallelism,
        Some(32),
    )
    .map_err(|e| SnapshotCodecError::PasswordKdf(e.to_string()))?;
    let argon2 = Argon2::new(Algorithm::Argon2id, Version::V0x13, params);
    let mut out = [0u8; 32];
    argon2
        .hash_password_into(password, salt, &mut out)
        .map_err(|e| SnapshotCodecError::PasswordKdf(e.to_string()))?;
    Ok(out)
}

pub(crate) fn encrypt_body(bytes: &[u8], key: &[u8; 32], nonce: &[u8; 12]) -> Result<Vec<u8>> {
    let cipher = ChaCha20Poly1305::new(Key::from_slice(key));
    cipher
        .encrypt(
            Nonce::from_slice(nonce),
            Payload {
                msg: bytes,
                aad: MAGIC,
            },
        )
        .map_err(|_| SnapshotCodecError::Encrypt)
}

pub(crate) fn decrypt_body(bytes: &[u8], key: &[u8; 32], nonce: &[u8; 12]) -> Result<Vec<u8>> {
    let cipher = ChaCha20Poly1305::new(Key::from_slice(key));
    cipher
        .decrypt(
            Nonce::from_slice(nonce),
            Payload {
                msg: bytes,
                aad: MAGIC,
            },
        )
        .map_err(|_| SnapshotCodecError::Decrypt)
}