pyrus-crypto 0.3.0

An OpenPGP inspired "pseudo" crypto crate.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101

# Pyrus Crypto

This crate provides an OpenPGP inspired crypto system. It is 
based on generating certificates and using them to sign, encrypt 
and decrypt messages. Because it is designed for use in a larger 
application, this crate has some shortcomings. Mainly: symmetric 
encryption requires supplying a sender's certificate.

# Warning!

This is not a serious crypto crate. It has no tests and is not reviewed 
by third parties. It's security goes as far as the author's will 
to make his school project seem secure.

# Examples

## Generate and serialize a certificate keeping its secret parts:
```rust
use pyrus_crypto::prelude::*;

let larry = Cert::new("Larry <larry@gentoo.org>");
let cert_bytes = postcard::to_stdvec(&larry)?;

//.. save the certificate
// use the certificate here
```

## Encrypt a message symmetrically using a passphrase:
```rust
use pyrus_crypto::prelude::*;

let larry: Cert = ;//..

let secret_text = b"This is a very secret message";
let message = Message::new(&larry)?
    .write(&secret_text[..])?
    .encrypt_with(b"alcmdzmafia")? // don't use such passwords
    .finalize()?;
```

## Sign and encrypt a message asymmetrically:

Note that the certificates are behind an [`std::sync::Arc`]. 
This is how they will usually appear in the wild.
```rust
use pyrus_crypto::prelude::*;

let larry: Arc<Cert> = ;//..
let agentcow: Arc<Cert> = ;//..
let agenthorse: Arc<Cert> = ;//..
let agentfox: Arc<Cert> = ;//..
let friends = vec![agentcow.clone(), agenthorse.clone()];

let secret_text = b"Let's meet up in the evening";
let msg = Message::new(&larry)?
    .write(&secret_text[..])?
    .sign()
    .encrypt_for(&friends)?
    .finalize()?;
```

## Decrypt a symmetrically encrypted message
```rust
use pyrus_crypto::prelude::*;

// another of the aforementioned shortcomings
let dummy = Cert::new("dummy cert");
// assume we already have a message
let (_, content, sig) = message
    .parse(&dummy)?
    .decrypt_with(&b"alcmdzmafia"[..])?
    .finalize();

assert_eq!(&secret_text[..], &content[..]);
assert!(sig.is_none()); // the message is not signed
```

## Decrypt and verify a signed message
```rust
use pyrus_crypto::prelude::*;

let larry: Arc<Cert> = ;//..
let agentcow: Arc<Cert> = ;//..
let agentfox: Arc<Cert> = ;//..

let secret_text = b"Let's meet up in the evening";

let (message, content, signature) = message
    .parse(&agentcow)? // decrypt using agentcow's certificate
    .decrypt(larry.clone())?
    .verify_signature(larry.clone())?
    .finalize();

assert_eq!(&secret_text[..], &content[..]);
assert!(signature.unwrap()); // signature is Some and is good

let fail = message
    .parse(&agentfox)?
    .decrypt(larry.clone());
assert!(fail.is_err()); // cannot decrypt, not a recipient
```