reqtls 0.1.0

A tls lib
Documentation

reqtls is a lightweight TLS library and encryption/decryption library.

    reqtls is built on boringssl and maintains consistency with browser behavior.

Encryption/decryption support:

  • aes_ecb_128
  • aes_ecb_192
  • aes_ecb_256
  • aes_cbc_128
  • aes_cbc_192
  • aes_cbc_256
  • aes_crt_128
  • aes_crt_192
  • aes_crt_256
  • aes_gcm_192
  • aes_gcm_256
  • aes_gcm_128
  • aes_ofb_192
  • aes_ofb_256
  • aes_ofb_128
  • des_ecb
  • des_cbc
  • rsa

TLS supports TLS 1.2.

  • aes-gcm-128
  • aes-gcm-256
  • chacha20_poly1305
  • x25519
  • secp256r1
  • secp384r1
  • secp521r1

CipherSuite

  • TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256

  • TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384

  • TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

  • TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

  • TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

  • TLS_RSA_WITH_AES_128_GCM_SHA256

  • TLS_RSA_WITH_AES_256_GCM_SHA384

AlgorithmSignature

  • RSA_PSS_RSAE_SHA256
  • RSA_PSS_RSAE_SHA384
  • RSA_PSS_RSAE_SHA512
  • ECDSA_SECP256R1_SHA256
  • ECDSA_SECP384R1_SHA384
  • ECDSA_SECP521R1_SHA512
  • RSA_PKCS1_SHA1
  • RSA_PKCS1_SHA256
  • RSA_PKCS1_SHA384
  • RSA_PKCS1_SHA512

Hash support

  • sha1
  • sha224
  • sha256
  • sha385
  • sha512
  • hmac

Encoding support

  • base64
  • urlencoding
  • hex

Compression Support

  • gzip
  • deflate
  • br
  • zstd

Cipher encryption/decryption examples

fn dd() {
    let mut aes = Cipher::des_cbc();
    aes.set_secret_key("12345678", Some("12345678"));
    let encrypted = aes.encrypt("1234567812345678jhjfhhhhhhhhhhhhhhdhhhhhhhgfdsfdsefdutrythdyrfgytyth8").unwrap();
    println!("{:?}", encrypted);
    let b64 = base64::b64encode(encrypted).unwrap();
    println!("encrypted: {}", b64);

    let de_bs = base64::b64decode(b64).unwrap();
    println!("decrypted: {:?}", de_bs);
    println!("{:?}", aes.decrypt(de_bs).unwrap());
}

RsaCipher encryption/decryption example

fn dd() {
    let key = RsaKey::gen_new_key(2048).unwrap();
    println!("{}", key.to_pri_pem().unwrap());
    println!("{}", key.to_pub_pem().unwrap());
    println!("{:?}", key.to_pri_der());
    println!("{:?}", key.to_pub_der());
    let nkey = RsaKey::from_pub_der(key.to_pub_der()).unwrap();
    let rsa = RsaCipher::from_key(nkey).unwrap();
    let encrypted = rsa.encrypt("adsdfds", true).unwrap();
    println!("{} {:?}", encrypted.len(), encrypted);

    let nkey = RsaKey::from_pri_der(key.to_pri_der()).unwrap();
    let rsa = RsaCipher::from_key(nkey).unwrap();
    let decrypted = rsa.decrypt(encrypted.as_slice(), true).unwrap();
    println!("{} {:?}", decrypted.len(), decrypted);
}

Certificate Reading Example

fn dd() {
    //Read the certificate chain
    let certificates = Certificate::from_pem_file(pem)?;
    //Read the certificate private key
    let certificate_key = RsaKey::from_pri_pem_file(key)?;
}

Hash calculation example

fn dd(){
    let mut hash = Hasher::new(Sha::Sha256).unwrap();
    hash.update("fd").unwrap();
    let bs = hash.current_hash().unwrap();
    let bs = hash.finalize().unwrap();

    let bs = hash::sha256("fd").unwrap();

    let mut hmac = Hmac::new("key", Sha::Sha256).unwrap();
    hmac.update("fs").unwrap();
    let bs=hmac.finalize().unwrap();
}