rust-rsa-tool 0.1.1

A sophisticated encryption utility employing a hybrid cryptographic system. It integrates RSA and AES algorithms, supports both CBC and ECB operational modes, and utilizes Base64-encoded keys for streamlined key management.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268

# Quick Start Guide

## Installation

### Prerequisites
- Rust 1.90.0 or later
- Cargo (comes with Rust)

### Add to Your Project

Add this to your `Cargo.toml`:

```toml
[dependencies]
rsa_utils = { path = "../rsa_utils_rust" }
```

Or if published to crates.io:
```toml
[dependencies]
rsa_utils = "0.1.0"
```

## Basic Usage

### 1. Generate RSA Key Pair

```rust
use rsa_utils::{init_key, encode_public_key, encode_private_key};

fn main() -> Result<(), Box<dyn std::error::Error>> {
    // Generate 2048-bit RSA key pair
    let key_pair = init_key()?;
    
    // Encode keys to Base64 strings for storage/transmission
    let public_key_str = encode_public_key(&key_pair.public_key)?;
    let private_key_str = encode_private_key(&key_pair.private_key)?;
    
    // Save keys to files or database
    std::fs::write("public_key.txt", &public_key_str)?;
    std::fs::write("private_key.txt", &private_key_str)?;
    
    println!("Keys generated and saved!");
    Ok(())
}
```

### 2. Encrypt Small Data

```rust
use rsa_utils::encrypt;

fn encrypt_message(message: &str, public_key_str: &str) -> Result<Vec<u8>, Box<dyn std::error::Error>> {
    let encrypted = encrypt(message.as_bytes(), public_key_str)?;
    Ok(encrypted)
}
```

### 3. Encrypt a File

```rust
use rsa_utils::encrypt_file;

fn encrypt_my_file() -> Result<(), Box<dyn std::error::Error>> {
    let public_key_str = std::fs::read_to_string("public_key.txt")?;
    
    encrypt_file(
        "sensitive_data.txt",
        "sensitive_data.encrypted",
        &public_key_str
    )?;
    
    println!("File encrypted successfully!");
    Ok(())
}
```

### 4. Decrypt a File

```rust
use rsa_utils::decrypt_file;

fn decrypt_my_file() -> Result<(), Box<dyn std::error::Error>> {
    let private_key_str = std::fs::read_to_string("private_key.txt")?;
    
    decrypt_file(
        "sensitive_data.encrypted",
        "sensitive_data_decrypted.txt",
        &private_key_str
    )?;
    
    println!("File decrypted successfully!");
    Ok(())
}
```

## Complete Example

```rust
use rsa_utils::{
    init_key, 
    encode_public_key, 
    encode_private_key,
    encrypt_file,
    decrypt_file
};
use std::fs;

fn main() -> Result<(), Box<dyn std::error::Error>> {
    // 1. Generate keys
    let key_pair = init_key()?;
    let public_key_str = encode_public_key(&key_pair.public_key)?;
    let private_key_str = encode_private_key(&key_pair.private_key)?;
    
    // 2. Create a test file
    fs::write("original.txt", "This is secret data!")?;
    
    // 3. Encrypt the file
    encrypt_file("original.txt", "encrypted.bin", &public_key_str)?;
    println!("✓ File encrypted");
    
    // 4. Decrypt the file
    decrypt_file("encrypted.bin", "decrypted.txt", &private_key_str)?;
    println!("✓ File decrypted");
    
    // 5. Verify
    let original = fs::read_to_string("original.txt")?;
    let decrypted = fs::read_to_string("decrypted.txt")?;
    assert_eq!(original, decrypted);
    println!("✓ Verification successful!");
    
    // Cleanup
    fs::remove_file("original.txt")?;
    fs::remove_file("encrypted.bin")?;
    fs::remove_file("decrypted.txt")?;
    
    Ok(())
}
```

## Error Handling

The library uses Rust's `Result` type for error handling:

```rust
use rsa_utils::{encrypt_file, RsaUtilsError};

fn safe_encrypt() -> Result<(), RsaUtilsError> {
    match encrypt_file("input.txt", "output.bin", "invalid_key") {
        Ok(_) => println!("Success!"),
        Err(RsaUtilsError::Base64Error(e)) => {
            eprintln!("Invalid key format: {}", e);
        }
        Err(RsaUtilsError::IoError(e)) => {
            eprintln!("File error: {}", e);
        }
        Err(e) => {
            eprintln!("Encryption failed: {}", e);
        }
    }
    Ok(())
}
```

## Running Tests

```bash
# Run all tests
cargo test

# Run tests with output
cargo test -- --nocapture

# Run a specific test
cargo test test_file_encryption_decryption
```

## Running the Example

```bash
# Run the basic usage example
cargo run --example basic_usage
```

## Common Use Cases

### Secure File Storage
```rust
// Encrypt before storing
encrypt_file("user_data.json", "user_data.encrypted", &public_key)?;

// Decrypt when needed
decrypt_file("user_data.encrypted", "user_data.json", &private_key)?;
```

### Secure Data Transfer
```rust
// Sender: encrypt data
let data = b"Confidential message";
let encrypted = encrypt(data, &recipient_public_key)?;
// Send encrypted data...

// Receiver: decrypt data
let decrypted = private_key.decrypt(Pkcs1v15Encrypt, &encrypted)?;
```

### Key Management
```rust
// Store keys securely
let key_pair = init_key()?;
let pub_key = encode_public_key(&key_pair.public_key)?;
let priv_key = encode_private_key(&key_pair.private_key)?;

// Save to secure storage (e.g., encrypted database, key vault)
save_to_secure_storage("my_public_key", &pub_key)?;
save_to_secure_storage("my_private_key", &priv_key)?;

// Load when needed
let loaded_pub_key = load_from_secure_storage("my_public_key")?;
let public_key = get_public_key(&loaded_pub_key)?;
```

## Best Practices

1. **Never hardcode private keys** - Store them securely
2. **Use environment variables** or secure vaults for key storage
3. **Rotate keys regularly** - Generate new keys periodically
4. **Validate inputs** - Check file sizes and paths before encryption
5. **Handle errors properly** - Don't ignore Result types
6. **Use strong random sources** - The library uses `OsRng` by default
7. **Backup private keys** - Store them in multiple secure locations

## Performance Tips

1. **Large files**: The hybrid encryption (RSA + AES) is efficient for any file size
2. **Batch operations**: Reuse key objects instead of parsing repeatedly
3. **Memory**: Files are read into memory - consider streaming for very large files

## Troubleshooting

### "Invalid key format" error
- Ensure the key string is valid Base64
- Check that you're using the correct key type (public vs private)
- Verify the key was encoded with `encode_public_key` or `encode_private_key`

### "Decryption failed" error
- Verify you're using the correct private key
- Check that the file wasn't corrupted during transfer
- Ensure the file was encrypted with the corresponding public key

### File not found
- Check file paths are correct
- Ensure you have read/write permissions
- Use absolute paths if relative paths aren't working

## Next Steps

- Read the [README.md](README.md) for detailed documentation
- Check [COMPARISON.md](COMPARISON.md) to understand differences from Java
- Browse the source code in `src/lib.rs`
- Run the example: `cargo run --example basic_usage`

## Support

For issues or questions:
1. Check the documentation
2. Run tests to verify installation: `cargo test`
3. Review example code in `examples/`