rzmq 0.5.7

A high performance, fully asynchronous, safe pure-Rust implementation of ZeroMQ (ØMQ) messaging with io_uring and tcp cork acceleration on Linux.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103

use crate::error::ZmqError;
use crate::security::IDataCipher;
use bytes::{Bytes, BytesMut};
use dryoc::classic::crypto_box::{
  crypto_box_detached_afternm, crypto_box_open_detached_afternm, Mac, Nonce,
};
use dryoc::constants::CRYPTO_BOX_MACBYTES;
use dryoc::dryocbox::NewByteArray;
use dryoc::types::{ByteArray, MutByteArray, MutBytes, StackByteArray};

/// Implements the pure IDataCipher trait for CurveZMQ's data-phase encryption.
/// This struct is now a pure cryptographic engine and has no knowledge of ZMTP
/// framing or network buffers. It expects to be given a single, complete message
/// to encrypt or decrypt.
#[derive(Debug)]
pub(crate) struct CurveDataCipher {
  // Pre-computed shared key derived from the handshake.
  precomputed_key: [u8; 32],

  // Nonces for data-phase messages.
  send_nonce_counter: u64,
  recv_nonce_counter: u64,
}

impl CurveDataCipher {
  const NONCE_PREFIX: &'static [u8; 16] = b"CurveZMQ-Encrypt";

  /// Creates a new cipher instance with the shared key from the handshake.
  pub(crate) fn new(precomputed_key: [u8; 32]) -> Self {
    Self {
      precomputed_key,
      send_nonce_counter: 1,
      recv_nonce_counter: 1,
    }
  }

  /// Constructs a full 24-byte ZMTP CURVE nonce from a counter.
  fn construct_nonce(counter: u64) -> StackByteArray<24> {
    let mut nonce = StackByteArray::<24>::new();
    nonce.as_mut_slice()[..16].copy_from_slice(Self::NONCE_PREFIX);
    nonce.as_mut_slice()[16..].copy_from_slice(&counter.to_le_bytes());
    nonce
  }
}

impl IDataCipher for CurveDataCipher {
  /// Encrypts a single block of plaintext (e.g., one or more ZMTP frames).
  /// Returns a Vec containing [MAC][Ciphertext].
  fn encrypt(&mut self, plaintext: &[u8]) -> Result<Vec<u8>, ZmqError> {
    let nonce = Self::construct_nonce(self.send_nonce_counter);
    let mut mac = Mac::new_byte_array();
    let mut ciphertext = vec![0u8; plaintext.len()];

    crypto_box_detached_afternm(
      &mut ciphertext,
      mac.as_mut_array(),
      plaintext,
      nonce.as_array(),
      &self.precomputed_key,
    );

    self.send_nonce_counter += 1;

    // Combine MAC and ciphertext for the final wire format.
    let mut wire_frame = Vec::with_capacity(CRYPTO_BOX_MACBYTES + ciphertext.len());
    wire_frame.extend_from_slice(mac.as_slice());
    wire_frame.extend_from_slice(&ciphertext);

    Ok(wire_frame)
  }

  /// Decrypts a single block of ciphertext, which MUST be in the format [MAC][Ciphertext].
  /// Returns the plaintext Vec<u8> on success.
  fn decrypt(&mut self, ciphertext_with_mac: &[u8]) -> Result<Vec<u8>, ZmqError> {
    if ciphertext_with_mac.len() < CRYPTO_BOX_MACBYTES {
        return Err(ZmqError::InvalidMessage(
            "Ciphertext too short to contain a MAC".into(),
        ));
    }

    let nonce = Self::construct_nonce(self.recv_nonce_counter);
    let mac_slice = &ciphertext_with_mac[..CRYPTO_BOX_MACBYTES];
    let ciphertext_only_slice = &ciphertext_with_mac[CRYPTO_BOX_MACBYTES..];

    let mac = Mac::try_from(mac_slice)
      .map_err(|_| ZmqError::InvalidMessage("Invalid MAC length in frame".into()))?;

    let mut decrypted = vec![0u8; ciphertext_only_slice.len()];

    crypto_box_open_detached_afternm(
      &mut decrypted,
      mac.as_array(),
      ciphertext_only_slice,
      nonce.as_array(),
      &self.precomputed_key,
    )
    .map_err(|e| ZmqError::AuthenticationFailure(e.to_string()))?;

    self.recv_nonce_counter += 1;

    Ok(decrypted)
  }
}