shadowforge 0.3.3

Quantum-resistant steganography toolkit for journalists and whistleblowers
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138

//! Reed-Solomon error correction adapter.

use bytes::Bytes;

use crate::domain::correction::{decode_shards, encode_shards};
use crate::domain::errors::CorrectionError;
use crate::domain::ports::ErrorCorrector;
use crate::domain::types::Shard;

/// Reed-Solomon error correction adapter with HMAC-tagged shards.
///
/// Implements the [`ErrorCorrector`] port using the `reed-solomon-erasure` crate.
/// Each shard is tagged with HMAC-SHA-256 for integrity verification.
#[derive(Debug)]
pub struct RsErrorCorrector {
    /// HMAC key for shard integrity tags.
    hmac_key: Vec<u8>,
}

impl RsErrorCorrector {
    /// Create a new Reed-Solomon error corrector with the given HMAC key.
    ///
    /// # Panics
    /// Panics if `hmac_key` is empty.
    #[must_use]
    pub fn new(hmac_key: Vec<u8>) -> Self {
        assert!(!hmac_key.is_empty(), "HMAC key must not be empty");
        Self { hmac_key }
    }
}

impl ErrorCorrector for RsErrorCorrector {
    fn encode(
        &self,
        data: &[u8],
        data_shards: u8,
        parity_shards: u8,
    ) -> Result<Vec<Shard>, CorrectionError> {
        encode_shards(data, data_shards, parity_shards, &self.hmac_key)
    }

    fn decode(
        &self,
        shards: &[Option<Shard>],
        data_shards: u8,
        parity_shards: u8,
    ) -> Result<Bytes, CorrectionError> {
        // Calculate original data length from the first available shard
        let first_shard = shards.iter().find_map(|opt| opt.as_ref()).ok_or_else(|| {
            CorrectionError::InsufficientShards {
                needed: usize::from(data_shards),
                available: 0,
            }
        })?;

        // Original length is encoded in the first data shard's metadata
        // For now, we'll reconstruct all data and let the caller handle trimming
        // In a real implementation, this would be in a shard metadata field
        let shard_size = first_shard.data.len();
        let total_data_size = shard_size.strict_mul(usize::from(data_shards));

        decode_shards(
            shards,
            data_shards,
            parity_shards,
            &self.hmac_key,
            total_data_size,
        )
    }
}

// ─── Tests ────────────────────────────────────────────────────────────────────

#[cfg(test)]
mod tests {
    use super::*;

    type TestResult = Result<(), Box<dyn std::error::Error>>;

    #[test]
    fn test_rs_error_corrector_roundtrip() -> TestResult {
        let hmac_key = b"test_key_32_bytes_long_padding!!".to_vec();
        let corrector = RsErrorCorrector::new(hmac_key);

        let data = b"The quick brown fox jumps over the lazy dog";
        let shards = corrector.encode(data, 10, 5)?;

        let opt_shards: Vec<Option<Shard>> = shards.into_iter().map(Some).collect();
        let recovered = corrector.decode(&opt_shards, 10, 5)?;

        // Recovered data may be padded, so check prefix
        assert!(recovered.starts_with(data));
        Ok(())
    }

    #[test]
    fn test_rs_error_corrector_with_missing_shards() -> TestResult {
        let hmac_key = b"test_key_32_bytes_long_padding!!".to_vec();
        let corrector = RsErrorCorrector::new(hmac_key);

        let data = b"The quick brown fox jumps over the lazy dog";
        let shards = corrector.encode(data, 10, 5)?;

        // Drop 5 shards
        let mut opt_shards: Vec<Option<Shard>> = shards.into_iter().map(Some).collect();
        *opt_shards.get_mut(0).ok_or("out of bounds")? = None;
        *opt_shards.get_mut(3).ok_or("out of bounds")? = None;
        *opt_shards.get_mut(7).ok_or("out of bounds")? = None;
        *opt_shards.get_mut(10).ok_or("out of bounds")? = None;
        *opt_shards.get_mut(13).ok_or("out of bounds")? = None;

        let recovered = corrector.decode(&opt_shards, 10, 5)?;
        assert!(recovered.starts_with(data));
        Ok(())
    }

    #[test]
    fn test_rs_error_corrector_insufficient_shards() -> TestResult {
        let hmac_key = b"test_key_32_bytes_long_padding!!".to_vec();
        let corrector = RsErrorCorrector::new(hmac_key);

        let data = b"test data";
        let shards = corrector.encode(data, 10, 5)?;

        // Drop 6 shards (too many)
        let mut opt_shards: Vec<Option<Shard>> = shards.into_iter().map(Some).collect();
        for i in 0..6 {
            *opt_shards.get_mut(i).ok_or("out of bounds")? = None;
        }

        let result = corrector.decode(&opt_shards, 10, 5);
        assert!(matches!(
            result,
            Err(CorrectionError::InsufficientShards { .. })
        ));
        Ok(())
    }
}