wolfcrypt-tls 0.2.0

Safe Rust TLS API backed by wolfSSL
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237

use wolfcrypt_sys::*;
use zeroize::Zeroize;

/// Certificate encoding format.
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub(crate) enum CertFormat {
    Pem,
    Der,
}

impl CertFormat {
    /// Return the wolfSSL file-type constant for FFI calls.
    pub(crate) fn as_c_int(self) -> core::ffi::c_int {
        match self {
            CertFormat::Pem => WOLFSSL_FILETYPE_PEM as core::ffi::c_int,
            CertFormat::Der => WOLFSSL_FILETYPE_ASN1 as core::ffi::c_int,
        }
    }
}

/// An entry in a [`RootCertStore`]: raw bytes plus their encoding format.
#[derive(Debug, Clone)]
struct CertEntry {
    data: Vec<u8>,
    format: CertFormat,
}

/// A collection of trusted root CA certificates.
#[derive(Debug, Clone)]
pub struct RootCertStore {
    entries: Vec<CertEntry>,
}

impl RootCertStore {
    /// Create an empty root certificate store.
    pub fn new() -> Self {
        RootCertStore {
            entries: Vec::new(),
        }
    }

    /// Add one or more PEM-encoded certificates.
    ///
    /// Accepts `&[u8]`, `Vec<u8>`, or anything else that converts into
    /// `Vec<u8>` — passing an owned `Vec` avoids a copy.
    pub fn add_pem(&mut self, pem: impl Into<Vec<u8>>) {
        self.entries.push(CertEntry {
            data: pem.into(),
            format: CertFormat::Pem,
        });
    }

    /// Add a single DER-encoded certificate.
    ///
    /// Accepts `&[u8]`, `Vec<u8>`, or anything else that converts into
    /// `Vec<u8>` — passing an owned `Vec` avoids a copy.
    pub fn add_der(&mut self, der: impl Into<Vec<u8>>) {
        self.entries.push(CertEntry {
            data: der.into(),
            format: CertFormat::Der,
        });
    }

    /// Returns true if no certificates have been added.
    pub fn is_empty(&self) -> bool {
        self.entries.is_empty()
    }

    /// Iterate over (cert_data, format) pairs.
    pub(crate) fn iter(&self) -> impl Iterator<Item = (&[u8], CertFormat)> {
        self.entries
            .iter()
            .map(|entry| (entry.data.as_slice(), entry.format))
    }
}

impl Default for RootCertStore {
    fn default() -> Self {
        Self::new()
    }
}

/// A TLS certificate (PEM or DER encoded).
#[derive(Debug, Clone)]
pub struct Certificate {
    data: Vec<u8>,
    format: CertFormat,
}

impl Certificate {
    /// Load a PEM-encoded certificate (may be a chain).
    ///
    /// Accepts `&[u8]`, `Vec<u8>`, etc. — passing an owned `Vec` avoids a copy.
    pub fn from_pem(pem: impl Into<Vec<u8>>) -> Self {
        Certificate {
            data: pem.into(),
            format: CertFormat::Pem,
        }
    }

    /// Load a DER-encoded certificate.
    ///
    /// Accepts `&[u8]`, `Vec<u8>`, etc. — passing an owned `Vec` avoids a copy.
    pub fn from_der(der: impl Into<Vec<u8>>) -> Self {
        Certificate {
            data: der.into(),
            format: CertFormat::Der,
        }
    }

    pub(crate) fn data(&self) -> &[u8] {
        &self.data
    }

    pub(crate) fn format(&self) -> CertFormat {
        self.format
    }
}

impl AsRef<[u8]> for Certificate {
    fn as_ref(&self) -> &[u8] {
        &self.data
    }
}

/// A private key (PEM or DER encoded).
///
/// The key material is zeroized on drop.
pub struct PrivateKey {
    data: Vec<u8>,
    format: CertFormat,
}

impl PrivateKey {
    /// Load a PEM-encoded private key.
    ///
    /// Accepts `&[u8]`, `Vec<u8>`, etc. — passing an owned `Vec` avoids a copy.
    pub fn from_pem(pem: impl Into<Vec<u8>>) -> Self {
        PrivateKey {
            data: pem.into(),
            format: CertFormat::Pem,
        }
    }

    /// Load a DER-encoded private key.
    ///
    /// Accepts `&[u8]`, `Vec<u8>`, etc. — passing an owned `Vec` avoids a copy.
    pub fn from_der(der: impl Into<Vec<u8>>) -> Self {
        PrivateKey {
            data: der.into(),
            format: CertFormat::Der,
        }
    }

    pub(crate) fn data(&self) -> &[u8] {
        &self.data
    }

    pub(crate) fn format(&self) -> CertFormat {
        self.format
    }
}

impl Drop for PrivateKey {
    fn drop(&mut self) {
        self.data.zeroize();
    }
}

// PrivateKey intentionally does not derive Debug to avoid leaking key material.
impl std::fmt::Debug for PrivateKey {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.debug_struct("PrivateKey")
            .field("len", &self.data.len())
            .field("format", &self.format)
            .finish()
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn root_store_add_pem() {
        let mut store = RootCertStore::new();
        assert!(store.is_empty());
        store.add_pem(b"-----BEGIN CERTIFICATE-----\ntest\n-----END CERTIFICATE-----\n");
        assert!(!store.is_empty());
        let items: Vec<_> = store.iter().collect();
        assert_eq!(items.len(), 1);
        assert_eq!(items[0].1, CertFormat::Pem);
    }

    #[test]
    fn root_store_add_der() {
        let mut store = RootCertStore::new();
        store.add_der(&[0x30, 0x82, 0x01, 0x00]);
        let items: Vec<_> = store.iter().collect();
        assert_eq!(items.len(), 1);
        assert_eq!(items[0].1, CertFormat::Der);
    }

    #[test]
    fn certificate_from_pem() {
        let cert = Certificate::from_pem(b"PEM data");
        assert_eq!(cert.format(), CertFormat::Pem);
        assert_eq!(cert.data(), b"PEM data");
    }

    #[test]
    fn certificate_from_der() {
        let cert = Certificate::from_der(b"\x30\x82");
        assert_eq!(cert.format(), CertFormat::Der);
    }

    #[test]
    fn private_key_zeroize_on_drop() {
        let key_data = vec![0xAA; 32];
        let ptr = key_data.as_ptr();
        let key = PrivateKey::from_der(key_data.as_slice());
        let inner_ptr = key.data.as_ptr();
        drop(key);
        // After drop, the memory pointed to by inner_ptr should be zeroed.
        // We can't safely verify this since the memory is freed, but we can
        // verify the Drop impl compiles and runs without panic.
        let _ = (ptr, inner_ptr);
    }

    #[test]
    fn private_key_debug_no_leak() {
        let key = PrivateKey::from_pem(b"SECRET KEY DATA");
        let dbg = format!("{key:?}");
        assert!(!dbg.contains("SECRET"));
        assert!(dbg.contains("PrivateKey"));
    }
}