zerokms-protocol 0.12.9

Library to manage the CipherStash ZeroKMS communication protocol
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109

use base64::engine::general_purpose::STANDARD as base64;
use base64::prelude::*;
use serde::de::Error;
use serde::{Deserialize, Deserializer, Serializer};

pub(crate) fn deserialize<'de, D: Deserializer<'de>, const N: usize>(
    deserializer: D,
) -> Result<[u8; N], D::Error> {
    let s = String::deserialize(deserializer)?;
    let bytes = base64.decode(s).map_err(D::Error::custom)?;
    let len = bytes.len();
    let array: [u8; N] = bytes.try_into().map_err(|_| {
        let expected = format!("[u8; {N}]");
        D::Error::invalid_length(len, &expected.as_str())
    })?;
    Ok(array)
}

pub(crate) fn serialize<S: Serializer, const N: usize>(
    v: &[u8; N],
    serializer: S,
) -> Result<S::Ok, S::Error> {
    serializer.serialize_str(&base64.encode(v))
}

#[cfg(test)]
mod tests {
    use base64::engine::general_purpose::STANDARD as base64;
    use base64::prelude::*;
    use serde::{Deserialize, Serialize};
    use serde_json::json;

    #[derive(Serialize, Deserialize, Debug, Eq, PartialEq)]
    struct TestStruct {
        #[serde(with = "super")]
        first: [u8; 16],
        #[serde(with = "super")]
        second: [u8; 1],
    }

    #[test]
    fn test_serialize_struct() {
        assert_eq!(
            serde_json::to_string(&TestStruct {
                first: [1; 16],
                second: [2]
            })
            .expect("Failed to serialize TestStruct"),
            r#"{"first":"AQEBAQEBAQEBAQEBAQEBAQ==","second":"Ag=="}"#
        );
    }

    #[test]
    fn test_deserialize_struct() {
        let x: TestStruct = serde_json::from_value(json!({
            "first": base64.encode(vec![ 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16]),
            "second": base64.encode([ 10 ])
        }))
        .expect("Failed to load TestStruct from json");

        assert_eq!(
            x,
            TestStruct {
                first: [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16],
                second: [10]
            }
        );
    }

    #[test]
    fn test_fail_missing_member() {
        let err =
            serde_json::from_value::<TestStruct>(json!({})).expect_err("Expected parsing to fail");

        assert_eq!(err.to_string(), "missing field `first`");
    }

    #[test]
    fn test_fail_missing_invalid_base64() {
        let err = serde_json::from_value::<TestStruct>(json!({
            "first": "abcde"
        }))
        .expect_err("Expected parsing to fail");

        assert_eq!(err.to_string(), "Invalid input length: 5");
    }

    #[test]
    fn test_fail_length_too_short() {
        let err = serde_json::from_value::<TestStruct>(json!({
            "first": base64.encode(vec![ 1, 2, 3 ]),
            "second": base64.encode([ 10 ])
        }))
        .expect_err("Expected parsing to fail");

        assert_eq!(err.to_string(), "invalid length 3, expected [u8; 16]");
    }

    #[test]
    fn test_fail_length_too_long() {
        let err = serde_json::from_value::<TestStruct>(json!({
            "first": base64.encode(vec![ 10; 20 ]),
            "second": base64.encode([ 10 ])
        }))
        .expect_err("Expected parsing to fail");

        assert_eq!(err.to_string(), "invalid length 20, expected [u8; 16]");
    }
}