Enum nuts_container::Kdf

source · 
pub enum Kdf {
    None,
    Pbkdf2 {
        digest: Digest,
        iterations: u32,
        salt: Vec<u8>,
    },
}
Expand description

Supported key derivation functions.

Defines data used to calculate a wrapping key.

The wrapping key is created used by an algorithm defined as a variant of this enum. The variants holds fields to customize the algorithm.

Based on a password provided by the user one of the algorithms are used to calculate a wrapping key. The wrapping key then is used for encryption of the secret in the header of the container.

Variants§

§

None

No key derivation

§

Pbkdf2

PBKDF2

Fields

§digest: Digest

Digest used by PBKDF2.

§iterations: u32

Number of iterations used by PBKDF2.

§salt: Vec<u8>

A salt value used by PBKDF2.

Implementations§

source§

impl Kdf

source

pub fn is_none(&self) -> bool

Tests whether this is a None kdf.

source

pub fn is_pbkdf2(&self) -> bool

Tests whether this is a Pbkdf2 kdf.

source

pub fn pbkdf2(digest: Digest, iterations: u32, salt: &[u8]) -> Kdf

Creates a Kdf instance for the PBKDF2 algorithm.

The digest, iterations and the salt values are used to customize the PBKDF2 algorithm.

§Examples
use nuts_container::*;

let pbkdf2 = Kdf::pbkdf2(Digest::Sha1, 5, &[1, 2, 3]);

match pbkdf2 {
    Kdf::Pbkdf2 {
        digest,
        iterations,
        salt,
    } => {
        assert_eq!(digest, Digest::Sha1);
        assert_eq!(iterations, 5);
        assert_eq!(salt, [1, 2, 3]);
    }
    _ => panic!("invalid kdf"),
}
source

pub fn generate_pbkdf2( digest: Digest, iterations: u32, salt_len: u32, ) -> Result<Kdf, KdfError>

Generates a Kdf instance for the PBKDF2 algorithm.

The digestand iterations value is used to customize the PBKDF2 algorithm. For the salt salt_len bytes of random data are generated.

§Errors

This method will return an Error::OpenSSL error if there was an error generating the random data.

§Examples
use nuts_container::*;

let kdf = Kdf::generate_pbkdf2(Digest::Sha1, 5, 3).unwrap();

match kdf {
    Kdf::Pbkdf2 {
        digest,
        iterations,
        salt,
    } => {
        assert_eq!(digest, Digest::Sha1);
        assert_eq!(iterations, 5);
        assert_eq!(salt.len(), 3); // salt filled with random data
    }
    _ => panic!("invalid kdf"),
}

Trait Implementations§

source§

impl Clone for Kdf

source§

fn clone(&self) -> Kdf

Returns a copy of the value. Read more
1.0.0 · source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
source§

impl Debug for Kdf

source§

fn fmt(&self, fmt: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
source§

impl Display for Kdf

source§

fn fmt(&self, fmt: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
source§

impl FromStr for Kdf

source§

type Err = ParseKdfError

The associated error which can be returned from parsing.
source§

fn from_str(s: &str) -> Result<Self, ParseKdfError>

Parses a string s to return a value of this type. Read more
source§

impl PartialEq for Kdf

source§

fn eq(&self, other: &Kdf) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
source§

impl StructuralPartialEq for Kdf

Auto Trait Implementations§

§

impl Freeze for Kdf

§

impl RefUnwindSafe for Kdf

§

impl Send for Kdf

§

impl Sync for Kdf

§

impl Unpin for Kdf

§

impl UnwindSafe for Kdf

Blanket Implementations§

source§

impl<T> Any for T
where T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for T
where T: ?Sized,

source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> CloneToUninit for T
where T: Clone,

source§

unsafe fn clone_to_uninit(&self, dst: *mut T)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dst. Read more
source§

impl<T> From<T> for T

source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T, U> Into<U> for T
where U: From<T>,

source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T> ToOwned for T
where T: Clone,

source§

type Owned = T

The resulting type after obtaining ownership.
source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
source§

impl<T> ToString for T
where T: Display + ?Sized,

source§

default fn to_string(&self) -> String

Converts the given value to a String. Read more
source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

source§

type Error = Infallible

The type returned in the event of a conversion error.
source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.