DecryptionContext

pcapsql_core::tls::decrypt

Struct DecryptionContext 

Source 
pub struct DecryptionContext { /* private fields */ }
Expand description

TLS record decryption context.

Holds the AEAD key material and provides methods to decrypt TLS records.

Implementations§

Source§

impl DecryptionContext

Source

pub fn new_tls12( keys: &Tls12KeyMaterial, algorithm: AeadAlgorithm, direction: Direction, ) -> Result<Self, DecryptionError>

Create a new decryption context for TLS 1.2.

For TLS 1.2 with AEAD:

  • The nonce is: implicit_iv (4 bytes) || explicit_nonce (8 bytes from record)
  • The explicit_nonce is typically the sequence number
Source

pub fn new_tls13( keys: &Tls13KeyMaterial, algorithm: AeadAlgorithm, ) -> Result<Self, DecryptionError>

Create a new decryption context for TLS 1.3.

For TLS 1.3:

  • The nonce is: iv XOR padded_sequence_number
  • The IV is derived from the traffic secret via HKDF-Expand-Label
Source

pub fn new( algorithm: AeadAlgorithm, key: &[u8], iv: &[u8], ) -> Result<Self, DecryptionError>

Create a new decryption context from raw key material.

Source

pub fn sequence_number(&self) -> u64

Get the current sequence number.

Source

pub fn set_sequence_number(&mut self, seq: u64)

Set the sequence number (useful for resuming mid-stream).

Source

pub fn decrypt_tls12_record( &mut self, record_type: u8, version: u16, ciphertext: &[u8], ) -> Result<Vec<u8>, DecryptionError>

Decrypt a TLS 1.2 AEAD record in place.

For TLS 1.2 AEAD ciphers:

  • Record format: explicit_nonce (8 bytes) || ciphertext || tag (16 bytes)
  • Nonce = implicit_iv (4 bytes) || explicit_nonce (8 bytes)
  • AAD = seq_num (8 bytes) || type (1) || version (2) || length (2)

Returns the decrypted plaintext.

Source

pub fn decrypt_tls13_record( &mut self, ciphertext: &[u8], record_header: &[u8; 5], ) -> Result<Vec<u8>, DecryptionError>

Decrypt a TLS 1.3 AEAD record in place.

For TLS 1.3:

  • Record format: ciphertext || tag (16 bytes)
  • Nonce = iv XOR padded_sequence_number
  • AAD = record_header (type || legacy_version || length)
  • Inner plaintext ends with content_type byte

Returns the decrypted plaintext (including inner content type).

Source

pub fn decrypt_record( &mut self, tls_version: TlsVersion, record_type: u8, protocol_version: u16, ciphertext: &[u8], ) -> Result<Vec<u8>, DecryptionError>

Decrypt a TLS record, auto-detecting the version from context.

This is a convenience wrapper that routes to the appropriate decryption method based on TLS version.

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more