1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
use crate::crypto::hash::Digest;
use crate::{Error, Result};
use crate::types::{HashAlgorithm};
impl<T: nettle::hash::Hash + Clone> Digest for T {
fn digest_size(&self) -> usize {
self.digest_size()
}
fn update(&mut self, data: &[u8]) {
self.update(data);
}
fn digest(&mut self, digest: &mut [u8]) {
self.digest(digest);
}
}
impl HashAlgorithm {
pub fn is_supported(self) -> bool {
match self {
HashAlgorithm::SHA1 => true,
HashAlgorithm::SHA224 => true,
HashAlgorithm::SHA256 => true,
HashAlgorithm::SHA384 => true,
HashAlgorithm::SHA512 => true,
HashAlgorithm::RipeMD => true,
HashAlgorithm::MD5 => true,
HashAlgorithm::Private(_) => false,
HashAlgorithm::Unknown(_) => false,
HashAlgorithm::__Nonexhaustive => unreachable!(),
}
}
pub(crate) fn new_hasher(self) -> Result<Box<dyn Digest>> {
use nettle::hash::{Sha224, Sha256, Sha384, Sha512};
use nettle::hash::insecure_do_not_use::{
Sha1,
Md5,
Ripemd160,
};
match self {
HashAlgorithm::SHA1 => Ok(Box::new(Sha1::default())),
HashAlgorithm::SHA224 => Ok(Box::new(Sha224::default())),
HashAlgorithm::SHA256 => Ok(Box::new(Sha256::default())),
HashAlgorithm::SHA384 => Ok(Box::new(Sha384::default())),
HashAlgorithm::SHA512 => Ok(Box::new(Sha512::default())),
HashAlgorithm::MD5 => Ok(Box::new(Md5::default())),
HashAlgorithm::RipeMD => Ok(Box::new(Ripemd160::default())),
HashAlgorithm::Private(_) | HashAlgorithm::Unknown(_) =>
Err(Error::UnsupportedHashAlgorithm(self).into()),
HashAlgorithm::__Nonexhaustive => unreachable!(),
}
}
pub fn oid(self) -> Result<&'static [u8]> {
use nettle::rsa;
match self {
HashAlgorithm::SHA1 => Ok(rsa::ASN1_OID_SHA1),
HashAlgorithm::SHA224 => Ok(rsa::ASN1_OID_SHA224),
HashAlgorithm::SHA256 => Ok(rsa::ASN1_OID_SHA256),
HashAlgorithm::SHA384 => Ok(rsa::ASN1_OID_SHA384),
HashAlgorithm::SHA512 => Ok(rsa::ASN1_OID_SHA512),
HashAlgorithm::MD5 => Ok(rsa::ASN1_OID_MD5),
HashAlgorithm::RipeMD => Ok(rsa::ASN1_OID_RIPEMD160),
HashAlgorithm::Private(_) | HashAlgorithm::Unknown(_) =>
Err(Error::UnsupportedHashAlgorithm(self).into()),
HashAlgorithm::__Nonexhaustive => unreachable!(),
}
}
}