From 82b841ab0f77bbc12143671f3ab166316f22d143 Mon Sep 17 00:00:00 2001 From: Kyle Petryszak <6314611+ProjectInitiative@users.noreply.github.com> Date: Sun, 15 Oct 2023 19:02:07 -0500 Subject: [PATCH 1/6] Removing 'self.rng.clone()' as cloning resets the seed is insecure. - by removing the clone, cocoon has to be mutable now - all tests pass - this introduces a potential breaking change, but addresses a pretty big security risk. --- src/lib.rs | 64 ++++++++++++++++++++++++++--------------------------- src/mini.rs | 59 ++++++++++++++++++++++++------------------------ 2 files changed, 61 insertions(+), 62 deletions(-) diff --git a/src/lib.rs b/src/lib.rs index 3a535c1..c2c75bb 100644 --- a/src/lib.rs +++ b/src/lib.rs @@ -43,7 +43,7 @@ //! # use cocoon::{MiniCocoon, Error}; //! # //! # fn main() -> Result<(), Error> { -//! let cocoon = MiniCocoon::from_key(b"0123456789abcdef0123456789abcdef", &[0; 32]); +//! let mut cocoon = MiniCocoon::from_key(b"0123456789abcdef0123456789abcdef", &[0; 32]); //! //! let wrapped = cocoon.wrap(b"my secret data")?; //! assert_ne!(&wrapped, b"my secret data"); @@ -69,7 +69,7 @@ //! # //! # fn main() -> Result<(), Error> { //! let mut data = b"my secret data".to_vec(); -//! let cocoon = Cocoon::new(b"password"); +//! let mut cocoon = Cocoon::new(b"password"); //! # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. //! # let mut file = Cursor::new(vec![0; 150]); //! @@ -101,7 +101,7 @@ //! # //! # fn main() -> Result<(), Error> { //! let mut data = "my secret data".to_owned().into_bytes(); -//! let cocoon = MiniCocoon::from_key(b"0123456789abcdef0123456789abcdef", &[0; 32]); +//! let mut cocoon = MiniCocoon::from_key(b"0123456789abcdef0123456789abcdef", &[0; 32]); //! //! let detached_prefix = cocoon.encrypt(&mut data)?; //! assert_ne!(data, b"my secret data"); @@ -149,7 +149,7 @@ //! // Supply some password to Cocoon: it can be any byte array, basically. //! // Don't use a hard-coded password in real life! //! // It could be a user-supplied password. -//! let cocoon = Cocoon::new(b"secret password"); +//! let mut cocoon = Cocoon::new(b"secret password"); //! //! // Dump the serialized database into a file as an encrypted container. //! let container = cocoon.dump(encoded, &mut file)?; @@ -322,7 +322,7 @@ pub use mini::*; /// # use cocoon::{Cocoon, Error}; /// # /// # fn main() -> Result<(), Error> { -/// let cocoon = Cocoon::new(b"password"); +/// let mut cocoon = Cocoon::new(b"password"); /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// let wrapped = cocoon.wrap(b"my secret data")?; @@ -435,7 +435,7 @@ impl<'a> Cocoon<'a, Creation> { /// ``` /// use cocoon::Cocoon; /// - /// let cocoon = Cocoon::new(b"my secret password"); + /// let mut cocoon = Cocoon::new(b"my secret password"); /// ``` pub fn new(password: &'a [u8]) -> Self { Cocoon { @@ -464,7 +464,7 @@ impl<'a> Cocoon<'a, Creation> { /// // ThreadRng is used just for example. /// let seed = rand::thread_rng().gen::<[u8; 32]>(); /// - /// let cocoon = Cocoon::from_seed(b"password", seed); + /// let mut cocoon = Cocoon::from_seed(b"password", seed); /// ``` /// /// **WARNING**: Use this method carefully, don't feed it with a static seed unless testing! @@ -493,7 +493,7 @@ impl<'a> Cocoon<'a, Creation> { /// # // [`ThreadRng`] is used here just as an example. It is supposed to apply some other /// # // cryptographically secure RNG when [`ThreadRng`] is not accessible. /// # let mut good_rng = rand::rngs::ThreadRng::default(); - /// let cocoon = Cocoon::from_rng(b"password", good_rng).unwrap(); + /// let mut cocoon = Cocoon::from_rng(b"password", good_rng).unwrap(); /// ``` pub fn from_rng(password: &'a [u8], rng: R) -> Result { Ok(Cocoon { @@ -516,7 +516,7 @@ impl<'a> Cocoon<'a, Creation> { /// ``` /// use cocoon::Cocoon; /// - /// let cocoon = Cocoon::from_entropy(b"password"); + /// let mut cocoon = Cocoon::from_entropy(b"password"); /// ``` #[cfg(any(feature = "getrandom", test))] #[cfg_attr(docs_rs, doc(cfg(feature = "getrandom")))] @@ -546,7 +546,7 @@ impl<'a> Cocoon<'a, Parsing> { /// ```compile_fail /// use cocoon::Cocoon; /// - /// let cocoon = Cocoon::parse_only(b"password"); + /// let mut cocoon = Cocoon::parse_only(b"password"); /// /// // The compilation process fails here denying to use any encryption method. /// cocoon.wrap(b"my data"); @@ -557,7 +557,7 @@ impl<'a> Cocoon<'a, Parsing> { /// use cocoon::{Cocoon, Error}; /// /// # fn main() -> Result<(), Error> { - /// let cocoon = Cocoon::parse_only(b"password"); + /// let mut cocoon = Cocoon::parse_only(b"password"); /// /// # let mut data = [ /// # 244, 85, 222, 144, 119, 169, 144, 11, 178, 216, 4, 57, 17, 47, 0, @@ -591,7 +591,7 @@ impl<'a> Cocoon<'a, Creation> { /// ``` /// use cocoon::{Cocoon, CocoonCipher}; /// - /// let cocoon = Cocoon::new(b"password").with_cipher(CocoonCipher::Aes256Gcm); + /// let mut cocoon = Cocoon::new(b"password").with_cipher(CocoonCipher::Aes256Gcm); /// cocoon.wrap(b"my secret data"); /// ``` pub fn with_cipher(mut self, cipher: CocoonCipher) -> Self { @@ -608,7 +608,7 @@ impl<'a> Cocoon<'a, Creation> { /// ``` /// use cocoon::Cocoon; /// - /// let cocoon = Cocoon::new(b"password").with_weak_kdf(); + /// let mut cocoon = Cocoon::new(b"password").with_weak_kdf(); /// cocoon.wrap(b"my secret data").expect("New container"); /// ``` pub fn with_weak_kdf(mut self) -> Self { @@ -625,7 +625,7 @@ impl<'a> Cocoon<'a, Creation> { /// # use cocoon::{Cocoon, Error}; /// # /// # fn main() -> Result<(), Error> { - /// let cocoon = Cocoon::new(b"password"); + /// let mut cocoon = Cocoon::new(b"password"); /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// let wrapped = cocoon.wrap(b"my secret data")?; @@ -669,7 +669,7 @@ impl<'a> Cocoon<'a, Creation> { /// # /// # fn main() -> Result<(), Error> { /// let mut data = b"my secret data".to_vec(); - /// let cocoon = Cocoon::new(b"password"); + /// let mut cocoon = Cocoon::new(b"password"); /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// # let mut file = Cursor::new(vec![0; 150]); /// @@ -706,7 +706,7 @@ impl<'a> Cocoon<'a, Creation> { /// # // cryptographically secure RNG when [`ThreadRng`] is not accessible. /// # let mut good_rng = rand::rngs::ThreadRng::default(); /// let mut data = "my secret data".to_owned().into_bytes(); - /// let cocoon = Cocoon::from_rng(b"password", good_rng).unwrap(); + /// let mut cocoon = Cocoon::from_rng(b"password", good_rng).unwrap(); /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// let detached_prefix = cocoon.encrypt(&mut data)?; @@ -771,7 +771,7 @@ impl<'a, M> Cocoon<'a, M> { /// # use cocoon::{Cocoon, Error}; /// # /// # fn main() -> Result<(), Error> { - /// let cocoon = Cocoon::new(b"password"); + /// let mut cocoon = Cocoon::new(b"password"); /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// # let wrapped = cocoon.wrap(b"my secret data")?; @@ -813,7 +813,7 @@ impl<'a, M> Cocoon<'a, M> { /// # /// # fn main() -> Result<(), Error> { /// let mut data = b"my secret data".to_vec(); - /// let cocoon = Cocoon::new(b"password"); + /// let mut cocoon = Cocoon::new(b"password"); /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// # let mut file = Cursor::new(vec![0; 150]); /// @@ -855,7 +855,7 @@ impl<'a, M> Cocoon<'a, M> { /// # // cryptographically secure RNG when [`ThreadRng`] is not accessible. /// # let mut good_rng = rand::rngs::ThreadRng::default(); /// let mut data = "my secret data".to_owned().into_bytes(); - /// let cocoon = Cocoon::from_rng(b"password", good_rng).unwrap(); + /// let mut cocoon = Cocoon::from_rng(b"password", good_rng).unwrap(); /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// let detached_prefix = cocoon.encrypt(&mut data)?; @@ -932,7 +932,7 @@ mod test { #[test] fn cocoon_encrypt() { - let cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); let mut data = "my secret data".to_owned().into_bytes(); let detached_prefix = cocoon.encrypt(&mut data).unwrap(); @@ -955,7 +955,7 @@ mod test { #[test] fn cocoon_encrypt_aes() { - let cocoon = Cocoon::from_seed(b"password", [0; 32]) + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]) .with_weak_kdf() .with_cipher(CocoonCipher::Aes256Gcm); let mut data = "my secret data".to_owned().into_bytes(); @@ -988,7 +988,7 @@ mod test { let mut data = [ 244, 85, 222, 144, 119, 169, 144, 11, 178, 216, 4, 57, 17, 47, ]; - let cocoon = Cocoon::parse_only(b"password"); + let mut cocoon = Cocoon::parse_only(b"password"); cocoon .decrypt(&mut data, &detached_prefix) @@ -1007,7 +1007,7 @@ mod test { let mut data = [ 88, 183, 11, 7, 192, 224, 203, 107, 144, 162, 48, 78, 61, 223, ]; - let cocoon = Cocoon::parse_only(b"password"); + let mut cocoon = Cocoon::parse_only(b"password"); cocoon .decrypt(&mut data, &detached_prefix) @@ -1018,7 +1018,7 @@ mod test { #[test] fn cocoon_wrap() { - let cocoon = Cocoon::from_seed(b"password", [0; 32]); + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]); let wrapped = cocoon.wrap(b"data").expect("Wrapped container"); assert_eq!(wrapped[wrapped.len() - 4..], [27, 107, 178, 181]); @@ -1026,7 +1026,7 @@ mod test { #[test] fn cocoon_wrap_unwrap() { - let cocoon = Cocoon::from_seed(b"password", [0; 32]); + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]); let wrapped = cocoon.wrap(b"data").expect("Wrapped container"); let original = cocoon.unwrap(&wrapped).expect("Unwrapped container"); @@ -1035,7 +1035,7 @@ mod test { #[test] fn cocoon_wrap_unwrap_corrupted() { - let cocoon = Cocoon::from_seed(b"password", [0; 32]); + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]); let mut wrapped = cocoon.wrap(b"data").expect("Wrapped container"); let last = wrapped.len() - 1; @@ -1045,7 +1045,7 @@ mod test { #[test] fn cocoon_unwrap_larger_is_ok() { - let cocoon = Cocoon::from_seed(b"password", [0; 32]); + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]); let mut wrapped = cocoon.wrap(b"data").expect("Wrapped container"); wrapped.push(0); @@ -1056,7 +1056,7 @@ mod test { #[test] fn cocoon_unwrap_too_short() { - let cocoon = Cocoon::from_seed(b"password", [0; 32]); + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]); let mut wrapped = cocoon.wrap(b"data").expect("Wrapped container"); wrapped.pop(); @@ -1073,7 +1073,7 @@ mod test { let mut data = [ 244, 85, 222, 144, 119, 169, 144, 11, 178, 216, 4, 57, 17, 47, 0, ]; - let cocoon = Cocoon::parse_only(b"password"); + let mut cocoon = Cocoon::parse_only(b"password"); cocoon .decrypt(&mut data, &detached_prefix) @@ -1090,7 +1090,7 @@ mod test { fn cocoon_dump_parse() { let buf = vec![0; 100]; let mut file = Cursor::new(buf); - let cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); // Prepare data inside of `Vec` container. let data = b"my data".to_vec(); @@ -1113,7 +1113,7 @@ mod test { File::create(read_only_file.clone()).expect("Test file"); let mut file = File::open(read_only_file).expect("Test file"); - let cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); // Prepare data inside of `Vec` container. let data = b"my data".to_vec(); @@ -1135,7 +1135,7 @@ mod test { File::create(read_only_file.clone()).expect("Test file"); let mut file = File::open(read_only_file).expect("Test file"); - let cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); + let mut cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); match cocoon.parse(&mut file) { Err(e) => match e { diff --git a/src/mini.rs b/src/mini.rs index d31fdcc..37445c7 100644 --- a/src/mini.rs +++ b/src/mini.rs @@ -34,7 +34,7 @@ pub struct MiniCocoon { /// # use cocoon::{MiniCocoon, Error}; /// # /// # fn main() -> Result<(), Error> { -/// let cocoon = MiniCocoon::from_key(b"0123456789abcdef0123456789abcdef", &[0; 32]); +/// let mut cocoon = MiniCocoon::from_key(b"0123456789abcdef0123456789abcdef", &[0; 32]); /// /// let wrapped = cocoon.wrap(b"my secret data")?; /// assert_ne!(&wrapped, b"my secret data"); @@ -92,7 +92,7 @@ impl MiniCocoon { /// // Key must be 32 bytes of length. Let it be another 32 random bytes. /// let key = rand::thread_rng().gen::<[u8; 32]>(); /// - /// let cocoon = MiniCocoon::from_key(&key, &seed); + /// let mut cocoon = MiniCocoon::from_key(&key, &seed); /// ``` pub fn from_key(key: &[u8], seed: &[u8]) -> Self { let mut k = [0u8; KEY_SIZE]; @@ -126,7 +126,7 @@ impl MiniCocoon { /// // ThreadRng is used as an example. /// let seed = rand::thread_rng().gen::<[u8; 32]>(); /// - /// let cocoon = MiniCocoon::from_password(b"my password", &seed); + /// let mut cocoon = MiniCocoon::from_password(b"my password", &seed); /// ``` pub fn from_password(password: &[u8], seed: &[u8]) -> Self { let config = CocoonConfig::default(); @@ -152,7 +152,7 @@ impl MiniCocoon { /// let seed = rand::thread_rng().gen::<[u8; 32]>(); /// let key = rand::thread_rng().gen::<[u8; 32]>(); /// - /// let cocoon = MiniCocoon::from_key(&key, &seed).with_cipher(CocoonCipher::Chacha20Poly1305); + /// let mut cocoon = MiniCocoon::from_key(&key, &seed).with_cipher(CocoonCipher::Chacha20Poly1305); /// cocoon.wrap(b"my secret data"); /// ``` pub fn with_cipher(mut self, cipher: CocoonCipher) -> Self { @@ -171,7 +171,7 @@ impl MiniCocoon { /// # /// # fn main() -> Result<(), Error> { /// let seed = rand::thread_rng().gen::<[u8; 32]>(); - /// let cocoon = MiniCocoon::from_password(b"password", &seed); + /// let mut cocoon = MiniCocoon::from_password(b"password", &seed); /// /// let wrapped = cocoon.wrap(b"my secret data")?; /// assert_ne!(&wrapped, b"my secret data"); @@ -181,7 +181,7 @@ impl MiniCocoon { /// ``` #[cfg(feature = "alloc")] #[cfg_attr(docs_rs, doc(cfg(any(feature = "alloc", feature = "std"))))] - pub fn wrap(&self, data: &[u8]) -> Result, Error> { + pub fn wrap(&mut self, data: &[u8]) -> Result, Error> { // Allocation is needed because there is no way to prefix encrypted // data with a header without an allocation. It means that we need // to copy data at least once. It's necessary to avoid any further copying. @@ -218,7 +218,7 @@ impl MiniCocoon { /// 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32]; /// let seed = rand::thread_rng().gen::<[u8; 32]>(); /// - /// let cocoon = MiniCocoon::from_key(&key, &seed); + /// let mut cocoon = MiniCocoon::from_key(&key, &seed); /// # let mut file = Cursor::new(vec![0; 150]); /// /// let mut data = b"my secret data".to_vec(); @@ -230,7 +230,7 @@ impl MiniCocoon { /// # } #[cfg(feature = "std")] #[cfg_attr(docs_rs, doc(cfg(feature = "std")))] - pub fn dump(&self, mut data: Vec, writer: &mut impl Write) -> Result<(), Error> { + pub fn dump(&mut self, mut data: Vec, writer: &mut impl Write) -> Result<(), Error> { let detached_prefix = self.encrypt(&mut data)?; writer.write_all(&detached_prefix)?; @@ -252,7 +252,7 @@ impl MiniCocoon { /// # use cocoon::{MiniCocoon, Error}; /// # /// # fn main() -> Result<(), Error> { - /// let cocoon = MiniCocoon::from_password(b"password", &[1; 32]); + /// let mut cocoon = MiniCocoon::from_password(b"password", &[1; 32]); /// /// let mut data = "my secret data".to_owned().into_bytes(); /// @@ -261,11 +261,10 @@ impl MiniCocoon { /// # Ok(()) /// # } /// ``` - pub fn encrypt(&self, data: &mut [u8]) -> Result<[u8; MINI_PREFIX_SIZE], Error> { - let mut rng = self.rng.clone(); + pub fn encrypt(&mut self, data: &mut [u8]) -> Result<[u8; MINI_PREFIX_SIZE], Error> { let mut nonce = [0u8; 12]; - rng.fill_bytes(&mut nonce); + self.rng.fill_bytes(&mut nonce); let header = MiniCocoonHeader::new(nonce, data.len()); let prefix = MiniFormatPrefix::new(header); @@ -300,7 +299,7 @@ impl MiniCocoon { /// let key = b"0123456789abcdef0123456789abcdef"; /// let seed = rand::thread_rng().gen::<[u8; 32]>(); /// - /// let cocoon = MiniCocoon::from_key(key, &seed); + /// let mut cocoon = MiniCocoon::from_key(key, &seed); /// /// # let wrapped = cocoon.wrap(b"my secret data")?; /// # assert_ne!(&wrapped, b"my secret data"); @@ -344,7 +343,7 @@ impl MiniCocoon { /// let key = b"0123456789abcdef0123456789abcdef"; /// let seed = rand::thread_rng().gen::<[u8; 32]>(); /// - /// let cocoon = MiniCocoon::from_key(key, &seed); + /// let mut cocoon = MiniCocoon::from_key(key, &seed); /// # let mut file = Cursor::new(vec![0; 150]); /// # /// # let mut data = b"my secret data".to_vec(); @@ -384,7 +383,7 @@ impl MiniCocoon { /// # /// # fn main() -> Result<(), Error> { /// let mut data = "my secret data".to_owned().into_bytes(); - /// let cocoon = MiniCocoon::from_password(b"password", &[0; 32]); + /// let mut cocoon = MiniCocoon::from_password(b"password", &[0; 32]); /// /// let detached_prefix = cocoon.encrypt(&mut data)?; /// assert_ne!(data, b"my secret data"); @@ -453,7 +452,7 @@ mod test { #[test] fn mini_cocoon_encrypt() { - let cocoon = MiniCocoon::from_password(b"password", &[0; 32]); + let mut cocoon = MiniCocoon::from_password(b"password", &[0; 32]); let mut data = "my secret data".to_owned().into_bytes(); let detached_prefix = cocoon.encrypt(&mut data).unwrap(); @@ -474,7 +473,7 @@ mod test { #[test] fn mini_cocoon_encrypt_aes() { - let cocoon = + let mut cocoon = MiniCocoon::from_password(b"password", &[0; 32]).with_cipher(CocoonCipher::Aes256Gcm); let mut data = "my secret data".to_owned().into_bytes(); @@ -503,7 +502,7 @@ mod test { let mut data = [ 224, 50, 239, 254, 30, 140, 44, 135, 217, 94, 127, 67, 78, 31, ]; - let cocoon = MiniCocoon::from_password(b"password", &[0; 32]); + let mut cocoon = MiniCocoon::from_password(b"password", &[0; 32]); cocoon .decrypt(&mut data, &detached_prefix) @@ -521,7 +520,7 @@ mod test { let mut data = [ 178, 119, 26, 64, 67, 5, 235, 21, 238, 150, 245, 172, 197, 114, ]; - let cocoon = + let mut cocoon = MiniCocoon::from_password(b"password", &[0; 32]).with_cipher(CocoonCipher::Aes256Gcm); cocoon @@ -533,7 +532,7 @@ mod test { #[test] fn mini_cocoon_wrap() { - let cocoon = MiniCocoon::from_password(b"password", &[0; 32]); + let mut cocoon = MiniCocoon::from_password(b"password", &[0; 32]); let wrapped = cocoon.wrap(b"data").expect("Wrapped container"); assert_eq!(wrapped[wrapped.len() - 4..], [107, 58, 119, 44]); @@ -541,8 +540,8 @@ mod test { #[test] fn mini_cocoon_wrap_unwrap() { - let cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); - let wrapped = cocoon.wrap(b"data").expect("Wrapped container"); + let mut cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); + let mut wrapped = cocoon.wrap(b"data").expect("Wrapped container"); let original = cocoon.unwrap(&wrapped).expect("Unwrapped container"); assert_eq!(original, b"data"); @@ -550,17 +549,17 @@ mod test { #[test] fn mini_cocoon_wrap_unwrap_corrupted() { - let cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); + let mut cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); let mut wrapped = cocoon.wrap(b"data").expect("Wrapped container"); let last = wrapped.len() - 1; wrapped[last] += 1; - cocoon.unwrap(&wrapped).expect_err("Unwrapped container"); + &cocoon.unwrap(&wrapped).expect_err("Unwrapped container"); } #[test] fn mini_cocoon_unwrap_larger_is_ok() { - let cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); + let mut cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); let mut wrapped = cocoon.wrap(b"data").expect("Wrapped container"); wrapped.push(0); @@ -571,7 +570,7 @@ mod test { #[test] fn mini_cocoon_unwrap_too_short() { - let cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); + let mut cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); let mut wrapped = cocoon.wrap(b"data").expect("Wrapped container"); wrapped.pop(); @@ -587,7 +586,7 @@ mod test { let mut data = [ 178, 119, 26, 64, 67, 5, 235, 21, 238, 150, 245, 172, 197, 114, 0, ]; - let cocoon = + let mut cocoon = MiniCocoon::from_password(b"password", &[0; 32]).with_cipher(CocoonCipher::Aes256Gcm); cocoon @@ -605,7 +604,7 @@ mod test { fn mini_cocoon_dump_parse() { let buf = vec![0; 100]; let mut file = Cursor::new(buf); - let cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); + let mut cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); // Prepare data inside of `Vec` container. let data = b"my data".to_vec(); @@ -628,7 +627,7 @@ mod test { File::create(read_only_file.clone()).expect("Test file"); let mut file = File::open(read_only_file).expect("Test file"); - let cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); + let mut cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); // Prepare data inside of `Vec` container. let data = b"my data".to_vec(); @@ -650,7 +649,7 @@ mod test { File::create(read_only_file.clone()).expect("Test file"); let mut file = File::open(read_only_file).expect("Test file"); - let cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); + let mut cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); match cocoon.parse(&mut file) { Err(e) => match e { From f73f0875b92a6faedf657347ae370f0720d90109 Mon Sep 17 00:00:00 2001 From: Kyle Petryszak <6314611+ProjectInitiative@users.noreply.github.com> Date: Sun, 15 Oct 2023 20:11:39 -0500 Subject: [PATCH 2/6] adding test for sequential encrypts --- src/lib.rs | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/src/lib.rs b/src/lib.rs index c2c75bb..862eb00 100644 --- a/src/lib.rs +++ b/src/lib.rs @@ -951,6 +951,17 @@ mod test { &[186, 240, 214, 29, 4, 147, 205, 72, 210, 7, 167, 234, 199, 53], &data[..] ); + + let mut cipher_data: Vec> = Vec::new(); + cipher_data.push(data.to_vec()); + for i in 0..100 { + cocoon.encrypt(&mut data).unwrap(); + cipher_data.push(data.to_vec()); + assert_ne!( + &cipher_data.last().unwrap(), + &cipher_data.get(i).unwrap() + ) + } } #[test] From 4d2789606f5620e7e6d821c7ea99e6b9578dd76e Mon Sep 17 00:00:00 2001 From: Kyle Petryszak <6314611+ProjectInitiative@users.noreply.github.com> Date: Sun, 15 Oct 2023 21:30:28 -0500 Subject: [PATCH 3/6] Removing clone from cocoon - same changes in minicocoon - updated docs - removing clone --- src/lib.rs | 56 ++++++++++++++++++++++++++++++++--------------------- src/mini.rs | 37 +++++++++++++++++++++++++++++------ 2 files changed, 65 insertions(+), 28 deletions(-) diff --git a/src/lib.rs b/src/lib.rs index 862eb00..511ee49 100644 --- a/src/lib.rs +++ b/src/lib.rs @@ -70,7 +70,7 @@ //! # fn main() -> Result<(), Error> { //! let mut data = b"my secret data".to_vec(); //! let mut cocoon = Cocoon::new(b"password"); -//! # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. +//! # let mut cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. //! # let mut file = Cursor::new(vec![0; 150]); //! //! cocoon.dump(data, &mut file)?; @@ -323,7 +323,7 @@ pub use mini::*; /// # /// # fn main() -> Result<(), Error> { /// let mut cocoon = Cocoon::new(b"password"); -/// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. +/// # let mut cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// let wrapped = cocoon.wrap(b"my secret data")?; /// assert_ne!(&wrapped, b"my secret data"); @@ -626,7 +626,7 @@ impl<'a> Cocoon<'a, Creation> { /// # /// # fn main() -> Result<(), Error> { /// let mut cocoon = Cocoon::new(b"password"); - /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. + /// # let mut cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// let wrapped = cocoon.wrap(b"my secret data")?; /// assert_ne!(&wrapped, b"my secret data"); @@ -636,7 +636,7 @@ impl<'a> Cocoon<'a, Creation> { /// ``` #[cfg(feature = "alloc")] #[cfg_attr(docs_rs, doc(cfg(any(feature = "alloc", feature = "std"))))] - pub fn wrap(&self, data: &[u8]) -> Result, Error> { + pub fn wrap(&mut self, data: &[u8]) -> Result, Error> { // Allocation is needed because there is no way to prefix encrypted // data with a header without an allocation. It means that we need // to copy data at least once. It's necessary to avoid any further copying. @@ -670,7 +670,7 @@ impl<'a> Cocoon<'a, Creation> { /// # fn main() -> Result<(), Error> { /// let mut data = b"my secret data".to_vec(); /// let mut cocoon = Cocoon::new(b"password"); - /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. + /// # let mut cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// # let mut file = Cursor::new(vec![0; 150]); /// /// cocoon.dump(data, &mut file)?; @@ -680,7 +680,7 @@ impl<'a> Cocoon<'a, Creation> { /// # } #[cfg(feature = "std")] #[cfg_attr(docs_rs, doc(cfg(feature = "std")))] - pub fn dump(&self, mut data: Vec, writer: &mut impl Write) -> Result<(), Error> { + pub fn dump(&mut self, mut data: Vec, writer: &mut impl Write) -> Result<(), Error> { let detached_prefix = self.encrypt(&mut data)?; writer.write_all(&detached_prefix)?; @@ -707,26 +707,26 @@ impl<'a> Cocoon<'a, Creation> { /// # let mut good_rng = rand::rngs::ThreadRng::default(); /// let mut data = "my secret data".to_owned().into_bytes(); /// let mut cocoon = Cocoon::from_rng(b"password", good_rng).unwrap(); - /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. + /// # let mut cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// let detached_prefix = cocoon.encrypt(&mut data)?; /// assert_ne!(data, b"my secret data"); /// # Ok(()) /// # } /// ``` - pub fn encrypt(&self, data: &mut [u8]) -> Result<[u8; PREFIX_SIZE], Error> { + pub fn encrypt(&mut self, data: &mut [u8]) -> Result<[u8; PREFIX_SIZE], Error> { let mut salt = [0u8; 16]; let mut nonce = [0u8; 12]; - match &self.rng { + match self.rng { #[cfg(feature = "std")] - RngVariant::Thread(rng) => { - let mut rng = rng.clone(); + RngVariant::Thread(ref mut rng) => { + // let mut rng = rng.clone(); rng.fill_bytes(&mut salt); rng.fill_bytes(&mut nonce); } - RngVariant::Std(rng) => { - let mut rng = rng.clone(); + RngVariant::Std(ref mut rng) => { + // let mut rng = rng.clone(); rng.fill_bytes(&mut salt); rng.fill_bytes(&mut nonce); } @@ -772,7 +772,7 @@ impl<'a, M> Cocoon<'a, M> { /// # /// # fn main() -> Result<(), Error> { /// let mut cocoon = Cocoon::new(b"password"); - /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. + /// # let mut cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// # let wrapped = cocoon.wrap(b"my secret data")?; /// # assert_ne!(&wrapped, b"my secret data"); @@ -814,7 +814,7 @@ impl<'a, M> Cocoon<'a, M> { /// # fn main() -> Result<(), Error> { /// let mut data = b"my secret data".to_vec(); /// let mut cocoon = Cocoon::new(b"password"); - /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. + /// # let mut cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// # let mut file = Cursor::new(vec![0; 150]); /// /// # cocoon.dump(data, &mut file)?; @@ -856,7 +856,7 @@ impl<'a, M> Cocoon<'a, M> { /// # let mut good_rng = rand::rngs::ThreadRng::default(); /// let mut data = "my secret data".to_owned().into_bytes(); /// let mut cocoon = Cocoon::from_rng(b"password", good_rng).unwrap(); - /// # let cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. + /// # let mut cocoon = cocoon.with_weak_kdf(); // Speed up doc tests. /// /// let detached_prefix = cocoon.encrypt(&mut data)?; /// assert_ne!(data, b"my secret data"); @@ -935,7 +935,7 @@ mod test { let mut cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); let mut data = "my secret data".to_owned().into_bytes(); - let detached_prefix = cocoon.encrypt(&mut data).unwrap(); + let detached_prefix = &cocoon.encrypt(&mut data).unwrap(); assert_eq!( &[ @@ -955,7 +955,8 @@ mod test { let mut cipher_data: Vec> = Vec::new(); cipher_data.push(data.to_vec()); for i in 0..100 { - cocoon.encrypt(&mut data).unwrap(); + data = "my secret data".to_owned().into_bytes(); + let _ = cocoon.encrypt(&mut data).unwrap(); cipher_data.push(data.to_vec()); assert_ne!( &cipher_data.last().unwrap(), @@ -987,6 +988,17 @@ mod test { &[88, 183, 11, 7, 192, 224, 203, 107, 144, 162, 48, 78, 61, 223], &data[..] ); + let mut cipher_data: Vec> = Vec::new(); + cipher_data.push(data.to_vec()); + for i in 0..100 { + data = "my secret data".to_owned().into_bytes(); + let _ = cocoon.encrypt(&mut data).unwrap(); + cipher_data.push(data.to_vec()); + assert_ne!( + &cipher_data.last().unwrap(), + &cipher_data.get(i).unwrap() + ) + } } #[test] @@ -999,7 +1011,7 @@ mod test { let mut data = [ 244, 85, 222, 144, 119, 169, 144, 11, 178, 216, 4, 57, 17, 47, ]; - let mut cocoon = Cocoon::parse_only(b"password"); + let cocoon = Cocoon::parse_only(b"password"); cocoon .decrypt(&mut data, &detached_prefix) @@ -1018,7 +1030,7 @@ mod test { let mut data = [ 88, 183, 11, 7, 192, 224, 203, 107, 144, 162, 48, 78, 61, 223, ]; - let mut cocoon = Cocoon::parse_only(b"password"); + let cocoon = Cocoon::parse_only(b"password"); cocoon .decrypt(&mut data, &detached_prefix) @@ -1084,7 +1096,7 @@ mod test { let mut data = [ 244, 85, 222, 144, 119, 169, 144, 11, 178, 216, 4, 57, 17, 47, 0, ]; - let mut cocoon = Cocoon::parse_only(b"password"); + let cocoon = Cocoon::parse_only(b"password"); cocoon .decrypt(&mut data, &detached_prefix) @@ -1146,7 +1158,7 @@ mod test { File::create(read_only_file.clone()).expect("Test file"); let mut file = File::open(read_only_file).expect("Test file"); - let mut cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); + let cocoon = Cocoon::from_seed(b"password", [0; 32]).with_weak_kdf(); match cocoon.parse(&mut file) { Err(e) => match e { diff --git a/src/mini.rs b/src/mini.rs index 37445c7..a354d46 100644 --- a/src/mini.rs +++ b/src/mini.rs @@ -265,6 +265,7 @@ impl MiniCocoon { let mut nonce = [0u8; 12]; self.rng.fill_bytes(&mut nonce); + println!("nonce: {:?}", nonce); let header = MiniCocoonHeader::new(nonce, data.len()); let prefix = MiniFormatPrefix::new(header); @@ -469,6 +470,18 @@ mod test { &[98, 34, 35, 62, 28, 121, 71, 223, 170, 151, 215, 104, 52, 187], &data[..] ); + + let mut cipher_data: Vec> = Vec::new(); + cipher_data.push(data.to_vec()); + for i in 0..100 { + data = "my secret data".to_owned().into_bytes(); + let _ = cocoon.encrypt(&mut data).unwrap(); + cipher_data.push(data.to_vec()); + assert_ne!( + &cipher_data.last().unwrap(), + &cipher_data.get(i).unwrap() + ) + } } #[test] @@ -491,6 +504,18 @@ mod test { &[41, 58, 226, 219, 28, 132, 21, 216, 165, 46, 246, 120, 10, 92], &data[..] ); + + let mut cipher_data: Vec> = Vec::new(); + cipher_data.push(data.to_vec()); + for i in 0..100 { + data = "my secret data".to_owned().into_bytes(); + let _ = cocoon.encrypt(&mut data).unwrap(); + cipher_data.push(data.to_vec()); + assert_ne!( + &cipher_data.last().unwrap(), + &cipher_data.get(i).unwrap() + ) + } } #[test] @@ -502,7 +527,7 @@ mod test { let mut data = [ 224, 50, 239, 254, 30, 140, 44, 135, 217, 94, 127, 67, 78, 31, ]; - let mut cocoon = MiniCocoon::from_password(b"password", &[0; 32]); + let cocoon = MiniCocoon::from_password(b"password", &[0; 32]); cocoon .decrypt(&mut data, &detached_prefix) @@ -520,7 +545,7 @@ mod test { let mut data = [ 178, 119, 26, 64, 67, 5, 235, 21, 238, 150, 245, 172, 197, 114, ]; - let mut cocoon = + let cocoon = MiniCocoon::from_password(b"password", &[0; 32]).with_cipher(CocoonCipher::Aes256Gcm); cocoon @@ -541,7 +566,7 @@ mod test { #[test] fn mini_cocoon_wrap_unwrap() { let mut cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); - let mut wrapped = cocoon.wrap(b"data").expect("Wrapped container"); + let wrapped = cocoon.wrap(b"data").expect("Wrapped container"); let original = cocoon.unwrap(&wrapped).expect("Unwrapped container"); assert_eq!(original, b"data"); @@ -554,7 +579,7 @@ mod test { let last = wrapped.len() - 1; wrapped[last] += 1; - &cocoon.unwrap(&wrapped).expect_err("Unwrapped container"); + let _ = &cocoon.unwrap(&wrapped).expect_err("Unwrapped container"); } #[test] @@ -586,7 +611,7 @@ mod test { let mut data = [ 178, 119, 26, 64, 67, 5, 235, 21, 238, 150, 245, 172, 197, 114, 0, ]; - let mut cocoon = + let cocoon = MiniCocoon::from_password(b"password", &[0; 32]).with_cipher(CocoonCipher::Aes256Gcm); cocoon @@ -649,7 +674,7 @@ mod test { File::create(read_only_file.clone()).expect("Test file"); let mut file = File::open(read_only_file).expect("Test file"); - let mut cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); + let cocoon = MiniCocoon::from_key(&[1; 32], &[0; 32]); match cocoon.parse(&mut file) { Err(e) => match e { From ad9017b2b4fedf5ed5fa483708e8170897287515 Mon Sep 17 00:00:00 2001 From: Kyle Petryszak <6314611+ProjectInitiative@users.noreply.github.com> Date: Sun, 15 Oct 2023 21:31:51 -0500 Subject: [PATCH 4/6] removing comment --- src/lib.rs | 2 -- 1 file changed, 2 deletions(-) diff --git a/src/lib.rs b/src/lib.rs index 511ee49..ef09999 100644 --- a/src/lib.rs +++ b/src/lib.rs @@ -721,12 +721,10 @@ impl<'a> Cocoon<'a, Creation> { match self.rng { #[cfg(feature = "std")] RngVariant::Thread(ref mut rng) => { - // let mut rng = rng.clone(); rng.fill_bytes(&mut salt); rng.fill_bytes(&mut nonce); } RngVariant::Std(ref mut rng) => { - // let mut rng = rng.clone(); rng.fill_bytes(&mut salt); rng.fill_bytes(&mut nonce); } From 176a4f4ec5247b3892a0bd587d74df25e410d5a7 Mon Sep 17 00:00:00 2001 From: Kyle Petryszak <6314611+ProjectInitiative@users.noreply.github.com> Date: Mon, 16 Oct 2023 08:47:15 -0500 Subject: [PATCH 5/6] fixing tests, removing println --- src/lib.rs | 24 ++++++++++++++---------- src/mini.rs | 25 ++++++++++++++----------- 2 files changed, 28 insertions(+), 21 deletions(-) diff --git a/src/lib.rs b/src/lib.rs index ef09999..022842a 100644 --- a/src/lib.rs +++ b/src/lib.rs @@ -952,14 +952,16 @@ mod test { let mut cipher_data: Vec> = Vec::new(); cipher_data.push(data.to_vec()); - for i in 0..100 { + for _ in 0..100 { data = "my secret data".to_owned().into_bytes(); let _ = cocoon.encrypt(&mut data).unwrap(); cipher_data.push(data.to_vec()); - assert_ne!( - &cipher_data.last().unwrap(), - &cipher_data.get(i).unwrap() - ) + for i in 0..cipher_data.len() - 2 { + assert_ne!( + &cipher_data.last().unwrap(), + &cipher_data.get(i).unwrap() + ) + } } } @@ -988,14 +990,16 @@ mod test { ); let mut cipher_data: Vec> = Vec::new(); cipher_data.push(data.to_vec()); - for i in 0..100 { + for _ in 0..100 { data = "my secret data".to_owned().into_bytes(); let _ = cocoon.encrypt(&mut data).unwrap(); cipher_data.push(data.to_vec()); - assert_ne!( - &cipher_data.last().unwrap(), - &cipher_data.get(i).unwrap() - ) + for i in 0..cipher_data.len() - 2 { + assert_ne!( + &cipher_data.last().unwrap(), + &cipher_data.get(i).unwrap() + ) + } } } diff --git a/src/mini.rs b/src/mini.rs index a354d46..d6a9d9d 100644 --- a/src/mini.rs +++ b/src/mini.rs @@ -265,7 +265,6 @@ impl MiniCocoon { let mut nonce = [0u8; 12]; self.rng.fill_bytes(&mut nonce); - println!("nonce: {:?}", nonce); let header = MiniCocoonHeader::new(nonce, data.len()); let prefix = MiniFormatPrefix::new(header); @@ -473,14 +472,16 @@ mod test { let mut cipher_data: Vec> = Vec::new(); cipher_data.push(data.to_vec()); - for i in 0..100 { + for _ in 0..100 { data = "my secret data".to_owned().into_bytes(); let _ = cocoon.encrypt(&mut data).unwrap(); cipher_data.push(data.to_vec()); - assert_ne!( - &cipher_data.last().unwrap(), - &cipher_data.get(i).unwrap() - ) + for i in 0..cipher_data.len() - 2 { + assert_ne!( + &cipher_data.last().unwrap(), + &cipher_data.get(i).unwrap() + ) + } } } @@ -507,14 +508,16 @@ mod test { let mut cipher_data: Vec> = Vec::new(); cipher_data.push(data.to_vec()); - for i in 0..100 { + for _ in 0..100 { data = "my secret data".to_owned().into_bytes(); let _ = cocoon.encrypt(&mut data).unwrap(); cipher_data.push(data.to_vec()); - assert_ne!( - &cipher_data.last().unwrap(), - &cipher_data.get(i).unwrap() - ) + for i in 0..cipher_data.len() - 2 { + assert_ne!( + &cipher_data.last().unwrap(), + &cipher_data.get(i).unwrap() + ) + } } } From 5a23fb33a93e396ff93fb31ee7d3135c72570808 Mon Sep 17 00:00:00 2001 From: Kyle Petryszak <6314611+ProjectInitiative@users.noreply.github.com> Date: Mon, 16 Oct 2023 17:46:57 -0500 Subject: [PATCH 6/6] fixing formatting and reducing test iterations --- src/lib.rs | 14 ++++---------- src/mini.rs | 15 ++++----------- 2 files changed, 8 insertions(+), 21 deletions(-) diff --git a/src/lib.rs b/src/lib.rs index 022842a..620f468 100644 --- a/src/lib.rs +++ b/src/lib.rs @@ -952,15 +952,12 @@ mod test { let mut cipher_data: Vec> = Vec::new(); cipher_data.push(data.to_vec()); - for _ in 0..100 { + for _ in 0..10 { data = "my secret data".to_owned().into_bytes(); let _ = cocoon.encrypt(&mut data).unwrap(); cipher_data.push(data.to_vec()); for i in 0..cipher_data.len() - 2 { - assert_ne!( - &cipher_data.last().unwrap(), - &cipher_data.get(i).unwrap() - ) + assert_ne!(&cipher_data.last().unwrap(), &cipher_data.get(i).unwrap()) } } } @@ -990,15 +987,12 @@ mod test { ); let mut cipher_data: Vec> = Vec::new(); cipher_data.push(data.to_vec()); - for _ in 0..100 { + for _ in 0..10 { data = "my secret data".to_owned().into_bytes(); let _ = cocoon.encrypt(&mut data).unwrap(); cipher_data.push(data.to_vec()); for i in 0..cipher_data.len() - 2 { - assert_ne!( - &cipher_data.last().unwrap(), - &cipher_data.get(i).unwrap() - ) + assert_ne!(&cipher_data.last().unwrap(), &cipher_data.get(i).unwrap()) } } } diff --git a/src/mini.rs b/src/mini.rs index d6a9d9d..13a4bca 100644 --- a/src/mini.rs +++ b/src/mini.rs @@ -262,7 +262,6 @@ impl MiniCocoon { /// # } /// ``` pub fn encrypt(&mut self, data: &mut [u8]) -> Result<[u8; MINI_PREFIX_SIZE], Error> { - let mut nonce = [0u8; 12]; self.rng.fill_bytes(&mut nonce); @@ -472,15 +471,12 @@ mod test { let mut cipher_data: Vec> = Vec::new(); cipher_data.push(data.to_vec()); - for _ in 0..100 { + for _ in 0..10 { data = "my secret data".to_owned().into_bytes(); let _ = cocoon.encrypt(&mut data).unwrap(); cipher_data.push(data.to_vec()); for i in 0..cipher_data.len() - 2 { - assert_ne!( - &cipher_data.last().unwrap(), - &cipher_data.get(i).unwrap() - ) + assert_ne!(&cipher_data.last().unwrap(), &cipher_data.get(i).unwrap()) } } } @@ -508,15 +504,12 @@ mod test { let mut cipher_data: Vec> = Vec::new(); cipher_data.push(data.to_vec()); - for _ in 0..100 { + for _ in 0..10 { data = "my secret data".to_owned().into_bytes(); let _ = cocoon.encrypt(&mut data).unwrap(); cipher_data.push(data.to_vec()); for i in 0..cipher_data.len() - 2 { - assert_ne!( - &cipher_data.last().unwrap(), - &cipher_data.get(i).unwrap() - ) + assert_ne!(&cipher_data.last().unwrap(), &cipher_data.get(i).unwrap()) } } }