bitwarden_crypto::keys::symmetric_crypto_key

Enum SymmetricCryptoKey

Source 
pub enum SymmetricCryptoKey {
    Aes256CbcKey(Aes256CbcKey),
    Aes256CbcHmacKey(Aes256CbcHmacKey),
    XChaCha20Poly1305Key(XChaCha20Poly1305Key),
}
Expand description

A symmetric encryption key. Used to encrypt and decrypt EncString

Variants§

§

Aes256CbcKey(Aes256CbcKey)

§

Aes256CbcHmacKey(Aes256CbcHmacKey)

§

XChaCha20Poly1305Key(XChaCha20Poly1305Key)

Data encrypted by XChaCha20Poly1305Key keys has type Cose_Encrypt0_B64

Implementations§

Source§

impl SymmetricCryptoKey

Source

const AES256_CBC_KEY_LEN: usize = 32usize

Source

const AES256_CBC_HMAC_KEY_LEN: usize = 64usize

Source

pub(crate) fn make_aes256_cbc_hmac_key_internal( rng: impl RngCore + CryptoRng, ) -> Self

Generate a new random AES256_CBC SymmetricCryptoKey

WARNING: This function should only be used with a proper cryptographic RNG. If you do not have a good reason for using this function, use SymmetricCryptoKey::make_aes256_cbc_hmac_key instead.

Source

pub fn make_aes256_cbc_hmac_key() -> Self

Generate a new random AES256_CBC_HMAC SymmetricCryptoKey

Source

pub fn make_xchacha20_poly1305_key() -> Self

Generate a new random XChaCha20Poly1305 SymmetricCryptoKey

Source

pub fn to_encoded(&self) -> Vec<u8>

Encodes the key to a byte array representation, that is separated by size. SymmetricCryptoKey::Aes256CbcHmacKey and SymmetricCryptoKey::Aes256CbcKey are encoded as 64 and 32 bytes respectively. SymmetricCryptoKey::XChaCha20Poly1305Key is encoded as at least 65 bytes, using padding.

This can be used for storage and transmission in the old byte array format. When the wrapping key is a COSE key, and the wrapped key is a COSE key, then this should not use the byte representation but instead use the COSE key representation.

Source

pub(crate) fn to_encoded_raw(&self) -> Vec<u8>

Creates the byte representation of the key, without any padding. This should not be used directly for creating serialized key representations, instead, SymmetricCryptoKey::to_encoded should be used.

SymmetricCryptoKey::Aes256CbcHmacKey and SymmetricCryptoKey::Aes256CbcKey are encoded as 64 and 32 byte arrays respectively, representing the key bytes directly. SymmetricCryptoKey::XChaCha20Poly1305Key is encoded as a COSE key, serialized to a byte array. The COSE key can be either directly encrypted using COSE, where the content format hints an the key type, or can be represented as a byte array, if padded to be larger than the byte array representation of the other key types using the aforementioned SymmetricCryptoKey::to_encoded function.

Source

pub fn to_base64(&self) -> String

Trait Implementations§

Source§

impl Clone for SymmetricCryptoKey

Source§

fn clone(&self) -> SymmetricCryptoKey

Returns a copy of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl ConstantTimeEq for SymmetricCryptoKey

Source§

fn ct_eq(&self, other: &SymmetricCryptoKey) -> Choice

Note: This is constant time with respect to comparing two keys of the same type, but not constant type with respect to the fact that different keys are compared. If two types of different keys are compared, then this does have different timing.

Source§

fn ct_ne(&self, other: &Self) -> Choice

Determine if two items are NOT equal. Read more
Source§

impl Debug for SymmetricCryptoKey

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl Drop for SymmetricCryptoKey

Source§

fn drop(&mut self)

Executes the destructor for this type. Read more
Source§

impl KeyDecryptable<SymmetricCryptoKey, String> for EncString

Source§

fn decrypt_with_key( &self, key: &SymmetricCryptoKey, ) -> Result<String, CryptoError>

Source§

impl KeyDecryptable<SymmetricCryptoKey, Vec<u8>> for EncString

Source§

fn decrypt_with_key( &self, key: &SymmetricCryptoKey, ) -> Result<Vec<u8>, CryptoError>

Source§

impl KeyEncryptable<SymmetricCryptoKey, EncString> for &[u8]

Source§

fn encrypt_with_key( self, key: &SymmetricCryptoKey, ) -> Result<EncString, CryptoError>

Source§

impl KeyEncryptable<SymmetricCryptoKey, EncString> for &str

Source§

fn encrypt_with_key( self, key: &SymmetricCryptoKey, ) -> Result<EncString, CryptoError>

Source§

impl KeyEncryptable<SymmetricCryptoKey, EncString> for String

Source§

fn encrypt_with_key( self, key: &SymmetricCryptoKey, ) -> Result<EncString, CryptoError>

Source§

impl PartialEq for SymmetricCryptoKey

Source§

fn eq(&self, other: &Self) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl TryFrom<&CoseKey> for SymmetricCryptoKey

Source§

type Error = CryptoError

The type returned in the event of a conversion error.
Source§

fn try_from(cose_key: &CoseKey) -> Result<Self, Self::Error>

Performs the conversion.
Source§

impl TryFrom<&SymmetricCryptoKey> for MasterKey

Source§

type Error = CryptoError

The type returned in the event of a conversion error.
Source§

fn try_from(value: &SymmetricCryptoKey) -> Result<Self, CryptoError>

Performs the conversion.
Source§

impl TryFrom<&mut [u8]> for SymmetricCryptoKey

Source§

fn try_from(value: &mut [u8]) -> Result<Self, Self::Error>

Note: This function takes the byte slice by mutable reference and will zero out all the data in it. This is to prevent the key from being left in memory.

Source§

type Error = CryptoError

The type returned in the event of a conversion error.
Source§

impl TryFrom<String> for SymmetricCryptoKey

Source§

type Error = CryptoError

The type returned in the event of a conversion error.
Source§

fn try_from(value: String) -> Result<Self, Self::Error>

Performs the conversion.
Source§

impl TryFrom<Vec<u8>> for SymmetricCryptoKey

Source§

type Error = CryptoError

The type returned in the event of a conversion error.
Source§

fn try_from(value: Vec<u8>) -> Result<Self, Self::Error>

Performs the conversion.
Source§

impl CryptoKey for SymmetricCryptoKey

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
§

impl<T> CompatExt for T

§

fn compat(self) -> Compat<T>

Applies the [Compat] adapter by value. Read more
§

fn compat_ref(&self) -> Compat<&T>

Applies the [Compat] adapter by shared reference. Read more
§

fn compat_mut(&mut self) -> Compat<&mut T>

Applies the [Compat] adapter by mutable reference. Read more
Source§

impl<T> DynClone for T
where T: Clone,

Source§

fn __clone_box(&self, _: Private) -> *mut ()

Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

§

impl<T, UT> HandleAlloc<UT> for T
where T: Send + Sync,

§

fn new_handle(value: Arc<T>) -> Handle

Create a new handle for an Arc value Read more
§

unsafe fn clone_handle(handle: Handle) -> Handle

Clone a handle Read more
§

unsafe fn consume_handle(handle: Handle) -> Arc<T>

Consume a handle, getting back the initial Arc<> Read more
§

unsafe fn get_arc(handle: Handle) -> Arc<Self>

Get a clone of the Arc<> using a “borrowed” handle. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> IntoEither for T

Source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
§

impl<T> Pointable for T

§

const ALIGN: usize

The alignment of pointer.
§

type Init = T

The type for initializers.
§

unsafe fn init(init: <T as Pointable>::Init) -> usize

Initializes a with the given initializer. Read more
§

unsafe fn deref<'a>(ptr: usize) -> &'a T

Dereferences the given pointer. Read more
§

unsafe fn deref_mut<'a>(ptr: usize) -> &'a mut T

Mutably dereferences the given pointer. Read more
§

unsafe fn drop(ptr: usize)

Drops the object pointed to by the given pointer. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

§

fn vzip(self) -> V