medallion/src/crypt.rs

use super::Result;
use crate::header::Algorithm;
use base64::{decode_config, encode_config, URL_SAFE_NO_PAD};
use openssl::{
    hash::MessageDigest,
    memcmp,
    pkey::PKey,
    rsa::Rsa,
    sign::{Signer, Verifier},
};

pub fn sign(data: &str, key: &[u8], algorithm: &Algorithm) -> Result<String> {
    match *algorithm {
        Algorithm::HS256 => sign_hmac(data, key, MessageDigest::sha256()),
        Algorithm::HS384 => sign_hmac(data, key, MessageDigest::sha384()),
        Algorithm::HS512 => sign_hmac(data, key, MessageDigest::sha512()),
        Algorithm::RS256 => sign_rsa(data, key, MessageDigest::sha256()),
        Algorithm::RS384 => sign_rsa(data, key, MessageDigest::sha384()),
        Algorithm::RS512 => sign_rsa(data, key, MessageDigest::sha512()),
    }
}

pub fn verify(target: &str, data: &str, key: &[u8], algorithm: &Algorithm) -> Result<bool> {
    match *algorithm {
        Algorithm::HS256 => verify_hmac(target, data, key, MessageDigest::sha256()),
        Algorithm::HS384 => verify_hmac(target, data, key, MessageDigest::sha384()),
        Algorithm::HS512 => verify_hmac(target, data, key, MessageDigest::sha512()),
        Algorithm::RS256 => verify_rsa(target, data, key, MessageDigest::sha256()),
        Algorithm::RS384 => verify_rsa(target, data, key, MessageDigest::sha384()),
        Algorithm::RS512 => verify_rsa(target, data, key, MessageDigest::sha512()),
    }
}

fn sign_hmac(data: &str, key: &[u8], digest: MessageDigest) -> Result<String> {
    let secret_key = PKey::hmac(key)?;

    let mut signer = Signer::new(digest, &secret_key)?;
    signer.update(data.as_bytes())?;

    let mac = signer.sign_to_vec()?;
    Ok(encode_config(&mac, URL_SAFE_NO_PAD))
}

fn sign_rsa(data: &str, key: &[u8], digest: MessageDigest) -> Result<String> {
    let private_key = Rsa::private_key_from_pem(key)?;
    let pkey = PKey::from_rsa(private_key)?;

    let mut signer = Signer::new(digest, &pkey)?;
    signer.update(data.as_bytes())?;
    let sig = signer.sign_to_vec()?;
    Ok(encode_config(&sig, URL_SAFE_NO_PAD))
}

fn verify_hmac(target: &str, data: &str, key: &[u8], digest: MessageDigest) -> Result<bool> {
    let target_bytes: Vec<u8> = decode_config(target, URL_SAFE_NO_PAD)?;
    let secret_key = PKey::hmac(key)?;

    let mut signer = Signer::new(digest, &secret_key)?;
    signer.update(data.as_bytes())?;

    let mac = signer.sign_to_vec()?;

    Ok(memcmp::eq(&mac, &target_bytes))
}

fn verify_rsa(signature: &str, data: &str, key: &[u8], digest: MessageDigest) -> Result<bool> {
    let signature_bytes: Vec<u8> = decode_config(signature, URL_SAFE_NO_PAD)?;
    let public_key = Rsa::public_key_from_pem(key)?;
    let pkey = PKey::from_rsa(public_key)?;
    let mut verifier = Verifier::new(digest, &pkey)?;
    verifier.update(data.as_bytes())?;
    Ok(verifier.verify(&signature_bytes)?)
}

#[cfg(test)]
pub mod tests {
    use super::{sign, verify};
    use crate::header::Algorithm;

    #[test]
    pub fn sign_data_hmac() {
        let header = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9";
        let claims = "eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9";
        let real_sig = "TJVA95OrM7E2cBab30RMHrHDcEfxjoYZgeFONFh7HgQ";
        let data = format!("{}.{}", header, claims);

        let sig = sign(&*data, b"secret", &Algorithm::HS256);

        assert_eq!(sig.unwrap(), real_sig);
    }

    #[test]
    pub fn sign_and_verify_data_rsa() {
        let header = "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9";
        let claims = "eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9";

        let data = format!("{}.{}", header, claims);

        let keypair = openssl::rsa::Rsa::generate(2048).unwrap();

        let sig = sign(
            &*data,
            &keypair.private_key_to_pem().unwrap(),
            &Algorithm::RS256,
        )
        .unwrap();

        assert!(verify(
            &sig,
            &*data,
            &keypair.public_key_to_pem().unwrap(),
            &Algorithm::RS256
        )
        .unwrap());
    }

    #[test]
    pub fn verify_data_hmac() {
        let header = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9";
        let claims = "eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9";
        let target = "TJVA95OrM7E2cBab30RMHrHDcEfxjoYZgeFONFh7HgQ";
        let data = format!("{}.{}", header, claims);

        assert!(verify(target, &*data, b"secret", &Algorithm::HS256).unwrap());
    }
}
Migrated to anyhow and chrono from failure and time crates. 2020-06-22 15:52:53 +00:00			`use super::Result;`
			`use crate::header::Algorithm;`
Stop using padding 2017-02-20 18:05:06 +00:00			`use base64::{decode_config, encode_config, URL_SAFE_NO_PAD};`
Switch to failure (#6) * Switch to failure * Bump version 2018-11-16 22:28:01 +00:00			`use openssl::{`
			`hash::MessageDigest,`
			`memcmp,`
			`pkey::PKey,`
			`rsa::Rsa,`
			`sign::{Signer, Verifier},`
			`};`

Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`pub fn sign(data: &str, key: &[u8], algorithm: &Algorithm) -> Result<String> {`
Lints and formatting 2018-03-12 13:43:57 +00:00			`match *algorithm {`
			`Algorithm::HS256 => sign_hmac(data, key, MessageDigest::sha256()),`
			`Algorithm::HS384 => sign_hmac(data, key, MessageDigest::sha384()),`
			`Algorithm::HS512 => sign_hmac(data, key, MessageDigest::sha512()),`
			`Algorithm::RS256 => sign_rsa(data, key, MessageDigest::sha256()),`
			`Algorithm::RS384 => sign_rsa(data, key, MessageDigest::sha384()),`
			`Algorithm::RS512 => sign_rsa(data, key, MessageDigest::sha512()),`
Add new higher level fn's, switch a test 2017-02-15 18:45:13 +00:00			`}`
			`}`

Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`pub fn verify(target: &str, data: &str, key: &[u8], algorithm: &Algorithm) -> Result<bool> {`
Lints and formatting 2018-03-12 13:43:57 +00:00			`match *algorithm {`
			`Algorithm::HS256 => verify_hmac(target, data, key, MessageDigest::sha256()),`
			`Algorithm::HS384 => verify_hmac(target, data, key, MessageDigest::sha384()),`
			`Algorithm::HS512 => verify_hmac(target, data, key, MessageDigest::sha512()),`
			`Algorithm::RS256 => verify_rsa(target, data, key, MessageDigest::sha256()),`
			`Algorithm::RS384 => verify_rsa(target, data, key, MessageDigest::sha384()),`
			`Algorithm::RS512 => verify_rsa(target, data, key, MessageDigest::sha512()),`
Add new higher level fn's, switch a test 2017-02-15 18:45:13 +00:00			`}`
			`}`

Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`fn sign_hmac(data: &str, key: &[u8], digest: MessageDigest) -> Result<String> {`
Change to ? operator 2017-02-17 17:39:28 +00:00			`let secret_key = PKey::hmac(key)?;`
Initial re-factor 2017-02-13 23:40:07 +00:00
Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`let mut signer = Signer::new(digest, &secret_key)?;`
			`signer.update(data.as_bytes())?;`
Initial re-factor 2017-02-13 23:40:07 +00:00
Update deps. 2018-03-12 13:38:01 +00:00			`let mac = signer.sign_to_vec()?;`
Stop using padding 2017-02-20 18:05:06 +00:00			`Ok(encode_config(&mac, URL_SAFE_NO_PAD))`
Initial re-factor 2017-02-13 23:40:07 +00:00			`}`

Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`fn sign_rsa(data: &str, key: &[u8], digest: MessageDigest) -> Result<String> {`
			`let private_key = Rsa::private_key_from_pem(key)?;`
			`let pkey = PKey::from_rsa(private_key)?;`
Initial re-factor 2017-02-13 23:40:07 +00:00
Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`let mut signer = Signer::new(digest, &pkey)?;`
			`signer.update(data.as_bytes())?;`
Update deps. 2018-03-12 13:38:01 +00:00			`let sig = signer.sign_to_vec()?;`
Stop using padding 2017-02-20 18:05:06 +00:00			`Ok(encode_config(&sig, URL_SAFE_NO_PAD))`
Initial re-factor 2017-02-13 23:40:07 +00:00			`}`

Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`fn verify_hmac(target: &str, data: &str, key: &[u8], digest: MessageDigest) -> Result<bool> {`
Stop using padding 2017-02-20 18:05:06 +00:00			`let target_bytes: Vec<u8> = decode_config(target, URL_SAFE_NO_PAD)?;`
Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`let secret_key = PKey::hmac(key)?;`
Initial re-factor 2017-02-13 23:40:07 +00:00
Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`let mut signer = Signer::new(digest, &secret_key)?;`
			`signer.update(data.as_bytes())?;`
Initial re-factor 2017-02-13 23:40:07 +00:00
Update deps. 2018-03-12 13:38:01 +00:00			`let mac = signer.sign_to_vec()?;`
Initial re-factor 2017-02-13 23:40:07 +00:00
Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`Ok(memcmp::eq(&mac, &target_bytes))`
Initial re-factor 2017-02-13 23:40:07 +00:00			`}`

Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`fn verify_rsa(signature: &str, data: &str, key: &[u8], digest: MessageDigest) -> Result<bool> {`
Stop using padding 2017-02-20 18:05:06 +00:00			`let signature_bytes: Vec<u8> = decode_config(signature, URL_SAFE_NO_PAD)?;`
Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`let public_key = Rsa::public_key_from_pem(key)?;`
			`let pkey = PKey::from_rsa(public_key)?;`
			`let mut verifier = Verifier::new(digest, &pkey)?;`
			`verifier.update(data.as_bytes())?;`
Update deps. 2018-03-12 13:38:01 +00:00			`Ok(verifier.verify(&signature_bytes)?)`
Initial re-factor 2017-02-13 23:40:07 +00:00			`}`
Move tests 2017-02-15 18:35:10 +00:00
			`#[cfg(test)]`
De-dupe some test code 2017-02-17 17:54:50 +00:00			`pub mod tests {`
Switch to failure (#6) * Switch to failure * Bump version 2018-11-16 22:28:01 +00:00			`use super::{sign, verify};`
Migrated to anyhow and chrono from failure and time crates. 2020-06-22 15:52:53 +00:00			`use crate::header::Algorithm;`
Move tests 2017-02-15 18:35:10 +00:00
			`#[test]`
Rename fn's to be consistent 2017-02-15 18:40:34 +00:00			`pub fn sign_data_hmac() {`
Move tests 2017-02-15 18:35:10 +00:00			`let header = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9";`
			`let claims = "eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9";`
Stop using padding 2017-02-20 18:05:06 +00:00			`let real_sig = "TJVA95OrM7E2cBab30RMHrHDcEfxjoYZgeFONFh7HgQ";`
Move tests 2017-02-15 18:35:10 +00:00			`let data = format!("{}.{}", header, claims);`

Switch to failure (#6) * Switch to failure * Bump version 2018-11-16 22:28:01 +00:00			`let sig = sign(&*data, b"secret", &Algorithm::HS256);`
Move tests 2017-02-15 18:35:10 +00:00
Clean up error handling in crypt 2017-02-17 16:53:12 +00:00			`assert_eq!(sig.unwrap(), real_sig);`
Move tests 2017-02-15 18:35:10 +00:00			`}`

			`#[test]`
Update to serde 1.0 (#4) * Try updating service to 1.0 * Strip bounds from structs * Clean bounds from Default impl * Remove pem files, clean up some documentation * Add badges, categories 2017-08-10 13:39:35 +00:00			`pub fn sign_and_verify_data_rsa() {`
Move tests 2017-02-15 18:35:10 +00:00			`let header = "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9";`
			`let claims = "eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9";`
Update to serde 1.0 (#4) * Try updating service to 1.0 * Strip bounds from structs * Clean bounds from Default impl * Remove pem files, clean up some documentation * Add badges, categories 2017-08-10 13:39:35 +00:00
Move tests 2017-02-15 18:35:10 +00:00			`let data = format!("{}.{}", header, claims);`

Update to serde 1.0 (#4) * Try updating service to 1.0 * Strip bounds from structs * Clean bounds from Default impl * Remove pem files, clean up some documentation * Add badges, categories 2017-08-10 13:39:35 +00:00			`let keypair = openssl::rsa::Rsa::generate(2048).unwrap();`
Move tests 2017-02-15 18:35:10 +00:00
Update deps. 2018-03-12 13:38:01 +00:00			`let sig = sign(`
			`&*data,`
			`&keypair.private_key_to_pem().unwrap(),`
			`&Algorithm::RS256,`
Migrated to anyhow and chrono from failure and time crates. 2020-06-22 15:52:53 +00:00			`)`
			`.unwrap();`

			`assert!(verify(`
			`&sig,`
			`&*data,`
			`&keypair.public_key_to_pem().unwrap(),`
			`&Algorithm::RS256`
			`)`
			`.unwrap());`
Move tests 2017-02-15 18:35:10 +00:00			`}`

			`#[test]`
Rename fn's to be consistent 2017-02-15 18:40:34 +00:00			`pub fn verify_data_hmac() {`
Move tests 2017-02-15 18:35:10 +00:00			`let header = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9";`
			`let claims = "eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiYWRtaW4iOnRydWV9";`
			`let target = "TJVA95OrM7E2cBab30RMHrHDcEfxjoYZgeFONFh7HgQ";`
			`let data = format!("{}.{}", header, claims);`

Switch to failure (#6) * Switch to failure * Bump version 2018-11-16 22:28:01 +00:00			`assert!(verify(target, &*data, b"secret", &Algorithm::HS256).unwrap());`
Move tests 2017-02-15 18:35:10 +00:00			`}`
			`}`