use crate::error::{Error, PatternProblem};
use std::str::FromStr;
mod patterns;
pub use self::patterns::{
HandshakeChoice, HandshakeModifier, HandshakePattern, SUPPORTED_HANDSHAKE_PATTERNS,
};
pub(crate) use self::patterns::{DhToken, HandshakeTokens, MessagePatterns, Token};
#[allow(missing_docs)]
#[derive(PartialEq, Copy, Clone, Debug)]
pub enum BaseChoice {
Noise,
}
impl FromStr for BaseChoice {
type Err = Error;
fn from_str(s: &str) -> Result<Self, Self::Err> {
use self::BaseChoice::*;
match s {
"Noise" => Ok(Noise),
_ => bail!(PatternProblem::UnsupportedBaseType),
}
}
}
#[allow(missing_docs)]
#[derive(PartialEq, Copy, Clone, Debug)]
pub enum DHChoice {
Curve25519,
Ed448,
}
impl FromStr for DHChoice {
type Err = Error;
fn from_str(s: &str) -> Result<Self, Self::Err> {
use self::DHChoice::*;
match s {
"25519" => Ok(Curve25519),
"448" => Ok(Ed448),
_ => bail!(PatternProblem::UnsupportedDhType),
}
}
}
#[allow(missing_docs)]
#[derive(PartialEq, Copy, Clone, Debug)]
pub enum CipherChoice {
ChaChaPoly,
#[cfg(feature = "xchachapoly")]
XChaChaPoly,
AESGCM,
}
impl FromStr for CipherChoice {
type Err = Error;
fn from_str(s: &str) -> Result<Self, Self::Err> {
use self::CipherChoice::*;
match s {
"ChaChaPoly" => Ok(ChaChaPoly),
#[cfg(feature = "xchachapoly")]
"XChaChaPoly" => Ok(XChaChaPoly),
"AESGCM" => Ok(AESGCM),
_ => bail!(PatternProblem::UnsupportedCipherType),
}
}
}
#[allow(missing_docs)]
#[derive(PartialEq, Copy, Clone, Debug)]
pub enum HashChoice {
SHA256,
SHA512,
Blake2s,
Blake2b,
}
impl FromStr for HashChoice {
type Err = Error;
fn from_str(s: &str) -> Result<Self, Self::Err> {
use self::HashChoice::*;
match s {
"SHA256" => Ok(SHA256),
"SHA512" => Ok(SHA512),
"BLAKE2s" => Ok(Blake2s),
"BLAKE2b" => Ok(Blake2b),
_ => bail!(PatternProblem::UnsupportedHashType),
}
}
}
#[cfg(feature = "hfs")]
#[allow(missing_docs)]
#[derive(PartialEq, Copy, Clone, Debug)]
pub enum KemChoice {
Kyber1024,
}
#[cfg(feature = "hfs")]
impl FromStr for KemChoice {
type Err = Error;
fn from_str(s: &str) -> Result<Self, Self::Err> {
use self::KemChoice::*;
match s {
"Kyber1024" => Ok(Kyber1024),
_ => bail!(PatternProblem::UnsupportedKemType),
}
}
}
#[allow(missing_docs)]
#[derive(PartialEq, Clone, Debug)]
pub struct NoiseParams {
pub name: String,
pub base: BaseChoice,
pub handshake: HandshakeChoice,
pub dh: DHChoice,
#[cfg(feature = "hfs")]
pub kem: Option<KemChoice>,
pub cipher: CipherChoice,
pub hash: HashChoice,
}
impl NoiseParams {
#[cfg(not(feature = "hfs"))]
pub fn new(
name: String,
base: BaseChoice,
handshake: HandshakeChoice,
dh: DHChoice,
cipher: CipherChoice,
hash: HashChoice,
) -> Self {
NoiseParams { name, base, handshake, dh, cipher, hash }
}
#[cfg(feature = "hfs")]
pub fn new(
name: String,
base: BaseChoice,
handshake: HandshakeChoice,
dh: DHChoice,
kem: Option<KemChoice>,
cipher: CipherChoice,
hash: HashChoice,
) -> Self {
NoiseParams { name, base, handshake, dh, kem, cipher, hash }
}
}
impl FromStr for NoiseParams {
type Err = Error;
#[cfg(not(feature = "hfs"))]
fn from_str(s: &str) -> Result<Self, Self::Err> {
let mut split = s.split('_');
Ok(NoiseParams::new(
s.to_owned(),
split.next().ok_or(PatternProblem::TooFewParameters)?.parse()?,
split.next().ok_or(PatternProblem::TooFewParameters)?.parse()?,
split.next().ok_or(PatternProblem::TooFewParameters)?.parse()?,
split.next().ok_or(PatternProblem::TooFewParameters)?.parse()?,
split.next().ok_or(PatternProblem::TooFewParameters)?.parse()?,
))
}
#[cfg(feature = "hfs")]
fn from_str(s: &str) -> Result<Self, Self::Err> {
let mut split = s.split('_').peekable();
let p = NoiseParams::new(
s.to_owned(),
split.next().ok_or(PatternProblem::TooFewParameters)?.parse()?,
split.next().ok_or(PatternProblem::TooFewParameters)?.parse()?,
split
.peek()
.ok_or(PatternProblem::TooFewParameters)?
.splitn(2, '+')
.nth(0)
.ok_or(PatternProblem::TooFewParameters)?
.parse()?,
split
.next()
.ok_or(PatternProblem::TooFewParameters)?
.splitn(2, '+')
.nth(1)
.map(|s| s.parse())
.transpose()?,
split.next().ok_or(PatternProblem::TooFewParameters)?.parse()?,
split.next().ok_or(PatternProblem::TooFewParameters)?.parse()?,
);
if p.handshake.is_hfs() != p.kem.is_some() {
bail!(PatternProblem::TooFewParameters);
}
Ok(p)
}
}
#[cfg(test)]
mod tests {
use super::*;
use std::convert::TryFrom;
#[test]
fn test_simple_handshake() {
let _: HandshakePattern = "XX".parse().unwrap();
}
#[test]
fn test_basic() {
let p: NoiseParams = "Noise_XX_25519_AESGCM_SHA256".parse().unwrap();
assert!(p.handshake.modifiers.list.is_empty());
}
#[test]
fn test_basic_deferred() {
let p: NoiseParams = "Noise_X1X1_25519_AESGCM_SHA256".parse().unwrap();
assert!(p.handshake.modifiers.list.is_empty());
}
#[test]
fn test_fallback_mod() {
let p: NoiseParams = "Noise_XXfallback_25519_AESGCM_SHA256".parse().unwrap();
assert!(p.handshake.modifiers.list[0] == HandshakeModifier::Fallback);
}
#[test]
fn test_psk_fallback_mod() {
let p: NoiseParams = "Noise_XXfallback+psk0_25519_AESGCM_SHA256".parse().unwrap();
assert!(p.handshake.modifiers.list.len() == 2);
}
#[test]
fn test_single_psk_mod() {
let p: NoiseParams = "Noise_XXpsk0_25519_AESGCM_SHA256".parse().unwrap();
match p.handshake.modifiers.list[0] {
HandshakeModifier::Psk(0) => {},
_ => panic!("modifier isn't as expected!"),
}
}
#[test]
fn test_multi_psk_mod() {
use self::HandshakeModifier::*;
let p: NoiseParams = "Noise_XXpsk0+psk1+psk2_25519_AESGCM_SHA256".parse().unwrap();
let mods = p.handshake.modifiers.list;
match (mods[0], mods[1], mods[2]) {
(Psk(0), Psk(1), Psk(2)) => {},
_ => panic!("modifiers weren't as expected! actual: {:?}", mods),
}
}
#[test]
fn test_modified_psk_handshake() {
let p: NoiseParams = "Noise_XXpsk0_25519_AESGCM_SHA256".parse().unwrap();
let tokens = HandshakeTokens::try_from(&p.handshake).unwrap();
match tokens.msg_patterns[0][0] {
Token::Psk(_) => {},
_ => panic!("missing token!"),
}
}
#[test]
fn test_modified_multi_psk_handshake() {
let p: NoiseParams = "Noise_XXpsk0+psk2_25519_AESGCM_SHA256".parse().unwrap();
let tokens = HandshakeTokens::try_from(&p.handshake).unwrap();
match tokens.msg_patterns[0][0] {
Token::Psk(_) => {},
_ => panic!("missing token!"),
}
let second = &tokens.msg_patterns[1];
match second[second.len() - 1] {
Token::Psk(_) => {},
_ => panic!("missing token!"),
}
}
}