introduce new error cases

- this led to some refactoring as well

Author: dwhjames

pkcs5/src/error.rs

@@ -1,6 +1,7 @@
 //! Error types
 
 use core::fmt;
+use der::asn1::ObjectIdentifier;
 
 /// Result type
 pub type Result<T> = core::result::Result<T, Error>;
@@ -9,14 +10,47 @@ pub type Result<T> = core::result::Result<T, Error>;
 #[derive(Copy, Clone, Debug, Eq, PartialEq)]
 #[non_exhaustive]
 pub enum Error {
-    /// Cryptographic errors.
-    Crypto,
+    /// Given parameters are invalid for this algorithm
+    AlgorithmParametersInvalid {
+        /// OID for algorithm for which the parameters were invalid
+        oid: ObjectIdentifier,
+    },
+
+    /// Decryption Failed
+    DecryptFailed,
+
+    /// Encryption Failed
+    EncryptFailed,
+
+    /// Pbes1 support is limited to parsing; encryption/decryption is not supported (won't fix)
+    #[cfg(feature = "pbes2")]
+    NoPbes1CryptSupport,
+
+    /// Algorithm is not supported
+    ///
+    /// This may be due to a disabled crate feature
+    /// Or the algorithm is not supported at all.
+    UnsupportedAlgorithm {
+        /// OID of unsupported algorithm
+        oid: ObjectIdentifier,
+    },
 }
 
 impl fmt::Display for Error {
     fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
-        f.write_str(match self {
-            Error::Crypto => "PKCS#5 cryptographic error",
-        })
+        match self {
+            Error::AlgorithmParametersInvalid { oid } => {
+                write!(f, "PKCS#5 parameters for algorithm {} are invalid", oid)
+            }
+            Error::DecryptFailed => f.write_str("PKCS#5 decryption failed"),
+            Error::EncryptFailed => f.write_str("PKCS#5 encryption failed"),
+            #[cfg(feature = "pbes2")]
+            Error::NoPbes1CryptSupport => {
+                f.write_str("PKCS#5 encryption/decryption unsupported for PBES1 (won't fix)")
+            }
+            Error::UnsupportedAlgorithm { oid } => {
+                write!(f, "PKCS#5 algorithm {} is unsupported", oid)
+            }
+        }
     }
 }

pkcs5/src/lib.rs

@@ -68,7 +68,7 @@ impl<'a> EncryptionScheme<'a> {
     pub fn decrypt(&self, password: impl AsRef<[u8]>, ciphertext: &[u8]) -> Result<Vec<u8>> {
         match self {
             Self::Pbes2(params) => params.decrypt(password, ciphertext),
-            _ => Err(Error::Crypto),
+            Self::Pbes1(_) => Err(Error::NoPbes1CryptSupport),
         }
     }
 
@@ -87,7 +87,7 @@ impl<'a> EncryptionScheme<'a> {
     ) -> Result<&'b [u8]> {
         match self {
             Self::Pbes2(params) => params.decrypt_in_place(password, buffer),
-            _ => Err(Error::Crypto),
+            Self::Pbes1(_) => Err(Error::NoPbes1CryptSupport),
         }
     }
 
@@ -99,7 +99,7 @@ impl<'a> EncryptionScheme<'a> {
     pub fn encrypt(&self, password: impl AsRef<[u8]>, plaintext: &[u8]) -> Result<Vec<u8>> {
         match self {
             Self::Pbes2(params) => params.encrypt(password, plaintext),
-            _ => Err(Error::Crypto),
+            Self::Pbes1(_) => Err(Error::NoPbes1CryptSupport),
         }
     }
 
@@ -115,7 +115,7 @@ impl<'a> EncryptionScheme<'a> {
     ) -> Result<&'b [u8]> {
         match self {
             Self::Pbes2(params) => params.encrypt_in_place(password, buffer, pos),
-            _ => Err(Error::Crypto),
+            Self::Pbes1(_) => Err(Error::NoPbes1CryptSupport),
         }
     }
 

pkcs5/src/pbes2.rs

@@ -12,7 +12,9 @@ pub use self::kdf::{
     PBKDF2_OID, SCRYPT_OID,
 };
 
-use crate::{AlgorithmIdentifier, Result};
+use crate::AlgorithmIdentifier;
+#[cfg(feature = "scrypt")]
+use crate::Result;
 use core::convert::{TryFrom, TryInto};
 use der::{
     asn1::{Any, ObjectIdentifier, OctetString},
@@ -81,10 +83,10 @@ impl<'a> Parameters<'a> {
         pbkdf2_iterations: u16,
         pbkdf2_salt: &'a [u8],
         aes_iv: &'a [u8; AES_BLOCK_SIZE],
-    ) -> Result<Self> {
-        let kdf = Pbkdf2Params::hmac_with_sha256(pbkdf2_iterations, pbkdf2_salt)?.into();
+    ) -> Self {
+        let kdf = Pbkdf2Params::hmac_with_sha256(pbkdf2_iterations, pbkdf2_salt).into();
         let encryption = EncryptionScheme::Aes128Cbc { iv: aes_iv };
-        Ok(Self { kdf, encryption })
+        Self { kdf, encryption }
     }
 
     /// Initialize PBES2 parameters using PBKDF2-SHA256 as the password-based
@@ -93,10 +95,10 @@ impl<'a> Parameters<'a> {
         pbkdf2_iterations: u16,
         pbkdf2_salt: &'a [u8],
         aes_iv: &'a [u8; AES_BLOCK_SIZE],
-    ) -> Result<Self> {
-        let kdf = Pbkdf2Params::hmac_with_sha256(pbkdf2_iterations, pbkdf2_salt)?.into();
+    ) -> Self {
+        let kdf = Pbkdf2Params::hmac_with_sha256(pbkdf2_iterations, pbkdf2_salt).into();
         let encryption = EncryptionScheme::Aes256Cbc { iv: aes_iv };
-        Ok(Self { kdf, encryption })
+        Self { kdf, encryption }
     }
 
     /// Initialize PBES2 parameters using scrypt as the password-based

pkcs5/src/pbes2/encryption.rs

@@ -29,36 +29,50 @@ pub fn encrypt_in_place<'b>(
     buffer: &'b mut [u8],
     pos: usize,
 ) -> Result<&'b [u8]> {
-    let encryption_key = EncryptionKey::derive_from_password(
-        password.as_ref(),
-        &params.kdf,
-        params.encryption.key_size(),
-    )?;
+    let key_size = params.encryption.key_size();
+    let algo_params_invalid_error = Error::AlgorithmParametersInvalid {
+        oid: params.encryption.oid(),
+    };
+    if key_size > MAX_KEY_LEN {
+        return Err(algo_params_invalid_error);
+    }
+    let encryption_key =
+        EncryptionKey::derive_from_password(password.as_ref(), &params.kdf, key_size)?;
 
     match params.encryption {
         EncryptionScheme::Aes128Cbc { iv } => {
             let cipher = Aes128Cbc::new_from_slices(encryption_key.as_slice(), iv)
-                .map_err(|_| Error::Crypto)?;
-            cipher.encrypt(buffer, pos).map_err(|_| Error::Crypto)
+                .map_err(|_| algo_params_invalid_error)?;
+            cipher
+                .encrypt(buffer, pos)
+                .map_err(|_| Error::EncryptFailed)
         }
         EncryptionScheme::Aes192Cbc { iv } => {
             let cipher = Aes192Cbc::new_from_slices(encryption_key.as_slice(), iv)
-                .map_err(|_| Error::Crypto)?;
-            cipher.encrypt(buffer, pos).map_err(|_| Error::Crypto)
+                .map_err(|_| algo_params_invalid_error)?;
+            cipher
+                .encrypt(buffer, pos)
+                .map_err(|_| Error::EncryptFailed)
         }
         EncryptionScheme::Aes256Cbc { iv } => {
             let cipher = Aes256Cbc::new_from_slices(encryption_key.as_slice(), iv)
-                .map_err(|_| Error::Crypto)?;
-            cipher.encrypt(buffer, pos).map_err(|_| Error::Crypto)
+                .map_err(|_| algo_params_invalid_error)?;
+            cipher
+                .encrypt(buffer, pos)
+                .map_err(|_| Error::EncryptFailed)
         }
         #[cfg(feature = "3des")]
         EncryptionScheme::DesEde3Cbc { iv } => {
             let cipher = DesEde3Cbc::new_from_slices(encryption_key.as_slice(), iv)
-                .map_err(|_| Error::Crypto)?;
-            cipher.encrypt(buffer, pos).map_err(|_| Error::Crypto)
+                .map_err(|_| algo_params_invalid_error)?;
+            cipher
+                .encrypt(buffer, pos)
+                .map_err(|_| Error::EncryptFailed)
         }
         #[cfg(feature = "des-insecure")]
-        EncryptionScheme::DesCbc { .. } => Err(Error::Crypto),
+        EncryptionScheme::DesCbc { .. } => Err(Error::UnsupportedAlgorithm {
+            oid: super::DES_CBC_OID,
+        }),
     }
 }
 
@@ -74,33 +88,36 @@ pub fn decrypt_in_place<'a>(
         params.encryption.key_size(),
     )?;
 
+    let algo_params_invalid_error = Error::AlgorithmParametersInvalid {
+        oid: params.encryption.oid(),
+    };
     match params.encryption {
         EncryptionScheme::Aes128Cbc { iv } => {
             let cipher = Aes128Cbc::new_from_slices(encryption_key.as_slice(), iv)
-                .map_err(|_| Error::Crypto)?;
-            cipher.decrypt(buffer).map_err(|_| Error::Crypto)
+                .map_err(|_| algo_params_invalid_error)?;
+            cipher.decrypt(buffer).map_err(|_| Error::DecryptFailed)
         }
         EncryptionScheme::Aes192Cbc { iv } => {
             let cipher = Aes192Cbc::new_from_slices(encryption_key.as_slice(), iv)
-                .map_err(|_| Error::Crypto)?;
-            cipher.decrypt(buffer).map_err(|_| Error::Crypto)
+                .map_err(|_| algo_params_invalid_error)?;
+            cipher.decrypt(buffer).map_err(|_| Error::DecryptFailed)
         }
         EncryptionScheme::Aes256Cbc { iv } => {
             let cipher = Aes256Cbc::new_from_slices(encryption_key.as_slice(), iv)
-                .map_err(|_| Error::Crypto)?;
-            cipher.decrypt(buffer).map_err(|_| Error::Crypto)
+                .map_err(|_| algo_params_invalid_error)?;
+            cipher.decrypt(buffer).map_err(|_| Error::DecryptFailed)
         }
         #[cfg(feature = "3des")]
         EncryptionScheme::DesEde3Cbc { iv } => {
             let cipher = DesEde3Cbc::new_from_slices(encryption_key.as_slice(), iv)
-                .map_err(|_| Error::Crypto)?;
-            cipher.decrypt(buffer).map_err(|_| Error::Crypto)
+                .map_err(|_| algo_params_invalid_error)?;
+            cipher.decrypt(buffer).map_err(|_| Error::DecryptFailed)
         }
         #[cfg(feature = "des-insecure")]
         EncryptionScheme::DesCbc { iv } => {
             let cipher = DesCbc::new_from_slices(encryption_key.as_slice(), iv)
-                .map_err(|_| Error::Crypto)?;
-            cipher.decrypt(buffer).map_err(|_| Error::Crypto)
+                .map_err(|_| algo_params_invalid_error)?;
+            cipher.decrypt(buffer).map_err(|_| Error::DecryptFailed)
         }
     }
 }
@@ -115,10 +132,15 @@ struct EncryptionKey {
 impl EncryptionKey {
     /// Derive an encryption key using the supplied PBKDF parameters.
     pub fn derive_from_password(password: &[u8], kdf: &Kdf<'_>, key_size: usize) -> Result<Self> {
+        // if the kdf params defined a key length, ensure it matches the required key size
+        if let Some(len) = kdf.key_length() {
+            if key_size != len.into() {
+                return Err(Error::AlgorithmParametersInvalid { oid: kdf.oid() });
+            }
+        }
+
         match kdf {
             Kdf::Pbkdf2(pbkdf2_params) => {
-                validate_key_length(key_size, pbkdf2_params.key_length.map(Into::into))?;
-
                 let key = match pbkdf2_params.prf {
                     #[cfg(feature = "sha1")]
                     Pbkdf2Prf::HmacWithSha1 => EncryptionKey::derive_with_pbkdf2::<sha1::Sha1>(
@@ -127,7 +149,11 @@ impl EncryptionKey {
                         key_size,
                     ),
                     #[cfg(not(feature = "sha1"))]
-                    Pbkdf2Prf::HmacWithSha1 => return Err(Error::Crypto),
+                    Pbkdf2Prf::HmacWithSha1 => {
+                        return Err(Error::UnsupportedAlgorithm {
+                            oid: super::HMAC_WITH_SHA1_OID,
+                        })
+                    }
                     Pbkdf2Prf::HmacWithSha224 => EncryptionKey::derive_with_pbkdf2::<sha2::Sha224>(
                         password,
                         pbkdf2_params,
@@ -181,17 +207,16 @@ impl EncryptionKey {
         params: &ScryptParams<'_>,
         length: usize,
     ) -> Result<Self> {
-        // TODO(tarcieri): move to `derive_from_password`?
-        validate_key_length(length, params.key_length.map(Into::into))?;
-
         let mut buffer = [0u8; MAX_KEY_LEN];
         scrypt(
             password,
             params.salt,
             &params.try_into()?,
             &mut buffer[..length],
         )
-        .map_err(|_| Error::Crypto)?;
+        .map_err(|_| Error::AlgorithmParametersInvalid {
+            oid: super::SCRYPT_OID,
+        })?;
 
         Ok(Self { buffer, length })
     }
@@ -201,20 +226,3 @@ impl EncryptionKey {
         &self.buffer[..self.length]
     }
 }
-
-/// Validate key length
-// TODO(tarcieri): move to `EncryptionKey::derive_from_password`?
-fn validate_key_length(requested_len: usize, params_len: Option<usize>) -> Result<()> {
-    // Ensure key length matches what is expected for the given algorithm
-    if let Some(len) = params_len {
-        if requested_len != len {
-            return Err(Error::Crypto);
-        }
-    }
-
-    if requested_len > MAX_KEY_LEN {
-        return Err(Error::Crypto);
-    }
-
-    Ok(())
-}