[−][src]Struct sequoia_openpgp::parse::stream::Decryptor
Decrypts and verifies an encrypted and optionally signed OpenPGP message.
Signature verification requires processing the whole message first. Therefore, OpenPGP implementations supporting streaming operations necessarily must output unverified data. This has been a source of problems in the past. To alleviate this, we buffer up to 25 megabytes of net message data first, and verify the signatures if the message fits into our buffer. Nevertheless it is important to treat the data as unverified and untrustworthy until you have seen a positive verification.
Example
extern crate sequoia_openpgp as openpgp; extern crate failure; use std::io::Read; use openpgp::crypto::SessionKey; use openpgp::types::SymmetricAlgorithm; use openpgp::{KeyID, Cert, Result, packet::{Key, PKESK, SKESK}}; use openpgp::parse::stream::*; // This fetches keys and computes the validity of the verification. struct Helper {}; impl VerificationHelper for Helper { fn get_public_keys(&mut self, _ids: &[openpgp::KeyHandle]) -> Result<Vec<Cert>> { Ok(Vec::new()) // Feed the Certs to the verifier here... } fn check(&mut self, structure: &MessageStructure) -> Result<()> { Ok(()) // Implement your verification policy here. } } impl DecryptionHelper for Helper { fn decrypt<D>(&mut self, _: &[PKESK], skesks: &[SKESK], mut decrypt: D) -> Result<Option<openpgp::Fingerprint>> where D: FnMut(SymmetricAlgorithm, &SessionKey) -> Result<()> { skesks[0].decrypt(&"streng geheim".into()) .and_then(|(algo, session_key)| decrypt(algo, &session_key)) .map(|_| None) } } let message = b"-----BEGIN PGP MESSAGE----- wy4ECQMIY5Zs8RerVcXp85UgoUKjKkevNPX3WfcS5eb7rkT9I6kw6N2eEc5PJUDh 0j0B9mnPKeIwhp2kBHpLX/en6RfNqYauX9eSeia7aqsd/AOLbO9WMCLZS5d2LTxN rwwb8Aggyukj13Mi0FF5 =OB/8 -----END PGP MESSAGE-----"; let h = Helper {}; let mut v = Decryptor::from_bytes(message, h, None)?; let mut content = Vec::new(); v.read_to_end(&mut content) .map_err(|e| if e.get_ref().is_some() { // Wrapped failure::Error. Recover it. failure::Error::from_boxed_compat(e.into_inner().unwrap()) } else { // Plain io::Error. e.into() })?; assert_eq!(content, b"Hello World!");
Methods
impl<'a, H: VerificationHelper + DecryptionHelper> Decryptor<'a, H>
[src]
pub fn from_reader<R, T>(reader: R, helper: H, t: T) -> Result<Decryptor<'a, H>> where
R: Read + 'a,
T: Into<Option<SystemTime>>,
[src]
R: Read + 'a,
T: Into<Option<SystemTime>>,
Creates a Decryptor
from the given reader.
Signature verifications are done relative to time t
, or the
current time, if t
is None
.
pub fn from_file<P, T>(path: P, helper: H, t: T) -> Result<Decryptor<'a, H>> where
P: AsRef<Path>,
T: Into<Option<SystemTime>>,
[src]
P: AsRef<Path>,
T: Into<Option<SystemTime>>,
Creates a Decryptor
from the given file.
Signature verifications are done relative to time t
, or the
current time, if t
is None
.
pub fn from_bytes<T>(
bytes: &'a [u8],
helper: H,
t: T
) -> Result<Decryptor<'a, H>> where
T: Into<Option<SystemTime>>,
[src]
bytes: &'a [u8],
helper: H,
t: T
) -> Result<Decryptor<'a, H>> where
T: Into<Option<SystemTime>>,
Creates a Decryptor
from the given buffer.
Signature verifications are done relative to time t
, or the
current time, if t
is None
.
pub fn helper_ref(&self) -> &H
[src]
Returns a reference to the helper.
pub fn helper_mut(&mut self) -> &mut H
[src]
Returns a mutable reference to the helper.
pub fn into_helper(self) -> H
[src]
Recovers the helper.
pub fn message_processed(&self) -> bool
[src]
Returns true if the whole message has been processed and the verification result is ready.
If the function returns false the message did not fit into the internal buffer and
unverified data must be read()
from the instance until EOF.
Trait Implementations
impl<'a, H: VerificationHelper + DecryptionHelper> Read for Decryptor<'a, H>
[src]
fn read(&mut self, buf: &mut [u8]) -> Result<usize>
[src]
fn read_vectored(&mut self, bufs: &mut [IoSliceMut]) -> Result<usize, Error>
1.36.0[src]
unsafe fn initializer(&self) -> Initializer
[src]
fn read_to_end(&mut self, buf: &mut Vec<u8>) -> Result<usize, Error>
1.0.0[src]
fn read_to_string(&mut self, buf: &mut String) -> Result<usize, Error>
1.0.0[src]
fn read_exact(&mut self, buf: &mut [u8]) -> Result<(), Error>
1.6.0[src]
fn by_ref(&mut self) -> &mut Self
1.0.0[src]
fn bytes(self) -> Bytes<Self>
1.0.0[src]
fn chain<R>(self, next: R) -> Chain<Self, R> where
R: Read,
1.0.0[src]
R: Read,
fn take(self, limit: u64) -> Take<Self>
1.0.0[src]
Auto Trait Implementations
impl<'a, H> !RefUnwindSafe for Decryptor<'a, H>
impl<'a, H> !Send for Decryptor<'a, H>
impl<'a, H> !Sync for Decryptor<'a, H>
impl<'a, H> Unpin for Decryptor<'a, H> where
H: Unpin,
H: Unpin,
impl<'a, H> !UnwindSafe for Decryptor<'a, H>
Blanket Implementations
impl<T> Any for T where
T: 'static + ?Sized,
[src]
T: 'static + ?Sized,
impl<T> Borrow<T> for T where
T: ?Sized,
[src]
T: ?Sized,
impl<T> BorrowMut<T> for T where
T: ?Sized,
[src]
T: ?Sized,
fn borrow_mut(&mut self) -> &mut T
[src]
impl<T> From<T> for T
[src]
impl<T, U> Into<U> for T where
U: From<T>,
[src]
U: From<T>,
impl<R> ReadBytesExt for R where
R: Read + ?Sized,
R: Read + ?Sized,
fn read_u8(&mut self) -> Result<u8, Error>
fn read_i8(&mut self) -> Result<i8, Error>
fn read_u16<T>(&mut self) -> Result<u16, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i16<T>(&mut self) -> Result<i16, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_u24<T>(&mut self) -> Result<u32, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i24<T>(&mut self) -> Result<i32, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_u32<T>(&mut self) -> Result<u32, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i32<T>(&mut self) -> Result<i32, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_u48<T>(&mut self) -> Result<u64, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i48<T>(&mut self) -> Result<i64, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_u64<T>(&mut self) -> Result<u64, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i64<T>(&mut self) -> Result<i64, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_u128<T>(&mut self) -> Result<u128, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i128<T>(&mut self) -> Result<i128, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_uint<T>(&mut self, nbytes: usize) -> Result<u64, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_int<T>(&mut self, nbytes: usize) -> Result<i64, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_uint128<T>(&mut self, nbytes: usize) -> Result<u128, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_int128<T>(&mut self, nbytes: usize) -> Result<i128, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_f32<T>(&mut self) -> Result<f32, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_f64<T>(&mut self) -> Result<f64, Error> where
T: ByteOrder,
T: ByteOrder,
fn read_u16_into<T>(&mut self, dst: &mut [u16]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_u32_into<T>(&mut self, dst: &mut [u32]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_u64_into<T>(&mut self, dst: &mut [u64]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_u128_into<T>(&mut self, dst: &mut [u128]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i8_into(&mut self, dst: &mut [i8]) -> Result<(), Error>
fn read_i16_into<T>(&mut self, dst: &mut [i16]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i32_into<T>(&mut self, dst: &mut [i32]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i64_into<T>(&mut self, dst: &mut [i64]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_i128_into<T>(&mut self, dst: &mut [i128]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_f32_into<T>(&mut self, dst: &mut [f32]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_f32_into_unchecked<T>(&mut self, dst: &mut [f32]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_f64_into<T>(&mut self, dst: &mut [f64]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
fn read_f64_into_unchecked<T>(&mut self, dst: &mut [f64]) -> Result<(), Error> where
T: ByteOrder,
T: ByteOrder,
impl<T, U> TryFrom<U> for T where
U: Into<T>,
[src]
U: Into<T>,
type Error = Infallible
The type returned in the event of a conversion error.
fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>
[src]
impl<T, U> TryInto<U> for T where
U: TryFrom<T>,
[src]
U: TryFrom<T>,
type Error = <U as TryFrom<T>>::Error
The type returned in the event of a conversion error.
fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>
[src]
impl<V, T> VZip<V> for T where
V: MultiLane<T>,
V: MultiLane<T>,