SealingKey

aws_lc_rs::aead

Struct SealingKey 

Source 
pub struct SealingKey<N: NonceSequence> {
    key: UnboundKey,
    nonce_sequence: N,
}
Expand description

An AEAD key for encrypting and signing (“sealing”), bound to a nonce sequence.

Intentionally not Clone or Copy since cloning would allow duplication of the nonce sequence.

Prefer RandomizedNonceKey for sealing operations.

Fields§

§key: UnboundKey§nonce_sequence: N

Implementations§

Source§

impl<N: NonceSequence> SealingKey<N>

Source

pub fn seal_in_place<A, InOut>( &mut self, aad: Aad<A>, in_out: &mut InOut, ) -> Result<(), Unspecified>
where A: AsRef<[u8]>, InOut: AsMut<[u8]> + for<'in_out> Extend<&'in_out u8>,

👎Deprecated: Renamed to seal_in_place_append_tag.

Deprecated. Renamed to seal_in_place_append_tag.

Prefer RandomizedNonceKey::seal_in_place_append_tag.

§Errors

See seal_in_place_append_tag

Source

pub fn seal_in_place_append_tag<A, InOut>( &mut self, aad: Aad<A>, in_out: &mut InOut, ) -> Result<(), Unspecified>
where A: AsRef<[u8]>, InOut: AsMut<[u8]> + for<'in_out> Extend<&'in_out u8>,

Encrypts and signs (“seals”) data in place, appending the tag to the resulting ciphertext.

key.seal_in_place_append_tag(aad, in_out) is equivalent to:

key.seal_in_place_separate_tag(aad, in_out.as_mut())
    .map(|tag| in_out.extend(tag.as_ref()))

Prefer RandomizedNonceKey::seal_in_place_append_tag.

§Errors

error::Unspecified when nonce_sequence cannot be advanced.

Source

pub fn seal_in_place_separate_tag<A>( &mut self, aad: Aad<A>, in_out: &mut [u8], ) -> Result<Tag, Unspecified>
where A: AsRef<[u8]>,

Encrypts and signs (“seals”) data in place.

aad is the additional authenticated data (AAD), if any. This is authenticated but not encrypted. The type A could be a byte slice &[u8], a byte array [u8; N] for some constant N, Vec<u8>, etc. If there is no AAD then use Aad::empty().

The plaintext is given as the input value of in_out. seal_in_place() will overwrite the plaintext with the ciphertext and return the tag. For most protocols, the caller must append the tag to the ciphertext. The tag will be self.algorithm.tag_len() bytes long.

Prefer RandomizedNonceKey::seal_in_place_separate_tag.

§Errors

error::Unspecified when nonce_sequence cannot be advanced.

Source

pub fn prepare_nonce( &mut self, ) -> Result<SealingKeyPreparedNonce<'_, N>, Unspecified>

Returns a SealingKeyPreparedNonce containing the next computed Nonce consumed from NonceSequence.

The encapsulated Nonce will be used if and only if either SealingKeyPreparedNonce::seal_in_place_append_tag or SealingKeyPreparedNonce::seal_in_place_separate_tag are invoked. Dropping SealingKeyPreparedNonce without invoking either method results in the nonce remaining consumed and unused within the associated NonceSequence. Subsequent calls to SealingKey methods will always use a proceeding nonce from the NonceSequence regardless of whether a SealingKeyPreparedNonce is consumed or not.

§Errors

Unspecified if there is a failure computing the nonce for the next operation, i.e. NonceSequence exhausted.

Trait Implementations§

Source§

impl<N: NonceSequence> BoundKey<N> for SealingKey<N>

Source§

fn new(key: UnboundKey, nonce_sequence: N) -> Self

Constructs a new key from the given UnboundKey and NonceSequence.
Source§

fn algorithm(&self) -> &'static Algorithm

The key’s AEAD algorithm.
Source§

impl<N: NonceSequence> Debug for SealingKey<N>

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result<(), Error>

Formats the value using the given formatter. Read more

Auto Trait Implementations§

§

impl<N> Freeze for SealingKey<N>
where N: Freeze,

§

impl<N> RefUnwindSafe for SealingKey<N>
where N: RefUnwindSafe,

§

impl<N> Send for SealingKey<N>
where N: Send,

§

impl<N> Sync for SealingKey<N>
where N: Sync,

§

impl<N> Unpin for SealingKey<N>
where N: Unpin,

§

impl<N> UnwindSafe for SealingKey<N>
where N: UnwindSafe,

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.