mirror/matrix-rust-sdk
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-rust-sdk.git synced 2026-05-17 13:13:34 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
d03eefc49aebe452f8564a35cdfca51347c688d4
matrix-rust-sdk/crates/matrix-store-key
History
Damir Jelić d03eefc49a docs(store-key): Improve the docs a bit 
Co-authored-by: Denis Kasak <dkasak@termina.org.uk>
2022-03-16 12:48:16 +01:00
..
src
docs(store-key): Improve the docs a bit
2022-03-16 12:48:16 +01:00
Cargo.toml
feat(store-key): Add a feature flag to enable WASM support
2022-03-16 12:48:16 +01:00
README.md
docs(store-key): Improve the docs a bit
2022-03-16 12:48:16 +01:00

README.md

A general purpose encryption scheme for key/value stores.

Usage

use matrix_sdk_store_key::StoreKey;
use serde_json::{json, value::Value};

fn main() -> anyhow::Result<()> {
    let store_key = StoreKey::new()?;

    // Export the store key and persist it in your key/value store
    let export = store_key.export("secret-passphrase")?;

    let value = json!({
        "some": "data",
    });

    let encrypted = store_key.encrypt_value(&value)?;
    let decrypted: Value = store_key.decrypt_value(&encrypted)?;

    assert_eq!(value, decrypted);

    let key = "bulbasaur";

    // Hash the key so people don't know which pokemon we have collected.
    let hashed_key = store_key.hash_key("list-of-pokemon", key.as_ref());
    let another_table = store_key.hash_key("my-starter", key.as_ref());
    let same_key = store_key.hash_key("my-starter", key.as_ref());

    assert_ne!(key.as_ref(), hashed_key);
    assert_ne!(hashed_key, another_table);
    assert_eq!(another_table, same_key);

    Ok(())
}

⚠️ Security Warning: Hazmat!

This crate only implements the low-level block cipher function, to be used only as a building block for higher-level constructions. It is NOT intended for direct use in applications.

USE AT YOUR OWN RISK!

Encryption scheme

A StoreKey consists of two randomly generated 32 byte-sized slices.

The first 32 bytes are used to encrypt values. XChaCha20Poly1305 with a random nonce is used to encrypt each value. The nonce is saved with the ciphertext.

The second 32 bytes are used as a seed to derive table-specific keys, used in keyed hash construction to hash table data. Currently we use blake3 as the keyed hash construction.

                ┌───────────────────────────────────────┐
                │               StoreKey                │
                │   Encryption key |    Hash key seed   │
                │      [u8; 32]    |       [u8; 32]     │
                └───────────────────────────────────────┘

The StoreKey has some Matrix-specific assumptions built in, which ensure that the limits of the cryptographic primitives are not exceeded. If this crate is used for non-Matrix data, users need to ensure:

  1. That individual values are chunked, otherwise decryption might be susceptible to a DOS attack.
  2. The StoreKey is periodically rotated/rekeyed.

WASM support

This crate relies on the random and getrandom crates which don't support WASM automatically.

Either turn the js feature on directly on this crate or depend on getrandom with the js feature turned on. More info can be found in the getrandom docs.

Reference in New Issue View Git Blame Copy Permalink