Skip to content
/ afet Public

A toy file encryption program developed as a learning excercise on the ChaCha20 algorithm.

License

Unlicense license
4 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rlaneth/afet

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.github/workflows
.github/workflows
 
 
bin
bin
 
 
src
src
 
 
.clang-format
.clang-format
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
sonar-project.properties
sonar-project.properties
 
 

Repository files navigation

afet

⚠️ WARNING: this program is for educational purposes only. It is NOT safe to use it for encryption of sensitive data.

afet (an acronym for “a file encryption tool”) is a tiny file encryption program based on the ChaCha algorithm.

As a toy project developed exclusively as an exercise on understanding RFC 7539, it is lacking in many ways and MUST NOT be considered secure.

Known issues

  • afet has no means of checking message integrity on decryption. This means that the contents of an encrypted file might be changed (e.g. by an attacker) and it will still decrypt successfully. The Poly1305 MAC is usually used with ChaCha to avoid this issue, but it is not implemented here.

  • The user interface is not well polished. Notably, there are issues related to parsing command line arguments and the program lacks a “help” option.

  • The program has in no way been extensively tested, meaning a high change of severe bugs, including those which could leave the encrypted information at risk.

Build

Just run make from the repository root. The compiled binary will be placed in the bin directory.

Usage

$ afet COMMAND -i INPUT -o OUTPUT -l LIMIT KEYFILE NONCE

  • INPUT is only valid for the encrypt and decrypt commands, and determines the path of the plaintext file to be encrypted;

  • OUTPUT is an optional parameter which determines the path for a file to which the output of the command should be written;

  • LIMIT is only valid for the random command and determines the maximum number of random bytes to be generated (default is 18,446,744,073,709,551,615, the maximum possible value);

  • KEYFILE must be the path to a file exactly 32 bytes in length;

  • NONCE is the nonce to be used in the encryption algorithm and must be an integer between 0 and 18,446,744,073,709,551,615.

Random

Generates random data based on a key and a nonce. Example:

$ afet keyfile 1

Encryption

Encrypts a file based on the random generator output.

$ afet encrypt -i plaintext.txt -o ciphertext.bin key.bin 1

Decrypt

ℹ️ Note: as the encryption process is a simple XOR, the decrypt command is actually an alias to encrypt.

Decrypts a file based on the random generator output.

$ afet decrypt -i ciphertext.bin -o plaintext.bin key.bin 1

About

A toy file encryption program developed as a learning excercise on the ChaCha20 algorithm.

Resources

Readme

License

Unlicense license
Activity

Stars

4 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages