AesGcmFileRead

iceberg::encryption

Struct AesGcmFileRead 

Source 
pub struct AesGcmFileRead { /* private fields */ }
Expand description

Transparent decryption of AGS1 stream-encrypted files.

Implements the FileRead trait, providing random-access reads over encrypted data. Each read() call determines which encrypted blocks overlap the requested plaintext range, reads and decrypts them, then returns the requested plaintext bytes.

§Usage

// (ignored: requires async runtime and concrete FileRead/FileWrite impls)
let reader = AesGcmFileRead::new(
    inner_reader,       // Box<dyn FileRead> for the encrypted file
    cipher,             // Arc<AesGcmCipher> with the DEK
    aad_prefix.to_vec(),
    encrypted_file_length,
)?;

// Read plaintext bytes transparently
let plaintext = reader.read(0..1024).await?;

Implementations§

Source§

impl AesGcmFileRead

Source

pub fn new( inner: Box<dyn FileRead>, cipher: Arc<AesGcmCipher>, aad_prefix: Box<[u8]>, encrypted_file_length: u64, ) -> Result<Self>

Creates a new AesGcmFileRead for decrypting an AGS1 stream.

Computes the plaintext size and block layout from the encrypted file length. No I/O is performed; header validation happens implicitly when blocks are decrypted (GCM authentication will fail on corrupt data).

§Arguments
  • inner - Reader for the underlying encrypted file
  • cipher - AES-GCM cipher initialized with the file’s DEK
  • aad_prefix - AAD prefix from the file’s StandardKeyMetadata
  • encrypted_file_length - Total byte length of the encrypted file
Source

pub fn plaintext_length(&self) -> u64

Returns the plaintext stream size in bytes.

Source

pub fn calculate_plaintext_length(encrypted_file_length: u64) -> Result<u64>

Calculates the plaintext length from an encrypted file’s total length.

This is a static calculation matching Java’s AesGcmInputStream.calculatePlaintextLength().

Trait Implementations§

Source§

impl FileRead for AesGcmFileRead

Source§

fn read<'life0, 'async_trait>( &'life0 self, range: Range<u64>, ) -> Pin<Box<dyn Future<Output = Result<Bytes>> + Send + 'async_trait>>
where Self: 'async_trait, 'life0: 'async_trait,

Reads and decrypts a plaintext byte range from the encrypted AGS1 stream.

The caller specifies a range in plaintext coordinates (e.g. “bytes 0..1024 of the original file”). This method translates that into the encrypted file layout and performs the following steps:

  1. Map to blocks — divides the plaintext range by PLAIN_BLOCK_SIZE to find which encrypted blocks (first_block..=last_block) contain the requested data.

  2. Single I/O read — calculates the contiguous byte range in the encrypted file that covers all needed blocks (including the 8-byte AGS1 header offset, 12-byte nonces, and 16-byte GCM tags) and fetches them in one call to the inner FileRead.

  3. Decrypt per block — iterates over each cipher block in the response, decrypts it with AES-GCM using the per-block AAD (aad_prefix || block_index), and slices out only the plaintext bytes that overlap the requested range.

  4. Assemble result — concatenates the slices into a single Bytes buffer matching exactly range.end - range.start bytes.

Because each block is independently encrypted with its own nonce and AAD, arbitrary random-access reads are supported without decrypting the entire file. GCM authentication is verified per-block, so any tampering is detected at the granularity of individual blocks.

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
§

impl<U> As for U

§

fn as_<T>(self) -> T
where T: CastFrom<U>,

Casts self to type T. The semantics of numeric casting with the as operator are followed, so <T as As>::as_::<U> can be used in the same way as T as U for numeric conversions. Read more
§

impl<T> AsAny for T
where T: Any,

§

fn as_any(&self) -> &(dyn Any + 'static)

§

fn as_any_mut(&mut self) -> &mut (dyn Any + 'static)

§

fn type_name(&self) -> &'static str

Gets the type name of self
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
§

impl<T> Downcast for T
where T: AsAny + ?Sized,

§

fn is<T>(&self) -> bool
where T: AsAny,

Returns true if the boxed type is the same as T. Read more
§

fn downcast_ref<T>(&self) -> Option<&T>
where T: AsAny,

Forward to the method defined on the type Any.
§

fn downcast_mut<T>(&mut self) -> Option<&mut T>
where T: AsAny,

Forward to the method defined on the type Any.
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

§

impl<T> Instrument for T

§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided [Span], returning an Instrumented wrapper. Read more
§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> IntoEither for T

Source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
§

impl<T> Pointable for T

§

const ALIGN: usize

The alignment of pointer.
§

type Init = T

The type for initializers.
§

unsafe fn init(init: <T as Pointable>::Init) -> usize

Initializes a with the given initializer. Read more
§

unsafe fn deref<'a>(ptr: usize) -> &'a T

Dereferences the given pointer. Read more
§

unsafe fn deref_mut<'a>(ptr: usize) -> &'a mut T

Mutably dereferences the given pointer. Read more
§

unsafe fn drop(ptr: usize)

Drops the object pointed to by the given pointer. Read more
§

impl<T> PolicyExt for T
where T: ?Sized,

§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns [Action::Follow] only if self and other return Action::Follow. Read more
§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns [Action::Follow] if either self or other returns Action::Follow. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

§

fn vzip(self) -> V

§

impl<T> WithSubscriber for T

§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a [WithDispatch] wrapper. Read more
§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a [WithDispatch] wrapper. Read more