[PM-18772] Rename AesCbc256 to Aes256Cbc (#172)

## 🎟️ Tracking

https://bitwarden.atlassian.net/browse/PM-18772
Clients bitwarden/clients#13637

## 📔 Objective

Currently we use: `Aes256Cbc`, but also `AesCbc256` in the SDK. In the
web clients we use `AesCbc256`. In general the former order is more
common.

For instance, TLS defines: `TLS_DHE_RSA_WITH_AES_256_CBC_SHA384`. JWK
defines: `AES_128_CBC_HMAC_SHA_256`, SSH defines `aes256-cbc`, COSE
defines: `A256CBC`.
This is because the block cipher is: AES-128-Bit / AES-256-Bit, and the
mode of operation is `CBC`. Semantically, we are currently splitting up
the block cipher used and interjecting the mode of operation in the
middle.

This PR renames the instances used in the SDK of `AesCbc256` to be
consistent with other standards, and to be consistent within our
codebase. There will be a corresponding PR for the web clients (this is
in draft until then).

## ⏰ Reminders before review

- Contributor guidelines followed
- All formatters and local linters executed and passed
- Written new unit and / or integration tests where applicable
- Protected functional changes with optionality (feature flags)
- Used internationalization (i18n) for all UI strings
- CI builds passed
- Communicated to DevOps any deployment requirements
- Updated any necessary documentation (Confluence, contributing docs) or
informed the documentation
  team

## 🦮 Reviewer guidelines

<!-- Suggested interactions but feel free to use (or not) as you desire!
-->

- 👍 (`:+1:`) or similar for great changes
- 📝 (`:memo:`) or ℹ️ (`:information_source:`) for notes or general info
- ❓ (`:question:`) for questions
- 🤔 (`:thinking:`) or 💭 (`:thought_balloon:`) for more open inquiry
that's not quite a confirmed
  issue and could potentially benefit from discussion
- 🎨 (`:art:`) for suggestions / improvements
- ❌ (`:x:`) or ⚠️ (`:warning:`) for more significant problems or
concerns needing attention
- 🌱 (`:seedling:`) or ♻️ (`:recycle:`) for future improvements or
indications of technical debt
- ⛏ (`:pick:`) for minor or nitpick changes

Author: quexten

crates/bitwarden-core/src/client/test_accounts.rs

@@ -139,7 +139,7 @@ pub fn test_bitwarden_com_account() -> TestAccount {
 
 /// ### `[email protected]`
 ///
-/// Account which has a user_key of type `AesCbc256_B64` which is deprecated.
+/// Account which has a user_key of type `Aes256Cbc_B64` which is deprecated.
 ///
 /// - Email: `[email protected]`
 /// - Password: `asdfasdfasdf`

crates/bitwarden-crypto/src/aes.rs

@@ -61,7 +61,7 @@ pub(crate) fn decrypt_aes256_hmac(
 ///
 /// ## Returns
 ///
-/// A AesCbc256_HmacSha256_B64 EncString
+/// A Aes256Cbc_HmacSha256_B64 EncString
 pub(crate) fn encrypt_aes256_hmac(
     data_dec: &[u8],
     mac_key: &GenericArray<u8, U32>,

crates/bitwarden-crypto/src/enc_string/mod.rs

@@ -52,9 +52,9 @@ fn split_enc_string(s: &str) -> (&str, Vec<&str>) {
         // Support legacy format with no header
         let parts: Vec<_> = s.split('|').collect();
         if parts.len() == 3 {
-            ("1", parts) // AesCbc128_HmacSha256_B64
+            ("1", parts) // Aes128Cbc_HmacSha256_B64
         } else {
-            ("0", parts) // AesCbc256_B64
+            ("0", parts) // Aes256Cbc_B64
         }
     }
 }

crates/bitwarden-crypto/src/enc_string/symmetric.rs

@@ -30,8 +30,8 @@ export type EncString = string;
 /// variants, but we should be opinionated in which variants are used for encrypting.
 ///
 /// ## Variants
-/// - [AesCbc256_B64](EncString::AesCbc256_B64)
-/// - [AesCbc256_HmacSha256_B64](EncString::AesCbc256_HmacSha256_B64)
+/// - [Aes256Cbc_B64](EncString::Aes256Cbc_B64)
+/// - [Aes256Cbc_HmacSha256_B64](EncString::Aes256Cbc_HmacSha256_B64)
 ///
 /// ## Serialization
 ///
@@ -51,10 +51,10 @@ export type EncString = string;
 #[allow(unused, non_camel_case_types)]
 pub enum EncString {
     /// 0
-    AesCbc256_B64 { iv: [u8; 16], data: Vec<u8> },
-    /// 1 was the now removed `AesCbc128_HmacSha256_B64`.
+    Aes256Cbc_B64 { iv: [u8; 16], data: Vec<u8> },
+    /// 1 was the now removed `Aes128Cbc_HmacSha256_B64`.
     /// 2
-    AesCbc256_HmacSha256_B64 {
+    Aes256Cbc_HmacSha256_B64 {
         iv: [u8; 16],
         mac: [u8; 32],
         data: Vec<u8>,
@@ -79,14 +79,14 @@ impl FromStr for EncString {
                 let iv = from_b64(parts[0])?;
                 let data = from_b64_vec(parts[1])?;
 
-                Ok(EncString::AesCbc256_B64 { iv, data })
+                Ok(EncString::Aes256Cbc_B64 { iv, data })
             }
             ("2", 3) => {
                 let iv = from_b64(parts[0])?;
                 let data = from_b64_vec(parts[1])?;
                 let mac = from_b64(parts[2])?;
 
-                Ok(EncString::AesCbc256_HmacSha256_B64 { iv, mac, data })
+                Ok(EncString::Aes256Cbc_HmacSha256_B64 { iv, mac, data })
             }
 
             (enc_type, parts) => Err(EncStringParseError::InvalidTypeSymm {
@@ -116,15 +116,15 @@ impl EncString {
                 let iv = buf[1..17].try_into().expect("Valid length");
                 let data = buf[17..].to_vec();
 
-                Ok(EncString::AesCbc256_B64 { iv, data })
+                Ok(EncString::Aes256Cbc_B64 { iv, data })
             }
             2 => {
                 check_length(buf, 50)?;
                 let iv = buf[1..17].try_into().expect("Valid length");
                 let mac = buf[17..49].try_into().expect("Valid length");
                 let data = buf[49..].to_vec();
 
-                Ok(EncString::AesCbc256_HmacSha256_B64 { iv, mac, data })
+                Ok(EncString::Aes256Cbc_HmacSha256_B64 { iv, mac, data })
             }
             _ => Err(EncStringParseError::InvalidTypeSymm {
                 enc_type: enc_type.to_string(),
@@ -138,13 +138,13 @@ impl EncString {
         let mut buf;
 
         match self {
-            EncString::AesCbc256_B64 { iv, data } => {
+            EncString::Aes256Cbc_B64 { iv, data } => {
                 buf = Vec::with_capacity(1 + 16 + data.len());
                 buf.push(self.enc_type());
                 buf.extend_from_slice(iv);
                 buf.extend_from_slice(data);
             }
-            EncString::AesCbc256_HmacSha256_B64 { iv, mac, data } => {
+            EncString::Aes256Cbc_HmacSha256_B64 { iv, mac, data } => {
                 buf = Vec::with_capacity(1 + 16 + 32 + data.len());
                 buf.push(self.enc_type());
                 buf.extend_from_slice(iv);
@@ -160,8 +160,8 @@ impl EncString {
 impl Display for EncString {
     fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
         let parts: Vec<&[u8]> = match self {
-            EncString::AesCbc256_B64 { iv, data } => vec![iv, data],
-            EncString::AesCbc256_HmacSha256_B64 { iv, mac, data } => vec![iv, data, mac],
+            EncString::Aes256Cbc_B64 { iv, data } => vec![iv, data],
+            EncString::Aes256Cbc_HmacSha256_B64 { iv, mac, data } => vec![iv, data, mac],
         };
 
         let encoded_parts: Vec<String> = parts.iter().map(|part| STANDARD.encode(part)).collect();
@@ -197,14 +197,14 @@ impl EncString {
     ) -> Result<EncString> {
         let (iv, mac, data) =
             crate::aes::encrypt_aes256_hmac(data_dec, &key.mac_key, &key.enc_key)?;
-        Ok(EncString::AesCbc256_HmacSha256_B64 { iv, mac, data })
+        Ok(EncString::Aes256Cbc_HmacSha256_B64 { iv, mac, data })
     }
 
     /// The numerical representation of the encryption type of the [EncString].
     const fn enc_type(&self) -> u8 {
         match self {
-            EncString::AesCbc256_B64 { .. } => 0,
-            EncString::AesCbc256_HmacSha256_B64 { .. } => 2,
+            EncString::Aes256Cbc_B64 { .. } => 0,
+            EncString::Aes256Cbc_HmacSha256_B64 { .. } => 2,
         }
     }
 }
@@ -223,11 +223,11 @@ impl KeyEncryptable<SymmetricCryptoKey, EncString> for &[u8] {
 impl KeyDecryptable<SymmetricCryptoKey, Vec<u8>> for EncString {
     fn decrypt_with_key(&self, key: &SymmetricCryptoKey) -> Result<Vec<u8>> {
         match (self, key) {
-            (EncString::AesCbc256_B64 { iv, data }, SymmetricCryptoKey::Aes256CbcKey(key)) => {
+            (EncString::Aes256Cbc_B64 { iv, data }, SymmetricCryptoKey::Aes256CbcKey(key)) => {
                 crate::aes::decrypt_aes256(iv, data.clone(), &key.enc_key)
             }
             (
-                EncString::AesCbc256_HmacSha256_B64 { iv, mac, data },
+                EncString::Aes256Cbc_HmacSha256_B64 { iv, mac, data },
                 SymmetricCryptoKey::Aes256CbcHmacKey(key),
             ) => crate::aes::decrypt_aes256_hmac(iv, mac, data.clone(), &key.mac_key, &key.enc_key),
             _ => Err(CryptoError::WrongKeyType),
@@ -341,7 +341,7 @@ mod tests {
         let enc_string: EncString = enc_str.parse().unwrap();
 
         assert_eq!(enc_string.enc_type(), 0);
-        if let EncString::AesCbc256_B64 { iv, data } = &enc_string {
+        if let EncString::Aes256Cbc_B64 { iv, data } = &enc_string {
             assert_eq!(
                 iv,
                 &[164, 196, 186, 254, 39, 19, 64, 0, 109, 186, 92, 57, 218, 154, 182, 150]
@@ -375,8 +375,8 @@ mod tests {
         let key = "hvBMMb1t79YssFZkpetYsM3deyVuQv4r88Uj9gvYe0+G8EwxvW3v1iywVmSl61iwzd17JW5C/ivzxSP2C9h7Tw==".to_string();
         let key = SymmetricCryptoKey::try_from(key).unwrap();
 
-        // A "downgraded" `EncString` from `EncString::AesCbc256_HmacSha256_B64` (2) to
-        // `EncString::AesCbc256_B64` (0), with the mac portion removed.
+        // A "downgraded" `EncString` from `EncString::Aes256Cbc_HmacSha256_B64` (2) to
+        // `EncString::Aes256Cbc_B64` (0), with the mac portion removed.
         // <enc_string>
         let enc_str = "0.NQfjHLr6za7VQVAbrpL81w==|wfrjmyJ0bfwkQlySrhw8dA==";
         let enc_string: EncString = enc_str.parse().unwrap();

crates/bitwarden-crypto/src/keys/master_key.rs

@@ -123,10 +123,10 @@ pub(super) fn decrypt_user_key(
     user_key: EncString,
 ) -> Result<SymmetricCryptoKey> {
     let mut dec: Vec<u8> = match user_key {
-        // Legacy. user_keys were encrypted using `AesCbc256_B64` a long time ago. We've since
-        // moved to using `AesCbc256_HmacSha256_B64`. However, we still need to support
+        // Legacy. user_keys were encrypted using `Aes256Cbc_B64` a long time ago. We've since
+        // moved to using `Aes256Cbc_HmacSha256_B64`. However, we still need to support
         // decrypting these old keys.
-        EncString::AesCbc256_B64 { .. } => {
+        EncString::Aes256Cbc_B64 { .. } => {
             let legacy_key = SymmetricCryptoKey::Aes256CbcKey(super::Aes256CbcKey {
                 enc_key: Box::pin(GenericArray::clone_from_slice(key)),
             });

crates/bitwarden-crypto/src/store/context.rs

@@ -331,11 +331,11 @@ impl<Ids: KeyIds> KeyStoreContext<'_, Ids> {
         let key = self.get_symmetric_key(key)?;
 
         match (data, key) {
-            (EncString::AesCbc256_B64 { iv, data }, SymmetricCryptoKey::Aes256CbcKey(key)) => {
+            (EncString::Aes256Cbc_B64 { iv, data }, SymmetricCryptoKey::Aes256CbcKey(key)) => {
                 crate::aes::decrypt_aes256(iv, data.clone(), &key.enc_key)
             }
             (
-                EncString::AesCbc256_HmacSha256_B64 { iv, mac, data },
+                EncString::Aes256Cbc_HmacSha256_B64 { iv, mac, data },
                 SymmetricCryptoKey::Aes256CbcHmacKey(key),
             ) => crate::aes::decrypt_aes256_hmac(iv, mac, data.clone(), &key.mac_key, &key.enc_key),
             _ => Err(CryptoError::InvalidKey),