Add padding blob to data packs to mitigate chunking attacks

[aawsome]

see e.g. rustic-rs/rustic#1439
This also introduces the repository config option use-pack-padding which allows to disable the padding.

As a side-effect currently wrong statistics (data added to blobs in stats was without pack header) has been corrected.

depends on #409

[codecov]

Codecov Report

Attention: Patch coverage is 64.22287% with 122 lines in your changes missing coverage. Please review.

Project coverage is 44.0%. Comparing base (64d052d) to head (7738b70).

Files with missing lines	Patch %	Lines
crates/core/src/blob/repopacker.rs	61.3%	53 Missing ⚠️
crates/core/src/commands/prune.rs	64.4%	32 Missing ⚠️
crates/core/src/blob/packer.rs	72.7%	12 Missing ⚠️
crates/core/src/blob/pack_sizer.rs	65.0%	7 Missing ⚠️
crates/core/src/commands/repair/index.rs	0.0%	6 Missing ⚠️
crates/core/src/index/indexer.rs	89.2%	3 Missing ⚠️
crates/core/src/backend/decrypt.rs	33.3%	2 Missing ⚠️
crates/core/src/commands/copy.rs	0.0%	2 Missing ⚠️
crates/core/src/commands/merge.rs	0.0%	2 Missing ⚠️
crates/core/src/commands/repair/snapshots.rs	0.0%	2 Missing ⚠️
... and 1 more

Additional details and impacted files

Files with missing lines	Coverage Δ
crates/core/src/archiver/file_archiver.rs	63.1% <100.0%> (ø)
crates/core/src/archiver/tree_archiver.rs	69.7% <100.0%> (ø)
crates/core/src/backend.rs	54.6% <ø> (+1.3%)	⬆️
crates/core/src/blob.rs	81.8% <ø> (+1.8%)	⬆️
crates/core/src/chunker.rs	50.5% <ø> (ø)
crates/core/src/commands/config.rs	35.8% <100.0%> (+0.8%)	⬆️
crates/core/src/repofile/configfile.rs	47.0% <100.0%> (-5.9%)	⬇️
crates/core/src/repofile/packfile.rs	63.4% <ø> (-5.7%)	⬇️
crates/core/src/archiver.rs	57.6% <66.6%> (-2.1%)	⬇️
crates/core/src/backend/decrypt.rs	48.1% <33.3%> (+0.2%)	⬆️
... and 9 more

... and 19 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[nardoor]

What do you think about just self.stats.data_packed += len?

[nardoor]

redundant definition of these conts (defined above in constants inlined module)

[nardoor]

As your "except" message says, to me there will never be an issue with converting padding_size to usize:

Suggested change

	let data = vec![
	0;
	padding_size
	.try_into()
	.expect("u32 should convert to usize")
	];
	let data = vec![0; padding_size as usize];

[nardoor]

I took a look at the restic PR for padding attack resilience, it seems they implemented the "padmé" padding "size" algorithm for this.

They reference this blogpost https://lbarman.ch/blog/padme/ and it seems interesting (you probably already have seen it since you participated in the restic issue on chunking attacks).

What's your opinion on that?
I am not strongly opinionated on this, but it seems that padmé is a thought through padding algorithm with a good balance between security and overhead.