2026-02-18 09:29:33 -08:00
|
|
|
use generic_array::{GenericArray, typenum::U32};
|
2026-01-22 06:39:09 +07:00
|
|
|
|
2026-02-18 09:29:33 -08:00
|
|
|
use rand_core::{CryptoRng, OsRng, RngCore};
|
|
|
|
|
use std::{fmt::Debug, ops::Deref};
|
|
|
|
|
use x25519_dalek::{PublicKey as x25519_Pub, SharedSecret, StaticSecret as x25519_Priv};
|
|
|
|
|
use xeddsa::xed25519::{self, PublicKey as xed25519_Pub};
|
2026-01-22 06:39:09 +07:00
|
|
|
use zeroize::{Zeroize, ZeroizeOnDrop};
|
|
|
|
|
|
2026-02-18 09:29:33 -08:00
|
|
|
#[derive(Debug, Copy, Clone, PartialEq, Hash, Eq, Zeroize)] // TODO: (!) Zeroize only required by InstallationKeyPair
|
|
|
|
|
pub struct PublicKey(x25519_Pub);
|
2026-01-22 06:39:09 +07:00
|
|
|
|
2026-02-18 09:29:33 -08:00
|
|
|
impl From<x25519_Pub> for PublicKey {
|
|
|
|
|
fn from(value: x25519_Pub) -> Self {
|
|
|
|
|
Self(value)
|
2026-01-22 06:39:09 +07:00
|
|
|
}
|
2026-02-18 09:29:33 -08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl From<&x25519_Priv> for PublicKey {
|
|
|
|
|
fn from(value: &x25519_Priv) -> Self {
|
|
|
|
|
Self(x25519_Pub::from(value))
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl From<[u8; 32]> for PublicKey {
|
|
|
|
|
fn from(value: [u8; 32]) -> Self {
|
|
|
|
|
Self(x25519_Pub::from(value))
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl AsRef<[u8]> for PublicKey {
|
|
|
|
|
fn as_ref(&self) -> &[u8] {
|
|
|
|
|
self.0.as_ref()
|
|
|
|
|
}
|
|
|
|
|
}
|
2026-02-04 06:17:45 +07:00
|
|
|
|
2026-02-18 09:29:33 -08:00
|
|
|
impl From<&PublicKey> for xed25519_Pub {
|
|
|
|
|
fn from(value: &PublicKey) -> Self {
|
|
|
|
|
Self::from(&value.0)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl Deref for PublicKey {
|
|
|
|
|
type Target = x25519_Pub;
|
|
|
|
|
|
|
|
|
|
fn deref(&self) -> &Self::Target {
|
2026-02-04 06:17:45 +07:00
|
|
|
&self.0
|
|
|
|
|
}
|
2026-01-22 06:39:09 +07:00
|
|
|
}
|
|
|
|
|
|
2026-02-18 09:29:33 -08:00
|
|
|
#[derive(Clone, Zeroize, ZeroizeOnDrop)]
|
|
|
|
|
pub struct PrivateKey(x25519_Priv);
|
|
|
|
|
|
|
|
|
|
impl PrivateKey {
|
|
|
|
|
pub fn random_from_rng<T: RngCore + CryptoRng>(csprng: T) -> Self {
|
|
|
|
|
Self(x25519_Priv::random_from_rng(csprng))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//TODO: Remove. Force internal callers provide Rng to make deterministic testing possible
|
|
|
|
|
pub fn random() -> PrivateKey {
|
|
|
|
|
Self::random_from_rng(OsRng)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pub fn diffie_hellman(&self, public_key: &PublicKey) -> SymmetricKey32 {
|
|
|
|
|
(&self.0.diffie_hellman(&public_key.0)).into()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[allow(non_snake_case)] // All caps makes this standout more in reviews.
|
|
|
|
|
pub fn DANGER_to_bytes(&self) -> [u8; 32] {
|
|
|
|
|
self.0.to_bytes()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl From<&PrivateKey> for xed25519::PrivateKey {
|
|
|
|
|
fn from(value: &PrivateKey) -> Self {
|
|
|
|
|
Self::from(&value.0)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl From<&PrivateKey> for PublicKey {
|
|
|
|
|
fn from(value: &PrivateKey) -> Self {
|
|
|
|
|
Self(x25519_Pub::from(&value.0))
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl From<[u8; 32]> for PrivateKey {
|
2026-01-22 06:39:09 +07:00
|
|
|
fn from(value: [u8; 32]) -> Self {
|
2026-02-18 09:29:33 -08:00
|
|
|
Self(x25519_Priv::from(value))
|
2026-01-22 06:39:09 +07:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2026-02-18 09:29:33 -08:00
|
|
|
/// A Generic secret key container for symmetric keys.
|
|
|
|
|
/// SymmetricKey retains ownership of bytes to ensure they are Zeroized on drop.
|
|
|
|
|
#[derive(Clone, Zeroize, ZeroizeOnDrop, PartialEq)]
|
|
|
|
|
pub struct SymmetricKey<const N: usize>([u8; N]);
|
|
|
|
|
|
|
|
|
|
impl<const N: usize> SymmetricKey<N> {
|
|
|
|
|
pub fn as_bytes(&self) -> &[u8] {
|
|
|
|
|
self.0.as_slice()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns internal [u8; N].
|
|
|
|
|
/// This function bypasses zeroize_on_drop, and will be deprecated once all consumers have been migrated
|
|
|
|
|
#[allow(nonstandard_style)]
|
|
|
|
|
pub fn DANGER_to_bytes(self) -> [u8; N] {
|
|
|
|
|
// TODO: (P3) Remove once DR ported to use safe keys.
|
|
|
|
|
self.0
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl<const N: usize> From<[u8; N]> for SymmetricKey<N> {
|
|
|
|
|
fn from(value: [u8; N]) -> Self {
|
|
|
|
|
SymmetricKey(value)
|
2026-01-22 06:39:09 +07:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2026-02-18 09:29:33 -08:00
|
|
|
impl<const N: usize> Debug for SymmetricKey<N> {
|
2026-01-22 06:39:09 +07:00
|
|
|
fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
|
2026-02-18 09:29:33 -08:00
|
|
|
write!(f, "SymmetricKey(...{N} Bytes Redacted...)")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// TODO: (P5) look into typenum::generic_const_mappings to avoid having to implement From<U>
|
|
|
|
|
pub type SymmetricKey32 = SymmetricKey<32>;
|
|
|
|
|
|
|
|
|
|
impl From<GenericArray<u8, U32>> for SymmetricKey32 {
|
|
|
|
|
fn from(value: GenericArray<u8, U32>) -> Self {
|
|
|
|
|
SymmetricKey(value.into())
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
impl From<&SharedSecret> for SymmetricKey32 {
|
|
|
|
|
// This relies on the feature 'zeroize' being set for x25519-dalek.
|
|
|
|
|
// If not the SharedSecret will need to manually zeroized
|
|
|
|
|
fn from(value: &SharedSecret) -> Self {
|
|
|
|
|
value.to_bytes().into()
|
2026-01-22 06:39:09 +07:00
|
|
|
}
|
|
|
|
|
}
|
