Struct E2ESession 

pub struct E2ESession { /* private fields */ }

E2E encryption session state machine.

Manages ECDH key exchange, group key distribution, TOFU verification, and encrypt/decrypt operations. This is the protocol layer that works with raw bytes and messages — the CryptoClient (behind client feature) wires it to a CLASP client.

Implementations

impl E2ESession

pub fn new(config: E2ESessionConfig) -> Self

pub fn encrypted(&self) -> bool

Whether this session has an active group key.

pub fn base_path(&self) -> &str

The base path for this session’s E2E subpaths.

pub async fn start(&mut self) -> Result<()>

Start the session: attempt to load a persisted group key.

pub async fn enable_encryption(&mut self) -> Result<PublicKeyAnnouncement>

Enable encryption: generate a new group key. Returns a PublicKeyAnnouncement to be published via CLASP.

pub fn request_group_key(&mut self) -> Result<Option<PublicKeyAnnouncement>>

Create a public key announcement (for requestGroupKey).

pub fn encrypt(&self, value: &str) -> Result<E2EEnvelope>

Encrypt a string value into an E2EEnvelope.

pub async fn decrypt(&mut self, envelope: &E2EEnvelope) -> Result<String>

Decrypt an E2EEnvelope back to a string.

pub async fn handle_peer_pubkey( &mut self, peer_id: &str, announcement: &PublicKeyAnnouncement, ) -> Result<Option<KeyExchangeMessage>>

Handle a peer’s public key announcement. Returns a KeyExchangeMessage if we have the group key and should distribute it.

Password-gated sessions: If password_hash is set, the caller must verify the peer’s password proof before calling this method. This method does not enforce password gating — it is the caller’s responsibility.

pub async fn handle_key_exchange( &mut self, msg: &KeyExchangeMessage, ) -> Result<()>

Handle a key exchange message sent to us. Decrypts and stores the group key.

pub async fn rotate_key(&mut self) -> Result<Vec<(String, KeyExchangeMessage)>>

Rotate the group key. Returns KeyExchangeMessages for all cached peers.

pub fn remove_peer(&mut self, peer_id: &str)

Remove a peer’s cached public key.

pub fn should_rotate(&self) -> bool

Check whether automatic rotation is due.

pub async fn maybe_rotate( &mut self, ) -> Result<Option<(Vec<(String, KeyExchangeMessage)>, PublicKeyAnnouncement)>>

Rotate the key if the rotation interval has elapsed. Returns any key exchange messages to distribute, plus a new PublicKeyAnnouncement so new peers can request the fresh key.

pub fn rotation_count(&self) -> u64

Number of key rotations performed in this session.

pub fn last_rotation(&self) -> Option<u64>

Timestamp of the last key rotation (Unix ms), if any.

pub fn destroy(&mut self)

Destroy the session, zeroing all key material.

Trait Implementations

impl Drop for E2ESession

fn drop(&mut self)

Executes the destructor for this type.