gun-rs 0.1.0

A realtime, decentralized, offline-first, graph data synchronization engine (Rust port)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70

//! ECDH key derivation (shared secret)
//! Based on Gun.js sea/secret.js
//! Derives a shared secret from ECDH key exchange

use super::SeaError;
use base64::{engine::general_purpose, Engine as _};
use p256::{PublicKey, SecretKey};

/// Derive shared secret from ECDH key exchange
/// Takes a public key (epub) and a key pair with epriv/epub
/// Returns the derived secret key (base64 encoded)
pub async fn derive_secret(
    their_epub: &str,
    our_epriv: &str,
    our_epub: &str,
) -> Result<String, SeaError> {
    // Parse their public key (format: x.y)
    let their_pub = parse_epub(their_epub)?;

    // Parse our keys
    let _our_pub = parse_epub(our_epub)?;
    let our_priv_bytes = general_purpose::STANDARD_NO_PAD
        .decode(our_epriv)
        .map_err(|_| SeaError::InvalidKey)?;

    // Create our secret key from private key bytes (32 bytes for P-256)
    if our_priv_bytes.len() != 32 {
        return Err(SeaError::InvalidKey);
    }
    let mut priv_array = [0u8; 32];
    priv_array.copy_from_slice(&our_priv_bytes);
    let our_secret = SecretKey::from_bytes(&priv_array.into()).map_err(|_| SeaError::InvalidKey)?;

    // Derive shared secret using ECDH
    // Use the ecdh module's diffie_hellman function
    let shared_secret =
        p256::ecdh::diffie_hellman(our_secret.to_nonzero_scalar(), their_pub.as_affine());

    // Extract the x-coordinate of the shared point as the secret
    // This is what Gun.js does - uses the x coordinate
    let shared_point = shared_secret.raw_secret_bytes();

    // Return as base64 (matching Gun.js format)
    #[allow(deprecated)] // generic_array::as_slice is deprecated but aes-gcm still uses it
    #[allow(deprecated)] // generic_array::as_slice is deprecated but aes-gcm still uses it
    Ok(general_purpose::STANDARD_NO_PAD.encode(shared_point.as_slice()))
}

/// Parse an epub key (format: x.y base64) into a PublicKey
fn parse_epub(epub: &str) -> Result<PublicKey, SeaError> {
    let parts: Vec<&str> = epub.split('.').collect();
    if parts.len() != 2 {
        return Err(SeaError::InvalidKey);
    }

    let x = general_purpose::STANDARD_NO_PAD
        .decode(parts[0])
        .map_err(|_| SeaError::InvalidKey)?;
    let y = general_purpose::STANDARD_NO_PAD
        .decode(parts[1])
        .map_err(|_| SeaError::InvalidKey)?;

    // Reconstruct uncompressed public key (0x04 || x || y)
    let mut pub_bytes = vec![0x04u8];
    pub_bytes.extend_from_slice(&x);
    pub_bytes.extend_from_slice(&y);

    // Import as public key
    PublicKey::from_sec1_bytes(&pub_bytes).map_err(|_| SeaError::InvalidKey)
}