iota-crypto 0.23.2

The canonical source of cryptographic ground-truth for all IOTA Rust projects
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118

// Copyright 2020-2021 IOTA Stiftung
// SPDX-License-Identifier: Apache-2.0

//! Ternary seed to derive private keys, public keys and signatures from.

use core::str::FromStr;

use bee_common_derive::{SecretDebug, SecretDisplay, SecretDrop};
// use rand::distributions::{Distribution, Uniform};
use zeroize::{Zeroize, ZeroizeOnDrop};

use crate::{
    encoding::ternary::{Btrit, T1B1Buf, Trit, TritBuf, Trits, TryteBuf, T1B1},
    hashes::ternary::{kerl::Kerl, Sponge, HASH_LENGTH},
};

/// Errors occuring when handling a `Seed`.
#[derive(Debug, PartialEq, Eq)]
pub enum Error {
    /// Invalid seed length.
    InvalidLength(usize),
    /// Invalid seed trytes.
    InvalidTrytes,
    /// Failed sponge operation.
    FailedSpongeOperation,
}

impl core::fmt::Display for Error {
    fn fmt(&self, f: &mut core::fmt::Formatter<'_>) -> core::fmt::Result {
        match self {
            Error::InvalidLength(length) => write!(f, "Invalid seed length, should be 243 trits, was {0}.", length),
            Error::InvalidTrytes => write!(f, "Invalid seed trytes."),
            Error::FailedSpongeOperation => write!(f, "Failed sponge operation."),
        }
    }
}

/// Ternary `Kerl`-based `Seed` to derive private keys, public keys and signatures from.
#[derive(SecretDebug, SecretDisplay, SecretDrop)]
pub struct Seed(TritBuf<T1B1Buf>);

impl Zeroize for Seed {
    fn zeroize(&mut self) {
        // This unsafe is fine since we only reset the whole buffer with zeros, there is no alignement issues.
        unsafe { self.0.as_i8_slice_mut().zeroize() }
    }
}

impl ZeroizeOnDrop for Seed {}

impl Seed {
    // /// Creates a new random `Seed`.
    // pub fn rand() -> Self {
    //     // `ThreadRng` implements `CryptoRng` so it is safe to use in cryptographic contexts.
    //     // https://rust-random.github.io/rand/rand/trait.CryptoRng.html
    //     let mut rng = rand::thread_rng();
    //     let trits = [Btrit::NegOne, Btrit::Zero, Btrit::PlusOne];
    //     let range = Uniform::from(0..trits.len());
    //     let mut seed = [Btrit::Zero; HASH_LENGTH];
    //
    //     for trit in seed.iter_mut() {
    //         *trit = trits[range.sample(&mut rng)];
    //     }
    //
    //     Self(<&Trits>::from(&seed as &[_]).to_buf())
    // }

    /// Creates a new `Seed` from the current `Seed` and an index.
    pub fn subseed(&self, index: usize) -> Self {
        let mut subseed = self.0.clone();

        for _ in 0..index {
            for t in subseed.iter_mut() {
                if let Some(ntrit) = t.checked_increment() {
                    *t = ntrit;
                    break;
                } else {
                    *t = Btrit::NegOne;
                }
            }
        }

        // Safe to unwrap since the size is known to be valid.
        Self(Kerl::default().digest(&subseed).unwrap())
    }

    /// Creates a `Seed` from trits.
    pub fn from_trits(buf: TritBuf<T1B1Buf>) -> Result<Self, Error> {
        if buf.len() != HASH_LENGTH {
            return Err(Error::InvalidLength(buf.len()));
        }

        Ok(Self(buf))
    }

    /// Returns the inner trits.
    pub fn as_trits(&self) -> &Trits<T1B1> {
        &self.0
    }
}

impl FromStr for Seed {
    type Err = Error;

    /// Creates a `Seed` from &str.
    fn from_str(str: &str) -> Result<Self, Self::Err> {
        if str.len() != HASH_LENGTH / 3 {
            return Err(Error::InvalidLength(str.len() * 3));
        }

        Ok(Self(
            TryteBuf::try_from_str(str)
                .map_err(|_| Error::InvalidTrytes)?
                .as_trits()
                .encode::<T1B1Buf>(),
        ))
    }
}