shadow_crypto/

keyexchange.rs

use x25519_dalek::{EphemeralSecret, PublicKey, SharedSecret};
use anyhow::Result;
use serde::{Deserialize, Serialize};
use crate::encryption::EncryptionKey;

/// X25519 key exchange for forward secrecy
pub struct KeyExchange {
    secret: EphemeralSecret,
    public: PublicKey,
}

impl KeyExchange {
    /// Generate new ephemeral keypair
    pub fn new() -> Self {
        let secret = EphemeralSecret::random_from_rng(rand::rngs::OsRng);
        let public = PublicKey::from(&secret);
        
        Self { secret, public }
    }

    /// Get public key for exchange
    pub fn public_key(&self) -> &PublicKey {
        &self.public
    }

    /// Get public key as bytes
    pub fn public_key_bytes(&self) -> [u8; 32] {
        self.public.to_bytes()
    }

    /// Perform key exchange and derive encryption key
    pub fn exchange(self, peer_public: &PublicKey) -> Result<EncryptionKey> {
        let shared_secret = self.secret.diffie_hellman(peer_public);
        
        // Derive encryption key from shared secret using HKDF
        let key_bytes = derive_key_from_shared_secret(&shared_secret)?;
        
        Ok(EncryptionKey::from_bytes(key_bytes))
    }

    /// Exchange with peer public key bytes
    pub fn exchange_bytes(self, peer_public_bytes: &[u8; 32]) -> Result<EncryptionKey> {
        let peer_public = PublicKey::from(*peer_public_bytes);
        self.exchange(&peer_public)
    }
}

impl Default for KeyExchange {
    fn default() -> Self {
        Self::new()
    }
}

/// Derive encryption key from X25519 shared secret
fn derive_key_from_shared_secret(shared_secret: &SharedSecret) -> Result<[u8; 32]> {
    use hkdf::Hkdf;
    use sha2::Sha256;

    let hk = Hkdf::<Sha256>::new(None, shared_secret.as_bytes());
    let mut okm = [0u8; 32];
    hk.expand(b"shadow-network-dh-key", &mut okm)
        .map_err(|e| anyhow::anyhow!("HKDF expansion failed: {:?}", e))?;
    
    Ok(okm)
}

/// Serializable public key for network transmission
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct PublicKeyBytes(pub [u8; 32]);

impl From<&PublicKey> for PublicKeyBytes {
    fn from(pk: &PublicKey) -> Self {
        Self(pk.to_bytes())
    }
}

impl From<PublicKeyBytes> for PublicKey {
    fn from(pkb: PublicKeyBytes) -> Self {
        PublicKey::from(pkb.0)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_key_exchange() {
        // Alice and Bob generate ephemeral keypairs
        let alice = KeyExchange::new();
        let bob = KeyExchange::new();

        // Exchange public keys
        let alice_public = *alice.public_key();
        let bob_public = *bob.public_key();

        // Both derive the same shared secret
        let alice_key = alice.exchange(&bob_public).unwrap();
        let bob_key = bob.exchange(&alice_public).unwrap();

        assert_eq!(alice_key.as_bytes(), bob_key.as_bytes());
    }

    #[test]
    fn test_key_exchange_bytes() {
        let alice = KeyExchange::new();
        let bob = KeyExchange::new();

        let alice_pub_bytes = alice.public_key_bytes();
        let bob_pub_bytes = bob.public_key_bytes();

        let alice_key = alice.exchange_bytes(&bob_pub_bytes).unwrap();
        let bob_key = bob.exchange_bytes(&alice_pub_bytes).unwrap();

        assert_eq!(alice_key.as_bytes(), bob_key.as_bytes());
    }
}