subduction_crypto 0.1.0

Cryptographic types for Subduction: signed payloads, verification witnesses
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35

//! Signing trait for cryptographic key management abstraction.
//!
//! This module provides the [`Signer`] trait which abstracts over signing
//! operations, allowing different key management strategies (in-memory keys,
//! hardware security modules, remote signing services, etc.).

pub mod memory;

use ed25519_dalek::{Signature, VerifyingKey};
use future_form::FutureForm;

/// A trait for signing data with an ed25519 key.
///
/// This abstraction allows different key management strategies:
/// - In-memory keys via [`memory::MemorySigner`]
/// - Hardware security modules
/// - Remote signing services
/// - Key derivation schemes
///
/// For synchronous signers, the async overhead is negligible.
///
/// # Sealing Payloads
///
/// Use [`Signed::seal`](crate::signed::Signed::seal) to sign a payload:
///
/// ```ignore
/// Signed::seal::<Sendable, _>(&signer, payload).await
/// ```
pub trait Signer<K: FutureForm> {
    /// Sign the given message bytes.
    fn sign(&self, message: &[u8]) -> K::Future<'_, Signature>;

    /// Get the verifying (public) key corresponding to this signer.
    fn verifying_key(&self) -> VerifyingKey;
}