tor-keymgr 0.41.0

Key management for the Arti Tor implementation
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47

//! Helpers for parsing certificates.

use std::path::PathBuf;

use tor_error::internal;
use tor_key_forge::{CertType, ParsedEd25519Cert};

use crate::keystore::arti::err::ArtiNativeKeystoreError;
use crate::{ErasedKey, Result};

/// An unparsed key certificate.
pub(super) struct UnparsedCert {
    /// The contents of the cert file.
    inner: Vec<u8>,
    /// The path of the file (for error reporting).
    path: PathBuf,
}

impl UnparsedCert {
    /// Create a new [`UnparsedCert`].
    pub(super) fn new(inner: Vec<u8>, path: PathBuf) -> Self {
        Self { inner, path }
    }

    /// Parse a key certificate, converting the key material into a known type,
    /// and return the type-erased value.
    ///
    /// The caller is expected to downcast the value returned to a concrete type.
    pub(super) fn parse_certificate_erased(self, cert_type: &CertType) -> Result<ErasedKey> {
        match cert_type {
            CertType::Ed25519TorCert => {
                let cert = ParsedEd25519Cert::decode(self.inner).map_err(|e| {
                    ArtiNativeKeystoreError::CertParse {
                        path: self.path,
                        cert_type: cert_type.clone(),
                        err: e.clone(),
                    }
                })?;

                Ok(Box::new(cert))
            }
            _ => Err(
                ArtiNativeKeystoreError::Bug(internal!("Unknown cert type {cert_type:?}")).into(),
            ),
        }
    }
}