webylib 0.3.4

Webcash HD wallet library — bearer e-cash with BIP32-style key derivation, SQLite storage, AES-256-GCM encryption, and full C FFI for cross-platform SDKs
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257

//! Webcash types and serialization
//!
//! This module contains the core Webcash data structures:
//! - `SecretWebcash`: Contains the secret value and amount
//! - `PublicWebcash`: Contains the public hash and amount
//!
//! Both types support serialization to/from the standard Webcash string format.

use std::fmt;
use std::str::FromStr;

use serde::{Deserialize, Serialize};
use sha2::{Digest, Sha256};

use crate::amount::Amount;
use crate::error::{Error, Result};

/// UTF-8 byte length of the ₩ symbol
const WEBCASH_SYMBOL_BYTES: usize = 3;

/// Secure string type for sensitive data with zeroize-on-drop
#[derive(Clone, PartialEq, Eq, Serialize, Deserialize)]
pub struct SecureString(Vec<u8>);

impl SecureString {
    /// Create a new SecureString from a string
    pub fn new<S: Into<String>>(s: S) -> Self {
        let string = s.into();
        let bytes = string.into_bytes();
        SecureString(bytes)
    }

    /// Create a new SecureString from bytes
    pub fn from_bytes(bytes: Vec<u8>) -> Self {
        SecureString(bytes)
    }

    /// Get the string value (use with caution - data remains in memory)
    pub fn as_str(&self) -> std::result::Result<&str, std::str::Utf8Error> {
        std::str::from_utf8(&self.0)
    }

    /// Get the raw bytes (use with caution)
    pub fn as_bytes(&self) -> &[u8] {
        &self.0
    }

    /// Get the length
    pub fn len(&self) -> usize {
        self.0.len()
    }

    /// Check if empty
    pub fn is_empty(&self) -> bool {
        self.0.is_empty()
    }

    /// Convert to hex string
    pub fn to_hex(&self) -> String {
        hex::encode(&self.0)
    }
}

impl fmt::Debug for SecureString {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "SecureString([redacted, {} bytes])", self.0.len())
    }
}

impl fmt::Display for SecureString {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "[redacted]")
    }
}

impl Drop for SecureString {
    fn drop(&mut self) {
        // Secure zeroization of sensitive data
        self.0.iter_mut().for_each(|byte| *byte = 0);
    }
}

/// Secret Webcash containing the actual secret value
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub struct SecretWebcash {
    /// The secret value (32 bytes hex)
    pub secret: SecureString,
    /// The amount
    pub amount: Amount,
}

impl SecretWebcash {
    /// Create a new SecretWebcash
    pub fn new(secret: SecureString, amount: Amount) -> Self {
        SecretWebcash { secret, amount }
    }

    /// Parse from Webcash string format
    pub fn parse(s: &str) -> Result<Self> {
        let s = s.trim();
        if !s.starts_with('e') {
            return Err(Error::parse("SecretWebcash must start with 'e'"));
        }

        let parts: Vec<&str> = s[1..].split(':').collect();
        if parts.len() < 3 {
            return Err(Error::parse("Invalid SecretWebcash format"));
        }

        if parts[1] != "secret" {
            return Err(Error::parse("Expected 'secret' type"));
        }

        let amount_str = parts[0];
        let amount = Amount::from_str(amount_str)?;

        let secret = parts[2..].join(":");

        // Validate secret is valid hex and 32 bytes
        if secret.len() != 64 {
            return Err(Error::parse("Secret must be 64 hex characters (32 bytes)"));
        }

        hex::decode(&secret).map_err(|_| Error::parse("Secret must be valid hex"))?;

        Ok(SecretWebcash {
            secret: SecureString::new(secret),
            amount,
        })
    }

    /// Convert to PublicWebcash
    /// CRITICAL: Hash must match Python implementation exactly
    /// Python: hashlib.sha256(bytes(str(secret_value), "ascii")).hexdigest()
    /// This means we hash the secret STRING as ASCII bytes, NOT the hex-decoded bytes
    pub fn to_public(&self) -> PublicWebcash {
        let secret_str = self.secret.as_str().unwrap_or("");
        // Hash the ASCII string representation of the secret (matches Python implementation)
        // Python does: hashlib.sha256(bytes(str(secret_value), "ascii")).hexdigest()
        let hash = Sha256::digest(secret_str.as_bytes());
        PublicWebcash {
            hash: hash.into(),
            amount: self.amount,
        }
    }

    /// Serialize to Webcash string format
    /// Webcash strings use DECIMAL format for amounts (e.g., e0.0001:secret:...)
    /// The amount prefix is the decimal representation, not wats
    pub fn to_webcash_string(&self) -> String {
        let secret_str = self.secret.as_str().unwrap_or("");
        // Use decimal format (Display trait formats as decimal)
        format!("e{}:secret:{}", self.amount, secret_str)
    }
}

impl fmt::Display for SecretWebcash {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "{}", self.to_webcash_string())
    }
}

impl FromStr for SecretWebcash {
    type Err = Error;

    fn from_str(s: &str) -> Result<Self> {
        Self::parse(s)
    }
}

/// Public Webcash containing the hash of the secret
#[derive(Debug, Clone, PartialEq, Eq, Hash, Serialize, Deserialize)]
pub struct PublicWebcash {
    /// SHA256 hash of the secret (32 bytes)
    pub hash: [u8; 32],
    /// The amount
    pub amount: Amount,
}

impl PublicWebcash {
    /// Create a new PublicWebcash
    pub fn new(hash: [u8; 32], amount: Amount) -> Self {
        PublicWebcash { hash, amount }
    }

    /// Parse from Webcash string format
    pub fn parse(s: &str) -> Result<Self> {
        let s = s.trim();

        // Handle different prefixes
        let s = if let Some(stripped) = s.strip_prefix('e') {
            stripped
        } else if s.starts_with('') {
            &s[WEBCASH_SYMBOL_BYTES..]
        } else {
            s
        };

        let parts: Vec<&str> = s.split(':').collect();
        if parts.len() != 3 {
            return Err(Error::parse("Invalid PublicWebcash format"));
        }

        if parts[1] != "public" {
            return Err(Error::parse("Expected 'public' type"));
        }

        let amount_str = parts[0];
        let amount = Amount::from_str(amount_str)?;

        let hash_str = parts[2];
        if hash_str.len() != 64 {
            return Err(Error::parse("Hash must be 64 hex characters (32 bytes)"));
        }

        let hash_bytes =
            hex::decode(hash_str).map_err(|_| Error::parse("Hash must be valid hex"))?;

        let mut hash = [0u8; 32];
        hash.copy_from_slice(&hash_bytes);

        Ok(PublicWebcash { hash, amount })
    }

    /// Get the hash as a hex string
    pub fn hash_hex(&self) -> String {
        hex::encode(self.hash)
    }

    /// Serialize to Webcash string format
    /// Webcash strings use DECIMAL format for amounts (e.g., e0.0001:public:...)
    /// The amount prefix is the decimal representation, not wats
    pub fn to_webcash_string(&self) -> String {
        // Use decimal format (Display trait formats as decimal)
        format!("e{}:public:{}", self.amount, self.hash_hex())
    }
}

impl fmt::Display for PublicWebcash {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "{}", self.to_webcash_string())
    }
}

impl FromStr for PublicWebcash {
    type Err = Error;

    fn from_str(s: &str) -> Result<Self> {
        Self::parse(s)
    }
}

impl From<&SecretWebcash> for PublicWebcash {
    fn from(secret: &SecretWebcash) -> Self {
        secret.to_public()
    }
}