datex_core/crypto/

crypto.rs

use std::fmt::Display;

use crate::stdlib::{future::Future, pin::Pin};
pub trait CryptoTrait: Send + Sync {
    /// Creates a new UUID.
    fn create_uuid(&self) -> String;

    /// Generates cryptographically secure random bytes of the specified length.
    fn random_bytes(&self, length: usize) -> Vec<u8>;

    /// Generates an Ed25519 key pair.
    fn gen_ed25519(
        &self,
    ) -> Pin<
        Box<
            dyn Future<Output = Result<(Vec<u8>, Vec<u8>), CryptoError>>
                + 'static,
        >,
    >;

    /// Signs data with the given Ed25519 private key.
    fn sig_ed25519<'a>(
        &'a self,
        pri_key: &'a [u8],
        data: &'a [u8],
    ) -> Pin<Box<dyn Future<Output = Result<[u8; 64], CryptoError>> + 'a>>;

    /// Verifies an Ed25519 signature with the given public key and data.
    fn ver_ed25519<'a>(
        &'a self,
        pub_key: &'a [u8],
        sig: &'a [u8],
        data: &'a [u8],
    ) -> Pin<Box<dyn Future<Output = Result<bool, CryptoError>> + 'a>>;

    /// AES-256 in CTR mode encryption, returns the ciphertext.
    fn aes_ctr_encrypt<'a>(
        &'a self,
        key: &'a [u8; 32],
        iv: &'a [u8; 16],
        plaintext: &'a [u8],
    ) -> Pin<Box<dyn Future<Output = Result<Vec<u8>, CryptoError>> + 'a>>;

    /// AES-256 in CTR mode decryption, returns the plaintext.
    fn aes_ctr_decrypt<'a>(
        &'a self,
        key: &'a [u8; 32],
        iv: &'a [u8; 16],
        cipher: &'a [u8],
    ) -> Pin<Box<dyn Future<Output = Result<Vec<u8>, CryptoError>> + 'a>>;

    /// AES Key Wrap (RFC 3394), returns the wrapped key (ciphertext).
    fn key_upwrap<'a>(
        &'a self,
        kek_bytes: &'a [u8; 32],
        rb: &'a [u8; 32],
    ) -> Pin<Box<dyn Future<Output = Result<[u8; 40], CryptoError>> + 'a>>;

    /// AES Key Unwrap (RFC 3394), returns the unwrapped key (plaintext).
    fn key_unwrap<'a>(
        &'a self,
        kek_bytes: &'a [u8; 32],
        cipher: &'a [u8; 40],
    ) -> Pin<Box<dyn Future<Output = Result<[u8; 32], CryptoError>> + 'a>>;

    /// Generates an X25519 key pair, returns (public_key, private_key).
    fn gen_x25519(
        &self,
    ) -> Pin<Box<dyn Future<Output = Result<([u8; 44], [u8; 48]), CryptoError>>>>;

    /// Derives a shared secret using X25519 given my private key and the peer's public key.
    fn derive_x25519<'a>(
        &'a self,
        pri_key: &'a [u8; 48],
        peer_pub: &'a [u8; 44],
    ) -> Pin<Box<dyn Future<Output = Result<Vec<u8>, CryptoError>> + 'a>>;
}

pub struct Crypto;

#[derive(Debug, Clone)]
pub enum CryptoError {
    Other(String),
    KeyGeneratorFailed,
    KeyExportFailed,
    KeyImportFailed,
    EncryptionError,
    DecryptionError,
    SigningError,
    VerificationError,
}

impl Display for CryptoError {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        match self {
            CryptoError::Other(msg) => write!(f, "CryptoError: {}", msg),
            CryptoError::KeyGeneratorFailed => {
                write!(f, "CryptoError: Key generation failed")
            }
            CryptoError::KeyExportFailed => {
                write!(f, "CryptoError: Key export failed")
            }
            CryptoError::KeyImportFailed => {
                write!(f, "CryptoError: Key import failed")
            }
            CryptoError::EncryptionError => {
                write!(f, "CryptoError: Encryption failed")
            }
            CryptoError::DecryptionError => {
                write!(f, "CryptoError: Decryption failed")
            }
            CryptoError::SigningError => {
                write!(f, "CryptoError: Signing failed")
            }
            CryptoError::VerificationError => {
                write!(f, "CryptoError: Verification failed")
            }
        }
    }
}