Skip to main content

SecureStorageLocation

Struct SecureStorageLocation

pub struct SecureStorageLocation {
    pub namespace: String,
    pub key: String,
    pub sub_key: Option<String>,
}

Expand description

Location within secure storage

Fields§

§namespace: String

Namespace for organizing secure data

§key: String

Unique key within the namespace

§sub_key: Option<String>

Optional sub-key for hierarchical organization

Implementations§

impl SecureStorageLocation

pub fn new( namespace: impl Into<String>, key: impl Into<String>, ) -> SecureStorageLocation

Create a new secure storage location

pub fn with_sub_key( namespace: impl Into<String>, key: impl Into<String>, sub_key: impl Into<String>, ) -> SecureStorageLocation

Create with a sub-key for hierarchical organization

pub fn full_path(&self) -> String

Get the full key path as a string

pub fn guardian_share( account_authority: &AuthorityId, guardian_authority: &AuthorityId, ) -> SecureStorageLocation

Create a location for storing a guardian’s FROST share.

Guardian shares are stored by:

namespace: “guardian_shares”
key: account authority being protected
sub_key: guardian authority holding the share

§Security Note

Guardian shares MUST be encrypted with the guardian’s public key before storage. The share data stored here is the encrypted share bytes, not the raw FROST SigningShare.

pub fn authority_keys( authority: &AuthorityId, epoch: u64, ) -> SecureStorageLocation

Create a location for storing authority FROST keys.

Authority keys are stored by:

namespace: “authority_keys”
key: authority ID
sub_key: epoch number

§Security Note

This stores the SigningShare and PublicKeyPackage for the authority. The SigningShare is the secret key material that must never leave secure storage unencrypted.

impl SecureStorageLocation

Helper functions for common secure storage operations

pub fn frost_nonce( session_id: &str, participant_id: u16, ) -> SecureStorageLocation

Create a location for storing FROST nonces

pub fn signing_share( account_id: &str, epoch: u64, participant_id: u16, ) -> SecureStorageLocation

Create a location for storing signing shares

pub fn device_attestation(device_id: &str) -> SecureStorageLocation

Create a location for device attestation certificates

pub fn biscuit_authority(authority_id: &AuthorityId) -> SecureStorageLocation

Create a location for storing Biscuit token authority data.

Stores the serialized Biscuit token and root public key for an authority:

namespace: “biscuit”
key: authority ID
sub_key: “token_authority”

pub fn amp_bootstrap_key( context: &ContextId, channel: &ChannelId, bootstrap_id: &Hash32, ) -> SecureStorageLocation

Create a location for AMP channel bootstrap keys.

Trait Implementations§

impl Clone for SecureStorageLocation

fn clone(&self) -> SecureStorageLocation

Returns a duplicate of the value. Read more

1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

impl Debug for SecureStorageLocation

fn fmt(&self, f: &mut Formatter<'_>) -> Result<(), Error>

Formats the value using the given formatter. Read more

impl<'de> Deserialize<'de> for SecureStorageLocation

fn deserialize<D>( deserializer: D, ) -> Result<SecureStorageLocation, <D as Deserializer<'de>>::Error>
where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more

impl Hash for SecureStorageLocation

fn hash<H>(&self, state: &mut H)
where __H: Hasher,

Feeds this value into the given Hasher. Read more

1.3.0 · Source§

fn hash_slice<H>(data: &[Self], state: &mut H)
where H: Hasher, Self: Sized,

Feeds a slice of this type into the given Hasher. Read more

impl PartialEq for SecureStorageLocation

fn eq(&self, other: &SecureStorageLocation) -> bool

Tests for self and other values to be equal, and is used by ==.

1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl Serialize for SecureStorageLocation

fn serialize<S>( &self, serializer: S, ) -> Result<<S as Serializer>::Ok, <S as Serializer>::Error>
where S: Serializer,

Serialize this value into the given Serde serializer. Read more

impl Eq for SecureStorageLocation

impl StructuralPartialEq for SecureStorageLocation

Auto Trait Implementations§

impl Freeze for SecureStorageLocation

impl RefUnwindSafe for SecureStorageLocation

impl Send for SecureStorageLocation

impl Sync for SecureStorageLocation

impl Unpin for SecureStorageLocation

impl UnsafeUnpin for SecureStorageLocation

impl UnwindSafe for SecureStorageLocation

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> CloneToUninit for T
where T: Clone,

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)

Performs copy-assignment from self to dest. Read more

impl<Q, K> Equivalent<K> for Q
where Q: Eq + ?Sized, K: Borrow<Q> + ?Sized,

fn equivalent(&self, key: &K) -> bool

Checks if this value is equivalent to the given key. Read more

impl<Q, K> Equivalent<K> for Q
where Q: Eq + ?Sized, K: Borrow<Q> + ?Sized,

fn equivalent(&self, key: &K) -> bool

Compare self to key and return true if they are equal.

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T> Instrument for T

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> Same for T

type Output = T

Should always be Self

impl<T> ToOwned for T
where T: Clone,

type Owned = T

The resulting type after obtaining ownership.

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<S, T> Upcast<T> for S
where T: UpcastFrom<S> + ?Sized, S: ?Sized,

fn upcast(&self) -> &T
where Self: ErasableGeneric, T: ErasableGeneric<Repr = Self::Repr>,

Perform a zero-cost type-safe upcast to a wider ref type within the Wasm bindgen generics type system. Read more

fn upcast_into(self) -> T
where Self: Sized + ErasableGeneric, T: ErasableGeneric<Repr = Self::Repr>,

Perform a zero-cost type-safe upcast to a wider type within the Wasm bindgen generics type system. Read more

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

fn vzip(self) -> V

impl<T> WithSubscriber for T

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,