pyrus_crypto/cert/

mod.rs

use blake3::Hasher;
use rand_core::OsRng;

use ed25519_dalek::{SecretKey, SigningKey, VerifyingKey};
use x25519_dalek::{PublicKey, StaticSecret};

use postcard;
use serde::{Deserialize, Serialize};

use zeroize::{ZeroizeOnDrop, Zeroize};

use crate::Fingerprint;

mod ser;

/// The certificate struct. It is either public or secret.
///
/// Public certificate means that it does not contain secret keys. Whereas 
/// a secret certificate is fully featured - it contains secret keys and 
/// public keys.
///
/// Each certificate has a user id ([`Cert::user_id`]) and a 
/// (hopefully) unique fingerprint ([`Cert::fingerprint`]).
///
/// # Serialization
///
/// Certificates implement [`serde::Serialize`] and [`serde::Deserialize`] 
/// traits, which allow for serialization and deserialization using any 
/// serde format. Additionally for human readable formats certificates 
/// serialize bytes as hex encoded strings to please the users' eyes.
///
/// # A note on equality
///
/// Two certificates are equal if they have the same secrecy and serialized 
/// public forms are equal. Usually comparing fingerprints should be enough, 
/// but the blake3 hashing algorithm used for fingerprints may not be fully 
/// collision proof. Thus adding the public keys into the mix ensures 
/// equality.
#[derive(Serialize, Deserialize, ZeroizeOnDrop, Clone)]
pub struct Cert {
    #[serde(with = "ser::fpr")]
    fpr: Fingerprint,
    uid: String,
    #[serde(with = "ser::enc_pub")]
    encryption_public: PublicKey,
    #[zeroize(skip)]
    #[serde(with = "ser::sign_pub")]
    signing_public: VerifyingKey,
    #[serde(with = "ser::enc_sec")]
    encryption_secret: Option<StaticSecret>,
    #[serde(with = "ser::sign_sec")]
    signing_secret: Option<SecretKey>,
}

impl Cert {
    fn derive_fpr(uid: &str, enc_pub: &PublicKey, sig_pub: &VerifyingKey) -> Fingerprint {
        let timestamp = crate::timestamp_bytes();
        let mut hasher = Hasher::new();
        hasher.update(uid.as_bytes());
        hasher.update(enc_pub.as_bytes());
        hasher.update(sig_pub.as_bytes());
        hasher.update(&timestamp);
        hasher.finalize()
    }

    /// Generates a new certificate with the given `uid`.
    pub fn new(uid: &str) -> Self {
        let signing_pair = SigningKey::generate(&mut OsRng);
        let signing_public = signing_pair.verifying_key();
        let encryption_secret = StaticSecret::random_from_rng(&mut OsRng);
        let encryption_public = PublicKey::from(&encryption_secret);
        let fpr = Self::derive_fpr(uid, &encryption_public, &signing_public);
        Self {
            fpr,
            uid: uid.to_string(),
            encryption_public,
            signing_public,
            encryption_secret: Some(encryption_secret),
            signing_secret: Some(signing_pair.to_bytes()),
        }
    }

    /// Returns the certificate's fingerprint.
    pub fn fingerprint(&self) -> &Fingerprint {
        &self.fpr
    }

    /// Returns the user id of the certificate.
    pub fn user_id(&self) -> &str {
        &self.uid
    }

    /// Returns the encryption public key of this certificate.
    pub fn encryption_public(&self) -> &PublicKey {
        &self.encryption_public
    }

    /// Returns the signing public key of this certificate.
    pub fn signing_public(&self) -> &VerifyingKey {
        &self.signing_public
    }

    /// Returns the encryption secret key of this certificate if `Some`.
    pub fn encryption_secret(&self) -> Option<&StaticSecret> {
        self.encryption_secret.as_ref()
    }

    /// Returns the signing secret key of this certificate if `Some`.
    pub fn signing_secret(&self) -> Option<&SecretKey> {
        self.signing_secret.as_ref()
    }

    /// Checks whether the certificate is a secret certificate.
    pub fn is_secret(&self) -> bool {
        self.encryption_secret.is_some() && self.signing_secret.is_some()
    }

    /// Consumes `self` and returns a public version of the certificate.
    /// When used on a public certificate, does nothing.
    pub fn strip_secrets(mut self) -> Self {
        self.encryption_secret = None;
        self.signing_secret = None;
        self
    }
}

impl PartialEq for Cert {
    fn eq(&self, other: &Self) -> bool {
        let mut lhs = postcard::to_stdvec(self).unwrap();
        let mut rhs = postcard::to_stdvec(other).unwrap();
        let cmp = lhs == rhs;
        lhs.zeroize();
        rhs.zeroize();
        cmp
    }
}

impl std::fmt::Debug for Cert {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        let status = if self.is_secret() { "secret" } else { "public" };
        write!(f, "({}) {}: <{}>", status, self.fpr.to_hex(), &self.uid)
    }
}

impl std::fmt::Display for Cert {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(f, "{}: <{}>", self.fpr.to_hex(), &self.uid)
    }
}

#[cfg(test)]
mod tests;