checkpoint

2023-01-29 13:13:54 -05:00
parent 766872ac26
commit 9d826b27db
3 changed files with 480 additions and 0 deletions
--- a/veilid-core/src/crypto/crypto_system.rs
+++ b/veilid-core/src/crypto/crypto_system.rs
@@ -0,0 +1,113 @@
+use super::*;
+
+pub trait CryptoSystem {
+    // Accessors
+    fn version(&self) -> CryptoVersion;
+    fn crypto(&self) -> Crypto;
+
+    // Cached Operations
+    fn cached_dh(
+        &self,
+        key: &DHTKey,
+        secret: &DHTKeySecret,
+    ) -> Result<SharedSecret, VeilidAPIError>;
+
+    // Generation
+    fn random_nonce(&self) -> Nonce;
+    fn random_shared_secret(&self) -> SharedSecret;
+    fn compute_dh(
+        &self,
+        key: &DHTKey,
+        secret: &DHTKeySecret,
+    ) -> Result<SharedSecret, VeilidAPIError>;
+    fn generate_keypair(&self) -> (DHTKey, DHTKeySecret);
+    fn generate_hash(&self, data: &[u8]) -> DHTKey;
+    fn generate_hash_reader(
+        &self,
+        reader: &mut dyn std::io::Read,
+    ) -> Result<DHTKey, VeilidAPIError>;
+
+    // Validation
+    fn validate_keypair(&self, dht_key: &DHTKey, dht_key_secret: &DHTKeySecret) -> bool;
+    fn validate_hash(&self, data: &[u8], dht_key: &DHTKey) -> bool;
+    fn validate_hash_reader(
+        &self,
+        reader: &mut dyn std::io::Read,
+        dht_key: &DHTKey,
+    ) -> Result<bool, VeilidAPIError>;
+
+    // Distance Metric
+    fn distance(&self, key1: &DHTKey, key2: &DHTKey) -> DHTKeyDistance;
+
+    // Authentication
+    fn sign(
+        &self,
+        dht_key: &DHTKey,
+        dht_key_secret: &DHTKeySecret,
+        data: &[u8],
+    ) -> Result<DHTSignature, VeilidAPIError>;
+    fn verify(
+        &self,
+        dht_key: &DHTKey,
+        data: &[u8],
+        signature: &DHTSignature,
+    ) -> Result<(), VeilidAPIError>;
+
+    // AEAD Encrypt/Decrypt
+    fn aead_overhead(&self) -> usize;
+    fn decrypt_in_place_aead(
+        &self,
+        body: &mut Vec<u8>,
+        nonce: &Nonce,
+        shared_secret: &SharedSecret,
+        associated_data: Option<&[u8]>,
+    ) -> Result<(), VeilidAPIError>;
+    fn decrypt_aead(
+        &self,
+        body: &[u8],
+        nonce: &Nonce,
+        shared_secret: &SharedSecret,
+        associated_data: Option<&[u8]>,
+    ) -> Result<Vec<u8>, VeilidAPIError>;
+    fn encrypt_in_place_aead(
+        &self,
+        body: &mut Vec<u8>,
+        nonce: &Nonce,
+        shared_secret: &SharedSecret,
+        associated_data: Option<&[u8]>,
+    ) -> Result<(), VeilidAPIError>;
+    fn encrypt_aead(
+        &self,
+        body: &[u8],
+        nonce: &Nonce,
+        shared_secret: &SharedSecret,
+        associated_data: Option<&[u8]>,
+    ) -> Result<Vec<u8>, VeilidAPIError>;
+
+    // NoAuth Encrypt/Decrypt
+    fn crypt_in_place_no_auth(
+        &self,
+        body: &mut Vec<u8>,
+        nonce: &Nonce,
+        shared_secret: &SharedSecret,
+    );
+    fn crypt_b2b_no_auth(
+        &self,
+        in_buf: &[u8],
+        out_buf: &mut [u8],
+        nonce: &Nonce,
+        shared_secret: &SharedSecret,
+    );
+    fn crypt_no_auth_aligned_8(
+        &self,
+        body: &[u8],
+        nonce: &Nonce,
+        shared_secret: &SharedSecret,
+    ) -> Vec<u8>;
+    fn crypt_no_auth_unaligned(
+        &self,
+        body: &[u8],
+        nonce: &Nonce,
+        shared_secret: &SharedSecret,
+    ) -> Vec<u8>;
+}