distribute - v2.1.0

distribute/crypto/provider_stub

Values

close

</> 
pub fn close(state: provider.ProviderState) -> Nil

Close the provider and clean up resources (no-op stub).

In a real provider, this would securely erase keys and release any resources. The stub does nothing.

decrypt

</> 
pub fn decrypt(
  context: provider.SecureContext,
  cipher: BitArray,
) -> Result(BitArray, String)

Decrypt ciphertext (identity stub - returns unchanged).

⚠️ WARNING: This does NOT decrypt anything!

In a real provider, this would use AEAD to decrypt and verify the ciphertext. The stub returns the ciphertext unchanged.

Parameters

  • _context: The secure context (ignored)
  • cipher: The “ciphertext” to decrypt

Returns

Ok(cipher) - the unchanged ciphertext

encrypt

</> 
pub fn encrypt(
  context: provider.SecureContext,
  plain: BitArray,
) -> Result(BitArray, String)

Encrypt plaintext (identity stub - returns unchanged).

⚠️ WARNING: This does NOT encrypt anything!

In a real provider, this would use AEAD (e.g., ChaCha20-Poly1305) to encrypt and authenticate the plaintext. The stub returns the plaintext unchanged.

Parameters

  • _context: The secure context (ignored)
  • plain: The plaintext to “encrypt”

Returns

Ok(plain) - the unchanged plaintext

handle_key_exchange

</> 
pub fn handle_key_exchange(
  state: provider.ProviderState,
  incoming: BitArray,
) -> #(
  option.Option(BitArray),
  provider.ProviderState,
  option.Option(provider.SecureContext),
)

Handle incoming key exchange message (no-op stub).

In a real provider, this would process the remote’s key exchange message and potentially produce a response and/or derive a shared secret. The stub immediately produces a dummy SecureContext.

Parameters

  • state: The current provider state
  • _incoming: The incoming key exchange message (ignored)

Returns

A tuple of #(optional_response, new_state, optional_context):

  • Response is None (no further messages needed)
  • Context is Some(SecureContext) (exchange “complete” immediately)

init

</> 
pub fn init() -> provider.ProviderState

Initialize the stub provider state.

Returns a default ProviderState that can be used for testing. No actual initialization is performed.

rekey

</> 
pub fn rekey(
  context: provider.SecureContext,
) -> Result(provider.SecureContext, String)

Rekey the secure context (no-op stub).

In a real provider, this would derive new encryption keys from the existing context to provide forward secrecy. The stub returns the context unchanged.

Parameters

  • context: The current secure context

Returns

Ok(context) - the unchanged context

start_key_exchange

</> 
pub fn start_key_exchange(
  state: provider.ProviderState,
  local_params: BitArray,
) -> #(BitArray, provider.ProviderState)

Start a key exchange (no-op stub).

In a real provider, this would generate ephemeral keys and produce the first key exchange message. The stub simply echoes the local parameters back as the “outgoing message”.

Parameters

  • state: The current provider state
  • local_params: Parameters from the local node (echoed back)

Returns

A tuple of #(outgoing_message, new_state) where the outgoing message is just the echoed local_params.

Search Document