Cryptographic-API-Services · WingZer0o · Jul 13, 2025 · Jul 13, 2025 · Jul 13, 2025
diff --git a/Cargo.toml b/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "cas-lib"
-version = "0.2.52"
+version = "0.2.53"
 edition = "2021"
 description = "Core lib for CAS"
 license = "Apache-2.0"

diff --git a/src/asymmetric/cas_rsa.rs b/src/asymmetric/cas_rsa.rs
@@ -1,81 +1,98 @@
-use std::sync::mpsc;
-
-use rand::rngs::OsRng;
-use rsa::{
-    pkcs1::{DecodeRsaPublicKey, EncodeRsaPublicKey},
-    pkcs8::{DecodePrivateKey, EncodePrivateKey},
-    RsaPublicKey,
-};
-use rsa::{Pkcs1v15Sign, RsaPrivateKey};
-
-use super::types::{CASRSAEncryption, RSAKeyPairResult};
-
-pub struct CASRSA;
-
-impl CASRSAEncryption for CASRSA {
-    fn generate_rsa_keys(key_size: usize) -> RSAKeyPairResult {
-        let mut rng: OsRng = OsRng;
-        let private_key: RsaPrivateKey =
-            RsaPrivateKey::new(&mut rng, key_size).expect("failed to generate a key");
-        let public_key: RsaPublicKey = private_key.to_public_key();
-        let result = RSAKeyPairResult {
-            public_key: public_key
-                .to_pkcs1_pem(rsa::pkcs1::LineEnding::LF)
-                .unwrap()
-                .to_string(),
-            private_key: private_key
-                .to_pkcs8_pem(rsa::pkcs8::LineEnding::LF)
-                .unwrap()
-                .to_string(),
-        };
-        result
-    }
-
-    fn generate_rsa_keys_threadpool(key_size: usize) -> RSAKeyPairResult {
-        let (sender, receiver) = mpsc::channel();
-        rayon::spawn(move || {
-            let thread_result = Self::generate_rsa_keys(key_size);
-            sender.send(thread_result).unwrap();
-        });
-        let thread_result: RSAKeyPairResult = receiver.recv().unwrap();
-        thread_result
-    }
-
-    fn sign(private_key: String, hash: Vec<u8>) -> Vec<u8> {
-        let private_key = RsaPrivateKey::from_pkcs8_pem(&private_key).unwrap();
-        let signed_data = private_key
-            .sign(Pkcs1v15Sign::new_unprefixed(), &hash)
-            .unwrap();
-        signed_data
-    }
-
-    fn sign_threadpool(private_key: String, hash: Vec<u8>) -> Vec<u8> {
-        let (sender, receiver) = mpsc::channel();
-        rayon::spawn(move || {
-            let signed_data = Self::sign(private_key, hash);
-            sender.send(signed_data).unwrap();
-        });
-        let signed_data = receiver.recv().unwrap();
-        signed_data
-    }
-
-    fn verify(public_key: String, hash: Vec<u8>, signature: Vec<u8>) -> bool {
-        let public_key = RsaPublicKey::from_pkcs1_pem(&public_key).unwrap();
-        let verified = public_key.verify(Pkcs1v15Sign::new_unprefixed(), &hash, &signature);
-        if verified.is_err() == false {
-            return true;
-        } else {
-            return false;
-        }
-    }
-
-    fn verify_threadpool(public_key: String, hash: Vec<u8>, signed_text: Vec<u8>) -> bool {
-        let (sender, receiver) = mpsc::channel();
-        rayon::spawn(move || {
-            let verified = Self::verify(public_key, hash, signed_text);
-            sender.send(verified).unwrap();
-        });
-        let verified = receiver.recv().unwrap();
-        verified
-    }
+use std::sync::mpsc;
+
+use rand::rngs::OsRng;
+use rsa::{
+    pkcs1::{DecodeRsaPublicKey, EncodeRsaPublicKey},
+    pkcs8::{DecodePrivateKey, EncodePrivateKey},
+    RsaPublicKey,
+};
+use rsa::{Pkcs1v15Sign, RsaPrivateKey};
+
+use super::types::{CASRSAEncryption, RSAKeyPairResult};
+
+pub struct CASRSA;
+
+impl CASRSAEncryption for CASRSA {
+    // Generates an RSA key pair of the specified size.
+    // The key size must be at of a supported kind like 1024, 2048, 4096 bits.
+    fn generate_rsa_keys(key_size: usize) -> RSAKeyPairResult {
+        // TODO: do a check for key_size, if it is too small, return an error
+        let mut rng: OsRng = OsRng;
+        let private_key: RsaPrivateKey =
+            RsaPrivateKey::new(&mut rng, key_size).expect("failed to generate a key");
+        let public_key: RsaPublicKey = private_key.to_public_key();
+        let result = RSAKeyPairResult {
+            public_key: public_key
+                .to_pkcs1_pem(rsa::pkcs1::LineEnding::LF)
+                .unwrap()
+                .to_string(),
+            private_key: private_key
+                .to_pkcs8_pem(rsa::pkcs8::LineEnding::LF)
+                .unwrap()
+                .to_string(),
+        };
+        result
+    }
+
+    // Generates an RSA key pair of the specified size on the threadpool.
+    // The key size must be at of a supported kind like 1024, 2048, 4096 bits.
+    fn generate_rsa_keys_threadpool(key_size: usize) -> RSAKeyPairResult {
+        let (sender, receiver) = mpsc::channel();
+        rayon::spawn(move || {
+            let thread_result = Self::generate_rsa_keys(key_size);
+            sender.send(thread_result).unwrap();
+        });
+        let thread_result: RSAKeyPairResult = receiver.recv().unwrap();
+        thread_result
+    }
+
+    // Sign the given hash with the provided private key of the RSA key pair.
+    // The parameter `hash` doesn't necessarily have to be a hash, it can be any data that you want to sign.
+    fn sign(private_key: String, hash: Vec<u8>) -> Vec<u8> {
+        let private_key = RsaPrivateKey::from_pkcs8_pem(&private_key).unwrap();
+        let signed_data = private_key
+            .sign(Pkcs1v15Sign::new_unprefixed(), &hash)
+            .unwrap();
+        signed_data
+    }
+
+    // Sign the given hash with the provided private key of the RSA key pair on the threadpool.
+    // The parameter `hash` doesn't necessarily have to be a hash, it can be any data that you want to sign.
+    // Returns the signed data as a byte vector.
+    // This is useful for signing data in a non-blocking way.
+    fn sign_threadpool(private_key: String, hash: Vec<u8>) -> Vec<u8> {
+        let (sender, receiver) = mpsc::channel();
+        rayon::spawn(move || {
+            let signed_data = Self::sign(private_key, hash);
+            sender.send(signed_data).unwrap();
+        });
+        let signed_data = receiver.recv().unwrap();
+        signed_data
+    }
+
+    // Verify the signature of the given hash with the provided public key of the RSA key pair.
+    // The parameter `hash` doesn't necessarily have to be a hash, it can be any data that you want to verify.
+    // Returns true if the signature is valid, false otherwise.
+    fn verify(public_key: String, hash: Vec<u8>, signature: Vec<u8>) -> bool {
+        let public_key = RsaPublicKey::from_pkcs1_pem(&public_key).unwrap();
+        let verified = public_key.verify(Pkcs1v15Sign::new_unprefixed(), &hash, &signature);
+        if verified.is_err() == false {
+            return true;
+        } else {
+            return false;
+        }
+    }
+
+    // Verify the signature of the given hash with the provided public key of the RSA key pair on the threadpool.
+    // The parameter `hash` doesn't necessarily have to be a hash, it can be any data that you want to verify.
+    // Returns true if the signature is valid, false otherwise.
+    fn verify_threadpool(public_key: String, hash: Vec<u8>, signed_text: Vec<u8>) -> bool {
+        let (sender, receiver) = mpsc::channel();
+        rayon::spawn(move || {
+            let verified = Self::verify(public_key, hash, signed_text);
+            sender.send(verified).unwrap();
+        });
+        let verified = receiver.recv().unwrap();
+        verified
+    }
 }