feat: implement enhanced KeyStore with Key trait integration

atlas-form · claude · atlas-form · commit 364ff2f2a543 · 2025-09-14T16:22:24.000+08:00
* Add comprehensive EnhancedKeyStore implementation with PKI-specific metadata * Extend Key trait with as_any() method for safe type downcasting * Support all key types: Ed25519, P256, RSA with PKCS#8 serialization * Implement hybrid metadata persistence (cache + attribute storage) * Add PKI-specific features: usage restrictions, validity periods, certificate associations * Include comprehensive test coverage for all supported key algorithms * Bridge gap between raw key storage and high-level PKI operations 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
diff --git a/crates/capsula-key/src/key/curve25519.rs b/crates/capsula-key/src/key/curve25519.rs
@@ -201,6 +201,10 @@ impl Key for Curve25519 {
     fn capabilities(&self) -> KeyCapabilities {
         KeyCapabilities::SIGNING.union(KeyCapabilities::KEY_AGREEMENT)
     }
+
+    fn as_any(&self) -> &dyn std::any::Any {
+        self
+    }
 }
 
 impl KeySign for Curve25519 {
diff --git a/crates/capsula-key/src/key/mod.rs b/crates/capsula-key/src/key/mod.rs
@@ -53,6 +53,9 @@ pub trait Key: Send + Sync {
     fn fingerprint_hex(&self) -> String {
         hex::encode(self.fingerprint_sha256_spki())
     }
+
+    /// 获取Any trait object引用，用于安全的向下转换
+    fn as_any(&self) -> &dyn std::any::Any;
 }
 
 // ============================================================================
diff --git a/crates/capsula-key/src/key/p256.rs b/crates/capsula-key/src/key/p256.rs
@@ -119,6 +119,10 @@ impl Key for P256Key {
     fn capabilities(&self) -> KeyCapabilities {
         KeyCapabilities::SIGNING.union(KeyCapabilities::KEY_AGREEMENT)
     }
+
+    fn as_any(&self) -> &dyn std::any::Any {
+        self
+    }
 }
 
 // ============================================================================
diff --git a/crates/capsula-key/src/key/rsa.rs b/crates/capsula-key/src/key/rsa.rs
@@ -116,6 +116,10 @@ impl Key for RsaKey {
     fn capabilities(&self) -> KeyCapabilities {
         KeyCapabilities::SIGNING.union(KeyCapabilities::ENCRYPTION)
     }
+
+    fn as_any(&self) -> &dyn std::any::Any {
+        self
+    }
 }
 
 // ============================================================================
diff --git a/crates/capsula-key/src/store/enhanced.rs b/crates/capsula-key/src/store/enhanced.rs
diff --git a/crates/capsula-key/src/store/mod.rs b/crates/capsula-key/src/store/mod.rs

Original file line number	Diff line number	Diff line change
`@@ -201,6 +201,10 @@ impl Key for Curve25519 {`
`201`	`201`	`fn capabilities(&self) -> KeyCapabilities {`
`202`	`202`	`KeyCapabilities::SIGNING.union(KeyCapabilities::KEY_AGREEMENT)`
`203`	`203`	`}`
	`204`	`+`
	`205`	`+ fn as_any(&self) -> &dyn std::any::Any {`
	`206`	`+ self`
	`207`	`+ }`
`204`	`208`	`}`
`205`	`209`
`206`	`210`	`impl KeySign for Curve25519 {`
Original file line number	Diff line number	Diff line change
`@@ -53,6 +53,9 @@ pub trait Key: Send + Sync {`
`53`	`53`	`fn fingerprint_hex(&self) -> String {`
`54`	`54`	`hex::encode(self.fingerprint_sha256_spki())`
`55`	`55`	`}`
	`56`	`+`
	`57`	`+ /// 获取Any trait object引用，用于安全的向下转换`
	`58`	`+ fn as_any(&self) -> &dyn std::any::Any;`
`56`	`59`	`}`
`57`	`60`
`58`	`61`	`// ============================================================================`
Original file line number	Diff line number	Diff line change
`@@ -119,6 +119,10 @@ impl Key for P256Key {`
`119`	`119`	`fn capabilities(&self) -> KeyCapabilities {`
`120`	`120`	`KeyCapabilities::SIGNING.union(KeyCapabilities::KEY_AGREEMENT)`
`121`	`121`	`}`
	`122`	`+`
	`123`	`+ fn as_any(&self) -> &dyn std::any::Any {`
	`124`	`+ self`
	`125`	`+ }`
`122`	`126`	`}`
`123`	`127`
`124`	`128`	`// ============================================================================`
Original file line number	Diff line number	Diff line change
`@@ -116,6 +116,10 @@ impl Key for RsaKey {`
`116`	`116`	`fn capabilities(&self) -> KeyCapabilities {`
`117`	`117`	`KeyCapabilities::SIGNING.union(KeyCapabilities::ENCRYPTION)`
`118`	`118`	`}`
	`119`	`+`
	`120`	`+ fn as_any(&self) -> &dyn std::any::Any {`
	`121`	`+ self`
	`122`	`+ }`
`119`	`123`	`}`
`120`	`124`
`121`	`125`	`// ============================================================================`