ed25519 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 1f18b255ad17db79f86a0de5418e50200095c287
+  data.tar.gz: 3d323466815a1b2c41df0fd6c85b1e0b7be3bb8e
+SHA512:
+  metadata.gz: ba23ff9932cf8c20d9c2e0b1285ebd9aa1a9364be23ac4b4f4ba60ea147400891177add7598f01d4ab9ebf22d6d55e82ff24936294c991c881cf8874076d01a7
+  data.tar.gz: 57320689b7535f81d776100e2d92ecaebd3fca3f09018b76734547a7e4b565b4e9018cd575062c6b13043b3d668c9fc48378fb5d8d9dc83ab95726c46064d018

data/.gitignore

@@ -0,0 +1,15 @@
+/Gemfile.lock
+/.bundle/
+/.yardoc
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+*.o
+*.so
+*.bundle
+
+# rspec failure tracking
+.rspec_status

data/.rspec

@@ -0,0 +1,5 @@
+--color
+--format documentation
+--order random
+--warnings
+--require spec_helper

data/.rubocop.yml

@@ -0,0 +1,35 @@
+AllCops:
+  TargetRubyVersion: 2.4
+  DisplayCopNames: true
+
+#
+# Style
+#
+
+Style/StringLiterals:
+  EnforcedStyle: double_quotes
+
+#
+# Metrics
+#
+
+Metrics/AbcSize:
+  Enabled: false
+
+Metrics/CyclomaticComplexity:
+  Enabled: false
+
+Metrics/PerceivedComplexity:
+  Enabled: false
+
+Metrics/BlockLength:
+  Max: 100
+
+Metrics/ClassLength:
+  Max: 100
+
+Metrics/LineLength:
+  Max: 128
+
+Metrics/MethodLength:
+  Max: 25

data/.travis.yml

@@ -0,0 +1,13 @@
+language: ruby
+
+rvm:
+  - jruby-9.1.15.0
+  - 2.2.8
+  - 2.3.5
+  - 2.4.2
+
+before_install: gem install bundler -v 1.16.0
+
+branches:
+  only:
+    - master

data/CHANGES.md

@@ -0,0 +1,3 @@
+# 0.1.0 (2017-12-11)
+
+* Initial release

data/CODE_OF_CONDUCT.md

@@ -0,0 +1,74 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+
+In the interest of fostering an open and welcoming environment, we as
+contributors and maintainers pledge to making participation in our project and
+our community a harassment-free experience for everyone, regardless of age, body
+size, disability, ethnicity, gender identity and expression, level of experience,
+nationality, personal appearance, race, religion, or sexual identity and
+orientation.
+
+## Our Standards
+
+Examples of behavior that contributes to creating a positive environment
+include:
+
+* Using welcoming and inclusive language
+* Being respectful of differing viewpoints and experiences
+* Gracefully accepting constructive criticism
+* Focusing on what is best for the community
+* Showing empathy towards other community members
+
+Examples of unacceptable behavior by participants include:
+
+* The use of sexualized language or imagery and unwelcome sexual attention or
+advances
+* Trolling, insulting/derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others' private information, such as a physical or electronic
+  address, without explicit permission
+* Other conduct which could reasonably be considered inappropriate in a
+  professional setting
+
+## Our Responsibilities
+
+Project maintainers are responsible for clarifying the standards of acceptable
+behavior and are expected to take appropriate and fair corrective action in
+response to any instances of unacceptable behavior.
+
+Project maintainers have the right and responsibility to remove, edit, or
+reject comments, commits, code, wiki edits, issues, and other contributions
+that are not aligned to this Code of Conduct, or to ban temporarily or
+permanently any contributor for other behaviors that they deem inappropriate,
+threatening, offensive, or harmful.
+
+## Scope
+
+This Code of Conduct applies both within project spaces and in public spaces
+when an individual is representing the project or its community. Examples of
+representing a project or community include using an official project e-mail
+address, posting via an official social media account, or acting as an appointed
+representative at an online or offline event. Representation of a project may be
+further defined and clarified by project maintainers.
+
+## Enforcement
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported by contacting the project team at bascule@gmail.com. All
+complaints will be reviewed and investigated and will result in a response that
+is deemed necessary and appropriate to the circumstances. The project team is
+obligated to maintain confidentiality with regard to the reporter of an incident.
+Further details of specific enforcement policies may be posted separately.
+
+Project maintainers who do not follow or enforce the Code of Conduct in good
+faith may face temporary or permanent repercussions as determined by other
+members of the project's leadership.
+
+## Attribution
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4,
+available at [http://contributor-covenant.org/version/1/4][version]
+
+[homepage]: http://contributor-covenant.org
+[version]: http://contributor-covenant.org/version/1/4/

data/Gemfile

@@ -0,0 +1,12 @@
+# frozen_string_literal: true
+
+source "https://rubygems.org"
+
+gemspec
+
+group :development, :test do
+  gem "rake", require: false
+  gem "rake-compiler", "~> 1.0", require: false
+  gem "rspec", "~> 3.7", require: false
+  gem "rubocop", "0.51.0", require: false
+end

data/LICENSE

@@ -0,0 +1,22 @@
+Copyright (c) 2012-2017 Tony Arcieri
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,156 @@
+# ed25519.rb [![Latest Version][gem-shield]][gem-link] [![Build Status][build-image]][build-link] [![License: LGPL v3][license-image]][license-link]
+
+[gem-shield]: https://badge.fury.io/rb/ed25519.svg
+[gem-link]: https://rubygems.org/gems/ed25519
+[build-image]: https://travis-ci.org/cryptosphere/ed25519.svg?branch=master
+[build-link]: https://travis-ci.org/cryptosphere/ed25519
+[license-image]: https://img.shields.io/badge/license-MIT-blue.svg
+[license-link]: https://github.com/cryptosphere/ed25519/blob/master/LICENSE
+
+A Ruby binding to the Ed25519 elliptic curve public-key signature system
+described in [RFC 8032].
+
+Two implementations are provided: a MRI C extension which uses the "ref"
+implementation from the SUPERCOP benchmark suite, and a pure Java version
+which is a direct port of the Python implementation.
+
+[RFC 8032]: https://tools.ietf.org/html/rfc8032
+
+## What is Ed25519?
+
+Ed25519 is a modern implementation of a [Schnorr signature] system using
+elliptic curve groups.
+
+Ed25519 provides a 128-bit security level, that is to say, all known attacks
+take at least 2^128 operations, providing the same security level as AES-128,
+NIST P-256, and RSA-3072.
+
+![Ed25519 Diagram](https://raw.github.com/cryptosphere/ed25519/master/ed25519.png)
+
+Ed25519 has a number of unique properties that make it one of the best-in-class
+digital signature algorithms:
+
+* ***Small keys***: Ed25519 keys are only 256-bits (32 bytes), making them
+  small enough to easily copy around. Ed25519 also allows the public key
+  to be derived from the private key, meaning that it doesn't need to be
+  included in a serialized private key in cases you want both.
+* ***Small signatures***: Ed25519 signatures are only 512-bits (64 bytes),
+  one of the smallest signature sizes available.
+* ***Deterministic***: Unlike (EC)DSA, Ed25519 does not rely on an entropy
+  source when signing messages. This can be a potential attack vector if
+  the entropy source is not generating good random numbers. Ed25519 avoids
+  this problem entirely and will always generate the same signature for the
+  same data.
+* ***Collision Resistant***: Hash-function collisions do not break this
+  system. This adds a layer of defense against the possibility of weakness
+  in the selected hash function.
+
+You can read more on [Dan Bernstein's Ed25519 site](http://ed25519.cr.yp.to/).
+
+[Schnorr signature]: https://en.wikipedia.org/wiki/Schnorr_signature
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+    gem 'ed25519'
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install ed25519
+
+# Usage
+
+Require **ed25519.rb** in your Ruby program:
+
+```ruby
+require "ed25519"
+```
+
+Generate a new random signing key:
+
+```ruby
+signing_key = Ed25519::SigningKey.generate
+```
+
+Sign a message with the signing key:
+
+```ruby
+signature = signing_key.sign(message)
+```
+
+Obtain the verify key for a given signing key:
+
+```ruby
+verify_key = signing_key.verify_key
+```
+
+Check the validity of a signature:
+
+```ruby
+verify_key.verify(signature, message)
+```
+
+The verify method will return `true` or `false` depending on if the signature matches.
+
+### Serializing Keys
+
+Keys can be serialized as 32-byte binary strings as follows:
+
+```ruby
+signature_key_bytes = signing_key.to_bytes
+verify_key_bytes = verify_key.to_bytes
+```
+
+The binary serialization can be passed directly into the constructor for a given key type:
+
+```ruby
+signing_key = Ed25519::SigningKey.new(signature_key_bytes)
+verify_key  = Ed25519::VerifyKey.new(verify_key_bytes)
+```
+
+## Security Notes
+
+The Ed25519 "ref" implementation from SUPERCOP was lovingly crafted by expert
+security boffins with great care taken to prevent timing attacks. The same
+cannot be said for the C code used in the **ed25519.rb** C extension or in the
+entirety of the provided Java implementation.
+
+Care should be taken to avoid leaking to the attacker how long it takes to
+generate keys or sign messages (at least until **ed25519.rb** itself can be audited
+by experts who can fix any potential timing vulnerabilities)
+
+**ed25519.rb** relies on a strong `SecureRandom` for key generation.
+Weaknesses in the random number source can potentially result in insecure keys.
+
+## JRuby Notes
+
+**ed25519.rb** provides a pure Java backend, however this backend is much slower
+than the C-based version. While **ed25519.rb** will function on JRuby, it may be
+too slow to be usable for a given use case. You should benchmark your
+application to determine if it will be fast enough for your purposes.
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/cryptosphere/ed25519.
+This project is intended to be a safe, welcoming space for collaboration,
+and contributors areexpected to adhere to the [Contributor Covenant](http://contributor-covenant.org)
+code of conduct.
+
+## License
+
+Copyright (c) 2012-2017 Tony Arcieri. Distributed under the MIT License. See
+[LICENSE] for further details.
+
+[LICENSE]: https://github.com/cryptosphere/ed25519/blob/master/LICENSE
+
+## Code of Conduct
+
+Everyone interacting in the **ed25519.rb** project’s codebases, issue trackers, chat
+rooms and mailing lists is expected to follow the [code of conduct].
+
+[code of conduct]: https://github.com/cryptosphere/ed25519/blob/master/CODE_OF_CONDUCT.md

data/Rakefile

@@ -0,0 +1,27 @@
+# frozen_string_literal: true
+
+require "bundler/gem_tasks"
+
+require "rake/clean"
+CLEAN.include("**/*.o", "**/*.so", "**/*.bundle", "pkg", "tmp")
+
+if defined? JRUBY_VERSION
+  require "rake/javaextensiontask"
+  Rake::JavaExtensionTask.new("ed25519_engine") do |ext|
+    ext.ext_dir = "ext/ed25519"
+  end
+else
+  require "rake/extensiontask"
+
+  Rake::ExtensionTask.new("ed25519_engine") do |ext|
+    ext.ext_dir = "ext/ed25519"
+  end
+end
+
+require "rspec/core/rake_task"
+RSpec::Core::RakeTask.new
+
+require "rubocop/rake_task"
+RuboCop::RakeTask.new
+
+task default: %w[compile spec rubocop]

data/ed25519.gemspec

@@ -0,0 +1,32 @@
+
+# frozen_string_literal: true
+
+require File.expand_path("lib/ed25519/version", __dir__)
+
+Gem::Specification.new do |spec|
+  spec.name          = "ed25519"
+  spec.version       = Ed25519::VERSION
+  spec.authors       = ["Tony Arcieri"]
+  spec.email         = ["tony.arcieri@gmail.com"]
+  spec.summary       = "An efficient digital signature library providing the Ed25519 algorithm"
+  spec.description = <<-DESCRIPTION.strip.gsub(/\s+/, " ")
+    A Ruby binding to the Ed25519 elliptic curve public-key signature system
+    described in RFC 8032.
+  DESCRIPTION
+  spec.homepage      = "https://github.com/cryptosphere/ed25519"
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  if defined? JRUBY_VERSION
+    spec.platform = "jruby"
+    spec.files << "lib/ed25519_engine.jar"
+  else
+    spec.platform = Gem::Platform::RUBY
+    spec.extensions = "ext/ed25519/extconf.rb"
+  end
+
+  spec.required_ruby_version = ">= 2.2.2"
+  spec.add_development_dependency "bundler", "~> 1.16"
+end

data/ext/ed25519/api.h

@@ -0,0 +1,4 @@
+#define CRYPTO_SECRETKEYBYTES 64
+#define CRYPTO_PUBLICKEYBYTES 32
+#define CRYPTO_BYTES 64
+

data/ext/ed25519/crypto_int32.h

@@ -0,0 +1,6 @@
+#ifndef crypto_int32_h
+#define crypto_int32_h
+
+typedef int crypto_int32;
+
+#endif

data/ext/ed25519/crypto_sign.h

@@ -0,0 +1,13 @@
+#ifndef crypto_sign_edwards25519sha512batch_H
+#define crypto_sign_edwards25519sha512batch_H
+
+#define SECRETKEYBYTES 64
+#define PUBLICKEYBYTES 32
+#define SIGNATUREBYTES 64
+
+extern int crypto_sign(unsigned char *,unsigned long long *,const unsigned char *,unsigned long long,const unsigned char *);
+extern int crypto_sign_open(unsigned char *,unsigned long long *,const unsigned char *,unsigned long long,const unsigned char *);
+extern int crypto_sign_keypair(unsigned char *,unsigned char *);
+extern int crypto_sign_publickey(unsigned char *pk, unsigned char *sk, unsigned char *seed);
+
+#endif