ed448 0.1.1 → 0.1.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 85ce43aac8c68800b31f7822be4244001e2b8ad625af784107c4694e8853390c
-  data.tar.gz: 6e55e7d4dd908f43bc076df315fb806ce91f56aa9c3722dccec5e8f025bf3c26
+  metadata.gz: cba9803fa1114b02fdfc3b326ba340da704de00a500141fe83e58975d4e1d5d7
+  data.tar.gz: 64a237fc8eeb1a76110b65c3e0a0a87c792a9a2cff4bbf7fbb130dbd4a6e7008
 SHA512:
-  metadata.gz: 4bd8bbe02268d7a07862abe72d8082bd4be95873579fb78ad4040438e5b522ace9e5103149257e9889d7bd9d534d3871ca62672c7e0bc75c38f1651a907acf8f
-  data.tar.gz: eefeee4a5261c45eda0657dceb84f729939490c7b3bf323a92220d252c8555d0a7cae325990b321e4e90883ae7b78f1adf8b809eb3d3c08566a0fb2980d45cad
+  metadata.gz: a3bf2f49dfb4ab3afe6ea59d897daa26a3dd9e53670f7c048d66ff01c91b956439af093b4b2659d1e5987ff57f9893d16a30c1907f3c9a07bff59aa0bf54c1d3
+  data.tar.gz: bbb67b03f2b01c05385e12230138e423cd9ee712f7832bd5cb8fe4943a1d92dbb587bf055b59194449cad02d3e54a2e0faa195ebcead0e2c9713b3072792da10

data/lib/ed448.rb

@@ -7,6 +7,7 @@ module Ed448
 
   module_function
 
+  autoload :Shake, 'ed448/shake'
   autoload :X448, 'ed448/x448'
 
   EDDSA_448_PUBLIC_BYTES = 57
@@ -26,7 +27,7 @@ module Ed448
   def load_functions
     # @brief EdDSA key generation.  This function uses a different (non-Decaf)
     # encoding.
-    #     
+    #
     # @param [out] pubkey The public key.
     # @param [in] privkey The private key.
     #
@@ -51,6 +52,7 @@ module Ed448
     # messages, at least without some very careful protocol-level disambiguation.  For Ed448 it is
     # safe.  The C++ wrapper is designed to make it harder to screw this up, but this C code gives
     # you no seat belt.
+    #
     # void goldilocks_ed448_sign (
     #   uint8_t signature[GOLDILOCKS_EDDSA_448_SIGNATURE_BYTES],
     #   const uint8_t privkey[GOLDILOCKS_EDDSA_448_PRIVATE_BYTES],
@@ -120,6 +122,22 @@ module Ed448
     #     const uint8_t scalar[GOLDILOCKS_X448_PRIVATE_BYTES]
     # ) GOLDILOCKS_API_VIS GOLDILOCKS_NONNULL GOLDILOCKS_NOINLINE;
     attach_function(:goldilocks_x448_derive_public_key, [:pointer, :pointer], :void)
+
+    #  @brief Hash (in) to (out)
+    #  @param [in] in The input data.
+    #  @param [in] inlen The length of the input data.
+    #  @param [out] out A buffer for the output data.
+    #  @param [in] outlen The length of the output data.
+    #  @param [in] params The parameters of the sponge hash.
+    #
+    # goldilocks_error_t goldilocks_sha3_hash (
+    #     uint8_t *out,
+    #     size_t outlen,
+    #     const uint8_t *in,
+    #     size_t inlen,
+    #     const struct goldilocks_kparams_s *params
+    # ) GOLDILOCKS_API_VIS;
+    attach_function(:goldilocks_sha3_hash, [:pointer, :int, :pointer, :int, :pointer], :int)
   end
 
   def derive_public_key(private_key)
@@ -129,24 +147,26 @@ module Ed448
     public_key.read_string(EDDSA_448_PUBLIC_BYTES)
   end
 
-  def sign(private_key, public_key, message)
+  def sign(private_key, public_key, message, context: '', prehash: false)
     signature = FFI::MemoryPointer.new(:uchar, EDDSA_448_SIGNATURE_BYTES)
     private_key = FFI::MemoryPointer.new(:uchar, EDDSA_448_PRIVATE_BYTES).put_bytes(0, private_key)
     public_key = FFI::MemoryPointer.new(:uchar, EDDSA_448_PUBLIC_BYTES).put_bytes(0, public_key)
     message_len = message.bytesize
     message = FFI::MemoryPointer.new(:uchar, message_len).put_bytes(0, message)
-    context = FFI::MemoryPointer.new(:uchar, 0)
-    goldilocks_ed448_sign(signature, private_key, public_key, message, message_len, 0, context, 0)
+    context_len = context.bytesize
+    context = FFI::MemoryPointer.new(:uchar, context_len).put_bytes(0, context)
+    goldilocks_ed448_sign(signature, private_key, public_key, message, message_len, prehash ? 1 : 0, context, context_len)
     signature.read_string(EDDSA_448_SIGNATURE_BYTES)
   end
 
-  def verify(signature, public_key, message)
+  def verify(signature, public_key, message, context: '', prehash: false)
     signature = FFI::MemoryPointer.new(:uchar, EDDSA_448_SIGNATURE_BYTES).put_bytes(0, signature)
     public_key = FFI::MemoryPointer.new(:uchar, EDDSA_448_PUBLIC_BYTES).put_bytes(0, public_key)
     message_len = message.bytesize
     message = FFI::MemoryPointer.new(:uchar, message_len).put_bytes(0, message)
-    context = FFI::MemoryPointer.new(:uchar, 0)
-    result = goldilocks_ed448_verify(signature, public_key, message, message_len, 0, context, 0)
+    context_len = context.bytesize
+    context = FFI::MemoryPointer.new(:uchar, context_len).put_bytes(0, context)
+    result = goldilocks_ed448_verify(signature, public_key, message, message_len, prehash ? 1 : 0, context, context_len)
     result == -1
   end
 end

data/lib/ed448/shake.rb

@@ -0,0 +1,16 @@
+module Ed448
+  module Shake
+    module_function
+
+    DEFAULT_SHAKE256_LENGTH = 64
+
+    def hash(message, length = DEFAULT_SHAKE256_LENGTH)
+      message_len = message.bytesize
+      message = FFI::MemoryPointer.new(:uchar, message_len).put_bytes(0, message)
+      out = FFI::MemoryPointer.new(:uchar, length)
+      option = FFI::MemoryPointer.new(:uchar, 8).put_bytes(0, ["004188001f80ffff"].pack('H*'))
+      Ed448.goldilocks_sha3_hash(out, length, message, message_len, option)
+      out.read_string(length)
+    end
+  end
+end

data/lib/ed448/version.rb

@@ -1,3 +1,3 @@
 module Ed448
-  VERSION = "0.1.1"
+  VERSION = "0.1.2"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: ed448
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.1.2
 platform: ruby
 authors:
 - Hajime Yamaguchi
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2019-07-10 00:00:00.000000000 Z
+date: 2019-09-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ffi
@@ -85,6 +85,7 @@ files:
 - bin/setup
 - ed448.gemspec
 - lib/ed448.rb
+- lib/ed448/shake.rb
 - lib/ed448/version.rb
 - lib/ed448/x448.rb
 homepage: https://github.com/Yamaguchi/ed448rb