Module: PQCrypto::Signature

Defined in:

lib/pq_crypto/signature.rb

Defined Under Namespace

Classes: Keypair, PublicKey, SecretKey

Constant Summary

CANONICAL_ALGORITHM =

:ml_dsa_65

DETAILS =

{
  CANONICAL_ALGORITHM => {
    name: CANONICAL_ALGORITHM,
    family: Serialization.algorithm_to_family(CANONICAL_ALGORITHM),
    oid: Serialization.algorithm_to_oid(CANONICAL_ALGORITHM),
    public_key_bytes: SIGN_PUBLIC_KEY_BYTES,
    secret_key_bytes: SIGN_SECRET_KEY_BYTES,
    signature_bytes: SIGN_BYTES,
    description: "ML-DSA-65 signature primitive (FIPS 204).",
  }.freeze,
}.freeze

Class Method Summary

• .details(algorithm) ⇒ Object
• .generate(algorithm = CANONICAL_ALGORITHM) ⇒ Object
• .public_key_from_bytes(algorithm, bytes) ⇒ Object
• .public_key_from_pqc_container_der(der, algorithm = nil) ⇒ Object
• .public_key_from_pqc_container_pem(pem, algorithm = nil) ⇒ Object
• .secret_key_from_bytes(algorithm, bytes) ⇒ Object
• .secret_key_from_pqc_container_der(der, algorithm = nil) ⇒ Object
• .secret_key_from_pqc_container_pem(pem, algorithm = nil) ⇒ Object
• .supported ⇒ Object

Class Method Details

.details(algorithm) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 60

def details(algorithm)
  DETAILS.fetch(validate_algorithm!(algorithm)).dup
end

.generate(algorithm = CANONICAL_ALGORITHM) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 20

def generate(algorithm = CANONICAL_ALGORITHM)
  validate_algorithm!(algorithm)
  public_key, secret_key = PQCrypto.__send__(:native_sign_keypair)
  Keypair.new(PublicKey.new(algorithm, public_key), SecretKey.new(algorithm, secret_key))
end

.public_key_from_bytes(algorithm, bytes) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 26

def public_key_from_bytes(algorithm, bytes)
  validate_algorithm!(algorithm)
  PublicKey.new(algorithm, bytes)
end

.public_key_from_pqc_container_der(der, algorithm = nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 36

def public_key_from_pqc_container_der(der, algorithm = nil)
  resolved_algorithm, bytes = Serialization.public_key_from_pqc_container_der(algorithm, der)
  validate_algorithm!(resolved_algorithm)
  PublicKey.new(resolved_algorithm, bytes)
end

.public_key_from_pqc_container_pem(pem, algorithm = nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 42

def public_key_from_pqc_container_pem(pem, algorithm = nil)
  resolved_algorithm, bytes = Serialization.public_key_from_pqc_container_pem(algorithm, pem)
  validate_algorithm!(resolved_algorithm)
  PublicKey.new(resolved_algorithm, bytes)
end

.secret_key_from_bytes(algorithm, bytes) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 31

def secret_key_from_bytes(algorithm, bytes)
  validate_algorithm!(algorithm)
  SecretKey.new(algorithm, bytes)
end

.secret_key_from_pqc_container_der(der, algorithm = nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 48

def secret_key_from_pqc_container_der(der, algorithm = nil)
  resolved_algorithm, bytes = Serialization.secret_key_from_pqc_container_der(algorithm, der)
  validate_algorithm!(resolved_algorithm)
  SecretKey.new(resolved_algorithm, bytes)
end

.secret_key_from_pqc_container_pem(pem, algorithm = nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 54

def secret_key_from_pqc_container_pem(pem, algorithm = nil)
  resolved_algorithm, bytes = Serialization.secret_key_from_pqc_container_pem(algorithm, pem)
  validate_algorithm!(resolved_algorithm)
  SecretKey.new(resolved_algorithm, bytes)
end

.supported ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 64

def supported
  DETAILS.keys.dup
end