Module: PQCrypto::Signature

Defined in:

lib/pq_crypto/signature.rb

Defined Under Namespace

Classes: Keypair, PublicKey, SecretKey

Constant Summary

CANONICAL_ALGORITHM =

:ml_dsa_65

DETAILS =

AlgorithmRegistry.details_for_family(:ml_dsa).freeze

NATIVE_DISPATCH =

{
  ml_dsa_44: {
    keypair: :native_ml_dsa_44_keypair,
    sign: :native_ml_dsa_44_sign,
    verify: :native_ml_dsa_44_verify,
    keypair_from_seed: :native_ml_dsa_44_keypair_from_seed,
  }.freeze,
  ml_dsa_65: {
    keypair: :native_sign_keypair,
    sign: :native_sign,
    verify: :native_verify,
    keypair_from_seed: :native_ml_dsa_keypair_from_seed,
  }.freeze,
  ml_dsa_87: {
    keypair: :native_ml_dsa_87_keypair,
    sign: :native_ml_dsa_87_sign,
    verify: :native_ml_dsa_87_verify,
    keypair_from_seed: :native_ml_dsa_87_keypair_from_seed,
  }.freeze,
}.freeze

Class Method Summary

• .details(algorithm) ⇒ Object
• .generate(algorithm = CANONICAL_ALGORITHM) ⇒ Object
• .public_key_from_bytes(algorithm, bytes) ⇒ Object
• .public_key_from_pqc_container_der(der, algorithm = nil) ⇒ Object
• .public_key_from_pqc_container_pem(pem, algorithm = nil) ⇒ Object
• .public_key_from_spki_der(der, algorithm: nil) ⇒ Object
• .public_key_from_spki_pem(pem, algorithm: nil) ⇒ Object
• .secret_key_from_bytes(algorithm, bytes) ⇒ Object
• .secret_key_from_pkcs8_der(der, passphrase: nil) ⇒ Object
• .secret_key_from_pkcs8_pem(pem, passphrase: nil) ⇒ Object
• .secret_key_from_pqc_container_der(der, algorithm = nil) ⇒ Object
• .secret_key_from_pqc_container_pem(pem, algorithm = nil) ⇒ Object
• .secret_key_from_seed(algorithm, seed) ⇒ Object
• .supported ⇒ Object

Class Method Details

.details(algorithm) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 97

def details(algorithm)
  DETAILS.fetch(resolve_algorithm!(algorithm)).dup
end

.generate(algorithm = CANONICAL_ALGORITHM) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 33

def generate(algorithm = CANONICAL_ALGORITHM)
  algorithm = resolve_algorithm!(algorithm)
  public_key, secret_key = PQCrypto.__send__(native_method_for(algorithm, :keypair))
  Keypair.new(PublicKey.new(algorithm, public_key), SecretKey.new(algorithm, secret_key))
end

.public_key_from_bytes(algorithm, bytes) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 39

def public_key_from_bytes(algorithm, bytes)
  resolve_algorithm!(algorithm)
  PublicKey.new(algorithm, bytes)
end

.public_key_from_pqc_container_der(der, algorithm = nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 53

def public_key_from_pqc_container_der(der, algorithm = nil)
  resolved_algorithm, bytes = Serialization.public_key_from_pqc_container_der(algorithm, der)
  resolve_algorithm!(resolved_algorithm)
  PublicKey.new(resolved_algorithm, bytes)
end

.public_key_from_pqc_container_pem(pem, algorithm = nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 59

def public_key_from_pqc_container_pem(pem, algorithm = nil)
  resolved_algorithm, bytes = Serialization.public_key_from_pqc_container_pem(algorithm, pem)
  resolve_algorithm!(resolved_algorithm)
  PublicKey.new(resolved_algorithm, bytes)
end

.public_key_from_spki_der(der, algorithm: nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 77

def public_key_from_spki_der(der, algorithm: nil)
  resolved_algorithm, bytes = SPKI.decode_der(der)
  validate_algorithm_match!(algorithm, resolved_algorithm) if algorithm
  PublicKey.new(resolve_algorithm!(resolved_algorithm), bytes)
end

.public_key_from_spki_pem(pem, algorithm: nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 83

def public_key_from_spki_pem(pem, algorithm: nil)
  resolved_algorithm, bytes = SPKI.decode_pem(pem)
  validate_algorithm_match!(algorithm, resolved_algorithm) if algorithm
  PublicKey.new(resolve_algorithm!(resolved_algorithm), bytes)
end

.secret_key_from_bytes(algorithm, bytes) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 44

def secret_key_from_bytes(algorithm, bytes)
  resolve_algorithm!(algorithm)
  SecretKey.new(algorithm, bytes)
end

.secret_key_from_pkcs8_der(der, passphrase: nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 89

def secret_key_from_pkcs8_der(der, passphrase: nil)
  secret_key_from_decoded_pkcs8(*PKCS8.decode_der(der, passphrase: passphrase))
end

.secret_key_from_pkcs8_pem(pem, passphrase: nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 93

def secret_key_from_pkcs8_pem(pem, passphrase: nil)
  secret_key_from_decoded_pkcs8(*PKCS8.decode_pem(pem, passphrase: passphrase))
end

.secret_key_from_pqc_container_der(der, algorithm = nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 65

def secret_key_from_pqc_container_der(der, algorithm = nil)
  resolved_algorithm, bytes = Serialization.secret_key_from_pqc_container_der(algorithm, der)
  resolve_algorithm!(resolved_algorithm)
  SecretKey.new(resolved_algorithm, bytes)
end

.secret_key_from_pqc_container_pem(pem, algorithm = nil) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 71

def secret_key_from_pqc_container_pem(pem, algorithm = nil)
  resolved_algorithm, bytes = Serialization.secret_key_from_pqc_container_pem(algorithm, pem)
  resolve_algorithm!(resolved_algorithm)
  SecretKey.new(resolved_algorithm, bytes)
end

.secret_key_from_seed(algorithm, seed) ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 49

def secret_key_from_seed(algorithm, seed)
  SecretKey.from_seed(resolve_algorithm!(algorithm), seed)
end

.supported ⇒ Object

# File 'lib/pq_crypto/signature.rb', line 101

def supported
  DETAILS.keys.dup
end