Class: PQCrypto::KEM::SecretKey

Inherits:

Object

• Object
• PQCrypto::KEM::SecretKey

Defined in:

lib/pq_crypto/kem.rb

Direct Known Subclasses

HybridKEM::SecretKey

Instance Attribute Summary

• #algorithm ⇒ Object readonly

  Returns the value of attribute algorithm.

Class Method Summary

• .from_seed(algorithm, seed) ⇒ Object

Instance Method Summary

• #==(other) ⇒ Object (also: #eql?)
• #decapsulate(ciphertext) ⇒ Object
• #hash ⇒ Object
• #initialize(algorithm, bytes, seed: nil) ⇒ SecretKey constructor

  A new instance of SecretKey.

• #inspect ⇒ Object
• #to_bytes ⇒ Object
• #to_pkcs8_der(format: :expanded, passphrase: nil, iterations: PKCS8::ENCRYPTED_PKCS8_DEFAULT_ITERATIONS) ⇒ Object
• #to_pkcs8_pem(format: :expanded, passphrase: nil, iterations: PKCS8::ENCRYPTED_PKCS8_DEFAULT_ITERATIONS) ⇒ Object
• #to_pqc_container_der ⇒ Object
• #to_pqc_container_pem ⇒ Object
• #wipe! ⇒ Object

Constructor Details

#initialize(algorithm, bytes, seed: nil) ⇒ SecretKey

Returns a new instance of SecretKey.

# File 'lib/pq_crypto/kem.rb', line 227

def initialize(algorithm, bytes, seed: nil)
  @algorithm = algorithm
  @bytes = Internal.binary_string(bytes)
  @seed = seed.nil? ? nil : Internal.binary_string(seed)
  validate_length!
  validate_seed_length! if @seed
end

Instance Attribute Details

#algorithm ⇒ Object (readonly)

Returns the value of attribute algorithm.

# File 'lib/pq_crypto/kem.rb', line 225

def algorithm
  @algorithm
end

Class Method Details

.from_seed(algorithm, seed) ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 235

def self.from_seed(algorithm, seed)
  seed_bytes = Internal.binary_string(seed)
  _public_key, expanded = PQCrypto.__send__(KEM.send(:native_method_for, algorithm, :keypair_from_seed), seed_bytes)
  new(algorithm, expanded, seed: seed_bytes)
rescue ArgumentError => e
  raise InvalidKeyError, e.message
end

Instance Method Details

#==(other) ⇒ Object Also known as: eql?

# File 'lib/pq_crypto/kem.rb', line 275

def ==(other)
  return false unless other.is_a?(SecretKey) && other.algorithm == algorithm
  Internal.constant_time_equal?(other.send(:bytes_for_native), @bytes)
end

#decapsulate(ciphertext) ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 263

def decapsulate(ciphertext)
  PQCrypto.__send__(KEM.send(:native_method_for, @algorithm, :decapsulate), Internal.binary_string(ciphertext), @bytes)
rescue ArgumentError => e
  raise InvalidCiphertextError, e.message
end

#hash ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 282

def hash
  object_id.hash
end

#inspect ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 286

def inspect
  "#<#{self.class}:0x#{object_id.to_s(16)} algorithm=#{algorithm.inspect}>"
end

#to_bytes ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 243

def to_bytes
  @bytes.dup
end

#to_pkcs8_der(format: :expanded, passphrase: nil, iterations: PKCS8::ENCRYPTED_PKCS8_DEFAULT_ITERATIONS) ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 255

def to_pkcs8_der(format: :expanded, passphrase: nil, iterations: PKCS8::ENCRYPTED_PKCS8_DEFAULT_ITERATIONS)
  PKCS8.encode_der(@algorithm, pkcs8_material(format), format: format, passphrase: passphrase, iterations: iterations)
end

#to_pkcs8_pem(format: :expanded, passphrase: nil, iterations: PKCS8::ENCRYPTED_PKCS8_DEFAULT_ITERATIONS) ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 259

def to_pkcs8_pem(format: :expanded, passphrase: nil, iterations: PKCS8::ENCRYPTED_PKCS8_DEFAULT_ITERATIONS)
  PKCS8.encode_pem(@algorithm, pkcs8_material(format), format: format, passphrase: passphrase, iterations: iterations)
end

#to_pqc_container_der ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 247

def to_pqc_container_der
  Serialization.secret_key_to_pqc_container_der(@algorithm, @bytes)
end

#to_pqc_container_pem ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 251

def to_pqc_container_pem
  Serialization.secret_key_to_pqc_container_pem(@algorithm, @bytes)
end

#wipe! ⇒ Object

# File 'lib/pq_crypto/kem.rb', line 269

def wipe!
  PQCrypto.secure_wipe(@bytes)
  PQCrypto.secure_wipe(@seed) if @seed
  self
end