doxygen/sodium__25519_8cpp_source.html

/*

* (C) 2019 Jack Lloyd

*

* Botan is released under the Simplified BSD License (see license.txt)

*/


#include <botan/sodium.h>


#include <botan/ed25519.h>

#include <botan/x25519.h>

#include <botan/internal/ct_utils.h>


namespace Botan {


int Sodium::crypto_scalarmult_curve25519(uint8_t out[32], const uint8_t scalar[32], const uint8_t point[32]) {

   curve25519_donna(out, scalar, point);

   // Return -1 if the result is the identity

   return -static_cast<int>(CT::all_zeros(out, 32).if_set_return(1));

}


int Sodium::crypto_scalarmult_curve25519_base(uint8_t out[32], const uint8_t scalar[32]) {

   curve25519_basepoint(out, scalar);

   return 0;

}


int Sodium::crypto_sign_ed25519_detached(

   uint8_t sig[], unsigned long long* sig_len, const uint8_t msg[], size_t msg_len, const uint8_t sk[64]) {

   ed25519_sign(sig, msg, msg_len, sk, nullptr, 0);


   if(sig_len != nullptr) {

      *sig_len = 64;

   }

   return 0;

}


int Sodium::crypto_sign_ed25519_verify_detached(const uint8_t sig[],

                                                const uint8_t msg[],

                                                size_t msg_len,

                                                const uint8_t pk[32]) {

   const bool ok = ed25519_verify(msg, msg_len, sig, pk, nullptr, 0);

   return ok ? 0 : -1;

}


int Sodium::crypto_sign_ed25519_keypair(uint8_t pk[32], uint8_t sk[64]) {

   secure_vector<uint8_t> seed(32);

   randombytes_buf(seed.data(), seed.size());

   return crypto_sign_ed25519_seed_keypair(pk, sk, seed.data());

}


int Sodium::crypto_sign_ed25519_seed_keypair(uint8_t pk[], uint8_t sk[], const uint8_t seed[]) {

   ed25519_gen_keypair(pk, sk, seed);

   return 0;

}


}  // namespace Botan

Botan::CT::all_zeros
constexpr CT::Mask< T > all_zeros(const T elem[], size_t len)
Definition ct_utils.h:785

Botan::Sodium::crypto_sign_ed25519_verify_detached
int crypto_sign_ed25519_verify_detached(const uint8_t sig[], const uint8_t msg[], size_t msg_len, const uint8_t pk[32])
Definition sodium_25519.cpp:36

Botan::Sodium::crypto_scalarmult_curve25519
int crypto_scalarmult_curve25519(uint8_t out[32], const uint8_t scalar[32], const uint8_t basepoint[32])
Definition sodium_25519.cpp:15

Botan::Sodium::crypto_scalarmult_curve25519_base
int crypto_scalarmult_curve25519_base(uint8_t out[32], const uint8_t scalar[32])
Definition sodium_25519.cpp:21

Botan::Sodium::crypto_sign_ed25519_keypair
int crypto_sign_ed25519_keypair(uint8_t pk[32], uint8_t sk[64])
Definition sodium_25519.cpp:44

Botan::Sodium::crypto_sign_ed25519_seed_keypair
int crypto_sign_ed25519_seed_keypair(uint8_t pk[], uint8_t sk[], const uint8_t seed[])
Definition sodium_25519.cpp:50

Botan::Sodium::crypto_sign_ed25519_detached
int crypto_sign_ed25519_detached(uint8_t sig[], unsigned long long *sig_len, const uint8_t msg[], size_t msg_len, const uint8_t sk[64])
Definition sodium_25519.cpp:26

Botan::Sodium::randombytes_buf
void randombytes_buf(void *buf, size_t size)
Definition sodium_utils.cpp:18

Botan
Definition alg_id.cpp:13

Botan::ed25519_sign
void ed25519_sign(uint8_t sig[64], const uint8_t m[], size_t mlen, const uint8_t sk[64], const uint8_t domain_sep[], size_t domain_sep_len)
Definition ed25519.cpp:34

Botan::curve25519_donna
void curve25519_donna(uint8_t mypublic[32], const uint8_t secret[32], const uint8_t basepoint[32])
Definition donna.cpp:453

Botan::ed25519_gen_keypair
void ed25519_gen_keypair(uint8_t pk[32], uint8_t sk[64], const uint8_t seed[32])
Definition ed25519.cpp:18

Botan::secure_vector
std::vector< T, secure_allocator< T > > secure_vector
Definition secmem.h:68

Botan::ed25519_verify
bool ed25519_verify(const uint8_t *m, size_t mlen, const uint8_t sig[64], const uint8_t *pk, const uint8_t domain_sep[], size_t domain_sep_len)
Definition ed25519.cpp:70

Botan::curve25519_basepoint
void curve25519_basepoint(uint8_t mypublic[32], const uint8_t secret[32])
Definition x25519.cpp:19