Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

add ed25519 to curve25519 conversion helpers #217

Merged
merged 4 commits into from
Mar 15, 2021
Merged
Show file tree
Hide file tree
Changes from 1 commit
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 16 additions & 0 deletions lib/rbnacl/signatures/ed25519/signing_key.rb
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,10 @@ class SigningKey
:crypto_sign_ed25519_seed_keypair,
%i[pointer pointer pointer]

sodium_function :to_private_key,
:crypto_sign_ed25519_sk_to_curve25519,
%i[pointer pointer]

attr_reader :verify_key

# Generate a random SigningKey
Expand Down Expand Up @@ -123,6 +127,18 @@ def self.signature_bytes
def signature_bytes
Ed25519::SIGNATUREBYTES
end

# Return a new curve25519 private key converted from this key
#
# it's recommeneded to read https://libsodium.gitbook.io/doc/advanced/ed25519-curve25519
# as it encourages using distinct keys for signing and for encryption
#
# @return [RbNaCl::PrivateKey]
def to_private_key
buffer = Util.zeros(Boxes::Curve25519XSalsa20Poly1305::PrivateKey::BYTES)
self.class.crypto_sign_ed25519_sk_to_curve25519(buffer, @signing_key)
Boxes::Curve25519XSalsa20Poly1305::PrivateKey.new(buffer)
end
end
end
end
Expand Down
16 changes: 16 additions & 0 deletions lib/rbnacl/signatures/ed25519/verify_key.rb
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,10 @@ class VerifyKey
:crypto_sign_ed25519_open,
%i[pointer pointer pointer ulong_long pointer]

sodium_function :to_public_key,
:crypto_sign_ed25519_pk_to_curve25519,
%i[pointer pointer]

# Create a new VerifyKey object from a public key.
#
# @param key [String] Ed25519 public key
Expand Down Expand Up @@ -99,6 +103,18 @@ def self.signature_bytes
def signature_bytes
Ed25519::SIGNATUREBYTES
end

# Return a new curve25519 public key converted from this key
#
# it's recommeneded to read https://libsodium.gitbook.io/doc/advanced/ed25519-curve25519
# as it encourages using distinct keys for signing and for encryption
#
# @return [RbNaCl::PublicKey]
def to_public_key
buffer = Util.zeros(Boxes::Curve25519XSalsa20Poly1305::PublicKey::BYTES)
self.class.crypto_sign_ed25519_pk_to_curve25519(buffer, @key)
Boxes::Curve25519XSalsa20Poly1305::PublicKey.new(buffer)
end
end
end
end
Expand Down
4 changes: 4 additions & 0 deletions spec/rbnacl/signatures/ed25519/signing_key_spec.rb
Original file line number Diff line number Diff line change
Expand Up @@ -31,6 +31,10 @@
expect(subject.keypair_bytes).to eq signing_keypair
end

it "can be converted to curve25519 private key" do
expect(subject.to_private_key).to be_a_kind_of(RbNaCl::PrivateKey)
end
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It'd be good to find some test vectors and ensure the output is correct for both methods

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

added test vectors (generated by pynacl).


include_examples "key equality" do
let(:key_bytes) { signing_key }
let(:key) { described_class.new(key_bytes) }
Expand Down
4 changes: 4 additions & 0 deletions spec/rbnacl/signatures/ed25519/verify_key_spec.rb
Original file line number Diff line number Diff line change
Expand Up @@ -52,6 +52,10 @@
expect(described_class.new(verify_key).to_s).to eq verify_key
end

it "can be converted to curve25519 public key" do
expect(subject.to_public_key).to be_a_kind_of(RbNaCl::PublicKey)
end

include_examples "key equality" do
let(:key_bytes) { verify_key }
let(:key) { described_class.new(verify_key) }
Expand Down