Sha256: 0baea66e9eb3a118dcb70ac07705f5f8713baadb8b5ca55c24db24f9772d4538
Contents?: true
Size: 1.77 KB
Versions: 31
Compression:
Stored size: 1.77 KB
Contents
# frozen_string_literal: true
require "securerandom"
module Ed25519
# Private key for producing digital signatures
class SigningKey
attr_reader :seed, :keypair, :verify_key
# Generate a random Ed25519 signing key (i.e. private scalar)
def self.generate
new SecureRandom.random_bytes(Ed25519::KEY_SIZE)
end
# Create a SigningKey from a 64-byte Ed25519 keypair (i.e. public + private)
#
# @param keypair [String] 64-byte keypair value containing both seed + public key
def self.from_keypair(keypair)
raise TypeError, "expected String, got #{keypair.class}" unless keypair.is_a?(String)
raise ArgumentError, "expected 64-byte String, got #{keypair.bytesize}" unless keypair.bytesize == 64
new(keypair[0, KEY_SIZE]).tap do |key|
raise ArgumentError, "corrupt keypair" unless keypair[KEY_SIZE, KEY_SIZE] == key.verify_key.to_bytes
end
end
# Create a new Ed25519::SigningKey from the given seed value
#
# @param seed [String] 32-byte seed value from which the key should be derived
def initialize(seed)
Ed25519.validate_key_bytes(seed)
@seed = seed
@keypair = Ed25519.provider.create_keypair(seed)
@verify_key = VerifyKey.new(@keypair[32, 32])
end
# Sign the given message, returning an Ed25519 signature
#
# @param message [String] message to be signed
#
# @return [String] 64-byte Ed25519 signature
def sign(message)
Ed25519.provider.sign(@keypair, message)
end
# String inspection that does not leak secret values
def inspect
to_s
end
# Return a bytestring representation of this signing key
#
# @return [String] signing key converted to a bytestring
def to_bytes
seed
end
alias to_str to_bytes
end
end
Version data entries
31 entries across 27 versions & 2 rubygems