ddn.crypto.signature.ed25519

Ed25519 Signature Implementation (RFC 8032).

Constant-Time Implementation: This module uses constant-time

scalar multiplication to prevent timing side-channel attacks. The point multiplication executes in constant time regardless of the scalar value.

struct CurveEd25519 Point

class Ed25519Signer Ed25519Verifier

fn bigIntToBytesLE bytesToBigIntLE ctSelectPoint decodePoint encodedIsNull encodePoint modInverse pointAdd pointDouble pointMul

Types 4

private structCurveEd25519

Fields

BigInt p

BigInt d

BigInt L

BigInt By

BigInt Bx

BigInt I

private structPoint

Fields

BigInt x

BigInt y

BigInt z

BigInt t

Methods

Point infinity()

Point basePoint()

classEd25519Signer : Signer

Fields

private Ed25519PrivateKey _key

private Appender!(ubyte[]) _buffer

Methods

void init(PrivateKey key)

void update(const(ubyte)[] input)

ubyte[] sign()

classEd25519Verifier : Verifier

Fields

private Ed25519PublicKey _key

private Appender!(ubyte[]) _buffer

Methods

void init(PublicKey key)

void update(const(ubyte)[] input)

bool verify(const(ubyte)[] signature)

Functions 10

private fnPoint pointAdd(Point P, Point Q)

private fnPoint pointDouble(Point P)

private fnPoint pointMul(Point P, BigInt s)Constant-time scalar multiplication using double-and-add-always.

private fnPoint ctSelectPoint(uint condition, Point a, Point b) pure nothrow @safeConstant-time point selection.

private fnubyte[] encodePoint(Point P)

private fnPoint decodePoint(const(ubyte)[] enc)

private fnbool encodedIsNull(const(ubyte)[] enc)

private fnBigInt modInverse(BigInt a, BigInt n)

private fnBigInt bytesToBigIntLE(const(ubyte)[] bytes)

private fnubyte[] bigIntToBytesLE(BigInt n, size_t len)