Skip to content

Commit

Permalink
code review from tony
Browse files Browse the repository at this point in the history
  • Loading branch information
@incertia
incertia committed Feb 6, 2024
1 parent 341371e commit 0b497dc
Show file tree
Hide file tree
Showing 22 changed files with 144 additions and 147 deletions.
2 changes: 1 addition & 1 deletion .github/workflows/lms.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@ on:

defaults:
run:
working-directory: .
working-directory: lms

env:
CARGO_INCREMENTAL: 0
Expand Down
52 changes: 0 additions & 52 deletions lms/.github/workflows/lms-rust.yml
View file

This file was deleted.

9 changes: 7 additions & 2 deletions lms/Cargo.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,16 +2,21 @@
name = "lms-signature"
version = "0.1.0"
edition = "2021"
license = "Apache-2.0 OR MIT"
repository = "https://github.com/RustCrypto/signatures/tree/master/lms"
readme = "README.md"
rust-version = "1.73"
categories = ["cryptography"]
keywords = ["crypto", "signature"]

# See more keys and their definitions at https://doc.rust-lang.org/cargo/reference/manifest.html

[lib]
name = "lms"
path = "lms/lib.rs"
path = "src/lib.rs"
edition = "2021"

[dependencies]
anyhow = "1.0.75"
digest = "0.10.7"
generic-array = {version = "0.14.4", features = ["zeroize"]}
rand = "0.8.5"
Expand Down
0 lms/lms/constants.rs → lms/src/constants.rs
View file
File renamed without changes.
0 lms/lms/error.rs → lms/src/error.rs
View file
File renamed without changes.
0 lms/lms/lib.rs → lms/src/lib.rs
View file
File renamed without changes.
21 changes: 21 additions & 0 deletions lms/src/lms/error.rs
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
//! LMS Signing error

use std::error::Error;
use std::fmt::{Display, Formatter, Result};

#[derive(Clone, Copy, Debug, Eq, PartialEq)]
pub enum LmsSigningError {
OutOfPrivateKeys,
}

impl Display for LmsSigningError {
fn fmt(&self, f: &mut Formatter<'_>) -> Result {
match self {
Self::OutOfPrivateKeys => {
write!(f, "private key has been exhausted")
}
}
}
}

impl Error for LmsSigningError {}
8 changes: 4 additions & 4 deletions lms/lms/lms/keypair.rs → lms/src/lms/keypair.rs
View file
Original file line number Diff line number Diff line change
@@ -1,11 +1,11 @@
use crate::lms::modes::LmsMode;
use crate::lms::private::PrivateKey;
use crate::lms::public::PublicKey;
use crate::lms::private::SigningKey;
use crate::lms::public::VerifyingKey;
use signature::Keypair;

// implements the Keypair trait for PrivateKey
impl<Mode: LmsMode> Keypair for PrivateKey<Mode> {
type VerifyingKey = PublicKey<Mode>;
impl<Mode: LmsMode> Keypair for SigningKey<Mode> {
type VerifyingKey = VerifyingKey<Mode>;

fn verifying_key(&self) -> Self::VerifyingKey {
self.public()
Expand Down
9 changes: 5 additions & 4 deletions lms/lms/lms/mod.rs → lms/src/lms/mod.rs
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,6 @@
//! Everything related to LMS (and not LM-OTS)

pub mod error;
mod keypair;
pub(crate) mod modes;
mod private;
Expand All @@ -9,8 +10,8 @@ pub mod signature;
pub use modes::{
LmsMode, LmsSha256M32H10, LmsSha256M32H15, LmsSha256M32H20, LmsSha256M32H25, LmsSha256M32H5,
};
pub use private::PrivateKey;
pub use public::PublicKey;
pub use private::SigningKey;
pub use public::VerifyingKey;
pub use signature::Signature;

#[cfg(test)]
Expand All @@ -19,13 +20,13 @@ mod tests {

use super::*;

use crate::{lms::PrivateKey, ots::LmsOtsSha256N32W4};
use crate::{lms::SigningKey, ots::LmsOtsSha256N32W4};

fn test_sign_and_verify<Mode: LmsMode>() {
let mut rng = rand::thread_rng();

// Generate a fresh keypair
let mut sk = PrivateKey::<Mode>::new(&mut rng);
let mut sk = SigningKey::<Mode>::new(&mut rng);
let pk = sk.public();

let msg = "this is a test message".as_bytes();
Expand Down
0 lms/lms/lms/modes.rs → lms/src/lms/modes.rs
View file
File renamed without changes.
36 changes: 17 additions & 19 deletions lms/lms/lms/private.rs → lms/src/lms/private.rs
View file
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
use crate::constants::{D_INTR, D_LEAF, ID_LEN};
use crate::error::LmsDeserializeError;
use crate::lms::{LmsMode, PublicKey, Signature};
use crate::ots::PrivateKey as OtsPrivateKey;
use crate::lms::error::LmsSigningError;
use crate::lms::{LmsMode, Signature, VerifyingKey};
use crate::ots::SigningKey as OtsPrivateKey;
use crate::types::{Identifier, Typecode};

use anyhow::anyhow;
use digest::{Digest, Output, OutputSizeUser};
use generic_array::{ArrayLength, GenericArray};
use rand::{CryptoRng, Rng};
Expand All @@ -14,20 +14,20 @@ use std::cmp::Ordering;
use std::ops::Add;
use typenum::{Sum, U28};

/// Opaque struct representing a LMS public key
/// Opaque struct representing a LMS private key
///
/// Note: there is no requirement to map specific LMS algorithms to specific
/// LM-OTS algorithms so it must be parametrized. With the algorithms provided
/// by this crate, this is done via
/// [LmsSha256M32H10](crate::lms::LmsSha256M32H10)<[LmsOtsSha256N32W4](crate::ots::LmsOtsSha256N32W4)>.
pub struct PrivateKey<Mode: LmsMode> {
pub struct SigningKey<Mode: LmsMode> {
id: Identifier,
seed: Output<Mode::Hasher>, // Re-generate the leaf privkeys as-needed from a seed
auth_tree: GenericArray<Output<Mode::Hasher>, Mode::TreeLen>, // TODO: Decide whether/when to precompute
q: u32,
}

impl<Mode: LmsMode> PrivateKey<Mode> {
impl<Mode: LmsMode> SigningKey<Mode> {
/// Creates a new private key with a random identifier using
/// algorithm 5 from <https://datatracker.ietf.org/doc/html/rfc8554#section-5.2>
pub fn new(mut rng: impl Rng + CryptoRng) -> Self {
Expand Down Expand Up @@ -88,8 +88,8 @@ impl<Mode: LmsMode> PrivateKey<Mode> {
}

/// this implements algorithm 1 from <https://datatracker.ietf.org/doc/html/rfc8554#section-4.3>
pub fn public(&self) -> PublicKey<Mode> {
PublicKey::<Mode>::new(self.id, self.auth_tree[0].clone())
pub fn public(&self) -> VerifyingKey<Mode> {
VerifyingKey::<Mode>::new(self.id, self.auth_tree[0].clone())
}

/// Returns the 16-byte identifier of the key pair
Expand All @@ -104,16 +104,14 @@ impl<Mode: LmsMode> PrivateKey<Mode> {
}

// this implements the algorithm from Appendix D in <https://datatracker.ietf.org/doc/html/rfc8554#appendix-D>
impl<Mode: LmsMode> RandomizedSignerMut<Signature<Mode>> for PrivateKey<Mode> {
impl<Mode: LmsMode> RandomizedSignerMut<Signature<Mode>> for SigningKey<Mode> {
fn try_sign_with_rng(
&mut self,
rng: &mut impl rand_core::CryptoRngCore,
msg: &[u8],
) -> Result<Signature<Mode>, Error> {
if self.q >= Mode::LEAVES {
return Err(Error::from_source(anyhow!(
"private key has been exhausted"
)));
return Err(Error::from_source(LmsSigningError::OutOfPrivateKeys));
}

let mut ots_priv_key =
Expand All @@ -136,13 +134,13 @@ impl<Mode: LmsMode> RandomizedSignerMut<Signature<Mode>> for PrivateKey<Mode> {
}

/// Converts a [PrivateKey] into its byte representation
impl<Mode: LmsMode> From<PrivateKey<Mode>>
impl<Mode: LmsMode> From<SigningKey<Mode>>
for GenericArray<u8, Sum<<Mode::Hasher as OutputSizeUser>::OutputSize, U28>>
where
<Mode::Hasher as OutputSizeUser>::OutputSize: Add<U28>,
Sum<<Mode::Hasher as OutputSizeUser>::OutputSize, U28>: ArrayLength<u8>,
{
fn from(pk: PrivateKey<Mode>) -> Self {
fn from(pk: SigningKey<Mode>) -> Self {
// Return u32(type) || u32(otstype) || u32(q) || id || seed
GenericArray::from_exact_iter(
std::iter::empty()
Expand All @@ -157,7 +155,7 @@ where
}

/// Tries to parse a [PrivateKey] from an exact slice
impl<'a, Mode: LmsMode> TryFrom<&'a [u8]> for PrivateKey<Mode> {
impl<'a, Mode: LmsMode> TryFrom<&'a [u8]> for SigningKey<Mode> {
type Error = LmsDeserializeError;

fn try_from(pk: &'a [u8]) -> Result<Self, Self::Error> {
Expand Down Expand Up @@ -202,7 +200,7 @@ impl<'a, Mode: LmsMode> TryFrom<&'a [u8]> for PrivateKey<Mode> {

#[cfg(test)]
mod tests {
use super::PrivateKey;
use super::SigningKey;
use crate::lms::modes::{LmsSha256M32H10, LmsSha256M32H5};
use crate::ots::modes::{LmsOtsSha256N32W4, LmsOtsSha256N32W8};
use hex_literal::hex;
Expand All @@ -214,7 +212,7 @@ mod tests {
let id = hex!("d08fabd4a2091ff0a8cb4ed834e74534");
let expected_k = hex!("32a58885cd9ba0431235466bff9651c6c92124404d45fa53cf161c28f1ad5a8e");

let lms_priv = PrivateKey::<LmsSha256M32H10<LmsOtsSha256N32W4>>::new_from_seed(id, seed);
let lms_priv = SigningKey::<LmsSha256M32H10<LmsOtsSha256N32W4>>::new_from_seed(id, seed);
let lms_pub = lms_priv.public();
assert_eq!(lms_pub.k(), expected_k);
assert_eq!(lms_pub.id(), &id);
Expand All @@ -226,7 +224,7 @@ mod tests {
let id = hex!("215f83b7ccb9acbcd08db97b0d04dc2b");
let expected_k = hex!("a1cd035833e0e90059603f26e07ad2aad152338e7a5e5984bcd5f7bb4eba40b7");

let lms_priv = PrivateKey::<LmsSha256M32H5<LmsOtsSha256N32W8>>::new_from_seed(id, seed);
let lms_priv = SigningKey::<LmsSha256M32H5<LmsOtsSha256N32W8>>::new_from_seed(id, seed);
let lms_pub = lms_priv.public();
assert_eq!(lms_pub.k(), expected_k);
assert_eq!(lms_pub.id(), &id);
Expand Down Expand Up @@ -334,7 +332,7 @@ mod tests {
let id = hex!("215f83b7ccb9acbcd08db97b0d04dc2b");
let _expected_k = hex!("a1cd035833e0e90059603f26e07ad2aad152338e7a5e5984bcd5f7bb4eba40b7");

let mut lms_priv = PrivateKey::<LmsSha256M32H5<LmsOtsSha256N32W8>>::new_from_seed(id, seed);
let mut lms_priv = SigningKey::<LmsSha256M32H5<LmsOtsSha256N32W8>>::new_from_seed(id, seed);
lms_priv.q = 4;
let _lms_pub = lms_priv.public();

Expand Down
Loading

0 comments on commit 0b497dc

Please sign in to comment.