purecrypto 0.6.20

A pure-Rust cryptography toolkit with no foreign-code dependencies, from constant-time primitives up to keys, X.509 and TLS.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63

//! Unified [`key`](crate::key) trait impls for the ML-KEM key-encapsulation keys.
//!
//! ML-KEM is a KEM, not a signature or pairwise-agreement scheme, so the
//! encapsulation (public) keys implement [`Encapsulator`] and the decapsulation
//! (secret) keys implement [`Decapsulator`]. These keys are deliberately **not**
//! [`PrivateKey`](crate::key::PrivateKey) / [`PublicKey`](crate::key::PublicKey)
//! facade keys: encapsulate / decapsulate is not the facade's sign / decrypt /
//! agree contract.

use alloc::vec::Vec;

use crate::key::{Decapsulator, Encapsulator, Error, Secret};
use crate::rng::CryptoRngCore;

use super::{
    MlKem512Ciphertext, MlKem512DecapsKey, MlKem512EncapsKey, MlKem768Ciphertext,
    MlKem768DecapsKey, MlKem768EncapsKey, MlKem1024Ciphertext, MlKem1024DecapsKey,
    MlKem1024EncapsKey,
};

/// Emits the unified-key impls for one ML-KEM parameter set.
macro_rules! ml_kem_key_impls {
    ($alg:ident, $dk:ident, $ek:ident, $ct:ident) => {
        impl Decapsulator for $dk {
            fn decapsulate(&self, ct: &[u8]) -> Result<Secret, Error> {
                // Parse the wire bytes into the fixed-width ciphertext type; a
                // wrong length is a decapsulation failure (caller fed us a bad
                // ciphertext).
                let bytes: [u8; <$ct>::BYTES] = ct.try_into().map_err(|_| Error::Decapsulation)?;
                let ct = <$ct>::from_bytes(bytes);
                let ss = self.decapsulate(&ct);
                Ok(Secret::from_bytes(ss.to_vec()))
            }
        }

        impl Encapsulator for $ek {
            fn encapsulate(&self, rng: &mut dyn CryptoRngCore) -> Result<(Vec<u8>, Secret), Error> {
                let mut rng = rng;
                let (ct, ss) = self.encapsulate(&mut rng);
                Ok((ct.to_bytes().to_vec(), Secret::from_bytes(ss.to_vec())))
            }
        }
    };
}

ml_kem_key_impls!(
    MlKem512,
    MlKem512DecapsKey,
    MlKem512EncapsKey,
    MlKem512Ciphertext
);
ml_kem_key_impls!(
    MlKem768,
    MlKem768DecapsKey,
    MlKem768EncapsKey,
    MlKem768Ciphertext
);
ml_kem_key_impls!(
    MlKem1024,
    MlKem1024DecapsKey,
    MlKem1024EncapsKey,
    MlKem1024Ciphertext
);