1*8fb009dcSAndroid Build Coastguard Worker /* Copyright (c) 2023, Google LLC 2*8fb009dcSAndroid Build Coastguard Worker * 3*8fb009dcSAndroid Build Coastguard Worker * Permission to use, copy, modify, and/or distribute this software for any 4*8fb009dcSAndroid Build Coastguard Worker * purpose with or without fee is hereby granted, provided that the above 5*8fb009dcSAndroid Build Coastguard Worker * copyright notice and this permission notice appear in all copies. 6*8fb009dcSAndroid Build Coastguard Worker * 7*8fb009dcSAndroid Build Coastguard Worker * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES 8*8fb009dcSAndroid Build Coastguard Worker * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF 9*8fb009dcSAndroid Build Coastguard Worker * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY 10*8fb009dcSAndroid Build Coastguard Worker * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES 11*8fb009dcSAndroid Build Coastguard Worker * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION 12*8fb009dcSAndroid Build Coastguard Worker * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN 13*8fb009dcSAndroid Build Coastguard Worker * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */ 14*8fb009dcSAndroid Build Coastguard Worker 15*8fb009dcSAndroid Build Coastguard Worker #ifndef OPENSSL_HEADER_DILITHIUM_H 16*8fb009dcSAndroid Build Coastguard Worker #define OPENSSL_HEADER_DILITHIUM_H 17*8fb009dcSAndroid Build Coastguard Worker 18*8fb009dcSAndroid Build Coastguard Worker #include <openssl/base.h> 19*8fb009dcSAndroid Build Coastguard Worker 20*8fb009dcSAndroid Build Coastguard Worker #if defined(__cplusplus) 21*8fb009dcSAndroid Build Coastguard Worker extern "C" { 22*8fb009dcSAndroid Build Coastguard Worker #endif 23*8fb009dcSAndroid Build Coastguard Worker 24*8fb009dcSAndroid Build Coastguard Worker 25*8fb009dcSAndroid Build Coastguard Worker #if defined(OPENSSL_UNSTABLE_EXPERIMENTAL_DILITHIUM) 26*8fb009dcSAndroid Build Coastguard Worker // This header implements experimental, draft versions of not-yet-standardized 27*8fb009dcSAndroid Build Coastguard Worker // primitives. When the standard is complete, these functions will be removed 28*8fb009dcSAndroid Build Coastguard Worker // and replaced with the final, incompatible standard version. They are 29*8fb009dcSAndroid Build Coastguard Worker // available now for short-lived experiments, but must not be deployed anywhere 30*8fb009dcSAndroid Build Coastguard Worker // durable, such as a long-lived key store. To use these functions define 31*8fb009dcSAndroid Build Coastguard Worker // OPENSSL_UNSTABLE_EXPERIMENTAL_DILITHIUM. 32*8fb009dcSAndroid Build Coastguard Worker 33*8fb009dcSAndroid Build Coastguard Worker // Dilithium3. 34*8fb009dcSAndroid Build Coastguard Worker 35*8fb009dcSAndroid Build Coastguard Worker 36*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_private_key contains a Dilithium3 private key. The contents of this 37*8fb009dcSAndroid Build Coastguard Worker // object should never leave the address space since the format is unstable. 38*8fb009dcSAndroid Build Coastguard Worker struct DILITHIUM_private_key { 39*8fb009dcSAndroid Build Coastguard Worker union { 40*8fb009dcSAndroid Build Coastguard Worker uint8_t bytes[32 + 32 + 64 + 256 * 4 * (5 + 6 + 6)]; 41*8fb009dcSAndroid Build Coastguard Worker uint32_t alignment; 42*8fb009dcSAndroid Build Coastguard Worker } opaque; 43*8fb009dcSAndroid Build Coastguard Worker }; 44*8fb009dcSAndroid Build Coastguard Worker 45*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_public_key contains a Dilithium3 public key. The contents of this 46*8fb009dcSAndroid Build Coastguard Worker // object should never leave the address space since the format is unstable. 47*8fb009dcSAndroid Build Coastguard Worker struct DILITHIUM_public_key { 48*8fb009dcSAndroid Build Coastguard Worker union { 49*8fb009dcSAndroid Build Coastguard Worker uint8_t bytes[32 + 64 + 256 * 4 * 6]; 50*8fb009dcSAndroid Build Coastguard Worker uint32_t alignment; 51*8fb009dcSAndroid Build Coastguard Worker } opaque; 52*8fb009dcSAndroid Build Coastguard Worker }; 53*8fb009dcSAndroid Build Coastguard Worker 54*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_PRIVATE_KEY_BYTES is the number of bytes in an encoded Dilithium3 55*8fb009dcSAndroid Build Coastguard Worker // private key. 56*8fb009dcSAndroid Build Coastguard Worker #define DILITHIUM_PRIVATE_KEY_BYTES 4032 57*8fb009dcSAndroid Build Coastguard Worker 58*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_PUBLIC_KEY_BYTES is the number of bytes in an encoded Dilithium3 59*8fb009dcSAndroid Build Coastguard Worker // public key. 60*8fb009dcSAndroid Build Coastguard Worker #define DILITHIUM_PUBLIC_KEY_BYTES 1952 61*8fb009dcSAndroid Build Coastguard Worker 62*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_SIGNATURE_BYTES is the number of bytes in an encoded Dilithium3 63*8fb009dcSAndroid Build Coastguard Worker // signature. 64*8fb009dcSAndroid Build Coastguard Worker #define DILITHIUM_SIGNATURE_BYTES 3309 65*8fb009dcSAndroid Build Coastguard Worker 66*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_generate_key generates a random public/private key pair, writes the 67*8fb009dcSAndroid Build Coastguard Worker // encoded public key to |out_encoded_public_key| and sets |out_private_key| to 68*8fb009dcSAndroid Build Coastguard Worker // the private key. Returns 1 on success and 0 on failure. 69*8fb009dcSAndroid Build Coastguard Worker OPENSSL_EXPORT int DILITHIUM_generate_key( 70*8fb009dcSAndroid Build Coastguard Worker uint8_t out_encoded_public_key[DILITHIUM_PUBLIC_KEY_BYTES], 71*8fb009dcSAndroid Build Coastguard Worker struct DILITHIUM_private_key *out_private_key); 72*8fb009dcSAndroid Build Coastguard Worker 73*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_public_from_private sets |*out_public_key| to the public key that 74*8fb009dcSAndroid Build Coastguard Worker // corresponds to |private_key|. Returns 1 on success and 0 on failure. 75*8fb009dcSAndroid Build Coastguard Worker OPENSSL_EXPORT int DILITHIUM_public_from_private( 76*8fb009dcSAndroid Build Coastguard Worker struct DILITHIUM_public_key *out_public_key, 77*8fb009dcSAndroid Build Coastguard Worker const struct DILITHIUM_private_key *private_key); 78*8fb009dcSAndroid Build Coastguard Worker 79*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_sign generates a signature for the message |msg| of length 80*8fb009dcSAndroid Build Coastguard Worker // |msg_len| using |private_key| following the randomized algorithm, and writes 81*8fb009dcSAndroid Build Coastguard Worker // the encoded signature to |out_encoded_signature|. Returns 1 on success and 0 82*8fb009dcSAndroid Build Coastguard Worker // on failure. 83*8fb009dcSAndroid Build Coastguard Worker OPENSSL_EXPORT int DILITHIUM_sign( 84*8fb009dcSAndroid Build Coastguard Worker uint8_t out_encoded_signature[DILITHIUM_SIGNATURE_BYTES], 85*8fb009dcSAndroid Build Coastguard Worker const struct DILITHIUM_private_key *private_key, const uint8_t *msg, 86*8fb009dcSAndroid Build Coastguard Worker size_t msg_len); 87*8fb009dcSAndroid Build Coastguard Worker 88*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_verify verifies that |encoded_signature| constitutes a valid 89*8fb009dcSAndroid Build Coastguard Worker // signature for the message |msg| of length |msg_len| using |public_key|. 90*8fb009dcSAndroid Build Coastguard Worker OPENSSL_EXPORT int DILITHIUM_verify( 91*8fb009dcSAndroid Build Coastguard Worker const struct DILITHIUM_public_key *public_key, 92*8fb009dcSAndroid Build Coastguard Worker const uint8_t encoded_signature[DILITHIUM_SIGNATURE_BYTES], 93*8fb009dcSAndroid Build Coastguard Worker const uint8_t *msg, size_t msg_len); 94*8fb009dcSAndroid Build Coastguard Worker 95*8fb009dcSAndroid Build Coastguard Worker 96*8fb009dcSAndroid Build Coastguard Worker // Serialisation of keys. 97*8fb009dcSAndroid Build Coastguard Worker 98*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_marshal_public_key serializes |public_key| to |out| in the standard 99*8fb009dcSAndroid Build Coastguard Worker // format for Dilithium public keys. It returns one on success or zero on 100*8fb009dcSAndroid Build Coastguard Worker // allocation error. 101*8fb009dcSAndroid Build Coastguard Worker OPENSSL_EXPORT int DILITHIUM_marshal_public_key( 102*8fb009dcSAndroid Build Coastguard Worker CBB *out, const struct DILITHIUM_public_key *public_key); 103*8fb009dcSAndroid Build Coastguard Worker 104*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_parse_public_key parses a public key, in the format generated by 105*8fb009dcSAndroid Build Coastguard Worker // |DILITHIUM_marshal_public_key|, from |in| and writes the result to 106*8fb009dcSAndroid Build Coastguard Worker // |out_public_key|. It returns one on success or zero on parse error or if 107*8fb009dcSAndroid Build Coastguard Worker // there are trailing bytes in |in|. 108*8fb009dcSAndroid Build Coastguard Worker OPENSSL_EXPORT int DILITHIUM_parse_public_key( 109*8fb009dcSAndroid Build Coastguard Worker struct DILITHIUM_public_key *public_key, CBS *in); 110*8fb009dcSAndroid Build Coastguard Worker 111*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_marshal_private_key serializes |private_key| to |out| in the 112*8fb009dcSAndroid Build Coastguard Worker // standard format for Dilithium private keys. It returns one on success or zero 113*8fb009dcSAndroid Build Coastguard Worker // on allocation error. 114*8fb009dcSAndroid Build Coastguard Worker OPENSSL_EXPORT int DILITHIUM_marshal_private_key( 115*8fb009dcSAndroid Build Coastguard Worker CBB *out, const struct DILITHIUM_private_key *private_key); 116*8fb009dcSAndroid Build Coastguard Worker 117*8fb009dcSAndroid Build Coastguard Worker // DILITHIUM_parse_private_key parses a private key, in the format generated by 118*8fb009dcSAndroid Build Coastguard Worker // |DILITHIUM_marshal_private_key|, from |in| and writes the result to 119*8fb009dcSAndroid Build Coastguard Worker // |out_private_key|. It returns one on success or zero on parse error or if 120*8fb009dcSAndroid Build Coastguard Worker // there are trailing bytes in |in|. 121*8fb009dcSAndroid Build Coastguard Worker OPENSSL_EXPORT int DILITHIUM_parse_private_key( 122*8fb009dcSAndroid Build Coastguard Worker struct DILITHIUM_private_key *private_key, CBS *in); 123*8fb009dcSAndroid Build Coastguard Worker 124*8fb009dcSAndroid Build Coastguard Worker #endif // OPENSSL_UNSTABLE_EXPERIMENTAL_DILITHIUM 125*8fb009dcSAndroid Build Coastguard Worker 126*8fb009dcSAndroid Build Coastguard Worker 127*8fb009dcSAndroid Build Coastguard Worker #if defined(__cplusplus) 128*8fb009dcSAndroid Build Coastguard Worker } // extern C 129*8fb009dcSAndroid Build Coastguard Worker #endif 130*8fb009dcSAndroid Build Coastguard Worker 131*8fb009dcSAndroid Build Coastguard Worker #endif // OPENSSL_HEADER_DILITHIUM_H 132