curve25519_dalek::edwards

Struct CompressedEdwardsY

Source 
pub struct CompressedEdwardsY(pub [u8; 32]);
Expand description

In “Edwards y” / “Ed25519” format, the curve point \((x,y)\) is determined by the \(y\)-coordinate and the sign of \(x\).

The first 255 bits of a CompressedEdwardsY represent the \(y\)-coordinate. The high bit of the 32nd byte gives the sign of \(x\).

Tuple Fields§

§0: [u8; 32]

Implementations§

Source§

impl CompressedEdwardsY

Source

pub const fn as_bytes(&self) -> &[u8; 32]

View this CompressedEdwardsY as an array of bytes.

✓✓ Lean specification
theorem as_bytes_spec (self : CompressedEdwardsY) :
    as_bytes self ⦃ (result : Array U8 32#usize) =>
      result = self ⦄
Source

pub const fn to_bytes(&self) -> [u8; 32]

Copy this CompressedEdwardsY to an array of bytes.

Source

pub fn decompress(&self) -> Option<EdwardsPoint>

Attempt to decompress to an EdwardsPoint.

Returns None if the input is not the \(y\)-coordinate of a curve point.

✓✓ Lean specification
theorem decompress_spec (self : CompressedEdwardsY) :
    decompress self ⦃ (result : Option EdwardsPoint) =>
      let y : CurveField := ((U8x32_as_Nat self % 2 ^ 255 : Nat) : CurveField)
      let x_sign_bit := self[31]!.val.testBit 7
      (result.isSome ↔ ∃ pt : Point Ed25519, pt.y = y) ∧
      (∀ ep, result = some ep →
        ep.IsValid ∧
        ep.Y.toField = y ∧
        Field51_as_Nat ep.Y ≡ (U8x32_as_Nat self % 2 ^ 255) [MOD p] ∧
        ep.Z.toField = 1 ∧
        Field51_as_Nat ep.Z % p = 1 ∧
        (y ^ 21 →
          (x_sign_bit ↔ (Field51_as_Nat ep.X % p) % 2 = 1))) ⦄
Source§

impl CompressedEdwardsY

Source

pub fn from_slice(bytes: &[u8]) -> Result<CompressedEdwardsY, TryFromSliceError>

Construct a CompressedEdwardsY from a slice of bytes.

§Errors

Returns TryFromSliceError if the input bytes slice does not have a length of 32.

✓✓ Lean specification
theorem from_slice_spec
    (bytes : Slice U8) :
    from_slice bytes ⦃
      (result : core.result.Result CompressedEdwardsY core.array.TryFromSliceError) =>
      (bytes.length = 32 → ∃ cey : CompressedEdwardsY, result = .Ok cey ∧ cey.val = bytes.val) ∧
      (bytes.length ≠ 32 → result = .Err ()) ⦄

Trait Implementations§

Source§

impl Clone for CompressedEdwardsY

Source§

fn clone(&self) -> CompressedEdwardsY

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl ConstantTimeEq for CompressedEdwardsY

Source§

fn ct_eq(&self, other: &CompressedEdwardsY) -> Choice

Determine if two items are equal. Read more
✓✓ Lean specification
theorem ct_eq_spec
    (self other : CompressedEdwardsY) :
    ct_eq self other ⦃ (result : subtle.Choice) =>
      result = Choice.one ↔ self = other ⦄
Source§

fn ct_ne(&self, other: &Self) -> Choice

Determine if two items are NOT equal. Read more
Source§

impl Debug for CompressedEdwardsY

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl Default for CompressedEdwardsY

Source§

fn default() -> CompressedEdwardsY

Returns the “default value” for a type. Read more
Source§

impl Hash for CompressedEdwardsY

Source§

fn hash<__H: Hasher>(&self, state: &mut __H)

Feeds this value into the given Hasher. Read more
1.3.0 · Source§

fn hash_slice<H>(data: &[Self], state: &mut H)
where H: Hasher, Self: Sized,

Feeds a slice of this type into the given Hasher. Read more
Source§

impl Identity for CompressedEdwardsY

Source§

fn identity() -> CompressedEdwardsY

Returns the identity element of the curve. Can be used as a constructor.
✓✓ Lean specification
theorem identity_spec :
    identity ⦃ (result : CompressedEdwardsY) =>
      U8x32_as_Nat result = 1
Source§

impl PartialEq for CompressedEdwardsY

Source§

fn eq(&self, other: &CompressedEdwardsY) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl TryFrom<&[u8]> for CompressedEdwardsY

Source§

type Error = TryFromSliceError

The type returned in the event of a conversion error.
Source§

fn try_from(slice: &[u8]) -> Result<CompressedEdwardsY, TryFromSliceError>

Performs the conversion.
Source§

impl Zeroize for CompressedEdwardsY

Available on crate feature zeroize only.
Source§

fn zeroize(&mut self)

Reset this CompressedEdwardsY to the compressed form of the identity element.

Source§

impl Copy for CompressedEdwardsY

Source§

impl Eq for CompressedEdwardsY

Source§

impl StructuralPartialEq for CompressedEdwardsY

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> IsIdentity for T
where T: ConstantTimeEq + Identity,

Source§

fn is_identity(&self) -> bool

Return true if this element is the identity element of the curve.
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.