Generalise ML-DSA with GYB (#355)

fpseverino · web-flow · commit 0d32399af859 · 2025-06-04T08:07:18.000+01:00
Generalises the definition of ML-DSA algorithms with GYB to allow the addition of other parameter sets in the future ### Checklist - [X] I've run tests to see all new and existing tests pass - [X] I've followed the code style of the rest of the project - [X] I've read the [Contribution Guidelines](CONTRIBUTING.md) - [X] I've updated the documentation if necessary #### If you've made changes to `gyb` files - [X] I've run `.script/generate_boilerplate_files_with_gyb` and included updated generated files in a commit of this pull request ### Motivation: BoringSSL recently [made ML-DSA-87 public](https://boringssl.googlesource.com/boringssl/+/2a514a51baebd5a232fc64f7b082f7a8b28cd29d) in its API, in addition to ML-DSA-65 which has already been [integrated into Swift Crypto](#267). By generating the code with GYB we will be able to add support for ML-DSA-87 very easily in the future when the vendored version of BoringSSL is updated. ### Modifications: Generate the code for `MLDSA65` (and in future also for `MLDSA87`) with GYB. ### Result: Nothing changes in the public API, but adding `MLDSA87` in the future will be instantaneous.
diff --git a/Sources/_CryptoExtras/CMakeLists.txt b/Sources/_CryptoExtras/CMakeLists.txt
@@ -41,7 +41,7 @@ add_library(_CryptoExtras
   "Key Derivation/PBKDF2/PBKDF2.swift"
   "Key Derivation/Scrypt/BoringSSL/Scrypt_boring.swift"
   "Key Derivation/Scrypt/Scrypt.swift"
-  "MLDSA/MLDSA65_boring.swift"
+  "MLDSA/MLDSA_boring.swift"
   "MLKEM/MLKEM_boring.swift"
   "OPRFs/OPRF.swift"
   "OPRFs/OPRFClient.swift"
diff --git a/Sources/_CryptoExtras/MLDSA/MLDSA_boring.swift b/Sources/_CryptoExtras/MLDSA/MLDSA_boring.swift
@@ -12,6 +12,10 @@
 //
 //===----------------------------------------------------------------------===//
 
+// MARK: - Generated file, do NOT edit
+// any edits of this file WILL be overwritten and thus discarded
+// see section `gyb` in `README` for details.
+
 @_implementationOnly import CCryptoBoringSSL
 import Crypto
 import Foundation
@@ -86,7 +90,7 @@ extension MLDSA65 {
 
                 self.seed = try withUnsafeTemporaryAllocation(
                     of: UInt8.self,
-                    capacity: MLDSA65.seedByteCount
+                    capacity: MLDSA.seedByteCount
                 ) { seedPtr in
                     try withUnsafeTemporaryAllocation(
                         of: UInt8.self,
@@ -102,7 +106,7 @@ extension MLDSA65 {
                             throw CryptoKitError.internalBoringSSLError()
                         }
 
-                        return Data(bytes: seedPtr.baseAddress!, count: MLDSA65.seedByteCount)
+                        return Data(bytes: seedPtr.baseAddress!, count: MLDSA.seedByteCount)
                     }
                 }
             }
@@ -113,7 +117,7 @@ extension MLDSA65 {
             ///
             /// - Throws: `CryptoKitError.incorrectKeySize` if the seed is not 32 bytes long.
             init(seedRepresentation: some DataProtocol) throws {
-                guard seedRepresentation.count == MLDSA65.seedByteCount else {
+                guard seedRepresentation.count == MLDSA.seedByteCount else {
                     throw CryptoKitError.incorrectKeySize
                 }
 
@@ -125,7 +129,7 @@ extension MLDSA65 {
                         CCryptoBoringSSL_MLDSA65_private_key_from_seed(
                             &self.key,
                             seedPtr.baseAddress,
-                            MLDSA65.seedByteCount
+                            MLDSA.seedByteCount
                         )
                     }) == 1
                 else {
@@ -172,7 +176,7 @@ extension MLDSA65 {
             }
 
             /// The size of the private key in bytes.
-            static let byteCount = 4032
+            static let byteCount = Int(MLDSA65_PRIVATE_KEY_BYTES)
         }
     }
 }
@@ -311,16 +315,18 @@ extension MLDSA65 {
             }
 
             /// The size of the public key in bytes.
-            static let byteCount = 1952
+            static let byteCount = Int(MLDSA65_PUBLIC_KEY_BYTES)
         }
     }
 }
 
 @available(macOS 10.15, iOS 13, watchOS 6, tvOS 13, macCatalyst 13, visionOS 1.0, *)
 extension MLDSA65 {
-    /// The size of the seed in bytes.
-    private static let seedByteCount = 32
-
     /// The size of the signature in bytes.
-    private static let signatureByteCount = 3309
+    private static let signatureByteCount = Int(MLDSA65_SIGNATURE_BYTES)
+}
+
+private enum MLDSA {
+    /// The size of the seed in bytes.
+    fileprivate static let seedByteCount = 32
 }
diff --git a/Sources/_CryptoExtras/MLDSA/MLDSA_boring.swift.gyb b/Sources/_CryptoExtras/MLDSA/MLDSA_boring.swift.gyb

Original file line number	Diff line number	Diff line change
`@@ -12,6 +12,10 @@`
`12`	`12`	`//`
`13`	`13`	`//===----------------------------------------------------------------------===//`
`14`	`14`
	`15`	`+// MARK: - Generated file, do NOT edit`
	`16`	`+// any edits of this file WILL be overwritten and thus discarded`
	`17`	+// see section `gyb` in `README` for details.
	`18`	`+`
`15`	`19`	`@_implementationOnly import CCryptoBoringSSL`
`16`	`20`	`import Crypto`
`17`	`21`	`import Foundation`
`@@ -86,7 +90,7 @@ extension MLDSA65 {`
`86`	`90`
`87`	`91`	`self.seed = try withUnsafeTemporaryAllocation(`
`88`	`92`	`of: UInt8.self,`
`89`		`- capacity: MLDSA65.seedByteCount`
	`93`	`+ capacity: MLDSA.seedByteCount`
`90`	`94`	`) { seedPtr in`
`91`	`95`	`try withUnsafeTemporaryAllocation(`
`92`	`96`	`of: UInt8.self,`
`@@ -102,7 +106,7 @@ extension MLDSA65 {`
`102`	`106`	`throw CryptoKitError.internalBoringSSLError()`
`103`	`107`	`}`
`104`	`108`
`105`		`- return Data(bytes: seedPtr.baseAddress!, count: MLDSA65.seedByteCount)`
	`109`	`+ return Data(bytes: seedPtr.baseAddress!, count: MLDSA.seedByteCount)`
`106`	`110`	`}`
`107`	`111`	`}`
`108`	`112`	`}`
`@@ -113,7 +117,7 @@ extension MLDSA65 {`
`113`	`117`	`///`
`114`	`118`	/// - Throws: `CryptoKitError.incorrectKeySize` if the seed is not 32 bytes long.
`115`	`119`	`init(seedRepresentation: some DataProtocol) throws {`
`116`		`- guard seedRepresentation.count == MLDSA65.seedByteCount else {`
	`120`	`+ guard seedRepresentation.count == MLDSA.seedByteCount else {`
`117`	`121`	`throw CryptoKitError.incorrectKeySize`
`118`	`122`	`}`
`119`	`123`
`@@ -125,7 +129,7 @@ extension MLDSA65 {`
`125`	`129`	`CCryptoBoringSSL_MLDSA65_private_key_from_seed(`
`126`	`130`	`&self.key,`
`127`	`131`	`seedPtr.baseAddress,`
`128`		`- MLDSA65.seedByteCount`
	`132`	`+ MLDSA.seedByteCount`
`129`	`133`	`)`
`130`	`134`	`}) == 1`
`131`	`135`	`else {`
`@@ -172,7 +176,7 @@ extension MLDSA65 {`
`172`	`176`	`}`
`173`	`177`
`174`	`178`	`/// The size of the private key in bytes.`
`175`		`- static let byteCount = 4032`
	`179`	`+ static let byteCount = Int(MLDSA65_PRIVATE_KEY_BYTES)`
`176`	`180`	`}`
`177`	`181`	`}`
`178`	`182`	`}`
`@@ -311,16 +315,18 @@ extension MLDSA65 {`
`311`	`315`	`}`
`312`	`316`
`313`	`317`	`/// The size of the public key in bytes.`
`314`		`- static let byteCount = 1952`
	`318`	`+ static let byteCount = Int(MLDSA65_PUBLIC_KEY_BYTES)`
`315`	`319`	`}`
`316`	`320`	`}`
`317`	`321`	`}`
`318`	`322`
`319`	`323`	`@available(macOS 10.15, iOS 13, watchOS 6, tvOS 13, macCatalyst 13, visionOS 1.0, *)`
`320`	`324`	`extension MLDSA65 {`
`321`		`- /// The size of the seed in bytes.`
`322`		`- private static let seedByteCount = 32`
`323`		`-`
`324`	`325`	`/// The size of the signature in bytes.`
`325`		`- private static let signatureByteCount = 3309`
	`326`	`+ private static let signatureByteCount = Int(MLDSA65_SIGNATURE_BYTES)`
	`327`	`+}`
	`328`	`+`
	`329`	`+private enum MLDSA {`
	`330`	`+ /// The size of the seed in bytes.`
	`331`	`+ fileprivate static let seedByteCount = 32`
`326`	`332`	`}`