Add client_ed25519 authentication code.

This includes a subset of the code from https://github.com/CodesInChaos/Chaos.NaCl, which is in the public domain.

Signed-off-by: Bradley Grainger <[email protected]>

Author: bgrainger

MySqlConnector.sln

@@ -20,6 +20,8 @@ Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "MySqlConnector.Logging.Seri
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "MySqlConnector.Logging.NLog", "src\MySqlConnector.Logging.NLog\MySqlConnector.Logging.NLog.csproj", "{92015BEE-563A-4595-9243-0510D2B8767F}"
 EndProject
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "MySqlConnector.Authentication.Ed25519", "src\MySqlConnector.Authentication.Ed25519\MySqlConnector.Authentication.Ed25519.csproj", "{5DB4FA2E-910B-47CE-B467-F6852104D567}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -62,6 +64,10 @@ Global
 		{92015BEE-563A-4595-9243-0510D2B8767F}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{92015BEE-563A-4595-9243-0510D2B8767F}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{92015BEE-563A-4595-9243-0510D2B8767F}.Release|Any CPU.Build.0 = Release|Any CPU
+		{5DB4FA2E-910B-47CE-B467-F6852104D567}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{5DB4FA2E-910B-47CE-B467-F6852104D567}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{5DB4FA2E-910B-47CE-B467-F6852104D567}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{5DB4FA2E-910B-47CE-B467-F6852104D567}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE

src/MySqlConnector.Authentication.Ed25519/Chaos.NaCl/Internal/Ed25519Ref10/FieldElement.cs

@@ -0,0 +1,36 @@
+using System;
+
+namespace Chaos.NaCl.Internal.Ed25519Ref10
+{
+    internal struct FieldElement
+    {
+        internal int x0;
+        internal int x1;
+        internal int x2;
+        internal int x3;
+        internal int x4;
+        internal int x5;
+        internal int x6;
+        internal int x7;
+        internal int x8;
+        internal int x9;
+
+        //public static readonly FieldElement Zero = new FieldElement();
+        //public static readonly FieldElement One = new FieldElement() { x0 = 1 };
+
+        internal FieldElement(params int[] elements)
+        {
+            InternalAssert.Assert(elements.Length == 10, "elements.Length != 10");
+            x0 = elements[0];
+            x1 = elements[1];
+            x2 = elements[2];
+            x3 = elements[3];
+            x4 = elements[4];
+            x5 = elements[5];
+            x6 = elements[6];
+            x7 = elements[7];
+            x8 = elements[8];
+            x9 = elements[9];
+        }
+    }
+}

src/MySqlConnector.Authentication.Ed25519/Chaos.NaCl/Internal/Ed25519Ref10/GroupElement.cs

@@ -0,0 +1,55 @@
+using System;
+
+namespace Chaos.NaCl.Internal.Ed25519Ref10
+{
+	/*
+	ge means group element.
+
+	Here the group is the set of pairs (x,y) of field elements (see fe.h)
+	satisfying -x^2 + y^2 = 1 + d x^2y^2
+	where d = -121665/121666.
+
+	Representations:
+	  ge_p2 (projective): (X:Y:Z) satisfying x=X/Z, y=Y/Z
+	  ge_p3 (extended): (X:Y:Z:T) satisfying x=X/Z, y=Y/Z, XY=ZT
+	  ge_p1p1 (completed): ((X:Z),(Y:T)) satisfying x=X/Z, y=Y/T
+	  ge_precomp (Duif): (y+x,y-x,2dxy)
+	*/
+
+	internal struct GroupElementP2
+	{
+		public FieldElement X;
+		public FieldElement Y;
+		public FieldElement Z;
+	} ;
+
+	internal struct GroupElementP3
+	{
+		public FieldElement X;
+		public FieldElement Y;
+		public FieldElement Z;
+		public FieldElement T;
+	} ;
+
+	internal struct GroupElementP1P1
+	{
+		public FieldElement X;
+		public FieldElement Y;
+		public FieldElement Z;
+		public FieldElement T;
+	} ;
+
+	internal struct GroupElementPreComp
+	{
+		public FieldElement yplusx;
+		public FieldElement yminusx;
+		public FieldElement xy2d;
+
+		public GroupElementPreComp(FieldElement yplusx, FieldElement yminusx, FieldElement xy2d)
+		{
+			this.yplusx = yplusx;
+			this.yminusx = yminusx;
+			this.xy2d = xy2d;
+		}
+	} ;
+}

src/MySqlConnector.Authentication.Ed25519/Chaos.NaCl/Internal/Ed25519Ref10/base.cs

@@ -0,0 +1,9 @@
+using System;
+
+namespace Chaos.NaCl.Internal.Ed25519Ref10
+{
+	internal static partial class LookupTables
+	{
+		internal static FieldElement d = new FieldElement(-10913610, 13857413, -15372611, 6949391, 114729, -8787816, -6275908, -3247719, -18696448, -12055116);
+	}
+}

src/MySqlConnector.Authentication.Ed25519/Chaos.NaCl/Internal/Ed25519Ref10/d.cs

@@ -0,0 +1,9 @@
+using System;
+
+namespace Chaos.NaCl.Internal.Ed25519Ref10
+{
+	internal static partial class LookupTables
+	{
+		internal static FieldElement d2 = new FieldElement(-21827239, -5839606, -30745221, 13898782, 229458, 15978800, -12551817, -6495438, 29715968, 9444199);
+	}
+}

src/MySqlConnector.Authentication.Ed25519/Chaos.NaCl/Internal/Ed25519Ref10/d2.cs

@@ -0,0 +1,12 @@
+using System;
+
+namespace Chaos.NaCl.Internal.Ed25519Ref10
+{
+	internal static partial class FieldOperations
+	{
+		public static void fe_0(out FieldElement h)
+		{
+			h = default(FieldElement);
+		}
+	}
+}

src/MySqlConnector.Authentication.Ed25519/Chaos.NaCl/Internal/Ed25519Ref10/fe_0.cs

@@ -0,0 +1,13 @@
+using System;
+
+namespace Chaos.NaCl.Internal.Ed25519Ref10
+{
+	internal static partial class FieldOperations
+	{
+		public static void fe_1(out FieldElement h)
+		{
+			h = default(FieldElement);
+			h.x0 = 1;
+		}
+	}
+}

src/MySqlConnector.Authentication.Ed25519/Chaos.NaCl/Internal/Ed25519Ref10/fe_1.cs

@@ -0,0 +1,63 @@
+using System;
+
+namespace Chaos.NaCl.Internal.Ed25519Ref10
+{
+	internal static partial class FieldOperations
+	{
+		/*
+		h = f + g
+		Can overlap h with f or g.
+
+		Preconditions:
+		   |f| bounded by 1.1*2^25,1.1*2^24,1.1*2^25,1.1*2^24,etc.
+		   |g| bounded by 1.1*2^25,1.1*2^24,1.1*2^25,1.1*2^24,etc.
+
+		Postconditions:
+		   |h| bounded by 1.1*2^26,1.1*2^25,1.1*2^26,1.1*2^25,etc.
+		*/
+		//void fe_add(fe h,const fe f,const fe g)
+		internal static void fe_add(out FieldElement h, ref FieldElement f, ref FieldElement g)
+		{
+			Int32 f0 = f.x0;
+			Int32 f1 = f.x1;
+			Int32 f2 = f.x2;
+			Int32 f3 = f.x3;
+			Int32 f4 = f.x4;
+			Int32 f5 = f.x5;
+			Int32 f6 = f.x6;
+			Int32 f7 = f.x7;
+			Int32 f8 = f.x8;
+			Int32 f9 = f.x9;
+			Int32 g0 = g.x0;
+			Int32 g1 = g.x1;
+			Int32 g2 = g.x2;
+			Int32 g3 = g.x3;
+			Int32 g4 = g.x4;
+			Int32 g5 = g.x5;
+			Int32 g6 = g.x6;
+			Int32 g7 = g.x7;
+			Int32 g8 = g.x8;
+			Int32 g9 = g.x9;
+			Int32 h0 = f0 + g0;
+			Int32 h1 = f1 + g1;
+			Int32 h2 = f2 + g2;
+			Int32 h3 = f3 + g3;
+			Int32 h4 = f4 + g4;
+			Int32 h5 = f5 + g5;
+			Int32 h6 = f6 + g6;
+			Int32 h7 = f7 + g7;
+			Int32 h8 = f8 + g8;
+			Int32 h9 = f9 + g9;
+			h.x0 = h0;
+			h.x1 = h1;
+			h.x2 = h2;
+			h.x3 = h3;
+			h.x4 = h4;
+			h.x5 = h5;
+			h.x6 = h6;
+			h.x7 = h7;
+			h.x8 = h8;
+			h.x9 = h9;
+		}
+	}
+}

src/MySqlConnector.Authentication.Ed25519/Chaos.NaCl/Internal/Ed25519Ref10/fe_add.cs

@@ -0,0 +1,70 @@
+using System;
+
+namespace Chaos.NaCl.Internal.Ed25519Ref10
+{
+	internal static partial class FieldOperations
+	{
+		/*
+		Replace (f,g) with (g,g) if b == 1;
+		replace (f,g) with (f,g) if b == 0.
+
+		Preconditions: b in {0,1}.
+		*/
+
+		//void fe_cmov(fe f,const fe g,unsigned int b)
+		internal static void fe_cmov(ref FieldElement f, ref FieldElement g, int b)
+		{
+			Int32 f0 = f.x0;
+			Int32 f1 = f.x1;
+			Int32 f2 = f.x2;
+			Int32 f3 = f.x3;
+			Int32 f4 = f.x4;
+			Int32 f5 = f.x5;
+			Int32 f6 = f.x6;
+			Int32 f7 = f.x7;
+			Int32 f8 = f.x8;
+			Int32 f9 = f.x9;
+			Int32 g0 = g.x0;
+			Int32 g1 = g.x1;
+			Int32 g2 = g.x2;
+			Int32 g3 = g.x3;
+			Int32 g4 = g.x4;
+			Int32 g5 = g.x5;
+			Int32 g6 = g.x6;
+			Int32 g7 = g.x7;
+			Int32 g8 = g.x8;
+			Int32 g9 = g.x9;
+			Int32 x0 = f0 ^ g0;
+			Int32 x1 = f1 ^ g1;
+			Int32 x2 = f2 ^ g2;
+			Int32 x3 = f3 ^ g3;
+			Int32 x4 = f4 ^ g4;
+			Int32 x5 = f5 ^ g5;
+			Int32 x6 = f6 ^ g6;
+			Int32 x7 = f7 ^ g7;
+			Int32 x8 = f8 ^ g8;
+			Int32 x9 = f9 ^ g9;
+			b = -b;
+			x0 &= b;
+			x1 &= b;
+			x2 &= b;
+			x3 &= b;
+			x4 &= b;
+			x5 &= b;
+			x6 &= b;
+			x7 &= b;
+			x8 &= b;
+			x9 &= b;
+			f.x0 = f0 ^ x0;
+			f.x1 = f1 ^ x1;
+			f.x2 = f2 ^ x2;
+			f.x3 = f3 ^ x3;
+			f.x4 = f4 ^ x4;
+			f.x5 = f5 ^ x5;
+			f.x6 = f6 ^ x6;
+			f.x7 = f7 ^ x7;
+			f.x8 = f8 ^ x8;
+			f.x9 = f9 ^ x9;
+		}
+	}
+}