This repository contains an analysis of how the curve25519-dalek public API functions are used within the libsignal codebase.
- Total public functions in curve25519-dalek: 557
- Functions with non-empty call graphs: 119
This analysis generated call graphs showing the relationships between curve25519-dalek public API functions and their usage in libsignal. Out of 557 total public functions, methods, and constants in the curve25519-dalek library, 119 functions have non-empty call graphs indicating they are referenced in libsignal code.
The generated graphs are stored as SVG files in the curve25519-dalek_public_apis_graphs directory, with each graph visualizing the call relationships for a specific function. The names of the 119 sink nodes are enumerated here.
curve25519-dalek-public-api.json- Complete listing of all public APIs in curve25519-dalek v4.1.3curve25519_dalek_svg_files.md- Index of all 119 generated SVG graph filescurve25519-dalek_public_apis_graphs/processing_results.json- Processing statistics and metadata
The script extract_grey_nodes.py lists the unique grey nodes and confirms that any curve25519-dalek node in any graph appears in curve25519_dalek_svg_files.md, meaning, it should be the sink node of a graph. So the 119 functions should be all functions called in signal: say we have f appear in one of the graphs; if f calls g, then g is one of the 119 functions and appears in one of the graphs.
Blue nodes correspond to functions from libisignal. Grey nodes correspond to functions from curve25119_dalek and green denotes the function which is given as input.
For each public function f from this json (with a more readable variant as an md file), a 5 depth graph is generated like this: say g1, ..., gk call f; we add all gi -> f edges; we add g1 ...gk to process and reiterate for 4 more iterations; then we filter the graph so we see only the paths starting from a function which is in libsignal. (the callers we get from a big json file which is generated with rust-analyzer and scip).
To take as example pub fn add(a: &Scalar52, b: &Scalar52) -> (s: Scalar52) from this graph:
addis called byfrom_bytes_widein the same file -from_bytes_wideis called byfrom_bytes_mod_order_widein src/scalar.rs;from_bytes_mod_order_wideis called byfrom_hashat this line;from_hashis called bycalculate_signaturein libsignal
(The svgs can be downloaded and opened with firefox, for better navigation and to see the body of the functions by hovering over the nodes.)