|
|
- package crypto
-
- import (
- "bytes"
- "crypto/sha256"
-
- secp256k1 "github.com/btcsuite/btcd/btcec"
- "github.com/tendermint/ed25519"
- "github.com/tendermint/ed25519/extra25519"
- "github.com/tendermint/go-wire"
- data "github.com/tendermint/go-wire/data"
- . "github.com/tendermint/tmlibs/common"
- "golang.org/x/crypto/ripemd160"
- )
-
- func PubKeyFromBytes(pubKeyBytes []byte) (pubKey PubKey, err error) {
- err = wire.ReadBinaryBytes(pubKeyBytes, &pubKey)
- return
- }
-
- //----------------------------------------
-
- // DO NOT USE THIS INTERFACE.
- // You probably want to use PubKey
- // +gen wrapper:"PubKey,Impl[PubKeyEd25519,PubKeySecp256k1],ed25519,secp256k1"
- type PubKeyInner interface {
- AssertIsPubKeyInner()
- Address() []byte
- Bytes() []byte
- KeyString() string
- VerifyBytes(msg []byte, sig Signature) bool
- Equals(PubKey) bool
- Wrap() PubKey
- }
-
- //-------------------------------------
-
- var _ PubKeyInner = PubKeyEd25519{}
-
- // Implements PubKeyInner
- type PubKeyEd25519 [32]byte
-
- func (pubKey PubKeyEd25519) AssertIsPubKeyInner() {}
-
- func (pubKey PubKeyEd25519) Address() []byte {
- w, n, err := new(bytes.Buffer), new(int), new(error)
- wire.WriteBinary(pubKey[:], w, n, err)
- if *err != nil {
- PanicCrisis(*err)
- }
- // append type byte
- encodedPubkey := append([]byte{TypeEd25519}, w.Bytes()...)
- hasher := ripemd160.New()
- hasher.Write(encodedPubkey) // does not error
- return hasher.Sum(nil)
- }
-
- func (pubKey PubKeyEd25519) Bytes() []byte {
- return wire.BinaryBytes(PubKey{pubKey})
- }
-
- func (pubKey PubKeyEd25519) VerifyBytes(msg []byte, sig_ Signature) bool {
- // make sure we use the same algorithm to sign
- sig, ok := sig_.Unwrap().(SignatureEd25519)
- if !ok {
- return false
- }
- pubKeyBytes := [32]byte(pubKey)
- sigBytes := [64]byte(sig)
- return ed25519.Verify(&pubKeyBytes, msg, &sigBytes)
- }
-
- func (p PubKeyEd25519) MarshalJSON() ([]byte, error) {
- return data.Encoder.Marshal(p[:])
- }
-
- func (p *PubKeyEd25519) UnmarshalJSON(enc []byte) error {
- var ref []byte
- err := data.Encoder.Unmarshal(&ref, enc)
- copy(p[:], ref)
- return err
- }
-
- // For use with golang/crypto/nacl/box
- // If error, returns nil.
- func (pubKey PubKeyEd25519) ToCurve25519() *[32]byte {
- keyCurve25519, pubKeyBytes := new([32]byte), [32]byte(pubKey)
- ok := extra25519.PublicKeyToCurve25519(keyCurve25519, &pubKeyBytes)
- if !ok {
- return nil
- }
- return keyCurve25519
- }
-
- func (pubKey PubKeyEd25519) String() string {
- return Fmt("PubKeyEd25519{%X}", pubKey[:])
- }
-
- // Must return the full bytes in hex.
- // Used for map keying, etc.
- func (pubKey PubKeyEd25519) KeyString() string {
- return Fmt("%X", pubKey[:])
- }
-
- func (pubKey PubKeyEd25519) Equals(other PubKey) bool {
- if otherEd, ok := other.Unwrap().(PubKeyEd25519); ok {
- return bytes.Equal(pubKey[:], otherEd[:])
- } else {
- return false
- }
- }
-
- //-------------------------------------
-
- var _ PubKeyInner = PubKeySecp256k1{}
-
- // Implements PubKey.
- // Compressed pubkey (just the x-cord),
- // prefixed with 0x02 or 0x03, depending on the y-cord.
- type PubKeySecp256k1 [33]byte
-
- func (pubKey PubKeySecp256k1) AssertIsPubKeyInner() {}
-
- // Implements Bitcoin style addresses: RIPEMD160(SHA256(pubkey))
- func (pubKey PubKeySecp256k1) Address() []byte {
- hasherSHA256 := sha256.New()
- hasherSHA256.Write(pubKey[:]) // does not error
- sha := hasherSHA256.Sum(nil)
-
- hasherRIPEMD160 := ripemd160.New()
- hasherRIPEMD160.Write(sha) // does not error
- return hasherRIPEMD160.Sum(nil)
- }
-
- func (pubKey PubKeySecp256k1) Bytes() []byte {
- return wire.BinaryBytes(PubKey{pubKey})
- }
-
- func (pubKey PubKeySecp256k1) VerifyBytes(msg []byte, sig_ Signature) bool {
- // and assert same algorithm to sign and verify
- sig, ok := sig_.Unwrap().(SignatureSecp256k1)
- if !ok {
- return false
- }
-
- pub__, err := secp256k1.ParsePubKey(pubKey[:], secp256k1.S256())
- if err != nil {
- return false
- }
- sig__, err := secp256k1.ParseDERSignature(sig[:], secp256k1.S256())
- if err != nil {
- return false
- }
- return sig__.Verify(Sha256(msg), pub__)
- }
-
- func (p PubKeySecp256k1) MarshalJSON() ([]byte, error) {
- return data.Encoder.Marshal(p[:])
- }
-
- func (p *PubKeySecp256k1) UnmarshalJSON(enc []byte) error {
- var ref []byte
- err := data.Encoder.Unmarshal(&ref, enc)
- copy(p[:], ref)
- return err
- }
-
- func (pubKey PubKeySecp256k1) String() string {
- return Fmt("PubKeySecp256k1{%X}", pubKey[:])
- }
-
- // Must return the full bytes in hex.
- // Used for map keying, etc.
- func (pubKey PubKeySecp256k1) KeyString() string {
- return Fmt("%X", pubKey[:])
- }
-
- func (pubKey PubKeySecp256k1) Equals(other PubKey) bool {
- if otherSecp, ok := other.Unwrap().(PubKeySecp256k1); ok {
- return bytes.Equal(pubKey[:], otherSecp[:])
- } else {
- return false
- }
- }
|