zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
142 Commits
183 Branches
291 MiB
Tree: eaf4b8c795
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'eaf4b8c795'
${ noResults }
tendermint/priv_key.go

201 lines
5.4 KiB
Raw Normal View History

update package name
9 years ago
first commit
9 years ago
make PrivateKey + Signature comparisons use constant time comparisons Fixes https://github.com/tendermint/go-crypto/issues/43 Avoid susceptibility to timing/side channel attacks by ensuring that private key and signature comparisons use `subtle.ConstantTimeCompare` instead of `bytes.Equal`
7 years ago
PrivKey.Equals
9 years ago
Add secp256k1 support
9 years ago
first commit
9 years ago
Codegen wrappers for privkey and signature as well
8 years ago
first commit
9 years ago
Cleanup; Implement .Wrap()
8 years ago
Better docs and naming thanks to bucky
8 years ago
Cleanup; Implement .Wrap()
8 years ago
Better docs and naming thanks to bucky
8 years ago
Cleanup; Implement .Wrap()
8 years ago
Change codegen name holder->wrapper
7 years ago
Use new naming scheme PubKey{PubKeyInner}
8 years ago
Cleanup; Implement .Wrap()
8 years ago
Added Bytes() and *FromBytes()
9 years ago
first commit
9 years ago
PrivKey.Equals
9 years ago
Cleanup; Implement .Wrap()
8 years ago
first commit
9 years ago
Add type assertions for sig/pub/privkey implemenetations
8 years ago
first commit
9 years ago
Cleanup; Implement .Wrap()
8 years ago
Added Bytes() and *FromBytes()
9 years ago
Use new naming scheme PubKey{PubKeyInner}
8 years ago
Added Bytes() and *FromBytes()
9 years ago
Add secp256k1 support
9 years ago
first commit
9 years ago
Cleanup; Implement .Wrap()
8 years ago
first commit
9 years ago
Use new naming scheme PubKey{PubKeyInner}
8 years ago
Cleanup; Implement .Wrap()
8 years ago
first commit
9 years ago
fix Equals
7 years ago
PrivKey.Equals
9 years ago
Use new naming scheme PubKey{PubKeyInner}
8 years ago
fix Equals
7 years ago
PrivKey.Equals
9 years ago
Add structs for go-data support
8 years ago
first commit
9 years ago
Add secp256k1 support
9 years ago
first commit
9 years ago
Add secp256k1 support
9 years ago
first commit
9 years ago
Added Bytes() and *FromBytes()
9 years ago
first commit
9 years ago
Fix bug in GenPrivKeyEd25519FromSecret
9 years ago
first commit
9 years ago
Add secp256k1 support
9 years ago
Add type assertions for sig/pub/privkey implemenetations
8 years ago
Add secp256k1 support
9 years ago
Cleanup; Implement .Wrap()
8 years ago
Add secp256k1 support
9 years ago
Use new naming scheme PubKey{PubKeyInner}
8 years ago
Add secp256k1 support
9 years ago
Cleanup; Implement .Wrap()
8 years ago
Add secp256k1 support
9 years ago
secp256k1: use compressed pubkey, bitcoin-style address
8 years ago
Cleanup; Implement .Wrap()
8 years ago
Add secp256k1 support
9 years ago
fix Equals
7 years ago
PrivKey.Equals
9 years ago
Use new naming scheme PubKey{PubKeyInner}
8 years ago
fix Equals
7 years ago
PrivKey.Equals
9 years ago
Add structs for go-data support
8 years ago
Add secp256k1 support
9 years ago
 
  1. package crypto
  2. 

  3. import (
  4. 	"crypto/subtle"
  5. 

  6. 	secp256k1 "github.com/btcsuite/btcd/btcec"
  7. 	"github.com/tendermint/ed25519"
  8. 	"github.com/tendermint/ed25519/extra25519"
  9. 	"github.com/tendermint/go-wire"
  10. 	data "github.com/tendermint/go-wire/data"
  11. 	. "github.com/tendermint/tmlibs/common"
  12. )
  13. 

  14. func PrivKeyFromBytes(privKeyBytes []byte) (privKey PrivKey, err error) {
  15. 	err = wire.ReadBinaryBytes(privKeyBytes, &privKey)
  16. 	return
  17. }
  18. 

  19. //----------------------------------------

  20. 

  21. // DO NOT USE THIS INTERFACE.

  22. // You probably want to use PubKey

  23. // +gen wrapper:"PrivKey,Impl[PrivKeyEd25519,PrivKeySecp256k1],ed25519,secp256k1"

  24. type PrivKeyInner interface {
  25. 	AssertIsPrivKeyInner()
  26. 	Bytes() []byte
  27. 	Sign(msg []byte) Signature
  28. 	PubKey() PubKey
  29. 	Equals(PrivKey) bool
  30. 	Wrap() PrivKey
  31. }
  32. 

  33. //-------------------------------------

  34. 

  35. var _ PrivKeyInner = PrivKeyEd25519{}
  36. 

  37. // Implements PrivKey

  38. type PrivKeyEd25519 [64]byte
  39. 

  40. func (privKey PrivKeyEd25519) AssertIsPrivKeyInner() {}
  41. 

  42. func (privKey PrivKeyEd25519) Bytes() []byte {
  43. 	return wire.BinaryBytes(PrivKey{privKey})
  44. }
  45. 

  46. func (privKey PrivKeyEd25519) Sign(msg []byte) Signature {
  47. 	privKeyBytes := [64]byte(privKey)
  48. 	signatureBytes := ed25519.Sign(&privKeyBytes, msg)
  49. 	return SignatureEd25519(*signatureBytes).Wrap()
  50. }
  51. 

  52. func (privKey PrivKeyEd25519) PubKey() PubKey {
  53. 	privKeyBytes := [64]byte(privKey)
  54. 	pubBytes := *ed25519.MakePublicKey(&privKeyBytes)
  55. 	return PubKeyEd25519(pubBytes).Wrap()
  56. }
  57. 

  58. // Equals - you probably don't need to use this.

  59. // Runs in constant time based on length of the keys.

  60. func (privKey PrivKeyEd25519) Equals(other PrivKey) bool {
  61. 	if otherEd, ok := other.Unwrap().(PrivKeyEd25519); ok {
  62. 		return subtle.ConstantTimeCompare(privKey[:], otherEd[:]) == 1
  63. 	} else {
  64. 		return false
  65. 	}
  66. }
  67. 

  68. func (p PrivKeyEd25519) MarshalJSON() ([]byte, error) {
  69. 	return data.Encoder.Marshal(p[:])
  70. }
  71. 

  72. func (p *PrivKeyEd25519) UnmarshalJSON(enc []byte) error {
  73. 	var ref []byte
  74. 	err := data.Encoder.Unmarshal(&ref, enc)
  75. 	copy(p[:], ref)
  76. 	return err
  77. }
  78. 

  79. func (privKey PrivKeyEd25519) ToCurve25519() *[32]byte {
  80. 	keyCurve25519 := new([32]byte)
  81. 	privKeyBytes := [64]byte(privKey)
  82. 	extra25519.PrivateKeyToCurve25519(keyCurve25519, &privKeyBytes)
  83. 	return keyCurve25519
  84. }
  85. 

  86. func (privKey PrivKeyEd25519) String() string {
  87. 	return Fmt("PrivKeyEd25519{*****}")
  88. }
  89. 

  90. // Deterministically generates new priv-key bytes from key.

  91. func (privKey PrivKeyEd25519) Generate(index int) PrivKeyEd25519 {
  92. 	newBytes := wire.BinarySha256(struct {
  93. 		PrivKey [64]byte
  94. 		Index   int
  95. 	}{privKey, index})
  96. 	var newKey [64]byte
  97. 	copy(newKey[:], newBytes)
  98. 	return PrivKeyEd25519(newKey)
  99. }
  100. 

  101. func GenPrivKeyEd25519() PrivKeyEd25519 {
  102. 	privKeyBytes := new([64]byte)
  103. 	copy(privKeyBytes[:32], CRandBytes(32))
  104. 	ed25519.MakePublicKey(privKeyBytes)
  105. 	return PrivKeyEd25519(*privKeyBytes)
  106. }
  107. 

  108. // NOTE: secret should be the output of a KDF like bcrypt,

  109. // if it's derived from user input.

  110. func GenPrivKeyEd25519FromSecret(secret []byte) PrivKeyEd25519 {
  111. 	privKey32 := Sha256(secret) // Not Ripemd160 because we want 32 bytes.

  112. 	privKeyBytes := new([64]byte)
  113. 	copy(privKeyBytes[:32], privKey32)
  114. 	ed25519.MakePublicKey(privKeyBytes)
  115. 	return PrivKeyEd25519(*privKeyBytes)
  116. }
  117. 

  118. //-------------------------------------

  119. 

  120. var _ PrivKeyInner = PrivKeySecp256k1{}
  121. 

  122. // Implements PrivKey

  123. type PrivKeySecp256k1 [32]byte
  124. 

  125. func (privKey PrivKeySecp256k1) AssertIsPrivKeyInner() {}
  126. 

  127. func (privKey PrivKeySecp256k1) Bytes() []byte {
  128. 	return wire.BinaryBytes(PrivKey{privKey})
  129. }
  130. 

  131. func (privKey PrivKeySecp256k1) Sign(msg []byte) Signature {
  132. 	priv__, _ := secp256k1.PrivKeyFromBytes(secp256k1.S256(), privKey[:])
  133. 	sig__, err := priv__.Sign(Sha256(msg))
  134. 	if err != nil {
  135. 		PanicSanity(err)
  136. 	}
  137. 	return SignatureSecp256k1(sig__.Serialize()).Wrap()
  138. }
  139. 

  140. func (privKey PrivKeySecp256k1) PubKey() PubKey {
  141. 	_, pub__ := secp256k1.PrivKeyFromBytes(secp256k1.S256(), privKey[:])
  142. 	var pub PubKeySecp256k1
  143. 	copy(pub[:], pub__.SerializeCompressed())
  144. 	return pub.Wrap()
  145. }
  146. 

  147. // Equals - you probably don't need to use this.

  148. // Runs in constant time based on length of the keys.

  149. func (privKey PrivKeySecp256k1) Equals(other PrivKey) bool {
  150. 	if otherSecp, ok := other.Unwrap().(PrivKeySecp256k1); ok {
  151. 		return subtle.ConstantTimeCompare(privKey[:], otherSecp[:]) == 1
  152. 	} else {
  153. 		return false
  154. 	}
  155. }
  156. 

  157. func (p PrivKeySecp256k1) MarshalJSON() ([]byte, error) {
  158. 	return data.Encoder.Marshal(p[:])
  159. }
  160. 

  161. func (p *PrivKeySecp256k1) UnmarshalJSON(enc []byte) error {
  162. 	var ref []byte
  163. 	err := data.Encoder.Unmarshal(&ref, enc)
  164. 	copy(p[:], ref)
  165. 	return err
  166. }
  167. 

  168. func (privKey PrivKeySecp256k1) String() string {
  169. 	return Fmt("PrivKeySecp256k1{*****}")
  170. }
  171. 

  172. /*
  173. // Deterministically generates new priv-key bytes from key.

  174. func (key PrivKeySecp256k1) Generate(index int) PrivKeySecp256k1 {
  175. 	newBytes := wire.BinarySha256(struct {
  176. 		PrivKey [64]byte
  177. 		Index   int
  178. 	}{key, index})
  179. 	var newKey [64]byte
  180. 	copy(newKey[:], newBytes)
  181. 	return PrivKeySecp256k1(newKey)
  182. }
  183. */
  184. 

  185. func GenPrivKeySecp256k1() PrivKeySecp256k1 {
  186. 	privKeyBytes := [32]byte{}
  187. 	copy(privKeyBytes[:], CRandBytes(32))
  188. 	priv, _ := secp256k1.PrivKeyFromBytes(secp256k1.S256(), privKeyBytes[:])
  189. 	copy(privKeyBytes[:], priv.Serialize())
  190. 	return PrivKeySecp256k1(privKeyBytes)
  191. }
  192. 

  193. // NOTE: secret should be the output of a KDF like bcrypt,

  194. // if it's derived from user input.

  195. func GenPrivKeySecp256k1FromSecret(secret []byte) PrivKeySecp256k1 {
  196. 	privKey32 := Sha256(secret) // Not Ripemd160 because we want 32 bytes.

  197. 	priv, _ := secp256k1.PrivKeyFromBytes(secp256k1.S256(), privKey32)
  198. 	privKeyBytes := [32]byte{}
  199. 	copy(privKeyBytes[:], priv.Serialize())
  200. 	return PrivKeySecp256k1(privKeyBytes)
  201. }