tendermint/pub_key.go

package crypto

import (
	"bytes"
	"crypto/sha256"
	"fmt"

	secp256k1 "github.com/btcsuite/btcd/btcec"
	"github.com/tendermint/ed25519"
	"github.com/tendermint/ed25519/extra25519"
	"github.com/tendermint/go-wire"
	data "github.com/tendermint/go-wire/data"
	cmn "github.com/tendermint/tmlibs/common"
	"golang.org/x/crypto/ripemd160"
)

// An address is a []byte, but hex-encoded even in JSON.
// []byte leaves us the option to change the address length.
type Address cmn.HexBytes

func PubKeyFromBytes(pubKeyBytes []byte) (pubKey PubKey, err error) {
	if err := wire.ReadBinaryBytes(pubKeyBytes, &pubKey); err != nil {
		return PubKey{}, err
	}
	return pubKey, nil
}

//----------------------------------------

// DO NOT USE THIS INTERFACE.
// You probably want to use PubKey
// +gen wrapper:"PubKey,Impl[PubKeyEd25519,PubKeySecp256k1],ed25519,secp256k1"
type PubKeyInner interface {
	AssertIsPubKeyInner()
	Address() Address
	Bytes() []byte
	KeyString() string
	VerifyBytes(msg []byte, sig Signature) bool
	Equals(PubKey) bool
	Wrap() PubKey
}

//-------------------------------------

var _ PubKeyInner = PubKeyEd25519{}

// Implements PubKeyInner
type PubKeyEd25519 [32]byte

func (pubKey PubKeyEd25519) AssertIsPubKeyInner() {}

func (pubKey PubKeyEd25519) Address() Address {
	w, n, err := new(bytes.Buffer), new(int), new(error)
	wire.WriteBinary(pubKey[:], w, n, err)
	if *err != nil {
		panic(*err)
	}
	// append type byte
	encodedPubkey := append([]byte{TypeEd25519}, w.Bytes()...)
	hasher := ripemd160.New()
	hasher.Write(encodedPubkey) // does not error
	return Address(hasher.Sum(nil))
}

func (pubKey PubKeyEd25519) Bytes() []byte {
	return wire.BinaryBytes(PubKey{pubKey})
}

func (pubKey PubKeyEd25519) VerifyBytes(msg []byte, sig_ Signature) bool {
	// make sure we use the same algorithm to sign
	sig, ok := sig_.Unwrap().(SignatureEd25519)
	if !ok {
		return false
	}
	pubKeyBytes := [32]byte(pubKey)
	sigBytes := [64]byte(sig)
	return ed25519.Verify(&pubKeyBytes, msg, &sigBytes)
}

func (p PubKeyEd25519) MarshalJSON() ([]byte, error) {
	return data.Encoder.Marshal(p[:])
}

func (p *PubKeyEd25519) UnmarshalJSON(enc []byte) error {
	var ref []byte
	err := data.Encoder.Unmarshal(&ref, enc)
	copy(p[:], ref)
	return err
}

// For use with golang/crypto/nacl/box
// If error, returns nil.
func (pubKey PubKeyEd25519) ToCurve25519() *[32]byte {
	keyCurve25519, pubKeyBytes := new([32]byte), [32]byte(pubKey)
	ok := extra25519.PublicKeyToCurve25519(keyCurve25519, &pubKeyBytes)
	if !ok {
		return nil
	}
	return keyCurve25519
}

func (pubKey PubKeyEd25519) String() string {
	return fmt.Sprintf("PubKeyEd25519{%X}", pubKey[:])
}

// Must return the full bytes in hex.
// Used for map keying, etc.
func (pubKey PubKeyEd25519) KeyString() string {
	return fmt.Sprintf("%X", pubKey[:])
}

func (pubKey PubKeyEd25519) Equals(other PubKey) bool {
	if otherEd, ok := other.Unwrap().(PubKeyEd25519); ok {
		return bytes.Equal(pubKey[:], otherEd[:])
	} else {
		return false
	}
}

//-------------------------------------

var _ PubKeyInner = PubKeySecp256k1{}

// Implements PubKey.
// Compressed pubkey (just the x-cord),
// prefixed with 0x02 or 0x03, depending on the y-cord.
type PubKeySecp256k1 [33]byte

func (pubKey PubKeySecp256k1) AssertIsPubKeyInner() {}

// Implements Bitcoin style addresses: RIPEMD160(SHA256(pubkey))
func (pubKey PubKeySecp256k1) Address() Address {
	hasherSHA256 := sha256.New()
	hasherSHA256.Write(pubKey[:]) // does not error
	sha := hasherSHA256.Sum(nil)

	hasherRIPEMD160 := ripemd160.New()
	hasherRIPEMD160.Write(sha) // does not error
	return Address(hasherRIPEMD160.Sum(nil))
}

func (pubKey PubKeySecp256k1) Bytes() []byte {
	return wire.BinaryBytes(PubKey{pubKey})
}

func (pubKey PubKeySecp256k1) VerifyBytes(msg []byte, sig_ Signature) bool {
	// and assert same algorithm to sign and verify
	sig, ok := sig_.Unwrap().(SignatureSecp256k1)
	if !ok {
		return false
	}

	pub__, err := secp256k1.ParsePubKey(pubKey[:], secp256k1.S256())
	if err != nil {
		return false
	}
	sig__, err := secp256k1.ParseDERSignature(sig[:], secp256k1.S256())
	if err != nil {
		return false
	}
	return sig__.Verify(Sha256(msg), pub__)
}

func (p PubKeySecp256k1) MarshalJSON() ([]byte, error) {
	return data.Encoder.Marshal(p[:])
}

func (p *PubKeySecp256k1) UnmarshalJSON(enc []byte) error {
	var ref []byte
	err := data.Encoder.Unmarshal(&ref, enc)
	copy(p[:], ref)
	return err
}

func (pubKey PubKeySecp256k1) String() string {
	return fmt.Sprintf("PubKeySecp256k1{%X}", pubKey[:])
}

// Must return the full bytes in hex.
// Used for map keying, etc.
func (pubKey PubKeySecp256k1) KeyString() string {
	return fmt.Sprintf("%X", pubKey[:])
}

func (pubKey PubKeySecp256k1) Equals(other PubKey) bool {
	if otherSecp, ok := other.Unwrap().(PubKeySecp256k1); ok {
		return bytes.Equal(pubKey[:], otherSecp[:])
	} else {
		return false
	}
}
update package name 2015-10-25 13:45:13 -07:00			`package crypto`
first commit 2015-10-25 13:42:49 -07:00
			`import (`
			`"bytes"`
secp256k1: use compressed pubkey, bitcoin-style address 2017-03-21 22:18:56 -07:00			`"crypto/sha256"`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`"fmt"`
first commit 2015-10-25 13:42:49 -07:00
Add secp256k1 support 2016-04-19 01:02:31 -07:00			`secp256k1 "github.com/btcsuite/btcd/btcec"`
first commit 2015-10-25 13:42:49 -07:00			`"github.com/tendermint/ed25519"`
			`"github.com/tendermint/ed25519/extra25519"`
update package name 2015-10-25 13:45:13 -07:00			`"github.com/tendermint/go-wire"`
First code from codegen... wrong names 2017-05-14 17:31:05 -07:00			`data "github.com/tendermint/go-wire/data"`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`cmn "github.com/tendermint/tmlibs/common"`
update package name 2015-10-25 13:45:13 -07:00			`"golang.org/x/crypto/ripemd160"`
first commit 2015-10-25 13:42:49 -07:00			`)`

Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`// An address is a []byte, but hex-encoded even in JSON.`
			`// []byte leaves us the option to change the address length.`
			`type Address cmn.HexBytes`

Cleanup; Implement .Wrap() 2017-04-09 00:32:54 -07:00			`func PubKeyFromBytes(pubKeyBytes []byte) (pubKey PubKey, err error) {`
PubKeyFromBytes: return zero value PubKey on error Fixes https://github.com/tendermint/go-crypto/issues/48. This previously skewed up my fuzzing tests so ensure that on error we return the zero value PubKey. 2017-10-28 14:11:17 -07:00			`if err := wire.ReadBinaryBytes(pubKeyBytes, &pubKey); err != nil {`
			`return PubKey{}, err`
			`}`
			`return pubKey, nil`
Cleanup; Implement .Wrap() 2017-04-09 00:32:54 -07:00			`}`
Better docs and naming thanks to bucky 2017-03-29 06:17:06 -07:00
Cleanup; Implement .Wrap() 2017-04-09 00:32:54 -07:00			`//----------------------------------------`
Better docs and naming thanks to bucky 2017-03-29 06:17:06 -07:00
Cleanup; Implement .Wrap() 2017-04-09 00:32:54 -07:00			`// DO NOT USE THIS INTERFACE.`
			`// You probably want to use PubKey`
Change codegen name holder->wrapper 2017-05-16 07:59:40 -07:00			`// +gen wrapper:"PubKey,Impl[PubKeyEd25519,PubKeySecp256k1],ed25519,secp256k1"`
Use new naming scheme PubKey{PubKeyInner} 2017-03-21 13:44:24 -07:00			`type PubKeyInner interface {`
Cleanup; Implement .Wrap() 2017-04-09 00:32:54 -07:00			`AssertIsPubKeyInner()`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`Address() Address`
Added Bytes() and *FromBytes() 2016-03-15 11:11:54 -07:00			`Bytes() []byte`
KeyString() in PubKey; Fix tests 2016-02-08 00:50:52 -08:00			`KeyString() string`
first commit 2015-10-25 13:42:49 -07:00			`VerifyBytes(msg []byte, sig Signature) bool`
Add seed-able cryptographic random. 2016-03-13 09:40:15 -07:00			`Equals(PubKey) bool`
Cleanup; Implement .Wrap() 2017-04-09 00:32:54 -07:00			`Wrap() PubKey`
first commit 2015-10-25 13:42:49 -07:00			`}`

			`//-------------------------------------`

Add type assertions for sig/pub/privkey implemenetations 2017-04-10 04:05:52 -07:00			`var _ PubKeyInner = PubKeyEd25519{}`

Use new naming scheme PubKey{PubKeyInner} 2017-03-21 13:44:24 -07:00			`// Implements PubKeyInner`
first commit 2015-10-25 13:42:49 -07:00			`type PubKeyEd25519 [32]byte`

Cleanup; Implement .Wrap() 2017-04-09 00:32:54 -07:00			`func (pubKey PubKeyEd25519) AssertIsPubKeyInner() {}`

Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`func (pubKey PubKeyEd25519) Address() Address {`
Revert Address() scheme change 2016-03-15 15:58:43 -07:00			`w, n, err := new(bytes.Buffer), new(int), new(error)`
			`wire.WriteBinary(pubKey[:], w, n, err)`
			`if *err != nil {`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`panic(*err)`
Revert Address() scheme change 2016-03-15 15:58:43 -07:00			`}`
			`// append type byte`
One name, type byte per algorithm 2017-02-23 15:31:43 -08:00			`encodedPubkey := append([]byte{TypeEd25519}, w.Bytes()...)`
first commit 2015-10-25 13:42:49 -07:00			`hasher := ripemd160.New()`
Revert Address() scheme change 2016-03-15 15:58:43 -07:00			`hasher.Write(encodedPubkey) // does not error`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`return Address(hasher.Sum(nil))`
first commit 2015-10-25 13:42:49 -07:00			`}`

Added Bytes() and *FromBytes() 2016-03-15 11:11:54 -07:00			`func (pubKey PubKeyEd25519) Bytes() []byte {`
Use new naming scheme PubKey{PubKeyInner} 2017-03-21 13:44:24 -07:00			`return wire.BinaryBytes(PubKey{pubKey})`
Added Bytes() and *FromBytes() 2016-03-15 11:11:54 -07:00			`}`

first commit 2015-10-25 13:42:49 -07:00			`func (pubKey PubKeyEd25519) VerifyBytes(msg []byte, sig_ Signature) bool {`
First tests of go-data encoding 2017-02-22 14:43:26 -08:00			`// make sure we use the same algorithm to sign`
Use new naming scheme PubKey{PubKeyInner} 2017-03-21 13:44:24 -07:00			`sig, ok := sig_.Unwrap().(SignatureEd25519)`
first commit 2015-10-25 13:42:49 -07:00			`if !ok {`
			`return false`
			`}`
			`pubKeyBytes := [32]byte(pubKey)`
			`sigBytes := [64]byte(sig)`
			`return ed25519.Verify(&pubKeyBytes, msg, &sigBytes)`
			`}`

Add structs for go-data support 2017-02-22 14:15:10 -08:00			`func (p PubKeyEd25519) MarshalJSON() ([]byte, error) {`
			`return data.Encoder.Marshal(p[:])`
			`}`

			`func (p *PubKeyEd25519) UnmarshalJSON(enc []byte) error {`
			`var ref []byte`
			`err := data.Encoder.Unmarshal(&ref, enc)`
			`copy(p[:], ref)`
			`return err`
			`}`

first commit 2015-10-25 13:42:49 -07:00			`// For use with golang/crypto/nacl/box`
			`// If error, returns nil.`
			`func (pubKey PubKeyEd25519) ToCurve25519() *[32]byte {`
			`keyCurve25519, pubKeyBytes := new([32]byte), [32]byte(pubKey)`
			`ok := extra25519.PublicKeyToCurve25519(keyCurve25519, &pubKeyBytes)`
			`if !ok {`
			`return nil`
			`}`
			`return keyCurve25519`
			`}`

			`func (pubKey PubKeyEd25519) String() string {`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`return fmt.Sprintf("PubKeyEd25519{%X}", pubKey[:])`
first commit 2015-10-25 13:42:49 -07:00			`}`

			`// Must return the full bytes in hex.`
			`// Used for map keying, etc.`
			`func (pubKey PubKeyEd25519) KeyString() string {`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`return fmt.Sprintf("%X", pubKey[:])`
first commit 2015-10-25 13:42:49 -07:00			`}`

			`func (pubKey PubKeyEd25519) Equals(other PubKey) bool {`
Use new naming scheme PubKey{PubKeyInner} 2017-03-21 13:44:24 -07:00			`if otherEd, ok := other.Unwrap().(PubKeyEd25519); ok {`
first commit 2015-10-25 13:42:49 -07:00			`return bytes.Equal(pubKey[:], otherEd[:])`
			`} else {`
			`return false`
			`}`
			`}`
Add secp256k1 support 2016-04-19 01:02:31 -07:00
			`//-------------------------------------`

Add type assertions for sig/pub/privkey implemenetations 2017-04-10 04:05:52 -07:00			`var _ PubKeyInner = PubKeySecp256k1{}`

secp256k1: use compressed pubkey, bitcoin-style address 2017-03-21 22:18:56 -07:00			`// Implements PubKey.`
			`// Compressed pubkey (just the x-cord),`
			`// prefixed with 0x02 or 0x03, depending on the y-cord.`
			`type PubKeySecp256k1 [33]byte`
Add secp256k1 support 2016-04-19 01:02:31 -07:00
Cleanup; Implement .Wrap() 2017-04-09 00:32:54 -07:00			`func (pubKey PubKeySecp256k1) AssertIsPubKeyInner() {}`

secp256k1: use compressed pubkey, bitcoin-style address 2017-03-21 22:18:56 -07:00			`// Implements Bitcoin style addresses: RIPEMD160(SHA256(pubkey))`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`func (pubKey PubKeySecp256k1) Address() Address {`
secp256k1: use compressed pubkey, bitcoin-style address 2017-03-21 22:18:56 -07:00			`hasherSHA256 := sha256.New()`
			`hasherSHA256.Write(pubKey[:]) // does not error`
			`sha := hasherSHA256.Sum(nil)`

			`hasherRIPEMD160 := ripemd160.New()`
			`hasherRIPEMD160.Write(sha) // does not error`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`return Address(hasherRIPEMD160.Sum(nil))`
Add secp256k1 support 2016-04-19 01:02:31 -07:00			`}`

			`func (pubKey PubKeySecp256k1) Bytes() []byte {`
Use new naming scheme PubKey{PubKeyInner} 2017-03-21 13:44:24 -07:00			`return wire.BinaryBytes(PubKey{pubKey})`
Add secp256k1 support 2016-04-19 01:02:31 -07:00			`}`

			`func (pubKey PubKeySecp256k1) VerifyBytes(msg []byte, sig_ Signature) bool {`
First tests of go-data encoding 2017-02-22 14:43:26 -08:00			`// and assert same algorithm to sign and verify`
Use new naming scheme PubKey{PubKeyInner} 2017-03-21 13:44:24 -07:00			`sig, ok := sig_.Unwrap().(SignatureSecp256k1)`
Add secp256k1 support 2016-04-19 01:02:31 -07:00			`if !ok {`
			`return false`
			`}`
First tests of go-data encoding 2017-02-22 14:43:26 -08:00
secp256k1: use compressed pubkey, bitcoin-style address 2017-03-21 22:18:56 -07:00			`pub__, err := secp256k1.ParsePubKey(pubKey[:], secp256k1.S256())`
First tests of go-data encoding 2017-02-22 14:43:26 -08:00			`if err != nil {`
			`return false`
			`}`
Add secp256k1 support 2016-04-19 01:02:31 -07:00			`sig__, err := secp256k1.ParseDERSignature(sig[:], secp256k1.S256())`
			`if err != nil {`
			`return false`
			`}`
			`return sig__.Verify(Sha256(msg), pub__)`
			`}`

Add structs for go-data support 2017-02-22 14:15:10 -08:00			`func (p PubKeySecp256k1) MarshalJSON() ([]byte, error) {`
			`return data.Encoder.Marshal(p[:])`
			`}`

			`func (p *PubKeySecp256k1) UnmarshalJSON(enc []byte) error {`
			`var ref []byte`
			`err := data.Encoder.Unmarshal(&ref, enc)`
			`copy(p[:], ref)`
			`return err`
			`}`

Add secp256k1 support 2016-04-19 01:02:31 -07:00			`func (pubKey PubKeySecp256k1) String() string {`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`return fmt.Sprintf("PubKeySecp256k1{%X}", pubKey[:])`
Add secp256k1 support 2016-04-19 01:02:31 -07:00			`}`

			`// Must return the full bytes in hex.`
			`// Used for map keying, etc.`
			`func (pubKey PubKeySecp256k1) KeyString() string {`
Add Address type which is HexBytes 2017-12-27 14:37:37 -08:00			`return fmt.Sprintf("%X", pubKey[:])`
Add secp256k1 support 2016-04-19 01:02:31 -07:00			`}`

			`func (pubKey PubKeySecp256k1) Equals(other PubKey) bool {`
Use new naming scheme PubKey{PubKeyInner} 2017-03-21 13:44:24 -07:00			`if otherSecp, ok := other.Unwrap().(PubKeySecp256k1); ok {`
PrivKey.Equals 2016-04-19 01:26:40 -07:00			`return bytes.Equal(pubKey[:], otherSecp[:])`
Add secp256k1 support 2016-04-19 01:02:31 -07:00			`} else {`
			`return false`
			`}`
			`}`