frostfs-sdk-go/crypto/ecdsa/signer.go

package frostfsecdsa

import (
	"crypto/ecdsa"
	"crypto/elliptic"
	"crypto/rand"
	"crypto/sha512"

	frostfscrypto "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/crypto"
	"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
)

// Signer wraps ecdsa.PrivateKey and represents signer based on ECDSA with
// SHA-512 hashing. Provides frostfscrypto.Signer interface.
//
// Instances MUST be initialized from ecdsa.PrivateKey using type conversion.
type Signer ecdsa.PrivateKey

// Scheme returns frostfscrypto.ECDSA_SHA512.
// Implements frostfscrypto.Signer.
func (x Signer) Scheme() frostfscrypto.Scheme {
	return frostfscrypto.ECDSA_SHA512
}

// Sign signs data using ECDSA algorithm with SHA-512 hashing.
// Implements frostfscrypto.Signer.
func (x Signer) Sign(data []byte) ([]byte, error) {
	h := sha512.Sum512(data)
	r, s, err := ecdsa.Sign(rand.Reader, (*ecdsa.PrivateKey)(&x), h[:])
	if err != nil {
		return nil, err
	}

	params := elliptic.P256().Params()
	curveOrderByteSize := params.P.BitLen() / 8

	buf := make([]byte, 1+curveOrderByteSize*2)
	buf[0] = 4

	_ = r.FillBytes(buf[1 : 1+curveOrderByteSize])
	_ = s.FillBytes(buf[1+curveOrderByteSize:])

	return buf, nil
}

// Public initializes PublicKey and returns it as frostfscrypto.PublicKey.
// Implements frostfscrypto.Signer.
func (x Signer) Public() frostfscrypto.PublicKey {
	return (*PublicKey)(&x.PublicKey)
}

// SignerRFC6979 wraps ecdsa.PrivateKey and represents signer based on deterministic
// ECDSA with SHA-256 hashing (RFC 6979). Provides frostfscrypto.Signer interface.
//
// Instances SHOULD be initialized from ecdsa.PrivateKey using type conversion.
type SignerRFC6979 ecdsa.PrivateKey

// Scheme returns frostfscrypto.ECDSA_DETERMINISTIC_SHA256.
// Implements frostfscrypto.Signer.
func (x SignerRFC6979) Scheme() frostfscrypto.Scheme {
	return frostfscrypto.ECDSA_DETERMINISTIC_SHA256
}

// Sign signs data using deterministic ECDSA algorithm with SHA-256 hashing.
// Implements frostfscrypto.Signer.
//
// See also RFC 6979.
func (x SignerRFC6979) Sign(data []byte) ([]byte, error) {
	p := keys.PrivateKey{PrivateKey: (ecdsa.PrivateKey)(x)}
	return p.Sign(data), nil
}

// Public initializes PublicKeyRFC6979 and returns it as frostfscrypto.PublicKey.
// Implements frostfscrypto.Signer.
func (x SignerRFC6979) Public() frostfscrypto.PublicKey {
	return (*PublicKeyRFC6979)(&x.PublicKey)
}
Move to frostfs-sdk-go Signed-off-by: Pavel Karpy <p.karpy@yadro.com> 2022-12-13 14:36:35 +00:00			`package frostfsecdsa`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00
			`import (`
			`"crypto/ecdsa"`
			`"crypto/elliptic"`
			`"crypto/rand"`
			`"crypto/sha512"`

Rename package name Due to source code relocation from GitHub. Signed-off-by: Alex Vanin <a.vanin@yadro.com> 2023-03-07 11:20:03 +00:00			`frostfscrypto "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/crypto"`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00			`"github.com/nspcc-dev/neo-go/pkg/crypto/keys"`
			`)`

[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`// Signer wraps ecdsa.PrivateKey and represents signer based on ECDSA with`
Move to frostfs-sdk-go Signed-off-by: Pavel Karpy <p.karpy@yadro.com> 2022-12-13 14:36:35 +00:00			`// SHA-512 hashing. Provides frostfscrypto.Signer interface.`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00			`//`
[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`// Instances MUST be initialized from ecdsa.PrivateKey using type conversion.`
			`type Signer ecdsa.PrivateKey`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00
Move to frostfs-sdk-go Signed-off-by: Pavel Karpy <p.karpy@yadro.com> 2022-12-13 14:36:35 +00:00			`// Scheme returns frostfscrypto.ECDSA_SHA512.`
			`// Implements frostfscrypto.Signer.`
			`func (x Signer) Scheme() frostfscrypto.Scheme {`
			`return frostfscrypto.ECDSA_SHA512`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00			`}`

[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`// Sign signs data using ECDSA algorithm with SHA-512 hashing.`
Move to frostfs-sdk-go Signed-off-by: Pavel Karpy <p.karpy@yadro.com> 2022-12-13 14:36:35 +00:00			`// Implements frostfscrypto.Signer.`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00			`func (x Signer) Sign(data []byte) ([]byte, error) {`
			`h := sha512.Sum512(data)`
[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`r, s, err := ecdsa.Sign(rand.Reader, (*ecdsa.PrivateKey)(&x), h[:])`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00			`if err != nil {`
			`return nil, err`
			`}`

[#319] crypto: Fix signing in go `v1.19` Signed-off-by: Pavel Karpy <carpawell@nspcc.ru> 2022-08-18 10:10:18 +00:00			`params := elliptic.P256().Params()`
			`curveOrderByteSize := params.P.BitLen() / 8`

			`buf := make([]byte, 1+curveOrderByteSize*2)`
			`buf[0] = 4`

			`_ = r.FillBytes(buf[1 : 1+curveOrderByteSize])`
			`_ = s.FillBytes(buf[1+curveOrderByteSize:])`

			`return buf, nil`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00			`}`

Move to frostfs-sdk-go Signed-off-by: Pavel Karpy <p.karpy@yadro.com> 2022-12-13 14:36:35 +00:00			`// Public initializes PublicKey and returns it as frostfscrypto.PublicKey.`
			`// Implements frostfscrypto.Signer.`
			`func (x Signer) Public() frostfscrypto.PublicKey {`
[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`return (*PublicKey)(&x.PublicKey)`
			`}`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00
[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`// SignerRFC6979 wraps ecdsa.PrivateKey and represents signer based on deterministic`
Move to frostfs-sdk-go Signed-off-by: Pavel Karpy <p.karpy@yadro.com> 2022-12-13 14:36:35 +00:00			`// ECDSA with SHA-256 hashing (RFC 6979). Provides frostfscrypto.Signer interface.`
[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`//`
			`// Instances SHOULD be initialized from ecdsa.PrivateKey using type conversion.`
			`type SignerRFC6979 ecdsa.PrivateKey`

Move to frostfs-sdk-go Signed-off-by: Pavel Karpy <p.karpy@yadro.com> 2022-12-13 14:36:35 +00:00			`// Scheme returns frostfscrypto.ECDSA_DETERMINISTIC_SHA256.`
			`// Implements frostfscrypto.Signer.`
			`func (x SignerRFC6979) Scheme() frostfscrypto.Scheme {`
			`return frostfscrypto.ECDSA_DETERMINISTIC_SHA256`
[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`}`

			`// Sign signs data using deterministic ECDSA algorithm with SHA-256 hashing.`
Move to frostfs-sdk-go Signed-off-by: Pavel Karpy <p.karpy@yadro.com> 2022-12-13 14:36:35 +00:00			`// Implements frostfscrypto.Signer.`
[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`//`
			`// See also RFC 6979.`
			`func (x SignerRFC6979) Sign(data []byte) ([]byte, error) {`
			`p := keys.PrivateKey{PrivateKey: (ecdsa.PrivateKey)(x)}`
			`return p.Sign(data), nil`
			`}`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00
Move to frostfs-sdk-go Signed-off-by: Pavel Karpy <p.karpy@yadro.com> 2022-12-13 14:36:35 +00:00			`// Public initializes PublicKeyRFC6979 and returns it as frostfscrypto.PublicKey.`
			`// Implements frostfscrypto.Signer.`
			`func (x SignerRFC6979) Public() frostfscrypto.PublicKey {`
[#190] crypto/ecdsa: Use separate types for RFC-6979 signature algo Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-19 08:11:29 +00:00			`return (*PublicKeyRFC6979)(&x.PublicKey)`
[#190] Refactor cryptographic functionality Remove `signature` and `util/signature` packages. Re-implement their functionality in new `crypto` package. Generalize the approach of digital signature computation and verification by adding `Signer` and `PublicKey` primitives similar to standard `crypto` package. Support already exising in protocol signature schemes. Signed-off-by: Leonard Lyubich <leonard@nspcc.ru> 2022-04-05 11:13:34 +00:00			`}`