frostfs-s3-gw/internal/neofs/tree_signature.go

/* REMOVE THIS AFTER SIGNATURE WILL BE AVAILABLE IN TREE CLIENT FROM NEOFS NODE */
package neofs

import (
	"crypto/ecdsa"
	"crypto/elliptic"
	"crypto/rand"
	"crypto/sha512"

	"google.golang.org/protobuf/proto"
)

func (c *TreeClient) signData(buf []byte, f func(key, sign []byte)) error {
	hash := sha512.Sum512(buf)
	x, y, err := ecdsa.Sign(rand.Reader, &c.key.PrivateKey, hash[:])
	if err != nil {
		return err
	}
	sign := elliptic.Marshal(elliptic.P256(), x, y)

	f(c.key.PublicKey().Bytes(), sign)
	return nil
}

func (c *TreeClient) signRequest(requestBody proto.Message, f func(key, sign []byte)) error {
	buf, err := proto.Marshal(requestBody)
	if err != nil {
		return err
	}

	return c.signData(buf, f)
}
[#413] Add signature for tree requests Signed-off-by: Denis Kirillov <denis@nspcc.ru> Signed-off-by: Alex Vanin <alexey@nspcc.ru> 2022-05-18 13:40:09 +00:00			`/* REMOVE THIS AFTER SIGNATURE WILL BE AVAILABLE IN TREE CLIENT FROM NEOFS NODE */`
			`package neofs`

			`import (`
			`"crypto/ecdsa"`
			`"crypto/elliptic"`
			`"crypto/rand"`
			`"crypto/sha512"`

			`"google.golang.org/protobuf/proto"`
			`)`

			`func (c *TreeClient) signData(buf []byte, f func(key, sign []byte)) error {`
			`hash := sha512.Sum512(buf)`
			`x, y, err := ecdsa.Sign(rand.Reader, &c.key.PrivateKey, hash[:])`
			`if err != nil {`
			`return err`
			`}`
			`sign := elliptic.Marshal(elliptic.P256(), x, y)`

			`f(c.key.PublicKey().Bytes(), sign)`
			`return nil`
			`}`

			`func (c *TreeClient) signRequest(requestBody proto.Message, f func(key, sign []byte)) error {`
			`buf, err := proto.Marshal(requestBody)`
			`if err != nil {`
			`return err`
			`}`

			`return c.signData(buf, f)`
			`}`