did/crypto.go

package did

import (
	"crypto/ecdsa"
	"crypto/elliptic"
	"crypto/rand"
	"errors"
	"fmt"

	"github.com/decred/dcrd/dcrec/secp256k1/v4"
	crypto "github.com/libp2p/go-libp2p/core/crypto"
	"github.com/libp2p/go-libp2p/core/crypto/pb"
	"github.com/multiformats/go-multicodec"
	"github.com/multiformats/go-varint"
)

// GenerateEd25519 generates an Ed25519 private key and the matching DID.
// This is the RECOMMENDED algorithm.
func GenerateEd25519() (crypto.PrivKey, DID, error) {
	priv, pub, err := crypto.GenerateEd25519Key(rand.Reader)
	if err != nil {
		return nil, Undef, nil
	}
	did, err := FromPubKey(pub)
	return priv, did, err
}

// GenerateRSA generates a RSA private key and the matching DID.
func GenerateSecp256k1() (crypto.PrivKey, DID, error) {
	// NIST Special Publication 800-57 Part 1 Revision 5
	// Section 5.6.1.1 (Table 2)
	// Paraphrased: 2048-bit RSA keys are secure until 2030 and 3072-bit keys are recommended for longer-term security.
	const keyLength = 3072

	priv, pub, err := crypto.GenerateRSAKeyPair(keyLength, rand.Reader)
	if err != nil {
		return nil, Undef, nil
	}
	did, err := FromPubKey(pub)
	return priv, did, err
}

// GenerateEd25519 generates a Secp256k1 private key and the matching DID.
func GenerateRSA() (crypto.PrivKey, DID, error) {
	priv, pub, err := crypto.GenerateSecp256k1Key(rand.Reader)
	if err != nil {
		return nil, Undef, nil
	}
	did, err := FromPubKey(pub)
	return priv, did, err
}

// GenerateECDSA generates an ECDSA private key and the matching DID
// for the default P256 curve.
func GenerateECDSA() (crypto.PrivKey, DID, error) {
	return GenerateECDSAWithCurve(P256)
}

// GenerateECDSAWithCurve generates an ECDSA private key and matching
// DID for the user-supplied curve
func GenerateECDSAWithCurve(code multicodec.Code) (crypto.PrivKey, DID, error) {
	var curve elliptic.Curve

	switch code {
	case P256:
		curve = elliptic.P256()
	case P384:
		curve = elliptic.P384()
	case P521:
		curve = elliptic.P521()
	default:
		return nil, Undef, errors.New("unsupported ECDSA curve")
	}

	priv, pub, err := crypto.GenerateECDSAKeyPairWithCurve(curve, rand.Reader)
	if err != nil {
		return nil, Undef, err
	}

	_ = priv
	_ = pub

	return nil, Undef, nil // TODO

}

func FromPrivKey(privKey crypto.PrivKey) (DID, error) {
	return FromPubKey(privKey.GetPublic())
}

// FromPubKey returns a did:key constructed from the provided public key.
func FromPubKey(pubKey crypto.PubKey) (DID, error) {
	var code multicodec.Code

	switch pubKey.Type() {
	case pb.KeyType_Ed25519:
		code = multicodec.Ed25519Pub
	case pb.KeyType_RSA:
		code = RSA
	case pb.KeyType_Secp256k1:
		code = Secp256k1
	case pb.KeyType_ECDSA:
		var err error
		if code, err = codeForCurve(pubKey); err != nil {
			return Undef, err
		}
	default:
		return Undef, errors.New("unsupported key type")
	}

	if pubKey.Type() == pb.KeyType_ECDSA && code == Secp256k1 {
		var err error

		pubKey, err = coerceECDSAToSecp256k1(pubKey)
		if err != nil {
			return Undef, err
		}
	}

	pubBytes, err := pubKey.Raw()
	if err != nil {
		return Undef, err
	}

	return DID{
		code:  code,
		bytes: string(append(varint.ToUvarint(uint64(code)), pubBytes...)),
	}, nil
}

func ToPubKey(s string) (crypto.PubKey, error) {
	id, err := Parse(s)
	if err != nil {
		return nil, err
	}

	return id.PubKey()
}

func codeForCurve(pubKey crypto.PubKey) (multicodec.Code, error) {
	stdPub, err := crypto.PubKeyToStdKey(pubKey)
	if err != nil {
		return multicodec.Identity, err
	}

	ecdsaPub, ok := stdPub.(*ecdsa.PublicKey)
	if !ok {
		return multicodec.Identity, errors.New("failed to assert type for code to curve")
	}

	switch ecdsaPub.Curve {
	case elliptic.P256():
		return P256, nil
	case elliptic.P384():
		return P384, nil
	case elliptic.P521():
		return P521, nil
	case secp256k1.S256():
		return Secp256k1, nil
	default:
		return multicodec.Identity, fmt.Errorf("unsupported ECDSA curve: %s", ecdsaPub.Curve.Params().Name)
	}
}

func coerceECDSAToSecp256k1(pubKey crypto.PubKey) (crypto.PubKey, error) {
	stdPub, err := crypto.PubKeyToStdKey(pubKey)
	if err != nil {
		return nil, err
	}

	ecdsaPub, ok := stdPub.(*ecdsa.PublicKey)
	if !ok {
		return nil, errors.New("failed to assert type for secp256k1 coersion")
	}

	ecdsaPubBytes := append([]byte{0x04}, append(ecdsaPub.X.Bytes(), ecdsaPub.Y.Bytes()...)...)

	secp256k1Pub, err := secp256k1.ParsePubKey(ecdsaPubBytes)
	if err != nil {
		return nil, err
	}

	cryptoPub := crypto.Secp256k1PublicKey(*secp256k1Pub)

	return &cryptoPub, nil
}
feat(did): add to/from public key 2024-09-09 08:50:15 -04:00			`package did`

			`import (`
feat(did): strengthens crypto for public key handliing 2024-10-17 07:42:40 -04:00			`"crypto/ecdsa"`
			`"crypto/elliptic"`
did: simplify public API, add missing required algorithm 2024-10-14 15:16:38 +02:00			`"crypto/rand"`
feat(did): add to/from public key 2024-09-09 08:50:15 -04:00			`"errors"`
feat(did): strengthens crypto for public key handliing 2024-10-17 07:42:40 -04:00			`"fmt"`
feat(did): add to/from public key 2024-09-09 08:50:15 -04:00
feat(did): strengthens crypto for public key handliing 2024-10-17 07:42:40 -04:00			`"github.com/decred/dcrd/dcrec/secp256k1/v4"`
feat(did): add to/from public key 2024-09-09 08:50:15 -04:00			`crypto "github.com/libp2p/go-libp2p/core/crypto"`
			`"github.com/libp2p/go-libp2p/core/crypto/pb"`
			`"github.com/multiformats/go-multicodec"`
			`"github.com/multiformats/go-varint"`
			`)`

did: simplify public API, add missing required algorithm 2024-10-14 15:16:38 +02:00			`// GenerateEd25519 generates an Ed25519 private key and the matching DID.`
			`// This is the RECOMMENDED algorithm.`
			`func GenerateEd25519() (crypto.PrivKey, DID, error) {`
			`priv, pub, err := crypto.GenerateEd25519Key(rand.Reader)`
			`if err != nil {`
			`return nil, Undef, nil`
			`}`
			`did, err := FromPubKey(pub)`
			`return priv, did, err`
			`}`

			`// GenerateRSA generates a RSA private key and the matching DID.`
			`func GenerateSecp256k1() (crypto.PrivKey, DID, error) {`
			`// NIST Special Publication 800-57 Part 1 Revision 5`
			`// Section 5.6.1.1 (Table 2)`
			`// Paraphrased: 2048-bit RSA keys are secure until 2030 and 3072-bit keys are recommended for longer-term security.`
			`const keyLength = 3072`

			`priv, pub, err := crypto.GenerateRSAKeyPair(keyLength, rand.Reader)`
			`if err != nil {`
			`return nil, Undef, nil`
			`}`
			`did, err := FromPubKey(pub)`
			`return priv, did, err`
			`}`

			`// GenerateEd25519 generates a Secp256k1 private key and the matching DID.`
			`func GenerateRSA() (crypto.PrivKey, DID, error) {`
			`priv, pub, err := crypto.GenerateSecp256k1Key(rand.Reader)`
			`if err != nil {`
			`return nil, Undef, nil`
			`}`
			`did, err := FromPubKey(pub)`
			`return priv, did, err`
			`}`

feat(did): strengthens crypto for public key handliing 2024-10-17 07:42:40 -04:00			`// GenerateECDSA generates an ECDSA private key and the matching DID`
			`// for the default P256 curve.`
			`func GenerateECDSA() (crypto.PrivKey, DID, error) {`
			`return GenerateECDSAWithCurve(P256)`
			`}`

			`// GenerateECDSAWithCurve generates an ECDSA private key and matching`
			`// DID for the user-supplied curve`
			`func GenerateECDSAWithCurve(code multicodec.Code) (crypto.PrivKey, DID, error) {`
			`var curve elliptic.Curve`

			`switch code {`
			`case P256:`
			`curve = elliptic.P256()`
			`case P384:`
			`curve = elliptic.P384()`
			`case P521:`
			`curve = elliptic.P521()`
			`default:`
			`return nil, Undef, errors.New("unsupported ECDSA curve")`
			`}`

			`priv, pub, err := crypto.GenerateECDSAKeyPairWithCurve(curve, rand.Reader)`
			`if err != nil {`
			`return nil, Undef, err`
			`}`

			`_ = priv`
			`_ = pub`

			`return nil, Undef, nil // TODO`

			`}`

feat(did): add to/from public key 2024-09-09 08:50:15 -04:00			`func FromPrivKey(privKey crypto.PrivKey) (DID, error) {`
			`return FromPubKey(privKey.GetPublic())`
			`}`

feat(did): strengthens crypto for public key handliing 2024-10-17 07:42:40 -04:00			`// FromPubKey returns a did:key constructed from the provided public key.`
feat(did): add to/from public key 2024-09-09 08:50:15 -04:00			`func FromPubKey(pubKey crypto.PubKey) (DID, error) {`
feat(did): strengthens crypto for public key handliing 2024-10-17 07:42:40 -04:00			`var code multicodec.Code`

			`switch pubKey.Type() {`
			`case pb.KeyType_Ed25519:`
			`code = multicodec.Ed25519Pub`
			`case pb.KeyType_RSA:`
			`code = RSA`
			`case pb.KeyType_Secp256k1:`
			`code = Secp256k1`
			`case pb.KeyType_ECDSA:`
			`var err error`
			`if code, err = codeForCurve(pubKey); err != nil {`
			`return Undef, err`
			`}`
			`default:`
did: simplify public API, add missing required algorithm 2024-10-14 15:16:38 +02:00			`return Undef, errors.New("unsupported key type")`
feat(did): add to/from public key 2024-09-09 08:50:15 -04:00			`}`

feat(did): strengthens crypto for public key handliing 2024-10-17 07:42:40 -04:00			`if pubKey.Type() == pb.KeyType_ECDSA && code == Secp256k1 {`
			`var err error`

			`pubKey, err = coerceECDSAToSecp256k1(pubKey)`
			`if err != nil {`
			`return Undef, err`
			`}`
			`}`

feat(did): add to/from public key 2024-09-09 08:50:15 -04:00			`pubBytes, err := pubKey.Raw()`
			`if err != nil {`
			`return Undef, err`
			`}`

			`return DID{`
did: simplify public API, add missing required algorithm 2024-10-14 15:16:38 +02:00			`code: code,`
			`bytes: string(append(varint.ToUvarint(uint64(code)), pubBytes...)),`
feat(did): add to/from public key 2024-09-09 08:50:15 -04:00			`}, nil`
			`}`
feat(did): add ToPubKey() and improve crypto tests 2024-09-11 07:12:54 -04:00
			`func ToPubKey(s string) (crypto.PubKey, error) {`
			`id, err := Parse(s)`
			`if err != nil {`
			`return nil, err`
			`}`

			`return id.PubKey()`
			`}`
feat(did): strengthens crypto for public key handliing 2024-10-17 07:42:40 -04:00
			`func codeForCurve(pubKey crypto.PubKey) (multicodec.Code, error) {`
			`stdPub, err := crypto.PubKeyToStdKey(pubKey)`
			`if err != nil {`
			`return multicodec.Identity, err`
			`}`

			`ecdsaPub, ok := stdPub.(*ecdsa.PublicKey)`
			`if !ok {`
			`return multicodec.Identity, errors.New("failed to assert type for code to curve")`
			`}`

			`switch ecdsaPub.Curve {`
			`case elliptic.P256():`
			`return P256, nil`
			`case elliptic.P384():`
			`return P384, nil`
			`case elliptic.P521():`
			`return P521, nil`
			`case secp256k1.S256():`
			`return Secp256k1, nil`
			`default:`
			`return multicodec.Identity, fmt.Errorf("unsupported ECDSA curve: %s", ecdsaPub.Curve.Params().Name)`
			`}`
			`}`

			`func coerceECDSAToSecp256k1(pubKey crypto.PubKey) (crypto.PubKey, error) {`
			`stdPub, err := crypto.PubKeyToStdKey(pubKey)`
			`if err != nil {`
			`return nil, err`
			`}`

			`ecdsaPub, ok := stdPub.(*ecdsa.PublicKey)`
			`if !ok {`
			`return nil, errors.New("failed to assert type for secp256k1 coersion")`
			`}`

			`ecdsaPubBytes := append([]byte{0x04}, append(ecdsaPub.X.Bytes(), ecdsaPub.Y.Bytes()...)...)`

			`secp256k1Pub, err := secp256k1.ParsePubKey(ecdsaPubBytes)`
			`if err != nil {`
			`return nil, err`
			`}`

			`cryptoPub := crypto.Secp256k1PublicKey(*secp256k1Pub)`

			`return &cryptoPub, nil`
			`}`