-
Notifications
You must be signed in to change notification settings - Fork 1.7k
/
evm_keyring.go
113 lines (94 loc) · 3.53 KB
/
evm_keyring.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
package ocr2key
import (
"bytes"
"crypto/ecdsa"
"encoding/binary"
"io"
"github.com/ethereum/go-ethereum/common"
"github.com/ethereum/go-ethereum/crypto"
"github.com/smartcontractkit/libocr/offchainreporting2/types"
"github.com/smartcontractkit/libocr/offchainreporting2plus/chains/evmutil"
ocrtypes "github.com/smartcontractkit/libocr/offchainreporting2plus/types"
)
var _ ocrtypes.OnchainKeyring = &evmKeyring{}
type evmKeyring struct {
privateKey ecdsa.PrivateKey
}
func newEVMKeyring(material io.Reader) (*evmKeyring, error) {
ecdsaKey, err := ecdsa.GenerateKey(curve, material)
if err != nil {
return nil, err
}
return &evmKeyring{privateKey: *ecdsaKey}, nil
}
// XXX: PublicKey returns the address of the public key not the public key itself
func (ekr *evmKeyring) PublicKey() ocrtypes.OnchainPublicKey {
address := ekr.signingAddress()
return address[:]
}
func (ekr *evmKeyring) Sign(reportCtx ocrtypes.ReportContext, report ocrtypes.Report) ([]byte, error) {
return ekr.signBlob(ekr.reportToSigData(reportCtx, report))
}
func (ekr *evmKeyring) reportToSigData(reportCtx ocrtypes.ReportContext, report ocrtypes.Report) []byte {
rawReportContext := evmutil.RawReportContext(reportCtx)
sigData := crypto.Keccak256(report)
sigData = append(sigData, rawReportContext[0][:]...)
sigData = append(sigData, rawReportContext[1][:]...)
sigData = append(sigData, rawReportContext[2][:]...)
return crypto.Keccak256(sigData)
}
func (ekr *evmKeyring) Sign3(digest types.ConfigDigest, seqNr uint64, r ocrtypes.Report) (signature []byte, err error) {
return ekr.signBlob(ekr.reportToSigData3(digest, seqNr, r))
}
func (ekr *evmKeyring) reportToSigData3(digest types.ConfigDigest, seqNr uint64, r ocrtypes.Report) []byte {
rawReportContext := RawReportContext3(digest, seqNr)
sigData := crypto.Keccak256(r)
sigData = append(sigData, rawReportContext[0][:]...)
sigData = append(sigData, rawReportContext[1][:]...)
return crypto.Keccak256(sigData)
}
func RawReportContext3(digest types.ConfigDigest, seqNr uint64) [2][32]byte {
seqNrBytes := [32]byte{}
binary.BigEndian.PutUint64(seqNrBytes[:], seqNr)
return [2][32]byte{
digest,
seqNrBytes,
}
}
func (ekr *evmKeyring) signBlob(b []byte) (sig []byte, err error) {
return crypto.Sign(b, &ekr.privateKey)
}
func (ekr *evmKeyring) Verify(publicKey ocrtypes.OnchainPublicKey, reportCtx ocrtypes.ReportContext, report ocrtypes.Report, signature []byte) bool {
hash := ekr.reportToSigData(reportCtx, report)
return ekr.verifyBlob(publicKey, hash, signature)
}
func (ekr *evmKeyring) Verify3(publicKey ocrtypes.OnchainPublicKey, cd ocrtypes.ConfigDigest, seqNr uint64, r ocrtypes.Report, signature []byte) bool {
hash := ekr.reportToSigData3(cd, seqNr, r)
return ekr.verifyBlob(publicKey, hash, signature)
}
func (ekr *evmKeyring) verifyBlob(pubkey types.OnchainPublicKey, b, sig []byte) bool {
authorPubkey, err := crypto.SigToPub(b, sig)
if err != nil {
return false
}
authorAddress := crypto.PubkeyToAddress(*authorPubkey)
// no need for constant time compare since neither arg is sensitive
return bytes.Equal(pubkey[:], authorAddress[:])
}
func (ekr *evmKeyring) MaxSignatureLength() int {
return 65
}
func (ekr *evmKeyring) signingAddress() common.Address {
return crypto.PubkeyToAddress(*(&ekr.privateKey).Public().(*ecdsa.PublicKey))
}
func (ekr *evmKeyring) Marshal() ([]byte, error) {
return crypto.FromECDSA(&ekr.privateKey), nil
}
func (ekr *evmKeyring) Unmarshal(in []byte) error {
privateKey, err := crypto.ToECDSA(in)
if err != nil {
return err
}
ekr.privateKey = *privateKey
return nil
}