登录 注册
开源 企业版 高校版 私有云 模力方舟 模力方舟
开源项目 > 区块链 &&
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
63 Star 185 Fork 3

Gitee 极速下载/hyperledger-fabric

代码 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
此仓库是为了提升国内下载速度的镜像仓库,每日同步一次。 原始仓库: https://github.com/hyperledger/fabric
克隆/下载
ecdsa.go 4.54 KB
一键复制 编辑 原始数据 按行查看 历史
Angelo De Caro 提交于 2017-05-03 19:11 +08:00 . [FAB-3315] Certificate sanitization
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171
/*

Copyright IBM Corp. 2016 All Rights Reserved.



Licensed under the Apache License, Version 2.0 (the "License");

you may not use this file except in compliance with the License.

You may obtain a copy of the License at



		 http://www.apache.org/licenses/LICENSE-2.0



Unless required by applicable law or agreed to in writing, software

distributed under the License is distributed on an "AS IS" BASIS,

WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

See the License for the specific language governing permissions and

limitations under the License.

*/

package sw



import (

	"crypto/ecdsa"

	"crypto/elliptic"

	"crypto/rand"

	"encoding/asn1"

	"errors"

	"fmt"

	"math/big"



	"github.com/hyperledger/fabric/bccsp"

)



type ECDSASignature struct {

	R, S *big.Int

}



var (

	// curveHalfOrders contains the precomputed curve group orders halved.

	// It is used to ensure that signature' S value is lower or equal to the

	// curve group order halved. We accept only low-S signatures.

	// They are precomputed for efficiency reasons.

	curveHalfOrders map[elliptic.Curve]*big.Int = map[elliptic.Curve]*big.Int{

		elliptic.P224(): new(big.Int).Rsh(elliptic.P224().Params().N, 1),

		elliptic.P256(): new(big.Int).Rsh(elliptic.P256().Params().N, 1),

		elliptic.P384(): new(big.Int).Rsh(elliptic.P384().Params().N, 1),

		elliptic.P521(): new(big.Int).Rsh(elliptic.P521().Params().N, 1),

	}

)



func MarshalECDSASignature(r, s *big.Int) ([]byte, error) {

	return asn1.Marshal(ECDSASignature{r, s})

}



func UnmarshalECDSASignature(raw []byte) (*big.Int, *big.Int, error) {

	// Unmarshal

	sig := new(ECDSASignature)

	_, err := asn1.Unmarshal(raw, sig)

	if err != nil {

		return nil, nil, fmt.Errorf("Failed unmashalling signature [%s]", err)

	}



	// Validate sig

	if sig.R == nil {

		return nil, nil, errors.New("Invalid signature. R must be different from nil.")

	}

	if sig.S == nil {

		return nil, nil, errors.New("Invalid signature. S must be different from nil.")

	}



	if sig.R.Sign() != 1 {

		return nil, nil, errors.New("Invalid signature. R must be larger than zero")

	}

	if sig.S.Sign() != 1 {

		return nil, nil, errors.New("Invalid signature. S must be larger than zero")

	}



	return sig.R, sig.S, nil

}



func signECDSA(k *ecdsa.PrivateKey, digest []byte, opts bccsp.SignerOpts) (signature []byte, err error) {

	r, s, err := ecdsa.Sign(rand.Reader, k, digest)

	if err != nil {

		return nil, err

	}



	s, _, err = ToLowS(&k.PublicKey, s)

	if err != nil {

		return nil, err

	}



	return MarshalECDSASignature(r, s)

}



func verifyECDSA(k *ecdsa.PublicKey, signature, digest []byte, opts bccsp.SignerOpts) (valid bool, err error) {

	r, s, err := UnmarshalECDSASignature(signature)

	if err != nil {

		return false, fmt.Errorf("Failed unmashalling signature [%s]", err)

	}



	lowS, err := IsLowS(k, s)

	if err != nil {

		return false, err

	}



	if !lowS {

		return false, fmt.Errorf("Invalid S. Must be smaller than half the order [%s][%s].", s, curveHalfOrders[k.Curve])

	}



	return ecdsa.Verify(k, digest, r, s), nil

}



func SignatureToLowS(k *ecdsa.PublicKey, signature []byte) ([]byte, error) {

	r, s, err := UnmarshalECDSASignature(signature)

	if err != nil {

		return nil, err

	}



	s, modified, err := ToLowS(k, s)

	if err != nil {

		return nil, err

	}



	if modified {

		return MarshalECDSASignature(r, s)

	}



	return signature, nil

}



// IsLow checks that s is a low-S

func IsLowS(k *ecdsa.PublicKey, s *big.Int) (bool, error) {

	halfOrder, ok := curveHalfOrders[k.Curve]

	if !ok {

		return false, fmt.Errorf("Curve not recognized [%s]", k.Curve)

	}



	return s.Cmp(halfOrder) != 1, nil



}



func ToLowS(k *ecdsa.PublicKey, s *big.Int) (*big.Int, bool, error) {

	lowS, err := IsLowS(k, s)

	if err != nil {

		return nil, false, err

	}



	if !lowS {

		// Set s to N - s that will be then in the lower part of signature space

		// less or equal to half order

		s.Sub(k.Params().N, s)



		return s, true, nil

	}



	return s, false, nil

}



type ecdsaSigner struct{}



func (s *ecdsaSigner) Sign(k bccsp.Key, digest []byte, opts bccsp.SignerOpts) (signature []byte, err error) {

	return signECDSA(k.(*ecdsaPrivateKey).privKey, digest, opts)

}



type ecdsaPrivateKeyVerifier struct{}



func (v *ecdsaPrivateKeyVerifier) Verify(k bccsp.Key, signature, digest []byte, opts bccsp.SignerOpts) (valid bool, err error) {

	return verifyECDSA(&(k.(*ecdsaPrivateKey).privKey.PublicKey), signature, digest, opts)

}



type ecdsaPublicKeyKeyVerifier struct{}



func (v *ecdsaPublicKeyKeyVerifier) Verify(k bccsp.Key, signature, digest []byte, opts bccsp.SignerOpts) (valid bool, err error) {

	return verifyECDSA(k.(*ecdsaPublicKey).pubKey, signature, digest, opts)

}
Loading...
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
Go
1
https://gitee.com/mirrors/hyperledger-fabric.git
git@gitee.com:mirrors/hyperledger-fabric.git
mirrors
hyperledger-fabric
hyperledger-fabric
v1.0.0-rc1
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部