wire-sysio/elliptic__common_8cpp_source.html

#include <fc/crypto/base58.hpp>

#include <fc/crypto/elliptic.hpp>

#include <fc/io/raw.hpp>

#include <fc/crypto/hmac.hpp>

#include <fc/crypto/openssl.hpp>

#include <fc/crypto/ripemd160.hpp>


#ifdef _WIN32

# include <malloc.h>

#elif defined(__FreeBSD__)

# include <stdlib.h>

#else

# include <alloca.h>

#endif


/* stuff common to all ecc implementations */


#define BTC_EXT_PUB_MAGIC   (0x0488B21E)

#define BTC_EXT_PRIV_MAGIC  (0x0488ADE4)


namespace fc { namespace ecc {


    namespace detail {

        typedef fc::array<char,37> chr37;


        fc::sha256 _left( const fc::sha512& v )

        {

            fc::sha256 result;

            memcpy( result.data(), v.data(), 32 );

            return result;

        }


        fc::sha256 _right( const fc::sha512& v )

        {

            fc::sha256 result;

            memcpy( result.data(), v.data() + 32, 32 );

            return result;

        }


        static void _put( unsigned char** dest, unsigned int i)

        {

            *(*dest)++ = (i >> 24) & 0xff;

            *(*dest)++ = (i >> 16) & 0xff;

            *(*dest)++ = (i >>  8) & 0xff;

            *(*dest)++ =  i        & 0xff;

        }


        static chr37 _derive_message( char first, const char* key32, int i )

        {

            chr37 result;

            unsigned char* dest = (unsigned char*) result.begin();

            *dest++ = first;

            memcpy( dest, key32, 32 ); dest += 32;

            _put( &dest, i );

            return result;

        }


        chr37 _derive_message( const public_key_data& key, int i )

        {

            return _derive_message( *key.begin(), key.begin() + 1, i );

        }


        const ec_group& get_curve()

        {

            static const ec_group secp256k1( EC_GROUP_new_by_curve_name( NID_secp256k1 ) );

            return secp256k1;

        }


        static private_key_secret _get_curve_order()

        {

            const ec_group& group = get_curve();

            bn_ctx ctx(BN_CTX_new());

            ssl_bignum order;

            FC_ASSERT( EC_GROUP_get_order( group, order, ctx ) );

            private_key_secret bin;

            FC_ASSERT( BN_num_bytes( order ) == static_cast<int>(bin.data_size()) );

            FC_ASSERT( BN_bn2bin( order, (unsigned char*) bin.data() ) == static_cast<int>(bin.data_size()) );

            return bin;

        }


        const private_key_secret& get_curve_order()

        {

            static private_key_secret order = _get_curve_order();

            return order;

        }


        static private_key_secret _get_half_curve_order()

        {

            const ec_group& group = get_curve();

            bn_ctx ctx(BN_CTX_new());

            ssl_bignum order;

            FC_ASSERT( EC_GROUP_get_order( group, order, ctx ) );

            BN_rshift1( order, order );

            private_key_secret bin;

            FC_ASSERT( BN_num_bytes( order ) == static_cast<int>(bin.data_size()) );

            FC_ASSERT( BN_bn2bin( order, (unsigned char*) bin.data() ) == static_cast<int>(bin.data_size()) );

            return bin;

        }


        const private_key_secret& get_half_curve_order()

        {

            static private_key_secret half_order = _get_half_curve_order();

            return half_order;

        }


    }


    public_key public_key::from_key_data( const public_key_data &data ) {

        return public_key(data);

    }


    private_key private_key::child( const fc::sha256& offset )const

    {

       fc::sha256::encoder enc;

       fc::raw::pack( enc, get_public_key() );

       fc::raw::pack( enc, offset );

       return generate_from_seed( get_secret(), enc.result() );

    }


    std::string public_key::to_base58( const public_key_data &key )

    {

      uint32_t check = (uint32_t)sha256::hash(key.data, sizeof(key))._hash[0];

      static_assert(sizeof(key) + sizeof(check) == 37, ""); // hack around gcc bug: key.size() should be constexpr, but isn't

      array<char, 37> data;

      memcpy(data.data, key.begin(), key.size());

      memcpy(data.begin() + key.size(), (const char*)&check, sizeof(check));

      return fc::to_base58(data.begin(), data.size(), fc::yield_function_t());

    }


    public_key public_key::from_base58( const std::string& b58 )

    {

        array<char, 37> data;

        size_t s = fc::from_base58(b58, (char*)&data, sizeof(data) );

        FC_ASSERT( s == sizeof(data) );


        public_key_data key;

        uint32_t check = (uint32_t)sha256::hash(data.data, sizeof(key))._hash[0];

        FC_ASSERT( memcmp( (char*)&check, data.data + sizeof(key), sizeof(check) ) == 0 );

        memcpy( (char*)key.data, data.data, sizeof(key) );

        return from_key_data(key);

    }


    unsigned int public_key::fingerprint() const

    {

        public_key_data key = serialize();

        ripemd160 hash = ripemd160::hash( sha256::hash( key.begin(), key.size() ) );

        unsigned char* fp = (unsigned char*) hash._hash;

        return (fp[0] << 24) | (fp[1] << 16) | (fp[2] << 8) | fp[3];

    }


    bool public_key::is_canonical( const compact_signature& c ) {

        return !(c.data[1] & 0x80)

               && !(c.data[1] == 0 && !(c.data[2] & 0x80))

               && !(c.data[33] & 0x80)

               && !(c.data[33] == 0 && !(c.data[34] & 0x80));

    }


    private_key private_key::generate_from_seed( const fc::sha256& seed, const fc::sha256& offset )

    {

        ssl_bignum z;

        BN_bin2bn((unsigned char*)&offset, sizeof(offset), z);


        ec_group group(EC_GROUP_new_by_curve_name(NID_secp256k1));

        bn_ctx ctx(BN_CTX_new());

        ssl_bignum order;

        EC_GROUP_get_order(group, order, ctx);


        // secexp = (seed + z) % order

        ssl_bignum secexp;

        BN_bin2bn((unsigned char*)&seed, sizeof(seed), secexp);

        BN_add(secexp, secexp, z);

        BN_mod(secexp, secexp, order, ctx);


        fc::sha256 secret;

        FC_ASSERT(BN_num_bytes(secexp) <= int64_t(sizeof(secret)));

        auto shift = sizeof(secret) - BN_num_bytes(secexp);

        BN_bn2bin(secexp, ((unsigned char*)&secret)+shift);

        return regenerate( secret );

    }


    fc::sha256 private_key::get_secret( const EC_KEY * const k )

    {

       if( !k )

       {

          return fc::sha256();

       }


       fc::sha256 sec;

       const BIGNUM* bn = EC_KEY_get0_private_key(k);

       if( bn == NULL )

       {

         FC_THROW_EXCEPTION( exception, "get private key failed" );

       }

       int nbytes = BN_num_bytes(bn);

       BN_bn2bin(bn, &((unsigned char*)&sec)[32-nbytes] );

       return sec;

    }


    private_key private_key::generate()

    {

       EC_KEY* k = EC_KEY_new_by_curve_name( NID_secp256k1 );

       if( !k ) FC_THROW_EXCEPTION( exception, "Unable to generate EC key" );

       if( !EC_KEY_generate_key( k ) )

       {

          FC_THROW_EXCEPTION( exception, "ecc key generation error" );


       }


       return private_key( k );

    }


}


void to_variant( const ecc::private_key& var,  variant& vo )

{

    vo = var.get_secret();

}


void from_variant( const variant& var,  ecc::private_key& vo )

{

    fc::sha256 sec;

    from_variant( var, sec );

    vo = ecc::private_key::regenerate(sec);

}


void to_variant( const ecc::public_key& var,  variant& vo )

{

    vo = var.serialize();

}


void from_variant( const variant& var,  ecc::public_key& vo )

{

    ecc::public_key_data dat;

    from_variant( var, dat );

    vo = ecc::public_key(dat);

}


}

base58.hpp

fc::array
Definition city.hpp:51

fc::array::data
T data[N]
Definition array.hpp:37

fc::ecc::private_key
an elliptic curve private key.
Definition elliptic.hpp:88

fc::ecc::private_key::generate
static private_key generate()
Definition elliptic_common.cpp:200

fc::ecc::private_key::get_public_key
public_key get_public_key() const
Definition elliptic_impl_priv.cpp:71

fc::ecc::private_key::get_secret
private_key_secret get_secret() const
Definition elliptic_impl_priv.cpp:60

fc::ecc::private_key::child
private_key child(const fc::sha256 &offset) const
Definition elliptic_common.cpp:113

fc::ecc::private_key::generate_from_seed
static private_key generate_from_seed(const fc::sha256 &seed, const fc::sha256 &offset=fc::sha256())
Definition elliptic_common.cpp:159

fc::ecc::private_key::regenerate
static private_key regenerate(const fc::sha256 &secret)
Definition elliptic_impl_priv.cpp:53

fc::ecc::private_key::private_key
private_key()
Definition elliptic_impl_priv.cpp:33

fc::ecc::public_key
contains only the public point of an elliptic curve key.
Definition elliptic.hpp:36

fc::ecc::public_key::serialize
public_key_data serialize() const
Definition elliptic_impl_pub.cpp:266

fc::ecc::public_key::to_base58
std::string to_base58() const
Allows to convert current public key object into base58 number.
Definition elliptic_impl_pub.cpp:238

fc::ecc::public_key::public_key
public_key()
Definition elliptic_impl_pub.cpp:142

fc::ecc::public_key::fingerprint
unsigned int fingerprint() const
Definition elliptic_common.cpp:144

fc::ecc::public_key::from_base58
static public_key from_base58(const std::string &b58)
Definition elliptic_common.cpp:131

fc::exception
Used to generate a useful error report when an exception is thrown.
Definition exception.hpp:58

fc::optional_delegate
Definition utility.hpp:183

fc::public_key
Definition pke.hpp:20

fc::ripemd160
Definition ripemd160.hpp:12

fc::ripemd160::hash
static ripemd160 hash(const fc::sha512 &h)
Definition ripemd160.cpp:44

fc::sha256::encoder
Definition sha256.hpp:38

fc::sha256::encoder::result
sha256 result()
Definition sha256.cpp:62

fc::sha256
Definition sha256.hpp:12

fc::sha256::hash
static sha256 hash(const char *d, uint32_t dlen)
Definition sha256.cpp:44

fc::sha256::data
const char * data() const
Definition sha256.cpp:31

fc::sha256::data_size
size_t data_size() const
Definition sha256.hpp:23

fc::sha256::_hash
uint64_t _hash[4]
Definition sha256.hpp:100

fc::sha512
Definition sha512.hpp:9

fc::sha512::data
char * data()
Definition sha512.cpp:24

fc::variant
stores null, int64, uint64, double, bool, string, std::vector<variant>, and variant_object's.
Definition variant.hpp:191

elliptic.hpp

FC_THROW_EXCEPTION
#define FC_THROW_EXCEPTION(EXCEPTION, FORMAT,...)
Definition exception.hpp:395

FC_ASSERT
#define FC_ASSERT(TEST,...)
Checks a condition and throws an assert_exception if the test is FALSE.
Definition exception.hpp:362

hmac.hpp

BIGNUM
bignum_st BIGNUM
Definition bigint.hpp:7

bn
Definition bn.h:56

detail
Definition main.cpp:23

fc::ecc::detail::get_curve
const ec_group & get_curve()
Definition elliptic_common.cpp:65

fc::ecc::detail::get_curve_order
const private_key_secret & get_curve_order()
Definition elliptic_common.cpp:83

fc::ecc::detail::_right
fc::sha256 _right(const fc::sha512 &v)
Definition elliptic_common.cpp:33

fc::ecc::detail::_left
fc::sha256 _left(const fc::sha512 &v)
Definition elliptic_common.cpp:26

fc::ecc::detail::chr37
fc::array< char, 37 > chr37
Definition elliptic_common.cpp:24

fc::ecc::detail::get_half_curve_order
const private_key_secret & get_half_curve_order()
Definition elliptic_common.cpp:102

fc::ecc::public_key_data
fc::array< char, 33 > public_key_data
Definition elliptic.hpp:22

fc::raw::pack
void pack(Stream &s, const std::deque< T > &value)
Definition raw.hpp:531

fc
namespace sysio::chain
Definition authority.cpp:3

fc::to_base58
std::string to_base58(const char *d, size_t s, const fc::yield_function_t &yield)
Definition base58.cpp:618

fc::from_base58
std::vector< char > from_base58(const std::string &base58_str)
Definition base58.cpp:628

fc::from_variant
void from_variant(const fc::variant &v, sysio::chain::chain_id_type &cid)
Definition chain_id_type.cpp:18

fc::to_variant
void to_variant(const sysio::chain::shared_public_key &var, fc::variant &vo)
Definition authority.cpp:4

openssl.hpp

raw.hpp

ripemd160.hpp

int64_t
signed __int64 int64_t
Definition stdint.h:135

uint32_t
unsigned int uint32_t
Definition stdint.h:126

fc::ssl_bignum
Definition openssl.hpp:55

key
uint8_t key[16]
Definition yubico_otp.c:41

s
char * s
Definition yubihsm_pkcs11.c:524

memcpy
memcpy((char *) pInfo->slotDescription, s, l)