numenor-labs/dsfx
2
0
Fork 0
mirror of https://git.numenor-labs.us/dsfx.git synced 2025-04-29 08:10:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
dsfx/pkg/crypto/identity/ecdsa.go

115 lines
2.6 KiB
Go
Raw Normal View History

reorganize everything
2025-03-09 15:52:33 -04:00
package identity
initial commit
2025-03-07 21:05:37 -05:00
import (
"crypto/ecdsa"
"crypto/elliptic"
"crypto/rand"
minor improvements
2025-03-09 12:33:27 -04:00
"crypto/x509"
"encoding/pem"
"fmt"
"os"
initial commit
2025-03-07 21:05:37 -05:00
)
var (
// DefaultSigningCurve is the default elliptic curve used for signing.
DefaultSigningCurve = elliptic.P384
refactoring time
2025-03-09 17:09:21 -04:00
ExportedPublicKeySize = 215
initial commit
2025-03-07 21:05:37 -05:00
)
minor improvements
2025-03-09 12:33:27 -04:00
func LoadSigningKeyFromFile(filePath string) (*ecdsa.PrivateKey, error) {
masterKeyFile, err := os.ReadFile(filePath)
if err != nil {
return nil, err
}
// The second argument is not an error.
derEncoded, _ := pem.Decode(masterKeyFile)
if derEncoded == nil {
return nil, fmt.Errorf("failed to decode master key file")
}
masterKey, err := x509.ParseECPrivateKey(derEncoded.Bytes)
if err != nil {
return nil, err
}
return masterKey, nil
}
refactoring time
2025-03-09 17:09:21 -04:00
// Generate generates a new ECDSA private key for signing.
func Generate() (*ecdsa.PrivateKey, error) {
initial commit
2025-03-07 21:05:37 -05:00
return ecdsa.GenerateKey(DefaultSigningCurve(), rand.Reader)
}
// Sign signs the data with the private key.
func Sign(priv *ecdsa.PrivateKey, data []byte) ([]byte, error) {
return ecdsa.SignASN1(rand.Reader, priv, data)
}
// Verify verifies the signature of the data with the public key.
func Verify(pub *ecdsa.PublicKey, data, signature []byte) bool {
return ecdsa.VerifyASN1(pub, data, signature)
}
refactoring time
2025-03-09 17:09:21 -04:00
// ExportPrivateKey exports the private key as a byte slice.
func ExportPrivateKey(key *ecdsa.PrivateKey) ([]byte, error) {
der, err := x509.MarshalECPrivateKey(key)
if err != nil {
return nil, err
initial commit
2025-03-07 21:05:37 -05:00
}
refactoring time
2025-03-09 17:09:21 -04:00
return pem.EncodeToMemory(&pem.Block{
Type: "PRIVATE KEY",
Bytes: der,
}), nil
initial commit
2025-03-07 21:05:37 -05:00
}
refactoring time
2025-03-09 17:09:21 -04:00
// ExportPublicKey exports the public key as a byte slice.
func ExportPublicKey(key *ecdsa.PublicKey) ([]byte, error) {
der, err := x509.MarshalPKIXPublicKey(key)
if err != nil {
return nil, err
initial commit
2025-03-07 21:05:37 -05:00
}
refactoring time
2025-03-09 17:09:21 -04:00
return pem.EncodeToMemory(&pem.Block{
Type: "PUBLIC KEY",
Bytes: der,
}), nil
}
// ImportPrivateKey imports the private key from a byte slice.
func ImportPrivateKey(keyBytes []byte) (*ecdsa.PrivateKey, error) {
block, _ := pem.Decode(keyBytes)
if block == nil {
return nil, fmt.Errorf("failed to decode private key")
}
privKey, err := x509.ParseECPrivateKey(block.Bytes)
if err != nil {
return nil, err
}
return privKey, nil
}
// ImportPublicKey imports the public key from a byte slice.
func ImportPublicKey(keyBytes []byte) (*ecdsa.PublicKey, error) {
block, _ := pem.Decode(keyBytes)
if block == nil {
return nil, fmt.Errorf("failed to decode public key")
}
pubKeyAny, err := x509.ParsePKIXPublicKey(block.Bytes)
if err != nil {
initial commit
2025-03-07 21:05:37 -05:00
return nil, err
}
refactoring time
2025-03-09 17:09:21 -04:00
pubKey, ok := pubKeyAny.(*ecdsa.PublicKey)
if !ok {
return nil, fmt.Errorf("not an ECDSA public key")
}
initial commit
2025-03-07 21:05:37 -05:00
refactoring time
2025-03-09 17:09:21 -04:00
return pubKey, nil
initial commit
2025-03-07 21:05:37 -05:00
}
Reference in New Issue Copy Permalink