pezkuwichain/pezkuwi-subxt
1
0
Fork 0
mirror of https://github.com/pezkuwichain/pezkuwi-subxt.git synced 2026-06-16 00:21:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

[offchain] Support for sign & verify for crypto keys (#3023)

Browse Source 
* Implement sign & verify.

* Use phrases and password.

* Sign & verify with authority keys.

* Fix tests.

* WiP

* WiP

* Allow the caller to decide on 'CryptoKind'.

* Remove TODO.

* Make seed private back.

* Fix non-std build and bump version.

* Use Into<u32> instead of asses.

* Add missing typedef.
This commit is contained in:
Tomasz Drwięga
2019-07-09 17:09:14 +02:00
committed by Gavin Wood
parent ed630e5eda
commit e729dbabbe
22 changed files with 647 additions and 178 deletions
Download Patch File Download Diff File Expand all files Collapse all files
substrate/core/sr-io/without_std.rs
+67 -26
View File
@@ -395,18 +395,24 @@ pub mod ext {
/// Encrypt a piece of data using given crypto key.
///
/// If `key` is `0`, it will attempt to use current authority key.
/// If `key` is `0`, it will attempt to use current authority key of given `kind`.
///
/// # Returns
///
/// - `0` in case the key is invalid, `msg_len` is set to `u32::max_value`
/// - Otherwise, pointer to the encrypted message in memory,
/// `msg_len` contains the length of the message.
fn ext_encrypt(key: u32, data: *const u8, data_len: u32, msg_len: *mut u32) -> *mut u8;
fn ext_encrypt(
key: u32,
kind: u32,
data: *const u8,
data_len: u32,
msg_len: *mut u32
) -> *mut u8;
/// Decrypt a piece of data using given crypto key.
///
/// If `key `is `0`, it will attempt to use current authority key.
/// If `key` is `0`, it will attempt to use current authority key of given `kind`.
///
/// # Returns
///
@@ -414,11 +420,17 @@ pub mod ext {
/// `msg_len` is set to `u32::max_value`
/// - Otherwise, pointer to the decrypted message in memory,
/// `msg_len` contains the length of the message.
fn ext_decrypt(key: u32, data: *const u8, data_len: u32, msg_len: *mut u32) -> *mut u8;
fn ext_decrypt(
key: u32,
kind: u32,
data: *const u8,
data_len: u32,
msg_len: *mut u32
) -> *mut u8;
/// Sign a piece of data using given crypto key.
///
/// If `key` is `0`, it will attempt to use current authority key.
/// If `key` is `0`, it will attempt to use current authority key of given `kind`.
///
/// # Returns
///
@@ -426,11 +438,17 @@ pub mod ext {
/// `sig_data_len` is set to `u32::max_value`
/// - Otherwise, pointer to the signature in memory,
/// `sig_data_len` contains the length of the signature.
fn ext_sign(key: u32, data: *const u8, data_len: u32, sig_data_len: *mut u32) -> *mut u8;
fn ext_sign(
key: u32,
kind: u32,
data: *const u8,
data_len: u32,
sig_data_len: *mut u32
) -> *mut u8;
/// Verifies that `signature` for `msg` matches given `key`.
///
/// If `key` is `0`, it will attempt to use current authority key.
/// If `key` is `0`, it will attempt to use current authority key of given `kind`.
///
/// # Returns
/// - `0` in case the signature is correct
@@ -438,6 +456,7 @@ pub mod ext {
/// - `u32::max_value` if the key is invalid.
fn ext_verify(
key: u32,
kind: u32,
msg: *const u8,
msg_len: u32,
signature: *const u8,
@@ -870,7 +889,7 @@ impl OffchainApi for () {
}
fn new_crypto_key(crypto: offchain::CryptoKind) -> Result<offchain::CryptoKeyId, ()> {
let crypto = crypto as u8 as u32;
let crypto = crypto.into();
let ret = unsafe {
ext_new_crypto_key.get()(crypto)
};
@@ -882,41 +901,63 @@ impl OffchainApi for () {
}
}
fn encrypt(key: Option<offchain::CryptoKeyId>, data: &[u8]) -> Result<Vec<u8>, ()> {
let key = key.map(|x| x.0 as u32).unwrap_or(0);
fn encrypt(
key: Option<offchain::CryptoKeyId>,
kind: offchain::CryptoKind,
data: &[u8],
) -> Result<Vec<u8>, ()> {
let key = key.map(Into::into).unwrap_or(0);
let kind = kind.into();
let mut len = 0_u32;
unsafe {
let ptr = ext_encrypt.get()(key, data.as_ptr(), data.len() as u32, &mut len);
let ptr = ext_encrypt.get()(key, kind, data.as_ptr(), data.len() as u32, &mut len);
from_raw_parts(ptr, len).ok_or(())
}
}
fn decrypt(key: Option<offchain::CryptoKeyId>, data: &[u8]) -> Result<Vec<u8>, ()> {
let key = key.map(|x| x.0 as u32).unwrap_or(0);
fn decrypt(
key: Option<offchain::CryptoKeyId>,
kind: offchain::CryptoKind,
data: &[u8],
) -> Result<Vec<u8>, ()> {
let key = key.map(Into::into).unwrap_or(0);
let kind = kind.into();
let mut len = 0_u32;
unsafe {
let ptr = ext_decrypt.get()(key, data.as_ptr(), data.len() as u32, &mut len);
let ptr = ext_decrypt.get()(key, kind, data.as_ptr(), data.len() as u32, &mut len);
from_raw_parts(ptr, len).ok_or(())
}
}
fn sign(key: Option<offchain::CryptoKeyId>, data: &[u8]) -> Result<Vec<u8>, ()> {
let key = key.map(|x| x.0 as u32).unwrap_or(0);
fn sign(
key: Option<offchain::CryptoKeyId>,
kind: offchain::CryptoKind,
data: &[u8],
) -> Result<Vec<u8>, ()> {
let key = key.map(Into::into).unwrap_or(0);
let kind = kind.into();
let mut len = 0_u32;
unsafe {
let ptr = ext_sign.get()(key, data.as_ptr(), data.len() as u32, &mut len);
let ptr = ext_sign.get()(key, kind, data.as_ptr(), data.len() as u32, &mut len);
from_raw_parts(ptr, len).ok_or(())
}
}
fn verify(key: Option<offchain::CryptoKeyId>, msg: &[u8], signature: &[u8]) -> Result<bool, ()> {
let key = key.map(|x| x.0 as u32).unwrap_or(0);
fn verify(
key: Option<offchain::CryptoKeyId>,
kind: offchain::CryptoKind,
msg: &[u8],
signature: &[u8],
) -> Result<bool, ()> {
let key = key.map(Into::into).unwrap_or(0);
let kind = kind.into();
let val = unsafe {
ext_verify.get()(
key,
kind,
msg.as_ptr(),
msg.len() as u32,
signature.as_ptr(),
@@ -954,7 +995,7 @@ impl OffchainApi for () {
fn local_storage_set(kind: offchain::StorageKind, key: &[u8], value: &[u8]) {
unsafe {
ext_local_storage_set.get()(
kind as u8 as u32,
kind.into(),
key.as_ptr(),
key.len() as u32,
value.as_ptr(),
@@ -966,7 +1007,7 @@ impl OffchainApi for () {
fn local_storage_compare_and_set(kind: offchain::StorageKind, key: &[u8], old_value: &[u8], new_value: &[u8]) -> bool {
unsafe {
ext_local_storage_compare_and_set.get()(
kind as u8 as u32,
kind.into(),
key.as_ptr(),
key.len() as u32,
old_value.as_ptr(),
@@ -981,7 +1022,7 @@ impl OffchainApi for () {
let mut len = 0u32;
unsafe {
let ptr = ext_local_storage_get.get()(
kind as u8 as u32,
kind.into(),
key.as_ptr(),
key.len() as u32,
&mut len,
@@ -1019,7 +1060,7 @@ impl OffchainApi for () {
let result = unsafe {
ext_http_request_add_header.get()(
request_id.0 as u32,
request_id.into(),
name.as_ptr(),
name.len() as u32,
value.as_ptr(),
@@ -1041,7 +1082,7 @@ impl OffchainApi for () {
) -> Result<(), offchain::HttpError> {
let res = unsafe {
ext_http_request_write_body.get()(
request_id.0 as u32,
request_id.into(),
chunk.as_ptr(),
chunk.len() as u32,
deadline.map_or(0, |x| x.unix_millis()),
@@ -1084,7 +1125,7 @@ impl OffchainApi for () {
let mut len = 0u32;
let raw_result = unsafe {
let ptr = ext_http_response_headers.get()(
request_id.0 as u32,
request_id.into(),
&mut len,
);
@@ -1101,7 +1142,7 @@ impl OffchainApi for () {
) -> Result<usize, offchain::HttpError> {
let res = unsafe {
ext_http_response_read_body.get()(
request_id.0 as u32,
request_id.into(),
buffer.as_mut_ptr(),
buffer.len() as u32,
deadline.map_or(0, |x| x.unix_millis()),