cairn_cli/

crypto.rs

/// Cryptographic utilities for EIP-4361 signing and Ed25519 DID operations.
/// 
/// This module provides the signing primitives needed for:
/// - EIP-4361 challenge signing (wallet authentication)
/// - Ed25519 DID signing (PoI commitment signatures)
/// - JWKS verification (Proof of Transport validation)
use crate::errors::CairnError;

/// Sign an EIP-4361 message with an Ethereum private key.
/// Returns the hex-encoded signature.
pub fn sign_eip4361_message(message: &str, private_key_hex: &str) -> Result<String, CairnError> {
    use ethers::signers::{LocalWallet, Signer};
    use ethers::core::types::Signature;

    let wallet: LocalWallet = private_key_hex
        .parse()
        .map_err(|e: ethers::signers::WalletError| CairnError::SignatureError(e.to_string()))?;

    // ethers uses blocking sign_message under the hood for LocalWallet
    let rt = tokio::runtime::Handle::current();
    let sig: Signature = rt
        .block_on(wallet.sign_message(message))
        .map_err(|e| CairnError::SignatureError(e.to_string()))?;

    Ok(format!("0x{}", sig))
}

/// Sign a payload with an Ed25519 key (for DID-based PoI signatures).
pub fn ed25519_sign(payload: &[u8], secret_key_bytes: &[u8]) -> Result<Vec<u8>, CairnError> {
    use ed25519_dalek::{SigningKey, Signer};

    if secret_key_bytes.len() != 32 {
        return Err(CairnError::SignatureError(
            "Ed25519 secret key must be 32 bytes".to_string(),
        ));
    }

    let mut key_bytes = [0u8; 32];
    key_bytes.copy_from_slice(secret_key_bytes);
    let signing_key = SigningKey::from_bytes(&key_bytes);
    let signature = signing_key.sign(payload);

    Ok(signature.to_bytes().to_vec())
}

/// Read a key file and return the raw bytes.
pub fn read_key_file(path: &str) -> Result<Vec<u8>, CairnError> {
    let content = std::fs::read_to_string(path)
        .map_err(|e| CairnError::InvalidInput(format!("Cannot read key file '{}': {}", path, e)))?;

    let trimmed = content.trim();

    // Try Solana JSON keypair array format: [114,147,178,...] (64 bytes, first 32 = secret)
    if trimmed.starts_with('[') {
        if let Ok(bytes) = serde_json::from_str::<Vec<u8>>(trimmed) {
            return Ok(bytes);
        }
    }

    // Try hex decoding
    if let Ok(bytes) = hex::decode(trimmed) {
        return Ok(bytes);
    }

    // Try base64
    if let Ok(bytes) = base64::Engine::decode(&base64::engine::general_purpose::STANDARD, trimmed) {
        return Ok(bytes);
    }

    // Return raw bytes
    Ok(trimmed.as_bytes().to_vec())
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn debug_solana_signature_mismatch() {
        let wallet_file: Vec<u8> = vec![114,147,178,86,109,101,92,89,64,113,139,40,164,247,79,32,2,170,19,0,34,189,59,224,230,196,225,47,14,188,224,220,160,91,118,254,241,12,235,238,190,24,75,113,77,47,51,79,21,242,145,102,154,93,23,141,237,38,200,128,108,195,168,227];
        
        // Emulating what happens in `src/cli/auth.rs` lines 114-118
        let secret = &wallet_file[..32]; 
        
        let wallet_address = bs58::encode(&wallet_file[32..]).into_string();
        let expected_challenge = format!(
            "Welcome to Backpac Agent Access.\n\n\
             Please sign this message to verify ownership of this wallet and establish a session.\n\n\
             Wallet: {}\n\
             DID: {}\n\
             Chain: {}\n\
             Nonce: {}",
            wallet_address.to_lowercase(),
            "did:key:z6MkhaXgBZDvotDkL5257faiztiCEsJUTtcCjdReE7m1",
            "solana:devnet",
            "bb82335399edce14da9652840e11ea873f1f982664399c3c9000df07bced96d0"
        );
        
        let sig_bytes = ed25519_sign(expected_challenge.as_bytes(), secret).unwrap();
        let sig_b58 = bs58::encode(sig_bytes).into_string();
        println!("Rust Signature (Base58): {}", sig_b58);
        assert_eq!(sig_b58, "5S2LiVAuHoMdLc12qAiyXVfYHBuU2qRFxbBgQV1hgwRz2KgSVeWzkLhDJVUiaepkKWPNYkiMJARiCDSxnPvsEDmR");
    }
}