essential-vm 0.13.0

The Essential VM
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125

//! Crypto operation implementations.

use crate::{
    asm::Word,
    error::{CryptoError, OpResult, StackError},
    Stack,
};
use essential_types::convert::{
    bytes_from_word, u8_32_from_word_4, u8_64_from_word_8, word_4_from_u8_32, word_from_bytes,
};

#[cfg(test)]
mod tests;

/// `Crypto::Sha256` implementation.
pub(crate) fn sha256(stack: &mut Stack) -> OpResult<()> {
    use sha2::Digest;

    let data = pop_bytes(stack)?;

    let mut hasher = sha2::Sha256::new();
    hasher.update(&data);
    let hash_bytes: [u8; 32] = hasher.finalize().into();
    let hash_words = word_4_from_u8_32(hash_bytes);
    stack.extend(hash_words)?;
    Ok(())
}

#[cfg_attr(feature = "tracing", tracing::instrument(skip_all))]
/// `Crypto::VerifyEd25519` implementation.
pub(crate) fn verify_ed25519(stack: &mut Stack) -> OpResult<()> {
    use ed25519_dalek::{Signature, Verifier, VerifyingKey};
    let pubkey_words = stack.pop4()?;
    let signature_words = stack.pop8()?;

    let data = pop_bytes(stack)?;

    let pubkey_bytes = u8_32_from_word_4(pubkey_words);
    let pubkey = VerifyingKey::from_bytes(&pubkey_bytes).map_err(CryptoError::Ed25519)?;
    let signature_bytes = u8_64_from_word_8(signature_words);
    let signature = Signature::from_bytes(&signature_bytes);

    #[cfg(feature = "tracing")]
    tracing::trace!("{:?}, {:?}", signature, pubkey);

    let valid = pubkey.verify(&data, &signature).is_ok();
    let word = Word::from(valid);
    stack.push(word)?;
    Ok(())
}

#[cfg_attr(feature = "tracing", tracing::instrument(skip_all))]
pub(crate) fn recover_secp256k1(stack: &mut Stack) -> OpResult<()> {
    use secp256k1::{
        ecdsa::{RecoverableSignature, RecoveryId},
        Message, Secp256k1,
    };

    // Pop the stack.
    let recover_bit = stack.pop()?;
    let signature_words = stack.pop8()?;
    let message_hash = stack.pop4()?;

    // Parse the recovery ID.
    let recovery_id: i32 = recover_bit
        .try_into()
        .map_err(|_| CryptoError::Secp256k1RecoveryId)?;
    let recovery_id = RecoveryId::try_from(recovery_id).map_err(CryptoError::Secp256k1)?;

    // Parse the signature
    let signature_bytes = u8_64_from_word_8(signature_words);
    let recoverable_signature = RecoverableSignature::from_compact(&signature_bytes, recovery_id)
        .map_err(CryptoError::Secp256k1)?;

    #[cfg(feature = "tracing")]
    tracing::trace!("{:?}", recoverable_signature);

    // Parse the message hash.
    let message_hash = u8_32_from_word_4(message_hash);
    let message = Message::from_digest(message_hash);

    // Recover the public key.
    let secp = Secp256k1::new();
    match secp.recover_ecdsa(&message, &recoverable_signature) {
        Ok(public_key) => {
            #[cfg(feature = "tracing")]
            tracing::trace!("{:?}", public_key);
            // Serialize the public key.
            // Note the public key is 33 bytes long.
            let [public_key @ .., end] = public_key.serialize();
            let public_key_word = word_4_from_u8_32(public_key);
            let mut end_word = [0u8; 8];
            end_word[7] = end;
            let end_word = word_from_bytes(end_word);

            // Push the public key.
            stack.extend(public_key_word)?;
            stack.push(end_word)?;
        }
        // If the public key could not be recovered, push zeros.
        Err(_) => stack.extend([0; 5])?,
    }

    Ok(())
}

/// Pop a length in bytes and that number of bytes from the stack.
///
/// Note that this will pop the words `ceil(bytes_len / 8)` from the stack.
fn pop_bytes(stack: &mut Stack) -> Result<Vec<u8>, StackError> {
    let bytes_len = stack.pop()?;
    let bytes_len: usize = bytes_len.try_into().map_err(|_| StackError::Overflow)?;
    let num_words = bytes_len.div_ceil(core::mem::size_of::<Word>());

    // Pop the bytes from the stack.
    stack.pop_words::<_, _, StackError>(num_words, |words| {
        Ok(bytes_from_words(words.iter().copied())
            .take(bytes_len)
            .collect())
    })
}

fn bytes_from_words(words: impl IntoIterator<Item = Word>) -> impl Iterator<Item = u8> {
    words.into_iter().flat_map(bytes_from_word)
}