stellar-baselib 0.5.7

A low level Rust library that offers a comprehensive set of functions for reading, writing, hashing, and signing primitive XDR constructs utilized in the Stellar network
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145

//! This module provides the signing functionality used by the stellar network

/// Sign the message with the given secrey key
pub fn sign(data: &[u8], secret_key: &[u8]) -> [u8; 64] {
    signing_impl::sign(data, secret_key)
}
/// Verify the signature
pub fn verify(data: &[u8], signature: &[u8], public_key: &[u8]) -> bool {
    signing_impl::verify(data, signature, public_key)
}

/// Generate Keypair
pub fn generate(secret_key: &[u8]) -> [u8; 32] {
    signing_impl::generate(secret_key)
}

#[cfg(all(target_arch = "wasm32", target_os = "unknown"))]
mod signing_impl {
    pub fn generate(secret_key: &[u8]) -> [u8; 32] {
        let secret_key_u8: &[u8; 32] = secret_key.try_into().unwrap();
        let nacl_keys = nacl::sign::generate_keypair(secret_key_u8);
        nacl_keys.pkey
    }

    pub fn sign(data: &[u8], secret_key: &[u8]) -> [u8; 64] {
        let mut data_u8 = data;
        let mut secret_key_u8 = secret_key;
        let signed_msg = nacl::sign::signature(&mut data_u8, &mut secret_key_u8).unwrap();
        let mut signature = [0u8; 64];

        for i in 0..signed_msg.len() {
            signature[i] = signed_msg[i];
        }
        signature
    }

    pub fn verify(data: &[u8], signature: &[u8], public_key: &[u8]) -> bool {
        let data_u8 = data;
        let signature_u8 = signature;
        let public_key_u8 = public_key;
        nacl::sign::verify(data_u8, signature_u8, public_key_u8).unwrap()
    }
}

#[cfg(not(target_arch = "wasm32"))]
mod signing_impl {
    use libsodium_sys::crypto_sign_detached;
    use libsodium_sys::crypto_sign_seed_keypair;

    macro_rules! raw_ptr_char {
        ($name: ident) => {
            $name.as_mut_ptr() as *mut libc::c_uchar
        };
    }

    /// make invoking ffi functions more readable
    macro_rules! raw_ptr_char_immut {
        ($name: ident) => {
            $name.as_ptr() as *const libc::c_uchar
        };
    }

    pub fn generate(secret_key: &[u8]) -> [u8; 32] {
        unsafe {
            libsodium_sys::sodium_init();
        };

        unsafe {
            let mut pk = [0u8; libsodium_sys::crypto_sign_PUBLICKEYBYTES as usize];
            let mut sk = [0u8; libsodium_sys::crypto_sign_SECRETKEYBYTES as usize];

            libsodium_sys::crypto_sign_seed_keypair(
                raw_ptr_char!(pk),
                raw_ptr_char!(sk),
                raw_ptr_char_immut!(secret_key),
            );

            pk
        }
    }

    pub fn sign(data: &[u8], secret_key: &[u8]) -> [u8; 64] {
        unsafe {
            unsafe {
                let mut signature = [0u8; libsodium_sys::crypto_sign_BYTES as usize];

                libsodium_sys::crypto_sign_detached(
                    raw_ptr_char!(signature),
                    std::ptr::null_mut(),
                    raw_ptr_char_immut!(data),
                    data.len() as libc::c_ulonglong,
                    secret_key.as_ptr(),
                );

                signature
            }
        }
    }

    pub fn verify(data: &[u8], signature: &[u8], public_key: &[u8]) -> bool {
        unsafe {
            let val = libsodium_sys::crypto_sign_verify_detached(
                raw_ptr_char_immut!(signature),
                raw_ptr_char_immut!(data),
                data.len() as libc::c_ulonglong,
                raw_ptr_char_immut!(public_key),
            );

            val == 0
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use hex_literal::hex;

    #[test]
    fn test_hash_string() {
        let data = b"hello world";
        let expected_sig = hex!(
            "587d4b472eeef7d07aafcd0b049640b0bb3f39784118c2e2b73a04fa2f64c9c538b4b2d0f5335e968a480021fdc23e98c0ddf424cb15d8131df8cb6c4bb58309"
        );
        let actual_sig = sign(data, &hex!(
            "1123740522f11bfef6b3671f51e159ccf589ccf8965262dd5f97d1721d383dd4ffbdd7ef9933fe7249dc5ca1e7120b6d7b7b99a7a367e1a2fc6cb062fe420437"
        ));
        assert_eq!(expected_sig, actual_sig);
    }
    #[test]
    fn test_verify_string() {
        let data = "hello world".as_bytes();
        let sig = hex!(
            "587d4b472eeef7d07aafcd0b049640b0bb3f39784118c2e2b73a04fa2f64c9c538b4b2d0f5335e968a480021fdc23e98c0ddf424cb15d8131df8cb6c4bb58309"
        );
        let bad_sig = hex!(
            "687d4b472eeef7d07aafcd0b049640b0bb3f39784118c2e2b73a04fa2f64c9c538b4b2d0f5335e968a480021fdc23e98c0ddf424cb15d8131df8cb6c4bb58309"
        );
        let public_key = hex!("ffbdd7ef9933fe7249dc5ca1e7120b6d7b7b99a7a367e1a2fc6cb062fe420437");

        assert!(verify(data, &sig, &public_key));
        assert!(!verify(b"corrupted", &sig, &public_key));
        assert!(!verify(data, &bad_sig, &public_key));
    }
}