three_em_cli 0.2.0

A blazingly fast, secure, reliable, multi-language execution machine for Smart Contracts.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184

#![allow(dead_code)]

use crate::utils::hasher;
use deno_crypto::rand::rngs::OsRng;
use rsa::pkcs1::{
  FromRsaPrivateKey, FromRsaPublicKey, ToRsaPrivateKey, ToRsaPublicKey,
};
use rsa::{PaddingScheme, PublicKey, RsaPrivateKey, RsaPublicKey};

pub struct GeneratedPair {
  private_key: Vec<u8>,
  public_key: Vec<u8>,
}

fn get_scheme() -> PaddingScheme {
  PaddingScheme::new_pkcs1v15_sign(Some(rsa::hash::Hash::SHA2_256))
}

pub async fn generate_keypair() -> GeneratedPair {
  let pair = tokio::task::spawn_blocking(move || {
    let mut rng = OsRng;
    let private_key = RsaPrivateKey::new(&mut rng, 2048_usize).unwrap();
    let public_key = RsaPublicKey::from(&private_key);

    let private_key_bytes = private_key.to_pkcs1_der().unwrap();
    let public_key_bytes = public_key.to_pkcs1_der().unwrap();

    GeneratedPair {
      private_key: private_key_bytes.as_ref().to_vec(),
      public_key: public_key_bytes.as_ref().to_vec(),
    }
  })
  .await
  .unwrap();
  pair
}

pub fn to_private_key(
  private_key: Vec<u8>,
) -> rsa::pkcs1::Result<RsaPrivateKey> {
  let bytes = &private_key[..];

  RsaPrivateKey::from_pkcs1_der(bytes)
}

fn to_public_key(public_key: Vec<u8>) -> rsa::pkcs1::Result<RsaPublicKey> {
  let bytes = &public_key[..];

  RsaPublicKey::from_pkcs1_der(bytes)
}

pub fn encrypt(public_key: Vec<u8>, data: &str) -> (Vec<u8>, usize) {
  let mut rng = OsRng;
  let rsa = to_public_key(public_key).unwrap();
  let padding = PaddingScheme::new_pkcs1v15_encrypt();
  let data_bytes = data.as_bytes();
  let enc_data = rsa.encrypt(&mut rng, padding, data_bytes).unwrap();
  let size = &enc_data.len();
  (enc_data, size.to_owned())
}

pub fn decrypt(private_key: Vec<u8>, data: Vec<u8>) -> (Vec<u8>, usize) {
  let padding = PaddingScheme::new_pkcs1v15_encrypt();
  let rsa = to_private_key(private_key).unwrap();
  let dec_data = rsa.decrypt(padding, &data).unwrap();
  let size = &dec_data.len();
  (dec_data, size.to_owned())
}

pub fn sign(private_key: Vec<u8>, data: &str) -> Vec<u8> {
  let private_key = match to_private_key(private_key) {
    Ok(key) => key,
    Err(_) => panic!("Key is invalid"),
  };

  let (scheme, hasher) = (get_scheme(), hasher(data.as_bytes()));

  private_key.sign(scheme, &hasher).unwrap()
}

pub fn verify(public_key: Vec<u8>, signature: Vec<u8>, data: &str) -> bool {
  let public_key = match to_public_key(public_key) {
    Ok(key) => key,
    Err(_) => panic!("Key is invalid"),
  };

  let (scheme, hasher) = (get_scheme(), hasher(data.as_bytes()));

  let verify = public_key.verify(scheme, &hasher, &signature[..]);

  verify.is_ok()
}

impl GeneratedPair {
  pub async fn new() -> GeneratedPair {
    generate_keypair().await
  }

  pub fn public_to_string(&self) -> String {
    String::from_utf8(self.public_key.to_owned()).unwrap()
  }

  pub fn private_to_string(&self) -> String {
    String::from_utf8(self.private_key.to_owned()).unwrap()
  }

  pub fn encrypt(&self, data: &str) -> (Vec<u8>, usize) {
    encrypt(self.public_key.to_owned(), data)
  }

  pub fn decrypt(&self, data: Vec<u8>) -> (Vec<u8>, usize) {
    decrypt(self.private_key.to_owned(), data)
  }

  pub fn sign(&self, data: &str) -> Vec<u8> {
    sign(self.private_key.to_owned(), data)
  }
}

#[cfg(not(debug_assertions))]
#[cfg(test)]
mod tests {
  use crate::node_crypto::{
    decrypt, encrypt, generate_keypair, sign, verify, GeneratedPair,
  };

  #[tokio::test]
  async fn test_encrypt() {
    let keypair = generate_keypair().await;
    let (encrypt, _) = encrypt(keypair.public_key.to_owned(), "Hello Divy");
    let (decrypt, decrypt_len) = decrypt(keypair.private_key, encrypt);
    assert_eq!(
      String::from_utf8(decrypt[..decrypt_len].to_vec()).unwrap(),
      "Hello Divy"
    );
  }

  #[tokio::test]
  async fn test_encrypt_from_internal() {
    let keypair = GeneratedPair::new().await;
    let (encrypt, _) = keypair.encrypt("Hello Divy");
    let (decrypt, decrypt_len) = keypair.decrypt(encrypt);
    assert_eq!(
      String::from_utf8(decrypt[..decrypt_len].to_vec()).unwrap(),
      "Hello Divy"
    );
  }

  #[tokio::test]
  async fn test_signing() {
    let keypair = generate_keypair().await;
    let keypair2 = generate_keypair().await;

    let signed = sign(keypair.private_key, "Hello World!");
    let is_valid = verify(
      keypair.public_key.to_owned(),
      signed.to_owned(),
      "Hello World!",
    );
    assert!(is_valid);
    let is_valid = verify(
      keypair.public_key.to_owned(),
      signed.to_owned(),
      "Hello World",
    );
    assert!(!is_valid);
    let is_valid = verify(keypair2.public_key, signed, "Hello World!");
    assert!(!is_valid);
  }

  #[tokio::test]
  async fn test_signing_internal() {
    let keypair = generate_keypair().await;
    let signed = keypair.sign("Hello World!");
    let is_valid = verify(
      keypair.public_key.to_owned(),
      signed.to_owned(),
      "Hello World!",
    );
    assert!(is_valid);
    let is_valid = verify(keypair.public_key, signed, "Hello World");
    assert!(!is_valid);
  }
}