1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
pub use signatory::ed25519::{PublicKey, Seed, Signature};
use ring::{
self,
rand::SystemRandom,
signature::{Ed25519KeyPair, KeyPair},
};
use signatory::{
encoding::pkcs8::{self, FromPkcs8, GeneratePkcs8},
Error, PublicKeyed, Signature as _,
};
use untrusted;
pub struct Signer(Ed25519KeyPair);
impl<'a> From<&'a Seed> for Signer {
fn from(seed: &'a Seed) -> Self {
let keypair =
Ed25519KeyPair::from_seed_unchecked(untrusted::Input::from(seed.as_secret_slice()))
.unwrap();
Signer(keypair)
}
}
impl FromPkcs8 for Signer {
fn from_pkcs8<K: AsRef<[u8]>>(secret_key: K) -> Result<Self, Error> {
let keypair = Ed25519KeyPair::from_pkcs8(untrusted::Input::from(secret_key.as_ref()))
.map_err(|_| Error::new())?;
Ok(Signer(keypair))
}
}
impl GeneratePkcs8 for Signer {
fn generate_pkcs8() -> Result<pkcs8::SecretKey, Error> {
let keypair = Ed25519KeyPair::generate_pkcs8(&SystemRandom::new()).unwrap();
pkcs8::SecretKey::from_bytes(keypair.as_ref())
}
}
impl PublicKeyed<PublicKey> for Signer {
fn public_key(&self) -> Result<PublicKey, Error> {
Ok(PublicKey::from_bytes(self.0.public_key()).unwrap())
}
}
impl signatory::Signer<Signature> for Signer {
fn try_sign(&self, msg: &[u8]) -> Result<Signature, Error> {
Ok(Signature::from_bytes(self.0.sign(msg).as_ref()).unwrap())
}
}
#[derive(Clone, Debug, Eq, PartialEq)]
pub struct Verifier(PublicKey);
impl<'a> From<&'a PublicKey> for Verifier {
fn from(public_key: &'a PublicKey) -> Self {
Verifier(*public_key)
}
}
impl signatory::Verifier<Signature> for Verifier {
fn verify(&self, msg: &[u8], signature: &Signature) -> Result<(), Error> {
ring::signature::verify(
&ring::signature::ED25519,
untrusted::Input::from(self.0.as_bytes()),
untrusted::Input::from(msg),
untrusted::Input::from(signature.as_bytes()),
)
.map_err(|_| Error::new())
}
}
#[cfg(test)]
mod tests {
use super::{Signer, Verifier};
ed25519_tests!(Signer, Verifier);
}