Merge pull request #4902 from unisonweb/ed25519-rkt

Add Ed25519 to racket crypto.rkt

Author: aryairani

scheme-libs/racket/unison/crypto.rkt

@@ -5,7 +5,11 @@
          racket/runtime-path
          (for-syntax racket/base)
          openssl/libcrypto
-         unison/chunked-seq)
+         unison/chunked-seq
+         racket/bool
+        (only-in openssl/sha1 bytes->hex-string hex-string->bytes)
+
+         )
 
 (provide (prefix-out unison-FOp-crypto.
     (combine-out
@@ -19,7 +23,10 @@
         HashAlgorithm.Blake2b_256
         HashAlgorithm.Blake2b_512
         hashBytes
-        hmacBytes)))
+        hmacBytes
+        Ed25519.sign.impl
+        Ed25519.verify.impl
+        )))
 
 (define-runtime-path libb2-so '(so "libb2" ("1" #f)))
 
@@ -68,7 +75,7 @@
                 _int         ; key-len
                 _pointer     ; input
                 _int         ; input-len
-                _pointer     ; md
+                _pointer     ; output pointer
                 _pointer     ; null
             -> _pointer ; unused
             ))))
@@ -99,6 +106,134 @@
 (define HashAlgorithm.Blake2s_256 (lc-algo "EVP_blake2s256" 256))
 (define HashAlgorithm.Blake2b_512 (lc-algo "EVP_blake2b512" 512))
 
+(define _EVP_PKEY-pointer (_cpointer 'EVP_PKEY))
+(define _EVP_MD_CTX-pointer (_cpointer 'EVP_MD_CTX))
+
+(define EVP_MD_CTX_new
+    (if (string? libcrypto)
+        (lambda _ (raise (error 'libcrypto "EVP_MD_CTX_create\n~a" libcrypto)))
+        (get-ffi-obj "EVP_MD_CTX_new" libcrypto
+            (_fun -> _EVP_MD_CTX-pointer
+            ))))
+
+; EVP_PKEY_new_raw_private_key(int type, NULL, const unsigned char *key, size_t keylen);
+(define EVP_PKEY_new_raw_private_key
+    (if (string? libcrypto)
+        (lambda _ (raise (error 'libcrypto "EVP_PKEY_new_raw_private_key\n~a" libcrypto)))
+        (get-ffi-obj "EVP_PKEY_new_raw_private_key" libcrypto
+            (_fun
+                _int       ; type
+                _pointer   ; engine (null)
+                _pointer   ; key
+                _int       ; key-len
+            -> _EVP_PKEY-pointer
+            ))))
+
+; EVP_DigestSignInit(hctx, NULL, EVP_sha256(), NULL, pkey)
+(define EVP_DigestSignInit
+    (if (string? libcrypto)
+        (lambda _ (raise (error 'libcrypto "EVP_DigestSignInit\n~a" libcrypto)))
+        (get-ffi-obj "EVP_DigestSignInit" libcrypto
+            (_fun
+                _EVP_MD_CTX-pointer
+                _pointer          ; (null)
+                _pointer          ; (null)
+                _pointer          ; (null)
+                _EVP_PKEY-pointer ; pkey
+            -> _int
+            ))))
+
+; EVP_DigestSign(hctx, output, output-len-ptr, input-data, input-data-len)
+(define EVP_DigestSign
+    (if (string? libcrypto)
+        (lambda _ (raise (error 'libcrypto "EVP_DigestSign\n~a" libcrypto)))
+        (get-ffi-obj "EVP_DigestSign" libcrypto
+            (_fun
+                _EVP_MD_CTX-pointer
+                _pointer  ; output
+                (_ptr o _int)  ; output-len (null prolly)
+                _pointer  ; input-data
+                _int      ; input-data-len
+            -> _int
+            ))))
+
+; EVP_PKEY_new_raw_public_key(int type, NULL, const unsigned char *key, size_t keylen);
+(define EVP_PKEY_new_raw_public_key
+    (if (string? libcrypto)
+        (lambda _ (raise (error 'libcrypto "EVP_PKEY_new_raw_public_key\n~a" libcrypto)))
+        (get-ffi-obj "EVP_PKEY_new_raw_public_key" libcrypto
+            (_fun
+                _int       ; type
+                _pointer   ; engine (null)
+                _pointer   ; key
+                _int       ; key-len
+            -> _EVP_PKEY-pointer
+            ))))
+
+; int EVP_DigestVerifyInit(EVP_MD_CTX *ctx, EVP_PKEY_CTX **pctx,
+;                          const EVP_MD *type, ENGINE *e, EVP_PKEY *pkey);
+(define EVP_DigestVerifyInit
+    (if (string? libcrypto)
+        (lambda _ (raise (error 'libcrypto "EVP_DigestVerifyInit\n~a" libcrypto)))
+        (get-ffi-obj "EVP_DigestVerifyInit" libcrypto
+            (_fun
+                _EVP_MD_CTX-pointer
+                _pointer          ; (null)
+                _pointer          ; (null)
+                _pointer          ; (null)
+                _EVP_PKEY-pointer ; pkey
+            -> _int
+            ))))
+
+; int EVP_DigestVerify(EVP_MD_CTX *ctx, const unsigned char *sig,
+;                      size_t siglen, const unsigned char *tbs, size_t tbslen);
+(define EVP_DigestVerify
+    (if (string? libcrypto)
+        (lambda _ (raise (error 'libcrypto "EVP_DigestVerify\n~a" libcrypto)))
+        (get-ffi-obj "EVP_DigestVerify" libcrypto
+            (_fun
+                _EVP_MD_CTX-pointer
+                _pointer  ; signature
+                _int      ; signature-len
+                _pointer  ; input-data
+                _int      ; input-data-len
+            -> _int
+            ))))
+
+
+(define EVP_PKEY_ED25519 1087)
+(define (evpSign-raw seed input)
+  (let* ([ctx (EVP_MD_CTX_new)]
+         [pkey (EVP_PKEY_new_raw_private_key EVP_PKEY_ED25519 #f seed (bytes-length seed))])
+    (if (false? pkey)
+      (raise (error "Invalid seed provided."))
+      (if (<= (EVP_DigestSignInit ctx #f #f #f pkey) 0)
+        (raise (error "Initializing signing failed"))
+        (let* ([output (make-bytes 64)])
+          (if (<= (EVP_DigestSign ctx output input (bytes-length input)) 0)
+            (raise (error "Running digest failed"))
+            output))))))
+
+(define (evpVerify-raw public-key input signature)
+  (let* ([ctx (EVP_MD_CTX_new)]
+         [pkey (EVP_PKEY_new_raw_public_key EVP_PKEY_ED25519 #f public-key (bytes-length public-key))])
+    (if (false? pkey)
+      (raise (error "Invalid seed provided."))
+      (if (<= (EVP_DigestVerifyInit ctx #f #f #f pkey) 0)
+        (raise (error "Initializing Verify failed"))
+        (if (<= (EVP_DigestVerify ctx signature (bytes-length signature) input (bytes-length input)) 0)
+          #f
+          #t)))))
+
+(define (Ed25519.sign.impl seed _ignored_pubkey input)
+    (bytes->chunked-bytes (evpSign-raw (chunked-bytes->bytes seed) (chunked-bytes->bytes input))))
+
+(define (Ed25519.verify.impl public-key input signature)
+    (evpVerify-raw
+        (chunked-bytes->bytes public-key)
+        (chunked-bytes->bytes input)
+        (chunked-bytes->bytes signature)))
+
 ; This one isn't provided by libcrypto, for some reason
 (define (HashAlgorithm.Blake2b_256) (cons 'blake2b 256))
 
@@ -154,85 +289,101 @@
     (hashBytes-raw kind full)))
 
 (define (hmacBytes kind key input)
-  (let ([key (chunked-bytes->bytes key)]
-        [input (chunked-bytes->bytes input)])
-    (bytes->chunked-bytes
-     (case (car kind)
-       ['blake2b (hmacBlake kind key input)]
-       [else
-        (let* ([bytes (/ (cdr kind) 8)]
-               [output (make-bytes bytes)]
-               [algo (car kind)])
-          (HMAC algo key (bytes-length key) input (bytes-length input) output #f)
-          output)]))))
+    (bytes->chunked-bytes (hmacBytes-raw kind (chunked-bytes->bytes key) (chunked-bytes->bytes input))))
+
+(define (hmacBytes-raw kind key input)
+  (case (car kind)
+    ['blake2b (hmacBlake kind key input)]
+    [else
+     (let* ([bytes (/ (cdr kind) 8)]
+            [output (make-bytes bytes)]
+            [algo (car kind)])
+       (HMAC algo key (bytes-length key) input (bytes-length input) output #f)
+       output)]))
 
 
 ; These will only be evaluated by `raco test`
 (module+ test
   (require rackunit
            (only-in openssl/sha1 bytes->hex-string hex-string->bytes))
 
+  (test-case "ed25519 sign"
+    (check-equal?
+        (bytes->hex-string
+          (evpSign-raw
+            (hex-string->bytes "0000000000000000000000000000000000000000000000000000000000000000") #""))
+        "8f895b3cafe2c9506039d0e2a66382568004674fe8d237785092e40d6aaf483e4fc60168705f31f101596138ce21aa357c0d32a064f423dc3ee4aa3abf53f803"))
+
+  (test-case "ed25519 verify"
+    (check-equal?
+        (evpVerify-raw
+          (hex-string->bytes "3b6a27bcceb6a42d62a3a8d02a6f0d73653215771de243a63ac048a18b59da29")
+          #""
+          (hex-string->bytes "8f895b3cafe2c9506039d0e2a66382568004674fe8d237785092e40d6aaf483e4fc60168705f31f101596138ce21aa357c0d32a064f423dc3ee4aa3abf53f803")
+          )
+        #t))
+
   (test-case "sha1 hmac"
     (check-equal?
-     (bytes->hex-string (hmacBytes (HashAlgorithm.Sha1) #"key" #"message"))
+     (bytes->hex-string (hmacBytes-raw (HashAlgorithm.Sha1) #"key" #"message"))
      "2088df74d5f2146b48146caf4965377e9d0be3a4"))
 
   (test-case "blake2b-256 hmac"
     (check-equal?
-     (bytes->hex-string (hmacBytes (HashAlgorithm.Blake2b_256) #"key" #"message"))
+     (bytes->hex-string (hmacBytes-raw (HashAlgorithm.Blake2b_256) #"key" #"message"))
      "442d98a3872d3f56220f89e2b23d0645610b37c33dd3315ef224d0e39ada6751"))
 
   (test-case "blake2b-512 hmac"
     (check-equal?
-     (bytes->hex-string (hmacBytes (HashAlgorithm.Blake2b_512) #"key" #"message"))
+     (bytes->hex-string (hmacBytes-raw (HashAlgorithm.Blake2b_512) #"key" #"message"))
      "04e9ada930688cde75eec939782eed653073dd621d7643f813702976257cf037d325b50eedd417c01b6ad1f978fbe2980a93d27d854044e8626df6fa279d6680"))
 
   (test-case "blake2s-256 hmac"
     (check-equal?
-     (bytes->hex-string (hmacBytes (HashAlgorithm.Blake2s_256) #"key" #"message"))
+     (bytes->hex-string (hmacBytes-raw (HashAlgorithm.Blake2s_256) #"key" #"message"))
      "bba8fa28708ae80d249e317318c95c859f3f77512be23910d5094d9110454d6f"))
 
   (test-case "md5 basic"
     (check-equal?
-     (bytes->hex-string (hashBytes (HashAlgorithm.Md5) #""))
+     (bytes->hex-string (hashBytes-raw (HashAlgorithm.Md5) #""))
      "d41d8cd98f00b204e9800998ecf8427e"))
 
   (test-case "sha1 basic"
     (check-equal?
-     (bytes->hex-string (hashBytes (HashAlgorithm.Sha1) #""))
+     (bytes->hex-string (hashBytes-raw (HashAlgorithm.Sha1) #""))
      "da39a3ee5e6b4b0d3255bfef95601890afd80709"))
 
   (test-case "sha2-256 basic"
     (check-equal?
-     (bytes->hex-string (hashBytes (HashAlgorithm.Sha2_256) #""))
+     (bytes->hex-string (hashBytes-raw (HashAlgorithm.Sha2_256) #""))
      "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855"))
 
   (test-case "sha2-512 basic"
     (check-equal?
-     (bytes->hex-string (hashBytes (HashAlgorithm.Sha2_512) #""))
+     (bytes->hex-string (hashBytes-raw (HashAlgorithm.Sha2_512) #""))
      "cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e"))
 
   (test-case "sha3-256 basic"
     (check-equal?
-     (bytes->hex-string (hashBytes (HashAlgorithm.Sha3_256) #""))
+     (bytes->hex-string (hashBytes-raw (HashAlgorithm.Sha3_256) #""))
      "a7ffc6f8bf1ed76651c14756a061d662f580ff4de43b49fa82d80a4b80f8434a"))
 
   (test-case "sha3-512 basic"
     (check-equal?
-     (bytes->hex-string (hashBytes (HashAlgorithm.Sha3_512) #""))
+     (bytes->hex-string (hashBytes-raw (HashAlgorithm.Sha3_512) #""))
      "a69f73cca23a9ac5c8b567dc185a756e97c982164fe25859e0d1dcc1475c80a615b2123af1f5f94c11e3e9402c3ac558f500199d95b6d3e301758586281dcd26"))
 
   (test-case "blake2s_256 basic"
     (check-equal?
-     (bytes->hex-string (hashBytes (HashAlgorithm.Blake2s_256) #""))
+     (bytes->hex-string (hashBytes-raw (HashAlgorithm.Blake2s_256) #""))
      "69217a3079908094e11121d042354a7c1f55b6482ca1a51e1b250dfd1ed0eef9"))
 
   (test-case "blake2b_256 basic"
     (check-equal?
-     (bytes->hex-string (hashBytes (HashAlgorithm.Blake2b_256) #""))
+     (bytes->hex-string (hashBytes-raw (HashAlgorithm.Blake2b_256) #""))
      "0e5751c026e543b2e8ab2eb06099daa1d1e5df47778f7787faab45cdf12fe3a8"))
 
   (test-case "blake2b_512 basic"
     (check-equal?
-     (bytes->hex-string (hashBytes (HashAlgorithm.Blake2b_512) #""))
+     (bytes->hex-string (hashBytes-raw (HashAlgorithm.Blake2b_512) #""))
      "786a02f742015903c6c6fd852552d272912f4740e15847618a86e217f71f5419d25e1031afee585313896444934eb04b903a685b1448b755d56f701afe9be2ce")))