foster/denoland-deno
1
0
Fork 0
mirror of https://github.com/denoland/deno.git synced 2024-11-24 15:19:26 -05:00
Code Issues Packages 1 Wiki Activity

chore: use pure rust secp256k1 crate (#21154)

Browse source 
Saves ~40s in fresh debug build
This commit is contained in:
Divy Srivastava 2023-11-10 09:29:01 -08:00 committed by GitHub
parent 9f2e56ba96
commit 05704fbf78
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 40 additions and 42 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

35
Cargo.lock generated
View file

@ -1454,6 +1454,7 @@ dependencies = [
"http", "http",
"idna 0.3.0", "idna 0.3.0",
"indexmap 2.0.2", "indexmap 2.0.2",
"k256",
"lazy-regex", "lazy-regex",
"libc", "libc",
"libz-sys", "libz-sys",
@ -1476,7 +1477,6 @@ dependencies = [
"ripemd", "ripemd",
"rsa", "rsa",
"scrypt", "scrypt",
"secp256k1",
"serde", "serde",
"sha-1", "sha-1",
"sha2", "sha2",
@ -3014,6 +3014,20 @@ dependencies = [
"winapi", "winapi",
] ]
[[package]]
name = "k256"
version = "0.13.1"
source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "cadb76004ed8e97623117f3df85b17aaa6626ab0b0831e6573f104df16cd1bcc"
dependencies = [
"cfg-if",
"ecdsa",
"elliptic-curve",
"once_cell",
"sha2",
"signature",
]
[[package]] [[package]]
name = "kqueue" name = "kqueue"
version = "1.0.8" version = "1.0.8"
@ -4601,25 +4615,6 @@ dependencies = [
"zeroize", "zeroize",
] ]
[[package]]
name = "secp256k1"
version = "0.28.0"
source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "2acea373acb8c21ecb5a23741452acd2593ed44ee3d343e72baaa143bc89d0d5"
dependencies = [
"rand",
"secp256k1-sys",
]
[[package]]
name = "secp256k1-sys"
version = "0.9.0"
source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "09e67c467c38fd24bd5499dc9a18183b31575c12ee549197e3e20d57aa4fe3b7"
dependencies = [
"cc",
]
[[package]] [[package]]
name = "security-framework" name = "security-framework"
version = "2.9.2" version = "2.9.2"

2
ext/node/Cargo.toml
View file

@ -38,6 +38,7 @@ hkdf.workspace = true
http.workspace = true http.workspace = true
idna = "0.3.0" idna = "0.3.0"
indexmap.workspace = true indexmap.workspace = true
k256 = "0.13.1"
lazy-regex.workspace = true lazy-regex.workspace = true
libc.workspace = true libc.workspace = true
libz-sys = { version = "1.1.8", features = ["static"] } libz-sys = { version = "1.1.8", features = ["static"] }
@ -60,7 +61,6 @@ ring.workspace = true
ripemd = "0.1.3" ripemd = "0.1.3"
rsa.workspace = true rsa.workspace = true
scrypt = "0.11.0" scrypt = "0.11.0"
secp256k1 = { version = "0.28.0", features = ["rand-std"] }
serde = "1.0.149" serde = "1.0.149"
sha-1 = "0.10.0" sha-1 = "0.10.0"
sha2.workspace = true sha2.workspace = true

45
ext/node/ops/crypto/mod.rs
View file

@ -39,9 +39,6 @@ use rsa::Oaep;
use rsa::Pkcs1v15Encrypt; use rsa::Pkcs1v15Encrypt;
use rsa::RsaPrivateKey; use rsa::RsaPrivateKey;
use rsa::RsaPublicKey; use rsa::RsaPublicKey;
use secp256k1::ecdh::SharedSecret;
use secp256k1::Secp256k1;
use secp256k1::SecretKey;
mod cipher; mod cipher;
mod dh; mod dh;
@ -1012,10 +1009,11 @@ pub fn op_node_ecdh_generate_keys(
let mut rng = rand::thread_rng(); let mut rng = rand::thread_rng();
match curve { match curve {
"secp256k1" => { "secp256k1" => {
let secp = Secp256k1::new(); let privkey =
let (privkey, pubkey) = secp.generate_keypair(&mut rng); elliptic_curve::SecretKey::<k256::Secp256k1>::random(&mut rng);
pubbuf.copy_from_slice(&pubkey.serialize_uncompressed()); let pubkey = privkey.public_key();
privbuf.copy_from_slice(&privkey.secret_bytes()); pubbuf.copy_from_slice(pubkey.to_sec1_bytes().as_ref());
privbuf.copy_from_slice(privkey.to_nonzero_scalar().to_bytes().as_ref());
Ok(0) Ok(0)
} }
@ -1053,16 +1051,22 @@ pub fn op_node_ecdh_compute_secret(
) -> Result<(), AnyError> { ) -> Result<(), AnyError> {
match curve { match curve {
"secp256k1" => { "secp256k1" => {
let this_secret_key = SecretKey::from_slice(
this_priv.expect("no private key provided?").as_ref(),
)
.unwrap();
let their_public_key = let their_public_key =
secp256k1::PublicKey::from_slice(their_pub).unwrap(); elliptic_curve::PublicKey::<k256::Secp256k1>::from_sec1_bytes(
let shared_secret = their_pub,
SharedSecret::new(&their_public_key, &this_secret_key); )
.expect("bad public key");
let this_private_key =
elliptic_curve::SecretKey::<k256::Secp256k1>::from_slice(
&this_priv.expect("must supply private key"),
)
.expect("bad private key");
let shared_secret = elliptic_curve::ecdh::diffie_hellman(
this_private_key.to_nonzero_scalar(),
their_public_key.as_affine(),
);
secret.copy_from_slice(shared_secret.raw_secret_bytes());
secret.copy_from_slice(&shared_secret.secret_bytes());
Ok(()) Ok(())
} }
"prime256v1" | "secp256r1" => { "prime256v1" | "secp256r1" => {
@ -1125,12 +1129,11 @@ pub fn op_node_ecdh_compute_public_key(
) -> Result<(), AnyError> { ) -> Result<(), AnyError> {
match curve { match curve {
"secp256k1" => { "secp256k1" => {
let secp = Secp256k1::new(); let this_private_key =
let secret_key = SecretKey::from_slice(privkey).unwrap(); elliptic_curve::SecretKey::<k256::Secp256k1>::from_slice(privkey)
let public_key = .expect("bad private key");
secp256k1::PublicKey::from_secret_key(&secp, &secret_key); let public_key = this_private_key.public_key();
pubkey.copy_from_slice(public_key.to_sec1_bytes().as_ref());
pubkey.copy_from_slice(&public_key.serialize_uncompressed());
Ok(()) Ok(())
} }