fixed

Author: deatil

gm/sm2/key_pkcs1.go

@@ -121,25 +121,3 @@ func parseSM2PrivateKey(namedCurveOID *asn1.ObjectIdentifier, der []byte) (key *
 
     return priv, nil
 }
-
-var (
-    oidNamedCurveP256SM2 = asn1.ObjectIdentifier{1, 2, 156, 10197, 1, 301}
-)
-
-func namedCurveFromOID(oid asn1.ObjectIdentifier) elliptic.Curve {
-    switch {
-        case oid.Equal(oidNamedCurveP256SM2):
-            return P256()
-    }
-
-    return nil
-}
-
-func oidFromNamedCurve(curve elliptic.Curve) (asn1.ObjectIdentifier, bool) {
-    switch curve {
-        case P256():
-            return oidNamedCurveP256SM2, true
-    }
-
-    return nil, false
-}

gm/sm2/key_pkcs8.go

@@ -3,6 +3,7 @@ package sm2
 import (
     "errors"
     "encoding/asn1"
+    "crypto/elliptic"
     "crypto/x509/pkix"
 
     "github.com/deatil/go-cryptobin/gm/sm2/sm2curve"
@@ -150,3 +151,25 @@ func MarshalPublicKey(key *PublicKey) ([]byte, error) {
 
     return asn1.Marshal(r)
 }
+
+var (
+    oidNamedCurveP256SM2 = asn1.ObjectIdentifier{1, 2, 156, 10197, 1, 301}
+)
+
+func namedCurveFromOID(oid asn1.ObjectIdentifier) elliptic.Curve {
+    switch {
+        case oid.Equal(oidNamedCurveP256SM2):
+            return P256()
+    }
+
+    return nil
+}
+
+func oidFromNamedCurve(curve elliptic.Curve) (asn1.ObjectIdentifier, bool) {
+    switch curve {
+        case P256():
+            return oidNamedCurveP256SM2, true
+    }
+
+    return nil, false
+}

pubkey/bign/pkcs1.go

@@ -1,9 +1,24 @@
 package bign
 
 import (
+    "fmt"
     "errors"
+    "math/big"
+    "encoding/asn1"
+    "crypto/elliptic"
 )
 
+const ecPrivKeyVersion = 1
+
+// Per RFC 5915 the NamedCurveOID is marked as ASN.1 OPTIONAL, however in
+// most cases it is not.
+type ecPrivateKey struct {
+    Version       int
+    PrivateKey    []byte
+    NamedCurveOID asn1.ObjectIdentifier `asn1:"optional,explicit,tag:0"`
+    PublicKey     asn1.BitString        `asn1:"optional,explicit,tag:1"`
+}
+
 // ParseECPrivateKey parses an EC private key in SEC 1, ASN.1 DER form.
 //
 // This kind of key is commonly encoded in PEM blocks of type "EC PRIVATE KEY".
@@ -24,3 +39,78 @@ func MarshalECPrivateKey(key *PrivateKey) ([]byte, error) {
 
     return marshalECPrivateKeyWithOID(key, oid)
 }
+
+// marshalECPrivateKeyWithOID marshals an SM2 private key into ASN.1, DER format and
+// sets the curve ID to the given OID, or omits it if OID is nil.
+func marshalECPrivateKeyWithOID(key *PrivateKey, oid asn1.ObjectIdentifier) ([]byte, error) {
+    if !key.Curve.IsOnCurve(key.X, key.Y) {
+        return nil, errors.New("bign: invalid elliptic key public key")
+    }
+
+    privateKey := make([]byte, bitsToBytes(key.D.BitLen()))
+
+    return asn1.Marshal(ecPrivateKey{
+        Version:       ecPrivKeyVersion,
+        PrivateKey:    key.D.FillBytes(privateKey),
+        NamedCurveOID: oid,
+        PublicKey:     asn1.BitString{
+            Bytes: elliptic.Marshal(key.Curve, key.X, key.Y),
+        },
+    })
+}
+
+// parseECPrivateKey parses an ASN.1 Elliptic Curve Private Key Structure.
+// The OID for the named curve may be provided from another source (such as
+// the PKCS8 container) - if it is provided then use this instead of the OID
+// that may exist in the EC private key structure.
+func parseECPrivateKey(namedCurveOID *asn1.ObjectIdentifier, der []byte) (key *PrivateKey, err error) {
+    var privKey ecPrivateKey
+    if _, err := asn1.Unmarshal(der, &privKey); err != nil {
+        return nil, errors.New("bign: failed to parse EC private key: " + err.Error())
+    }
+
+    if privKey.Version != ecPrivKeyVersion {
+        return nil, fmt.Errorf("bign: unknown EC private key version %d", privKey.Version)
+    }
+
+    var curve elliptic.Curve
+    if namedCurveOID != nil {
+        curve = NamedCurveFromOid(*namedCurveOID)
+    } else {
+        curve = NamedCurveFromOid(privKey.NamedCurveOID)
+    }
+
+    if curve == nil {
+        return nil, errors.New("bign: unknown elliptic curve")
+    }
+
+    k := new(big.Int).SetBytes(privKey.PrivateKey)
+
+    curveOrder := curve.Params().N
+    if k.Cmp(curveOrder) >= 0 {
+        return nil, errors.New("bign: invalid elliptic curve private key value")
+    }
+
+    priv := new(PrivateKey)
+    priv.Curve = curve
+    priv.D = k
+
+    privateKey := make([]byte, (curveOrder.BitLen()+7)/8)
+
+    for len(privKey.PrivateKey) > len(privateKey) {
+        if privKey.PrivateKey[0] != 0 {
+            return nil, errors.New("bign: invalid private key length")
+        }
+
+        privKey.PrivateKey = privKey.PrivateKey[1:]
+    }
+
+    copy(privateKey[len(privateKey)-len(privKey.PrivateKey):], privKey.PrivateKey)
+    priv.X, priv.Y = curve.ScalarBaseMult(privateKey)
+
+    return priv, nil
+}
+
+func bitsToBytes(bits int) int {
+    return (bits + 7) / 8
+}

pubkey/bign/pkcs8.go

@@ -1,9 +1,7 @@
 package bign
 
 import (
-    "fmt"
     "errors"
-    "math/big"
     "encoding/asn1"
     "crypto/elliptic"
     "crypto/x509/pkix"
@@ -12,8 +10,6 @@ import (
     "github.com/deatil/go-cryptobin/elliptic/bign"
 )
 
-const ecPrivKeyVersion = 1
-
 var (
     oidPublicKeyBign = asn1.ObjectIdentifier{1, 2, 112, 0, 2, 0, 34, 101, 45, 2, 1}
 
@@ -59,15 +55,6 @@ type publicKeyInfo struct {
     PublicKey asn1.BitString
 }
 
-// Per RFC 5915 the NamedCurveOID is marked as ASN.1 OPTIONAL, however in
-// most cases it is not.
-type ecPrivateKey struct {
-    Version       int
-    PrivateKey    []byte
-    NamedCurveOID asn1.ObjectIdentifier `asn1:"optional,explicit,tag:0"`
-    PublicKey     asn1.BitString        `asn1:"optional,explicit,tag:1"`
-}
-
 // Marshal PublicKey to der
 func MarshalPublicKey(pub *PublicKey) ([]byte, error) {
     var publicKeyBytes []byte
@@ -216,77 +203,3 @@ func ParsePrivateKey(derBytes []byte) (*PrivateKey, error) {
     return key, nil
 }
 
-// marshalECPrivateKeyWithOID marshals an SM2 private key into ASN.1, DER format and
-// sets the curve ID to the given OID, or omits it if OID is nil.
-func marshalECPrivateKeyWithOID(key *PrivateKey, oid asn1.ObjectIdentifier) ([]byte, error) {
-    if !key.Curve.IsOnCurve(key.X, key.Y) {
-        return nil, errors.New("bign: invalid elliptic key public key")
-    }
-
-    privateKey := make([]byte, BitsToBytes(key.D.BitLen()))
-
-    return asn1.Marshal(ecPrivateKey{
-        Version:       1,
-        PrivateKey:    key.D.FillBytes(privateKey),
-        NamedCurveOID: oid,
-        PublicKey:     asn1.BitString{
-            Bytes: elliptic.Marshal(key.Curve, key.X, key.Y),
-        },
-    })
-}
-
-// parseECPrivateKey parses an ASN.1 Elliptic Curve Private Key Structure.
-// The OID for the named curve may be provided from another source (such as
-// the PKCS8 container) - if it is provided then use this instead of the OID
-// that may exist in the EC private key structure.
-func parseECPrivateKey(namedCurveOID *asn1.ObjectIdentifier, der []byte) (key *PrivateKey, err error) {
-    var privKey ecPrivateKey
-    if _, err := asn1.Unmarshal(der, &privKey); err != nil {
-        return nil, errors.New("bign: failed to parse EC private key: " + err.Error())
-    }
-
-    if privKey.Version != ecPrivKeyVersion {
-        return nil, fmt.Errorf("bign: unknown EC private key version %d", privKey.Version)
-    }
-
-    var curve elliptic.Curve
-    if namedCurveOID != nil {
-        curve = NamedCurveFromOid(*namedCurveOID)
-    } else {
-        curve = NamedCurveFromOid(privKey.NamedCurveOID)
-    }
-
-    if curve == nil {
-        return nil, errors.New("bign: unknown elliptic curve")
-    }
-
-    k := new(big.Int).SetBytes(privKey.PrivateKey)
-
-    curveOrder := curve.Params().N
-    if k.Cmp(curveOrder) >= 0 {
-        return nil, errors.New("bign: invalid elliptic curve private key value")
-    }
-
-    priv := new(PrivateKey)
-    priv.Curve = curve
-    priv.D = k
-
-    privateKey := make([]byte, (curveOrder.BitLen()+7)/8)
-
-    for len(privKey.PrivateKey) > len(privateKey) {
-        if privKey.PrivateKey[0] != 0 {
-            return nil, errors.New("bign: invalid private key length")
-        }
-
-        privKey.PrivateKey = privKey.PrivateKey[1:]
-    }
-
-    copy(privateKey[len(privateKey)-len(privKey.PrivateKey):], privKey.PrivateKey)
-    priv.X, priv.Y = curve.ScalarBaseMult(privateKey)
-
-    return priv, nil
-}
-
-func BitsToBytes(bits int) int {
-    return (bits + 7) / 8
-}

pubkey/bip0340/pkcs1.go

@@ -1,9 +1,24 @@
 package bip0340
 
 import (
+    "fmt"
     "errors"
+    "math/big"
+    "encoding/asn1"
+    "crypto/elliptic"
 )
 
+const ecPrivKeyVersion = 1
+
+// Per RFC 5915 the NamedCurveOID is marked as ASN.1 OPTIONAL, however in
+// most cases it is not.
+type ecPrivateKey struct {
+    Version       int
+    PrivateKey    []byte
+    NamedCurveOID asn1.ObjectIdentifier `asn1:"optional,explicit,tag:0"`
+    PublicKey     asn1.BitString        `asn1:"optional,explicit,tag:1"`
+}
+
 // ParseECPrivateKey parses an EC private key in SEC 1, ASN.1 DER form.
 //
 // This kind of key is commonly encoded in PEM blocks of type "EC PRIVATE KEY".
@@ -24,3 +39,76 @@ func MarshalECPrivateKey(key *PrivateKey) ([]byte, error) {
 
     return marshalECPrivateKeyWithOID(key, oid)
 }
+
+// marshalECPrivateKeyWithOID marshals an SM2 private key into ASN.1, DER format and
+// sets the curve ID to the given OID, or omits it if OID is nil.
+func marshalECPrivateKeyWithOID(key *PrivateKey, oid asn1.ObjectIdentifier) ([]byte, error) {
+    if !key.Curve.IsOnCurve(key.X, key.Y) {
+        return nil, errors.New("go-cryptobin/bip0340: invalid elliptic key public key")
+    }
+
+    privateKey := make([]byte, bitsToBytes(key.D.BitLen()))
+
+    return asn1.Marshal(ecPrivateKey{
+        Version:       1,
+        PrivateKey:    key.D.FillBytes(privateKey),
+        NamedCurveOID: oid,
+        PublicKey:     asn1.BitString{
+            Bytes: elliptic.Marshal(key.Curve, key.X, key.Y),
+        },
+    })
+}
+
+// parseECPrivateKey parses an ASN.1 Elliptic Curve Private Key Structure.
+// The OID for the named curve may be provided from another source (such as
+// the PKCS8 container) - if it is provided then use this instead of the OID
+// that may exist in the EC private key structure.
+func parseECPrivateKey(namedCurveOID *asn1.ObjectIdentifier, der []byte) (key *PrivateKey, err error) {
+    var privKey ecPrivateKey
+    if _, err := asn1.Unmarshal(der, &privKey); err != nil {
+        return nil, errors.New("go-cryptobin/bip0340: failed to parse EC private key: " + err.Error())
+    }
+
+    if privKey.Version != ecPrivKeyVersion {
+        return nil, fmt.Errorf("go-cryptobin/bip0340: unknown EC private key version %d", privKey.Version)
+    }
+
+    var curve elliptic.Curve
+    if namedCurveOID != nil {
+        curve = NamedCurveFromOid(*namedCurveOID)
+    } else {
+        curve = NamedCurveFromOid(privKey.NamedCurveOID)
+    }
+
+    if curve == nil {
+        return nil, errors.New("go-cryptobin/bip0340: unknown elliptic curve")
+    }
+
+    k := new(big.Int).SetBytes(privKey.PrivateKey)
+
+    curveOrder := curve.Params().N
+    if k.Cmp(curveOrder) >= 0 {
+        return nil, errors.New("go-cryptobin/bip0340: invalid elliptic curve private key value")
+    }
+
+    priv := new(PrivateKey)
+    priv.Curve = curve
+    priv.D = k
+
+    privateKey := make([]byte, (curveOrder.BitLen()+7)/8)
+
+    for len(privKey.PrivateKey) > len(privateKey) {
+        if privKey.PrivateKey[0] != 0 {
+            return nil, errors.New("go-cryptobin/bip0340: invalid private key length")
+        }
+
+        privKey.PrivateKey = privKey.PrivateKey[1:]
+    }
+
+    copy(privateKey[len(privateKey)-len(privKey.PrivateKey):], privKey.PrivateKey)
+
+    d := new(big.Int).SetBytes(privateKey)
+    priv.X, priv.Y = curve.ScalarBaseMult(d.Bytes())
+
+    return priv, nil
+}