mirror of
https://github.com/danog/tgseclib.git
synced 2024-12-12 09:09:50 +01:00
112 lines
3.4 KiB
PHP
112 lines
3.4 KiB
PHP
|
<?php
|
||
|
|
||
|
/**
|
||
|
* libsodium Key Handler
|
||
|
*
|
||
|
* Different NaCl implementations store the key differently.
|
||
|
* https://blog.mozilla.org/warner/2011/11/29/ed25519-keys/ elaborates.
|
||
|
* libsodium appears to use the same format as SUPERCOP.
|
||
|
*
|
||
|
* PHP version 5
|
||
|
*
|
||
|
* @category Crypt
|
||
|
* @package ECDSA
|
||
|
* @author Jim Wigginton <terrafrost@php.net>
|
||
|
* @copyright 2015 Jim Wigginton
|
||
|
* @license http://www.opensource.org/licenses/mit-license.html MIT License
|
||
|
* @link http://phpseclib.sourceforge.net
|
||
|
*/
|
||
|
|
||
|
namespace phpseclib\Crypt\ECDSA\Keys;
|
||
|
|
||
|
use phpseclib\Crypt\ECDSA\Curves\Ed25519;
|
||
|
use phpseclib\Math\Common\FiniteField\Integer;
|
||
|
|
||
|
/**
|
||
|
* libsodium Key Handler
|
||
|
*
|
||
|
* @package ECDSA
|
||
|
* @author Jim Wigginton <terrafrost@php.net>
|
||
|
* @access public
|
||
|
*/
|
||
|
abstract class libsodium
|
||
|
{
|
||
|
use Common;
|
||
|
|
||
|
/**
|
||
|
* Break a public or private key down into its constituent components
|
||
|
*
|
||
|
* @access public
|
||
|
* @param string $key
|
||
|
* @param string $password optional
|
||
|
* @return array
|
||
|
*/
|
||
|
public static function load($key, $password = '')
|
||
|
{
|
||
|
switch (strlen($key)) {
|
||
|
case 32:
|
||
|
$public = $key;
|
||
|
break;
|
||
|
case 64:
|
||
|
$private = substr($key, 0, 32);
|
||
|
$public = substr($key, -32);
|
||
|
break;
|
||
|
case 96:
|
||
|
$public = substr($key, -32);
|
||
|
if (substr($key, 32, 32) != $public) {
|
||
|
throw new \RuntimeException('Keys with 96 bytes should have the 2nd and 3rd set of 32 bytes match');
|
||
|
}
|
||
|
$private = substr($key, 0, 32);
|
||
|
break;
|
||
|
default:
|
||
|
throw new \RuntimeException('libsodium keys need to either be 32 bytes long, 64 bytes long or 96 bytes long');
|
||
|
}
|
||
|
|
||
|
$curve = new Ed25519();
|
||
|
$components = ['curve' => $curve];
|
||
|
if (isset($private)) {
|
||
|
$components['dA'] = $curve->extractSecret($private);
|
||
|
}
|
||
|
$components['QA'] = isset($public) ?
|
||
|
self::extractPoint($public, $curve) :
|
||
|
$curve->multiplyPoint($curve->getBasePoint(), $components['dA']);
|
||
|
|
||
|
|
||
|
return $components;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Convert an ECDSA public key to the appropriate format
|
||
|
*
|
||
|
* @access public
|
||
|
* @param \phpseclib\Crypt\ECDSA\Curves\Ed25519 $curve
|
||
|
* @param \phpseclib\Math\Common\FiniteField\Integer[] $publicKey
|
||
|
* @return string
|
||
|
*/
|
||
|
public static function savePublicKey(Ed25519 $curve, array $publicKey)
|
||
|
{
|
||
|
return $curve->encodePoint($publicKey);
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Convert a private key to the appropriate format.
|
||
|
*
|
||
|
* @access public
|
||
|
* @param \phpseclib\Math\Common\FiniteField\Integer $privateKey
|
||
|
* @param \phpseclib\Crypt\ECDSA\Curves\Ed25519 $curve
|
||
|
* @param \phpseclib\Math\Common\FiniteField\Integer[] $publicKey
|
||
|
* @param string $password optional
|
||
|
* @return string
|
||
|
*/
|
||
|
public static function savePrivateKey(Integer $privateKey, Ed25519 $curve, array $publicKey, $password = '')
|
||
|
{
|
||
|
if (!isset($privateKey->secret)) {
|
||
|
throw new \RuntimeException('Private Key does not have a secret set');
|
||
|
}
|
||
|
if (strlen($privateKey->secret) != 32) {
|
||
|
throw new \RuntimeException('Private Key secret is not of the correct length');
|
||
|
}
|
||
|
return $privateKey->secret . $curve->encodePoint($publicKey);
|
||
|
}
|
||
|
}
|