mirror of
https://github.com/onsonr/sonr.git
synced 2025-03-10 13:07:09 +00:00
84 lines
2.1 KiB
Go
84 lines
2.1 KiB
Go
|
package spec
|
||
|
|
|
||
|
|
import (
|
||
|
|
"crypto/sha256"
|
||
|
|
|
||
|
|
"github.com/golang-jwt/jwt"
|
||
|
|
)
|
||
|
|
|
||
|
|
// MPCSigningMethod implements the SigningMethod interface for MPC-based signing
|
||
|
|
type MPCSigningMethod struct {
|
||
|
|
Name string
|
||
|
|
ks ucanKeyshare
|
||
|
|
}
|
||
|
|
|
||
|
|
// NewJWTSigningMethod creates a new MPC signing method with the given keyshare source
|
||
|
|
func NewJWTSigningMethod(name string, ks ucanKeyshare) *MPCSigningMethod {
|
||
|
|
return &MPCSigningMethod{
|
||
|
|
Name: name,
|
||
|
|
ks: ks,
|
||
|
|
}
|
||
|
|
}
|
||
|
|
|
||
|
|
// Alg returns the signing method's name
|
||
|
|
func (m *MPCSigningMethod) Alg() string {
|
||
|
|
return m.Name
|
||
|
|
}
|
||
|
|
|
||
|
|
// Verify verifies the signature using the MPC public key
|
||
|
|
func (m *MPCSigningMethod) Verify(signingString, signature string, key interface{}) error {
|
||
|
|
// // Decode the signature
|
||
|
|
// sig, err := base64.RawURLEncoding.DecodeString(signature)
|
||
|
|
// if err != nil {
|
||
|
|
// return err
|
||
|
|
// }
|
||
|
|
//
|
||
|
|
// // Hash the signing string
|
||
|
|
// hasher := sha256.New()
|
||
|
|
// hasher.Write([]byte(signingString))
|
||
|
|
// digest := hasher.Sum(nil)
|
||
|
|
// valid, err := m.ks.valShare.PublicKey().Verify(digest, sig)
|
||
|
|
// if !valid || err != nil {
|
||
|
|
// return fmt.Errorf("invalid signature")
|
||
|
|
// }
|
||
|
|
return nil
|
||
|
|
}
|
||
|
|
|
||
|
|
// Sign signs the data using MPC
|
||
|
|
func (m *MPCSigningMethod) Sign(signingString string, key interface{}) (string, error) {
|
||
|
|
// Hash the signing string
|
||
|
|
hasher := sha256.New()
|
||
|
|
hasher.Write([]byte(signingString))
|
||
|
|
// digest := hasher.Sum(nil)
|
||
|
|
//
|
||
|
|
// // Create signing functions
|
||
|
|
// signFunc, err := m.ks.userShare.SignFunc(digest)
|
||
|
|
// if err != nil {
|
||
|
|
// return "", fmt.Errorf("failed to create sign function: %w", err)
|
||
|
|
// }
|
||
|
|
//
|
||
|
|
// valSignFunc, err := m.ks.valShare.SignFunc(digest)
|
||
|
|
// if err != nil {
|
||
|
|
// return "", fmt.Errorf("failed to create validator sign function: %w", err)
|
||
|
|
// }
|
||
|
|
|
||
|
|
// // Run the signing protocol
|
||
|
|
// sig, err := mpc.ExecuteSigning(valSignFunc, signFunc)
|
||
|
|
// if err != nil {
|
||
|
|
// return "", fmt.Errorf("failed to run sign protocol: %w", err)
|
||
|
|
// }
|
||
|
|
|
||
|
|
// Encode the signature
|
||
|
|
// encoded := base64.RawURLEncoding.EncodeToString(sig)
|
||
|
|
return "", nil
|
||
|
|
}
|
||
|
|
|
||
|
|
func init() {
|
||
|
|
// Register the MPC signing method
|
||
|
|
jwt.RegisterSigningMethod("MPC256", func() jwt.SigningMethod {
|
||
|
|
return &MPCSigningMethod{
|
||
|
|
Name: "MPC256",
|
||
|
|
}
|
||
|
|
})
|
||
|
|
}
|