fixed

deatil · deatil · commit eef7787f2ac2 · 2025-06-17T00:10:30.000+08:00
diff --git a/pubkey/ecgdsa/pkcs1.go b/pubkey/ecgdsa/pkcs1.go
@@ -34,7 +34,7 @@ func ParseECPrivateKey(der []byte) (*PrivateKey, error) {
 func MarshalECPrivateKey(key *PrivateKey) ([]byte, error) {
     oid, ok := OidFromNamedCurve(key.Curve)
     if !ok {
-        return nil, errors.New("ecgdsa: unknown elliptic curve")
+        return nil, errors.New("go-cryptobin/ecgdsa: unknown elliptic curve")
     }
 
     return marshalECPrivateKeyWithOID(key, oid)
@@ -44,7 +44,7 @@ func MarshalECPrivateKey(key *PrivateKey) ([]byte, error) {
 // sets the curve ID to the given OID, or omits it if OID is nil.
 func marshalECPrivateKeyWithOID(key *PrivateKey, oid asn1.ObjectIdentifier) ([]byte, error) {
     if !key.Curve.IsOnCurve(key.X, key.Y) {
-        return nil, errors.New("ecgdsa: invalid elliptic key public key")
+        return nil, errors.New("go-cryptobin/ecgdsa: invalid elliptic key public key")
     }
 
     privateKey := make([]byte, bitsToBytes(key.D.BitLen()))
@@ -66,11 +66,11 @@ func marshalECPrivateKeyWithOID(key *PrivateKey, oid asn1.ObjectIdentifier) ([]b
 func parseECPrivateKey(namedCurveOID *asn1.ObjectIdentifier, der []byte) (key *PrivateKey, err error) {
     var privKey ecPrivateKey
     if _, err := asn1.Unmarshal(der, &privKey); err != nil {
-        return nil, errors.New("ecgdsa: failed to parse EC private key: " + err.Error())
+        return nil, errors.New("go-cryptobin/ecgdsa: failed to parse EC private key: " + err.Error())
     }
 
     if privKey.Version != ecPrivKeyVersion {
-        return nil, fmt.Errorf("ecgdsa: unknown EC private key version %d", privKey.Version)
+        return nil, fmt.Errorf("go-cryptobin/ecgdsa: unknown EC private key version %d", privKey.Version)
     }
 
     var curve elliptic.Curve
@@ -81,14 +81,14 @@ func parseECPrivateKey(namedCurveOID *asn1.ObjectIdentifier, der []byte) (key *P
     }
 
     if curve == nil {
-        return nil, errors.New("ecgdsa: unknown elliptic curve")
+        return nil, errors.New("go-cryptobin/ecgdsa: unknown elliptic curve")
     }
 
     k := new(big.Int).SetBytes(privKey.PrivateKey)
 
     curveOrder := curve.Params().N
     if k.Cmp(curveOrder) >= 0 {
-        return nil, errors.New("ecgdsa: invalid elliptic curve private key value")
+        return nil, errors.New("go-cryptobin/ecgdsa: invalid elliptic curve private key value")
     }
 
     priv := new(PrivateKey)
@@ -99,7 +99,7 @@ func parseECPrivateKey(namedCurveOID *asn1.ObjectIdentifier, der []byte) (key *P
 
     for len(privKey.PrivateKey) > len(privateKey) {
         if privKey.PrivateKey[0] != 0 {
-            return nil, errors.New("ecgdsa: invalid private key length")
+            return nil, errors.New("go-cryptobin/ecgdsa: invalid private key length")
         }
 
         privKey.PrivateKey = privKey.PrivateKey[1:]
diff --git a/pubkey/ecgdsa/pkcs8.go b/pubkey/ecgdsa/pkcs8.go
@@ -65,7 +65,7 @@ func MarshalPublicKey(pub *PublicKey) ([]byte, error) {
 
     oid, ok := OidFromNamedCurve(pub.Curve)
     if !ok {
-        return nil, errors.New("ecgdsa: unsupported ecgdsa curve")
+        return nil, errors.New("go-cryptobin/ecgdsa: unsupported ecgdsa curve")
     }
 
     var paramBytes []byte
@@ -78,7 +78,7 @@ func MarshalPublicKey(pub *PublicKey) ([]byte, error) {
     publicKeyAlgorithm.Parameters.FullBytes = paramBytes
 
     if !pub.Curve.IsOnCurve(pub.X, pub.Y) {
-        return nil, errors.New("ecgdsa: invalid elliptic curve public key")
+        return nil, errors.New("go-cryptobin/ecgdsa: invalid elliptic curve public key")
     }
 
     publicKeyBytes = elliptic.Marshal(pub.Curve, pub.X, pub.Y)
@@ -101,7 +101,7 @@ func ParsePublicKey(derBytes []byte) (pub *PublicKey, err error) {
     if err != nil {
         return
     } else if len(rest) != 0 {
-        err = errors.New("ecgdsa: trailing data after ASN.1 of public-key")
+        err = errors.New("go-cryptobin/ecgdsa: trailing data after ASN.1 of public-key")
         return
     }
 
@@ -115,25 +115,25 @@ func ParsePublicKey(derBytes []byte) (pub *PublicKey, err error) {
     der := cryptobyte.String(pki.PublicKey.RightAlign())
 
     if !oid.Equal(oidPublicKeyECGDSA) {
-        err = errors.New("ecgdsa: unknown public key algorithm")
+        err = errors.New("go-cryptobin/ecgdsa: unknown public key algorithm")
         return
     }
 
     paramsDer := cryptobyte.String(params.FullBytes)
     namedCurveOID := new(asn1.ObjectIdentifier)
     if !paramsDer.ReadASN1ObjectIdentifier(namedCurveOID) {
-        return nil, errors.New("ecgdsa: invalid parameters")
+        return nil, errors.New("go-cryptobin/ecgdsa: invalid parameters")
     }
 
     namedCurve := NamedCurveFromOid(*namedCurveOID)
     if namedCurve == nil {
-        err = errors.New("ecgdsa: unsupported ecgdsa curve")
+        err = errors.New("go-cryptobin/ecgdsa: unsupported ecgdsa curve")
         return
     }
 
     x, y := elliptic.Unmarshal(namedCurve, der)
     if x == nil {
-        err = errors.New("ecgdsa: failed to unmarshal elliptic curve point")
+        err = errors.New("go-cryptobin/ecgdsa: failed to unmarshal elliptic curve point")
         return
     }
 
@@ -152,13 +152,13 @@ func MarshalPrivateKey(key *PrivateKey) ([]byte, error) {
 
     oid, ok := OidFromNamedCurve(key.Curve)
     if !ok {
-        return nil, errors.New("ecgdsa: unsupported ecgdsa curve")
+        return nil, errors.New("go-cryptobin/ecgdsa: unsupported ecgdsa curve")
     }
 
     // 创建数据
     oidBytes, err := asn1.Marshal(oid)
     if err != nil {
-        return nil, errors.New("ecgdsa: failed to marshal algo param: " + err.Error())
+        return nil, errors.New("go-cryptobin/ecgdsa: failed to marshal algo param: " + err.Error())
     }
 
     privKey.Algo = pkix.AlgorithmIdentifier{
@@ -170,7 +170,7 @@ func MarshalPrivateKey(key *PrivateKey) ([]byte, error) {
 
     privKey.PrivateKey, err = marshalECPrivateKeyWithOID(key, nil)
     if err != nil {
-        return nil, errors.New("ecgdsa: failed to marshal EC private key while building PKCS#8: " + err.Error())
+        return nil, errors.New("go-cryptobin/ecgdsa: failed to marshal EC private key while building PKCS#8: " + err.Error())
     }
 
     return asn1.Marshal(privKey)
diff --git a/pubkey/elgamalecc/curves.go b/pubkey/elgamalecc/curves.go
@@ -0,0 +1,42 @@
+package elgamalecc
+
+import (
+    "encoding/asn1"
+    "crypto/elliptic"
+)
+
+type namedCurveInfo struct {
+    namedCurve elliptic.Curve
+    oid        asn1.ObjectIdentifier
+}
+
+var namedCurves = make([]namedCurveInfo, 0)
+
+func AddNamedCurve(curve elliptic.Curve, oid asn1.ObjectIdentifier)  {
+    namedCurves = append(namedCurves, namedCurveInfo{
+        namedCurve: curve,
+        oid:        oid,
+    })
+}
+
+func NamedCurveFromOid(oid asn1.ObjectIdentifier) elliptic.Curve {
+    for i := range namedCurves {
+        cur := &namedCurves[i]
+        if cur.oid.Equal(oid) {
+            return cur.namedCurve
+        }
+    }
+
+    return nil
+}
+
+func OidFromNamedCurve(curve elliptic.Curve) (asn1.ObjectIdentifier, bool) {
+    for i := range namedCurves {
+        cur := &namedCurves[i]
+        if cur.namedCurve == curve {
+            return cur.oid, true
+        }
+    }
+
+    return asn1.ObjectIdentifier{}, false
+}
diff --git a/pubkey/elgamalecc/elgamalecc.go b/pubkey/elgamalecc/elgamalecc.go
@@ -8,6 +8,12 @@ import (
     "crypto/rand"
     "crypto/subtle"
     "crypto/elliptic"
+    "encoding/asn1"
+)
+
+var (
+    ErrPrivateKey = errors.New("go-cryptobin/elgamalecc: incorrect private key")
+    ErrPublicKey  = errors.New("go-cryptobin/elgamalecc: incorrect public key")
 )
 
 var one = big.NewInt(1)
@@ -160,6 +166,52 @@ func Decrypt(priv *PrivateKey, C1x, C1y *big.Int, C2 *big.Int) (plain []byte, er
     return
 }
 
+type encryptedData struct {
+    C1 []byte
+    C2 *big.Int
+}
+
+// Encrypted and return asn.1 data
+func EncryptASN1(random io.Reader, pub *PublicKey, data []byte) ([]byte, error) {
+    if pub == nil {
+        return nil, ErrPublicKey
+    }
+
+    C1x, C1y, C2, err := Encrypt(random, pub, data)
+    if err != nil {
+        return nil, err
+    }
+
+    C1 := elliptic.Marshal(pub.Curve, C1x, C1y)
+
+    enc, err := asn1.Marshal(encryptedData{
+        C1: C1,
+        C2: C2,
+    })
+    if err != nil {
+        return nil, err
+    }
+
+    return enc, nil
+}
+
+// Decrypt asn.1 marshal data
+func DecryptASN1(priv *PrivateKey, data []byte) ([]byte, error) {
+    if priv == nil {
+        return nil, ErrPrivateKey
+    }
+
+    var enc encryptedData
+    _, err := asn1.Unmarshal(data, &enc)
+    if err != nil {
+        return nil, err
+    }
+
+    C1x, C1y := elliptic.Unmarshal(priv.Curve, enc.C1)
+
+    return Decrypt(priv, C1x, C1y, enc.C2)
+}
+
 // randFieldElement returns a random element of the order of the given
 // curve using the procedure given in FIPS 186-4, Appendix B.5.2.
 func randFieldElement(rand io.Reader, c elliptic.Curve) (k *big.Int, err error) {
diff --git a/pubkey/elgamalecc/elgamalecc_test.go b/pubkey/elgamalecc/elgamalecc_test.go
@@ -7,6 +7,9 @@ import (
     "crypto/rand"
     "crypto/elliptic"
     "encoding/hex"
+    "encoding/asn1"
+
+    "github.com/deatil/go-cryptobin/elliptic/secp256k1"
 )
 
 func fromHex(s string) []byte {
@@ -79,3 +82,139 @@ func Test_Encrypt_Check(t *testing.T) {
         t.Errorf("Test_Encrypt_Check fail, got %x, want %x", p2, data)
     }
 }
+
+func Test_EncryptASN1(t *testing.T) {
+    c := elliptic.P256()
+
+    priv, err := GenerateKey(rand.Reader, c)
+    if err != nil {
+        t.Fatal(err)
+    }
+
+    pub := &priv.PublicKey
+
+    data := []byte("test-data test-data test-data test-data test-data")
+
+    ct, err := EncryptASN1(rand.Reader, pub, data)
+    if err != nil {
+        t.Fatal(err)
+    }
+
+    p, _ := DecryptASN1(priv, ct)
+    if !bytes.Equal(data, p) {
+        t.Errorf("Test_Encrypt fail, got %x, want %x", p, data)
+    }
+
+}
+
+func Test_EncryptASN1_Check(t *testing.T) {
+    c := elliptic.P256()
+
+    x := fromHex("67e87b98e8a4383098fedb448c1f3d278bebba50525dec57c0576c605bfffdda")
+    Y := fromHex("045ec79d828a77af85aa9c8ef3ba5afd7674376d6b134d14b10bb4afb7fd0952b0e894f696b38096ff547bbd0a0f1d14a195f2fc9ce951901fe2925560f29d98c0")
+
+    priv, err := NewPrivateKey(c, x)
+    if err != nil {
+        t.Fatal(err)
+    }
+
+    pub, err := NewPublicKey(c, Y)
+    if err != nil {
+        t.Fatal(err)
+    }
+
+    data := []byte("Hello")
+
+    ct, err := EncryptASN1(rand.Reader, pub, data)
+    if err != nil {
+        t.Fatal(err)
+    }
+
+    p, _ := DecryptASN1(priv, ct)
+    if !bytes.Equal(data, p) {
+        t.Errorf("ElgamalDecrypt fail, got %x, want %x", p, data)
+    }
+
+    C1 := fromHex("04af7035184190ce72b1ee000ec8f18927a664c23358ce4d41ff757283a5846bb58c19c551753ea0af151c31c1a3698606af565c122a387dbe67d7fa5deba2393f")
+    C2, _ := new(big.Int).SetString("64998866770800537035816591092081487793369751526287129670052291837083837454710935744289325621649282383337514803150244272041445838052262073601284819093853352", 10)
+
+    enc, err := asn1.Marshal(encryptedData{
+        C1: C1,
+        C2: C2,
+    })
+
+    p2, _ := DecryptASN1(priv, enc)
+    if !bytes.Equal(data, p2) {
+        t.Errorf("Test_Encrypt_Check fail, got %x, want %x", p2, data)
+    }
+}
+
+func Test_key(t *testing.T) {
+    test_key(t, elliptic.P224())
+    test_key(t, elliptic.P256())
+    test_key(t, elliptic.P384())
+    test_key(t, elliptic.P521())
+
+    test_key(t, secp256k1.S256())
+}
+
+func test_key(t *testing.T, c elliptic.Curve) {
+    priv, err := GenerateKey(rand.Reader, c)
+    if err != nil {
+        t.Fatal(err)
+    }
+
+    pub := &priv.PublicKey
+
+    {
+        priKey, err := MarshalECPrivateKey(priv)
+        if err != nil {
+            t.Fatal(err)
+        }
+
+        parsekey, err := ParseECPrivateKey(priKey)
+        if err != nil {
+            t.Fatal(err)
+        }
+
+        if !parsekey.Equal(priv) {
+            t.Error("MarshalECPrivateKey fail")
+        }
+
+    }
+
+    {
+        priKey, err := MarshalPrivateKey(priv)
+        if err != nil {
+            t.Fatal(err)
+        }
+
+        parsekey, err := ParsePrivateKey(priKey)
+        if err != nil {
+            t.Fatal(err)
+        }
+
+        if !parsekey.Equal(priv) {
+            t.Error("MarshalPrivateKey fail")
+        }
+
+    }
+
+    {
+        pubKey, err := MarshalPublicKey(pub)
+        if err != nil {
+            t.Fatal(err)
+        }
+
+        parsekey, err := ParsePublicKey(pubKey)
+        if err != nil {
+            t.Fatal(err)
+        }
+
+        if !parsekey.Equal(pub) {
+            t.Error("MarshalPublicKey fail")
+        }
+
+    }
+
+}
diff --git a/pubkey/elgamalecc/pkcs1.go b/pubkey/elgamalecc/pkcs1.go
diff --git a/pubkey/elgamalecc/pkcs8.go b/pubkey/elgamalecc/pkcs8.go

Original file line number	Diff line number	Diff line change
`@@ -34,7 +34,7 @@ func ParseECPrivateKey(der []byte) (*PrivateKey, error) {`
`34`	`34`	`func MarshalECPrivateKey(key *PrivateKey) ([]byte, error) {`
`35`	`35`	`oid, ok := OidFromNamedCurve(key.Curve)`
`36`	`36`	`if !ok {`
`37`		`- return nil, errors.New("ecgdsa: unknown elliptic curve")`
	`37`	`+ return nil, errors.New("go-cryptobin/ecgdsa: unknown elliptic curve")`
`38`	`38`	`}`
`39`	`39`
`40`	`40`	`return marshalECPrivateKeyWithOID(key, oid)`
`@@ -44,7 +44,7 @@ func MarshalECPrivateKey(key *PrivateKey) ([]byte, error) {`
`44`	`44`	`// sets the curve ID to the given OID, or omits it if OID is nil.`
`45`	`45`	`func marshalECPrivateKeyWithOID(key *PrivateKey, oid asn1.ObjectIdentifier) ([]byte, error) {`
`46`	`46`	`if !key.Curve.IsOnCurve(key.X, key.Y) {`
`47`		`- return nil, errors.New("ecgdsa: invalid elliptic key public key")`
	`47`	`+ return nil, errors.New("go-cryptobin/ecgdsa: invalid elliptic key public key")`
`48`	`48`	`}`
`49`	`49`
`50`	`50`	`privateKey := make([]byte, bitsToBytes(key.D.BitLen()))`
`@@ -66,11 +66,11 @@ func marshalECPrivateKeyWithOID(key *PrivateKey, oid asn1.ObjectIdentifier) ([]b`
`66`	`66`	`func parseECPrivateKey(namedCurveOID asn1.ObjectIdentifier, der []byte) (key PrivateKey, err error) {`
`67`	`67`	`var privKey ecPrivateKey`
`68`	`68`	`if _, err := asn1.Unmarshal(der, &privKey); err != nil {`
`69`		`- return nil, errors.New("ecgdsa: failed to parse EC private key: " + err.Error())`
	`69`	`+ return nil, errors.New("go-cryptobin/ecgdsa: failed to parse EC private key: " + err.Error())`
`70`	`70`	`}`
`71`	`71`
`72`	`72`	`if privKey.Version != ecPrivKeyVersion {`
`73`		`- return nil, fmt.Errorf("ecgdsa: unknown EC private key version %d", privKey.Version)`
	`73`	`+ return nil, fmt.Errorf("go-cryptobin/ecgdsa: unknown EC private key version %d", privKey.Version)`
`74`	`74`	`}`
`75`	`75`
`76`	`76`	`var curve elliptic.Curve`
`@@ -81,14 +81,14 @@ func parseECPrivateKey(namedCurveOID asn1.ObjectIdentifier, der []byte) (key P`
`81`	`81`	`}`
`82`	`82`
`83`	`83`	`if curve == nil {`
`84`		`- return nil, errors.New("ecgdsa: unknown elliptic curve")`
	`84`	`+ return nil, errors.New("go-cryptobin/ecgdsa: unknown elliptic curve")`
`85`	`85`	`}`
`86`	`86`
`87`	`87`	`k := new(big.Int).SetBytes(privKey.PrivateKey)`
`88`	`88`
`89`	`89`	`curveOrder := curve.Params().N`
`90`	`90`	`if k.Cmp(curveOrder) >= 0 {`
`91`		`- return nil, errors.New("ecgdsa: invalid elliptic curve private key value")`
	`91`	`+ return nil, errors.New("go-cryptobin/ecgdsa: invalid elliptic curve private key value")`
`92`	`92`	`}`
`93`	`93`
`94`	`94`	`priv := new(PrivateKey)`
`@@ -99,7 +99,7 @@ func parseECPrivateKey(namedCurveOID asn1.ObjectIdentifier, der []byte) (key P`
`99`	`99`
`100`	`100`	`for len(privKey.PrivateKey) > len(privateKey) {`
`101`	`101`	`if privKey.PrivateKey[0] != 0 {`
`102`		`- return nil, errors.New("ecgdsa: invalid private key length")`
	`102`	`+ return nil, errors.New("go-cryptobin/ecgdsa: invalid private key length")`
`103`	`103`	`}`
`104`	`104`
`105`	`105`	`privKey.PrivateKey = privKey.PrivateKey[1:]`