mirror of
https://github.com/trezor/trezor-firmware.git
synced 2025-01-17 10:51:00 +00:00
feat(python): add cosi.sign_with_privkeys
we've had multiple copies of this function all over the codebase, it's time to move it where it belongs
This commit is contained in:
parent
bdd8b1b426
commit
6a280a279a
@ -9,28 +9,6 @@ from typing import List, Sequence, Tuple
|
|||||||
# =========================== signing =========================
|
# =========================== signing =========================
|
||||||
|
|
||||||
|
|
||||||
def sign_with_privkeys(digest: bytes, privkeys: Sequence[bytes]) -> bytes:
|
|
||||||
"""Locally produce a CoSi signature."""
|
|
||||||
pubkeys = [cosi.pubkey_from_privkey(sk) for sk in privkeys]
|
|
||||||
nonces = [cosi.get_nonce(sk, digest, i) for i, sk in enumerate(privkeys)]
|
|
||||||
|
|
||||||
global_pk = cosi.combine_keys(pubkeys)
|
|
||||||
global_R = cosi.combine_keys(R for r, R in nonces)
|
|
||||||
|
|
||||||
sigs = [
|
|
||||||
cosi.sign_with_privkey(digest, sk, global_pk, r, global_R)
|
|
||||||
for sk, (r, R) in zip(privkeys, nonces)
|
|
||||||
]
|
|
||||||
|
|
||||||
signature = cosi.combine_sig(global_R, sigs)
|
|
||||||
try:
|
|
||||||
cosi.verify_combined(signature, digest, global_pk)
|
|
||||||
except Exception as e:
|
|
||||||
raise click.ClickException("Failed to produce valid signature.") from e
|
|
||||||
|
|
||||||
return signature
|
|
||||||
|
|
||||||
|
|
||||||
def parse_privkey_args(privkey_data: List[str]) -> Tuple[int, List[bytes]]:
|
def parse_privkey_args(privkey_data: List[str]) -> Tuple[int, List[bytes]]:
|
||||||
privkeys = []
|
privkeys = []
|
||||||
sigmask = 0
|
sigmask = 0
|
||||||
@ -182,7 +160,7 @@ def cli(
|
|||||||
|
|
||||||
if privkeys:
|
if privkeys:
|
||||||
echo("Signing with local private keys...", err=True)
|
echo("Signing with local private keys...", err=True)
|
||||||
signature = sign_with_privkeys(digest, privkeys)
|
signature = cosi.sign_with_privkeys(digest, privkeys)
|
||||||
|
|
||||||
if insert_signature:
|
if insert_signature:
|
||||||
echo("Inserting external signature...", err=True)
|
echo("Inserting external signature...", err=True)
|
||||||
|
@ -138,6 +138,22 @@ def sign_with_privkey(
|
|||||||
return Ed25519Signature(_ed25519.encodeint(S))
|
return Ed25519Signature(_ed25519.encodeint(S))
|
||||||
|
|
||||||
|
|
||||||
|
def sign_with_privkeys(digest: bytes, privkeys: Sequence[bytes]) -> bytes:
|
||||||
|
"""Locally produce a CoSi signature from a list of private keys."""
|
||||||
|
pubkeys = [pubkey_from_privkey(sk) for sk in privkeys]
|
||||||
|
nonces = [get_nonce(sk, digest, i) for i, sk in enumerate(privkeys)]
|
||||||
|
|
||||||
|
global_pk = combine_keys(pubkeys)
|
||||||
|
global_R = combine_keys(R for _, R in nonces)
|
||||||
|
|
||||||
|
sigs = [
|
||||||
|
sign_with_privkey(digest, sk, global_pk, r, global_R)
|
||||||
|
for sk, (r, _) in zip(privkeys, nonces)
|
||||||
|
]
|
||||||
|
|
||||||
|
return combine_sig(global_R, sigs)
|
||||||
|
|
||||||
|
|
||||||
# ====== Client functions ====== #
|
# ====== Client functions ====== #
|
||||||
|
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user