update ecies to use binary, add helpers for strings, fix lint issues

Author: rohenaz

compat/ecies/ecies.go

@@ -2,11 +2,10 @@ package compat
 
 import (
 	"crypto/hmac"
-	"log"
+	"encoding/base64"
 	"math/big"
 	"reflect"
 
-	"encoding/base64"
 	"errors"
 
 	ecies "github.com/bitcoin-sv/go-sdk/primitives/aescbc"
@@ -20,11 +19,20 @@ import (
 
 func EncryptSingle(message string, privateKey *ec.PrivateKey) (string, error) {
 	messageBytes := []byte(message)
-	return ElectrumEncrypt(messageBytes, privateKey.PubKey(), privateKey, false)
+
+	decryptedBytes, err := ElectrumEncrypt(messageBytes, privateKey.PubKey(), privateKey, false)
+	if err != nil {
+		return "", err
+	}
+	return base64.StdEncoding.EncodeToString(decryptedBytes), nil
 }
 
 func DecryptSingle(encryptedData string, privateKey *ec.PrivateKey) (string, error) {
-	plainBytes, err := ElectrumDecrypt(encryptedData, privateKey, nil)
+	encryptedBytes, err := base64.StdEncoding.DecodeString(encryptedData)
+	if err != nil {
+		return "", err
+	}
+	plainBytes, err := ElectrumDecrypt(encryptedBytes, privateKey, nil)
 	if err != nil {
 		return "", err
 	}
@@ -33,18 +41,30 @@ func DecryptSingle(encryptedData string, privateKey *ec.PrivateKey) (string, err
 
 func EncryptShared(message string, toPublicKey *ec.PublicKey, fromPrivateKey *ec.PrivateKey) (string, error) {
 	messageBytes := []byte(message)
-	return ElectrumEncrypt(messageBytes, toPublicKey, nil, false)
+	decryptedBytes, err := ElectrumEncrypt(messageBytes, toPublicKey, nil, false)
+	if err != nil {
+		return "", err
+	}
+	return base64.StdEncoding.EncodeToString(decryptedBytes), nil
 }
 
 func DecryptShared(encryptedData string, toPrivateKey *ec.PrivateKey, fromPublicKey *ec.PublicKey) (string, error) {
-	plainBytes, err := ElectrumDecrypt(encryptedData, toPrivateKey, fromPublicKey)
+	encryptedBytes, err := base64.StdEncoding.DecodeString(encryptedData)
+	if err != nil {
+		return "", err
+	}
+	plainBytes, err := ElectrumDecrypt(encryptedBytes, toPrivateKey, fromPublicKey)
 	if err != nil {
 		return "", err
 	}
 	return string(plainBytes), nil
 }
 
-func ElectrumEncrypt(message []byte, toPublicKey *ec.PublicKey, fromPrivateKey *ec.PrivateKey, noKey bool) (string, error) {
+func ElectrumEncrypt(message []byte,
+	toPublicKey *ec.PublicKey,
+	fromPrivateKey *ec.PrivateKey,
+	noKey bool,
+) ([]byte, error) {
 	// Generate an ephemeral EC private key if fromPrivateKey is nil
 	var ephemeralPrivateKey *ec.PrivateKey
 	if fromPrivateKey == nil {
@@ -64,7 +84,7 @@ func ElectrumEncrypt(message []byte, toPublicKey *ec.PublicKey, fromPrivateKey *
 	// AES encryption
 	cipherText, err := ecies.AESCBCEncrypt(message, keyE, iv, false)
 	if err != nil {
-		return "", err
+		return nil, err
 	}
 
 	ephemeralPublicKey := ephemeralPrivateKey.PubKey()
@@ -79,52 +99,48 @@ func ElectrumEncrypt(message []byte, toPublicKey *ec.PublicKey, fromPrivateKey *
 
 	mac := c.Sha256HMAC(encrypted, keyM)
 
-	return base64.StdEncoding.EncodeToString(append(encrypted, mac...)), nil
+	return append(encrypted, mac...), nil
 }
-func ElectrumDecrypt(encryptedData string, toPrivateKey *ec.PrivateKey, fromPublicKey *ec.PublicKey) ([]byte, error) {
-	encrypted, err := base64.StdEncoding.DecodeString(encryptedData)
-	if err != nil {
-		return nil, err
-	}
-	if len(encrypted) < 52 { // Minimum length: 4 (magic) + 16 (min cipher) + 32 (mac)
+func ElectrumDecrypt(encryptedData []byte, toPrivateKey *ec.PrivateKey, fromPublicKey *ec.PublicKey) ([]byte, error) {
+
+	if len(encryptedData) < 52 { // Minimum length: 4 (magic) + 16 (min cipher) + 32 (mac)
 		return nil, errors.New("invalid encrypted text: length")
 	}
-	magic := encrypted[:4]
+	magic := encryptedData[:4]
 	if string(magic) != "BIE1" {
 		return nil, errors.New("invalid cipher text: invalid magic bytes")
 	}
 
 	var sharedSecret []byte
 	var cipherText []byte
-	var ephemeralPublicKey *ec.PublicKey
 
 	if fromPublicKey != nil {
 		// Use counterparty public key to derive shared secret
 		x, y := toPrivateKey.Curve.ScalarMult(fromPublicKey.X, fromPublicKey.Y, toPrivateKey.D.Bytes())
 		sharedSecret = (&ec.PublicKey{X: x, Y: y}).SerializeCompressed()
-		if len(encrypted) > 69 { // 4 (magic) + 33 (pubkey) + 32 (mac)
-			cipherText = encrypted[37 : len(encrypted)-32]
+		if len(encryptedData) > 69 { // 4 (magic) + 33 (pubkey) + 32 (mac)
+			cipherText = encryptedData[37 : len(encryptedData)-32]
 		} else {
-			cipherText = encrypted[4 : len(encrypted)-32]
+			cipherText = encryptedData[4 : len(encryptedData)-32]
 		}
 	} else {
 		// Use ephemeral public key to derive shared secret
-		ephemeralPublicKey, err = ec.ParsePubKey(encrypted[4:37])
+		ephemeralPublicKey, err := ec.ParsePubKey(encryptedData[4:37])
 		if err != nil {
 			return nil, err
 		}
 		x, y := ephemeralPublicKey.Curve.ScalarMult(ephemeralPublicKey.X, ephemeralPublicKey.Y, toPrivateKey.D.Bytes())
 		sharedSecret = (&ec.PublicKey{X: x, Y: y}).SerializeCompressed()
-		cipherText = encrypted[37 : len(encrypted)-32]
+		cipherText = encryptedData[37 : len(encryptedData)-32]
 	}
 
 	// Derive key_e, iv and key_m
 	key := c.Sha512(sharedSecret)
 	iv, keyE, keyM := key[0:16], key[16:32], key[32:]
 
 	// Verify mac
-	mac := encrypted[len(encrypted)-32:]
-	macRecalculated := c.Sha256HMAC(encrypted[:len(encrypted)-32], keyM)
+	mac := encryptedData[len(encryptedData)-32:]
+	macRecalculated := c.Sha256HMAC(encryptedData[:len(encryptedData)-32], keyM)
 	if !reflect.DeepEqual(mac, macRecalculated) {
 		return nil, errors.New("incorrect password")
 	}
@@ -134,69 +150,17 @@ func ElectrumDecrypt(encryptedData string, toPrivateKey *ec.PrivateKey, fromPubl
 	if err != nil {
 		return nil, err
 	}
-	log.Printf("IV: %x, plain text: %x", iv, plain)
 	return plain, nil
 }
 
-// func BitcoreEncrypt(message []byte, publicKey *ec.PublicKey) (string, error) {
-// 	// Generate an ephemeral EC private key
-// 	ephemeralPrivateKey, err := ec.NewPrivateKey()
-// 	if err != nil {
-// 		return "", err
-// 	}
-
-// 	// Derive shared secret
-// 	x, _ := publicKey.Curve.ScalarMult(publicKey.X, publicKey.Y, ephemeralPrivateKey.D.Bytes())
-// 	sharedSecret := x.Bytes()
-
-// 	// Key derivation
-// 	keyMaterial := c.Sha512(sharedSecret)
-
-// 	keyE := keyMaterial[:32] // AES-256 key
-// 	keyM := keyMaterial[32:] // HMAC key
-// 	iv := make([]byte, 16)   // IV for AES (all zeros in Bitcore)
-
-// 	// Encrypt the message
-// 	cipherText, err := aescbc.AESEncryptWithIV(message, keyE, iv)
-// 	if err != nil {
-// 		return "", err
-// 	}
-
-// 	// Prepare the output
-// 	ephemeralPublicKey := ephemeralPrivateKey.PubKey().SerializeCompressed()
-// 	encryptedData := append(ephemeralPublicKey, cipherText...)
-
-// 	// Calculate HMAC
-// 	hmacSum := c.Sha256HMAC(encryptedData, keyM)
-
-// 	// Combine all parts
-// 	result := append(encryptedData, hmacSum...)
-
-// 	return base64.StdEncoding.EncodeToString(result), nil
-// }
-
-func BitcoreEncrypt(message []byte, toPublicKey *ec.PublicKey, fromPrivateKey *ec.PrivateKey, iv []byte) (string, error) {
-
-	// JS Implementation
-	// if (!fromPrivateKey) {
-	// 	fromPrivateKey = PrivateKey.fromRandom()
-	// }
-	// const r = fromPrivateKey
-	// const RPublicKey = fromPrivateKey.toPublicKey()
-	// const RBuf = RPublicKey.encode(true) as number[]
-	// const KB = toPublicKey
-	// const P = KB.mul(r)
-	// const S = P.getX()
-	// const Sbuf = S.toArray('be', 32)
-	// const kEkM = Hash.sha512(Sbuf)
-	// const kE = kEkM.slice(0, 32)
-	// const kM = kEkM.slice(32, 64)
-	// const c = AESCBC.encrypt(messageBuf, kE, ivBuf)
-	// const d = Hash.sha256hmac(kM, [...c])
-	// const encBuf = [...RBuf, ...c, ...d]
-	// return encBuf
-	// If IV is not provided, generate a random one
+// BitcoreEncrypt encrypts a message using ECIES
+func BitcoreEncrypt(message []byte,
+	toPublicKey *ec.PublicKey,
+	fromPrivateKey *ec.PrivateKey,
+	iv []byte,
+) ([]byte, error) {
 
+	// If IV is not provided, fill it with zeros
 	if iv == nil {
 		iv = make([]byte, 16)
 	}
@@ -206,7 +170,7 @@ func BitcoreEncrypt(message []byte, toPublicKey *ec.PublicKey, fromPrivateKey *e
 		var err error
 		fromPrivateKey, err = ec.NewPrivateKey()
 		if err != nil {
-			return "", err
+			return nil, err
 		}
 	}
 
@@ -219,45 +183,18 @@ func BitcoreEncrypt(message []byte, toPublicKey *ec.PublicKey, fromPrivateKey *e
 	kM := kEkM[32:]
 	cc, err := ecies.AESCBCEncrypt(message, kE, iv, true)
 	if err != nil {
-		return "", err
+		return nil, err
 	}
 	d := c.Sha256HMAC(cc, kM)
 	encBuf := append(RBuf, cc...)
 	encBuf = append(encBuf, d...)
 
-	log.Printf("encBuf: %x", encBuf)
-	result := base64.StdEncoding.EncodeToString(encBuf)
-	return result, nil
+	return encBuf, nil
 }
 
-func BitcoreDecrypt(encryptedMessage string, toPrivatKey *ec.PrivateKey) ([]byte, error) {
-	// const kB = toPrivateKey
-	//   const fromPublicKey = PublicKey.fromString(toHex(encBuf.slice(0, 33)))
-	//   const R = fromPublicKey
-	//   const P = R.mul(kB)
-	//   if (P.eq(new Point(0, 0))) {
-	//     throw new Error('P equals 0')
-	//   }
-	//   const S = P.getX()
-	//   const Sbuf = S.toArray('be', 32)
-	//   const kEkM = Hash.sha512(Sbuf)
-	//   const kE = kEkM.slice(0, 32)
-	//   const kM = kEkM.slice(32, 64)
-	//   const c = encBuf.slice(33, encBuf.length - 32)
-	//   const d = encBuf.slice(encBuf.length - 32, encBuf.length)
-	//   const d2 = Hash.sha256hmac(kM, c)
-	//   if (toHex(d) !== toHex(d2)) {
-	//     throw new Error('Invalid checksum')
-	//   }
-	//   const messageBuf = AESCBC.decrypt(c, kE)
-	//   return [...messageBuf]
-
-	data, err := base64.StdEncoding.DecodeString(encryptedMessage)
-	if err != nil {
-		return nil, err
-	}
+func BitcoreDecrypt(encryptedMessage []byte, toPrivatKey *ec.PrivateKey) ([]byte, error) {
 
-	fromPublicKey, err := ec.ParsePubKey(data[:33])
+	fromPublicKey, err := ec.ParsePubKey(encryptedMessage[:33])
 	if err != nil {
 		return nil, err
 	}
@@ -272,41 +209,12 @@ func BitcoreDecrypt(encryptedMessage string, toPrivatKey *ec.PrivateKey) ([]byte
 	kE := kEkM[:32]
 	kM := kEkM[32:]
 
-	cipherText := data[33 : len(data)-32]
-	mac := data[len(data)-32:]
+	cipherText := encryptedMessage[33 : len(encryptedMessage)-32]
+	mac := encryptedMessage[len(encryptedMessage)-32:]
 	expectedMAC := c.Sha256HMAC(cipherText, kM)
 	if !hmac.Equal(mac, expectedMAC) {
 		return nil, errors.New("invalid ciphertext: HMAC mismatch")
 	}
 	iv := cipherText[:16]
 	return ecies.AESCBCDecrypt(cipherText[16:], kE, iv)
-
-	// Derive shared secret
-	// x, _ := privateKey.Curve.ScalarMult(fromPublicKey.X, fromPublicKey.Y, privateKey.D.Bytes())
-	// sharedSecret := x.Bytes()
-
-	// Key derivation
-	// keyMaterial := c.Sha512(sharedSecret)
-
-	// keyE := keyMaterial[:32] // AES-256 key
-	// keyM := keyMaterial[32:] // HMAC key
-
-	// // Verify HMAC
-	// mac := data[len(data)-32:]
-	// encryptedData := data[:len(data)-32]
-	// expectedMAC := c.Sha256HMAC(encryptedData, keyM)
-
-	// if !hmac.Equal(mac, expectedMAC) {
-	// 	return nil, errors.New("invalid ciphertext: HMAC mismatch")
-	// }
-
-	// // Decrypt
-	// iv := make([]byte, 16) // In Bitcore, IV is usually all zeros
-	// cipherText := encryptedData[33:]
-	// plainText, err := ecies.AESCBCDecrypt(cipherText, keyE, iv)
-	// if err != nil {
-	// 	return nil, err
-	// }
-
-	// return plainText, nil
 }

compat/ecies/ecies_test.go

@@ -32,7 +32,9 @@ func TestElectrumEncryptDecryptSingle(t *testing.T) {
 	// Electrum Encrypt
 	encryptedData, err := ElectrumEncrypt([]byte(msgString), pk.PubKey(), pk, false)
 	require.NoError(t, err)
-	require.Equal(t, "QklFMQO7zpX/GS4XpthCy6/hT38ZKsBGbn8JKMGHOY5ifmaoT890Krt9cIRk/ULXaB5uC08owRICzenFbm31pZGu0gCM2uOxpofwHacKidwZ0Q7aEw==", encryptedData)
+	expectedB64, err := base64.StdEncoding.DecodeString("QklFMQO7zpX/GS4XpthCy6/hT38ZKsBGbn8JKMGHOY5ifmaoT890Krt9cIRk/ULXaB5uC08owRICzenFbm31pZGu0gCM2uOxpofwHacKidwZ0Q7aEw==")
+	require.NoError(t, err)
+	require.Equal(t, expectedB64, encryptedData)
 
 	// Electrum Decrypt
 	decryptedData, _ := ElectrumDecrypt(encryptedData, pk, nil)
@@ -93,11 +95,10 @@ func TestBitcoreEncryptDecryptSolo(t *testing.T) {
 	// Bitcore Encrypt
 	encryptedData, err := BitcoreEncrypt([]byte(msgString), pk.PubKey(), pk, nil)
 	require.NoError(t, err)
-	require.Len(t, encryptedData, 132)
-	require.Equal(t, expectedEncryptedData, encryptedData)
+	require.Equal(t, decodedExpectedEncryptedData, encryptedData)
 
 	// Bitcore Decrypt
-	decryptedData, err := BitcoreDecrypt(string(encryptedData), pk)
+	decryptedData, err := BitcoreDecrypt(encryptedData, pk)
 	require.NoError(t, err)
 	require.Equal(t, msgString, string(decryptedData))
 }
@@ -110,9 +111,10 @@ func TestBitcoreEncryptDecryptWithCounterparty(t *testing.T) {
 	// Bitcore Encrypt
 	encryptedData, err := BitcoreEncrypt([]byte(msgString), counterpartyPk.PubKey(), pk1, nil)
 	expectedEncryptedData := "A7vOlf8ZLhem2ELLr+FPfxkqwEZufwkowYc5jmJ+ZqhPAAAAAAAAAAAAAAAAAAAAAAmFslNpNc4TrjaMPmPLdooZwoP6/fE7GN3AeyLpFf2f+QGYRKIke8zbhxu8FcLOsA=="
+	decodedExpectedEncryptedData, _ := base64.StdEncoding.DecodeString(expectedEncryptedData)
 
 	require.NoError(t, err)
-	require.Equal(t, expectedEncryptedData, encryptedData)
+	require.Equal(t, decodedExpectedEncryptedData, encryptedData)
 
 	// Bitcore Decrypt
 	decryptedData, err := BitcoreDecrypt(encryptedData, counterpartyPk)

primitives/aescbc/cbc.go

@@ -5,7 +5,6 @@ import (
 	"crypto/aes"
 	"crypto/cipher"
 	"errors"
-	"log"
 )
 
 // AESCBCEncrypt encrypts data using AES in CBC mode with an IV
@@ -21,7 +20,6 @@ func AESCBCEncrypt(data, key, iv []byte, concatIv bool) ([]byte, error) {
 	if concatIv {
 		cipherText = append(iv, cipherText...)
 	}
-	log.Printf("cipherText: %x", cipherText)
 	return cipherText, nil
 }