harald/teepot
1
0
Fork 0
mirror of https://github.com/matter-labs/teepot.git synced 2025-07-21 23:23:57 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Replace secp256k1 with k256 crate

Browse source 
Rationale: we already have secp256k1 in our dependencies, as suggested
by Igor:
https://github.com/matter-labs/zksync-era/pull/2333#discussion_r1656531731
This commit is contained in:
Patryk Bęza 2024-07-01 13:55:32 +02:00
parent be6aa0c96d
commit 4c76318702
No known key found for this signature in database
GPG key ID: 9AD1B44D9F6258EC
4 changed files with 30 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

2
bin/tee-key-preexec/Cargo.toml
View file

@ -10,8 +10,8 @@ repository.workspace = true
[dependencies]
anyhow.workspace = true
k256.workspace = true
rand.workspace = true
secp256k1.workspace = true
teepot.workspace = true
tracing.workspace = true
tracing-log.workspace = true

15
bin/tee-key-preexec/src/main.rs
View file

@ -7,8 +7,7 @@
#![deny(clippy::all)]
use anyhow::{Context, Result};
use k256::ecdsa::SigningKey;
use k256::pkcs8::{EncodePrivateKey, LineEnding};
use secp256k1::{rand, Keypair, PublicKey, Secp256k1, SecretKey};
use std::env;
use std::os::unix::process::CommandExt;
@ -38,10 +37,12 @@ fn main_with_error() -> Result<()> {
}
let mut rng = rand::thread_rng();
let signing_key = SigningKey::random(&mut rng);
let verifying_key_bytes = signing_key.verifying_key().to_sec1_bytes();
let signing_key_string = signing_key.to_pkcs8_pem(LineEnding::LF)?;
let tee_type = match get_quote(&verifying_key_bytes) {
let secp = Secp256k1::new();
let keypair = Keypair::new(&secp, &mut rng);
let signing_key = SecretKey::from_keypair(&keypair);
let verifying_key = PublicKey::from_keypair(&keypair);
let verifying_key_bytes = verifying_key.serialize();
let tee_type = match get_quote(verifying_key_bytes.as_ref()) {
Ok(quote) => {
// save quote to file
std::fs::write(TEE_QUOTE_FILE, quote)?;
@ -56,7 +57,7 @@ fn main_with_error() -> Result<()> {
let err = Command::new(&args[1])
.args(&args[2..])
.env("TEE_SIGNING_KEY", signing_key_string)
.env("TEE_SIGNING_KEY", signing_key.display_secret().to_string())
.env("TEE_QUOTE_FILE", TEE_QUOTE_FILE)
.env("TEE_TYPE", tee_type)
.exec();