chore: sign using secp256k1 (#292)

decentraland · Oct 3, 2023 · 7222f3c · 7222f3c
1 parent fc0d31b
commit 7222f3c
Show file tree

Hide file tree

Showing 11 changed files with 55 additions and 847 deletions.
diff --git a/package.json b/package.json
@@ -13,6 +13,7 @@
     "@dcl/eslint-config": "^1.1.12",
     "@dcl/protocol": "^1.0.0-6200210039.commit-75f18e8",
     "@types/node": "^18.11.18",
+    "@types/secp256k1": "^4.0.4",
     "@well-known-components/test-helpers": "^1.5.3",
     "typescript": "^4.9.5"
   },
@@ -27,7 +28,6 @@
     "@dcl/catalyst-api-specs": "^3.2.3",
     "@dcl/catalyst-contracts": "^4.2.0",
     "@dcl/crypto": "^3.4.5",
-    "@dcl/hashing": "^3.0.4",
     "@dcl/schemas": "^9.7.0",
     "@dcl/urn-resolver": "^3.1.0",
     "@well-known-components/env-config-provider": "^1.2.0",
@@ -38,8 +38,8 @@
     "@well-known-components/thegraph-component": "^1.6.0",
     "dcl-catalyst-client": "^21.5.5",
     "eth-connect": "^6.2.1",
-    "eth-crypto": "^2.6.0",
-    "lru-cache": "^8.0.4"
+    "lru-cache": "^8.0.4",
+    "secp256k1": "^5.0.0"
   },
   "resolutions": {
     "**/make-dir/semver": "^6.3.1"

diff --git a/src/adapters/hasher.ts b/src/adapters/hasher.ts
diff --git a/src/adapters/identity.ts b/src/adapters/identity.ts
@@ -1,30 +1,38 @@
-import EthCrypto from 'eth-crypto'
 import { IBaseComponent } from '@well-known-components/interfaces'
+import { randomBytes } from 'crypto'
+import secp256k1 from 'secp256k1'
+import { sha3 } from 'eth-connect'
+
+export type HashAndSignResult = {
+  hash: string
+  signedHash: string
+}
 
 export type IdentityComponent = IBaseComponent & {
   getPublicKey(): string
-  getAddress(): string
-  sign(message: string): string
+  hashAndSign(message: string): HashAndSignResult
 }
 
 export function createIdentityComponent(): IdentityComponent {
-  const identity = EthCrypto.createIdentity()
+  let privKey: Uint8Array
+  do {
+    privKey = randomBytes(32)
+  } while (!secp256k1.privateKeyVerify(privKey))
 
-  function getAddress(): string {
-    return identity.address
-  }
+  const pubKey = secp256k1.publicKeyCreate(privKey)
 
   function getPublicKey(): string {
-    return identity.publicKey
+    return Buffer.from(pubKey).toString('hex')
   }
 
-  function sign(message: string): string {
-    return EthCrypto.sign(identity.privateKey, EthCrypto.hash.keccak256(message))
+  function hashAndSign(message: string): HashAndSignResult {
+    const hash = sha3(message)
+    const signedHash = Buffer.from(secp256k1.ecdsaSign(Buffer.from(hash, 'hex'), privKey).signature).toString('hex')
+    return { hash, signedHash }
   }
 
   return {
-    getAddress,
     getPublicKey,
-    sign
+    hashAndSign
   }
 }
diff --git a/src/components.ts b/src/components.ts
@@ -33,7 +33,6 @@ import { createThirdPartyProvidersServiceFetcherComponent } from './adapters/thi
 import { createThirdPartyProvidersStorage } from './logic/third-party-providers-storage'
 import { createIdentityComponent } from './adapters/identity'
 import { createProfilesComponent } from './adapters/profiles'
-import { createHasherComponent } from './adapters/hasher'
 
 // Initialize all the components of the app
 export async function initComponents(
@@ -140,7 +139,6 @@ export async function initComponents(
     namesFetcher
   })
 
-  const hasher = createHasherComponent()
   return {
     config,
     logs,
@@ -173,7 +171,6 @@ export async function initComponents(
     poisFetcher,
     nameDenylistFetcher,
     identity,
-    profiles,
-    hasher
+    profiles
   }
 }
diff --git a/src/controllers/handlers/about-handler.ts b/src/controllers/handlers/about-handler.ts
@@ -92,8 +92,7 @@ export async function aboutHandler(
       version: currentVersion,
       commitHash: commitHash,
       publicUrl: lambdasUrl.publicUrl,
-      publicKey: identity.getPublicKey(),
-      address: identity.getAddress()
+      publicKey: identity.getPublicKey()
     },
     configurations: {
       networkId: contracts.chainId,

diff --git a/src/controllers/handlers/profiles-handler.ts b/src/controllers/handlers/profiles-handler.ts
@@ -57,7 +57,7 @@ export async function profileHandler(
 }
 
 export async function explorerProfileHandler(
-  context: Pick<HandlerContextWithPath<'profiles' | 'identity' | 'hasher', '/profiles/:id'>, 'components' | 'params'>
+  context: Pick<HandlerContextWithPath<'profiles' | 'identity', '/profiles/:id'>, 'components' | 'params'>
 ): Promise<{ status: 200; body: any }> {
   const { components, params } = context
   const profile = await components.profiles.getProfile(params.id)
@@ -68,8 +68,8 @@ export async function explorerProfileHandler(
   const avatar = profile.avatars[0]
 
   const payload = JSON.stringify([avatar.name, avatar.hasClaimedName, ...avatar.avatar.wearables])
-  const hash = await components.hasher.hash(payload)
-  const signedHash = components.identity.sign(hash)
+
+  const { hash, signedHash } = components.identity.hashAndSign(payload)
 
   return {
     status: 200,

diff --git a/src/controllers/handlers/status-handler.ts b/src/controllers/handlers/status-handler.ts
@@ -17,8 +17,7 @@ export async function statusHandler(
       version: version ?? '',
       currentTime: Date.now(),
       commitHash: commitHash ?? '',
-      publicKey: identity.getPublicKey(),
-      address: identity.getAddress()
+      publicKey: identity.getPublicKey()
     }
   }
 }
diff --git a/src/types.ts b/src/types.ts
@@ -37,7 +37,6 @@ import { ThirdPartyProvidersGraphFetcher } from './adapters/third-party-provider
 import { ThirdPartyProvidersStorage } from './logic/third-party-providers-storage'
 import { IdentityComponent } from './adapters/identity'
 import { IProfilesComponent } from './adapters/profiles'
-import { HasherComponent } from './adapters/hasher'
 
 export type GlobalContext = {
   components: BaseComponents
@@ -76,7 +75,6 @@ export type BaseComponents = {
   nameDenylistFetcher: NameDenylistFetcher
   identity: IdentityComponent
   profiles: IProfilesComponent
-  hasher: HasherComponent
 }
 
 // components used in runtime

diff --git a/test/helpers.ts b/test/helpers.ts
@@ -1,6 +1,7 @@
-import { createIdentity } from 'eth-crypto'
+import { computeAddress } from '@dcl/crypto/dist/crypto'
+import { createIdentityComponent } from '../src/adapters/identity'
 
 export function generateRandomAddress(): string {
-  const identity = createIdentity()
-  return identity.address
+  const pubKey = createIdentityComponent().getPublicKey()
+  return computeAddress(Buffer.from(pubKey, 'hex'))
 }
diff --git a/test/unit/profile-handlers.spec.ts b/test/unit/profile-handlers.spec.ts
@@ -8,9 +8,8 @@ import { generateRandomAddress } from '../helpers'
 import { profileEntityFullWithExtendedItems } from '../integration/data/profiles-responses'
 import { Request } from 'node-fetch'
 import { createIdentityComponent } from '../../src/adapters/identity'
-import { createHasherComponent } from '../../src/adapters/hasher'
-import EthCrypto from 'eth-crypto'
-import { hashV1 } from '@dcl/hashing'
+import secp256k1 from 'secp256k1'
+import { sha3 } from 'eth-connect'
 
 const profile = { timestamp: Date.now(), ...profileEntityFullWithExtendedItems.metadata }
 
@@ -159,11 +158,7 @@ describe('GET /explorer/profiles/{id} handler unit test', () => {
       },
       identity: {
         getPublicKey: () => 'public_key',
-        getAddress: () => 'address',
-        sign: jest.fn().mockImplementation(() => 'signed')
-      },
-      hasher: {
-        hash: jest.fn().mockImplementation(() => 'hash')
+        hashAndSign: jest.fn().mockImplementation(() => ({ hash: 'hash', signedHash: 'signed' }))
       }
     }
   }
@@ -183,10 +178,9 @@ describe('GET /explorer/profiles/{id} handler unit test', () => {
     const avatar = profile.avatars[0]
     expect(components.profiles.getProfiles).not.toHaveBeenCalled()
     expect(components.profiles.getProfile).toHaveBeenCalledWith(address)
-    expect(components.hasher.hash).toHaveBeenCalledWith(
+    expect(components.identity.hashAndSign).toHaveBeenCalledWith(
       JSON.stringify([avatar.name, avatar.hasClaimedName, ...avatar.avatar.wearables])
     )
-    expect(components.identity.sign).toHaveBeenCalledWith('hash')
 
     expect(status).toEqual(200)
     expect(body.profile).toEqual(profile)
@@ -200,7 +194,6 @@ describe('GET /explorer/profiles/{id} handler unit test', () => {
         getProfiles: jest.fn().mockImplementation(async () => undefined),
         getProfile: jest.fn().mockImplementation(async () => profile)
       },
-      hasher: createHasherComponent(),
       identity: createIdentityComponent()
     }
     const { status, body } = await explorerProfileHandler({ components, params: { id: address } })
@@ -214,12 +207,14 @@ describe('GET /explorer/profiles/{id} handler unit test', () => {
     expect(body.hash).toBeTruthy()
     expect(body.signedHash).toBeTruthy()
 
-    const encoder = new TextEncoder()
-
     const payload = JSON.stringify([avatar.name, avatar.hasClaimedName, ...avatar.avatar.wearables])
-    expect(await hashV1(encoder.encode(payload))).toEqual(body.hash)
-    expect(EthCrypto.recover(body.signedHash, EthCrypto.hash.keccak256(body.hash))).toEqual(
-      components.identity.getAddress()
-    )
+    expect(sha3(payload)).toEqual(body.hash)
+    expect(
+      secp256k1.ecdsaVerify(
+        Buffer.from(body.signedHash, 'hex'),
+        Buffer.from(body.hash, 'hex'),
+        Buffer.from(components.identity.getPublicKey(), 'hex')
+      )
+    ).toBeTruthy()
   })
 })