Merge branch 'maraino-v2' into v2

csstaub · csstaub · commit 730df5f74827 · 2019-04-10T14:58:30.000-07:00
* maraino-v2:
  Add additional test for ED25519 serialization
  Fix whitespaces.
  Reverse bytes in Ed25519 keys.
diff --git a/jwk.go b/jwk.go
@@ -230,7 +230,7 @@ func (k *JSONWebKey) Thumbprint(hash crypto.Hash) ([]byte, error) {
 	case *rsa.PrivateKey:
 		input, err = rsaThumbprintInput(key.N, key.E)
 	case ed25519.PrivateKey:
-		input, err = edThumbprintInput(ed25519.PublicKey(key[0:32]))
+		input, err = edThumbprintInput(ed25519.PublicKey(key[32:]))
 	default:
 		return nil, fmt.Errorf("square/go-jose: unknown key type '%s'", reflect.TypeOf(key))
 	}
@@ -421,8 +421,8 @@ func (key rawJSONWebKey) edPrivateKey() (ed25519.PrivateKey, error) {
 	}
 
 	privateKey := make([]byte, ed25519.PrivateKeySize)
-	copy(privateKey[0:32], key.X.bytes())
-	copy(privateKey[32:], key.D.bytes())
+	copy(privateKey[0:32], key.D.bytes())
+	copy(privateKey[32:], key.X.bytes())
 	rv := ed25519.PrivateKey(privateKey)
 	return rv, nil
 }
@@ -483,9 +483,9 @@ func (key rawJSONWebKey) rsaPrivateKey() (*rsa.PrivateKey, error) {
 }
 
 func fromEdPrivateKey(ed ed25519.PrivateKey) (*rawJSONWebKey, error) {
-	raw := fromEdPublicKey(ed25519.PublicKey(ed[0:32]))
+	raw := fromEdPublicKey(ed25519.PublicKey(ed[32:]))
 
-	raw.D = newBuffer(ed[32:])
+	raw.D = newBuffer(ed[0:32])
 	return raw, nil
 }
 
diff --git a/jwk_test.go b/jwk_test.go
@@ -29,6 +29,7 @@ import (
 	"strings"
 	"testing"
 
+	"github.com/stretchr/testify/assert"
 	"golang.org/x/crypto/ed25519"
 
 	"gopkg.in/square/go-jose.v2/json"
@@ -441,8 +442,8 @@ var cookbookJWKs = []string{
 	stripWhitespace(`{
      "kty": "OKP",
      "crv": "Ed25519",
-     "d": "nWGxne_9WmC6hEr0kuwsxERJxWl7MmkZcDusAxyuf2A",
-     "x": "11qYAYKxCrfVS_7TyWQHOg7hcvPapiMlrwIaaPcHURo"
+     "x": "11qYAYKxCrfVS_7TyWQHOg7hcvPapiMlrwIaaPcHURo",
+     "d": "nWGxne_9WmC6hEr0kuwsxERJxWl7MmkZcDusAxyuf2A"
    }`),
 
 	// EC Private
@@ -560,6 +561,20 @@ func TestWebKeyVectorsValid(t *testing.T) {
 	}
 }
 
+func TestEd25519Serialization(t *testing.T) {
+	jwk := JSONWebKey{
+		Key: ed25519PrivateKey,
+	}
+	serialized, _ := json.Marshal(jwk)
+
+	var jwk2 JSONWebKey
+	json.Unmarshal(serialized, &jwk2)
+
+	assert.True(t, bytes.Equal(
+		[]byte(jwk.Key.(ed25519.PrivateKey).Public().(ed25519.PublicKey)),
+		[]byte(jwk2.Key.(ed25519.PrivateKey).Public().(ed25519.PublicKey))))
+}
+
 func TestThumbprint(t *testing.T) {
 	for i, key := range cookbookJWKs {
 		var jwk2 JSONWebKey

Original file line number	Diff line number	Diff line change
`@@ -230,7 +230,7 @@ func (k *JSONWebKey) Thumbprint(hash crypto.Hash) ([]byte, error) {`
`230`	`230`	`case *rsa.PrivateKey:`
`231`	`231`	`input, err = rsaThumbprintInput(key.N, key.E)`
`232`	`232`	`case ed25519.PrivateKey:`
`233`		`- input, err = edThumbprintInput(ed25519.PublicKey(key[0:32]))`
	`233`	`+ input, err = edThumbprintInput(ed25519.PublicKey(key[32:]))`
`234`	`234`	`default:`
`235`	`235`	`return nil, fmt.Errorf("square/go-jose: unknown key type '%s'", reflect.TypeOf(key))`
`236`	`236`	`}`
`@@ -421,8 +421,8 @@ func (key rawJSONWebKey) edPrivateKey() (ed25519.PrivateKey, error) {`
`421`	`421`	`}`
`422`	`422`
`423`	`423`	`privateKey := make([]byte, ed25519.PrivateKeySize)`
`424`		`- copy(privateKey[0:32], key.X.bytes())`
`425`		`- copy(privateKey[32:], key.D.bytes())`
	`424`	`+ copy(privateKey[0:32], key.D.bytes())`
	`425`	`+ copy(privateKey[32:], key.X.bytes())`
`426`	`426`	`rv := ed25519.PrivateKey(privateKey)`
`427`	`427`	`return rv, nil`
`428`	`428`	`}`
`@@ -483,9 +483,9 @@ func (key rawJSONWebKey) rsaPrivateKey() (*rsa.PrivateKey, error) {`
`483`	`483`	`}`
`484`	`484`
`485`	`485`	`func fromEdPrivateKey(ed ed25519.PrivateKey) (*rawJSONWebKey, error) {`
`486`		`- raw := fromEdPublicKey(ed25519.PublicKey(ed[0:32]))`
	`486`	`+ raw := fromEdPublicKey(ed25519.PublicKey(ed[32:]))`
`487`	`487`
`488`		`- raw.D = newBuffer(ed[32:])`
	`488`	`+ raw.D = newBuffer(ed[0:32])`
`489`	`489`	`return raw, nil`
`490`	`490`	`}`
`491`	`491`