Fixed comments and add some unit tests for ed25519 utils

Author: tuananhk13bk

cmd/mpcium-cli/generate-initiator.go

@@ -40,17 +40,17 @@ func generateInitiatorIdentity(ctx context.Context, c *cli.Command) error {
 	algorithm := c.String("algorithm")
 
 	if algorithm == "" {
-		algorithm = string(types.KeyTypeEd25519)
+		algorithm = string(types.EventInitiatorKeyTypeEd25519)
 	}
 
 	if !slices.Contains(
-		[]string{string(types.KeyTypeEd25519), string(types.KeyTypeP256)},
+		[]string{string(types.EventInitiatorKeyTypeEd25519), string(types.EventInitiatorKeyTypeP256)},
 		algorithm,
 	) {
 		return fmt.Errorf("invalid algorithm: %s. Must be %s or %s",
 			algorithm,
-			types.KeyTypeEd25519,
-			types.KeyTypeP256,
+			types.EventInitiatorKeyTypeEd25519,
+			types.EventInitiatorKeyTypeP256,
 		)
 	}
 
@@ -90,9 +90,9 @@ func generateInitiatorIdentity(ctx context.Context, c *cli.Command) error {
 	var keyData encryption.KeyData
 	var err error
 
-	if algorithm == string(types.KeyTypeEd25519) {
+	if algorithm == string(types.EventInitiatorKeyTypeEd25519) {
 		keyData, err = generateEd25519Keys()
-	} else if algorithm == string(types.KeyTypeP256) {
+	} else if algorithm == string(types.EventInitiatorKeyTypeP256) {
 		keyData, err = encryption.GenerateP256Keys()
 	}
 

examples/generate/main.go

@@ -33,19 +33,19 @@ func main() {
 
 	algorithm := viper.GetString("event_initiator_algorithm")
 	if algorithm == "" {
-		algorithm = string(types.KeyTypeEd25519)
+		algorithm = string(types.EventInitiatorKeyTypeEd25519)
 	}
 
 	if !slices.Contains(
-		[]string{string(types.KeyTypeEd25519), string(types.KeyTypeP256)},
+		[]string{string(types.EventInitiatorKeyTypeEd25519), string(types.EventInitiatorKeyTypeP256)},
 		algorithm,
 	) {
 		logger.Fatal(
 			fmt.Sprintf(
 				"invalid algorithm: %s. Must be %s or %s",
 				algorithm,
-				types.KeyTypeEd25519,
-				types.KeyTypeP256,
+				types.EventInitiatorKeyTypeEd25519,
+				types.EventInitiatorKeyTypeP256,
 			),
 			nil,
 		)

examples/reshare/main.go

@@ -24,20 +24,20 @@ func main() {
 
 	algorithm := viper.GetString("event_initiator_algorithm")
 	if algorithm == "" {
-		algorithm = string(types.KeyTypeEd25519)
+		algorithm = string(types.EventInitiatorKeyTypeEd25519)
 	}
 
 	// Validate algorithm
 	if !slices.Contains(
-		[]string{string(types.KeyTypeEd25519), string(types.KeyTypeP256)},
+		[]string{string(types.EventInitiatorKeyTypeEd25519), string(types.EventInitiatorKeyTypeP256)},
 		algorithm,
 	) {
 		logger.Fatal(
 			fmt.Sprintf(
 				"invalid algorithm: %s. Must be %s or %s",
 				algorithm,
-				types.KeyTypeEd25519,
-				types.KeyTypeP256,
+				types.EventInitiatorKeyTypeEd25519,
+				types.EventInitiatorKeyTypeP256,
 			),
 			nil,
 		)
@@ -68,16 +68,6 @@ func main() {
 	if err != nil {
 		logger.Fatal("Failed to subscribe to OnResharingResult", err)
 	}
-	// Determine key type based on algorithm
-	var keyType types.KeyType
-	switch algorithm {
-	case string(types.KeyTypeEd25519):
-		keyType = types.KeyTypeEd25519
-	case string(types.KeyTypeP256):
-		keyType = types.KeyTypeP256
-	default:
-		logger.Fatal("Unsupported algorithm", nil)
-	}
 
 	resharingMsg := &types.ResharingMessage{
 		SessionID: uuid.NewString(),
@@ -88,7 +78,7 @@ func main() {
 		}, // new peer IDs
 
 		NewThreshold: 1, // t+1 <= len(NodeIDs)
-		KeyType:      keyType,
+		KeyType:      types.KeyTypeEd25519,
 	}
 	err = mpcClient.Resharing(resharingMsg)
 	if err != nil {

examples/sign/main.go

@@ -24,20 +24,20 @@ func main() {
 
 	algorithm := viper.GetString("event_initiator_algorithm")
 	if algorithm == "" {
-		algorithm = string(types.KeyTypeEd25519)
+		algorithm = string(types.EventInitiatorKeyTypeEd25519)
 	}
 
 	// Validate algorithm
 	if !slices.Contains(
-		[]string{string(types.KeyTypeEd25519), string(types.KeyTypeP256)},
+		[]string{string(types.EventInitiatorKeyTypeEd25519), string(types.EventInitiatorKeyTypeP256)},
 		algorithm,
 	) {
 		logger.Fatal(
 			fmt.Sprintf(
 				"invalid algorithm: %s. Must be %s or %s",
 				algorithm,
-				types.KeyTypeEd25519,
-				types.KeyTypeP256,
+				types.EventInitiatorKeyTypeEd25519,
+				types.EventInitiatorKeyTypeP256,
 			),
 			nil,
 		)
@@ -60,19 +60,8 @@ func main() {
 	txID := uuid.New().String()
 	dummyTx := []byte("deadbeef") // replace with real transaction bytes
 
-	// Determine key type based on algorithm
-	var keyType types.KeyType
-	switch algorithm {
-	case string(types.KeyTypeEd25519):
-		keyType = types.KeyTypeEd25519
-	case string(types.KeyTypeP256):
-		keyType = types.KeyTypeP256
-	default:
-		logger.Fatal("Unsupported algorithm", nil)
-	}
-
 	txMsg := &types.SignTxMessage{
-		KeyType:             keyType,
+		KeyType:             types.KeyTypeEd25519,
 		WalletID:            "ad24f678-b04b-4149-bcf6-bf9c90df8e63", // Use the generated wallet ID
 		NetworkInternalCode: "solana-devnet",
 		TxID:                txID,

pkg/client/client.go

@@ -201,10 +201,8 @@ func NewMPCClient(opts Options) MPCClient {
 		genKeySuccessQueue:  genKeySuccessQueue,
 		signResultQueue:     signResultQueue,
 		reshareSuccessQueue: reshareSuccessQueue,
-		// privKey:             priv,
-		// privKeyECDSA:        privECDSA,
-		initiatorPrivKey: initiatorPrivKey,
-		algorithm: opts.Algorithm,
+		initiatorPrivKey:    initiatorPrivKey,
+		algorithm:           opts.Algorithm,
 	}
 }
 

pkg/encryption/ed25519.go

@@ -0,0 +1,47 @@
+package encryption
+
+import (
+	"crypto/ed25519"
+	"encoding/hex"
+	"fmt"
+)
+
+// ParseEd25519PublicKeyFromHex parses a hex-encoded Ed25519 public key and validates it.
+// Returns the public key as []byte and an error if invalid.
+func ParseEd25519PublicKeyFromHex(hexKey string) ([]byte, error) {
+	if hexKey == "" {
+		return nil, fmt.Errorf("public key hex string is empty")
+	}
+
+	// Decode hex string to bytes
+	keyBytes, err := hex.DecodeString(hexKey)
+	if err != nil {
+		return nil, fmt.Errorf("invalid hex format: %w", err)
+	}
+
+	// Validate the key
+	if err := ValidateEd25519PublicKey(keyBytes); err != nil {
+		return nil, err
+	}
+
+	return keyBytes, nil
+}
+
+// ValidateEd25519PublicKey validates an existing byte slice as a valid Ed25519 public key
+func ValidateEd25519PublicKey(keyBytes []byte) error {
+	if len(keyBytes) != ed25519.PublicKeySize {
+		return fmt.Errorf("invalid Ed25519 public key length: expected %d bytes, got %d",
+			ed25519.PublicKeySize, len(keyBytes))
+	}
+
+	// Create and validate Ed25519 public key
+	pubKey := ed25519.PublicKey(keyBytes)
+
+	// Basic validation - attempt to use the key
+	// Invalid curve points will cause verification to behave predictably
+	dummyMsg := []byte("validation_test")
+	dummySig := make([]byte, ed25519.SignatureSize)
+	ed25519.Verify(pubKey, dummyMsg, dummySig) // This won't panic on invalid keys
+
+	return nil
+}

pkg/encryption/ed25519_test.go

@@ -0,0 +1,159 @@
+package encryption
+
+import (
+	"crypto/ed25519"
+	"crypto/rand"
+	"encoding/hex"
+	"strings"
+	"testing"
+)
+
+var (
+	// Test data shared across tests
+	testValidKey ed25519.PublicKey
+	testValidHex string
+	testAllZeros = make([]byte, 32)
+	testAllMax   = func() []byte {
+		b := make([]byte, 32)
+		for i := range b {
+			b[i] = 0xFF
+		}
+		return b
+	}()
+)
+
+func init() {
+	// Generate a single valid key for all tests
+	testValidKey, _, _ = ed25519.GenerateKey(rand.Reader)
+	testValidHex = hex.EncodeToString(testValidKey)
+}
+
+// Helper function to check error expectations
+func checkError(t *testing.T, err error, wantError bool, errorMsg string) {
+	t.Helper()
+	if wantError {
+		if err == nil {
+			t.Errorf("expected error but got none")
+		} else if errorMsg != "" && !strings.Contains(err.Error(), errorMsg) {
+			t.Errorf("error = %v, want error containing %v", err, errorMsg)
+		}
+	} else if err != nil {
+		t.Errorf("unexpected error = %v", err)
+	}
+}
+
+func TestParseEd25519PublicKeyFromHex(t *testing.T) {
+	tests := []struct {
+		name      string
+		hexKey    string
+		wantError bool
+		errorMsg  string
+	}{
+		{"valid hex key", testValidHex, false, ""},
+		{"empty hex string", "", true, "public key hex string is empty"},
+		{"invalid hex characters", strings.Repeat("g", 64), true, "invalid hex format"},
+		{"too short hex string", "abcdef1234567890", true, "invalid Ed25519 public key length: expected 32 bytes, got 8"},
+		{"too long hex string", strings.Repeat("ab", 40), true, "invalid Ed25519 public key length: expected 32 bytes, got 40"},
+		{"odd length hex string", "abc", true, "invalid hex format"},
+		{"all zeros", hex.EncodeToString(testAllZeros), false, ""},
+		{"all max bytes", hex.EncodeToString(testAllMax), false, ""},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			result, err := ParseEd25519PublicKeyFromHex(tt.hexKey)
+
+			checkError(t, err, tt.wantError, tt.errorMsg)
+
+			if !tt.wantError {
+				if result == nil {
+					t.Errorf("expected non-nil result")
+				} else if len(result) != ed25519.PublicKeySize {
+					t.Errorf("result length = %d, want %d", len(result), ed25519.PublicKeySize)
+				}
+			} else if result != nil {
+				t.Errorf("expected nil result on error, got %v", result)
+			}
+		})
+	}
+}
+
+func TestValidateEd25519PublicKey(t *testing.T) {
+	tests := []struct {
+		name      string
+		keyBytes  []byte
+		wantError bool
+		errorMsg  string
+	}{
+		{"valid public key", testValidKey, false, ""},
+		{"nil key bytes", nil, true, "invalid Ed25519 public key length: expected 32 bytes, got 0"},
+		{"empty key bytes", []byte{}, true, "invalid Ed25519 public key length: expected 32 bytes, got 0"},
+		{"too short key", make([]byte, 16), true, "invalid Ed25519 public key length: expected 32 bytes, got 16"},
+		{"too long key", make([]byte, 64), true, "invalid Ed25519 public key length: expected 32 bytes, got 64"},
+		{"all zeros", testAllZeros, false, ""},
+		{"all max bytes", testAllMax, false, ""},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			err := ValidateEd25519PublicKey(tt.keyBytes)
+			checkError(t, err, tt.wantError, tt.errorMsg)
+		})
+	}
+}
+
+func TestParseAndValidateIntegration(t *testing.T) {
+	testKeys := []ed25519.PublicKey{testValidKey}
+
+	// Generate a few more keys for testing
+	for i := 0; i < 3; i++ {
+		pubKey, _, err := ed25519.GenerateKey(rand.Reader)
+		if err != nil {
+			t.Fatalf("Failed to generate test key %d: %v", i, err)
+		}
+		testKeys = append(testKeys, pubKey)
+	}
+
+	for i, validPubKey := range testKeys {
+		validHex := hex.EncodeToString(validPubKey)
+
+		parsedKey, err := ParseEd25519PublicKeyFromHex(validHex)
+		if err != nil {
+			t.Errorf("ParseEd25519PublicKeyFromHex() failed for key %d: %v", i, err)
+			continue
+		}
+
+		if err := ValidateEd25519PublicKey(parsedKey); err != nil {
+			t.Errorf("ValidateEd25519PublicKey() failed for key %d: %v", i, err)
+		}
+
+		if !compareBytes(validPubKey, parsedKey) {
+			t.Errorf("Key %d: parsed key differs from original", i)
+		}
+	}
+}
+
+// Helper function to compare byte slices
+func compareBytes(a, b []byte) bool {
+	if len(a) != len(b) {
+		return false
+	}
+	for i, v := range a {
+		if v != b[i] {
+			return false
+		}
+	}
+	return true
+}
+
+func BenchmarkParseEd25519PublicKeyFromHex(b *testing.B) {
+	for i := 0; i < b.N; i++ {
+		_, _ = ParseEd25519PublicKeyFromHex(testValidHex)
+	}
+}
+
+func BenchmarkValidateEd25519PublicKey(b *testing.B) {
+	for i := 0; i < b.N; i++ {
+		_ = ValidateEd25519PublicKey(testValidKey)
+	}
+}