mirror of
https://github.com/caddyserver/caddy.git
synced 2025-01-24 11:15:49 +03:00
6fde3632ef
The vendor/ folder was created with the help of @FiloSottile's gvt and vendorcheck. Any dependencies of Caddy plugins outside this repo are not vendored. We do not remove any unused, vendored packages because vendorcheck -u only checks using the current build configuration; i.e. packages that may be imported by files toggled by build tags of other systems. CI tests have been updated to ignore the vendor/ folder. When Go 1.9 is released, a few of the go commands should be revised to again use ./... as it will ignore the vendor folder by default.
45 lines
1.1 KiB
Go
45 lines
1.1 KiB
Go
package crypto
|
|
|
|
import (
|
|
"crypto/rand"
|
|
"errors"
|
|
|
|
"golang.org/x/crypto/curve25519"
|
|
)
|
|
|
|
// KeyExchange manages the exchange of keys
|
|
type curve25519KEX struct {
|
|
secret [32]byte
|
|
public [32]byte
|
|
}
|
|
|
|
var _ KeyExchange = &curve25519KEX{}
|
|
|
|
// NewCurve25519KEX creates a new KeyExchange using Curve25519, see https://cr.yp.to/ecdh.html
|
|
func NewCurve25519KEX() (KeyExchange, error) {
|
|
c := &curve25519KEX{}
|
|
if _, err := rand.Read(c.secret[:]); err != nil {
|
|
return nil, errors.New("Curve25519: could not create private key")
|
|
}
|
|
// See https://cr.yp.to/ecdh.html
|
|
c.secret[0] &= 248
|
|
c.secret[31] &= 127
|
|
c.secret[31] |= 64
|
|
curve25519.ScalarBaseMult(&c.public, &c.secret)
|
|
return c, nil
|
|
}
|
|
|
|
func (c *curve25519KEX) PublicKey() []byte {
|
|
return c.public[:]
|
|
}
|
|
|
|
func (c *curve25519KEX) CalculateSharedKey(otherPublic []byte) ([]byte, error) {
|
|
if len(otherPublic) != 32 {
|
|
return nil, errors.New("Curve25519: expected public key of 32 byte")
|
|
}
|
|
var res [32]byte
|
|
var otherPublicArray [32]byte
|
|
copy(otherPublicArray[:], otherPublic)
|
|
curve25519.ScalarMult(&res, &c.secret, &otherPublicArray)
|
|
return res[:], nil
|
|
}
|