Merge pull request #136 from skalenetwork/SKALE-3067-remove-use-check

Skale 3067 remove use check

Merge pull request #136 from skalenetwork/SKALE-3067-remove-use-check
Skale 3067 remove use check
4fcda5df · Stan Kladko · GitHub · 6502d7bc · 4f68f132 · 4fcda5df
Unverified Commit 4fcda5df authored Aug 11, 2020 by Stan Kladko Committed by GitHub Aug 11, 2020
7 changed files
--- a/ECDSACrypto.cpp
+++ b/ECDSACrypto.cpp
@@ -175,11 +175,8 @@ vector <string> ecdsaSignHash(const char *encryptedKeyHex, const char *hashHex,
    string pubKeyStr = "";
-    shared_ptr<SGXException> exception = NULL;
    if (!hex2carray(encryptedKeyHex, &decLen, encryptedKey.data())) {
-        exception = make_shared<SGXException>(INVALID_HEX, "Invalid encryptedKeyHex");
+        throw SGXException(INVALID_HEX, "Invalid encryptedKeyHex");
-        goto clean;
    }
    status = trustedEcdsaSignAES(eid, &errStatus,
@@ -188,15 +185,14 @@ vector <string> ecdsaSignHash(const char *encryptedKeyHex, const char *hashHex,
                                 signatureS.data(), &signatureV, base);
    if (errStatus != 0) {
-        exception = make_shared<SGXException>(666, errMsg.data());
+        throw SGXException(666, errMsg.data());
-        goto clean;
    }
    if (status != SGX_SUCCESS) {
        spdlog::error("failed to sign {}", status);
-        exception = make_shared<SGXException>(666, "failed to sign");
+        throw SGXException(666, "failed to sign");
-        goto clean;
    }
    signatureVector.at(0) = to_string(signatureV);
    if (base == 16) {
        signatureVector.at(1) = "0x" + string(signatureR.data());
@@ -210,15 +206,16 @@ vector <string> ecdsaSignHash(const char *encryptedKeyHex, const char *hashHex,
    pubKeyStr = getECDSAPubKey(encryptedKeyHex);
-    if (!verifyECDSASig(pubKeyStr, hashHex, signatureR.data(), signatureS.data(), base)) {
+    static uint64_t  i = 0;
-        exception = make_shared<SGXException>(667, "ECDSA did not verify");
-        goto clean;
-    }
-    clean:
+    i++;
+    if (i % 1000 == 0) {
-    if (exception)
+        if (!verifyECDSASig(pubKeyStr, hashHex, signatureR.data(), signatureS.data(), base)) {
-        throw *exception;
+            throw SGXException(667, "ECDSA did not verify");
+        }
+    }
    return signatureVector;
 }
--- a/Log.h
+++ b/Log.h
@@ -73,7 +73,9 @@ public:
    static void handleSGXException(Json::Value &_result, SGXException &_e);
 };
-#define INIT_RESULT(__RESULT__)     Json::Value __RESULT__; __RESULT__["status"] = 0; __RESULT__["errorMessage"] = "";
+#define INIT_RESULT(__RESULT__)     Json::Value __RESULT__; __RESULT__["status"] = 0; __RESULT__["errorMessage"] = \
+"Server error. Please see server log.";
+#define RESULT_SUCCESS(__RESULT__)    ; __RESULT__["status"] = 0; __RESULT__["errorMessage"] = "";
 #define HANDLE_SGX_EXCEPTION(_RESULT_) catch (SGXException &__e) { Log::handleSGXException(_RESULT_, __e);} \
        catch (exception  &__e) {spdlog::error(__e.what()); _RESULT_["status"] = 1; _RESULT_["errorMessage"] = __e.what();}

--- a/secure_enclave/EnclaveCommon.cpp
+++ b/secure_enclave/EnclaveCommon.cpp
@@ -135,11 +135,16 @@ libff::alt_bn128_Fr *keyFromString(const char *_keyStringHex) {
 int inited = 0;
+domain_parameters curve;
 void enclave_init() {
    if (inited == 1)
        return;
    inited = 1;
    libff::init_alt_bn128_params();
+    curve = domain_parameters_init();
+    domain_parameters_load_curve(curve, secp256k1);
 }
 bool enclave_sign(const char *_keyString, const char *_hashXString, const char *_hashYString,

--- a/secure_enclave/EnclaveCommon.h
+++ b/secure_enclave/EnclaveCommon.h
@@ -21,6 +21,11 @@
    @date 2019
 */
+#include "DomainParameters.h"
+#include "Signature.h"
+#include "Curves.h"
 #ifndef SGXWALLET_ENCLAVECOMMON_H
 #define SGXWALLET_ENCLAVECOMMON_H
@@ -59,5 +64,7 @@ extern uint32_t globalLogLevel_;
 extern unsigned char* globalRandom;
+extern domain_parameters curve;
 #endif //SGXWALLET_ENCLAVECOMMON_H
--- a/secure_enclave/secure_enclave.c
+++ b/secure_enclave/secure_enclave.c
--- a/testw.cpp
+++ b/testw.cpp
@@ -111,10 +111,13 @@ TEST_CASE_METHOD(TestFixture, "ECDSA keygen and signature test", "[ecdsa-key-sig
    vector<char> signatureS(BUF_LEN, 0);
    uint8_t signatureV = 0;
+    for (int i = 0; i < 50; i++) {
        status = trustedEcdsaSign(eid, &errStatus, errMsg.data(), encrPrivKey.data(), encLen,
                                  (unsigned char *) hex.data(),
                                  signatureR.data(),
                                  signatureS.data(), &signatureV, 16);
+    }
    REQUIRE(status == SGX_SUCCESS);
@@ -286,6 +289,13 @@ TEST_CASE_METHOD(TestFixture, "ECDSA key gen API", "[ecdsa-key-gen-api]") {
        }
    }
+    auto keyName = genECDSAKeyAPI(c);
+Json::Value sig = c.ecdsaSignMessageHash(10, keyName, SAMPLE_HASH);
    for (int i = 0; i <= 20; i++) {
        try {
            auto keyName = genECDSAKeyAPI(c);

--- a/testw.py
+++ b/testw.py
@@ -51,7 +51,7 @@ testList = [ "[cert-sign]",
            "[dkg-api]",
            "[dkg-bls]",
            "[dkg-poly-exists]",
-            "[dkg-pub-shares]",
+#            "[dkg-pub-shares]",
            "[dkg-aes-pub-shares]",
            "[many-threads-crypto]",
            "[aes-encrypt-decrypt]",