Initial public Swift implementation (#54)

* Initial public Swift implementation

* Updating bitrise.yml

* Linux fix

* Adding Zeroization.swift for linux support

Author: csjones

.gitmodules

@@ -1,6 +1,6 @@
-[submodule "Sources/secp256k1/secp256k1"]
-	path = Sources/secp256k1/secp256k1
+[submodule "Sources/bindings/secp256k1"]
+	path = Sources/bindings/secp256k1
 	url = https://github.com/bitcoin-core/secp256k1
-[submodule "Sources/swift-crypto/swift-crypto"]
-	path = Sources/swift-crypto/swift-crypto
+[submodule "Sources/implementation/swift-crypto"]
+	path = Sources/implementation/swift-crypto
 	url = https://github.com/apple/swift-crypto

Package.swift

@@ -11,15 +11,15 @@ let package = Package(
         .library(
             name: "secp256k1",
             targets: [
-                "secp256k1",
-                "secp256k1_utils"
+                "secp256k1_bindings",
+                "secp256k1_implementation"
             ]
         )
     ],
     targets: [
         .target(
-            name: "secp256k1",
-            path: "Sources/secp256k1",
+            name: "secp256k1_bindings",
+            path: "Sources/bindings",
             exclude: [
                 "secp256k1/src/asm",
                 "secp256k1/src/bench_ecdh.c",
@@ -54,21 +54,28 @@ let package = Package(
         ),
         // Only include select utility extensions because most of Swift Crypto is not required
         .target(
-            name: "secp256k1_utils",
-            path: "Sources/swift-crypto",
-            exclude: [
-                "swift-crypto/Sources",
+            name: "secp256k1_implementation",
+            dependencies: [
+                .target(name: "secp256k1_bindings")
             ],
+            path: "Sources/implementation",
             sources: [
                 "swift-crypto/Tests/CryptoTests/Utils/BytesUtil.swift",
-                "extensions/String.swift"
+                "swift-crypto/Sources/Crypto/Util/SecureBytes.swift",
+                "swift-crypto/Sources/Crypto/Util/BoringSSL/RNG_boring.swift",
+                "swift-crypto/Sources/Crypto/Util/BoringSSL/SafeCompare_boring.swift",
+                "Zeroization.swift",
+                "String.swift",
+                "secp256k1.swift",
+                "SafeCompare.swift",
+                "NISTCurvesKeys.swift"
             ]
         ),
         .testTarget(
             name: "secp256k1Tests",
             dependencies: [
-                "secp256k1",
-                "secp256k1_utils"
+                "secp256k1_bindings",
+                "secp256k1_implementation"
             ]
         )
     ],

README.md

@@ -1,10 +1,12 @@
-# 🔐 secp256k1.swift [![Build Status](https://app.bitrise.io/app/ef44aebd8443b33b/status.svg?token=oDGzN3bMEwseXF_5MQUsTg&branch=main)](https://app.bitrise.io/app/ef44aebd8443b33b) [![](https://img.shields.io/endpoint?url=https%3A%2F%2Fswiftpackageindex.com%2Fapi%2Fpackages%2FGigaBitcoin%2Fsecp256k1.swift%2Fbadge%3Ftype%3Dswift-versions)](https://swiftpackageindex.com/GigaBitcoin/secp256k1.swift) [![](https://img.shields.io/endpoint?url=https%3A%2F%2Fswiftpackageindex.com%2Fapi%2Fpackages%2FGigaBitcoin%2Fsecp256k1.swift%2Fbadge%3Ftype%3Dplatforms)](https://swiftpackageindex.com/GigaBitcoin/secp256k1.swift)
-Swift bindings library for ECDSA signatures and secret/public key operations using [libsecp256k1](https://github.com/bitcoin-core/secp256k1).
+[![Build Status](https://app.bitrise.io/app/ef44aebd8443b33b/status.svg?token=oDGzN3bMEwseXF_5MQUsTg&branch=main)](https://app.bitrise.io/app/ef44aebd8443b33b) [![](https://img.shields.io/endpoint?url=https%3A%2F%2Fswiftpackageindex.com%2Fapi%2Fpackages%2FGigaBitcoin%2Fsecp256k1.swift%2Fbadge%3Ftype%3Dswift-versions)](https://swiftpackageindex.com/GigaBitcoin/secp256k1.swift) [![](https://img.shields.io/endpoint?url=https%3A%2F%2Fswiftpackageindex.com%2Fapi%2Fpackages%2FGigaBitcoin%2Fsecp256k1.swift%2Fbadge%3Ftype%3Dplatforms)](https://swiftpackageindex.com/GigaBitcoin/secp256k1.swift)
+
+# 🔐 secp256k1.swift
+Swift library and bindings for ECDSA signatures and secret/public key operations using [libsecp256k1](https://github.com/bitcoin-core/secp256k1).
+
 
 # Objective
-This library aims to be a lightweight dependency for clients and wrapper libraries to include ECDSA functionality.
+This library aims to be a lightweight wrapper for clients to include ECDSA functionality in Swift. The package aims to stay up-to-date and uses a submodule set to the default git branch of secp256k1.
 
-This package is set to the default git branch of secp256k1 and aims to stay up-to-date without using a mirrored repository. An extra module is available for convenience functionality.
 
 # Getting Started
 
@@ -15,18 +17,29 @@ dependencies: [
     .package(
         name: "secp256k1",
         url: "https://github.com/GigaBitcoin/secp256k1.swift.git",
-        from: "0.1.0"
+        from: "0.2.0"
     ),
 ]
 ```
 
-Currently, this Swift package only provides a single product library built using the `libsecp256k1` [basic config](https://github.com/bitcoin-core/secp256k1/blob/master/src/basic-config.h).
 
-# Usage
+# Basic Usage
+
+```swift
+import secp256k1
+
+let privateKeyBytes = try! "14E4A74438858920D8A35FB2D88677580B6A2EE9BE4E711AE34EC6B396D87B5C".byteArray()
+let privatekey = try! secp256k1.Signing.PrivateKey(rawRepresentation: privateKeyBytes)
+
+
+print(String(byteArray: privatekey.publicKey.rawRepresentation)) //  02734b3511150a60fc8cac329cd5ff804555728740f2f2e98bc4242135ef5d5e4e
+```
+
+
+# Advance Usage
 
 ```swift
 import secp256k1
-import secp256k1_utils
 
 // Initialize context
 let context = secp256k1_context_create(UInt32(SECP256K1_CONTEXT_SIGN | SECP256K1_CONTEXT_VERIFY))!
@@ -52,17 +65,6 @@ print(String(byteArray: pubKey)) //  02734b3511150a60fc8cac329cd5ff804555728740f
 secp256k1_context_destroy(context)
 ```
 
-# Contributing
-
-To start developing, clone the package from github, and from the root directory, run the following commands:
-
-```shell
-git clone --recurse-submodules https://github.com/GigaBitcoin/secp256k1.swift
-cd secp256k1.swift
-swift build
-```
-
-Tests can be run by calling `swift test`
 
 # Danger
 These APIs should not be considered stable and may change at any time. libsecp256k1 is still experimental and has not been formally released.

Sources/secp256k1/include/secp256k1.h Sources/bindings/include/secp256k1.hSources/secp256k1/include/secp256k1.h renamed to Sources/bindings/include/secp256k1.h

@@ -0,0 +1,54 @@
+//
+//  secp256k1.swift
+//  GigaBitcoin/secp256k1.swift
+//
+//  Modifications Copyright (c) 2020 GigaBitcoin LLC
+//  Distributed under the MIT software license
+//
+//  See the accompanying file LICENSE for information
+//
+//
+//  NOTICE: THIS FILE HAS BEEN MODIFIED BY GigaBitcoin LLC
+//  UNDER COMPLIANCE WITH THE APACHE 2.0 LICENCE FROM THE
+//  ORIGINAL WORK OF THE COMPANY Apple Inc.
+//
+//  THE FOLLOWING IS THE COPYRIGHT OF THE ORIGINAL DOCUMENT:
+//
+//
+//===----------------------------------------------------------------------===//
+//
+// This source file is part of the SwiftCrypto open source project
+//
+// Copyright (c) 2019-2020 Apple Inc. and the SwiftCrypto project authors
+// Licensed under Apache License v2.0
+//
+// See LICENSE.txt for license information
+// See CONTRIBUTORS.md for the list of SwiftCrypto project authors
+//
+// SPDX-License-Identifier: Apache-2.0
+//
+//===----------------------------------------------------------------------===//
+import Foundation
+
+protocol ECPublicKey {
+    init <Bytes: ContiguousBytes>(rawRepresentation: Bytes) throws
+    var rawRepresentation: Data { get }
+}
+
+protocol ECPrivateKey {
+    associatedtype PublicKey
+    var publicKey: PublicKey { get }
+}
+
+protocol NISTECPublicKey: ECPublicKey {
+    init<Bytes: ContiguousBytes>(compactRepresentation: Bytes) throws
+    init<Bytes: ContiguousBytes>(x963Representation: Bytes) throws
+
+    var compactRepresentation: Data? { get }
+    var x963Representation: Data { get }
+}
+
+protocol NISTECPrivateKey: ECPrivateKey where PublicKey: NISTECPublicKey {
+    init <Bytes: ContiguousBytes>(rawRepresentation: Bytes) throws
+    var rawRepresentation: Data { get }
+}

Sources/secp256k1/secp256k1 Sources/bindings/secp256k1Sources/secp256k1/secp256k1 renamed to Sources/bindings/secp256k1

@@ -0,0 +1,35 @@
+//
+//  secp256k1.swift
+//  GigaBitcoin/secp256k1.swift
+//
+//  Modifications Copyright (c) 2020 GigaBitcoin LLC
+//  Distributed under the MIT software license
+//
+//  See the accompanying file LICENSE for information
+//
+//
+//  NOTICE: THIS FILE HAS BEEN MODIFIED BY GigaBitcoin LLC
+//  UNDER COMPLIANCE WITH THE APACHE 2.0 LICENCE FROM THE
+//  ORIGINAL WORK OF THE COMPANY Apple Inc.
+//
+//  THE FOLLOWING IS THE COPYRIGHT OF THE ORIGINAL DOCUMENT:
+//
+//
+//===----------------------------------------------------------------------===//
+//
+// This source file is part of the SwiftCrypto open source project
+//
+// Copyright (c) 2019-2020 Apple Inc. and the SwiftCrypto project authors
+// Licensed under Apache License v2.0
+//
+// See LICENSE.txt for license information
+// See CONTRIBUTORS.md for the list of SwiftCrypto project authors
+//
+// SPDX-License-Identifier: Apache-2.0
+//
+//===----------------------------------------------------------------------===//
+import Foundation
+
+internal func safeCompare<LHS: ContiguousBytes, RHS: ContiguousBytes>(_ lhs: LHS, _ rhs: RHS) -> Bool {
+    return openSSLSafeCompare(lhs, rhs)
+}

Sources/implementation/NISTCurvesKeys.swift

@@ -0,0 +1,50 @@
+//
+//  secp256k1.swift
+//  GigaBitcoin/secp256k1.swift
+//
+//  Modifications Copyright (c) 2020 GigaBitcoin LLC
+//  Distributed under the MIT software license
+//
+//  See the accompanying file LICENSE for information
+//
+//
+//  NOTICE: THIS FILE HAS BEEN MODIFIED BY GigaBitcoin LLC
+//  UNDER COMPLIANCE WITH THE APACHE 2.0 LICENCE FROM THE
+//  ORIGINAL WORK OF THE COMPANY Apple Inc.
+//
+//  THE FOLLOWING IS THE COPYRIGHT OF THE ORIGINAL DOCUMENT:
+//
+//
+//===----------------------------------------------------------------------===//
+//
+// This source file is part of the SwiftCrypto open source project
+//
+// Copyright (c) 2019 Apple Inc. and the SwiftCrypto project authors
+// Licensed under Apache License v2.0
+//
+// See LICENSE.txt for license information
+// See CONTRIBUTORS.md for the list of SwiftCrypto project authors
+//
+// SPDX-License-Identifier: Apache-2.0
+//
+//===----------------------------------------------------------------------===//
+#if !(os(macOS) || os(iOS) || os(watchOS) || os(tvOS))
+
+typealias errno_t = CInt
+
+// This is a Swift wrapper for the libc function that does not exist on Linux. The original
+// shim used `OPENSSL_cleanse`, unfortunately we do not want to include openssl. This shim now
+// (1) starts with a `UnsafeMutableRawPointer`, (2) creates an `UnsafeMutableBufferPointer`,
+// and (3) iterates through the buffer pointer setting each element to 0.
+@discardableResult
+func memset_s(_ s: UnsafeMutableRawPointer!, _ smax: Int, _ byte: CInt, _ n: Int) -> errno_t {
+    assert(smax == n, "memset_s invariant not met")
+    assert(byte == 0, "memset_s used to not zero anything")
+    let pointer = s.bindMemory(to: UInt8.self, capacity: smax)
+    let bufferPointer = UnsafeMutableBufferPointer(start: pointer, count: smax)
+    for i in stride(from: bufferPointer.startIndex, to: bufferPointer.endIndex, by: 1) {
+        bufferPointer[i] = 0
+    }
+    return 0
+}
+#endif