input-output-hk · bkioshn · Jul 30, 2024 · Jul 17, 2024 · Jul 17, 2024 · Jul 17, 2024
diff --git a/.config/dictionaries/project.dic b/.config/dictionaries/project.dic
@@ -173,6 +173,7 @@ reqwest
 rfwtxt
 rgloader
 ripgrep
+rlib
 RPATH
 rustc
 rustdoc

@@ -11,6 +11,9 @@ repository = "https://github.com/input-output-hk/catalyst-voices"
 license = "MIT OR Apache-2.0"
 edition = "2021"
 
+[lib]
+crate-type = ["cdylib", "rlib"]
+
 [lints.rust]
 warnings = "deny"
 missing_docs = "deny"
@@ -60,6 +63,8 @@ regex = "1.10.5"
 ed25519-dalek = { version = "2.1.1", features = ["pem"] }
 thiserror = "1.0.56"
 serde = { version = "1.0.204", features = ["derive"] }
+wasm-bindgen = "0.2.92"
+serde-wasm-bindgen = "0.6.5"
 
 [package.metadata.cargo-machete]
 ignored = ["strum"]

@@ -8,28 +8,24 @@ builder:
 
     COPY --dir .cargo .config Cargo.* clippy.toml deny.toml rustfmt.toml src examples .
 
-
+# check : Run basic check.
 check:
     FROM +builder
 
     DO rust-ci+EXECUTE --cmd="/scripts/std_checks.py"
 
+# build : Build the C509 library
 build:
     FROM +builder
 
     DO rust-ci+EXECUTE \
         --cmd="/scripts/std_build.py" \
         --args1="--libs=c509-certificate"
 
-    # RUN wasm-pack build --target web
-
-package:
+    RUN cargo install wasm-pack --version=0.12.1 --locked
+
+# js-wasm-package-locally : Generate the wasm package and save it locally
+js-wasm-package-locally: 
     FROM +build
-
-    # AS LOCAL is for local testing only, will be removed in the future
-    SAVE ARTIFACT ./pkg c509-certificate-binding
-
-# # local-build: Build the service and save it locally
-# local-build:
-#     FROM +build
-#     SAVE ARTIFACT c509-certificate-binding AS LOCAL ./pkg
+    RUN wasm-pack build --target web
+    SAVE ARTIFACT ./pkg AS LOCAL ./pkg
@@ -0,0 +1,14 @@
+<!-- This file is for testing -->
+<!doctype html>
+<html lang="en-US">
+
+<head>
+  <meta charset="utf-8" />
+  <title>C509 certificate!</title>
+</head>
+
+<body>
+  <script type="module" src="index.js"></script>
+</body>
+
+</html>
@@ -0,0 +1,69 @@
+// Testing the wasm binding JS functions.
+
+import init, {
+	generate,
+	verify,
+	decode,
+	PublicKey,
+	PrivateKey,
+} from "../../pkg/c509_certificate.js";
+
+const pem_sk = `
+-----BEGIN PRIVATE KEY-----
+MC4CAQAwBQYDK2VwBCIEIP1iI3LF7h89yY6QZmhDp4Y5FmTQ4oasbz2lEiaqqTzV
+-----END PRIVATE KEY-----
+`;
+
+const pem_pk = `
+-----BEGIN PUBLIC KEY-----
+MCowBQYDK2VwAyEAtFuCleJwHS28jUCT+ulLl5c1+MXhehhDz2SimOhmWaI=
+-----END PUBLIC KEY-----
+`;
+
+const tbs = {
+	c509_certificate_type: 0,
+	certificate_serial_number: 1000000n,
+	issuer: {
+		relative_distinguished_name: [
+			{
+				oid: "2.5.4.3",
+				value: [{ text: "RFC test CA" }],
+			},
+		],
+	},
+	validity_not_before: 1_672_531_200n,
+	validity_not_after: 1_767_225_600n,
+	subject: { text: "01-23-45-ff-fe-67-89-AB" },
+	subject_public_key_algorithm: {
+		oid: "1.3.101.112",
+	},
+	subject_public_key: [],
+	extensions: [
+		{
+			oid: "2.5.29.19",
+			value: { int: -2n },
+			critical: false,
+		},
+	],
+	issuer_signature_algorithm: {
+		oid: "1.3.101.112",
+	},
+};
+
+async function run() {
+	await init();
+
+	let sk = PrivateKey.str_to_sk(pem_sk);
+	let pk = PublicKey.str_to_pk(pem_pk);
+
+	// Call the generate with private key to create a signed version
+	let c509 = generate(tbs, sk);
+	console.log(c509);
+	// Verify the generated C509 with the public key
+	console.log(verify(c509, pk));
+	// Decode the generated C509 back to readable format
+	let decoded_c509 = decode(c509);
+	console.log(decoded_c509.tbs_cert);
+}
+
+run();
@@ -54,6 +54,7 @@ pub mod c509_time;
 pub mod signing;
 mod tables;
 pub mod tbs_cert;
+pub mod wasm_binding;
 
 /// Generate a signed or unsigned C509 certificate.
 ///

@@ -9,6 +9,7 @@ use ed25519_dalek::{
     pkcs8::{DecodePrivateKey, DecodePublicKey},
     SigningKey, VerifyingKey,
 };
+use wasm_bindgen::prelude::wasm_bindgen;
 
 /// Public or private key decoding from string error.
 #[derive(thiserror::Error, Debug)]
@@ -18,6 +19,7 @@ struct KeyPemDecodingError;
 /// Ed25519 private key instance.
 /// Wrapper over `ed25519_dalek::SigningKey`.
 #[allow(dead_code)]
+#[wasm_bindgen]
 #[derive(Clone, Debug, PartialEq, Eq)]
 pub struct PrivateKey(SigningKey);
 
@@ -95,6 +97,7 @@ impl FromStr for PrivateKey {
 /// Ed25519 public key instance.
 /// Wrapper over `ed25519_dalek::VerifyingKey`.
 #[derive(Clone, Debug, PartialEq, Eq)]
+#[wasm_bindgen]
 pub struct PublicKey(VerifyingKey);
 
 #[allow(dead_code)]

@@ -0,0 +1,76 @@
+//! WASM binding wrapper for the C509 certificate crate.
+
+use std::str::FromStr;
+
+use minicbor::Decode;
+use wasm_bindgen::{prelude::wasm_bindgen, JsValue};
+
+use crate::{
+    signing::{PrivateKey, PublicKey},
+    tbs_cert::TbsCert,
+};
+
+/// Wrapper for generate function.
+///
+/// # Errors
+/// Returns an error if the provided TbsCert JSValue cannot be converted `TbsCert` or C509
+/// cannot be generated.
+#[wasm_bindgen]
+// wasm_bindgen does not allowed ref passing unless it implement `RefFromWasmAbi`.
+#[allow(clippy::needless_pass_by_value)]
+pub fn generate(tbs_cert: JsValue, private_key: Option<PrivateKey>) -> Result<JsValue, JsValue> {
+    let tbs_cert: TbsCert = serde_wasm_bindgen::from_value(tbs_cert)?;
+    let c509 = crate::generate(&tbs_cert, private_key.as_ref())
+        .map_err(|e| JsValue::from(e.to_string()))?;
+    Ok(serde_wasm_bindgen::to_value(&c509)?)
+}
+
+/// Wrapper for verify function.
+///
+/// # Errors
+/// Returns an error if the signature is invalid or the signature cannot be verified.
+#[wasm_bindgen]
+pub fn verify(c509: &[u8], public_key: &PublicKey) -> Result<JsValue, JsValue> {
+    match crate::verify(c509, public_key) {
+        Ok(()) => Ok(JsValue::from("Signature verified")),
+        Err(e) => Err(JsValue::from(e.to_string())),
+    }
+}
+
+/// Wrapper for decoding vector of C509 back to readable object.
+///
+/// # Errors
+/// Returns an error if the provided vector is not a valid C509 certificate.
+#[wasm_bindgen]
+pub fn decode(c509: &[u8]) -> Result<JsValue, JsValue> {
+    let mut d = minicbor::Decoder::new(c509);
+    let c509 = crate::C509::decode(&mut d, &mut ()).map_err(|e| JsValue::from(e.to_string()))?;
+    Ok(serde_wasm_bindgen::to_value(&c509)?)
+}
+
+#[wasm_bindgen]
+impl PrivateKey {
+    /// Convert string to private key.
+    ///
+    /// # Errors
+    /// Returns an error if the provided string is not a valid private key.
+    #[wasm_bindgen]
+    pub fn str_to_sk(str: &str) -> Result<PrivateKey, JsValue> {
+        FromStr::from_str(str).map_err(|_| {
+            JsValue::from("Cannot decode private key from string. Invalid PEM format.")
+        })
+    }
+}
+
+#[wasm_bindgen]
+impl PublicKey {
+    /// Convert string to public key.
+    ///
+    /// # Errors
+    /// Returns an error if the provided string is not a valid public key.
+    #[wasm_bindgen]
+    pub fn str_to_pk(str: &str) -> Result<PublicKey, JsValue> {
+        FromStr::from_str(str)
+            .map_err(|_| JsValue::from("Cannot decode public key from string. Invalid PEM format."))
+    }
+}
-Original file line number
+Diff line change
@@ Expand Up / @@ -173,6 +173,7 @@ reqwest @@
     rfwtxt
     rgloader
     ripgrep
+    rlib
     RPATH
     rustc
     rustdoc
@@ Expand Down @@