ATL-6924: Refactor CryptoUtils and remove SHA256Digest

This commit improves the organization of CryptoUtils methods
It also delete the used of SDK methods related to Sha256 hashing

Author: EzequielPostan

node/src/main/scala/io/iohk/atala/prism/node/NodeGrpcServiceImpl.scala

@@ -127,7 +127,7 @@ class NodeGrpcServiceImpl(
         node_api
           .GetDidDocumentResponse(document = didData.maybeData)
           .withLastUpdateOperation(
-            didData.maybeOperation.map(a => ByteString.copyFrom(a.getValue)).getOrElse(ByteString.EMPTY)
+            didData.maybeOperation.map(a => ByteString.copyFrom(a.bytes.toArray)).getOrElse(ByteString.EMPTY)
           )
           .withLastSyncedBlockTimestamp(didData.lastSyncedTimeStamp.toProtoTimestamp)
     )

node/src/main/scala/io/iohk/atala/prism/node/crypto/CryptoUtils.scala

@@ -22,15 +22,62 @@ object CryptoUtils {
     def y: Array[Byte] = publicKey.asInstanceOf[ECPublicKey].getQ.getAffineYCoord.getEncoded
   }
 
+  private[crypto] class SecpPublicKeyImpl(pubKey: PublicKey) extends SecpPublicKey {
+    override private[crypto] def publicKey: PublicKey = pubKey
+  }
+
   // We define the constructor to SecpKeys private so that the only way to generate
   // these keys is by using the methods unsafeToPublicKeyFromByteCoordinates and
   // unsafeToPublicKeyFromCompressed.
-  private object SecpPublicKey {
-    private class SecpPublicKeyImpl(pubKey: PublicKey) extends SecpPublicKey {
-      override private[crypto] def publicKey: PublicKey = pubKey
+  object SecpPublicKey {
+
+    private[crypto] def fromPublicKey(key: PublicKey): SecpPublicKey = new SecpPublicKeyImpl(key)
+
+    def checkECDSASignature(msg: Array[Byte], sig: Array[Byte], pubKey: SecpPublicKey): Boolean = {
+      val ecdsaVerify = Signature.getInstance("SHA256withECDSA", provider)
+      ecdsaVerify.initVerify(pubKey.publicKey)
+      ecdsaVerify.update(msg)
+      ecdsaVerify.verify(sig)
+    }
+
+    def unsafeToSecpPublicKeyFromCompressed(com: Vector[Byte]): SecpPublicKey = {
+      val params = ECNamedCurveTable.getParameterSpec("secp256k1")
+      val fact = KeyFactory.getInstance("ECDSA", provider)
+      val curve = params.getCurve
+      val ellipticCurve = EC5Util.convertCurve(curve, params.getSeed)
+      val point = ECPointUtil.decodePoint(ellipticCurve, com.toArray)
+      val params2 = EC5Util.convertSpec(ellipticCurve, params)
+      val keySpec = new ECPublicKeySpec(point, params2)
+      SecpPublicKey.fromPublicKey(fact.generatePublic(keySpec))
+    }
+
+    def unsafeToSecpPublicKeyFromByteCoordinates(x: Array[Byte], y: Array[Byte]): SecpPublicKey = {
+      def trimLeadingZeroes(arr: Array[Byte], c: String): Array[Byte] = {
+        val trimmed = arr.dropWhile(_ == 0.toByte)
+        require(
+          trimmed.length <= PUBLIC_KEY_COORDINATE_BYTE_SIZE,
+          s"Expected $c coordinate byte length to be less than or equal ${PUBLIC_KEY_COORDINATE_BYTE_SIZE}, but got ${trimmed.length} bytes"
+        )
+        trimmed
+      }
+
+      val xTrimmed = trimLeadingZeroes(x, "x")
+      val yTrimmed = trimLeadingZeroes(y, "y")
+      val xInteger = BigInt(1, xTrimmed)
+      val yInteger = BigInt(1, yTrimmed)
+      SecpPublicKey.unsafeToSecpPublicKeyFromBigIntegerCoordinates(xInteger, yInteger)
     }
 
-    def fromPublicKey(key: PublicKey): SecpPublicKey = new SecpPublicKeyImpl(key)
+    def unsafeToSecpPublicKeyFromBigIntegerCoordinates(x: BigInt, y: BigInt): SecpPublicKey = {
+      val params = ECNamedCurveTable.getParameterSpec("secp256k1")
+      val fact = KeyFactory.getInstance("ECDSA", provider)
+      val curve = params.getCurve
+      val ellipticCurve = EC5Util.convertCurve(curve, params.getSeed)
+      val point = new ECPoint(x.bigInteger, y.bigInteger)
+      val params2 = EC5Util.convertSpec(ellipticCurve, params)
+      val keySpec = new ECPublicKeySpec(point, params2)
+      SecpPublicKey.fromPublicKey(fact.generatePublic(keySpec))
+    }
   }
 
   private val provider = new BouncyCastleProvider()
@@ -40,19 +87,34 @@ object CryptoUtils {
 
   trait Sha256Hash {
     def bytes: Vector[Byte]
+    def hexEncoded: String = bytesToHex(bytes)
   }
 
   private[crypto] case class Sha256HashImpl(bytes: Vector[Byte]) extends Sha256Hash {
     require(bytes.size == 32)
   }
 
-  def sha256Hash(bArray: Array[Byte]): Sha256Hash = {
-    Sha256HashImpl(
-      MessageDigest
-        .getInstance("SHA-256")
-        .digest(bArray)
-        .toVector
-    )
+  object Sha256Hash {
+
+    def fromBytes(arr: Array[Byte]): Sha256Hash = Sha256HashImpl(arr.toVector)
+
+    def compute(bArray: Array[Byte]): Sha256Hash = {
+      Sha256HashImpl(
+        MessageDigest
+          .getInstance("SHA-256")
+          .digest(bArray)
+          .toVector
+      )
+    }
+
+    def fromHex(hexedBytes: String): Sha256Hash = {
+      val HEX_STRING_RE = "^[0-9a-fA-F]{64}$".r
+      if (HEX_STRING_RE.matches(hexedBytes)) Sha256HashImpl(hexToBytes(hexedBytes))
+      else
+        throw new IllegalArgumentException(
+          "The given hex string doesn't correspond to a valid SHA-256 hash encoded as string"
+        )
+    }
   }
 
   def bytesToHex(bytes: Vector[Byte]): String = {
@@ -68,63 +130,4 @@ object CryptoUtils {
       octet = firstIndex << 4 | secondIndex
     } yield octet.toByte
   }
-
-  def hexedHash(hash: Sha256Hash): String = {
-    bytesToHex(hash.bytes)
-  }
-
-  def fromHex(hexedBytes: String): Sha256Hash = {
-    val HEX_STRING_RE = "^[0-9a-fA-F]{64}$".r
-    if (HEX_STRING_RE.matches(hexedBytes)) Sha256HashImpl(hexToBytes(hexedBytes))
-    else
-      throw new IllegalArgumentException(
-        "The given hex string doesn't correspond to a valid SHA-256 hash encoded as string"
-      )
-  }
-
-  def checkECDSASignature(msg: Array[Byte], sig: Array[Byte], pubKey: SecpPublicKey): Boolean = {
-    val ecdsaVerify = Signature.getInstance("SHA256withECDSA", provider)
-    ecdsaVerify.initVerify(pubKey.publicKey)
-    ecdsaVerify.update(msg)
-    ecdsaVerify.verify(sig)
-  }
-
-  def unsafeToSecpPublicKeyFromByteCoordinates(x: Array[Byte], y: Array[Byte]): SecpPublicKey = {
-    def trimLeadingZeroes(arr: Array[Byte], c: String): Array[Byte] = {
-      val trimmed = arr.dropWhile(_ == 0.toByte)
-      require(
-        trimmed.length <= PUBLIC_KEY_COORDINATE_BYTE_SIZE,
-        s"Expected $c coordinate byte length to be less than or equal ${PUBLIC_KEY_COORDINATE_BYTE_SIZE}, but got ${trimmed.length} bytes"
-      )
-      trimmed
-    }
-
-    val xTrimmed = trimLeadingZeroes(x, "x")
-    val yTrimmed = trimLeadingZeroes(y, "y")
-    val xInteger = BigInt(1, xTrimmed)
-    val yInteger = BigInt(1, yTrimmed)
-    unsafeToSecpPublicKeyFromBigIntegerCoordinates(xInteger, yInteger)
-  }
-
-  private def unsafeToSecpPublicKeyFromBigIntegerCoordinates(x: BigInt, y: BigInt): SecpPublicKey = {
-    val params = ECNamedCurveTable.getParameterSpec("secp256k1")
-    val fact = KeyFactory.getInstance("ECDSA", provider)
-    val curve = params.getCurve
-    val ellipticCurve = EC5Util.convertCurve(curve, params.getSeed)
-    val point = new ECPoint(x.bigInteger, y.bigInteger)
-    val params2 = EC5Util.convertSpec(ellipticCurve, params)
-    val keySpec = new ECPublicKeySpec(point, params2)
-    SecpPublicKey.fromPublicKey(fact.generatePublic(keySpec))
-  }
-
-  def unsafeToSecpPublicKeyFromCompressed(com: Vector[Byte]): SecpPublicKey = {
-    val params = ECNamedCurveTable.getParameterSpec("secp256k1")
-    val fact = KeyFactory.getInstance("ECDSA", provider)
-    val curve = params.getCurve
-    val ellipticCurve = EC5Util.convertCurve(curve, params.getSeed)
-    val point = ECPointUtil.decodePoint(ellipticCurve, com.toArray)
-    val params2 = EC5Util.convertSpec(ellipticCurve, params)
-    val keySpec = new ECPublicKeySpec(point, params2)
-    SecpPublicKey.fromPublicKey(fact.generatePublic(keySpec))
-  }
 }

node/src/main/scala/io/iohk/atala/prism/node/interop/implicits.scala

@@ -2,8 +2,8 @@ package io.iohk.atala.prism.node.interop
 
 import cats.data.NonEmptyList
 import doobie.{Get, Meta, Read, Write}
-import io.iohk.atala.prism.crypto.{MerkleRoot, Sha256Digest}
 import doobie.implicits.legacy.instant._
+import io.iohk.atala.prism.node.crypto.CryptoUtils.Sha256Hash
 import io.iohk.atala.prism.protos.models.TimestampInfo
 import io.iohk.atala.prism.node.models.{DidSuffix, Ledger, TransactionId}
 import io.iohk.atala.prism.node.utils.DoobieImplicits.byteArraySeqMeta
@@ -12,12 +12,6 @@ import java.time.Instant
 import scala.collection.compat.immutable.ArraySeq
 
 object implicits {
-  implicit val merkleRootMeta: Meta[MerkleRoot] =
-    Meta[Array[Byte]].timap(arr => new MerkleRoot(Sha256Digest.fromBytes(arr)))(
-      _.getHash.getValue
-    )
-  implicit val merkleRootRead: Read[MerkleRoot] =
-    Read[Array[Byte]].map(arr => new MerkleRoot(Sha256Digest.fromBytes(arr)))
 
   implicit val didSuffixMeta: Meta[DidSuffix] =
     Meta[String].timap { DidSuffix.apply }(_.value)
@@ -36,12 +30,12 @@ object implicits {
   implicit val ledgerRead: Read[Ledger] =
     Read[String].map { Ledger.withNameInsensitive }
 
-  implicit val Sha256DigestWrite: Write[Sha256Digest] =
-    Write[Array[Byte]].contramap(_.getValue)
-  implicit val Sha256DigestRead: Read[Sha256Digest] =
-    Read[Array[Byte]].map(Sha256Digest.fromBytes)
-  implicit val Sha256DigestGet: Get[Sha256Digest] =
-    Get[Array[Byte]].map(Sha256Digest.fromBytes)
+  implicit val Sha256DigestWrite: Write[Sha256Hash] =
+    Write[Array[Byte]].contramap(_.bytes.toArray)
+  implicit val Sha256HashRead: Read[Sha256Hash] =
+    Read[Array[Byte]].map(Sha256Hash.fromBytes)
+  implicit val Sha256HashGet: Get[Sha256Hash] =
+    Get[Array[Byte]].map(Sha256Hash.fromBytes)
 
   implicit val timestampInfoRead: Read[TimestampInfo] =
     Read[(Instant, Int, Int)].map { case (abt, absn, osn) =>

node/src/main/scala/io/iohk/atala/prism/node/models/AtalaObjectId.scala

@@ -1,6 +1,6 @@
 package io.iohk.atala.prism.node.models
 
-import io.iohk.atala.prism.crypto.{Sha256, Sha256Digest}
+import io.iohk.atala.prism.node.crypto.CryptoUtils.Sha256Hash
 import io.iohk.atala.prism.protos.node_models
 import io.iohk.atala.prism.node.utils.BytesOps
 import tofu.logging.{DictLoggable, LogRenderer}
@@ -25,19 +25,17 @@ object AtalaObjectId {
     }
 
   def apply(value: Vector[Byte]): AtalaObjectId = {
-    // temporary replace for require(value.length == SHA256Digest.getBYTE_LENGTH)
-    // rewrite to safe version pls
-    // will throw an error if something is wrong with the value
-    val digestUnsafe = Sha256Digest.fromBytes(value.toArray).getValue
-    new AtalaObjectId(digestUnsafe.toVector)
+    // This will throw an error if something is wrong with the value
+    val digestUnsafe = Sha256Hash.fromBytes(value.toArray).bytes
+    new AtalaObjectId(digestUnsafe)
   }
 
   def of(atalaObject: node_models.AtalaObject): AtalaObjectId = {
     of(atalaObject.toByteArray)
   }
 
   def of(bytes: Array[Byte]): AtalaObjectId = {
-    val hash = Sha256.compute(bytes)
-    AtalaObjectId(hash.getValue.toVector)
+    val hash = Sha256Hash.compute(bytes)
+    AtalaObjectId(hash.bytes)
   }
 }

node/src/main/scala/io/iohk/atala/prism/node/models/AtalaOperationId.scala

@@ -1,15 +1,15 @@
 package io.iohk.atala.prism.node.models
 
 import com.google.protobuf.ByteString
-import io.iohk.atala.prism.crypto.{Sha256, Sha256Digest}
+import io.iohk.atala.prism.node.crypto.CryptoUtils.Sha256Hash
 import io.iohk.atala.prism.protos.node_models
 import tofu.logging.{DictLoggable, LogRenderer}
 import io.iohk.atala.prism.node.utils.BytesOps
 
 import java.util.UUID
 
-class AtalaOperationId private (val digest: Sha256Digest) {
-  def value: Vector[Byte] = digest.getValue.toVector
+class AtalaOperationId private (val digest: Sha256Hash) {
+  def value: Vector[Byte] = digest.bytes
 
   def hexValue: String = BytesOps.bytesToHex(value)
 
@@ -40,22 +40,22 @@ object AtalaOperationId {
     }
 
   def of(atalaOperation: node_models.SignedAtalaOperation): AtalaOperationId = {
-    val hash = Sha256.compute(atalaOperation.toByteArray)
+    val hash = Sha256Hash.compute(atalaOperation.toByteArray)
     new AtalaOperationId(hash)
   }
 
   def random(): AtalaOperationId = {
-    val hash = Sha256.compute(UUID.randomUUID().toString.getBytes())
+    val hash = Sha256Hash.compute(UUID.randomUUID().toString.getBytes())
     new AtalaOperationId(hash)
   }
 
   def fromVectorUnsafe(bytes: Vector[Byte]): AtalaOperationId = {
-    val hash = Sha256Digest.fromBytes(bytes.toArray)
+    val hash = Sha256Hash.fromBytes(bytes.toArray)
     new AtalaOperationId(hash)
   }
 
   def fromHexUnsafe(hex: String): AtalaOperationId = {
-    val hash = Sha256Digest.fromHex(hex)
+    val hash = Sha256Hash.fromHex(hex)
     new AtalaOperationId(hash)
   }
 }

node/src/main/scala/io/iohk/atala/prism/node/models/DidSuffix.scala

@@ -1,6 +1,6 @@
 package io.iohk.atala.prism.node.models
 
-import io.iohk.atala.prism.crypto.Sha256Digest
+import io.iohk.atala.prism.node.crypto.CryptoUtils.Sha256Hash
 
 import scala.util.matching.Regex
 import scala.util.{Failure, Success, Try}
@@ -15,7 +15,7 @@ object DidSuffix {
 
   def didFromStringSuffix(in: String): String = "did:prism:" + in
 
-  def fromDigest(in: Sha256Digest): DidSuffix = DidSuffix(in.getHexValue)
+  def fromDigest(in: Sha256Hash): DidSuffix = DidSuffix(in.hexEncoded)
 
   def fromString(string: String): Try[DidSuffix] = {
     if (string.nonEmpty && suffixRegex.pattern.matcher(string).matches())

node/src/main/scala/io/iohk/atala/prism/node/models/IdType.scala

@@ -1,6 +1,6 @@
 package io.iohk.atala.prism.node.models
 
-import io.iohk.atala.prism.crypto.Sha256
+import io.iohk.atala.prism.node.crypto.CryptoUtils.Sha256Hash
 
 import scala.util.matching.Regex
 import scala.util.{Failure, Success, Try}
@@ -26,5 +26,5 @@ object IdType {
       )
   }
 
-  def random: IdType = IdType(value = Sha256.compute(java.util.UUID.randomUUID.toString.getBytes).getHexValue)
+  def random: IdType = IdType(value = Sha256Hash.compute(java.util.UUID.randomUUID.toString.getBytes).hexEncoded)
 }

node/src/main/scala/io/iohk/atala/prism/node/models/package.scala

@@ -3,7 +3,7 @@ package io.iohk.atala.prism.node
 import derevo.derive
 import enumeratum.EnumEntry.UpperSnakecase
 import enumeratum._
-import io.iohk.atala.prism.crypto.Sha256Digest
+import io.iohk.atala.prism.node.crypto.CryptoUtils.Sha256Hash
 import io.iohk.atala.prism.protos.models.TimestampInfo
 import io.iohk.atala.prism.protos.node_models
 import tofu.logging.derivation.loggable
@@ -60,7 +60,7 @@ package object models {
       keys: List[DIDPublicKey],
       services: List[DIDService],
       context: List[String],
-      lastOperation: Sha256Digest
+      lastOperation: Sha256Hash
   )
 
   @derive(loggable)
@@ -147,7 +147,7 @@ package object models {
         keys: List[DIDPublicKeyState],
         services: List[DIDServiceState],
         context: List[String],
-        lastOperation: Sha256Digest
+        lastOperation: Sha256Hash
     )
 
     case class LedgerData(