feat: add validation for public key

packages/cryptography/package.json

@@ -59,6 +59,7 @@
         "last 1 Firefox versions"
     ],
     "dependencies": {
+        "@noble/curves": "^1.8.1",
         "asn1js": "^3.0.5",
         "bignumber.js": "^9.1.1",
         "bn.js": "^5.2.1",

packages/cryptography/src/EcdsaPublicKey.js

@@ -4,6 +4,7 @@ import { arrayEqual } from "./util/array.js";
 import * as hex from "./encoding/hex.js";
 import * as ecdsa from "./primitive/ecdsa.js";
 import { keccak256 } from "./primitive/keccak.js";
+import { secp256k1 } from "@noble/curves/secp256k1";
 import elliptic from "elliptic";
 const ec = new elliptic.ec("secp256k1");
 
@@ -92,7 +93,8 @@ export default class EcdsaPublicKey extends Key {
                 `cannot decode ECDSA private key data from DER format`,
             );
         }
-        return new EcdsaPublicKey(ecdsaPublicKeyBytes);
+
+        return EcdsaPublicKey.fromBytesRaw(ecdsaPublicKeyBytes);
     }
 
     /**
@@ -106,7 +108,36 @@ export default class EcdsaPublicKey extends Key {
             );
         }
 
-        return new EcdsaPublicKey(data);
+        if (this.isValid(data)) {
+            return new EcdsaPublicKey(data);
+        } else {
+            throw new BadKeyError("invalid public key");
+        }
+    }
+
+    /**
+     * @param {Uint8Array} data
+     * @returns {boolean}
+     */
+    static isValid(data) {
+        const EMPTY_BUFFER_33_BYTES = Buffer.from(new Uint8Array(33).fill(0));
+        const EMPTY_BUFFER_65_BYTES = Buffer.from(new Uint8Array(65).fill(0));
+        const bufferData = Buffer.from(data);
+
+        // SEE HIP-540
+        if (
+            EMPTY_BUFFER_33_BYTES.equals(bufferData) ||
+            EMPTY_BUFFER_65_BYTES.equals(bufferData)
+        ) {
+            return true;
+        }
+
+        try {
+            secp256k1.ProjectivePoint.fromHex(data);
+            return true;
+        } catch (error) {
+            return false;
+        }
     }
 
     /**

packages/cryptography/src/Ed25519PublicKey.js

@@ -4,6 +4,7 @@ import nacl from "tweetnacl";
 import { arrayEqual } from "./util/array.js";
 import * as hex from "./encoding/hex.js";
 import forge from "node-forge";
+import { ed25519 } from "@noble/curves/ed25519";
 
 const derPrefix = "302a300506032b6570032100";
 const derPrefixBytes = hex.decode(derPrefix);
@@ -77,7 +78,7 @@ export default class Ed25519PublicKey extends Key {
             );
         }
 
-        return new Ed25519PublicKey(publicKey);
+        return Ed25519PublicKey.fromBytesRaw(publicKey);
     }
 
     /**
@@ -91,7 +92,11 @@ export default class Ed25519PublicKey extends Key {
             );
         }
 
-        return new Ed25519PublicKey(data);
+        if (this.isValid(data)) {
+            return new Ed25519PublicKey(data);
+        } else {
+            throw new BadKeyError("invalid public key");
+        }
     }
 
     /**
@@ -106,6 +111,25 @@ export default class Ed25519PublicKey extends Key {
         return Ed25519PublicKey.fromBytes(hex.decode(text));
     }
 
+    /**
+     * @param {Uint8Array} data
+     * @returns {boolean}
+     */
+    static isValid(data) {
+        if (!data) return false;
+
+        const EMPTY_BUFFER = Buffer.from(new Uint8Array(33).fill(0));
+        const bufferData = Buffer.from(data);
+        if (bufferData.equals(EMPTY_BUFFER)) return true;
+
+        try {
+            ed25519.ExtendedPoint.fromHex(data);
+            return true;
+        } catch {
+            return false;
+        }
+    }
+
     /**
      * Verify a signature on a message with this public key.
      * @param {Uint8Array} message

test/unit/PublicKey.js

@@ -106,4 +106,44 @@ describe("PublicKey", function () {
         const ed25519PublicKey1 = PublicKey.fromString(PUBLIC_KEY_DER1);
         expect(ed25519PublicKey1.toStringRaw()).to.be.equal(PUBLIC_KEY1);
     });
+
+    it("should throw error when creating ED25519 key from invalid bytes", function () {
+        // Test cases with invalid byte
+        const invalidPrivateKeyBytes = Uint8Array.from([
+            0xca, 0x35, 0x4b, 0x7c, 0xf4, 0x87, 0xd1, 0xbc, 0x43, 0x5a, 0x25,
+            0x66, 0x77, 0x09, 0xc1, 0xab, 0x98, 0x0c, 0x11, 0x4d, 0x35, 0x94,
+            0xe6, 0x25, 0x9e, 0x81, 0x2e, 0x6a, 0x70, 0x3d, 0x4f, 0x51,
+        ]);
+
+        expect(() => {
+            PublicKey.fromBytesED25519(invalidPrivateKeyBytes);
+        }).to.throw;
+    });
+
+    it("should throw error when creating ECDSA key from invalid bytes", function () {
+        // Test cases with invalid byte
+        const invalidPrivateKeyBytes = Uint8Array.from([
+            0x00, 0xca, 0x35, 0x4b, 0x7c, 0xf4, 0x87, 0xd1, 0xbc, 0x43, 0x5a,
+            0x25, 0x66, 0x77, 0x09, 0xc1, 0xab, 0x98, 0x0c, 0x11, 0x4d, 0x35,
+            0x94, 0xe6, 0x25, 0x9e, 0x81, 0x2e, 0x6a, 0x70, 0x3d, 0x4f, 0x51,
+        ]);
+
+        expect(() => {
+            PublicKey.fromBytesECDSA(invalidPrivateKeyBytes);
+        }).to.throw;
+    });
+
+    it("should be able to create ECDSA key from valid bytes", function () {
+        const validPubKey = PrivateKey.generateECDSA().publicKey;
+        const bytes = validPubKey.toBytes();
+        const publicKey = PublicKey.fromBytes(bytes);
+        expect(publicKey.toString()).to.be.equal(validPubKey.toString());
+    });
+
+    it("should be able to create ED25519 key from valid bytes", function () {
+        const validPubKey = PrivateKey.generateED25519().publicKey;
+        const bytes = validPubKey.toBytes();
+        const publicKey = PublicKey.fromBytes(bytes);
+        expect(publicKey.toString()).to.be.equal(validPubKey.toString());
+    });
 });