sonr/pkg/crypto/mpc/mpc.go

package mpc

import (
	"crypto/ecdsa"
	"errors"
	"math/big"

	"github.com/onsonr/sonr/pkg/crypto/core/curves"
	"github.com/onsonr/sonr/pkg/crypto/core/protocol"
	"github.com/onsonr/sonr/pkg/crypto/tecdsa/dklsv1"
)

// NewKeyshareSource generates a new MPC keyshare
func NewKeyshareSource() (KeyshareSource, error) {
	curve := curves.K256()
	valKs := dklsv1.NewAliceDkg(curve, protocol.Version1)
	userKs := dklsv1.NewBobDkg(curve, protocol.Version1)
	aErr, bErr := runIteratedProtocol(userKs, valKs)
	if err := checkIteratedErrors(aErr, bErr); err != nil {
		return nil, err
	}
	valRes, err := valKs.Result(protocol.Version1)
	if err != nil {
		return nil, err
	}
	valShare, err := NewValKeyshare(valRes)
	if err != nil {
		return nil, err
	}
	userRes, err := userKs.Result(protocol.Version1)
	if err != nil {
		return nil, err
	}
	userShare, err := NewUserKeyshare(userRes)
	if err != nil {
		return nil, err
	}
	return createKeyshareSource(valShare, userShare)
}

// RunSignProtocol runs the MPC signing protocol
func RunSignProtocol(signFuncVal SignFunc, signFuncUser SignFunc) (Signature, error) {
	aErr, bErr := runIteratedProtocol(signFuncVal, signFuncUser)
	if err := checkIteratedErrors(aErr, bErr); err != nil {
		return nil, err
	}
	out, err := signFuncUser.Result(protocol.Version1)
	if err != nil {
		return nil, err
	}
	return dklsv1.DecodeSignature(out)
}

// RunRefreshProtocol runs the MPC refresh protocol
func RunRefreshProtocol(refreshFuncVal RefreshFunc, refreshFuncUser RefreshFunc) (KeyshareSource, error) {
	aErr, bErr := runIteratedProtocol(refreshFuncVal, refreshFuncUser)
	if err := checkIteratedErrors(aErr, bErr); err != nil {
		return nil, err
	}
	valRefreshResult, err := refreshFuncVal.Result(protocol.Version1)
	if err != nil {
		return nil, err
	}
	valShare, err := NewValKeyshare(valRefreshResult)
	if err != nil {
		return nil, err
	}
	userRefreshResult, err := refreshFuncUser.Result(protocol.Version1)
	if err != nil {
		return nil, err
	}
	userShare, err := NewUserKeyshare(userRefreshResult)
	if err != nil {
		return nil, err
	}
	return createKeyshareSource(valShare, userShare)
}

// SerializeSecp256k1Signature serializes an ECDSA signature into a byte slice
func SerializeSignature(sig Signature) ([]byte, error) {
	rBytes := sig.R.Bytes()
	sBytes := sig.S.Bytes()

	sigBytes := make([]byte, 66) // V (1 byte) + R (32 bytes) + S (32 bytes)
	sigBytes[0] = byte(sig.V)
	copy(sigBytes[33-len(rBytes):33], rBytes)
	copy(sigBytes[66-len(sBytes):66], sBytes)
	return sigBytes, nil
}

// DeserializeSecp256k1Signature deserializes an ECDSA signature from a byte slice
func DeserializeSignature(sigBytes []byte) (Signature, error) {
	if len(sigBytes) != 66 {
		return nil, errors.New("malformed signature: not the correct size")
	}
	sig := &curves.EcdsaSignature{
		V: int(sigBytes[0]),
		R: new(big.Int).SetBytes(sigBytes[1:33]),
		S: new(big.Int).SetBytes(sigBytes[33:66]),
	}
	return sig, nil
}

// VerifyMPCSignature verifies an MPC signature
func VerifyMPCSignature(sig Signature, msg []byte, publicKey *ecdsa.PublicKey) bool {
	return ecdsa.Verify(publicKey, msg, sig.R, sig.S)
}
feature/1114 implement account interface (#1167) - refactor: move session-related code to middleware package - refactor: update PKL build process and adjust related configurations - feat: integrate base.cosmos.v1 Genesis module - refactor: pass session context to modal rendering functions - refactor: move nebula package to app directory and update templ version - refactor: Move home section video view to dedicated directory - refactor: remove unused views file - refactor: move styles and UI components to global scope - refactor: Rename images.go to cdn.go - feat: Add Empty State Illustrations - refactor: Consolidate Vault Index Logic - fix: References to App.wasm and remove Vault Directory embedded CDN files - refactor: Move CDN types to Models - fix: Correct line numbers in templ error messages for arch_templ.go - refactor: use common types for peer roles - refactor: move common types and ORM to a shared package - fix: Config import dwn - refactor: move nebula directory to app - feat: Rebuild nebula - fix: correct file paths in panels templates - feat: Remove duplicate types - refactor: Move dwn to pkg/core - refactor: Binary Structure - feat: Introduce Crypto Pkg - fix: Broken Process Start - *feat: Update pkg/ structure - feat: Refactor PKL Structure - build: update pkl build process - chore: Remove Empty Files - refactor: remove unused macaroon package - feat: Add WebAwesome Components - refactor: consolidate build and generation tasks into a single taskfile, remove redundant makefile targets - refactor: refactor server and move components to pkg/core/dwn - build: update go modules - refactor: move gateway logic into dedicated hway command - feat: Add KSS (Krawczyk-Song-Song) MPC cryptography module - feat: Implement MPC-based JWT signing and UCAN token generation - feat: add support for MPC-based JWT signing - feat: Implement MPC-based UCAN capabilities for smart accounts - feat: add address field to keyshareSource - feat: Add comprehensive MPC test suite for keyshares, UCAN tokens, and token attenuations - refactor: improve MPC keyshare management and signing process - feat: enhance MPC capability hierarchy documentation - refactor: rename GenerateKeyshares function to NewKeyshareSource for clarity - refactor: remove unused Ethereum address computation - feat: Add HasHandle and IsAuthenticated methods to HTTPContext - refactor: Add context.Context support to session HTTPContext - refactor: Resolve context interface conflicts in HTTPContext - feat: Add session ID context key and helper functions - feat: Update WebApp Page Rendering - refactor: Simplify context management by using single HTTPContext key - refactor: Simplify HTTPContext creation and context management in session middleware - refactor: refactor session middleware to use a single data structure - refactor: Simplify HTTPContext implementation and session data handling - refactor: Improve session context handling and prevent nil pointer errors - refactor: Improve session context handling with nil safety and type support - refactor: improve session data injection - feat: add full-screen modal component and update registration flow - chore: add .air.toml to .gitignore - feat: add Air to devbox and update dependencies** 2024-11-23 01:28:58 -05:00			`package mpc`

			`import (`
			`"crypto/ecdsa"`
			`"errors"`
			`"math/big"`

			`"github.com/onsonr/sonr/pkg/crypto/core/curves"`
			`"github.com/onsonr/sonr/pkg/crypto/core/protocol"`
			`"github.com/onsonr/sonr/pkg/crypto/tecdsa/dklsv1"`
			`)`

			`// NewKeyshareSource generates a new MPC keyshare`
			`func NewKeyshareSource() (KeyshareSource, error) {`
			`curve := curves.K256()`
			`valKs := dklsv1.NewAliceDkg(curve, protocol.Version1)`
			`userKs := dklsv1.NewBobDkg(curve, protocol.Version1)`
			`aErr, bErr := runIteratedProtocol(userKs, valKs)`
			`if err := checkIteratedErrors(aErr, bErr); err != nil {`
			`return nil, err`
			`}`
			`valRes, err := valKs.Result(protocol.Version1)`
			`if err != nil {`
			`return nil, err`
			`}`
			`valShare, err := NewValKeyshare(valRes)`
			`if err != nil {`
			`return nil, err`
			`}`
			`userRes, err := userKs.Result(protocol.Version1)`
			`if err != nil {`
			`return nil, err`
			`}`
			`userShare, err := NewUserKeyshare(userRes)`
			`if err != nil {`
			`return nil, err`
			`}`
			`return createKeyshareSource(valShare, userShare)`
			`}`

			`// RunSignProtocol runs the MPC signing protocol`
			`func RunSignProtocol(signFuncVal SignFunc, signFuncUser SignFunc) (Signature, error) {`
			`aErr, bErr := runIteratedProtocol(signFuncVal, signFuncUser)`
			`if err := checkIteratedErrors(aErr, bErr); err != nil {`
			`return nil, err`
			`}`
			`out, err := signFuncUser.Result(protocol.Version1)`
			`if err != nil {`
			`return nil, err`
			`}`
			`return dklsv1.DecodeSignature(out)`
			`}`

			`// RunRefreshProtocol runs the MPC refresh protocol`
			`func RunRefreshProtocol(refreshFuncVal RefreshFunc, refreshFuncUser RefreshFunc) (KeyshareSource, error) {`
			`aErr, bErr := runIteratedProtocol(refreshFuncVal, refreshFuncUser)`
			`if err := checkIteratedErrors(aErr, bErr); err != nil {`
			`return nil, err`
			`}`
			`valRefreshResult, err := refreshFuncVal.Result(protocol.Version1)`
			`if err != nil {`
			`return nil, err`
			`}`
			`valShare, err := NewValKeyshare(valRefreshResult)`
			`if err != nil {`
			`return nil, err`
			`}`
			`userRefreshResult, err := refreshFuncUser.Result(protocol.Version1)`
			`if err != nil {`
			`return nil, err`
			`}`
			`userShare, err := NewUserKeyshare(userRefreshResult)`
			`if err != nil {`
			`return nil, err`
			`}`
			`return createKeyshareSource(valShare, userShare)`
			`}`

			`// SerializeSecp256k1Signature serializes an ECDSA signature into a byte slice`
			`func SerializeSignature(sig Signature) ([]byte, error) {`
			`rBytes := sig.R.Bytes()`
			`sBytes := sig.S.Bytes()`

			`sigBytes := make([]byte, 66) // V (1 byte) + R (32 bytes) + S (32 bytes)`
			`sigBytes[0] = byte(sig.V)`
			`copy(sigBytes[33-len(rBytes):33], rBytes)`
			`copy(sigBytes[66-len(sBytes):66], sBytes)`
			`return sigBytes, nil`
			`}`

			`// DeserializeSecp256k1Signature deserializes an ECDSA signature from a byte slice`
			`func DeserializeSignature(sigBytes []byte) (Signature, error) {`
			`if len(sigBytes) != 66 {`
			`return nil, errors.New("malformed signature: not the correct size")`
			`}`
			`sig := &curves.EcdsaSignature{`
			`V: int(sigBytes[0]),`
			`R: new(big.Int).SetBytes(sigBytes[1:33]),`
			`S: new(big.Int).SetBytes(sigBytes[33:66]),`
			`}`
			`return sig, nil`
			`}`

			`// VerifyMPCSignature verifies an MPC signature`
			`func VerifyMPCSignature(sig Signature, msg []byte, publicKey *ecdsa.PublicKey) bool {`
			`return ecdsa.Verify(publicKey, msg, sig.R, sig.S)`
			`}`