go/sonr
go/sonr
1
1
Fork 0
mirror of https://github.com/onsonr/sonr.git synced 2025-03-10 21:09:11 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
sonr/crypto/signatures/bbs/pok_signature_proof_test.go

318 lines
9.5 KiB
Go
Raw Normal View History

feature/1114 implement account interface (#1167) - **refactor: move session-related code to middleware package** - **refactor: update PKL build process and adjust related configurations** - **feat: integrate base.cosmos.v1 Genesis module** - **refactor: pass session context to modal rendering functions** - **refactor: move nebula package to app directory and update templ version** - **refactor: Move home section video view to dedicated directory** - **refactor: remove unused views file** - **refactor: move styles and UI components to global scope** - **refactor: Rename images.go to cdn.go** - **feat: Add Empty State Illustrations** - **refactor: Consolidate Vault Index Logic** - **fix: References to App.wasm and remove Vault Directory embedded CDN files** - **refactor: Move CDN types to Models** - **fix: Correct line numbers in templ error messages for arch_templ.go** - **refactor: use common types for peer roles** - **refactor: move common types and ORM to a shared package** - **fix: Config import dwn** - **refactor: move nebula directory to app** - **feat: Rebuild nebula** - **fix: correct file paths in panels templates** - **feat: Remove duplicate types** - **refactor: Move dwn to pkg/core** - **refactor: Binary Structure** - **feat: Introduce Crypto Pkg** - **fix: Broken Process Start** - **feat: Update pkg/* structure** - **feat: Refactor PKL Structure** - **build: update pkl build process** - **chore: Remove Empty Files** - **refactor: remove unused macaroon package** - **feat: Add WebAwesome Components** - **refactor: consolidate build and generation tasks into a single taskfile, remove redundant makefile targets** - **refactor: refactor server and move components to pkg/core/dwn** - **build: update go modules** - **refactor: move gateway logic into dedicated hway command** - **feat: Add KSS (Krawczyk-Song-Song) MPC cryptography module** - **feat: Implement MPC-based JWT signing and UCAN token generation** - **feat: add support for MPC-based JWT signing** - **feat: Implement MPC-based UCAN capabilities for smart accounts** - **feat: add address field to keyshareSource** - **feat: Add comprehensive MPC test suite for keyshares, UCAN tokens, and token attenuations** - **refactor: improve MPC keyshare management and signing process** - **feat: enhance MPC capability hierarchy documentation** - **refactor: rename GenerateKeyshares function to NewKeyshareSource for clarity** - **refactor: remove unused Ethereum address computation** - **feat: Add HasHandle and IsAuthenticated methods to HTTPContext** - **refactor: Add context.Context support to session HTTPContext** - **refactor: Resolve context interface conflicts in HTTPContext** - **feat: Add session ID context key and helper functions** - **feat: Update WebApp Page Rendering** - **refactor: Simplify context management by using single HTTPContext key** - **refactor: Simplify HTTPContext creation and context management in session middleware** - **refactor: refactor session middleware to use a single data structure** - **refactor: Simplify HTTPContext implementation and session data handling** - **refactor: Improve session context handling and prevent nil pointer errors** - **refactor: Improve session context handling with nil safety and type support** - **refactor: improve session data injection** - **feat: add full-screen modal component and update registration flow** - **chore: add .air.toml to .gitignore** - **feat: add Air to devbox and update dependencies**
2024-11-23 01:28:58 -05:00
//
// Copyright Coinbase, Inc. All Rights Reserved.
//
// SPDX-License-Identifier: Apache-2.0
//
package bbs
import (
crand "crypto/rand"
"testing"
"github.com/gtank/merlin"
"github.com/stretchr/testify/require"
feature/1121 implement ucan validation (#1176) - **refactor: remove unused auth components** - **refactor: improve devbox configuration and deployment process** - **refactor: improve devnet and testnet setup** - **fix: update templ version to v0.2.778** - **refactor: rename pkl/net.matrix to pkl/matrix.net** - **refactor: migrate webapp components to nebula** - **refactor: protobuf types** - **chore: update dependencies for improved security and stability** - **feat: implement landing page and vault gateway servers** - **refactor: Migrate data models to new module structure and update related files** - **feature/1121-implement-ucan-validation** - **refactor: Replace hardcoded constants with model types in attns.go** - **feature/1121-implement-ucan-validation** - **chore: add origin Host struct and update main function to handle multiple hosts** - **build: remove unused static files from dwn module** - **build: remove unused static files from dwn module** - **refactor: Move DWN models to common package** - **refactor: move models to pkg/common** - **refactor: move vault web app assets to embed module** - **refactor: update session middleware import path** - **chore: configure port labels and auto-forwarding behavior** - **feat: enhance devcontainer configuration** - **feat: Add UCAN middleware for Echo with flexible token validation** - **feat: add JWT middleware for UCAN authentication** - **refactor: update package URI and versioning in PklProject files** - **fix: correct sonr.pkl import path** - **refactor: move JWT related code to auth package** - **feat: introduce vault configuration retrieval and management** - **refactor: Move vault components to gateway module and update file paths** - **refactor: remove Dexie and SQLite database implementations** - **feat: enhance frontend with PWA features and WASM integration** - **feat: add Devbox features and streamline Dockerfile** - **chore: update dependencies to include TigerBeetle** - **chore(deps): update go version to 1.23** - **feat: enhance devnet setup with PATH environment variable and updated PWA manifest** - **fix: upgrade tigerbeetle-go dependency and remove indirect dependency** - **feat: add PostgreSQL support to devnet and testnet deployments** - **refactor: rename keyshare cookie to token cookie** - **feat: upgrade Go version to 1.23.3 and update dependencies** - **refactor: update devnet and testnet configurations** - **feat: add IPFS configuration for devnet** - **I'll help you update the ipfs.config.pkl to include all the peers from the shell script. Here's the updated configuration:** - **refactor: move mpc package to crypto directory** - **feat: add BIP32 support for various cryptocurrencies** - **feat: enhance ATN.pkl with additional capabilities** - **refactor: simplify smart account and vault attenuation creation** - **feat: add new capabilities to the Attenuation type** - **refactor: Rename MPC files for clarity and consistency** - **feat: add DIDKey support for cryptographic operations** - **feat: add devnet and testnet deployment configurations** - **fix: correct key derivation in bip32 package** - **refactor: rename crypto/bip32 package to crypto/accaddr** - **fix: remove duplicate indirect dependency** - **refactor: move vault package to root directory** - **refactor: update routes for gateway and vault** - **refactor: remove obsolete web configuration file** - **refactor: remove unused TigerBeetle imports and update host configuration** - **refactor: adjust styles directory path** - **feat: add broadcastTx and simulateTx functions to gateway** - **feat: add PinVault handler**
2024-12-02 14:27:18 -05:00
"github.com/onsonr/sonr/crypto/core/curves"
"github.com/onsonr/sonr/crypto/signatures/common"
feature/1114 implement account interface (#1167) - **refactor: move session-related code to middleware package** - **refactor: update PKL build process and adjust related configurations** - **feat: integrate base.cosmos.v1 Genesis module** - **refactor: pass session context to modal rendering functions** - **refactor: move nebula package to app directory and update templ version** - **refactor: Move home section video view to dedicated directory** - **refactor: remove unused views file** - **refactor: move styles and UI components to global scope** - **refactor: Rename images.go to cdn.go** - **feat: Add Empty State Illustrations** - **refactor: Consolidate Vault Index Logic** - **fix: References to App.wasm and remove Vault Directory embedded CDN files** - **refactor: Move CDN types to Models** - **fix: Correct line numbers in templ error messages for arch_templ.go** - **refactor: use common types for peer roles** - **refactor: move common types and ORM to a shared package** - **fix: Config import dwn** - **refactor: move nebula directory to app** - **feat: Rebuild nebula** - **fix: correct file paths in panels templates** - **feat: Remove duplicate types** - **refactor: Move dwn to pkg/core** - **refactor: Binary Structure** - **feat: Introduce Crypto Pkg** - **fix: Broken Process Start** - **feat: Update pkg/* structure** - **feat: Refactor PKL Structure** - **build: update pkl build process** - **chore: Remove Empty Files** - **refactor: remove unused macaroon package** - **feat: Add WebAwesome Components** - **refactor: consolidate build and generation tasks into a single taskfile, remove redundant makefile targets** - **refactor: refactor server and move components to pkg/core/dwn** - **build: update go modules** - **refactor: move gateway logic into dedicated hway command** - **feat: Add KSS (Krawczyk-Song-Song) MPC cryptography module** - **feat: Implement MPC-based JWT signing and UCAN token generation** - **feat: add support for MPC-based JWT signing** - **feat: Implement MPC-based UCAN capabilities for smart accounts** - **feat: add address field to keyshareSource** - **feat: Add comprehensive MPC test suite for keyshares, UCAN tokens, and token attenuations** - **refactor: improve MPC keyshare management and signing process** - **feat: enhance MPC capability hierarchy documentation** - **refactor: rename GenerateKeyshares function to NewKeyshareSource for clarity** - **refactor: remove unused Ethereum address computation** - **feat: Add HasHandle and IsAuthenticated methods to HTTPContext** - **refactor: Add context.Context support to session HTTPContext** - **refactor: Resolve context interface conflicts in HTTPContext** - **feat: Add session ID context key and helper functions** - **feat: Update WebApp Page Rendering** - **refactor: Simplify context management by using single HTTPContext key** - **refactor: Simplify HTTPContext creation and context management in session middleware** - **refactor: refactor session middleware to use a single data structure** - **refactor: Simplify HTTPContext implementation and session data handling** - **refactor: Improve session context handling and prevent nil pointer errors** - **refactor: Improve session context handling with nil safety and type support** - **refactor: improve session data injection** - **feat: add full-screen modal component and update registration flow** - **chore: add .air.toml to .gitignore** - **feat: add Air to devbox and update dependencies**
2024-11-23 01:28:58 -05:00
)
func TestPokSignatureProofSomeMessagesRevealed(t *testing.T) {
curve := curves.BLS12381(&curves.PointBls12381G2{})
pk, sk, err := NewKeys(curve)
require.NoError(t, err)
require.NotNil(t, sk)
require.NotNil(t, pk)
require.False(t, sk.value.IsZero())
require.False(t, pk.value.IsIdentity())
_, ok := pk.value.(*curves.PointBls12381G2)
require.True(t, ok)
generators, err := new(MessageGenerators).Init(pk, 4)
require.NoError(t, err)
msgs := []curves.Scalar{
curve.Scalar.New(2),
curve.Scalar.New(3),
curve.Scalar.New(4),
curve.Scalar.New(5),
}
sig, err := sk.Sign(generators, msgs)
require.NoError(t, err)
require.NotNil(t, sig)
require.False(t, sig.a.IsIdentity())
require.False(t, sig.e.IsZero())
require.False(t, sig.s.IsZero())
proofMsgs := []common.ProofMessage{
&common.ProofSpecificMessage{
Message: msgs[0],
},
&common.ProofSpecificMessage{
Message: msgs[1],
},
&common.RevealedMessage{
Message: msgs[2],
},
&common.RevealedMessage{
Message: msgs[3],
},
}
pok, err := NewPokSignature(sig, generators, proofMsgs, crand.Reader)
require.NoError(t, err)
require.NotNil(t, pok)
nonce := curve.Scalar.Random(crand.Reader)
transcript := merlin.NewTranscript("TestPokSignatureProofWorks")
pok.GetChallengeContribution(transcript)
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
okm := transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
challenge, err := curve.Scalar.SetBytesWide(okm)
require.NoError(t, err)
pokSig, err := pok.GenerateProof(challenge)
require.NoError(t, err)
require.NotNil(t, pokSig)
require.True(t, pokSig.VerifySigPok(pk))
revealedMsgs := map[int]curves.Scalar{
2: msgs[2],
3: msgs[3],
}
// Manual verify to show how when used in conjunction with other ZKPs
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
pokSig.GetChallengeContribution(generators, revealedMsgs, challenge, transcript)
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
okm = transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
vChallenge, err := curve.Scalar.SetBytesWide(okm)
require.NoError(t, err)
require.Equal(t, challenge.Cmp(vChallenge), 0)
// Use the all-inclusive method
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
require.True(t, pokSig.Verify(revealedMsgs, pk, generators, nonce, challenge, transcript))
}
func TestPokSignatureProofAllMessagesRevealed(t *testing.T) {
curve := curves.BLS12381(&curves.PointBls12381G2{})
pk, sk, err := NewKeys(curve)
require.NoError(t, err)
require.NotNil(t, sk)
require.NotNil(t, pk)
require.False(t, sk.value.IsZero())
require.False(t, pk.value.IsIdentity())
_, ok := pk.value.(*curves.PointBls12381G2)
require.True(t, ok)
generators, err := new(MessageGenerators).Init(pk, 4)
require.NoError(t, err)
msgs := []curves.Scalar{
curve.Scalar.New(2),
curve.Scalar.New(3),
curve.Scalar.New(4),
curve.Scalar.New(5),
}
sig, err := sk.Sign(generators, msgs)
require.NoError(t, err)
require.NotNil(t, sig)
require.False(t, sig.a.IsIdentity())
require.False(t, sig.e.IsZero())
require.False(t, sig.s.IsZero())
proofMsgs := []common.ProofMessage{
&common.RevealedMessage{
Message: msgs[0],
},
&common.RevealedMessage{
Message: msgs[1],
},
&common.RevealedMessage{
Message: msgs[2],
},
&common.RevealedMessage{
Message: msgs[3],
},
}
pok, err := NewPokSignature(sig, generators, proofMsgs, crand.Reader)
require.NoError(t, err)
require.NotNil(t, pok)
nonce := curve.Scalar.Random(crand.Reader)
transcript := merlin.NewTranscript("TestPokSignatureProofWorks")
pok.GetChallengeContribution(transcript)
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
okm := transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
challenge, err := curve.Scalar.SetBytesWide(okm)
require.NoError(t, err)
pokSig, err := pok.GenerateProof(challenge)
require.NoError(t, err)
require.NotNil(t, pokSig)
require.True(t, pokSig.VerifySigPok(pk))
revealedMsgs := map[int]curves.Scalar{
0: msgs[0],
1: msgs[1],
2: msgs[2],
3: msgs[3],
}
// Manual verify to show how when used in conjunction with other ZKPs
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
pokSig.GetChallengeContribution(generators, revealedMsgs, challenge, transcript)
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
okm = transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
vChallenge, err := curve.Scalar.SetBytesWide(okm)
require.NoError(t, err)
require.Equal(t, challenge.Cmp(vChallenge), 0)
// Use the all-inclusive method
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
require.True(t, pokSig.Verify(revealedMsgs, pk, generators, nonce, challenge, transcript))
}
func TestPokSignatureProofAllMessagesHidden(t *testing.T) {
curve := curves.BLS12381(&curves.PointBls12381G2{})
pk, sk, err := NewKeys(curve)
require.NoError(t, err)
require.NotNil(t, sk)
require.NotNil(t, pk)
require.False(t, sk.value.IsZero())
require.False(t, pk.value.IsIdentity())
_, ok := pk.value.(*curves.PointBls12381G2)
require.True(t, ok)
generators, err := new(MessageGenerators).Init(pk, 4)
require.NoError(t, err)
msgs := []curves.Scalar{
curve.Scalar.New(2),
curve.Scalar.New(3),
curve.Scalar.New(4),
curve.Scalar.New(5),
}
sig, err := sk.Sign(generators, msgs)
require.NoError(t, err)
require.NotNil(t, sig)
require.False(t, sig.a.IsIdentity())
require.False(t, sig.e.IsZero())
require.False(t, sig.s.IsZero())
proofMsgs := []common.ProofMessage{
&common.ProofSpecificMessage{
Message: msgs[0],
},
&common.ProofSpecificMessage{
Message: msgs[1],
},
&common.ProofSpecificMessage{
Message: msgs[2],
},
&common.ProofSpecificMessage{
Message: msgs[3],
},
}
pok, err := NewPokSignature(sig, generators, proofMsgs, crand.Reader)
require.NoError(t, err)
require.NotNil(t, pok)
nonce := curve.Scalar.Random(crand.Reader)
transcript := merlin.NewTranscript("TestPokSignatureProofWorks")
pok.GetChallengeContribution(transcript)
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
okm := transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
challenge, err := curve.Scalar.SetBytesWide(okm)
require.NoError(t, err)
pokSig, err := pok.GenerateProof(challenge)
require.NoError(t, err)
require.NotNil(t, pokSig)
require.True(t, pokSig.VerifySigPok(pk))
revealedMsgs := map[int]curves.Scalar{}
// Manual verify to show how when used in conjunction with other ZKPs
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
pokSig.GetChallengeContribution(generators, revealedMsgs, challenge, transcript)
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
okm = transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
vChallenge, err := curve.Scalar.SetBytesWide(okm)
require.NoError(t, err)
require.Equal(t, challenge.Cmp(vChallenge), 0)
// Use the all-inclusive method
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
require.True(t, pokSig.Verify(revealedMsgs, pk, generators, nonce, challenge, transcript))
}
func TestPokSignatureProofMarshalBinary(t *testing.T) {
curve := curves.BLS12381(&curves.PointBls12381G2{})
pk, sk, err := NewKeys(curve)
require.NoError(t, err)
require.NotNil(t, sk)
require.NotNil(t, pk)
require.False(t, sk.value.IsZero())
require.False(t, pk.value.IsIdentity())
_, ok := pk.value.(*curves.PointBls12381G2)
require.True(t, ok)
generators, err := new(MessageGenerators).Init(pk, 4)
require.NoError(t, err)
msgs := []curves.Scalar{
curve.Scalar.New(2),
curve.Scalar.New(3),
curve.Scalar.New(4),
curve.Scalar.New(5),
}
sig, err := sk.Sign(generators, msgs)
require.NoError(t, err)
require.NotNil(t, sig)
require.False(t, sig.a.IsIdentity())
require.False(t, sig.e.IsZero())
require.False(t, sig.s.IsZero())
proofMsgs := []common.ProofMessage{
&common.ProofSpecificMessage{
Message: msgs[0],
},
&common.ProofSpecificMessage{
Message: msgs[1],
},
&common.RevealedMessage{
Message: msgs[2],
},
&common.RevealedMessage{
Message: msgs[3],
},
}
pok, err := NewPokSignature(sig, generators, proofMsgs, crand.Reader)
require.NoError(t, err)
require.NotNil(t, pok)
nonce := curve.Scalar.Random(crand.Reader)
transcript := merlin.NewTranscript("TestPokSignatureProofMarshalBinary")
pok.GetChallengeContribution(transcript)
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
challenge, err := curve.Scalar.SetBytesWide(transcript.ExtractBytes([]byte("signature proof of knowledge"), 64))
require.NoError(t, err)
pokSig, err := pok.GenerateProof(challenge)
require.NoError(t, err)
require.NotNil(t, pokSig)
data, err := pokSig.MarshalBinary()
require.NoError(t, err)
require.NotNil(t, data)
pokSig2 := new(PokSignatureProof).Init(curve)
err = pokSig2.UnmarshalBinary(data)
require.NoError(t, err)
require.True(t, pokSig.aPrime.Equal(pokSig2.aPrime))
require.True(t, pokSig.aBar.Equal(pokSig2.aBar))
require.True(t, pokSig.d.Equal(pokSig2.d))
require.Equal(t, len(pokSig.proof1), len(pokSig2.proof1))
require.Equal(t, len(pokSig.proof2), len(pokSig2.proof2))
for i, p := range pokSig.proof1 {
require.Equal(t, p.Cmp(pokSig2.proof1[i]), 0)
}
for i, p := range pokSig.proof2 {
require.Equal(t, p.Cmp(pokSig2.proof2[i]), 0)
}
}
Reference in New Issue Copy Permalink