sonr/crypto/dkg/gennaro/round2.go

//
// Copyright Coinbase, Inc. All Rights Reserved.
//
// SPDX-License-Identifier: Apache-2.0
//

package gennaro

import (
	"fmt"

	"github.com/onsonr/sonr/crypto/internal"
	v1 "github.com/onsonr/sonr/crypto/sharing/v1"
)

type Round2Bcast = []*v1.ShareVerifier

// Round2 computes the second round for Gennaro DKG
// Algorithm 3 - Gennaro DKG Round 2
// bcast contains all Round1 broadcast from other participants to this participant
// p2p contains all Round1 P2P send message from other participants to this participant
func (dp *Participant) Round2(bcast map[uint32]Round1Bcast, p2p map[uint32]*Round1P2PSendPacket) (Round2Bcast, error) {
	// Check participant is not empty
	if dp == nil || dp.curve == nil {
		return nil, internal.ErrNilArguments
	}

	// Check participant has the correct dkg round number
	if dp.round != 2 {
		return nil, internal.ErrInvalidRound
	}

	// Check the input is valid
	if bcast == nil || p2p == nil || len(bcast) == 0 || len(p2p) == 0 {
		return nil, internal.ErrNilArguments
	}

	// 1. set sk = x_{ii}
	sk := dp.pedersenResult.SecretShares[dp.id-1].Value

	// 2. for j in 1,...,n
	for id := range bcast {

		// 3. if i = j continue
		if id == dp.id {
			continue
		}

		// Ensure a valid p2p entry exists
		if p2p[id] == nil {
			return nil, fmt.Errorf("missing p2p packet for id=%v", id)
		}

		// 4. If PedersenVerify(E, Q, x_ji, r_ji, {X_ji,...,X_jt}) = false, abort
		xji := p2p[id].SecretShare
		rji := p2p[id].BlindingShare
		bvs := bcast[id]
		if ok, err := dp.pedersen.Verify(xji, rji, bvs); !ok {
			if err != nil {
				return nil, err
			} else {
				return nil, fmt.Errorf("invalid share for participant id=%v", id)
			}
		}

		// Store other participants' shares xji for usage in round 3
		dp.otherParticipantShares[id].Share = p2p[id].SecretShare

		// 5. sk = (sk+xji) mod q
		// NOTE: we use the EcScalar class to add instead of
		// just using big.Int Add and Mod
		// because Ed25519 will fail with the big.Int Add and Mod
		// and Ed25519 uses different little endian vs big endian
		// in big.Int
		t1 := sk.BigInt()
		t2 := xji.Value.BigInt()
		r := dp.scalar.Add(t1, t2)

		sk = sk.Field().NewElement(r)
	}

	// Update internal state
	dp.round = 3

	// 7. Store ski as participant i's secret key share
	dp.skShare = sk

	// 6. EchoBroadcast {R_1,...,R_t} to all other participants.
	return dp.pedersenResult.Verifiers, nil
}
feature/1114 implement account interface (#1167) - refactor: move session-related code to middleware package - refactor: update PKL build process and adjust related configurations - feat: integrate base.cosmos.v1 Genesis module - refactor: pass session context to modal rendering functions - refactor: move nebula package to app directory and update templ version - refactor: Move home section video view to dedicated directory - refactor: remove unused views file - refactor: move styles and UI components to global scope - refactor: Rename images.go to cdn.go - feat: Add Empty State Illustrations - refactor: Consolidate Vault Index Logic - fix: References to App.wasm and remove Vault Directory embedded CDN files - refactor: Move CDN types to Models - fix: Correct line numbers in templ error messages for arch_templ.go - refactor: use common types for peer roles - refactor: move common types and ORM to a shared package - fix: Config import dwn - refactor: move nebula directory to app - feat: Rebuild nebula - fix: correct file paths in panels templates - feat: Remove duplicate types - refactor: Move dwn to pkg/core - refactor: Binary Structure - feat: Introduce Crypto Pkg - fix: Broken Process Start - *feat: Update pkg/ structure - feat: Refactor PKL Structure - build: update pkl build process - chore: Remove Empty Files - refactor: remove unused macaroon package - feat: Add WebAwesome Components - refactor: consolidate build and generation tasks into a single taskfile, remove redundant makefile targets - refactor: refactor server and move components to pkg/core/dwn - build: update go modules - refactor: move gateway logic into dedicated hway command - feat: Add KSS (Krawczyk-Song-Song) MPC cryptography module - feat: Implement MPC-based JWT signing and UCAN token generation - feat: add support for MPC-based JWT signing - feat: Implement MPC-based UCAN capabilities for smart accounts - feat: add address field to keyshareSource - feat: Add comprehensive MPC test suite for keyshares, UCAN tokens, and token attenuations - refactor: improve MPC keyshare management and signing process - feat: enhance MPC capability hierarchy documentation - refactor: rename GenerateKeyshares function to NewKeyshareSource for clarity - refactor: remove unused Ethereum address computation - feat: Add HasHandle and IsAuthenticated methods to HTTPContext - refactor: Add context.Context support to session HTTPContext - refactor: Resolve context interface conflicts in HTTPContext - feat: Add session ID context key and helper functions - feat: Update WebApp Page Rendering - refactor: Simplify context management by using single HTTPContext key - refactor: Simplify HTTPContext creation and context management in session middleware - refactor: refactor session middleware to use a single data structure - refactor: Simplify HTTPContext implementation and session data handling - refactor: Improve session context handling and prevent nil pointer errors - refactor: Improve session context handling with nil safety and type support - refactor: improve session data injection - feat: add full-screen modal component and update registration flow - chore: add .air.toml to .gitignore - feat: add Air to devbox and update dependencies** 2024-11-23 01:28:58 -05:00			`//`
			`// Copyright Coinbase, Inc. All Rights Reserved.`
			`//`
			`// SPDX-License-Identifier: Apache-2.0`
			`//`

			`package gennaro`

			`import (`
			`"fmt"`

feature/1220 origin handle exists method (#1241) * feat: add docs and CI workflow for publishing to onsonr.dev * (refactor): Move hway,motr executables to their own repos * feat: simplify devnet and testnet configurations * refactor: update import path for didcrypto package * docs(networks): Add README with project overview, architecture, and community links * refactor: Move network configurations to deploy directory * build: update golang version to 1.23 * refactor: move logger interface to appropriate package * refactor: Move devnet configuration to networks/devnet * chore: improve release process with date variable * (chore): Move Crypto Library * refactor: improve code structure and readability in DID module * feat: integrate Trunk CI checks * ci: optimize CI workflow by removing redundant build jobs --------- Co-authored-by: Darp Alakun <i@prad.nu> 2025-01-06 12:06:10 -05:00			`"github.com/onsonr/sonr/crypto/internal"`
			`v1 "github.com/onsonr/sonr/crypto/sharing/v1"`
feature/1114 implement account interface (#1167) - refactor: move session-related code to middleware package - refactor: update PKL build process and adjust related configurations - feat: integrate base.cosmos.v1 Genesis module - refactor: pass session context to modal rendering functions - refactor: move nebula package to app directory and update templ version - refactor: Move home section video view to dedicated directory - refactor: remove unused views file - refactor: move styles and UI components to global scope - refactor: Rename images.go to cdn.go - feat: Add Empty State Illustrations - refactor: Consolidate Vault Index Logic - fix: References to App.wasm and remove Vault Directory embedded CDN files - refactor: Move CDN types to Models - fix: Correct line numbers in templ error messages for arch_templ.go - refactor: use common types for peer roles - refactor: move common types and ORM to a shared package - fix: Config import dwn - refactor: move nebula directory to app - feat: Rebuild nebula - fix: correct file paths in panels templates - feat: Remove duplicate types - refactor: Move dwn to pkg/core - refactor: Binary Structure - feat: Introduce Crypto Pkg - fix: Broken Process Start - *feat: Update pkg/ structure - feat: Refactor PKL Structure - build: update pkl build process - chore: Remove Empty Files - refactor: remove unused macaroon package - feat: Add WebAwesome Components - refactor: consolidate build and generation tasks into a single taskfile, remove redundant makefile targets - refactor: refactor server and move components to pkg/core/dwn - build: update go modules - refactor: move gateway logic into dedicated hway command - feat: Add KSS (Krawczyk-Song-Song) MPC cryptography module - feat: Implement MPC-based JWT signing and UCAN token generation - feat: add support for MPC-based JWT signing - feat: Implement MPC-based UCAN capabilities for smart accounts - feat: add address field to keyshareSource - feat: Add comprehensive MPC test suite for keyshares, UCAN tokens, and token attenuations - refactor: improve MPC keyshare management and signing process - feat: enhance MPC capability hierarchy documentation - refactor: rename GenerateKeyshares function to NewKeyshareSource for clarity - refactor: remove unused Ethereum address computation - feat: Add HasHandle and IsAuthenticated methods to HTTPContext - refactor: Add context.Context support to session HTTPContext - refactor: Resolve context interface conflicts in HTTPContext - feat: Add session ID context key and helper functions - feat: Update WebApp Page Rendering - refactor: Simplify context management by using single HTTPContext key - refactor: Simplify HTTPContext creation and context management in session middleware - refactor: refactor session middleware to use a single data structure - refactor: Simplify HTTPContext implementation and session data handling - refactor: Improve session context handling and prevent nil pointer errors - refactor: Improve session context handling with nil safety and type support - refactor: improve session data injection - feat: add full-screen modal component and update registration flow - chore: add .air.toml to .gitignore - feat: add Air to devbox and update dependencies** 2024-11-23 01:28:58 -05:00			`)`

			`type Round2Bcast = []*v1.ShareVerifier`

			`// Round2 computes the second round for Gennaro DKG`
			`// Algorithm 3 - Gennaro DKG Round 2`
			`// bcast contains all Round1 broadcast from other participants to this participant`
			`// p2p contains all Round1 P2P send message from other participants to this participant`
			`func (dp Participant) Round2(bcast map[uint32]Round1Bcast, p2p map[uint32]Round1P2PSendPacket) (Round2Bcast, error) {`
			`// Check participant is not empty`
			`if dp == nil \|\| dp.curve == nil {`
			`return nil, internal.ErrNilArguments`
			`}`

			`// Check participant has the correct dkg round number`
			`if dp.round != 2 {`
			`return nil, internal.ErrInvalidRound`
			`}`

			`// Check the input is valid`
			`if bcast == nil \|\| p2p == nil \|\| len(bcast) == 0 \|\| len(p2p) == 0 {`
			`return nil, internal.ErrNilArguments`
			`}`

			`// 1. set sk = x_{ii}`
			`sk := dp.pedersenResult.SecretShares[dp.id-1].Value`

			`// 2. for j in 1,...,n`
			`for id := range bcast {`

			`// 3. if i = j continue`
			`if id == dp.id {`
			`continue`
			`}`

			`// Ensure a valid p2p entry exists`
			`if p2p[id] == nil {`
			`return nil, fmt.Errorf("missing p2p packet for id=%v", id)`
			`}`

			`// 4. If PedersenVerify(E, Q, x_ji, r_ji, {X_ji,...,X_jt}) = false, abort`
			`xji := p2p[id].SecretShare`
			`rji := p2p[id].BlindingShare`
			`bvs := bcast[id]`
			`if ok, err := dp.pedersen.Verify(xji, rji, bvs); !ok {`
			`if err != nil {`
			`return nil, err`
			`} else {`
			`return nil, fmt.Errorf("invalid share for participant id=%v", id)`
			`}`
			`}`

			`// Store other participants' shares xji for usage in round 3`
			`dp.otherParticipantShares[id].Share = p2p[id].SecretShare`

			`// 5. sk = (sk+xji) mod q`
			`// NOTE: we use the EcScalar class to add instead of`
			`// just using big.Int Add and Mod`
			`// because Ed25519 will fail with the big.Int Add and Mod`
			`// and Ed25519 uses different little endian vs big endian`
			`// in big.Int`
			`t1 := sk.BigInt()`
			`t2 := xji.Value.BigInt()`
			`r := dp.scalar.Add(t1, t2)`

			`sk = sk.Field().NewElement(r)`
			`}`

			`// Update internal state`
			`dp.round = 3`

			`// 7. Store ski as participant i's secret key share`
			`dp.skShare = sk`

			`// 6. EchoBroadcast {R_1,...,R_t} to all other participants.`
			`return dp.pedersenResult.Verifiers, nil`
			`}`