sonr/crypto/signatures/bbs/blind_signature_context_test.go

//
// Copyright Coinbase, Inc. All Rights Reserved.
//
// SPDX-License-Identifier: Apache-2.0
//

package bbs

import (
	crand "crypto/rand"
	"testing"

	"github.com/stretchr/testify/require"

	"github.com/onsonr/sonr/crypto/core/curves"
)

func TestBlindSignatureContext(t *testing.T) {
	curve := curves.BLS12381(&curves.PointBls12381G2{})
	pk, sk, err := NewKeys(curve)
	require.NoError(t, err)
	require.NotNil(t, pk)
	require.NotNil(t, sk)

	generators, err := new(MessageGenerators).Init(pk, 4)
	require.NoError(t, err)
	nonce := curve.Scalar.Random(crand.Reader)
	msgs := make(map[int]curves.Scalar, 1)
	msgs[0] = curve.Scalar.Hash([]byte("identifier"))

	ctx, blinding, err := NewBlindSignatureContext(curve, msgs, generators, nonce, crand.Reader)
	require.NoError(t, err)
	require.NotNil(t, blinding)
	require.False(t, blinding.IsZero())
	require.NotNil(t, ctx)
	require.False(t, ctx.commitment.IsIdentity())
	require.False(t, ctx.challenge.IsZero())
	for _, p := range ctx.proofs {
		require.False(t, p.IsZero())
	}

	delete(msgs, 0)
	msgs[1] = curve.Scalar.Hash([]byte("firstname"))
	msgs[2] = curve.Scalar.Hash([]byte("lastname"))
	msgs[3] = curve.Scalar.Hash([]byte("age"))
	blindSig, err := ctx.ToBlindSignature(msgs, sk, generators, nonce)
	require.NoError(t, err)
	require.NotNil(t, blindSig)
	require.False(t, blindSig.a.IsIdentity())
	require.False(t, blindSig.e.IsZero())
	require.False(t, blindSig.s.IsZero())
	sig := blindSig.ToUnblinded(blinding)
	msgs[0] = curve.Scalar.Hash([]byte("identifier"))
	var sigMsgs [4]curves.Scalar
	for i := 0; i < 4; i++ {
		sigMsgs[i] = msgs[i]
	}
	err = pk.Verify(sig, generators, sigMsgs[:])
	require.NoError(t, err)
}

func TestBlindSignatureContextMarshalBinary(t *testing.T) {
	curve := curves.BLS12381(&curves.PointBls12381G2{})
	pk, sk, err := NewKeys(curve)
	require.NoError(t, err)
	require.NotNil(t, pk)
	require.NotNil(t, sk)

	generators, err := new(MessageGenerators).Init(pk, 4)
	require.NoError(t, err)
	nonce := curve.Scalar.Random(crand.Reader)
	msgs := make(map[int]curves.Scalar, 1)
	msgs[0] = curve.Scalar.Hash([]byte("identifier"))

	ctx, blinding, err := NewBlindSignatureContext(curve, msgs, generators, nonce, crand.Reader)
	require.NoError(t, err)
	require.NotNil(t, blinding)
	require.False(t, blinding.IsZero())
	require.NotNil(t, ctx)
	require.False(t, ctx.commitment.IsIdentity())
	require.False(t, ctx.challenge.IsZero())
	for _, p := range ctx.proofs {
		require.False(t, p.IsZero())
	}

	data, err := ctx.MarshalBinary()
	require.NoError(t, err)
	require.NotNil(t, data)
	ctx2 := new(BlindSignatureContext).Init(curve)
	err = ctx2.UnmarshalBinary(data)
	require.NoError(t, err)
	require.Equal(t, ctx.challenge.Cmp(ctx2.challenge), 0)
	require.True(t, ctx.commitment.Equal(ctx2.commitment))
	require.Equal(t, len(ctx.proofs), len(ctx2.proofs))
	for i, p := range ctx.proofs {
		require.Equal(t, p.Cmp(ctx2.proofs[i]), 0)
	}
}