mirror of
https://github.com/onsonr/sonr.git
synced 2025-03-11 13:29:12 +00:00
Prad Nukala
31bcc21c35
- **refactor: remove unused auth components** - **refactor: improve devbox configuration and deployment process** - **refactor: improve devnet and testnet setup** - **fix: update templ version to v0.2.778** - **refactor: rename pkl/net.matrix to pkl/matrix.net** - **refactor: migrate webapp components to nebula** - **refactor: protobuf types** - **chore: update dependencies for improved security and stability** - **feat: implement landing page and vault gateway servers** - **refactor: Migrate data models to new module structure and update related files** - **feature/1121-implement-ucan-validation** - **refactor: Replace hardcoded constants with model types in attns.go** - **feature/1121-implement-ucan-validation** - **chore: add origin Host struct and update main function to handle multiple hosts** - **build: remove unused static files from dwn module** - **build: remove unused static files from dwn module** - **refactor: Move DWN models to common package** - **refactor: move models to pkg/common** - **refactor: move vault web app assets to embed module** - **refactor: update session middleware import path** - **chore: configure port labels and auto-forwarding behavior** - **feat: enhance devcontainer configuration** - **feat: Add UCAN middleware for Echo with flexible token validation** - **feat: add JWT middleware for UCAN authentication** - **refactor: update package URI and versioning in PklProject files** - **fix: correct sonr.pkl import path** - **refactor: move JWT related code to auth package** - **feat: introduce vault configuration retrieval and management** - **refactor: Move vault components to gateway module and update file paths** - **refactor: remove Dexie and SQLite database implementations** - **feat: enhance frontend with PWA features and WASM integration** - **feat: add Devbox features and streamline Dockerfile** - **chore: update dependencies to include TigerBeetle** - **chore(deps): update go version to 1.23** - **feat: enhance devnet setup with PATH environment variable and updated PWA manifest** - **fix: upgrade tigerbeetle-go dependency and remove indirect dependency** - **feat: add PostgreSQL support to devnet and testnet deployments** - **refactor: rename keyshare cookie to token cookie** - **feat: upgrade Go version to 1.23.3 and update dependencies** - **refactor: update devnet and testnet configurations** - **feat: add IPFS configuration for devnet** - **I'll help you update the ipfs.config.pkl to include all the peers from the shell script. Here's the updated configuration:** - **refactor: move mpc package to crypto directory** - **feat: add BIP32 support for various cryptocurrencies** - **feat: enhance ATN.pkl with additional capabilities** - **refactor: simplify smart account and vault attenuation creation** - **feat: add new capabilities to the Attenuation type** - **refactor: Rename MPC files for clarity and consistency** - **feat: add DIDKey support for cryptographic operations** - **feat: add devnet and testnet deployment configurations** - **fix: correct key derivation in bip32 package** - **refactor: rename crypto/bip32 package to crypto/accaddr** - **fix: remove duplicate indirect dependency** - **refactor: move vault package to root directory** - **refactor: update routes for gateway and vault** - **refactor: remove obsolete web configuration file** - **refactor: remove unused TigerBeetle imports and update host configuration** - **refactor: adjust styles directory path** - **feat: add broadcastTx and simulateTx functions to gateway** - **feat: add PinVault handler**
209 lines
5.6 KiB
Go
Executable File
209 lines
5.6 KiB
Go
Executable File
//
|
|
// Copyright Coinbase, Inc. All Rights Reserved.
|
|
//
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
//
|
|
|
|
// Package bls_sig is an implementation of the BLS signature defined in https://tools.ietf.org/html/draft-irtf-cfrg-bls-signature-03
|
|
package bls_sig
|
|
|
|
import (
|
|
"crypto/rand"
|
|
"crypto/sha256"
|
|
"crypto/subtle"
|
|
"fmt"
|
|
|
|
"golang.org/x/crypto/hkdf"
|
|
|
|
"github.com/onsonr/sonr/crypto/core/curves"
|
|
"github.com/onsonr/sonr/crypto/core/curves/native"
|
|
"github.com/onsonr/sonr/crypto/core/curves/native/bls12381"
|
|
"github.com/onsonr/sonr/crypto/internal"
|
|
"github.com/onsonr/sonr/crypto/sharing"
|
|
)
|
|
|
|
// Secret key in Fr
|
|
const SecretKeySize = 32
|
|
|
|
// Secret key share with identifier byte in Fr
|
|
const SecretKeyShareSize = 33
|
|
|
|
// The salt used with generating secret keys
|
|
// See section 2.3 from https://tools.ietf.org/html/draft-irtf-cfrg-bls-signature-03
|
|
const hkdfKeyGenSalt = "BLS-SIG-KEYGEN-SALT-"
|
|
|
|
// Represents a value mod r where r is the curve order or
|
|
// order of the subgroups in G1 and G2
|
|
type SecretKey struct {
|
|
value *native.Field
|
|
}
|
|
|
|
func allRowsUnique(data [][]byte) bool {
|
|
seen := make(map[string]bool)
|
|
for _, row := range data {
|
|
m := string(row)
|
|
if _, ok := seen[m]; ok {
|
|
return false
|
|
}
|
|
seen[m] = true
|
|
}
|
|
return true
|
|
}
|
|
|
|
func generateRandBytes(count int) ([]byte, error) {
|
|
ikm := make([]byte, count)
|
|
cnt, err := rand.Read(ikm)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if cnt != count {
|
|
return nil, fmt.Errorf("unable to read sufficient random data")
|
|
}
|
|
return ikm, nil
|
|
}
|
|
|
|
// Creates a new BLS secret key
|
|
// Input key material (ikm) MUST be at least 32 bytes long,
|
|
// but it MAY be longer.
|
|
func (sk SecretKey) Generate(ikm []byte) (*SecretKey, error) {
|
|
if len(ikm) < 32 {
|
|
return nil, fmt.Errorf("ikm is too short. Must be at least 32")
|
|
}
|
|
|
|
// https://tools.ietf.org/html/draft-irtf-cfrg-bls-signature-04#section-2.3
|
|
h := sha256.New()
|
|
n, err := h.Write([]byte(hkdfKeyGenSalt))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if n != len(hkdfKeyGenSalt) {
|
|
return nil, fmt.Errorf("incorrect salt bytes written to be hashed")
|
|
}
|
|
salt := h.Sum(nil)
|
|
|
|
ikm = append(ikm, 0)
|
|
// Leaves key_info parameter as the default empty string
|
|
// and just adds parameter I2OSP(L, 2)
|
|
var okm [native.WideFieldBytes]byte
|
|
kdf := hkdf.New(sha256.New, ikm, salt, []byte{0, 48})
|
|
read, err := kdf.Read(okm[:48])
|
|
copy(okm[:48], internal.ReverseScalarBytes(okm[:48]))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if read != 48 {
|
|
return nil, fmt.Errorf("failed to create private key")
|
|
}
|
|
v := bls12381.Bls12381FqNew().SetBytesWide(&okm)
|
|
return &SecretKey{value: v}, nil
|
|
}
|
|
|
|
// Serialize a secret key to raw bytes
|
|
func (sk SecretKey) MarshalBinary() ([]byte, error) {
|
|
bytes := sk.value.Bytes()
|
|
return internal.ReverseScalarBytes(bytes[:]), nil
|
|
}
|
|
|
|
// Deserialize a secret key from raw bytes
|
|
// Cannot be zero. Must be 32 bytes and cannot be all zeroes.
|
|
// https://tools.ietf.org/html/draft-irtf-cfrg-bls-signature-03#section-2.3
|
|
func (sk *SecretKey) UnmarshalBinary(data []byte) error {
|
|
if len(data) != SecretKeySize {
|
|
return fmt.Errorf("secret key must be %d bytes", SecretKeySize)
|
|
}
|
|
zeros := make([]byte, len(data))
|
|
if subtle.ConstantTimeCompare(data, zeros) == 1 {
|
|
return fmt.Errorf("secret key cannot be zero")
|
|
}
|
|
var bb [native.FieldBytes]byte
|
|
copy(bb[:], internal.ReverseScalarBytes(data))
|
|
value, err := bls12381.Bls12381FqNew().SetBytes(&bb)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
sk.value = value
|
|
return nil
|
|
}
|
|
|
|
// SecretKeyShare is shamir share of a private key
|
|
type SecretKeyShare struct {
|
|
identifier byte
|
|
value []byte
|
|
}
|
|
|
|
// Serialize a secret key share to raw bytes
|
|
func (sks SecretKeyShare) MarshalBinary() ([]byte, error) {
|
|
var blob [SecretKeyShareSize]byte
|
|
l := len(sks.value)
|
|
copy(blob[:l], sks.value)
|
|
blob[l] = sks.identifier
|
|
return blob[:], nil
|
|
}
|
|
|
|
// Deserialize a secret key share from raw bytes
|
|
func (sks *SecretKeyShare) UnmarshalBinary(data []byte) error {
|
|
if len(data) != SecretKeyShareSize {
|
|
return fmt.Errorf("secret key share must be %d bytes", SecretKeyShareSize)
|
|
}
|
|
|
|
zeros := make([]byte, len(data))
|
|
if subtle.ConstantTimeCompare(data, zeros) == 1 {
|
|
return fmt.Errorf("secret key share cannot be zero")
|
|
}
|
|
l := len(data)
|
|
sks.identifier = data[l-1]
|
|
sks.value = make([]byte, SecretKeySize)
|
|
copy(sks.value, data[:l])
|
|
return nil
|
|
}
|
|
|
|
// thresholdizeSecretKey splits a composite secret key such that
|
|
// `threshold` partial signatures can be combined to form a composite signature
|
|
func thresholdizeSecretKey(secretKey *SecretKey, threshold, total uint) ([]*SecretKeyShare, error) {
|
|
// Verify our parameters are acceptable.
|
|
if secretKey == nil {
|
|
return nil, fmt.Errorf("secret key is nil")
|
|
}
|
|
if threshold > total {
|
|
return nil, fmt.Errorf("threshold cannot be greater than the total")
|
|
}
|
|
if threshold == 0 {
|
|
return nil, fmt.Errorf("threshold cannot be zero")
|
|
}
|
|
if total <= 1 {
|
|
return nil, fmt.Errorf("total must be larger than 1")
|
|
}
|
|
if total > 255 || threshold > 255 {
|
|
return nil, fmt.Errorf("cannot have more than 255 shares")
|
|
}
|
|
|
|
curve := curves.BLS12381G1()
|
|
sss, err := sharing.NewShamir(uint32(threshold), uint32(total), curve)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
secret, ok := curve.NewScalar().(*curves.ScalarBls12381)
|
|
if !ok {
|
|
return nil, fmt.Errorf("invalid curve")
|
|
}
|
|
secret.Value = secretKey.value
|
|
shares, err := sss.Split(secret, rand.Reader)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
// Verify we got the expected number of shares
|
|
if uint(len(shares)) != total {
|
|
return nil, fmt.Errorf("%v != %v shares", len(shares), total)
|
|
}
|
|
|
|
// Package our shares
|
|
secrets := make([]*SecretKeyShare, len(shares))
|
|
for i, s := range shares {
|
|
// users expect BigEndian
|
|
sks := &SecretKeyShare{identifier: byte(s.Id), value: s.Value}
|
|
secrets[i] = sks
|
|
}
|
|
|
|
return secrets, nil
|
|
}
|