mirror of
https://github.com/onsonr/sonr.git
synced 2025-03-10 21:09:11 +00:00
Prad Nukala
31bcc21c35
- **refactor: remove unused auth components** - **refactor: improve devbox configuration and deployment process** - **refactor: improve devnet and testnet setup** - **fix: update templ version to v0.2.778** - **refactor: rename pkl/net.matrix to pkl/matrix.net** - **refactor: migrate webapp components to nebula** - **refactor: protobuf types** - **chore: update dependencies for improved security and stability** - **feat: implement landing page and vault gateway servers** - **refactor: Migrate data models to new module structure and update related files** - **feature/1121-implement-ucan-validation** - **refactor: Replace hardcoded constants with model types in attns.go** - **feature/1121-implement-ucan-validation** - **chore: add origin Host struct and update main function to handle multiple hosts** - **build: remove unused static files from dwn module** - **build: remove unused static files from dwn module** - **refactor: Move DWN models to common package** - **refactor: move models to pkg/common** - **refactor: move vault web app assets to embed module** - **refactor: update session middleware import path** - **chore: configure port labels and auto-forwarding behavior** - **feat: enhance devcontainer configuration** - **feat: Add UCAN middleware for Echo with flexible token validation** - **feat: add JWT middleware for UCAN authentication** - **refactor: update package URI and versioning in PklProject files** - **fix: correct sonr.pkl import path** - **refactor: move JWT related code to auth package** - **feat: introduce vault configuration retrieval and management** - **refactor: Move vault components to gateway module and update file paths** - **refactor: remove Dexie and SQLite database implementations** - **feat: enhance frontend with PWA features and WASM integration** - **feat: add Devbox features and streamline Dockerfile** - **chore: update dependencies to include TigerBeetle** - **chore(deps): update go version to 1.23** - **feat: enhance devnet setup with PATH environment variable and updated PWA manifest** - **fix: upgrade tigerbeetle-go dependency and remove indirect dependency** - **feat: add PostgreSQL support to devnet and testnet deployments** - **refactor: rename keyshare cookie to token cookie** - **feat: upgrade Go version to 1.23.3 and update dependencies** - **refactor: update devnet and testnet configurations** - **feat: add IPFS configuration for devnet** - **I'll help you update the ipfs.config.pkl to include all the peers from the shell script. Here's the updated configuration:** - **refactor: move mpc package to crypto directory** - **feat: add BIP32 support for various cryptocurrencies** - **feat: enhance ATN.pkl with additional capabilities** - **refactor: simplify smart account and vault attenuation creation** - **feat: add new capabilities to the Attenuation type** - **refactor: Rename MPC files for clarity and consistency** - **feat: add DIDKey support for cryptographic operations** - **feat: add devnet and testnet deployment configurations** - **fix: correct key derivation in bip32 package** - **refactor: rename crypto/bip32 package to crypto/accaddr** - **fix: remove duplicate indirect dependency** - **refactor: move vault package to root directory** - **refactor: update routes for gateway and vault** - **refactor: remove obsolete web configuration file** - **refactor: remove unused TigerBeetle imports and update host configuration** - **refactor: adjust styles directory path** - **feat: add broadcastTx and simulateTx functions to gateway** - **feat: add PinVault handler**
318 lines
9.5 KiB
Go
Executable File
318 lines
9.5 KiB
Go
Executable File
//
|
|
// Copyright Coinbase, Inc. All Rights Reserved.
|
|
//
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
//
|
|
|
|
package bbs
|
|
|
|
import (
|
|
crand "crypto/rand"
|
|
"testing"
|
|
|
|
"github.com/gtank/merlin"
|
|
"github.com/stretchr/testify/require"
|
|
|
|
"github.com/onsonr/sonr/crypto/core/curves"
|
|
"github.com/onsonr/sonr/crypto/signatures/common"
|
|
)
|
|
|
|
func TestPokSignatureProofSomeMessagesRevealed(t *testing.T) {
|
|
curve := curves.BLS12381(&curves.PointBls12381G2{})
|
|
pk, sk, err := NewKeys(curve)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, sk)
|
|
require.NotNil(t, pk)
|
|
require.False(t, sk.value.IsZero())
|
|
require.False(t, pk.value.IsIdentity())
|
|
_, ok := pk.value.(*curves.PointBls12381G2)
|
|
require.True(t, ok)
|
|
generators, err := new(MessageGenerators).Init(pk, 4)
|
|
require.NoError(t, err)
|
|
msgs := []curves.Scalar{
|
|
curve.Scalar.New(2),
|
|
curve.Scalar.New(3),
|
|
curve.Scalar.New(4),
|
|
curve.Scalar.New(5),
|
|
}
|
|
|
|
sig, err := sk.Sign(generators, msgs)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, sig)
|
|
require.False(t, sig.a.IsIdentity())
|
|
require.False(t, sig.e.IsZero())
|
|
require.False(t, sig.s.IsZero())
|
|
|
|
proofMsgs := []common.ProofMessage{
|
|
&common.ProofSpecificMessage{
|
|
Message: msgs[0],
|
|
},
|
|
&common.ProofSpecificMessage{
|
|
Message: msgs[1],
|
|
},
|
|
&common.RevealedMessage{
|
|
Message: msgs[2],
|
|
},
|
|
&common.RevealedMessage{
|
|
Message: msgs[3],
|
|
},
|
|
}
|
|
|
|
pok, err := NewPokSignature(sig, generators, proofMsgs, crand.Reader)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, pok)
|
|
nonce := curve.Scalar.Random(crand.Reader)
|
|
transcript := merlin.NewTranscript("TestPokSignatureProofWorks")
|
|
pok.GetChallengeContribution(transcript)
|
|
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
|
|
okm := transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
|
|
challenge, err := curve.Scalar.SetBytesWide(okm)
|
|
require.NoError(t, err)
|
|
|
|
pokSig, err := pok.GenerateProof(challenge)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, pokSig)
|
|
require.True(t, pokSig.VerifySigPok(pk))
|
|
|
|
revealedMsgs := map[int]curves.Scalar{
|
|
2: msgs[2],
|
|
3: msgs[3],
|
|
}
|
|
// Manual verify to show how when used in conjunction with other ZKPs
|
|
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
|
|
pokSig.GetChallengeContribution(generators, revealedMsgs, challenge, transcript)
|
|
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
|
|
okm = transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
|
|
vChallenge, err := curve.Scalar.SetBytesWide(okm)
|
|
require.NoError(t, err)
|
|
require.Equal(t, challenge.Cmp(vChallenge), 0)
|
|
|
|
// Use the all-inclusive method
|
|
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
|
|
require.True(t, pokSig.Verify(revealedMsgs, pk, generators, nonce, challenge, transcript))
|
|
}
|
|
|
|
func TestPokSignatureProofAllMessagesRevealed(t *testing.T) {
|
|
curve := curves.BLS12381(&curves.PointBls12381G2{})
|
|
pk, sk, err := NewKeys(curve)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, sk)
|
|
require.NotNil(t, pk)
|
|
require.False(t, sk.value.IsZero())
|
|
require.False(t, pk.value.IsIdentity())
|
|
_, ok := pk.value.(*curves.PointBls12381G2)
|
|
require.True(t, ok)
|
|
generators, err := new(MessageGenerators).Init(pk, 4)
|
|
require.NoError(t, err)
|
|
msgs := []curves.Scalar{
|
|
curve.Scalar.New(2),
|
|
curve.Scalar.New(3),
|
|
curve.Scalar.New(4),
|
|
curve.Scalar.New(5),
|
|
}
|
|
|
|
sig, err := sk.Sign(generators, msgs)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, sig)
|
|
require.False(t, sig.a.IsIdentity())
|
|
require.False(t, sig.e.IsZero())
|
|
require.False(t, sig.s.IsZero())
|
|
|
|
proofMsgs := []common.ProofMessage{
|
|
&common.RevealedMessage{
|
|
Message: msgs[0],
|
|
},
|
|
&common.RevealedMessage{
|
|
Message: msgs[1],
|
|
},
|
|
&common.RevealedMessage{
|
|
Message: msgs[2],
|
|
},
|
|
&common.RevealedMessage{
|
|
Message: msgs[3],
|
|
},
|
|
}
|
|
|
|
pok, err := NewPokSignature(sig, generators, proofMsgs, crand.Reader)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, pok)
|
|
nonce := curve.Scalar.Random(crand.Reader)
|
|
transcript := merlin.NewTranscript("TestPokSignatureProofWorks")
|
|
pok.GetChallengeContribution(transcript)
|
|
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
|
|
okm := transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
|
|
challenge, err := curve.Scalar.SetBytesWide(okm)
|
|
require.NoError(t, err)
|
|
|
|
pokSig, err := pok.GenerateProof(challenge)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, pokSig)
|
|
require.True(t, pokSig.VerifySigPok(pk))
|
|
|
|
revealedMsgs := map[int]curves.Scalar{
|
|
0: msgs[0],
|
|
1: msgs[1],
|
|
2: msgs[2],
|
|
3: msgs[3],
|
|
}
|
|
// Manual verify to show how when used in conjunction with other ZKPs
|
|
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
|
|
pokSig.GetChallengeContribution(generators, revealedMsgs, challenge, transcript)
|
|
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
|
|
okm = transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
|
|
vChallenge, err := curve.Scalar.SetBytesWide(okm)
|
|
require.NoError(t, err)
|
|
require.Equal(t, challenge.Cmp(vChallenge), 0)
|
|
|
|
// Use the all-inclusive method
|
|
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
|
|
require.True(t, pokSig.Verify(revealedMsgs, pk, generators, nonce, challenge, transcript))
|
|
}
|
|
|
|
func TestPokSignatureProofAllMessagesHidden(t *testing.T) {
|
|
curve := curves.BLS12381(&curves.PointBls12381G2{})
|
|
pk, sk, err := NewKeys(curve)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, sk)
|
|
require.NotNil(t, pk)
|
|
require.False(t, sk.value.IsZero())
|
|
require.False(t, pk.value.IsIdentity())
|
|
_, ok := pk.value.(*curves.PointBls12381G2)
|
|
require.True(t, ok)
|
|
generators, err := new(MessageGenerators).Init(pk, 4)
|
|
require.NoError(t, err)
|
|
msgs := []curves.Scalar{
|
|
curve.Scalar.New(2),
|
|
curve.Scalar.New(3),
|
|
curve.Scalar.New(4),
|
|
curve.Scalar.New(5),
|
|
}
|
|
|
|
sig, err := sk.Sign(generators, msgs)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, sig)
|
|
require.False(t, sig.a.IsIdentity())
|
|
require.False(t, sig.e.IsZero())
|
|
require.False(t, sig.s.IsZero())
|
|
|
|
proofMsgs := []common.ProofMessage{
|
|
&common.ProofSpecificMessage{
|
|
Message: msgs[0],
|
|
},
|
|
&common.ProofSpecificMessage{
|
|
Message: msgs[1],
|
|
},
|
|
&common.ProofSpecificMessage{
|
|
Message: msgs[2],
|
|
},
|
|
&common.ProofSpecificMessage{
|
|
Message: msgs[3],
|
|
},
|
|
}
|
|
|
|
pok, err := NewPokSignature(sig, generators, proofMsgs, crand.Reader)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, pok)
|
|
nonce := curve.Scalar.Random(crand.Reader)
|
|
transcript := merlin.NewTranscript("TestPokSignatureProofWorks")
|
|
pok.GetChallengeContribution(transcript)
|
|
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
|
|
okm := transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
|
|
challenge, err := curve.Scalar.SetBytesWide(okm)
|
|
require.NoError(t, err)
|
|
|
|
pokSig, err := pok.GenerateProof(challenge)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, pokSig)
|
|
require.True(t, pokSig.VerifySigPok(pk))
|
|
|
|
revealedMsgs := map[int]curves.Scalar{}
|
|
|
|
// Manual verify to show how when used in conjunction with other ZKPs
|
|
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
|
|
pokSig.GetChallengeContribution(generators, revealedMsgs, challenge, transcript)
|
|
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
|
|
okm = transcript.ExtractBytes([]byte("signature proof of knowledge"), 64)
|
|
vChallenge, err := curve.Scalar.SetBytesWide(okm)
|
|
require.NoError(t, err)
|
|
require.Equal(t, challenge.Cmp(vChallenge), 0)
|
|
|
|
// Use the all-inclusive method
|
|
transcript = merlin.NewTranscript("TestPokSignatureProofWorks")
|
|
require.True(t, pokSig.Verify(revealedMsgs, pk, generators, nonce, challenge, transcript))
|
|
}
|
|
|
|
func TestPokSignatureProofMarshalBinary(t *testing.T) {
|
|
curve := curves.BLS12381(&curves.PointBls12381G2{})
|
|
pk, sk, err := NewKeys(curve)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, sk)
|
|
require.NotNil(t, pk)
|
|
require.False(t, sk.value.IsZero())
|
|
require.False(t, pk.value.IsIdentity())
|
|
_, ok := pk.value.(*curves.PointBls12381G2)
|
|
require.True(t, ok)
|
|
generators, err := new(MessageGenerators).Init(pk, 4)
|
|
require.NoError(t, err)
|
|
msgs := []curves.Scalar{
|
|
curve.Scalar.New(2),
|
|
curve.Scalar.New(3),
|
|
curve.Scalar.New(4),
|
|
curve.Scalar.New(5),
|
|
}
|
|
|
|
sig, err := sk.Sign(generators, msgs)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, sig)
|
|
require.False(t, sig.a.IsIdentity())
|
|
require.False(t, sig.e.IsZero())
|
|
require.False(t, sig.s.IsZero())
|
|
|
|
proofMsgs := []common.ProofMessage{
|
|
&common.ProofSpecificMessage{
|
|
Message: msgs[0],
|
|
},
|
|
&common.ProofSpecificMessage{
|
|
Message: msgs[1],
|
|
},
|
|
&common.RevealedMessage{
|
|
Message: msgs[2],
|
|
},
|
|
&common.RevealedMessage{
|
|
Message: msgs[3],
|
|
},
|
|
}
|
|
|
|
pok, err := NewPokSignature(sig, generators, proofMsgs, crand.Reader)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, pok)
|
|
nonce := curve.Scalar.Random(crand.Reader)
|
|
transcript := merlin.NewTranscript("TestPokSignatureProofMarshalBinary")
|
|
pok.GetChallengeContribution(transcript)
|
|
transcript.AppendMessage([]byte("nonce"), nonce.Bytes())
|
|
challenge, err := curve.Scalar.SetBytesWide(transcript.ExtractBytes([]byte("signature proof of knowledge"), 64))
|
|
require.NoError(t, err)
|
|
|
|
pokSig, err := pok.GenerateProof(challenge)
|
|
require.NoError(t, err)
|
|
require.NotNil(t, pokSig)
|
|
|
|
data, err := pokSig.MarshalBinary()
|
|
require.NoError(t, err)
|
|
require.NotNil(t, data)
|
|
pokSig2 := new(PokSignatureProof).Init(curve)
|
|
err = pokSig2.UnmarshalBinary(data)
|
|
require.NoError(t, err)
|
|
require.True(t, pokSig.aPrime.Equal(pokSig2.aPrime))
|
|
require.True(t, pokSig.aBar.Equal(pokSig2.aBar))
|
|
require.True(t, pokSig.d.Equal(pokSig2.d))
|
|
require.Equal(t, len(pokSig.proof1), len(pokSig2.proof1))
|
|
require.Equal(t, len(pokSig.proof2), len(pokSig2.proof2))
|
|
for i, p := range pokSig.proof1 {
|
|
require.Equal(t, p.Cmp(pokSig2.proof1[i]), 0)
|
|
}
|
|
for i, p := range pokSig.proof2 {
|
|
require.Equal(t, p.Cmp(pokSig2.proof2[i]), 0)
|
|
}
|
|
}
|