mirror of
https://github.com/onsonr/sonr.git
synced 2025-03-10 21:09:11 +00:00
Prad Nukala
31bcc21c35
- **refactor: remove unused auth components** - **refactor: improve devbox configuration and deployment process** - **refactor: improve devnet and testnet setup** - **fix: update templ version to v0.2.778** - **refactor: rename pkl/net.matrix to pkl/matrix.net** - **refactor: migrate webapp components to nebula** - **refactor: protobuf types** - **chore: update dependencies for improved security and stability** - **feat: implement landing page and vault gateway servers** - **refactor: Migrate data models to new module structure and update related files** - **feature/1121-implement-ucan-validation** - **refactor: Replace hardcoded constants with model types in attns.go** - **feature/1121-implement-ucan-validation** - **chore: add origin Host struct and update main function to handle multiple hosts** - **build: remove unused static files from dwn module** - **build: remove unused static files from dwn module** - **refactor: Move DWN models to common package** - **refactor: move models to pkg/common** - **refactor: move vault web app assets to embed module** - **refactor: update session middleware import path** - **chore: configure port labels and auto-forwarding behavior** - **feat: enhance devcontainer configuration** - **feat: Add UCAN middleware for Echo with flexible token validation** - **feat: add JWT middleware for UCAN authentication** - **refactor: update package URI and versioning in PklProject files** - **fix: correct sonr.pkl import path** - **refactor: move JWT related code to auth package** - **feat: introduce vault configuration retrieval and management** - **refactor: Move vault components to gateway module and update file paths** - **refactor: remove Dexie and SQLite database implementations** - **feat: enhance frontend with PWA features and WASM integration** - **feat: add Devbox features and streamline Dockerfile** - **chore: update dependencies to include TigerBeetle** - **chore(deps): update go version to 1.23** - **feat: enhance devnet setup with PATH environment variable and updated PWA manifest** - **fix: upgrade tigerbeetle-go dependency and remove indirect dependency** - **feat: add PostgreSQL support to devnet and testnet deployments** - **refactor: rename keyshare cookie to token cookie** - **feat: upgrade Go version to 1.23.3 and update dependencies** - **refactor: update devnet and testnet configurations** - **feat: add IPFS configuration for devnet** - **I'll help you update the ipfs.config.pkl to include all the peers from the shell script. Here's the updated configuration:** - **refactor: move mpc package to crypto directory** - **feat: add BIP32 support for various cryptocurrencies** - **feat: enhance ATN.pkl with additional capabilities** - **refactor: simplify smart account and vault attenuation creation** - **feat: add new capabilities to the Attenuation type** - **refactor: Rename MPC files for clarity and consistency** - **feat: add DIDKey support for cryptographic operations** - **feat: add devnet and testnet deployment configurations** - **fix: correct key derivation in bip32 package** - **refactor: rename crypto/bip32 package to crypto/accaddr** - **fix: remove duplicate indirect dependency** - **refactor: move vault package to root directory** - **refactor: update routes for gateway and vault** - **refactor: remove obsolete web configuration file** - **refactor: remove unused TigerBeetle imports and update host configuration** - **refactor: adjust styles directory path** - **feat: add broadcastTx and simulateTx functions to gateway** - **feat: add PinVault handler**
84 lines
3.2 KiB
Go
Executable File
84 lines
3.2 KiB
Go
Executable File
//
|
|
// Copyright Coinbase, Inc. All Rights Reserved.
|
|
//
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
//
|
|
|
|
// Package dealer implements key generation via a trusted dealer for the protocol [DKLs18](https://eprint.iacr.org/2018/499.pdf).
|
|
// The trusted dealer produces the same output as the corresponding DKG protocol and can be used for signing without
|
|
// additional modifications.
|
|
// Note that running actual DKG is ALWAYS recommended over a trusted dealer.
|
|
package dealer
|
|
|
|
import (
|
|
"crypto/rand"
|
|
|
|
"github.com/pkg/errors"
|
|
|
|
"github.com/onsonr/sonr/crypto/core/curves"
|
|
"github.com/onsonr/sonr/crypto/ot/base/simplest"
|
|
"github.com/onsonr/sonr/crypto/ot/extension/kos"
|
|
"github.com/onsonr/sonr/crypto/tecdsa/dklsv1/dkg"
|
|
)
|
|
|
|
// GenerationAndDeal produces private key material for alice and bob which they can later use in signing.
|
|
// Running actual DKG is ALWAYS recommended over using this function, as this function breaks the security guarantees of DKG.
|
|
// only use this function if you have a very good reason to.
|
|
func GenerateAndDeal(curve *curves.Curve) (*dkg.AliceOutput, *dkg.BobOutput, error) {
|
|
aliceSecretShare, bobSecretShare, publicKey := produceKeyShares(curve)
|
|
aliceOTOutput, bobOTOutput, err := produceOTResults(curve)
|
|
if err != nil {
|
|
return nil, nil, errors.Wrap(err, "couldn't produce OT results")
|
|
}
|
|
alice := &dkg.AliceOutput{
|
|
PublicKey: publicKey,
|
|
SecretKeyShare: aliceSecretShare,
|
|
SeedOtResult: aliceOTOutput,
|
|
}
|
|
bob := &dkg.BobOutput{
|
|
PublicKey: publicKey,
|
|
SecretKeyShare: bobSecretShare,
|
|
SeedOtResult: bobOTOutput,
|
|
}
|
|
return alice, bob, nil
|
|
}
|
|
|
|
func produceKeyShares(curve *curves.Curve) (aliceSecretShare curves.Scalar, bobSecretShare curves.Scalar, publicKey curves.Point) {
|
|
aliceSecretShare = curve.Scalar.Random(rand.Reader)
|
|
bobSecretShare = curve.Scalar.Random(rand.Reader)
|
|
publicKey = curve.ScalarBaseMult(aliceSecretShare.Mul(bobSecretShare))
|
|
return aliceSecretShare, bobSecretShare, publicKey
|
|
}
|
|
|
|
func produceOTResults(curve *curves.Curve) (*simplest.ReceiverOutput, *simplest.SenderOutput, error) {
|
|
oneTimePadEncryptionKeys := make([]simplest.OneTimePadEncryptionKeys, kos.Kappa)
|
|
oneTimePadDecryptionKey := make([]simplest.OneTimePadDecryptionKey, kos.Kappa)
|
|
|
|
// we'll need a receiver because in its constructor random bits will be selected.
|
|
receiver, err := simplest.NewReceiver(curve, kos.Kappa, [simplest.DigestSize]byte{})
|
|
if err != nil {
|
|
return nil, nil, errors.Wrap(err, "couldn't initialize a receiver")
|
|
}
|
|
packedRandomChoiceBits, randomChoiceBits := receiver.Output.PackedRandomChoiceBits, receiver.Output.RandomChoiceBits
|
|
|
|
for i := 0; i < kos.Kappa; i++ {
|
|
if _, err := rand.Read(oneTimePadEncryptionKeys[i][0][:]); err != nil {
|
|
return nil, nil, errors.WithStack(err)
|
|
}
|
|
if _, err := rand.Read(oneTimePadEncryptionKeys[i][1][:]); err != nil {
|
|
return nil, nil, errors.WithStack(err)
|
|
}
|
|
oneTimePadDecryptionKey[i] = oneTimePadEncryptionKeys[i][randomChoiceBits[i]]
|
|
}
|
|
|
|
senderOutput := &simplest.SenderOutput{
|
|
OneTimePadEncryptionKeys: oneTimePadEncryptionKeys,
|
|
}
|
|
receiverOutput := &simplest.ReceiverOutput{
|
|
PackedRandomChoiceBits: packedRandomChoiceBits,
|
|
RandomChoiceBits: randomChoiceBits,
|
|
OneTimePadDecryptionKey: oneTimePadDecryptionKey,
|
|
}
|
|
return receiverOutput, senderOutput, nil
|
|
}
|