Add proof of validity for KVAC

Signed-off-by: lovesh <lovesh.bond@gmail.com>
docknetwork · Mar 7, 2024 · 85cedd7 · 85cedd7
1 parent 1ad8cb0
commit 85cedd7
Show file tree

Hide file tree

Showing 10 changed files with 139 additions and 22 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -5,7 +5,7 @@ edition = "2021"
 license = "Apache-2.0"
 name = "dock_crypto_wasm"
 repository = "https://github.com/docknetwork/crypto-wasm"
-version = "0.18.0"
+version = "0.19.0"
 
 [lib]
 crate-type = ["cdylib", "rlib"]
@@ -15,7 +15,7 @@ console = ["console_error_panic_hook"]
 default = ["dlmalloc"]
 
 [dependencies]
-console_error_panic_hook = { version = "0.1.1", optional = true }
+console_error_panic_hook = { version = "0.1.7", optional = true }
 js-sys = "0.3"
 rand = { version = "0.7", features = ["wasm-bindgen"] }
 serde = { version = "1.0", features = ["derive"] }

diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@docknetwork/crypto-wasm",
-  "version": "0.24.0",
+  "version": "0.25.0",
   "author": "Dock.io",
   "license": "Apache-2.0",
   "private": false,

diff --git a/scripts/build-package.sh b/scripts/build-package.sh
@@ -13,19 +13,19 @@ export PATH="$PATH:node_modules/.bin"
 
 if [ -z "$BUILD_MODE" ]
 then
-  echo "BUILD_MODE not specified defaulting to RELEASE"
+  echo "BUILD_MODE not specified, defaulting to RELEASE"
   BUILD_MODE="RELEASE"
 fi
 
 # Build based on input parameter
 if [ "$BUILD_MODE" = "RELEASE" ]; 
 then
     echo "Building WASM Output in RELEASE MODE"
-    rustup run stable wasm-pack build --release --out-dir lib --target web
+    rustup run stable wasm-pack build --release --out-dir lib --target web -- --features="console"
 elif [ "$BUILD_MODE" = "PROFILING" ];
 then
     echo "Building WASM Output in PROFILING MODE"
-    rustup run stable wasm-pack build --profiling --out-dir lib --target web
+    rustup run stable wasm-pack build --profiling --out-dir lib --target web -- --features="console"
 elif [ "$BUILD_MODE" = "DEBUG" ]; 
 then
     echo "Building WASM Output in DEBUG MODE"

diff --git a/src/bbs.rs b/src/bbs.rs
@@ -199,7 +199,6 @@ pub fn bbs_verify(
     encode_messages: bool,
 ) -> Result<JsValue, JsValue> {
     set_panic_hook();
-    // let signature: SigG1 = serde_wasm_bindgen::from_value(signature)?;
     let signature = obj_from_uint8array!(BBSSignature, signature, true);
     let pk = obj_from_uint8array!(BBSPublicKey, public_key, false, "BBSPublicKey");
     let params: BBSSigParams = serde_wasm_bindgen::from_value(params)?;
@@ -252,7 +251,6 @@ pub fn bbs_gen_proof(
     let protocol: BBSPoKOfSigProtocol = serde_wasm_bindgen::from_value(protocol)?;
     let challenge = fr_from_uint8_array(challenge, false)?;
     match protocol.gen_proof(&challenge) {
-        // Ok(proof) => Ok(serde_wasm_bindgen::to_value(&proof).map_err(|e| JsValue::from(e)).unwrap()),
         Ok(proof) => Ok(obj_to_uint8array!(&proof, false, "BBS+ProofG1")),
         Err(e) => Err(JsValue::from(&format!("{:?}", e))),
     }
@@ -268,7 +266,6 @@ pub fn bbs_verify_proof(
     encode_messages: bool,
 ) -> Result<JsValue, JsValue> {
     set_panic_hook();
-    // let proof: PoKOfSigProof = serde_wasm_bindgen::from_value(proof)?;
     let proof: BBSPoKOfSigProof = obj_from_uint8array!(BBSPoKOfSigProof, proof, false);
     let params: BBSSigParams = serde_wasm_bindgen::from_value(params)?;
     let public_key = obj_from_uint8array!(BBSPublicKey, public_key, false, "BBSPublicKey");
@@ -309,7 +306,6 @@ pub fn bbs_challenge_contribution_from_proof(
     encode_messages: bool,
 ) -> Result<js_sys::Uint8Array, JsValue> {
     set_panic_hook();
-    // let proof: PoKOfSigProof = serde_wasm_bindgen::from_value(proof)?;
     let proof: BBSPoKOfSigProof = obj_from_uint8array!(BBSPoKOfSigProof, proof, false);
     let msgs = encode_messages_as_js_map_to_fr_btreemap(&revealed_msgs, encode_messages)?;
     let params: BBSSigParams = serde_wasm_bindgen::from_value(params)?;

diff --git a/src/bbs_plus.rs b/src/bbs_plus.rs
@@ -362,7 +362,6 @@ pub fn bbs_plus_sign_g2(
 
     let mut rng = get_seeded_rng();
     match BBSPlusSigG2::new(&mut rng, &messages, &sk, &params) {
-        // Ok(sig) => Ok(serde_wasm_bindgen::to_value(&sig).map_err(|e| JsValue::from(e)).unwrap()),
         Ok(sig) => Ok(obj_to_uint8array!(&sig, true, "BBSPlusSigG2")),
         Err(e) => Err(JsValue::from(&format!("{:?}", e))),
     }
@@ -388,7 +387,6 @@ pub fn bbs_plus_blind_sign_g2(
 
     let mut rng = get_seeded_rng();
     match BBSPlusSigG2::new_with_committed_messages(&mut rng, &commitment, msgs_ref, &sk, &params) {
-        // Ok(sig) => Ok(serde_wasm_bindgen::to_value(&sig).map_err(|e| JsValue::from(e)).unwrap()),
         Ok(sig) => Ok(obj_to_uint8array!(&sig, true, "BBSPlusSigG2")),
         Err(e) => Err(JsValue::from(&format!("{:?}", e))),
     }
@@ -528,7 +526,6 @@ pub fn bbs_plus_challenge_contribution_from_proof(
     encode_messages: bool,
 ) -> Result<js_sys::Uint8Array, JsValue> {
     set_panic_hook();
-    // let proof: PoKOfSigProof = serde_wasm_bindgen::from_value(proof)?;
     let proof: BBSPlusPoKOfSigProof = obj_from_uint8array!(BBSPlusPoKOfSigProof, proof, false);
     let msgs = encode_messages_as_js_map_to_fr_btreemap(&revealed_msgs, encode_messages)?;
     let params: BBSPlusSigParamsG1 = serde_wasm_bindgen::from_value(params)?;

diff --git a/src/bddt16_kvac.rs b/src/bddt16_kvac.rs
@@ -15,15 +15,19 @@ use dock_crypto_utils::{
 };
 use kvac::bddt_2016::{
     mac::MAC,
-    setup::{MACParams, SecretKey},
+    setup::{MACParams, SecretKey, PublicKey},
 };
 use std::collections::BTreeMap;
+use ark_ec::AffineRepr;
+use kvac::bddt_2016::mac::ProofOfValidityOfMAC;
 use wasm_bindgen::{prelude::wasm_bindgen, JsValue};
 use zeroize::Zeroize;
 
 pub type BDDT16MACParams = MACParams<G1Affine>;
 pub type BDDT16MACSecretKey = SecretKey<Fr>;
+pub type BDDT16MACPublicKeyG1 = PublicKey<G1Affine>;
 pub type BDDT16MAC = MAC<G1Affine>;
+pub type ProofOfValidityOfMACG1 = ProofOfValidityOfMAC<G1Affine>;
 
 #[wasm_bindgen(js_name = bddt16GenerateMacParams)]
 pub fn bddt16_generate_mac_params(
@@ -92,6 +96,25 @@ pub fn bddt16_mac_generate_secret_key(
     Ok(obj_to_uint8array!(&sk, true, "BDDT16MACSecretKey"))
 }
 
+#[wasm_bindgen(js_name = bddt16MacGeneratePublicKeyG1)]
+pub fn bddt16_mac_generate_public_key_g1(
+    secret_key: js_sys::Uint8Array,
+    params: JsValue,
+) -> Result<js_sys::Uint8Array, JsValue> {
+    set_panic_hook();
+    let sk = obj_from_uint8array!(BDDT16MACSecretKey, secret_key, true, "BDDT16MACSecretKey");
+    let params: BDDT16MACParams = serde_wasm_bindgen::from_value(params)?;
+    let pk = BDDT16MACPublicKeyG1::new(&sk, &params.g_0);
+    Ok(obj_to_uint8array!(&pk, false, "BDDT16MACPublicKeyG1"))
+}
+
+#[wasm_bindgen(js_name = bddt16MacIsPublicKeyG1Valid)]
+pub fn bddt16_mac_is_pubkey_g1_valid(public_key: js_sys::Uint8Array) -> Result<bool, JsValue> {
+    set_panic_hook();
+    let pk = obj_from_uint8array!(BDDT16MACPublicKeyG1, public_key, false, "BDDT16MACPublicKeyG1");
+    Ok(!pk.0.is_zero())
+}
+
 #[wasm_bindgen(js_name = bddt16MacGetBasesForCommitment)]
 pub fn bddt16_mac_get_bases_for_commitment(
     params: JsValue,
@@ -195,6 +218,40 @@ pub fn bddt16_unblind_mac(
     ))
 }
 
+#[wasm_bindgen(js_name = bddt16MacProofOfValidity)]
+pub fn bddt16_mac_proof_of_validity(
+    mac: js_sys::Uint8Array,
+    secret_key: js_sys::Uint8Array,
+    public_key: js_sys::Uint8Array,
+    params: JsValue,
+) -> Result<js_sys::Uint8Array, JsValue> {
+    set_panic_hook();
+    let mac = obj_from_uint8array!(BDDT16MAC, mac, true);
+    let sk = obj_from_uint8array!(BDDT16MACSecretKey, secret_key, true, "BDDT16MACSecretKey");
+    let pk = obj_from_uint8array!(BDDT16MACPublicKeyG1, public_key, false, "BDDT16MACPublicKeyG1");
+    let params: BDDT16MACParams = serde_wasm_bindgen::from_value(params)?;
+    let mut rng = get_seeded_rng();
+    let proof = ProofOfValidityOfMACG1::new::<_, Blake2b512>(&mut rng, &mac, &sk, &pk, &params);
+    Ok(obj_to_uint8array!(&proof, false, "ProofOfValidityOfMACG1"))
+}
+
+#[wasm_bindgen(js_name = bddt16MacVerifyProofOfValidity)]
+pub fn bddt16_mac_verify_proof_of_validity(
+    proof: js_sys::Uint8Array,
+    mac: js_sys::Uint8Array,
+    messages: js_sys::Array,
+    public_key: js_sys::Uint8Array,
+    params: JsValue,
+    encode_messages: bool
+) -> Result<JsValue, JsValue> {
+    let proof = obj_from_uint8array!(ProofOfValidityOfMACG1, proof, false);
+    let mac = obj_from_uint8array!(BDDT16MAC, mac, true);
+    let messages = encode_messages_as_js_array_to_fr_vec(&messages, encode_messages)?;
+    let pk = obj_from_uint8array!(BDDT16MACPublicKeyG1, public_key, false, "BDDT16MACPublicKeyG1");
+    let params: BDDT16MACParams = serde_wasm_bindgen::from_value(params)?;
+    to_verify_response!(proof.verify::<Blake2b512>(&mac, messages.as_slice(), &pk, &params))
+}
+
 #[wasm_bindgen(js_name = bddt16MacVerify)]
 pub fn bddt16_mac_verify(
     messages: js_sys::Array,

diff --git a/src/js/bdd16_kvac_wasm.js b/src/js/bdd16_kvac_wasm.js
@@ -42,6 +42,16 @@ module.exports.bddt16MacAdaptParamsForMsgCount = (params, generating_label, new_
     return wasm.bddt16MacAdaptParamsForMsgCount(params, generating_label, new_count);
 };
 
+module.exports.bddt16MacGeneratePublicKeyG1 = (secretKey, params) => {
+    requireWasmInitialized();
+    return wasm.bddt16MacGeneratePublicKeyG1(secretKey, params);
+};
+
+module.exports.bddt16MacIsPublicKeyG1Valid = (publicKey) => {
+    requireWasmInitialized();
+    return wasm.bddt16MacIsPublicKeyG1Valid(publicKey);
+};
+
 module.exports.bddt16MacGetBasesForCommitment = (params, indicesToCommit) => {
     requireWasmInitialized();
     return wasm.bddt16MacGetBasesForCommitment(params, indicesToCommit);
@@ -68,6 +78,28 @@ module.exports.bddt16MacVerify = (
     return wasm.bddt16MacVerify(messages, mac, secretKey, params, encodeMessages);
 };
 
+module.exports.bddt16MacProofOfValidity = (
+    mac,
+    secretKey,
+    publicKey,
+    params,
+) => {
+    requireWasmInitialized();
+    return wasm.bddt16MacProofOfValidity(mac, secretKey, publicKey, params);
+};
+
+module.exports.bddt16MacVerifyProofOfValidity = (
+    proof,
+    mac,
+    messages,
+    publicKey,
+    params,
+    encodeMessages
+) => {
+    requireWasmInitialized();
+    return wasm.bddt16MacVerifyProofOfValidity(proof, mac, messages, publicKey, params, encodeMessages);
+};
+
 module.exports.bddt16MacCommitMsgs = (
     messages,
     blinding,

diff --git a/src/js/type_declarations/bdd16_kvac.d.ts b/src/js/type_declarations/bdd16_kvac.d.ts
@@ -29,6 +29,10 @@ export function bddt16MacAdaptParamsForMsgCount(
     new_count: number
 ): Bddt16MacParams;
 
+export function bddt16MacGeneratePublicKeyG1(secretKey: Uint8Array, params: Bddt16MacParams): Uint8Array;
+
+export function bddt16MacIsPublicKeyG1Valid(publicKey: Uint8Array): boolean;
+
 export function bddt16MacGetBasesForCommitment(
     params: Bddt16MacParams,
     indicesToCommit: number[]
@@ -49,6 +53,22 @@ export function bddt16MacVerify(
     encodeMessages: boolean
 ): Required<VerifyResult>;
 
+export function bddt16MacProofOfValidity(
+    mac: Uint8Array,
+    secretKey: Uint8Array,
+    publicKey: Uint8Array,
+    params: Bddt16MacParams,
+): Uint8Array;
+
+export function bddt16MacVerifyProofOfValidity(
+    proof: Uint8Array,
+    mac: Uint8Array,
+    messages: Uint8Array[],
+    publicKey: Uint8Array,
+    params: Bddt16MacParams,
+    encodeMessages: boolean
+): Required<VerifyResult>;
+
 export function bddt16MacCommitMsgs(
     messages: Map<number, Uint8Array>,
     blinding: Uint8Array,

diff --git a/tests/js/bddt16Kvac.spec.ts b/tests/js/bddt16Kvac.spec.ts
@@ -2,21 +2,27 @@ import {
     bddt16MacAdaptParamsForMsgCount,
     bddt16BlindMacGenerate,
     bddt16GenerateMacParams,
-    bddt16IsMacParamsValid, bddt16MacCommitMsgs,
+    bddt16IsMacParamsValid,
+    bddt16MacCommitMsgs,
     bddt16MacGenerate,
     bddt16MacGenerateSecretKey,
     Bddt16MacParams,
     bddt16MacParamsFromBytes,
     bddt16MacParamsMaxSupportedMsgs,
     bddt16MacParamsToBytes,
-    bddt16MacVerify, bddt16UnblindMac,
+    bddt16MacVerify,
+    bddt16UnblindMac,
     generateRandomFieldElement,
-    initializeWasm
+    initializeWasm,
+    bddt16MacGeneratePublicKeyG1,
+    bddt16MacIsPublicKeyG1Valid,
+    bddt16MacProofOfValidity,
+    bddt16MacVerifyProofOfValidity
 } from "../../lib";
-import {stringToBytes} from "./util";
+import {checkResult, stringToBytes} from "./util";
 
 describe("For BBS+ signatures", () => {
-    let macParams: Bddt16MacParams, sk: Uint8Array;
+    let macParams: Bddt16MacParams, sk: Uint8Array, pkG1: Uint8Array;
     const seed = new Uint8Array([0, 2, 3, 4, 5]);
     const messages = [
         stringToBytes("Message1"),
@@ -70,10 +76,19 @@ describe("For BBS+ signatures", () => {
         macParams = params;
     });
 
-    it("generate and verify MAC", () => {
+    it("generate public key in G1 from secret key", () => {
+        pkG1 = bddt16MacGeneratePublicKeyG1(sk, macParams);
+        expect(pkG1).toBeInstanceOf(Uint8Array);
+        expect(bddt16MacIsPublicKeyG1Valid(pkG1)).toBe(true);
+    });
+
+    it("generate and verify MAC and its proof of validity", () => {
         const mac = bddt16MacGenerate(messages, sk, macParams, true);
         const res = bddt16MacVerify(messages, mac, sk, macParams, true);
-        expect(res.verified).toBe(true);
+        checkResult(res);
+
+        let proofOfValidity = bddt16MacProofOfValidity(mac, sk, pkG1, macParams);
+        checkResult(bddt16MacVerifyProofOfValidity(proofOfValidity, mac, messages, pkG1, macParams, true));
     });
 
     it("extend MAC params", () => {