Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Var time fuzzer #14

Open
wants to merge 7 commits into
base: master
Choose a base branch
from
Open

Var time fuzzer #14

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
618dae4
implement binary EEA inversion
shamatar Sep 3, 2020
e812666
also test self-assignment
shamatar Sep 4, 2020
92e7fe3
make explicit variable and constant time inversions and proj -> affine
shamatar Sep 7, 2020
8d5020a
Default to constant time. Make Marshal() vartime instead
shamatar Sep 10, 2020
40f5708
cleanup
shamatar Sep 11, 2020
77c8f3c
added fuzzer
MariusVanDerWijden Sep 15, 2020
65ac818
bn256: better fuzzer for inversion
MariusVanDerWijden Sep 21, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
4 changes: 2 additions & 2 deletions core/vm/contracts.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -338,7 +338,7 @@ func runBn256Add(input []byte) ([]byte, error) {
}
res := new(bn256.G1)
res.Add(x, y)
return res.Marshal(), nil
return res.MarshalVariableTime(), nil
}

// bn256Add implements a native elliptic curve point addition conforming to
Expand Down Expand Up @@ -376,7 +376,7 @@ func runBn256ScalarMul(input []byte) ([]byte, error) {
}
res := new(bn256.G1)
res.ScalarMult(p, new(big.Int).SetBytes(getData(input, 64, 32)))
return res.Marshal(), nil
return res.MarshalVariableTime(), nil
}

// bn256ScalarMulIstanbul implements a native elliptic curve scalar
Expand Down
26 changes: 26 additions & 0 deletions crypto/bn256/cloudflare/bn256.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -119,6 +119,32 @@ func (e *G1) Marshal() []byte {
return ret
}

// Marshal converts e to a byte slice.
// Uses variable time algorithms for inversion
// for transformation to affine coordinates
func (e *G1) MarshalVariableTime() []byte {
// Each value is a 256-bit number.
const numBytes = 256 / 8

if e.p == nil {
e.p = &curvePoint{}
}

e.p.MakeAffineVariableTime()
ret := make([]byte, numBytes*2)
if e.p.IsInfinity() {
return ret
}
temp := &gfP{}

montDecode(temp, &e.p.x)
temp.Marshal(ret)
montDecode(temp, &e.p.y)
temp.Marshal(ret[numBytes:])

return ret
}

// Unmarshal sets e to the result of converting the output of Marshal back into
// a group element and then returns e.
func (e *G1) Unmarshal(m []byte) ([]byte, error) {
Expand Down
65 changes: 65 additions & 0 deletions crypto/bn256/cloudflare/bn256_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -92,6 +92,71 @@ func TestTripartiteDiffieHellman(t *testing.T) {
}
}

func TestBinaryEAA(t *testing.T) {
for i := 0; i < 10000; i++ {
_, Ga, err := RandomG1(rand.Reader)
if err != nil {
t.Fatal(err)
}
tmpLittleFermat := &gfP{}
tmpLittleFermat.Invert(&Ga.p.x)

tmpBinaryEAA := &gfP{}
tmpBinaryEAA.InvertVariableTime(&Ga.p.x)

tmpBinaryEAASelfSet := &gfP{}
tmpBinaryEAASelfSet.Set(&Ga.p.x)
tmpBinaryEAASelfSet.InvertVariableTime(tmpBinaryEAASelfSet)

if *tmpLittleFermat != *tmpBinaryEAA {
t.Fatalf("results of different inversion do not agree")
}

if *tmpLittleFermat != *tmpBinaryEAASelfSet {
t.Fatalf("self-assigned inversion is invalid")
}
}
}

func BenchmarkLittleFermatInversion(b *testing.B) {
el := gfP{0x0, 0x97816a916871ca8d, 0xb85045b68181585d, 0x30644e72e131a029}

b.ResetTimer()

tmp := &gfP{}
for i := 0; i < b.N; i++ {
tmp.Invert(&el)
}
}

func BenchmarkBinaryEEAInversion(b *testing.B) {
el := gfP{0x0, 0x97816a916871ca8d, 0xb85045b68181585d, 0x30644e72e131a029}

b.ResetTimer()

tmp := &gfP{}
for i := 0; i < b.N; i++ {
tmp.InvertVariableTime(&el)
}
}

func BenchmarkG1AddAndMakeAffine(b *testing.B) {
_, Ga, err := RandomG1(rand.Reader)
if err != nil {
b.Fatal(err)
}
_, Gb, err := RandomG1(rand.Reader)
if err != nil {
b.Fatal(err)
}
b.ResetTimer()

for i := 0; i < b.N; i++ {
e := new(G1).Add(Ga, Gb)
e.p.MakeAffine()
}
}

func BenchmarkG1(b *testing.B) {
x, _ := rand.Int(rand.Reader, Order)
b.ResetTimer()
Expand Down
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/07c9199009bd79044f4041b084ef158a7ac2f66d-1
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
;���8���w������
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/0f57d28c4168244c6f90aa3d9a99d64d33698243-4
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty710542pe 437764856785504449281190514550177096728800832068CallSlice-466353402crypto/ra blobocked for 70 ecordrandnds waiting to read er for 60 econds waiting to read random data from the kernelnot a pointerrandom data fromthe kerWelnota pointed:
Binary file added crypto/bn256/cloudflare/corpus/0feed69da5a6bda0ae2c7f5d0274401f03caa1f0-5
View file
Open in desktop
Binary file not shown.
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/10652cc66509610582932608143f65cfda032d06-1
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
\vflec��B710542735760100185871124267578125o� py
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/1ad4c39ef8f74cb004bb3210c593a5af3fe300c2-2
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
type crypto/ra blobocked for 60 econds waiting to read random data from the kernelnot a pointer:
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/2c6692a15a45db3d5594f264c042996af11b0563-2
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
�X�)c>P
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/375558a8683127df952cea26d54e2117afe0a4f4-15
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/3a10b9848e0c7fbfbaaa68221cdd5409a55037a2-10
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
2155010672361yt/rrrn aig3319bood t763726738rbc@�u�dittm778375564928114"051455017709672880083202068677396868739640837315@616991234crypto/ra blobockrandom d0 ecordrandnds waiting to read random dataBfroo readdrandom data fro����������������������������������m the kernelno
Binary file added crypto/bn256/cloudflare/corpus/42515ce5642ad58b4bd4571f03583561f81562ed-2
View file
Open in desktop
Binary file not shown.
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/42b0c72ed5839a82c1713588945627b0b957520a-4
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
�����������89��wQ�ʭ���
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/537a65c5bb620e17869c5d29816641eb1e0b4d77-4
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty710542pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocryp/otrand: blocked for 60 seconds waiting to read random data from the kernelcked for 70 ecordrandnds waiting to read random data from the kernelnota pointer:
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/542ec7a8f8915b53f1fa86e89ab8c205f4406a89-5
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty1051149051455017709672880832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random42pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random data from the kernelnota point
Binary file added crypto/bn256/cloudflare/corpus/5b2f702be9d68b4fa3343dc502b82aca66ac79ac-1
View file
Open in desktop
Binary file not shown.
Binary file added crypto/bn256/cloudflare/corpus/5ba93c9db0cff93f52b521d7420e43f6eda2784f-1
View file
Open in desktop
Binary file not shown.
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/5d6b1f52eb5963e058631e208ed7e42fe737c17b-11
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
82699ob0n a389114896408373151616991234crypto/fro��m data fro�� to read random42pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/fro��m data fro���������������������������������������������������������������������������������m the k
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/63c5b8ef764aec4065823c8384fa449a13dda127-5
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty051149051955017709672880083550177096728800832068687396408973151616991234crypto/ra blobocked for 700Û@�o ucordrandnds waiting to read random42pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting2068687396408373151616991234crypto/ra blobocked for 700Û@�o ucordrandnds waiting to read random42pe 4377648574367855044449281149051455017709672880083206868739640837315@616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random data from the kernelnota point
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/7177d67ab7a66c2d734d661f17254c6059227d46-5
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
549010770628800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random42pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random data from the kernelnota po
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/71d4fb7cadd2a3a626c8e6f8c8ff2ac58d5c3d11-1
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
type not a pointer:
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/731cf6eb251a941dc4f725fb475b48e4a6bf4ac2-13
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
a11pror44444168003432t��f����550444492�81149051455017709672880amd64p3287396408373151616991234crypto/fro��m data fro�����������������������������������������������������������������������������������������������������������������������������������������������������������
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/75d5bde9b08f68446f39675d33f06373cc3cc657-4
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty10511490514550177096728800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random42pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random data from the kernelnota point
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/784fe4d548210a81635fb4be628208fd40c4f1e6-3
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty710542pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random data from the kernelnota pointer:
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/7b908eb39e1448ac1660770e77a4fe04ebbec50b-6
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty051149051955017709672880083550177096728800832068687396408973151616991234crypto/ra blobocked for 700Û@�o ucordrandndaiting to read random42pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting2068687396408373151616991234crypto/ra blobocked for 700Û@�o ucordrandnds waiting to read random42pe 437764857436785455017709672880083206868991234crypto/ra blobocked for 70 ecordrandnds waiting to read random data from the kernelnota point
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/83de6dd4bce8e2e0a64aab81374af2257a0de4e0-10
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
0350177096728800832068687396408973151616991234crypto/ra blobocked for 700Û@�o ucordrandndaiting to read random42pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/fro��m data fro���������������������������������������������m the kerne
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/8abe94f6ec077cd9bb07bbe014f5acf384b008cc-14
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
3cry��tr��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/8da2c38f239f130f71660ef73a307b2ab9e9abf7-2
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
012abcdefghijklmnopqrst%#uvwxyzA<CDEFGHIJKLMNOPQRSTUVWXYZ��ٛ
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/8e0c3ca5c43ef63b61ee6c4a00142eabc8d6f87f-4
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty710542pe 4377648574367854928114950177096728800832068687396315161699134crypto/rked for 70 ecordrandnds waiting to read randomom the kernelnota pointer
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/92fff21d155559f03a8d89d4470af33edc1a7729-2
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
0123456789abcdef
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/a78616eec08ece4c3f640f3757b99f4b8a2da1ea-12
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
a11pror44444168003432t��f����550444492�811490514550177096728800832068687396408373151616991234crypto/fro��m data fro��������������������������"��������������������������������������������������������������������������������������������������������������������������������
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/a9ba900c94971240ed0e40dc06a0a66951f9a1c4-2
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
0123496789afghijklmnopqrst%#uvwxyzA<CDEFGHIJKLMNOPQRSTUVWXYZ��43776485743678550444492811490514550177096728800832068687396408373151616991234��ٛ
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/adsf
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
123456432
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/asdaf
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
12412312
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/b27e2a272f699ef6f191a9bd8ac8850cd31f328b-9
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
r�ad go472155010672361yt/rrrn aig3319bood t768726738rbc@�u�dittm7783755449281149051455017709672880083202068687396868739640837315@616991234crypto/ra blobockrandom d0 ecordrandnds waiting to read random data froo read random data fro��������������������������m the kernelno
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/b2a373e746e2547e90de614917dfe79dae877741-7
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
0601112o00�@uwt3645068965bcerdn879914lbr�ad go472155010672361yt/rrrn aig3319bood t768726738rbc@�u�dittm7783755449281149051455017709672880083202068687396868739640837315@616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random data fro���������m the kernelnot
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/b2e7f9aefb81dfa43956eb35b6cc161ac34e6a83-16
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
��������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
Binary file added crypto/bn256/cloudflare/corpus/b323c0ccd309ce19e3789ad08129407337db48c2-2
View file
Open in desktop
Binary file not shown.
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/b6aa00dbfb54b3611122b8de5f2d689221051c16-5
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty710542pe 3776485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocryp/otrand: b read random d the kerfor 70 ecordrandnds waiting to read random data from the kernelnota pointer:
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/bd780cc351a62d344f6300d7c76f937c190123e6-1
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
0123456789abcdefghijklmnopqrst%#uvwxyzA<CDEFGHIJKLMNOPQRSTUVWXYZ��ٛ
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/bdfa978fc503ffed27aeed20e9766f353c5f2a38-2
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
;��8���wQ�ʭ������ 
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/bf8b4530d8d246dd74ac53a13471bba17941dff7-1
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@

1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/c1076a8aa61b7bfcc30736a4e8c50d70e3ebeb65-2
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
le71054275760100185871124267578125o� p
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/c4214de44c0a7b5b3a2b42af25c4cc173a1a3f06-3
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
type crypto/ra blolocked for 60 seconds waiting to read random data from the kernelnot a pointer:
Binary file added crypto/bn256/cloudflare/corpus/c57e070aaac9567405ea3e895d61829bfafb453b-3
View file
Open in desktop
Binary file not shown.
Empty file added crypto/bn256/cloudflare/corpus/da39a3ee5e6b4b0d3255bfef95601890afd80709
View file
Open in desktop
Empty file.
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/e64dd62bd352b0387e9ce6890dc93ba3d61578b5-1
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
missing verb: % at end of format string
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/ed1ffddcfca965bd4f8e49a6a8bc680081c25035-6
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
t195501770709672880083206868739640897315161291234crypto/a blobocked for 700Û@�o ucordrandnds waiti37765743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting206868739640837315161699123800832068687396408973151616991234crypto/ra blobocked for 700Û@�o ucordrandnds waiting to read random42pe 43776485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocked for 70 ecordrandnds waiting2068687396408373151616991234crypto/ra blobocked for 700Û@�o ucordrandnds waiting to read random42pe 4377648574367855044449281149051455017709672880083206868739640837315@616991234cryp4crypto/ra blobocked for 700Û@�o ucordrandnds waiting to read random42pe 4377648574367855044449281149051455017709672880083206868739640837315@616991234crypto/ra blobocked for 70 ecordrandnds waiting to read random data from the kernelnot
Binary file added crypto/bn256/cloudflare/corpus/f031927af198b3e4aefd7244113e4a004f9368f3-3
View file
Open in desktop
Binary file not shown.
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/f04b0f8a2ef23dc4ba2694706e789bc525a69d02-8
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
002�uwt3645068965bcerdn879914lbr�ad go472155010672361yt/rrrn aig3319bood t768726738rbc@�u�dittm7783755449281149051455017709672880083202068687396868739640837315@616991234crypto/ra blobockrandom d0 ecordrandnds waiting to read random data fro�����������������m the kernelnot
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/fcefd5c9efad891253cdb8671d07be76165b3aad-5
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
ty710542pe 43776485743678550444492149051455017709672880485743678550444492811490514550177096728800832068687396408373151616991234crypto/ra blobocryp/otrand: blocked for 60 seconds waiting to read random data from the kernelcked for 70 ecordrandnds waiting to 0832068687396408373151616991234crypto/ra blobocryp/otrand: blocked for 60 seconds waiting to read random data from the kernelcked for 70 ecordrandnds waiting to read random data from the kernelnota pointer:
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/zero
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
0
1 change: 1 addition & 0 deletions crypto/bn256/cloudflare/corpus/zeroz
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@

Empty file added crypto/bn256/cloudflare/corpus/zerozero
View file
Open in desktop
Empty file.
24 changes: 24 additions & 0 deletions crypto/bn256/cloudflare/curve.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -206,6 +206,30 @@ func (c *curvePoint) Mul(a *curvePoint, scalar *big.Int) {
c.Set(sum)
}

func (c *curvePoint) MakeAffineVariableTime() {
if c.z == *newGFp(1) {
return
} else if c.z == *newGFp(0) {
c.x = gfP{0}
c.y = *newGFp(1)
c.t = gfP{0}
return
}

zInv := &gfP{}
zInv.InvertVariableTime(&c.z)

t, zInv2 := &gfP{}, &gfP{}
gfpMul(t, &c.y, zInv)
gfpMul(zInv2, zInv, zInv)

gfpMul(&c.x, &c.x, zInv2)
gfpMul(&c.y, t, zInv2)

c.z = *newGFp(1)
c.t = *newGFp(1)
}

func (c *curvePoint) MakeAffine() {
if c.z == *newGFp(1) {
return
Expand Down
98 changes: 98 additions & 0 deletions crypto/bn256/cloudflare/fuzz.go
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,98 @@
package bn256

import (
"fmt"

fuzz "github.com/google/gofuzz"
)

func Fuzz(data []byte) int {
var gfpTest gfP
f := fuzz.NewFromGoFuzz(data)
f.Fuzz(&gfpTest)
zInvVar := &gfP{}
zInvVar.InvertVariableTime(&gfpTest)
zInv := &gfP{}
zInv.Invert(&gfpTest)
if !gfpEq(zInv, zInvVar) {
panic(fmt.Sprintf("invalid invert: %v %v", zInv, zInvVar))
}
return 0
}

func Fuzz2(data []byte) int {
var gfpTest gfP2
f := fuzz.NewFromGoFuzz(data)
f.Fuzz(&gfpTest)
zInvVar := &gfP2{}
zInvVar.InvertVariableTime(&gfpTest)
zInv := &gfP2{}
zInv.Invert(&gfpTest)
if !gfp2Eq(zInv, zInvVar) {
panic(fmt.Sprintf("invalid invert: %v %v", zInv, zInvVar))
}
return 0
}

func Fuzz3(data []byte) int {
var gfpTest gfP6
f := fuzz.NewFromGoFuzz(data)
f.Fuzz(&gfpTest)
zInvVar := &gfP6{}
zInvVar.InvertVariableTime(&gfpTest)
zInv := &gfP6{}
zInv.Invert(&gfpTest)
if !gfp6Eq(zInv, zInvVar) {
panic(fmt.Sprintf("invalid invert: %v %v", zInv, zInvVar))
}
return 0
}

func Fuzz4(data []byte) int {
var gfpTest gfP12
f := fuzz.NewFromGoFuzz(data)
f.Fuzz(&gfpTest)
zInvVar := &gfP12{}
zInvVar.InvertVariableTime(&gfpTest)
zInv := &gfP12{}
zInv.Invert(&gfpTest)
if !gfp12Eq(zInv, zInvVar) {
panic(fmt.Sprintf("invalid invert: %v %v", zInv, zInvVar))
}
return 0
}

func gfp12Eq(a, b *gfP12) bool {
if gfp6Eq(&a.x, &b.x) &&
gfp6Eq(&a.y, &b.y) {
return true
}
return false
}

func gfp6Eq(a, b *gfP6) bool {
if gfp2Eq(&a.x, &b.x) &&
gfp2Eq(&a.y, &b.y) &&
gfp2Eq(&a.z, &b.z) {
return true
}
return false
}

func gfp2Eq(a, b *gfP2) bool {
if gfpEq(&a.x, &b.x) &&
gfpEq(&a.y, &b.y) {
return true
}
return false
}

func gfpEq(a, b *gfP) bool {
if a[0] == b[0] &&
a[1] == b[1] &&
a[2] == b[2] &&
a[3] == b[3] {
return true
}
return false
}