Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Replace usize with u32 in serialized/deserialized structs to avoid cross-platform issues #17

Merged
merged 17 commits into from
Sep 1, 2023
Merged

Replace usize with u32 in serialized/deserialized structs to avoid cross-platform issues #17

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
17 commits
Select commit Hold shift + click to select a range
4382f89
`usize` -> `u64`
olegnn Aug 24, 2023
262d3e4
fmt
olegnn Aug 24, 2023
84481da
Remove unneeded brackets
olegnn Aug 24, 2023
13e0da0
Validation tweaks
olegnn Aug 24, 2023
22c2990
Change back `amortized_response` interface
olegnn Aug 24, 2023
cc5fd57
`message_count` to `u32` in `coconut`, tweaks for `utils`
olegnn Aug 25, 2023
fb09202
More type replacements
olegnn Aug 25, 2023
7a0a7b7
fmt
olegnn Aug 25, 2023
bb65536
More replacements
olegnn Aug 25, 2023
e462336
More replacements
olegnn Aug 25, 2023
31ccfe9
Tweaks
olegnn Aug 25, 2023
321f890
Tweaks
olegnn Aug 25, 2023
43a1149
Misc utils
olegnn Aug 30, 2023
42c535b
`u32` in `legogroth16`
olegnn Aug 30, 2023
b62db16
Minor tweak
olegnn Aug 31, 2023
c0875f4
Tweaks, simplifications
olegnn Aug 31, 2023
6dfa56c
Bump up versions
olegnn Aug 31, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 5 additions & 5 deletions bbs_plus/Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
[package]
name = "bbs_plus"
version = "0.15.0"
version = "0.16.0"
edition.workspace = true
authors.workspace = true
license.workspace = true
Expand All @@ -19,10 +19,10 @@ ark-std.workspace = true
digest.workspace = true
rayon = {workspace = true, optional = true}
itertools.workspace = true
schnorr_pok = { version = "0.13.0", default-features = false, path = "../schnorr_pok" }
dock_crypto_utils = { version = "0.14.0", default-features = false, path = "../utils" }
oblivious_transfer_protocols = { version = "0.2.0", default-features = false, path = "../oblivious_transfer" }
secret_sharing_and_dkg = { version = "0.6.0", default-features = false, path = "../secret_sharing_and_dkg" }
schnorr_pok = { version = "0.14.0", default-features = false, path = "../schnorr_pok" }
dock_crypto_utils = { version = "0.15.0", default-features = false, path = "../utils" }
oblivious_transfer_protocols = { version = "0.3.0", default-features = false, path = "../oblivious_transfer" }
secret_sharing_and_dkg = { version = "0.7.0", default-features = false, path = "../secret_sharing_and_dkg" }
sha3 = { version = "0.10.6", default-features = false }
serde.workspace = true
serde_with.workspace = true
Expand Down
8 changes: 4 additions & 4 deletions bbs_plus/src/proof.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -549,7 +549,7 @@ mod tests {

fn sig_setup<R: RngCore>(
rng: &mut R,
message_count: usize,
message_count: u32,
) -> (
Vec<Fr>,
SignatureParamsG1<Bls12_381>,
Expand Down Expand Up @@ -976,7 +976,7 @@ mod tests {
)
.unwrap();
let proof_1 = pok_1.gen_proof(&challenge).unwrap();
for i in 0..message_count {
for i in 0..message_count as usize {
assert_eq!(
*proof_1
.get_resp_for_message(i, &revealed_indices_1)
Expand Down Expand Up @@ -1089,7 +1089,7 @@ mod tests {
);

// Reveal one message only
for i in 0..message_count {
for i in 0..message_count as usize {
let mut revealed_indices = BTreeSet::new();
revealed_indices.insert(i);
let pok = PoKOfSignatureG1Protocol::init(
Expand All @@ -1106,7 +1106,7 @@ mod tests {
)
.unwrap();
let proof = pok.gen_proof(&challenge).unwrap();
for j in 0..message_count {
for j in 0..message_count as usize {
if i == j {
assert!(proof.get_resp_for_message(j, &revealed_indices).is_err());
} else if i < j {
Expand Down
8 changes: 4 additions & 4 deletions bbs_plus/src/proof_23.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -433,7 +433,7 @@ mod tests {

fn sig_setup<R: RngCore>(
rng: &mut R,
message_count: usize,
message_count: u32,
) -> (
Vec<Fr>,
SignatureParams23G1<Bls12_381>,
Expand Down Expand Up @@ -739,7 +739,7 @@ mod tests {
)
.unwrap();
let proof_1 = pok_1.gen_proof(&challenge).unwrap();
for i in 0..message_count {
for i in 0..message_count as usize {
assert_eq!(
*proof_1
.get_resp_for_message(i, &revealed_indices_1)
Expand Down Expand Up @@ -856,7 +856,7 @@ mod tests {
);

// Reveal one message only
for i in 0..message_count {
for i in 0..message_count as usize {
let mut revealed_indices = BTreeSet::new();
revealed_indices.insert(i);
let pok = PoKOfSignature23G1Protocol::init(
Expand All @@ -875,7 +875,7 @@ mod tests {
)
.unwrap();
let proof = pok.gen_proof(&challenge).unwrap();
for j in 0..message_count {
for j in 0..message_count as usize {
if i == j {
assert!(proof.get_resp_for_message(j, &revealed_indices).is_err());
} else if i < j {
Expand Down
8 changes: 4 additions & 4 deletions bbs_plus/src/proof_23_alternate.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -457,7 +457,7 @@ mod tests {

fn sig_setup<R: RngCore>(
rng: &mut R,
message_count: usize,
message_count: u32,
) -> (
Vec<Fr>,
SignatureParams23G1<Bls12_381>,
Expand Down Expand Up @@ -515,7 +515,7 @@ mod tests {
)
.unwrap();
let proof_1 = pok_1.gen_proof(&challenge).unwrap();
for i in 0..message_count {
for i in 0..message_count as usize {
assert_eq!(
*proof_1
.get_resp_for_message(i, &revealed_indices_1)
Expand Down Expand Up @@ -628,7 +628,7 @@ mod tests {
);

// Reveal one message only
for i in 0..message_count {
for i in 0..message_count as usize {
let mut revealed_indices = BTreeSet::new();
revealed_indices.insert(i);
let pok = PoKOfSignature23G1Protocol::init(
Expand All @@ -645,7 +645,7 @@ mod tests {
)
.unwrap();
let proof = pok.gen_proof(&challenge).unwrap();
for j in 0..message_count {
for j in 0..message_count as usize {
if i == j {
assert!(proof.get_resp_for_message(j, &revealed_indices).is_err());
} else if i < j {
Expand Down
122 changes: 57 additions & 65 deletions bbs_plus/src/setup.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -54,22 +54,27 @@ use ark_ff::{
PrimeField,
};
use ark_serialize::{CanonicalDeserialize, CanonicalSerialize};
use ark_std::{
cfg_into_iter, cfg_iter, fmt::Debug, io::Write, rand::RngCore, vec::Vec, UniformRand,
};
use ark_std::{cfg_iter, fmt::Debug, io::Write, rand::RngCore, vec::Vec, UniformRand};
use digest::{Digest, DynDigest};
use schnorr_pok::{error::SchnorrError, impl_proof_of_knowledge_of_discrete_log};
use zeroize::{Zeroize, ZeroizeOnDrop};

use core::iter::once;
use dock_crypto_utils::{
concat_slices, hashing_utils::projective_group_elem_from_try_and_incr, iter::*,
misc::seq_pairs_satisfy, serde_utils::*, try_iter::CheckLeft,
affine_group_element_from_byte_slices,
aliases::*,
concat_slices,
hashing_utils::projective_group_elem_from_try_and_incr,
iter::*,
join,
misc::{n_projective_group_elements, seq_pairs_satisfy},
serde_utils::*,
try_iter::CheckLeft,
};
use itertools::process_results;

#[cfg(feature = "parallel")]
use rayon::iter::{IntoParallelIterator, IntoParallelRefIterator, ParallelIterator};
use rayon::iter::{IntoParallelRefIterator, ParallelIterator};
use serde::{Deserialize, Serialize};
use serde_with::serde_as;

Expand Down Expand Up @@ -244,44 +249,39 @@ macro_rules! impl_sig_params {
/// Generate params by hashing a known string. The hash function is vulnerable to timing
/// attack but since all this is public knowledge, it is fine.
/// This is useful if people need to be convinced that the discrete log of group elements wrt each other is not known.
pub fn new<D: Digest>(label: &[u8], message_count: usize) -> Self {
pub fn new<D: Digest>(label: &[u8], message_count: u32) -> Self {
assert_ne!(message_count, 0);
// Need message_count+2 elements of signature group and 1 element of other group
let mut sig_group_elems = Vec::with_capacity(message_count + 2);
// Group element by hashing `label`||`g1` as string.
let g1 = projective_group_elem_from_try_and_incr::<E::$group_affine, D>(
&concat_slices![label, b" : g1"],
);
// h_0 and h[i] for i in 1 to message_count
let mut h = cfg_into_iter!((0..=message_count))
.map(|i| {
projective_group_elem_from_try_and_incr::<E::$group_affine, D>(
&concat_slices![label, b" : h_", (i as u32).to_le_bytes()],

let ((h, [g1, h_0]), g2) = join!(
{
let g1 = projective_group_elem_from_try_and_incr::<E::$group_affine, D>(
&concat_slices!(label, b" : g1"),
);
let h_bytes = concat_slices!(label, b" : h_");
// h_0 and h[i] for i in 1 to message_count
let h = n_projective_group_elements::<E::$group_affine, D>(
1 + message_count,
&h_bytes,
);
let g1_and_h: Vec<_> = iter::once(g1).chain(h).collect();

// Convert all to affine
let mut normalized_g1_and_h =
E::$group_projective::normalize_batch(&g1_and_h);

(
normalized_g1_and_h.split_off(2),
<[_; 2]>::try_from(normalized_g1_and_h).unwrap(),
)
})
.collect::<Vec<E::$group_projective>>();
sig_group_elems.push(g1);
sig_group_elems.append(&mut h);
// Convert all to affine
let mut sig_group_elems =
E::$group_projective::normalize_batch(sig_group_elems.as_mut_slice());
let g1 = sig_group_elems.remove(0);
let h_0 = sig_group_elems.remove(0);

let g2 = projective_group_elem_from_try_and_incr::<E::$other_group_affine, D>(
&concat_slices![label, b" : g2"],
)
.into_affine();
Self {
g1,
g2,
h_0,
h: sig_group_elems,
}
},
affine_group_element_from_byte_slices!(label, b" : g2")
);

Self { g1, g2, h_0, h }
}

/// Generate params using a random number generator
pub fn generate_using_rng<R>(rng: &mut R, message_count: usize) -> Self
pub fn generate_using_rng<R>(rng: &mut R, message_count: u32) -> Self
where
R: RngCore,
{
Expand Down Expand Up @@ -516,36 +516,28 @@ impl<E: Pairing> SignatureParams23G1<E> {
/// Generate params by hashing a known string. The hash function is vulnerable to timing
/// attack but since all this is public knowledge, it is fine.
/// This is useful if people need to be convinced that the discrete log of group elements wrt each other is not known.
pub fn new<D: Digest>(label: &[u8], message_count: usize) -> Self {
pub fn new<D: Digest>(label: &[u8], message_count: u32) -> Self {
assert_ne!(message_count, 0);
// Group element by hashing `label`||`g1` as string.
let g1 = projective_group_elem_from_try_and_incr::<E::G1Affine, D>(&concat_slices![
label, b" : g1"
])
.into_affine();
// h[i] for i in 1 to message_count
let h = cfg_into_iter!((1..=message_count))
.map(|i| {
projective_group_elem_from_try_and_incr::<E::G1Affine, D>(&concat_slices![
label,
b" : h_",
(i as u32).to_le_bytes()
])
})
.collect::<Vec<E::G1>>();
let g2 = projective_group_elem_from_try_and_incr::<E::G2Affine, D>(&concat_slices![
label, b" : g2"
])
.into_affine();
Self {
g1,
g2,
h: E::G1::normalize_batch(&h),
}
let (g1, g2, h) = join!(
affine_group_element_from_byte_slices!(label, b" : g1"),
affine_group_element_from_byte_slices!(label, b" : g2"),
{
let h: Vec<_> = n_projective_group_elements::<E::G1Affine, D>(
message_count,
&concat_slices!(label, b" : h_"),
)
.collect();

E::G1::normalize_batch(&h)
}
);

Self { g1, g2, h }
}

/// Generate params using a random number generator
pub fn generate_using_rng<R>(rng: &mut R, message_count: usize) -> Self
pub fn generate_using_rng<R>(rng: &mut R, message_count: u32) -> Self
where
R: RngCore,
{
Expand Down Expand Up @@ -636,7 +628,7 @@ mod tests {
let label_1 = "test1".as_bytes();
let params_1 = $params::<Bls12_381>::new::<Blake2b512>(&label_1, $message_count);
assert!(params_1.is_valid());
assert_eq!(params_1.h.len(), $message_count);
assert_eq!(params_1.h.len(), $message_count as usize);

// Same label should generate same params
let params_1_again = $params::<Bls12_381>::new::<Blake2b512>(&label_1, $message_count);
Expand Down
4 changes: 2 additions & 2 deletions bbs_plus/src/threshold/cointoss.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@ impl<F: PrimeField, const SALT_SIZE: usize> Party<F, SALT_SIZE> {
pub fn commit<R: RngCore>(
rng: &mut R,
id: ParticipantId,
batch_size: usize,
batch_size: u32,
protocol_id: Vec<u8>,
) -> (Self, Commitments) {
let shares_and_salts = (0..batch_size)
Expand Down Expand Up @@ -186,7 +186,7 @@ pub mod tests {
fn cointoss() {
let mut rng = StdRng::seed_from_u64(0u64);

fn check<const SALT_SIZE: usize>(rng: &mut StdRng, batch_size: usize, num_parties: u16) {
fn check<const SALT_SIZE: usize>(rng: &mut StdRng, batch_size: u32, num_parties: u16) {
let label = b"test".to_vec();
let mut parties = vec![];
let mut commitments = vec![];
Expand Down
16 changes: 8 additions & 8 deletions bbs_plus/src/threshold/multiplication_phase.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@ use oblivious_transfer_protocols::{
pub struct Phase2<F: PrimeField, const KAPPA: u16, const STATISTICAL_SECURITY_PARAMETER: u16> {
pub id: ParticipantId,
/// Number of threshold signatures being generated in a single batch.
pub batch_size: usize,
pub batch_size: u32,
/// Transcripts to record protocol interactions with each participant and later used to generate random challenges
pub transcripts: BTreeMap<ParticipantId, Merlin>,
pub ote_params: MultiplicationOTEParams<KAPPA, STATISTICAL_SECURITY_PARAMETER>,
Expand Down Expand Up @@ -69,7 +69,7 @@ impl<F: PrimeField, const KAPPA: u16, const STATISTICAL_SECURITY_PARAMETER: u16>
gadget_vector: &GadgetVector<F, KAPPA, STATISTICAL_SECURITY_PARAMETER>,
) -> Result<(Self, BTreeMap<ParticipantId, Message1<F>>), BBSPlusError> {
assert_eq!(masked_signing_key_share.len(), masked_r.len());
let batch_size = masked_signing_key_share.len();
let batch_size = masked_signing_key_share.len() as u32;

let mut transcripts = BTreeMap::<ParticipantId, Merlin>::new();
let mut multiplication_party1 =
Expand Down Expand Up @@ -154,9 +154,9 @@ impl<F: PrimeField, const KAPPA: u16, const STATISTICAL_SECURITY_PARAMETER: u16>

let (shares, tau, r, gamma_a) =
party1.receive::<D>(U, rlc, gamma, trans, &gadget_vector)?;
debug_assert_eq!(shares.len(), 2 * self.batch_size);
let mut z_A_0 = Vec::with_capacity(self.batch_size);
let mut z_A_1 = Vec::with_capacity(self.batch_size);
debug_assert_eq!(shares.len() as u32, 2 * self.batch_size);
let mut z_A_0 = Vec::with_capacity(self.batch_size as usize);
let mut z_A_1 = Vec::with_capacity(self.batch_size as usize);
for (i, share) in shares.0.into_iter().enumerate() {
if (i & 1) == 0 {
z_A_0.push(share);
Expand Down Expand Up @@ -185,9 +185,9 @@ impl<F: PrimeField, const KAPPA: u16, const STATISTICAL_SECURITY_PARAMETER: u16>
let party2 = self.multiplication_party2.remove(&sender_id).unwrap();
let trans = self.transcripts.get_mut(&sender_id).unwrap();
let shares = party2.receive::<D>(tau, rlc, gamma, trans, &gadget_vector)?;
debug_assert_eq!(shares.len(), 2 * self.batch_size);
let mut z_B_0 = Vec::with_capacity(self.batch_size);
let mut z_B_1 = Vec::with_capacity(self.batch_size);
debug_assert_eq!(shares.len() as u32, 2 * self.batch_size);
let mut z_B_0 = Vec::with_capacity(self.batch_size as usize);
let mut z_B_1 = Vec::with_capacity(self.batch_size as usize);
for (i, share) in shares.0.into_iter().enumerate() {
if (i & 1) == 0 {
z_B_0.push(share);
Expand Down
2 changes: 1 addition & 1 deletion bbs_plus/src/threshold/randomness_generation_phase.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ use oblivious_transfer_protocols::ParticipantId;
pub struct Phase1<F: PrimeField, const SALT_SIZE: usize> {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In both Phase1::init_for_*, batch_size should be accepted as u16 or u32

pub id: ParticipantId,
/// Number of threshold signatures being generated in a single batch.
pub batch_size: usize,
pub batch_size: u32,
pub r: Vec<F>,
/// Protocols to generate shares of random values used in signature like `e`
pub commitment_protocol: super::cointoss::Party<F, SALT_SIZE>,
Expand Down
Loading
Loading