db/d1e/bls__basic__functions_8hpp_source.html

 //---------------------------------------------------------------------------//

 // Copyright (c) 2018-2020 Mikhail Komarov <nemo@nil.foundation>

 // Copyright (c) 2020-2021 Ilias Khairullin <ilias@nil.foundation>

 //

 // MIT License

 //

 // Permission is hereby granted, free of charge, to any person obtaining a copy

 // of this software and associated documentation files (the "Software"), to deal

 // in the Software without restriction, including without limitation the rights

 // to use, copy, modify, merge, publish, distribute, sublicense, and/or sell

 // copies of the Software, and to permit persons to whom the Software is

 // furnished to do so, subject to the following conditions:

 //

 // The above copyright notice and this permission notice shall be included in all

 // copies or substantial portions of the Software.

 //

 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

 // IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

 // FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

 // AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

 // LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,

 // OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE

 // SOFTWARE.

 //---------------------------------------------------------------------------//


 #ifndef CRYPTO3_PUBKEY_BLS_CORE_FUNCTIONS_HPP

 #define CRYPTO3_PUBKEY_BLS_CORE_FUNCTIONS_HPP


 #include <utility>

 #include <vector>

 #include <array>

 #include <type_traits>

 #include <iterator>

 #include <algorithm>


 #include <boost/assert.hpp>

 #include <boost/concept_check.hpp>


 #include <boost/range/concepts.hpp>


 #include <nil/crypto3/hash/algorithm/to_curve.hpp>


 #include <nil/crypto3/algebra/curves/bls12.hpp>


 #include <nil/crypto3/detail/type_traits.hpp>


 namespace nil {

     namespace crypto3 {

         namespace pubkey {

             namespace detail {

                 template<typename policy_type>

                 struct bls_basic_functions {

                     typedef typename policy_type::curve_type curve_type;

                     typedef typename policy_type::gt_value_type gt_value_type;

                     typedef typename policy_type::private_key_type private_key_type;

                     typedef typename policy_type::public_key_type public_key_type;

                     typedef typename policy_type::signature_type signature_type;

                     typedef typename policy_type::h2c_policy h2c_policy;


                     typedef typename policy_type::bls_serializer bls_serializer;

                     typedef typename policy_type::public_key_serialized_type public_key_serialized_type;

                     typedef typename policy_type::signature_serialized_type signature_serialized_type;


                     typedef typename policy_type::internal_accumulator_type internal_accumulator_type;

                     typedef std::pair<std::vector<public_key_type>, std::vector<internal_accumulator_type>>

                         internal_aggregation_accumulator_type;

                     typedef std::pair<std::vector<public_key_type>, internal_accumulator_type>

                         internal_fast_aggregation_accumulator_type;


                     constexpr static const std::size_t private_key_bits = policy_type::private_key_bits;

                     constexpr static const std::size_t L = static_cast<std::size_t>((3 * private_key_bits) / 16) +

                                                            static_cast<std::size_t>((3 * private_key_bits) % 16 != 0);

                     static_assert(L < 0x10000, "L is required to fit in 2 octets");

                     constexpr static const std::array<std::uint8_t, 2> L_os = {static_cast<std::uint8_t>(L >> 8u),

                                                                                static_cast<std::uint8_t>(L % 0x100)};


                     // TODO: implement key_gen

                     // template<typename IkmType, typename KeyInfoType>

                     // static inline private_key_type key_gen(const IkmType &ikm, const KeyInfoType &key_info) {}


                     static inline bool validate_private_key(const private_key_type &sk) {

                         return !sk.is_zero();

                     }


                     static inline public_key_type privkey_to_pubkey(const private_key_type &sk) {

                         BOOST_ASSERT(validate_private_key(sk));


                         return sk * public_key_type::one();

                     }


                     static inline bool validate_public_key(const public_key_type &pk) {

                         return !(pk.is_zero() || !pk.is_well_formed());

                     }


                     template<typename InputRange>

                     static inline void update(internal_accumulator_type &acc, const InputRange &range) {

                         BOOST_CONCEPT_ASSERT((boost::SinglePassRangeConcept<InputRange>));


                         to_curve<h2c_policy>(range, acc);

                     }


                     template<typename InputIterator>

                     static inline void update(internal_accumulator_type &acc, InputIterator first, InputIterator last) {

                         BOOST_CONCEPT_ASSERT((boost::InputIteratorConcept<InputIterator>));


                         to_curve<h2c_policy>(first, last, acc);

                     }


                     static inline signature_type sign(const internal_accumulator_type &acc,

                                                       const private_key_type &sk) {

                         BOOST_ASSERT(validate_private_key(sk));


                         signature_type Q = hashes::accumulators::extract::to_curve<h2c_policy>(acc);

                         return sk * Q;

                     }


                     static inline bool verify(const internal_accumulator_type &acc, const public_key_type &pk,

                                               const signature_type &sig) {

                         if (!sig.is_well_formed()) {

                             return false;

                         }

                         if (!validate_public_key(pk)) {

                             return false;

                         }

                         signature_type Q = hashes::accumulators::extract::to_curve<h2c_policy>(acc);

                         auto C1 = policy_type::pairing(Q, pk);

                         auto C2 = policy_type::pairing(sig, public_key_type::one());

                         return C1 == C2;

                     }


                     template<

                         typename SignatureIterator,

                         typename = typename std::enable_if<std::is_same<

                             signature_type, typename std::iterator_traits<SignatureIterator>::value_type>::value>::type>

                     static inline void aggregate(signature_type &acc, SignatureIterator sig_first,

                                                  SignatureIterator sig_last) {

                         BOOST_CONCEPT_ASSERT((boost::InputIteratorConcept<SignatureIterator>));

                         assert(std::distance(sig_first, sig_last) > 0);


                         while (sig_first != sig_last) {

                             signature_type next_p = *sig_first++;

                             acc = acc + next_p;

                         }

                     }


                     template<typename SignatureRange,

                              typename = typename std::enable_if<std::is_same<

                                  signature_type, typename std::iterator_traits<

                                                      typename SignatureRange::iterator>::value_type>::value>::type>

                     static inline void aggregate(signature_type &acc, const SignatureRange &sig_n) {

                         BOOST_CONCEPT_ASSERT((boost::SinglePassRangeConcept<SignatureRange>));


                         aggregate(acc, std::cbegin(sig_n), std::cend(sig_n));

                     }


                     static inline bool aggregate_verify(const internal_aggregation_accumulator_type &acc,

                                                         const signature_type &sig) {

                         const typename internal_aggregation_accumulator_type::first_type &pk_n = acc.first;

                         const typename internal_aggregation_accumulator_type::second_type &acc_n = acc.second;

                         assert(std::distance(pk_n.begin(), pk_n.end()) > 0 &&

                                std::distance(pk_n.begin(), pk_n.end()) == std::distance(acc_n.begin(), acc_n.end()));


                         if (!sig.is_well_formed()) {

                             return false;

                         }

                         auto pk_n_iter = std::cbegin(pk_n);

                         auto acc_n_iter = std::cbegin(acc_n);

                         gt_value_type C1 = gt_value_type::one();

                         while (pk_n_iter != std::cend(pk_n) && acc_n_iter != std::cend(acc_n)) {

                             if (!validate_public_key(*pk_n_iter)) {

                                 return false;

                             }

                             signature_type Q = hashes::accumulators::extract::to_curve<h2c_policy>(*acc_n_iter++);

                             C1 = C1 * policy_type::pairing(Q, *pk_n_iter++);

                         }

                         return C1 == policy_type::pairing(sig, public_key_type::one());

                     }


                     static inline bool aggregate_verify(const internal_fast_aggregation_accumulator_type &acc,

                                                         const signature_type &sig) {

                         const typename internal_fast_aggregation_accumulator_type::first_type &pk_n = acc.first;

                         const typename internal_fast_aggregation_accumulator_type::second_type &msg_acc = acc.second;

                         assert(std::distance(pk_n.begin(), pk_n.end()) > 0);


                         auto pk_n_iter = pk_n.begin();

                         public_key_type aggregate_p = *pk_n_iter++;

                         while (pk_n_iter != pk_n.end()) {

                             public_key_type next_p = *pk_n_iter++;

                             aggregate_p = aggregate_p + next_p;

                         }

                         return verify(msg_acc, aggregate_p, sig);

                     }


                     static inline signature_type pop_prove(const private_key_type &sk) {

                         assert(validate_private_key(sk));


                         public_key_type pk = privkey_to_pubkey(sk);

                         signature_type Q = to_curve<h2c_policy>(point_to_pubkey(pk));

                         return sk * Q;

                     }


                     static inline bool pop_verify(const public_key_type &pk, const signature_type &pop) {

                         if (!pop.is_well_formed()) {

                             return false;

                         }

                         if (!validate_public_key(pk)) {

                             return false;

                         }

                         signature_type Q = to_curve<h2c_policy>(point_to_pubkey(pk));

                         auto C1 = policy_type::pairing(Q, pk);

                         auto C2 = policy_type::pairing(pop, public_key_type::one());

                         return C1 == C2;

                     }


                     static inline public_key_serialized_type point_to_pubkey(const public_key_type &pk) {

                         return bls_serializer::point_to_octets_compress(pk);

                     }


                     static inline signature_serialized_type point_to_signature(const signature_type &sig) {

                         return bls_serializer::point_to_octets_compress(sig);

                     }

                 };

             }    // namespace detail

         }        // namespace pubkey

     }            // namespace crypto3

 }    // namespace nil


 #endif    // CRYPTO3_PUBKEY_BLS_CORE_FUNCTIONS_HPP

to_curve.hpp

bls12.hpp

nil::crypto3::pubkey::accumulators::extract::pubkey
boost::mpl::apply< AccumulatorSet, tag::pubkey< ProcessingMode > >::type::result_type pubkey(const AccumulatorSet &acc)
Definition: accumulators/pubkey.hpp:106

nil
Definition: pair.hpp:31

nil::crypto3::pubkey::detail::bls_basic_functions
Definition: bls_basic_functions.hpp:52

nil::crypto3::pubkey::detail::bls_basic_functions::bls_serializer
policy_type::bls_serializer bls_serializer
Definition: bls_basic_functions.hpp:60

nil::crypto3::pubkey::detail::bls_basic_functions::aggregate
static void aggregate(signature_type &acc, SignatureIterator sig_first, SignatureIterator sig_last)
Definition: bls_basic_functions.hpp:136

nil::crypto3::pubkey::detail::bls_basic_functions::h2c_policy
policy_type::h2c_policy h2c_policy
Definition: bls_basic_functions.hpp:58

nil::crypto3::pubkey::detail::bls_basic_functions::private_key_bits
constexpr static const std::size_t private_key_bits
Definition: bls_basic_functions.hpp:70

nil::crypto3::pubkey::detail::bls_basic_functions::pop_prove
static signature_type pop_prove(const private_key_type &sk)
Definition: bls_basic_functions.hpp:195

nil::crypto3::pubkey::detail::bls_basic_functions::public_key_serialized_type
policy_type::public_key_serialized_type public_key_serialized_type
Definition: bls_basic_functions.hpp:61

nil::crypto3::pubkey::detail::bls_basic_functions::pop_verify
static bool pop_verify(const public_key_type &pk, const signature_type &pop)
Definition: bls_basic_functions.hpp:203

nil::crypto3::pubkey::detail::bls_basic_functions::aggregate_verify
static bool aggregate_verify(const internal_aggregation_accumulator_type &acc, const signature_type &sig)
Definition: bls_basic_functions.hpp:157

nil::crypto3::pubkey::detail::bls_basic_functions::signature_serialized_type
policy_type::signature_serialized_type signature_serialized_type
Definition: bls_basic_functions.hpp:62

nil::crypto3::pubkey::detail::bls_basic_functions::internal_accumulator_type
policy_type::internal_accumulator_type internal_accumulator_type
Definition: bls_basic_functions.hpp:64

nil::crypto3::pubkey::detail::bls_basic_functions::verify
static bool verify(const internal_accumulator_type &acc, const public_key_type &pk, const signature_type &sig)
Definition: bls_basic_functions.hpp:117

nil::crypto3::pubkey::detail::bls_basic_functions::internal_aggregation_accumulator_type
std::pair< std::vector< public_key_type >, std::vector< internal_accumulator_type > > internal_aggregation_accumulator_type
Definition: bls_basic_functions.hpp:66

nil::crypto3::pubkey::detail::bls_basic_functions::private_key_type
policy_type::private_key_type private_key_type
Definition: bls_basic_functions.hpp:55

nil::crypto3::pubkey::detail::bls_basic_functions::L
constexpr static const std::size_t L
Definition: bls_basic_functions.hpp:71

nil::crypto3::pubkey::detail::bls_basic_functions::gt_value_type
policy_type::gt_value_type gt_value_type
Definition: bls_basic_functions.hpp:54

nil::crypto3::pubkey::detail::bls_basic_functions::update
static void update(internal_accumulator_type &acc, const InputRange &range)
Definition: bls_basic_functions.hpp:96

nil::crypto3::pubkey::detail::bls_basic_functions::curve_type
policy_type::curve_type curve_type
Definition: bls_basic_functions.hpp:53

nil::crypto3::pubkey::detail::bls_basic_functions::internal_fast_aggregation_accumulator_type
std::pair< std::vector< public_key_type >, internal_accumulator_type > internal_fast_aggregation_accumulator_type
Definition: bls_basic_functions.hpp:68

nil::crypto3::pubkey::detail::bls_basic_functions::signature_type
policy_type::signature_type signature_type
Definition: bls_basic_functions.hpp:57

nil::crypto3::pubkey::detail::bls_basic_functions::point_to_pubkey
static public_key_serialized_type point_to_pubkey(const public_key_type &pk)
Definition: bls_basic_functions.hpp:216

nil::crypto3::pubkey::detail::bls_basic_functions::validate_private_key
static bool validate_private_key(const private_key_type &sk)
Definition: bls_basic_functions.hpp:81

nil::crypto3::pubkey::detail::bls_basic_functions::public_key_type
policy_type::public_key_type public_key_type
Definition: bls_basic_functions.hpp:56

nil::crypto3::pubkey::detail::bls_basic_functions::point_to_signature
static signature_serialized_type point_to_signature(const signature_type &sig)
Definition: bls_basic_functions.hpp:220

nil::crypto3::pubkey::detail::bls_basic_functions::aggregate
static void aggregate(signature_type &acc, const SignatureRange &sig_n)
Definition: bls_basic_functions.hpp:151

nil::crypto3::pubkey::detail::bls_basic_functions::privkey_to_pubkey
static public_key_type privkey_to_pubkey(const private_key_type &sk)
Definition: bls_basic_functions.hpp:85

nil::crypto3::pubkey::detail::bls_basic_functions::sign
static signature_type sign(const internal_accumulator_type &acc, const private_key_type &sk)
Definition: bls_basic_functions.hpp:109

nil::crypto3::pubkey::detail::bls_basic_functions::validate_public_key
static bool validate_public_key(const public_key_type &pk)
Definition: bls_basic_functions.hpp:91

nil::crypto3::pubkey::detail::bls_basic_functions::update
static void update(internal_accumulator_type &acc, InputIterator first, InputIterator last)
Definition: bls_basic_functions.hpp:103

nil::crypto3::pubkey::detail::bls_basic_functions::aggregate_verify
static bool aggregate_verify(const internal_fast_aggregation_accumulator_type &acc, const signature_type &sig)
Definition: bls_basic_functions.hpp:180

nil::crypto3::pubkey::detail::bls_basic_functions::L_os
constexpr static const std::array< std::uint8_t, 2 > L_os
Definition: bls_basic_functions.hpp:74