Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Switch dependencies to accelerated versions #1

Open
wants to merge 4 commits into
base: risczero
Choose a base branch
from
Open

Switch dependencies to accelerated versions #1

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
eb2dd46
switch dependencies to accelerated versions, refactor
austinabell Jun 10, 2024
c4ebed2
switch to sha2 0.10 and remove redundant util fn
austinabell Jun 10, 2024
897d3c1
bump sha2 patch version and cosmetic changes
austinabell Jun 10, 2024
8a6d26d
Update Cargo.toml
austinabell Jun 11, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 8 additions & 2 deletions Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,9 +13,15 @@ resolver = "2"

[dependencies]
hex = { version = "0.4", default-features = false, features = ["alloc"] }
sha2 = { version = "0.9", default-features = false }
sha2 = { git = "https://github.com/risc0/RustCrypto-hashes", tag = "sha2-v0.10.8-risczero.0" }
rand_core = { version = "0.6", default-features = false }
curve25519-dalek = { package = "curve25519-dalek-ng", version = "4.1", default-features = false, features = ["u64_backend", "alloc"] }
curve25519-dalek = { git = "https://github.com/risc0/curve25519-dalek", tag = "curve25519-4.1.2-risczero.0", default-features = false, features = [
"alloc",
"zeroize",
"legacy_compatibility",
"digest",
"precomputed-tables",
] }
serde = { version = "1", optional = true, features = ["derive"] }
zeroize = { version = "1.1", default-features = false }
thiserror = { version = "1", optional = true }
Expand Down
10 changes: 6 additions & 4 deletions src/batch.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -51,12 +51,13 @@
use std::{collections::HashMap, convert::TryFrom};

use curve25519_dalek::{
digest::Update,
edwards::{CompressedEdwardsY, EdwardsPoint},
scalar::Scalar,
traits::{IsIdentity, VartimeMultiscalarMul},
};
use rand_core::{CryptoRng, RngCore};
use sha2::{Digest, Sha512};
use sha2::Sha512;

use crate::{Error, Signature, VerificationKey, VerificationKeyBytes};

Expand Down Expand Up @@ -177,20 +178,21 @@ impl Verifier {
let mut As = Vec::with_capacity(m);
let mut R_coeffs = Vec::with_capacity(self.batch_size);
let mut Rs = Vec::with_capacity(self.batch_size);
let mut B_coeff = Scalar::zero();
let mut B_coeff = Scalar::ZERO;

for (vk_bytes, sigs) in self.signatures.iter() {
let A = CompressedEdwardsY(vk_bytes.0)
.decompress()
.ok_or(Error::InvalidSignature)?;

let mut A_coeff = Scalar::zero();
let mut A_coeff = Scalar::ZERO;

for (k, sig) in sigs.iter() {
let R = CompressedEdwardsY(sig.R_bytes)
.decompress()
.ok_or(Error::InvalidSignature)?;
let s = Scalar::from_canonical_bytes(sig.s_bytes).ok_or(Error::InvalidSignature)?;
let s: Scalar = Option::from(Scalar::from_canonical_bytes(sig.s_bytes))
.ok_or(Error::InvalidSignature)?;
let z = Scalar::from(gen_u128(&mut rng));
B_coeff -= z * s;
Rs.push(R);
Expand Down
7 changes: 4 additions & 3 deletions src/signing_key.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
use core::convert::TryFrom;

use curve25519_dalek::{constants, scalar::Scalar};
use curve25519_dalek::{constants, digest::Update, scalar::Scalar};
use rand_core::{CryptoRng, RngCore};
use sha2::{Digest, Sha512};

Expand Down Expand Up @@ -100,6 +100,7 @@ impl From<[u8; 32]> for SigningKey {
scalar_bytes[0] &= 248;
scalar_bytes[31] &= 127;
scalar_bytes[31] |= 64;
#[allow(deprecated)]
Scalar::from_bits(scalar_bytes)
};

Expand All @@ -111,7 +112,7 @@ impl From<[u8; 32]> for SigningKey {
};

// Compute the public key as A = [s]B.
let A = &s * &constants::ED25519_BASEPOINT_TABLE;
let A = &s * constants::ED25519_BASEPOINT_TABLE;

SigningKey {
seed,
Expand Down Expand Up @@ -160,7 +161,7 @@ impl SigningKey {
pub fn sign(&self, msg: &[u8]) -> Signature {
let r = Scalar::from_hash(Sha512::default().chain(&self.prefix[..]).chain(msg));

let R_bytes = (&r * &constants::ED25519_BASEPOINT_TABLE)
let R_bytes = (&r * constants::ED25519_BASEPOINT_TABLE)
.compress()
.to_bytes();

Expand Down
6 changes: 4 additions & 2 deletions src/verification_key.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,11 +1,12 @@
use core::convert::{TryFrom, TryInto};

use curve25519_dalek::{
digest::Update,
edwards::{CompressedEdwardsY, EdwardsPoint},
scalar::Scalar,
traits::IsIdentity,
};
use sha2::{Digest, Sha512};
use sha2::Sha512;

use crate::{Error, Signature};

Expand Down Expand Up @@ -237,7 +238,8 @@ impl VerificationKey {
#[allow(non_snake_case)]
pub(crate) fn verify_prehashed(&self, signature: &Signature, k: Scalar) -> Result<(), Error> {
// `s_bytes` MUST represent an integer less than the prime `l`.
let s = Scalar::from_canonical_bytes(signature.s_bytes).ok_or(Error::InvalidSignature)?;
let s = Option::from(Scalar::from_canonical_bytes(signature.s_bytes))
.ok_or(Error::InvalidSignature)?;
// `R_bytes` MUST be an encoding of a point on the twisted Edwards form of Curve25519.
let R = CompressedEdwardsY(signature.R_bytes)
.decompress()
Expand Down
2 changes: 2 additions & 0 deletions tests/batch.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,5 @@
#![cfg(feature = "std")]

use rand::thread_rng;

use ed25519_consensus::*;
Expand Down
8 changes: 5 additions & 3 deletions tests/small_order.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,17 +1,18 @@
use color_eyre::Report;
use curve25519_dalek::{
constants::EIGHT_TORSION, edwards::CompressedEdwardsY, scalar::Scalar, traits::IsIdentity,
constants::EIGHT_TORSION, digest::Update, edwards::CompressedEdwardsY, scalar::Scalar,
traits::IsIdentity,
};
use once_cell::sync::Lazy;
use sha2::{Digest, Sha512};
use sha2::Sha512;

mod util;
use util::TestCase;

#[allow(non_snake_case)]
pub static SMALL_ORDER_SIGS: Lazy<Vec<TestCase>> = Lazy::new(|| {
let mut tests = Vec::new();
let s = Scalar::zero();
let s = Scalar::ZERO;

// Use all the canonical encodings of the 8-torsion points,
// and the low-order non-canonical encodings.
Expand Down Expand Up @@ -86,6 +87,7 @@ fn conformance() -> Result<(), Report> {
}

#[test]
#[cfg(feature = "std")]
fn individual_matches_batch_verification() -> Result<(), Report> {
use ed25519_consensus::{batch, Signature, VerificationKey, VerificationKeyBytes};
use std::convert::TryFrom;
Expand Down
2 changes: 1 addition & 1 deletion tests/util/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,7 +58,7 @@ impl TestCase {
fn check_zip215(&self) -> Result<(), Report> {
use ed25519_consensus::{Signature, VerificationKey};
let sig = Signature::from(self.sig_bytes);
VerificationKey::try_from(self.vk_bytes).and_then(|vk| vk.verify(&sig, b"Zcash"))?;
VerificationKey::try_from(self.vk_bytes).and_then(|vk| vk.verify(&sig, b"Zcash")).unwrap();
Ok(())
}
}
Expand Down