-
Notifications
You must be signed in to change notification settings - Fork 2
Ed25519 crypto infrastructure #165
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Open
Ryz0nd
wants to merge
33
commits into
main
Choose a base branch
from
dan/teddsa
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
Changes from 1 commit
Commits
Show all changes
33 commits
Select commit
Hold shift + click to select a range
db81dfc
crypto: add teddsa_interface package
Ryz0nd bc62335
crypto: add teddsa_core Rust library
Ryz0nd 696c9ed
crypto: add teddsa_wasm WASM bindings
Ryz0nd 1c1267a
crypto: add teddsa_hooks TypeScript wrappers
Ryz0nd e99fc49
crypto: add teddsa_hooks TypeScript wrappers
Ryz0nd 1e5f8cb
common: add Ed25519 types to oko_types
Ryz0nd 9c4a610
ksn: add Ed25519 curve support
Ryz0nd 72cd000
tss_api: add Ed25519 keygen endpoint
Ryz0nd 2c20099
tss_api: add Ed25519 presign/sign endpoints
Ryz0nd f964c88
tss_api: add wallet_ed25519 public info endpoint
Ryz0nd c571b95
tss_api: update JWT for Ed25519 wallet
Ryz0nd 49ff05b
Merge branch 'main' into dan/teddsa
chemonoworld 871db8d
teddsa: remove teddsa_core
Ryz0nd 1b5b107
teddsa: use frost_ed25519_keplr directly
Ryz0nd 1681238
o
chemonoworld 6fa6f78
teddsa: refactor and implement keygen and signing for Ed25519(combine)
chemonoworld dfa1ccc
teddsa: remove unused teddsa_hooks
Ryz0nd 7c5d4a9
Revert "teddsa: remove unused teddsa_hooks"
Ryz0nd be408b1
teddsa: implement Ed25519 key recovery
Ryz0nd 8396967
teddsa: impl KeyPackageRaw & PublicKeyPackageRaw for JS Object or JS …
chemonoworld 4c77f08
o
chemonoworld e9a48ff
o
chemonoworld 2c216db
teddsa: impl IdentifierRaw
chemonoworld ba23b17
teddsa: impl from_key_package method
chemonoworld e423610
o
chemonoworld 6d5a67d
teddsa: impl to_key_package and to_public_key_package methods
chemonoworld 88120ed
teddsa: refactor CentralizedKeygenOutputRaw
chemonoworld 99d6a19
o
chemonoworld c3072c5
o
chemonoworld b9168bd
teddsa: refactor split and combine
chemonoworld d375432
o
chemonoworld 0e797c6
teddsa: refactor reshare
chemonoworld 7859edd
Revert "teddsa: implement Ed25519 key recovery"
Ryz0nd File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
91 changes: 91 additions & 0 deletions
91
crypto/teddsa/frost_ed25519_keplr_wasm/wasm/src/sss/key_package.rs
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,91 @@ | ||
| //! Key extraction and reconstruction functions for Ed25519 FROST recovery. | ||
|
|
||
| use frost_ed25519_keplr::keys::{ | ||
| KeyPackage, PublicKeyPackage, SigningShare, VerifyingShare, | ||
| }; | ||
| use frost_ed25519_keplr::Identifier; | ||
| use gloo_utils::format::JsValueSerdeExt; | ||
| use wasm_bindgen::prelude::*; | ||
|
|
||
| /// Extract the signing_share (32 bytes) from a serialized KeyPackage. | ||
| /// | ||
| /// This is used to backup the user's signing share on KS nodes via SSS. | ||
| /// The signing_share is the secret scalar value that must be protected. | ||
| #[wasm_bindgen] | ||
| pub fn extract_signing_share(key_package: JsValue) -> Result<JsValue, JsValue> { | ||
| let key_package_bytes: Vec<u8> = key_package | ||
| .into_serde() | ||
| .map_err(|err| JsValue::from_str(&format!("Invalid key_package format: {}", err)))?; | ||
|
|
||
| let key_package = KeyPackage::deserialize(&key_package_bytes) | ||
| .map_err(|e| JsValue::from_str(&format!("Failed to deserialize KeyPackage: {}", e)))?; | ||
|
|
||
| // Extract the signing share (32-byte scalar) | ||
| let signing_share_bytes = key_package.signing_share().serialize(); | ||
|
|
||
| JsValue::from_serde(&signing_share_bytes) | ||
| .map_err(|err| JsValue::from_str(&err.to_string())) | ||
| } | ||
|
|
||
| /// Reconstruct a KeyPackage from a signing_share, public_key_package, and identifier. | ||
| /// | ||
| /// This is used during recovery: after SSS-combining the signing_share from KS nodes, | ||
| /// we need to rebuild the full KeyPackage to use for signing. | ||
| /// | ||
| /// The verifying_share is derived from signing_share (verifying_share = signing_share * G). | ||
| /// The verifying_key comes from the PublicKeyPackage. | ||
| /// min_signers is always 2 (hardcoded for 2-of-2 scheme). | ||
| #[wasm_bindgen] | ||
| pub fn reconstruct_key_package( | ||
| signing_share: JsValue, | ||
| public_key_package: JsValue, | ||
| identifier: JsValue, | ||
| ) -> Result<JsValue, JsValue> { | ||
| // Parse inputs | ||
| let signing_share_bytes: Vec<u8> = signing_share | ||
| .into_serde() | ||
| .map_err(|err| JsValue::from_str(&format!("Invalid signing_share format: {}", err)))?; | ||
|
|
||
| let public_key_package_bytes: Vec<u8> = public_key_package | ||
| .into_serde() | ||
| .map_err(|err| JsValue::from_str(&format!("Invalid public_key_package format: {}", err)))?; | ||
|
|
||
| let identifier_bytes: Vec<u8> = identifier | ||
| .into_serde() | ||
| .map_err(|err| JsValue::from_str(&format!("Invalid identifier format: {}", err)))?; | ||
|
|
||
| // Deserialize components | ||
| let signing_share = SigningShare::deserialize(&signing_share_bytes) | ||
| .map_err(|e| JsValue::from_str(&format!("Failed to deserialize signing_share: {}", e)))?; | ||
|
|
||
| let pubkey_package = PublicKeyPackage::deserialize(&public_key_package_bytes) | ||
| .map_err(|e| JsValue::from_str(&format!("Failed to deserialize public_key_package: {}", e)))?; | ||
|
|
||
| let identifier = Identifier::deserialize(&identifier_bytes) | ||
| .map_err(|e| JsValue::from_str(&format!("Failed to deserialize identifier: {}", e)))?; | ||
|
|
||
| // Derive verifying_share from signing_share: verifying_share = signing_share * G | ||
| // This is implemented via From<SigningShare> for VerifyingShare | ||
| let verifying_share: VerifyingShare = signing_share.clone().into(); | ||
|
|
||
| // Get the group verifying key from PublicKeyPackage | ||
| let verifying_key = *pubkey_package.verifying_key(); | ||
|
|
||
| // Construct the KeyPackage | ||
| // min_signers = 2 for our 2-of-2 scheme | ||
| let key_package = KeyPackage::new( | ||
| identifier, | ||
| signing_share, | ||
| verifying_share, | ||
| verifying_key, | ||
| 2, // min_signers | ||
| ); | ||
|
|
||
| // Serialize and return | ||
| let key_package_bytes = key_package | ||
| .serialize() | ||
| .map_err(|e| JsValue::from_str(&format!("Failed to serialize KeyPackage: {}", e)))?; | ||
|
|
||
| JsValue::from_serde(&key_package_bytes) | ||
| .map_err(|err| JsValue::from_str(&err.to_string())) | ||
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,7 +1,9 @@ | ||
| mod combine; | ||
| mod key_package; | ||
| mod reshare; | ||
| mod split; | ||
|
|
||
| pub use combine::*; | ||
| pub use key_package::*; | ||
| pub use reshare::*; | ||
| pub use split::*; |
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Can you revert this commit: be408b1? The existing serialization methods are not suitable for structure of our project . I'll add methods which are compatible with the existing architecture.