mirror of
https://github.com/logos-blockchain/lssa.git
synced 2026-01-02 13:23:10 +00:00
180 lines
5.3 KiB
Rust
180 lines
5.3 KiB
Rust
use bip39::Mnemonic;
|
|
use common::HashType;
|
|
use nssa_core::{
|
|
NullifierPublicKey, NullifierSecretKey,
|
|
encryption::{IncomingViewingPublicKey, Scalar},
|
|
};
|
|
use rand::{RngCore, rngs::OsRng};
|
|
use serde::{Deserialize, Serialize};
|
|
use sha2::{Digest, digest::FixedOutput};
|
|
|
|
#[derive(Debug)]
|
|
///Seed holder. Non-clonable to ensure that different holders use different seeds.
|
|
/// Produces `TopSecretKeyHolder` objects.
|
|
pub struct SeedHolder {
|
|
//ToDo: Needs to be vec as serde derives is not implemented for [u8; 64]
|
|
pub(crate) seed: Vec<u8>,
|
|
}
|
|
|
|
#[derive(Serialize, Deserialize, Debug, Clone)]
|
|
///Secret spending key object. Can produce `PrivateKeyHolder` objects.
|
|
pub struct SecretSpendingKey(pub(crate) [u8; 32]);
|
|
|
|
pub type IncomingViewingSecretKey = Scalar;
|
|
pub type OutgoingViewingSecretKey = Scalar;
|
|
|
|
#[derive(Serialize, Deserialize, Debug, Clone)]
|
|
///Private key holder. Produces public keys. Can produce address. Can produce shared secret for recepient.
|
|
pub struct PrivateKeyHolder {
|
|
pub nullifier_secret_key: NullifierSecretKey,
|
|
pub(crate) incoming_viewing_secret_key: IncomingViewingSecretKey,
|
|
pub outgoing_viewing_secret_key: OutgoingViewingSecretKey,
|
|
}
|
|
|
|
impl SeedHolder {
|
|
pub fn new_os_random() -> Self {
|
|
let mut enthopy_bytes: [u8; 32] = [0; 32];
|
|
OsRng.fill_bytes(&mut enthopy_bytes);
|
|
|
|
let mnemonic = Mnemonic::from_entropy(&enthopy_bytes).unwrap();
|
|
let seed_wide = mnemonic.to_seed("mnemonic");
|
|
|
|
Self {
|
|
seed: seed_wide.to_vec(),
|
|
}
|
|
}
|
|
|
|
pub fn new_mnemonic(passphrase: String) -> Self {
|
|
// Enthropy bytes must be deterministic as well
|
|
let enthopy_bytes: [u8; 32] = [0; 32];
|
|
|
|
let mnemonic = Mnemonic::from_entropy(&enthopy_bytes).unwrap();
|
|
let seed_wide = mnemonic.to_seed(passphrase);
|
|
|
|
Self {
|
|
seed: seed_wide.to_vec(),
|
|
}
|
|
}
|
|
|
|
pub fn generate_secret_spending_key_hash(&self) -> HashType {
|
|
let mut hash = hmac_sha512::HMAC::mac(&self.seed, "NSSA_seed");
|
|
|
|
for _ in 1..2048 {
|
|
hash = hmac_sha512::HMAC::mac(hash, "NSSA_seed");
|
|
}
|
|
|
|
//Safe unwrap
|
|
*hash.first_chunk::<32>().unwrap()
|
|
}
|
|
|
|
pub fn produce_top_secret_key_holder(&self) -> SecretSpendingKey {
|
|
SecretSpendingKey(self.generate_secret_spending_key_hash())
|
|
}
|
|
}
|
|
|
|
impl SecretSpendingKey {
|
|
pub fn generate_nullifier_secret_key(&self) -> NullifierSecretKey {
|
|
let mut hasher = sha2::Sha256::new();
|
|
|
|
hasher.update("NSSA_keys");
|
|
hasher.update(self.0);
|
|
hasher.update([1u8]);
|
|
hasher.update([0u8; 22]);
|
|
|
|
<NullifierSecretKey>::from(hasher.finalize_fixed())
|
|
}
|
|
|
|
pub fn generate_incoming_viewing_secret_key(&self) -> IncomingViewingSecretKey {
|
|
let mut hasher = sha2::Sha256::new();
|
|
|
|
hasher.update("NSSA_keys");
|
|
hasher.update(self.0);
|
|
hasher.update([2u8]);
|
|
hasher.update([0u8; 22]);
|
|
|
|
<HashType>::from(hasher.finalize_fixed())
|
|
}
|
|
|
|
pub fn generate_outgoing_viewing_secret_key(&self) -> OutgoingViewingSecretKey {
|
|
let mut hasher = sha2::Sha256::new();
|
|
|
|
hasher.update("NSSA_keys");
|
|
hasher.update(self.0);
|
|
hasher.update([3u8]);
|
|
hasher.update([0u8; 22]);
|
|
|
|
<HashType>::from(hasher.finalize_fixed())
|
|
}
|
|
|
|
pub fn produce_private_key_holder(&self) -> PrivateKeyHolder {
|
|
PrivateKeyHolder {
|
|
nullifier_secret_key: self.generate_nullifier_secret_key(),
|
|
incoming_viewing_secret_key: self.generate_incoming_viewing_secret_key(),
|
|
outgoing_viewing_secret_key: self.generate_outgoing_viewing_secret_key(),
|
|
}
|
|
}
|
|
}
|
|
|
|
impl PrivateKeyHolder {
|
|
pub fn generate_nullifier_public_key(&self) -> NullifierPublicKey {
|
|
(&self.nullifier_secret_key).into()
|
|
}
|
|
|
|
pub fn generate_incoming_viewing_public_key(&self) -> IncomingViewingPublicKey {
|
|
IncomingViewingPublicKey::from_scalar(self.incoming_viewing_secret_key)
|
|
}
|
|
}
|
|
|
|
#[cfg(test)]
|
|
mod tests {
|
|
use super::*;
|
|
|
|
#[test]
|
|
fn seed_generation_test() {
|
|
let seed_holder = SeedHolder::new_os_random();
|
|
|
|
assert_eq!(seed_holder.seed.len(), 64);
|
|
}
|
|
|
|
#[test]
|
|
fn ssk_generation_test() {
|
|
let seed_holder = SeedHolder::new_os_random();
|
|
|
|
assert_eq!(seed_holder.seed.len(), 64);
|
|
|
|
let _ = seed_holder.generate_secret_spending_key_hash();
|
|
}
|
|
|
|
#[test]
|
|
fn ivs_generation_test() {
|
|
let seed_holder = SeedHolder::new_os_random();
|
|
|
|
assert_eq!(seed_holder.seed.len(), 64);
|
|
|
|
let top_secret_key_holder = seed_holder.produce_top_secret_key_holder();
|
|
|
|
let _ = top_secret_key_holder.generate_incoming_viewing_secret_key();
|
|
}
|
|
|
|
#[test]
|
|
fn ovs_generation_test() {
|
|
let seed_holder = SeedHolder::new_os_random();
|
|
|
|
assert_eq!(seed_holder.seed.len(), 64);
|
|
|
|
let top_secret_key_holder = seed_holder.produce_top_secret_key_holder();
|
|
|
|
let _ = top_secret_key_holder.generate_outgoing_viewing_secret_key();
|
|
}
|
|
|
|
#[test]
|
|
fn two_seeds_generated_same_from_same_mnemonic() {
|
|
let mnemonic = "test_pass";
|
|
|
|
let seed_holder1 = SeedHolder::new_mnemonic(mnemonic.to_string());
|
|
let seed_holder2 = SeedHolder::new_mnemonic(mnemonic.to_string());
|
|
|
|
assert_eq!(seed_holder1.seed, seed_holder2.seed);
|
|
}
|
|
}
|