lotus/lib/sigs/bls/init.go

package bls

import (
	"crypto/rand"
	"fmt"

	"github.com/filecoin-project/go-address"
	"github.com/filecoin-project/go-state-types/crypto"

	ffi "github.com/filecoin-project/filecoin-ffi"

	"github.com/filecoin-project/lotus/lib/sigs"
)

const DST = string("BLS_SIG_BLS12381G2_XMD:SHA-256_SSWU_RO_NUL_")

type SecretKey = ffi.PrivateKey
type PublicKey = ffi.PublicKey
type Signature = ffi.Signature
type AggregateSignature = ffi.Signature

type blsSigner struct{}

func (blsSigner) GenPrivate() ([]byte, error) {
	// Generate 32 bytes of randomness
	var ikm [32]byte
	_, err := rand.Read(ikm[:])
	if err != nil {
		return nil, fmt.Errorf("bls signature error generating random data")
	}
	// Note private keys seem to be serialized little-endian!
	sk := ffi.PrivateKeyGenerateWithSeed(ikm)
	return sk[:], nil
}

func (blsSigner) ToPublic(priv []byte) ([]byte, error) {
	if priv == nil || len(priv) != ffi.PrivateKeyBytes {
		return nil, fmt.Errorf("bls signature invalid private key")
	}

	sk := new(SecretKey)
	copy(sk[:], priv[:ffi.PrivateKeyBytes])

	pubkey := ffi.PrivateKeyPublicKey(*sk)

	return pubkey[:], nil
}

func (blsSigner) Sign(p []byte, msg []byte) ([]byte, error) {
	if p == nil || len(p) != ffi.PrivateKeyBytes {
		return nil, fmt.Errorf("bls signature invalid private key")
	}

	sk := new(SecretKey)
	copy(sk[:], p[:ffi.PrivateKeyBytes])

	sig := ffi.PrivateKeySign(*sk, msg)

	return sig[:], nil
}

func (blsSigner) Verify(sig []byte, a address.Address, msg []byte) error {
	payload := a.Payload()
	if sig == nil || len(sig) != ffi.SignatureBytes || len(payload) != ffi.PublicKeyBytes {
		return fmt.Errorf("bls signature failed to verify")
	}

	pk := new(PublicKey)
	copy(pk[:], payload[:ffi.PublicKeyBytes])

	sigS := new(Signature)
	copy(sigS[:], sig[:ffi.SignatureBytes])

	msgs := [1]ffi.Message{msg}
	pks := [1]PublicKey{*pk}

	if !ffi.HashVerify(sigS, msgs[:], pks[:]) {
		return fmt.Errorf("bls signature failed to verify")
	}

	return nil
}

func init() {
	sigs.RegisterSignature(crypto.SigTypeBLS, blsSigner{})
}
Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`package bls`

			`import (`
Integrate blst signature library: https://github.com/supranational/blst 2020-07-26 01:38:18 +00:00			`"crypto/rand"`
Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`"fmt"`

			`"github.com/filecoin-project/go-address"`
Update to specs v0.9.6 2020-09-07 03:49:10 +00:00			`"github.com/filecoin-project/go-state-types/crypto"`
Use specs-actors ignatures 2020-02-12 23:52:36 +00:00
refactor: switch to filecoin-ffi bls api for bls signatures 2021-01-19 16:45:39 +00:00			`ffi "github.com/filecoin-project/filecoin-ffi"`
Use specs-actors ignatures 2020-02-12 23:52:36 +00:00
Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`"github.com/filecoin-project/lotus/lib/sigs"`
			`)`

Integrate blst signature library: https://github.com/supranational/blst 2020-07-26 01:38:18 +00:00			`const DST = string("BLS_SIG_BLS12381G2_XMD:SHA-256_SSWU_RO_NUL_")`

refactor: switch to filecoin-ffi bls api for bls signatures 2021-01-19 16:45:39 +00:00			`type SecretKey = ffi.PrivateKey`
			`type PublicKey = ffi.PublicKey`
			`type Signature = ffi.Signature`
			`type AggregateSignature = ffi.Signature`
Integrate blst signature library: https://github.com/supranational/blst 2020-07-26 01:38:18 +00:00
Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`type blsSigner struct{}`

			`func (blsSigner) GenPrivate() ([]byte, error) {`
Integrate blst signature library: https://github.com/supranational/blst 2020-07-26 01:38:18 +00:00			`// Generate 32 bytes of randomness`
			`var ikm [32]byte`
			`_, err := rand.Read(ikm[:])`
			`if err != nil {`
			`return nil, fmt.Errorf("bls signature error generating random data")`
			`}`
Fixes for failed CI tests 2020-07-26 04:46:23 +00:00			`// Note private keys seem to be serialized little-endian!`
refactor: switch to filecoin-ffi bls api for bls signatures 2021-01-19 16:45:39 +00:00			`sk := ffi.PrivateKeyGenerateWithSeed(ikm)`
Fix lint 2021-01-25 13:02:58 +00:00			`return sk[:], nil`
Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`}`

			`func (blsSigner) ToPublic(priv []byte) ([]byte, error) {`
refactor: switch to filecoin-ffi bls api for bls signatures 2021-01-19 16:45:39 +00:00			`if priv == nil \|\| len(priv) != ffi.PrivateKeyBytes {`
Integrate blst signature library: https://github.com/supranational/blst 2020-07-26 01:38:18 +00:00			`return nil, fmt.Errorf("bls signature invalid private key")`
			`}`
refactor: switch to filecoin-ffi bls api for bls signatures 2021-01-19 16:45:39 +00:00
			`sk := new(SecretKey)`
			`copy(sk[:], priv[:ffi.PrivateKeyBytes])`

			`pubkey := ffi.PrivateKeyPublicKey(*sk)`

Fix lint 2021-01-25 13:02:58 +00:00			`return pubkey[:], nil`
Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`}`

			`func (blsSigner) Sign(p []byte, msg []byte) ([]byte, error) {`
refactor: switch to filecoin-ffi bls api for bls signatures 2021-01-19 16:45:39 +00:00			`if p == nil \|\| len(p) != ffi.PrivateKeyBytes {`
Integrate blst signature library: https://github.com/supranational/blst 2020-07-26 01:38:18 +00:00			`return nil, fmt.Errorf("bls signature invalid private key")`
			`}`
refactor: switch to filecoin-ffi bls api for bls signatures 2021-01-19 16:45:39 +00:00
			`sk := new(SecretKey)`
			`copy(sk[:], p[:ffi.PrivateKeyBytes])`

			`sig := ffi.PrivateKeySign(*sk, msg)`

Fix lint 2021-01-25 13:02:58 +00:00			`return sig[:], nil`
Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`}`

			`func (blsSigner) Verify(sig []byte, a address.Address, msg []byte) error {`
refactor: switch to filecoin-ffi bls api for bls signatures 2021-01-19 16:45:39 +00:00			`payload := a.Payload()`
			`if sig == nil \|\| len(sig) != ffi.SignatureBytes \|\| len(payload) != ffi.PublicKeyBytes {`
Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`return fmt.Errorf("bls signature failed to verify")`
			`}`
refactor: switch to filecoin-ffi bls api for bls signatures 2021-01-19 16:45:39 +00:00
			`pk := new(PublicKey)`
			`copy(pk[:], payload[:ffi.PublicKeyBytes])`

			`sigS := new(Signature)`
			`copy(sigS[:], sig[:ffi.SignatureBytes])`

			`msgs := [1]ffi.Message{msg}`
			`pks := [1]PublicKey{*pk}`

			`if !ffi.HashVerify(sigS, msgs[:], pks[:]) {`
			`return fmt.Errorf("bls signature failed to verify")`
			`}`

Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`return nil`
			`}`

			`func init() {`
Use specs-actors ignatures 2020-02-12 23:52:36 +00:00			`sigs.RegisterSignature(crypto.SigTypeBLS, blsSigner{})`
Don't depend on ffi Signed-off-by: Jakub Sztandera <kubuxu@protocol.ai> 2020-01-30 23:48:25 +00:00			`}`