concordium_base 10.0.0-alpha.0

use crate::{common::*, curve_arithmetic::*, pedersen_commitment::Commitment};

use rand::*;
use std::ops::Deref;

use std::rc::Rc;

#[derive(Debug, Serialize)]
/// A message to sign. In contrast to [KnownMessage](super::KnownMessage) this
/// is a single group element that must be constructed in a special way. The
/// idea is that this message is a commitment to some values. The person signing
/// only knows the commitment, but does not know the values they are signing
/// directly.
pub struct UnknownMessage<C: Pairing>(pub C::G1);

impl<C: Pairing> PartialEq for UnknownMessage<C> {
    fn eq(&self, other: &Self) -> bool {
        self.0 == other.0
    }
}

impl<C: Pairing> Eq for UnknownMessage<C> {}

/// This trait allows automatic conversion of `&Value<C>` to `&C::Scalar`.
impl<P: Pairing> Deref for UnknownMessage<P> {
    type Target = P::G1;

    fn deref(&self) -> &P::G1 {
        &self.0
    }
}

impl<P: Pairing> From<Commitment<P::G1>> for UnknownMessage<P> {
    fn from(cmm: Commitment<P::G1>) -> Self {
        UnknownMessage(cmm.0)
    }
}

/// Randomness used to retrieve signature on the message from signature on an
/// unknown message.
#[derive(Debug, Serialize)]
#[repr(transparent)]
pub struct SigRetrievalRandomness<P: Pairing> {
    pub randomness: Rc<Secret<P::ScalarField>>,
}

/// This trait allows automatic conversion of `&SigRetrievalRandomness<C>` to
/// `&C::Scalar`.
impl<C: Pairing> std::ops::Deref for SigRetrievalRandomness<C> {
    type Target = C::ScalarField;

    fn deref(&self) -> &C::ScalarField {
        &self.randomness
    }
}

impl<C: Pairing> AsRef<C::ScalarField> for SigRetrievalRandomness<C> {
    fn as_ref(&self) -> &C::ScalarField {
        &self.randomness
    }
}

impl<C: Pairing> SigRetrievalRandomness<C> {
    pub fn new(secret: C::ScalarField) -> Self {
        SigRetrievalRandomness {
            randomness: Rc::new(Secret::new(secret)),
        }
    }

    /// Generate a non-zero SigRetrievalRandomness `SigRetrievalRandomness` from
    /// a `csprng`.
    pub fn generate_non_zero<T: Rng>(csprng: &mut T) -> SigRetrievalRandomness<C> {
        SigRetrievalRandomness::new(C::generate_non_zero_scalar(csprng))
    }
}

impl<C: Pairing> UnknownMessage<C> {
    /// Generate a valid, but arbitrary message. Exposed because it can be used
    /// for testing protocols built on top of the signature scheme.
    pub fn arbitrary<T: Rng>(csprng: &mut T) -> UnknownMessage<C> {
        UnknownMessage(C::G1::generate(csprng))
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    type Bls12 = ark_ec::models::bls12::Bls12<ark_bls12_381::Config>;

    macro_rules! macro_test_unknown_message_to_byte_conversion {
        ($function_name:ident, $pairing_type:path) => {
            #[test]
            pub fn $function_name() {
                let mut csprng = thread_rng();
                for _i in 0..20 {
                    let x = UnknownMessage::<$pairing_type>::arbitrary(&mut csprng);
                    let y = serialize_deserialize(&x);
                    assert!(y.is_ok());
                    assert_eq!(x, y.unwrap());
                }
            }
        };
    }
    macro_test_unknown_message_to_byte_conversion!(
        unknown_message_to_byte_conversion_bls12_381,
        Bls12
    );
}