dusk-poseidon 0.43.0

Implementation of Poseidon hash algorithm over the Bls12-381 Scalar field.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55

// This Source Code Form is subject to the terms of the Mozilla Public
// License, v. 2.0. If a copy of the MPL was not distributed with this
// file, You can obtain one at http://mozilla.org/MPL/2.0/.
//
// Copyright (c) DUSK NETWORK. All rights reserved.

use alloc::vec::Vec;

use dusk_plonk::prelude::{Composer, Witness, WitnessPoint};

use crate::hades::GadgetPermutation;
use crate::{Domain, Error};

/// This function encrypts a given message with a shared secret point on the
/// jubjub-curve and a bls-scalar nonce using the poseidon hash function.
///
/// The shared secret is expected to be a valid point on the jubjub-curve.
///
/// The cipher-text will always yield exactly one element more than the message.
pub fn encrypt_gadget(
    composer: &mut Composer,
    message: impl AsRef<[Witness]>,
    shared_secret: &WitnessPoint,
    nonce: &Witness,
) -> Result<Vec<Witness>, Error> {
    Ok(dusk_safe::encrypt(
        GadgetPermutation::new(composer),
        Domain::Encryption,
        message,
        &[*shared_secret.x(), *shared_secret.y()],
        nonce,
    )?)
}

/// This function decrypts a message from a given cipher-text with a shared
/// secret point on the jubjub-curve and a bls-scalar nonce using the poseidon
/// hash function.
///
/// The shared secret is expected to be a valid point on the jubjub-curve.
///
/// The cipher-text will always yield exactly one element more than the message.
pub fn decrypt_gadget(
    composer: &mut Composer,
    cipher: impl AsRef<[Witness]>,
    shared_secret: &WitnessPoint,
    nonce: &Witness,
) -> Result<Vec<Witness>, Error> {
    Ok(dusk_safe::decrypt(
        GadgetPermutation::new(composer),
        Domain::Encryption,
        cipher,
        &[*shared_secret.x(), *shared_secret.y()],
        nonce,
    )?)
}