add oberon to okapi (#186)

sethjback · web-flow · commit b99b5058f250 · 2021-10-06T14:40:38.000-07:00
* add oberon to okapi

Co-authored-by: Seth Back &lt;sethjback@gmail.com&gt;
diff --git a/include/okapi.h b/include/okapi.h
@@ -47,6 +47,26 @@ int32_t ldproofs_verify_proof(struct ByteBuffer request,
                               struct ByteBuffer *response,
                               struct ExternError *err);
 
+int32_t oberon_create_token(struct ByteBuffer request,
+                            struct ByteBuffer *response,
+                            struct ExternError *err);
+
+int32_t oberon_blind_token(struct ByteBuffer request,
+                           struct ByteBuffer *response,
+                           struct ExternError *err);
+
+int32_t oberon_unblind_token(struct ByteBuffer request,
+                             struct ByteBuffer *response,
+                             struct ExternError *err);
+
+int32_t oberon_create_proof(struct ByteBuffer request,
+                            struct ByteBuffer *response,
+                            struct ExternError *err);
+
+int32_t oberon_verify_proof(struct ByteBuffer request,
+                            struct ByteBuffer *response,
+                            struct ExternError *err);
+
 void didcomm_byte_buffer_free(struct ByteBuffer v);
 
 void didcomm_string_free(char *s);
diff --git a/native/Cargo.toml b/native/Cargo.toml
@@ -20,6 +20,9 @@ serde_json = "1.0.60"
 serde_jcs = "0.1.0"
 sha2 = { version = "0.9", default-features = false }
 bs58 = "0.3.1"
+oberon = { git = "https://github.com/sethjback/oberon", branch = "fix_proof_bytes" }
+rand = "0.8"
+subtle = "2.4"
 
 [lib]
 name = "okapi"
diff --git a/native/build.rs b/native/build.rs
@@ -43,6 +43,7 @@ fn compile_protobuf_files() {
                 "../proto/examples.proto",
                 "../proto/keys.proto",
                 "../proto/proofs.proto",
+                "../proto/security.proto"
             ],
             &["../proto", "../proto/pbmse"],
         )
@@ -52,12 +53,14 @@ fn compile_protobuf_files() {
     copy("okapi.keys.rs", "./src/proto/okapi_keys.rs").unwrap();
     copy("okapi.transport.rs", "./src/proto/okapi_transport.rs").unwrap();
     copy("okapi.proofs.rs", "./src/proto/okapi_proofs.rs").unwrap();
+    copy("okapi.security.rs", "./src/proto/okapi_security.rs").unwrap();
     copy("google.protobuf.rs", "./src/proto/google_protobuf.rs").unwrap();
     copy("pbmse.rs", "./src/proto/pbmse.rs").unwrap();
     remove_file("okapi.examples.rs").unwrap();
     remove_file("okapi.keys.rs").unwrap();
     remove_file("okapi.transport.rs").unwrap();
     remove_file("okapi.proofs.rs").unwrap();
+    remove_file("okapi.security.rs").unwrap();
     remove_file("google.protobuf.rs").unwrap();
     remove_file("pbmse.rs").unwrap();
 }
diff --git a/native/src/ffi/mod.rs b/native/src/ffi/mod.rs
@@ -1,4 +1,5 @@
 pub mod didcomm;
 pub mod didkey;
 pub mod ldproofs;
+pub mod oberon;
 pub mod utils;
diff --git a/native/src/ffi/oberon.rs b/native/src/ffi/oberon.rs
@@ -0,0 +1,27 @@
+use crate::{proto::security::*, *};
+use ffi_support::{ByteBuffer, ExternError};
+
+#[no_mangle]
+pub extern "C" fn oberon_create_token(request: ByteBuffer, response: &mut ByteBuffer, err: &mut ExternError) -> i32 {
+    c_impl!(CreateOberonTokenRequest, Oberon, token, request, response, err)
+}
+
+#[no_mangle]
+pub extern "C" fn oberon_blind_token(request: ByteBuffer, response: &mut ByteBuffer, err: &mut ExternError) -> i32 {
+    c_impl!(BlindOberonTokenRequest, Oberon, blind, request, response, err)
+}
+
+#[no_mangle]
+pub extern "C" fn oberon_unblind_token(request: ByteBuffer, response: &mut ByteBuffer, err: &mut ExternError) -> i32 {
+    c_impl!(UnBlindOberonTokenRequest, Oberon, blind, request, response, err)
+}
+
+#[no_mangle]
+pub extern "C" fn oberon_create_proof(request: ByteBuffer, response: &mut ByteBuffer, err: &mut ExternError) -> i32 {
+    c_impl!(CreateOberonProofRequest, Oberon, proof, request, response, err)
+}
+
+#[no_mangle]
+pub extern "C" fn oberon_verify_proof(request: ByteBuffer, response: &mut ByteBuffer, err: &mut ExternError) -> i32 {
+    c_impl!(VerifyOberonProofRequest, Oberon, verify, request, response, err)
+}
diff --git a/native/src/lib.rs b/native/src/lib.rs
@@ -5,6 +5,7 @@ use prost::{DecodeError, Message};
 pub struct DIDComm {}
 pub struct DIDKey {}
 pub struct LdProofs {}
+pub struct Oberon {}
 
 #[allow(clippy::ptr_arg)]
 pub trait MessageFormatter {
@@ -42,6 +43,7 @@ mod ffi;
 #[cfg(not(target_arch = "wasm32"))]
 mod jni;
 mod ldproofs;
+mod oberon;
 pub mod proto;
 #[cfg(test)]
 mod tests;
diff --git a/native/src/oberon/mod.rs b/native/src/oberon/mod.rs
@@ -0,0 +1,144 @@
+use crate::{proto::security::*, didcomm::Error};
+use std::convert::TryInto;
+use oberon;
+use rand::prelude::*;
+
+impl crate::Oberon{
+    pub fn token<'a>(request: &CreateOberonTokenRequest) -> Result<CreateOberonTokenReply, Error<'a>> {
+        if request.data.len() == 0 {
+            return Err(Error::InvalidField("must provide data"))
+        }
+
+        let skbytes: [u8; oberon::SecretKey::BYTES] = match request.sk.as_slice().try_into() {
+            Ok(skbytes) => skbytes,
+            Err(_) => return Err(Error::InvalidField("invalid secret key provided"))
+        };
+
+        let sk = oberon::SecretKey::from(&skbytes);
+        let mut token = match oberon::Token::new(&sk, &request.data) {
+            None => return Err(Error::InvalidField("invalid data provided")),
+            Some(token) => token
+        };
+
+        let blind_iter = request.blinding.iter();
+        for blind in blind_iter {
+            let b = oberon::Blinding::new(&blind);
+            token = token - b;
+        }
+
+        Ok(CreateOberonTokenReply {
+            token: token.to_bytes().to_vec()
+        })
+    }
+
+    pub fn proof<'a>(request: &CreateOberonProofRequest) -> Result<CreateOberonProofReply, Error<'a>> {
+        if request.data.len() == 0 {
+            return Err(Error::InvalidField("must provide data"))
+        }
+
+        let tokenbytes: [u8; oberon::Token::BYTES] = match request.token.as_slice().try_into() {
+            Ok(tokenbytes) => tokenbytes,
+            Err(_) => return Err(Error::InvalidField("invalid token provided"))
+        };
+
+        let tkn = oberon::Token::from_bytes(&tokenbytes);
+        if tkn.is_none().into() {
+            return Err(Error::InvalidField("invalid token provided"))
+        }
+        
+        let blinds: Vec<oberon::Blinding> = request.blinding.iter().map(|v|{
+            oberon::Blinding::new(&v)
+        }).collect();
+
+        let mut rng = thread_rng();
+
+        let proof = match oberon::Proof::new(&tkn.unwrap(), &blinds, &request.data, &request.nonce, &mut rng) {
+            None => return Err(Error::Unknown),
+            Some(proof) => proof,
+        };
+        
+        Ok(CreateOberonProofReply{
+            proof: proof.to_bytes().to_vec()
+        })
+    }
+
+    pub fn verify<'a>(request: &VerifyOberonProofRequest) -> Result<VerifyOberonProofReply, Error<'a>> {
+        if request.data.len() == 0 {
+            return Err(Error::InvalidField("must provide data"))
+        }
+
+        let pkbytes: [u8; oberon::PublicKey::BYTES] = match request.pk.as_slice().try_into() {
+            Ok(pkbytes) => pkbytes,
+            Err(_) => return Err(Error::InvalidField("invalid public key provided"))
+        };
+
+        let pk = oberon::PublicKey::from_bytes(&pkbytes);
+        if pk.is_none().into() {
+            return Err(Error::InvalidField("invalid public key provided"))
+        }
+        
+        let proofbytes: [u8; oberon::Proof::BYTES] = match request.proof.as_slice().try_into() {
+            Ok(proofbytes) => proofbytes,
+            Err(_) => return Err(Error::InvalidField("invalid proof provided"))
+        };
+        
+        let proof = oberon::Proof::from_bytes(&proofbytes);
+        if proof.is_none().into() {
+            return Err(Error::InvalidField("invalid proof provided"))
+        }
+        
+        let valid = proof.unwrap().open(pk.unwrap(), &*request.data, &request.nonce);
+
+        Ok(VerifyOberonProofReply{
+            valid: valid.into()
+        })
+    }
+
+    pub fn blind<'a>(request: &BlindOberonTokenRequest) -> Result<BlindOberonTokenReply, Error<'a>> {
+        let tokenbytes: [u8; oberon::Token::BYTES] = match request.token.as_slice().try_into() {
+            Ok(tokenbytes) => tokenbytes,
+            Err(_) => return Err(Error::InvalidField("invalid token provided"))
+        };
+
+        let tkn = oberon::Token::from_bytes(&tokenbytes);
+        if tkn.is_none().into() {
+            return Err(Error::InvalidField("invalid token provided"))
+        }
+
+        let mut tkn = tkn.unwrap();
+
+        let blind_iter = request.blinding.iter();
+        for blind in blind_iter {
+            let b = oberon::Blinding::new(&blind);
+            tkn = tkn - b;
+        }
+
+        Ok(BlindOberonTokenReply{
+            token: tkn.to_bytes().to_vec()
+        })
+    }
+
+    pub fn unblind<'a>(request: &UnBlindOberonTokenRequest) -> Result<BlindOberonTokenReply, Error<'a>> {
+        let tokenbytes: [u8; oberon::Token::BYTES] = match request.token.as_slice().try_into() {
+            Ok(tokenbytes) => tokenbytes,
+            Err(_) => return Err(Error::InvalidField("invalid token provided"))
+        };
+
+        let tkn = oberon::Token::from_bytes(&tokenbytes);
+        if tkn.is_none().into() {
+            return Err(Error::InvalidField("invalid token provided"))
+        }
+
+        let mut tkn = tkn.unwrap();
+
+        let blind_iter = request.blinding.iter();
+        for blind in blind_iter {
+            let b = oberon::Blinding::new(&blind);
+            tkn = tkn + b;
+        }
+
+        Ok(BlindOberonTokenReply{
+            token: tkn.to_bytes().to_vec()
+        })
+    }
+}
diff --git a/native/src/proto/mod.rs b/native/src/proto/mod.rs
@@ -282,7 +282,11 @@ pub mod transport {
 pub mod proofs {
     pub use crate::proto::okapi_proofs::*;
 }
+pub mod security {
+    pub use crate::proto::okapi_security::*;
+}
 pub mod okapi_keys;
 pub mod okapi_proofs;
 pub mod okapi_transport;
+pub mod okapi_security;
 pub mod pbmse;
diff --git a/native/src/proto/okapi_security.rs b/native/src/proto/okapi_security.rs
@@ -0,0 +1,110 @@
+/// Create a new oberon token
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CreateOberonTokenRequest {
+    /// raw BLS key bytes
+    #[prost(bytes="vec", tag="1")]
+    pub sk: ::prost::alloc::vec::Vec<u8>,
+    /// data is the public part of the oberon protocol and can be any data
+    #[prost(bytes="vec", tag="2")]
+    pub data: ::prost::alloc::vec::Vec<u8>,
+    /// optional blinding for the token
+    #[prost(bytes="vec", repeated, tag="3")]
+    pub blinding: ::prost::alloc::vec::Vec<::prost::alloc::vec::Vec<u8>>,
+}
+/// Contains the token with optional blinding 
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CreateOberonTokenReply {
+    /// raw token bytes
+    #[prost(bytes="vec", tag="1")]
+    pub token: ::prost::alloc::vec::Vec<u8>,
+}
+/// Create a proof that holder knows the token
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CreateOberonProofRequest {
+    /// data used to create the token
+    #[prost(bytes="vec", tag="1")]
+    pub data: ::prost::alloc::vec::Vec<u8>,
+    /// token data
+    #[prost(bytes="vec", tag="2")]
+    pub token: ::prost::alloc::vec::Vec<u8>,
+    /// any blindings used to create the token
+    #[prost(bytes="vec", repeated, tag="3")]
+    pub blinding: ::prost::alloc::vec::Vec<::prost::alloc::vec::Vec<u8>>,
+    /// nonce for generating the proof
+    #[prost(bytes="vec", tag="4")]
+    pub nonce: ::prost::alloc::vec::Vec<u8>,
+}
+/// Contains the token proof
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct CreateOberonProofReply {
+    /// raw proof bytes
+    #[prost(bytes="vec", tag="2")]
+    pub proof: ::prost::alloc::vec::Vec<u8>,
+}
+/// Verify the presented proof is valid
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct VerifyOberonProofRequest {
+    /// raw proof bytes returned from CreateProof
+    #[prost(bytes="vec", tag="1")]
+    pub proof: ::prost::alloc::vec::Vec<u8>,
+    /// data used to create the token
+    #[prost(bytes="vec", tag="2")]
+    pub data: ::prost::alloc::vec::Vec<u8>,
+    /// nonce used to generate the proof
+    #[prost(bytes="vec", tag="3")]
+    pub nonce: ::prost::alloc::vec::Vec<u8>,
+    /// public key that was used to generate the token
+    #[prost(bytes="vec", tag="4")]
+    pub pk: ::prost::alloc::vec::Vec<u8>,
+}
+/// Contains the status of the proof validation
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct VerifyOberonProofReply {
+    /// whether the given proof was valid
+    #[prost(bool, tag="1")]
+    pub valid: bool,
+}
+/// Blind an oberon token 
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BlindOberonTokenRequest {
+    /// raw token bytes
+    #[prost(bytes="vec", tag="1")]
+    pub token: ::prost::alloc::vec::Vec<u8>,
+    /// blinding to apply to the token
+    #[prost(bytes="vec", repeated, tag="2")]
+    pub blinding: ::prost::alloc::vec::Vec<::prost::alloc::vec::Vec<u8>>,
+}
+/// Contains the blinded token reply
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct BlindOberonTokenReply {
+    /// raw blinded token bytes
+    #[prost(bytes="vec", tag="1")]
+    pub token: ::prost::alloc::vec::Vec<u8>,
+}
+/// UnBlind an oberon token 
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct UnBlindOberonTokenRequest {
+    /// raw token bytes
+    #[prost(bytes="vec", tag="1")]
+    pub token: ::prost::alloc::vec::Vec<u8>,
+    /// blinding to remove from the token
+    #[prost(bytes="vec", repeated, tag="2")]
+    pub blinding: ::prost::alloc::vec::Vec<::prost::alloc::vec::Vec<u8>>,
+}
+/// Contains the unblinded token reply
+#[derive(::serde::Serialize, ::serde::Deserialize)]
+#[derive(Clone, PartialEq, ::prost::Message)]
+pub struct UnBlindOberonTokenReply {
+    /// raw unblinded token bytes
+    #[prost(bytes="vec", tag="1")]
+    pub token: ::prost::alloc::vec::Vec<u8>,
+}
diff --git a/native/src/tests/mod.rs b/native/src/tests/mod.rs
@@ -1,3 +1,4 @@
 pub mod keys;
 pub mod pack;
 pub mod sign;
+pub mod oberon;
diff --git a/native/src/tests/oberon.rs b/native/src/tests/oberon.rs
diff --git a/proto/security.proto b/proto/security.proto
