referrerpolicy=no-referrer-when-downgrade

sp_application_crypto/
ecdsa_bls381.rs

1// This file is part of Substrate.
2
3// Copyright (C) Parity Technologies (UK) Ltd.
4// SPDX-License-Identifier: Apache-2.0
5
6// Licensed under the Apache License, Version 2.0 (the "License");
7// you may not use this file except in compliance with the License.
8// You may obtain a copy of the License at
9//
10// 	http://www.apache.org/licenses/LICENSE-2.0
11//
12// Unless required by applicable law or agreed to in writing, software
13// distributed under the License is distributed on an "AS IS" BASIS,
14// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15// See the License for the specific language governing permissions and
16// limitations under the License.
17
18//! ECDSA and BLS12-381 paired crypto applications.
19
20use crate::{KeyTypeId, RuntimePublic};
21use alloc::vec::Vec;
22
23pub use sp_core::paired_crypto::ecdsa_bls381::*;
24use sp_core::{
25	bls381,
26	crypto::CryptoType,
27	ecdsa, ecdsa_bls381,
28	proof_of_possession::{NonAggregatable, ProofOfPossessionVerifier},
29};
30
31mod app {
32	crate::app_crypto!(super, sp_core::testing::ECDSA_BLS381);
33}
34
35#[cfg(feature = "full_crypto")]
36pub use app::Pair as AppPair;
37pub use app::{Public as AppPublic, Signature as AppSignature};
38
39impl RuntimePublic for Public {
40	type Signature = Signature;
41
42	/// Dummy implementation. Returns an empty vector.
43	fn all(_key_type: KeyTypeId) -> Vec<Self> {
44		Vec::new()
45	}
46
47	fn generate_pair(key_type: KeyTypeId, seed: Option<Vec<u8>>) -> Self {
48		sp_io::crypto::ecdsa_bls381_generate(key_type, seed)
49	}
50
51	/// Dummy implementation. Returns `None`.
52	fn sign<M: AsRef<[u8]>>(&self, _key_type: KeyTypeId, _msg: &M) -> Option<Self::Signature> {
53		None
54	}
55
56	/// Dummy implementation. Returns `false`.
57	fn verify<M: AsRef<[u8]>>(&self, _msg: &M, _signature: &Self::Signature) -> bool {
58		false
59	}
60
61	fn generate_proof_of_possession(&mut self, key_type: KeyTypeId) -> Option<Self::Signature> {
62		let pub_key_as_bytes = self.to_raw_vec();
63		let (ecdsa_pub_as_bytes, bls381_pub_as_bytes) = split_pub_key_bytes(&pub_key_as_bytes)?;
64		let ecdsa_proof_of_possession =
65			generate_ecdsa_proof_of_possession(key_type, ecdsa_pub_as_bytes)?;
66		let bls381_proof_of_possession =
67			generate_bls381_proof_of_possession(key_type, bls381_pub_as_bytes)?;
68		let combined_proof_of_possession_raw =
69			combine_proof_of_possession(&ecdsa_proof_of_possession, &bls381_proof_of_possession)?;
70		Some(Self::Signature::from_raw(combined_proof_of_possession_raw))
71	}
72
73	fn verify_proof_of_possession(&self, proof_of_possession: &Self::Signature) -> bool {
74		let proof_of_possession = AppSignature::from(*proof_of_possession);
75		let pub_key = AppPublic::from(*self);
76		<AppPublic as CryptoType>::Pair::verify_proof_of_possession(&proof_of_possession, &pub_key)
77	}
78
79	fn to_raw_vec(&self) -> Vec<u8> {
80		sp_core::crypto::ByteArray::to_raw_vec(self)
81	}
82}
83
84/// Helper: Split public key bytes into ECDSA and BLS381 parts
85fn split_pub_key_bytes(
86	pub_key_as_bytes: &[u8],
87) -> Option<([u8; ecdsa::PUBLIC_KEY_SERIALIZED_SIZE], [u8; bls381::PUBLIC_KEY_SERIALIZED_SIZE])> {
88	let ecdsa_pub_as_bytes =
89		pub_key_as_bytes[..ecdsa::PUBLIC_KEY_SERIALIZED_SIZE].try_into().ok()?;
90	let bls381_pub_as_bytes =
91		pub_key_as_bytes[ecdsa::PUBLIC_KEY_SERIALIZED_SIZE..].try_into().ok()?;
92	Some((ecdsa_pub_as_bytes, bls381_pub_as_bytes))
93}
94
95/// Helper: Generate ECDSA proof of possession
96fn generate_ecdsa_proof_of_possession(
97	key_type: KeyTypeId,
98	ecdsa_pub_as_bytes: [u8; ecdsa::PUBLIC_KEY_SERIALIZED_SIZE],
99) -> Option<ecdsa::Signature> {
100	let ecdsa_pub = ecdsa::Public::from_raw(ecdsa_pub_as_bytes);
101	let proof_of_possession_statement = ecdsa::Pair::proof_of_possession_statement(&ecdsa_pub);
102	sp_io::crypto::ecdsa_sign(key_type, &ecdsa_pub, &proof_of_possession_statement)
103}
104
105/// Helper: Generate BLS381 proof of possession
106fn generate_bls381_proof_of_possession(
107	key_type: KeyTypeId,
108	bls381_pub_as_bytes: [u8; bls381::PUBLIC_KEY_SERIALIZED_SIZE],
109) -> Option<bls381::Signature> {
110	let bls381_pub = bls381::Public::from_raw(bls381_pub_as_bytes);
111	sp_io::crypto::bls381_generate_proof_of_possession(key_type, &bls381_pub)
112}
113
114/// Helper: Combine ECDSA and BLS381 proof_of_possessions into a single raw proof_of_possession
115fn combine_proof_of_possession(
116	ecdsa_proof_of_possession: &ecdsa::Signature,
117	bls381_proof_of_possession: &bls381::Signature,
118) -> Option<[u8; ecdsa_bls381::SIGNATURE_LEN]> {
119	let mut combined_proof_of_possession_raw = [0u8; ecdsa_bls381::SIGNATURE_LEN];
120	combined_proof_of_possession_raw[..ecdsa::SIGNATURE_SERIALIZED_SIZE]
121		.copy_from_slice(ecdsa_proof_of_possession.as_ref());
122	combined_proof_of_possession_raw[ecdsa::SIGNATURE_SERIALIZED_SIZE..]
123		.copy_from_slice(bls381_proof_of_possession.as_ref());
124	Some(combined_proof_of_possession_raw)
125}
126
127#[cfg(test)]
128mod tests {
129	use super::*;
130	use sp_core::{bls381, crypto::Pair, ecdsa};
131
132	/// Helper function to generate test public keys for ECDSA and BLS381
133	fn generate_test_keys(
134	) -> ([u8; ecdsa::PUBLIC_KEY_SERIALIZED_SIZE], [u8; bls381::PUBLIC_KEY_SERIALIZED_SIZE]) {
135		let ecdsa_pair = ecdsa::Pair::generate().0;
136		let bls381_pair = bls381::Pair::generate().0;
137
138		let ecdsa_pub = ecdsa_pair.public();
139		let bls381_pub = bls381_pair.public();
140
141		(ecdsa_pub.to_raw_vec().try_into().unwrap(), bls381_pub.to_raw_vec().try_into().unwrap())
142	}
143
144	#[test]
145	fn test_split_pub_key_bytes() {
146		let (ecdsa_pub, bls381_pub) = generate_test_keys();
147		let mut combined_pub_key = Vec::new();
148		combined_pub_key.extend_from_slice(&ecdsa_pub);
149		combined_pub_key.extend_from_slice(&bls381_pub);
150
151		let result = split_pub_key_bytes(&combined_pub_key).unwrap();
152		assert_eq!(result.0, ecdsa_pub, "ECDSA public key does not match");
153		assert_eq!(result.1, bls381_pub, "BLS381 public key does not match");
154	}
155}