// COPIED FROM https://github.com/celo-org/celo-threshold-bls-rs/blob/master/crates/threshold-bls-ffi/cross/threshold.h // DO NOT MODIFY DIRECTLY #include #include #include #include /** * A BLS12-377 Keypair */ typedef struct Keypair Keypair; typedef struct Keys Keys; /** * A polynomial that is using a scalar for the variable x and a generic * element for the coefficients. The coefficients must be able to multiply * the type of the variable, which is always a scalar. */ typedef struct Poly_PrivateKey__PublicKey Poly_PrivateKey__PublicKey; typedef struct Share_PrivateKey Share_PrivateKey; /** * Blinding a message before requesting a signature requires the usage of a * private blinding factor that is called a Token. To unblind the signature * afterwards, one needs the same token as what the blinding method returned. * In this blind signature scheme, the token is simply a field element. */ typedef struct Token_PrivateKey Token_PrivateKey; /** * Data structure which is used to store buffers of varying length */ typedef struct { /** * Pointer to the message */ uint8_t *ptr; /** * The length of the buffer */ size_t len; } Buffer; typedef struct Private PrivateKey; typedef struct Public PublicKey; typedef struct Signature Signature; /** * Given a message and a seed, it will blind it and return the blinded message * * * message: A cleartext message which you want to blind * * seed: A 32 byte seed for randomness. You can get one securely via `crypto.randomBytes(32)` * * blinded_message: Pointer to the memory where the blinded message will be written to * * The `BlindedMessage.blinding_factor` should be saved for unblinding any * signatures on `BlindedMessage.message` * * # Safety * - If the same seed is used twice, the blinded result WILL be the same * * Returns true if successful, otherwise false. */ void blind(const Buffer *message, const Buffer *seed, Buffer *blinded_message_out, Token_PrivateKey **blinding_factor_out); /** * Combines a flattened vector of partial signatures to a single threshold signature * * # Safety * - This function does not check if the signatures are valid! */ bool combine(uintptr_t threshold, const Buffer *signatures, Buffer *asig); bool deserialize_privkey(const uint8_t *privkey_buf, PrivateKey **privkey); bool deserialize_pubkey(const uint8_t *pubkey_buf, PublicKey **pubkey); bool deserialize_sig(const uint8_t *sig_buf, Signature **sig); void destroy_privkey(PrivateKey *private_key); void destroy_pubkey(PublicKey *public_key); void destroy_sig(Signature *signature); void destroy_token(Token_PrivateKey *token); void free_vector(uint8_t *bytes, size_t len); /** * Generates a single private key from the provided seed. * * # Safety * * The seed MUST be at least 32 bytes long */ void keygen(const Buffer *seed, Keypair *keypair); /** * Gets the number of shares corresponding to the provided `Keys` pointer */ uintptr_t num_shares(const Keys *keys); /** * Signs the message with the provided **share** of the private key and returns the **partial** * signature. */ bool partial_sign(const Share_PrivateKey *share, const Buffer *message, Buffer *signature); /** * Verifies a partial signature against the public key corresponding to the secret shared * polynomial. */ bool partial_verify(const Poly_PrivateKey__PublicKey *polynomial, const Buffer *blinded_message, const Buffer *sig); /** * Gets a pointer to the polynomial corresponding to the provided `Keys` pointer */ const Poly_PrivateKey__PublicKey *polynomial_ptr(const Keys *keys); /** * Gets a pointer to the private key corresponding to the provided `KeyPair` pointer */ const PrivateKey *private_key_ptr(const Keypair *keypair); /** * Gets a pointer to the public key corresponding to the provided `KeyPair` pointer */ const PublicKey *public_key_ptr(const Keypair *keypair); void serialize_privkey(const PrivateKey *privkey, uint8_t **privkey_buf); void serialize_pubkey(const PublicKey *pubkey, uint8_t **pubkey_buf); void serialize_sig(const Signature *sig, uint8_t **sig_buf); /** * Gets the `index`'th share corresponding to the provided `Keys` pointer */ const Share_PrivateKey *share_ptr(const Keys *keys, uintptr_t index); /** * Signs the message with the provided private key and returns the signature * * # Throws * * - If signing fails */ bool sign(const PrivateKey *private_key, const Buffer *message, Buffer *signature); /** * Gets a pointer to the threshold public key corresponding to the provided `Keys` pointer */ const PublicKey *threshold_public_key_ptr(const Keys *keys); /** * Given a blinded signature and a blinding_factor used for blinding, it returns the signature * unblinded * * * blinded_signature: A message which has been blinded or a blind signature * * blinding_factor: The blinding_factor used to blind the message * * unblinded_signature: Pointer to the memory where the unblinded signature will be written to * * Returns true if successful, otherwise false. */ bool unblind(const Buffer *blinded_signature, const Token_PrivateKey *blinding_factor, Buffer *unblinded_signature); /** * Verifies the signature after it has been unblinded. Users will call this on the * threshold signature against the full public key * * * public_key: The public key used to sign the message * * message: The message which was signed * * signature: The signature which was produced on the message * * Returns true if successful, otherwise false. */ bool verify(const PublicKey *public_key, const Buffer *message, const Buffer *signature);