Skip to content

Commit

Permalink
Add anonymous-credentials lib/cxx for Web Discovery
Browse files Browse the repository at this point in the history
  • Loading branch information
DJAndries committed Sep 17, 2024
1 parent c398669 commit 8d4144d
Show file tree
Hide file tree
Showing 60 changed files with 20,192 additions and 0 deletions.
8 changes: 8 additions & 0 deletions components/web_discovery/browser/BUILD.gn
Original file line number Diff line number Diff line change
@@ -0,0 +1,8 @@
# Copyright (c) 2024 The Brave Authors. All rights reserved.
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this file,
# You can obtain one at https://mozilla.org/MPL/2.0/.

static_library("browser") {
deps = [ "anonymous_credentials/rs/cxx:rust_lib" ]
}
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
target
example/main
Cargo.lock
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
# Copyright (c) 2024 The Brave Authors. All rights reserved.
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this file,
# You can obtain one at https://mozilla.org/MPL/2.0/.

import("//build/rust/rust_static_library.gni")

rust_static_library("rust_lib") {
crate_name = "anonymous_credentials_cxx"
crate_root = "src/lib.rs"
allow_unsafe = true

edition = "2021"
sources = [ "src/lib.rs" ]

visibility = [ "//brave/components/web_discovery/browser:*" ]

cxx_bindings = [ "src/lib.rs" ]

deps = [ "//brave/components/web_discovery/browser/anonymous_credentials/rs/lib:rust_lib" ]
}
Original file line number Diff line number Diff line change
@@ -0,0 +1,13 @@
[package]
name = "anonymous-credentials-cxx"
version = "0.1.0"
edition = "2021"
license = "MPL-2.0"

[dependencies]
anonymous-credentials = { version = "0.1", path = "../lib" }
cxx = "1"

[lib]
name = "anonymous_credentials_cxx"
crate-type = ["rlib"]
Original file line number Diff line number Diff line change
@@ -0,0 +1,166 @@
/* Copyright (c) 2024 The Brave Authors. All rights reserved.
* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this file,
* You can obtain one at https://mozilla.org/MPL/2.0/. */

use anonymous_credentials::{
CredentialBIG as InternalCredentialBIG, CredentialManager as InternalCredentialManager,
GroupPublicKey as InternalGroupPublicKey, JoinResponse as InternalJoinResponse, Result,
UserCredentials as InternalUserCredentials,
};

#[cxx::bridge(namespace = "anonymous_credentials")]
mod ffi {
struct StartJoinResult {
gsk: Vec<u8>,
join_request: Vec<u8>,
}
struct VecU8Result {
data: Vec<u8>,
error_message: String,
}
struct GroupPublicKeyResult {
value: Box<GroupPublicKey>,
error_message: String,
}
struct CredentialBIGResult {
value: Box<CredentialBIG>,
error_message: String,
}
struct JoinResponseResult {
value: Box<JoinResponse>,
error_message: String,
}
struct UserCredentialsResult {
value: Box<UserCredentials>,
error_message: String,
}

extern "Rust" {
type CredentialManager;
type GroupPublicKey;
type CredentialBIG;
type JoinResponse;
type UserCredentials;

fn load_group_public_key(data: &[u8]) -> GroupPublicKeyResult;
fn load_credential_big(data: &[u8]) -> CredentialBIGResult;
fn load_join_response(data: &[u8]) -> JoinResponseResult;
fn load_user_credentials(data: &[u8]) -> UserCredentialsResult;

fn new_credential_manager() -> Box<CredentialManager>;
fn new_credential_manager_with_fixed_seed() -> Box<CredentialManager>;
fn start_join(self: &mut CredentialManager, challenge: &[u8]) -> StartJoinResult;
fn finish_join(
self: &mut CredentialManager,
public_key: &GroupPublicKey,
gsk: &CredentialBIG,
join_resp: Box<JoinResponse>,
) -> VecU8Result;
fn set_gsk_and_credentials(
self: &mut CredentialManager,
gsk: Box<CredentialBIG>,
credentials: Box<UserCredentials>,
);
fn sign(self: &mut CredentialManager, msg: &[u8], basename: &[u8]) -> VecU8Result;
}
}

use ffi::*;

macro_rules! wrapper_with_loader {
($internal_type:ident, $wrapped_type:ident, $result_type:ident, $loader_func_name:ident) => {
#[derive(Default)]
struct $wrapped_type($internal_type);

fn $loader_func_name(data: &[u8]) -> $result_type {
match $internal_type::try_from(data) {
Ok(value) => $result_type {
value: Box::new($wrapped_type(value)),
error_message: String::new(),
},
Err(e) => $result_type {
value: Box::new(Default::default()),
error_message: e.to_string(),
},
}
}
};
}

wrapper_with_loader!(
InternalGroupPublicKey,
GroupPublicKey,
GroupPublicKeyResult,
load_group_public_key
);
wrapper_with_loader!(
InternalCredentialBIG,
CredentialBIG,
CredentialBIGResult,
load_credential_big
);
wrapper_with_loader!(InternalJoinResponse, JoinResponse, JoinResponseResult, load_join_response);
wrapper_with_loader!(
InternalUserCredentials,
UserCredentials,
UserCredentialsResult,
load_user_credentials
);

#[allow(dead_code)]
struct CredentialManager(InternalCredentialManager);

fn new_credential_manager() -> Box<CredentialManager> {
Box::new(CredentialManager(InternalCredentialManager::new()))
}

fn new_credential_manager_with_fixed_seed() -> Box<CredentialManager> {
Box::new(CredentialManager(InternalCredentialManager::new_with_seed(&[0u8; 1])))
}

impl CredentialManager {
fn start_join(&mut self, challenge: &[u8]) -> StartJoinResult {
let result = self.0.start_join(challenge);
StartJoinResult {
gsk: result.gsk.to_bytes().to_vec(),
join_request: result.join_msg.to_bytes().to_vec(),
}
}

/// Processes response and returns user credentials
fn finish_join(
&mut self,
public_key: &GroupPublicKey,
gsk: &CredentialBIG,
join_resp: Box<JoinResponse>,
) -> VecU8Result {
|| -> Result<Vec<u8>> {
self.0
.finish_join(&public_key.0, &gsk.0, join_resp.0)
.map(|creds| creds.to_bytes().to_vec())
}()
.into()
}

fn set_gsk_and_credentials(
&mut self,
gsk: Box<CredentialBIG>,
credentials: Box<UserCredentials>,
) {
self.0.set_gsk_and_credentials(gsk.0, credentials.0);
}

fn sign(&mut self, msg: &[u8], basename: &[u8]) -> VecU8Result {
self.0.sign(msg, basename).map(|sig| sig.to_bytes().to_vec()).into()
}
}

impl From<Result<Vec<u8>>> for VecU8Result {
fn from(value: Result<Vec<u8>>) -> Self {
match value {
Ok(data) => VecU8Result { data, error_message: String::new() },
Err(e) => VecU8Result { data: Vec::new(), error_message: e.to_string() },
}
}
}
Original file line number Diff line number Diff line change
@@ -0,0 +1,29 @@
# Copyright (c) 2024 The Brave Authors. All rights reserved.
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this file,
# You can obtain one at https://mozilla.org/MPL/2.0/.

import("//build/rust/rust_static_library.gni")

rust_static_library("rust_lib") {
crate_name = "anonymous_credentials"
crate_root = "src/lib.rs"
sources = [
"src/data.rs",
"src/join.rs",
"src/lib.rs",
"src/sign.rs",
"src/util.rs",
]

visibility = [
"//brave/components/web_discovery/browser/anonymous_credentials/rs/cxx:*",
]

deps = [
"//brave/third_party/rust/brave_miracl/v0_1:lib",
"//brave/third_party/rust/lazy_static/v1:lib",
"//brave/third_party/rust/rand/v0_8:lib",
"//brave/third_party/rust/thiserror/v1:lib",
]
}
Original file line number Diff line number Diff line change
@@ -0,0 +1,19 @@
[package]
name = "anonymous-credentials"
version = "0.1.4"
edition = "2021"
authors = ["Darnell Andries <dandries@brave.com>"]
description = "Implementation of Direct Anonymous Attestation for the Web Discovery Project"
license = "MPL-2.0"
repository = "https://github.com/brave-experiments/anonymous-credentials-rs"
keywords = ["daa", "credentials", "bn254"]
categories = ["cryptography"]

[dependencies]
lazy_static = "1.4"
rand = "0.8"
brave-miracl = { version = "0.1", features = ["std"] }
thiserror = "1.0"

[dev-dependencies]
hex = "0.4"
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
# anonymous-credentials

[![Crates.io](https://img.shields.io/crates/v/anonymous-credentials?style=for-the-badge)](https://crates.io/crates/anonymous-credentials)

Partial implementation of Direct Anonymous Attestation (DAA) for the Web Discovery Project. Only signer functions are available. Performs the same elliptic curve operations as the [original C library](https://github.com/whotracksme/anonymous-credentials).

bn254 is the only supported curve for this library.

## License

This project is licensed under the terms of the [Mozilla Public License 2.0](LICENSE).
Loading

0 comments on commit 8d4144d

Please sign in to comment.