Implement the TACo API module (#263)

nucypher · Sep 12, 2023 · ca9e163 · ca9e163
2 parents c18f996 + e1a0cd1
commit ca9e163
Show file tree

Hide file tree

Showing 12 changed files with 1,131 additions and 127 deletions.
diff --git a/abi/Coordinator.json b/abi/Coordinator.json
diff --git a/src/agents/coordinator.ts b/src/agents/coordinator.ts
@@ -1,5 +1,5 @@
-import { SessionStaticKey } from '@nucypher/nucypher-core';
-import { ethers } from 'ethers';
+import { DkgPublicKey, SessionStaticKey } from '@nucypher/nucypher-core';
+import { BigNumberish, ethers } from 'ethers';
 
 import {
  Coordinator,
@@ -13,12 +13,16 @@ import { DEFAULT_WAIT_N_CONFIRMATIONS, getContract } from './contracts';
 
 export interface CoordinatorRitual {
  initiator: string;
- dkgSize: number;
  initTimestamp: number;
+ endTimestamp: number;
  totalTranscripts: number;
  totalAggregations: number;
- publicKey: BLS12381.G1PointStructOutput;
+ authority: string;
+ dkgSize: number;
+ threshold: number;
  aggregationMismatch: boolean;
+ accessController: string;
+ publicKey: BLS12381.G1PointStructOutput;
  aggregatedTranscript: string;
 }
 
@@ -59,10 +63,18 @@ export class DkgCoordinatorAgent {
  public static async initializeRitual(
  provider: ethers.providers.Provider,
  signer: ethers.Signer,
- providers: ChecksumAddress[]
+ providers: ChecksumAddress[],
+ authority: string,
+ duration: BigNumberish,
+ accessController: string
  ): Promise<number> {
  const Coordinator = await this.connectReadWrite(provider, signer);
- const tx = await Coordinator.initiateRitual(providers);
+ const tx = await Coordinator.initiateRitual(
+ providers,
+ authority,
+ duration,
+ accessController
+ );
  const txReceipt = await tx.wait(DEFAULT_WAIT_N_CONFIRMATIONS);
  const [ritualStartEvent] = txReceipt.events ?? [];
  if (!ritualStartEvent) {
@@ -95,16 +107,25 @@ export class DkgCoordinatorAgent {
  const Coordinator = await this.connectReadOnly(provider);
  // We leave `initiator` undefined because we don't care who the initiator is
  // We leave `successful` undefined because we don't care if the ritual was successful
- const eventFilter = Coordinator.filters.EndRitual(
- ritualId,
- undefined,
- undefined
- );
- Coordinator.once(eventFilter, (_ritualId, _initiator, successful) => {
+ const eventFilter = Coordinator.filters.EndRitual(ritualId, undefined);
+ Coordinator.once(eventFilter, (_ritualId, successful) => {
  callback(successful);
  });
  }
 
+ public static async getRitualIdFromPublicKey(
+ provider: ethers.providers.Provider,
+ dkgPublicKey: DkgPublicKey
+ ): Promise<number> {
+ const Coordinator = await this.connectReadOnly(provider);
+ const dkgPublicKeyBytes = dkgPublicKey.toBytes();
+ const pointStruct: BLS12381.G1PointStruct = {
+ word0: dkgPublicKeyBytes.slice(0, 32),
+ word1: dkgPublicKeyBytes.slice(32, 48),
+ };
+ return await Coordinator.getRitualIdFromPublicKey(pointStruct);
+ }
+
  private static async connectReadOnly(provider: ethers.providers.Provider) {
  return await this.connect(provider);
  }

diff --git a/src/characters/cbd-recipient.ts b/src/characters/cbd-recipient.ts
@@ -14,7 +14,6 @@ import { ethers } from 'ethers';
 
 import { DkgCoordinatorAgent, DkgParticipant } from '../agents/coordinator';
 import { ConditionContext } from '../conditions';
-import { DkgRitual } from '../dkg';
 import { PorterClient } from '../porter';
 import { fromJSON, objectEquals, toJSON } from '../utils';
 
@@ -31,22 +30,22 @@ export class ThresholdDecrypter {
  private readonly threshold: number
  ) {}
 
- public static create(porterUri: string, dkgRitual: DkgRitual) {
+ public static create(porterUri: string, ritualId: number, threshold: number) {
  return new ThresholdDecrypter(
  new PorterClient(porterUri),
- dkgRitual.id,
- dkgRitual.dkgParams.threshold
+ ritualId,
+ threshold
  );
  }
 
  // Retrieve and decrypt ciphertext using provider and condition expression
  public async retrieveAndDecrypt(
- provider: ethers.providers.Provider,
+ web3Provider: ethers.providers.Provider,
  thresholdMessageKit: ThresholdMessageKit,
  signer?: ethers.Signer
  ): Promise<Uint8Array> {
  const decryptionShares = await this.retrieve(
- provider,
+ web3Provider,
  thresholdMessageKit,
  signer
  );

diff --git a/src/conditions/context/context.ts b/src/conditions/context/context.ts
@@ -51,7 +51,7 @@ export class ConditionContext {
  );
  if (conditionRequiresSigner && !this.signer) {
  throw new Error(
- `Condition contains ${USER_ADDRESS_PARAM} context variable and requires a signer to populate`
+ `Signer required to satisfy ${USER_ADDRESS_PARAM} context variable in condition`
  );
  }
 

diff --git a/src/dkg.ts b/src/dkg.ts
@@ -1,49 +1,49 @@
 import { DkgPublicKey } from '@nucypher/nucypher-core';
-import { ethers } from 'ethers';
+import { BigNumberish, ethers } from 'ethers';
 
 import { DkgCoordinatorAgent, DkgRitualState } from './agents/coordinator';
 import { ChecksumAddress } from './types';
-import { fromHexString, objectEquals } from './utils';
-
-export type DkgRitualParameters = {
- sharesNum: number;
- threshold: number;
-};
+import { fromHexString } from './utils';
 
 export interface DkgRitualJSON {
  id: number;
  dkgPublicKey: Uint8Array;
- dkgParams: DkgRitualParameters;
+ sharesNum: number;
+ threshold: number;
  state: DkgRitualState;
 }
 
 export class DkgRitual {
  constructor(
  public readonly id: number,
  public readonly dkgPublicKey: DkgPublicKey,
- public readonly dkgParams: DkgRitualParameters,
+ public readonly sharesNum: number,
+ public readonly threshold: number,
  public readonly state: DkgRitualState
  ) {}
 
  public toObj(): DkgRitualJSON {
  return {
  id: this.id,
  dkgPublicKey: this.dkgPublicKey.toBytes(),
- dkgParams: this.dkgParams,
+ sharesNum: this.sharesNum,
+ threshold: this.threshold,
  state: this.state,
  };
  }
 
  public static fromObj({
  id,
  dkgPublicKey,
- dkgParams,
+ sharesNum,
+ threshold,
  state,
  }: DkgRitualJSON): DkgRitual {
  return new DkgRitual(
  id,
  DkgPublicKey.fromBytes(dkgPublicKey),
- dkgParams,
+ sharesNum,
+ threshold,
  state
  );
  }
@@ -52,28 +52,30 @@ export class DkgRitual {
  return [
  this.id === other.id,
  this.dkgPublicKey.equals(other.dkgPublicKey),
- objectEquals(this.dkgParams, other.dkgParams),
+ this.sharesNum === other.sharesNum,
+ this.threshold === other.threshold,
  this.state === other.state,
  ].every(Boolean);
  }
 }
 
-// TODO: Currently, we're assuming that the threshold is always `floor(sharesNum / 2) + 1`.
-// https://github.com/nucypher/nucypher/issues/3095
-const assumedThreshold = (sharesNum: number): number =>
- Math.floor(sharesNum / 2) + 1;
-
 export class DkgClient {
  public static async initializeRitual(
  provider: ethers.providers.Provider,
  signer: ethers.Signer,
  ursulas: ChecksumAddress[],
+ authority: string,
+ duration: BigNumberish,
+ accessController: string,
  waitUntilEnd = false
  ): Promise<number | undefined> {
  const ritualId = await DkgCoordinatorAgent.initializeRitual(
  provider,
  signer,
- ursulas.sort()
+ ursulas.sort(),
+ authority,
+ duration,
+ accessController
  );
 
  if (waitUntilEnd) {
@@ -111,7 +113,7 @@ export class DkgClient {
  });
  };
 
- public static async getExistingRitual(
+ public static async getRitual(
  provider: ethers.providers.Provider,
  ritualId: number
  ): Promise<DkgRitual> {
@@ -127,14 +129,25 @@ export class DkgClient {
  return new DkgRitual(
  ritualId,
  DkgPublicKey.fromBytes(dkgPkBytes),
- {
- sharesNum: ritual.dkgSize,
- threshold: assumedThreshold(ritual.dkgSize),
- },
+ ritual.dkgSize,
+ ritual.threshold,
  ritualState
  );
  }
 
+ public static async getFinalizedRitual(
+ provider: ethers.providers.Provider,
+ ritualId: number
+ ): Promise<DkgRitual> {
+ const ritual = await DkgClient.getRitual(provider, ritualId);
+ if (ritual.state !== DkgRitualState.FINALIZED) {
+ throw new Error(
+ `Ritual ${ritualId} is not finalized. State: ${ritual.state}`
+ );
+ }
+ return ritual;
+ }
+
  // TODO: Without Validator public key in Coordinator, we cannot verify the
  // transcript. We need to add it to the Coordinator (nucypher-contracts #77).
  // public async verifyRitual(ritualId: number): Promise<boolean> {

diff --git a/src/sdk/strategy/cbd-strategy.ts b/src/sdk/strategy/cbd-strategy.ts
@@ -44,7 +44,7 @@ export class CbdStrategy {
  // // Given that we just initialized the ritual, this should never happen
  // throw new Error('Ritual ID is undefined');
  // }
- const dkgRitual = await DkgClient.getExistingRitual(provider, ritualId);
+ const dkgRitual = await DkgClient.getRitual(provider, ritualId);
  return DeployedCbdStrategy.create(dkgRitual, this.cohort.porterUri);
  }
 
@@ -78,7 +78,11 @@ export class DeployedCbdStrategy {
  ) {}
 
  public static create(dkgRitual: DkgRitual, porterUri: string) {
- const decrypter = ThresholdDecrypter.create(porterUri, dkgRitual);
+ const decrypter = ThresholdDecrypter.create(
+ porterUri,
+ dkgRitual.id,
+ dkgRitual.threshold
+ );
  return new DeployedCbdStrategy(decrypter, dkgRitual.dkgPublicKey);
  }
 
@@ -88,7 +92,7 @@ export class DeployedCbdStrategy {
  porterUri: string,
  ritualId: number
  ): Promise<DeployedCbdStrategy> {
- const dkgRitual = await DkgClient.getExistingRitual(provider, ritualId);
+ const dkgRitual = await DkgClient.getRitual(provider, ritualId);
  return DeployedCbdStrategy.create(dkgRitual, porterUri);
  }
 

diff --git a/src/taco.ts b/src/taco.ts
@@ -0,0 +1,55 @@
+import { DkgPublicKey, ThresholdMessageKit } from '@nucypher/nucypher-core';
+import { ethers } from 'ethers';
+
+import { DkgCoordinatorAgent } from './agents/coordinator';
+import { ThresholdDecrypter } from './characters/cbd-recipient';
+import { Enrico } from './characters/enrico';
+import { Condition, ConditionExpression } from './conditions';
+import { DkgClient } from './dkg';
+import { getPorterUri } from './porter';
+import { toBytes } from './utils';
+
+export const encrypt = async (
+ provider: ethers.providers.Provider,
+ message: string,
+ condition: Condition,
+ ritualId: number
+): Promise<ThresholdMessageKit> => {
+ const dkgRitual = await DkgClient.getFinalizedRitual(provider, ritualId);
+ return await encryptLight(message, condition, dkgRitual.dkgPublicKey);
+};
+
+export const encryptLight = async (
+ message: string,
+ condition: Condition,
+ dkgPublicKey: DkgPublicKey
+): Promise<ThresholdMessageKit> => {
+ const encrypter = new Enrico(dkgPublicKey);
+ const conditionExpr = new ConditionExpression(condition);
+ return encrypter.encryptMessageCbd(toBytes(message), conditionExpr);
+};
+
+export const decrypt = async (
+ provider: ethers.providers.Provider,
+ messageKit: ThresholdMessageKit,
+ signer?: ethers.Signer,
+ porterUri = getPorterUri('tapir')
+): Promise<Uint8Array> => {
+ const ritualId = await DkgCoordinatorAgent.getRitualIdFromPublicKey(
+ provider,
+ messageKit.acp.publicKey
+ );
+ const ritual = await DkgClient.getFinalizedRitual(provider, ritualId);
+ const decrypter = ThresholdDecrypter.create(
+ porterUri,
+ ritualId,
+ ritual.threshold
+ );
+ return decrypter.retrieveAndDecrypt(provider, messageKit, signer);
+};
+
+export const taco = {
+ encrypt,
+ encryptLight,
+ decrypt,
+};