@toruslabs/rss-client - npm Package Compare versions

@toruslabs/rss-client

Package Overview

Dependencies

124

Advanced tools

Install Socket

Detect and block malicious and high-risk dependencies

Install

Comparing version 1.4.1 to 1.5.0

dist/types/rss.d.ts

		@@ -10,2 +10,11 @@ import { CustomOptions, Data } from "@toruslabs/http-helpers";
		export declare function postEndpoint<T>(endpoint: string \| IMockServer, path: string, data?: Data, options_?: RequestInit, customOptions?: CustomOptions): Promise<any>;
		export type ImportOptions = {
		importKey: BN;
		newLabel: string;
		sigs: any[];
		dkgNewPub: PointHex;
		targetIndexes: number[];
		selectedServers: number[];
		factorPubs: PointHex[];
		};
		export type RSSClientOptions = {
		@@ -73,4 +82,5 @@ tssPubKey: PointHex;
		constructor(opts: RSSClientOptions);
		import(opts: ImportOptions): Promise<RefreshResponse[]>;
		refresh(opts: RefreshOptions): Promise<RefreshResponse[]>;
		}
		export declare function recover(opts: RecoverOptions): Promise<RecoverResponse>;

package.json

		{
		"name": "@toruslabs/rss-client",
		"version": "1.4.1",
		"version": "1.5.0",
		"description": "RSS Client",
		@@ -5,0 +5,0 @@ "main": "dist/rssClient.cjs.js",

src/mock.ts

		@@ -72,3 +72,3 @@ /* eslint-disable camelcase */
		}
		if (b.old_user_share_index !== 2 && b.old_user_share_index !== 3) {
		if (b.server_set === "old" && b.old_user_share_index !== 2 && b.old_user_share_index !== 3) {
		throw new Error("invalid index for user share");
		@@ -318,3 +318,3 @@ }
		}
		if (b.old_user_share_index !== 2 && b.old_user_share_index !== 3) {
		if (b.server_set === "old" && b.old_user_share_index !== 2 && b.old_user_share_index !== 3) {
		throw new Error("invalid index for user share");
		@@ -321,0 +321,0 @@ }

243

src/rss.ts

		@@ -45,2 +45,12 @@ import { generatePrivate } from "@toruslabs/eccrypto";

		export type ImportOptions = {
		importKey: BN;
		newLabel: string;
		sigs: any[];
		dkgNewPub: PointHex;
		targetIndexes: number[];
		selectedServers: number[];
		factorPubs: PointHex[];
		};

		export type RSSClientOptions = {
		@@ -145,2 +155,235 @@ tssPubKey: PointHex;

		async import(opts: ImportOptions): Promise<RefreshResponse[]> {
		const { importKey, newLabel, sigs, dkgNewPub, targetIndexes, selectedServers, factorPubs } = opts;
		if (factorPubs.length !== targetIndexes.length) throw new Error("inconsistent factorPubs and targetIndexes lengths");
		const serversInfo: ServersInfo = {
		pubkeys: this.serverPubKeys,
		selected: selectedServers,
		threshold: this.serverThreshold,
		};

		// send requests to T servers (import only requires the T new servers)
		const rssRound1Proms = selectedServers.map((ind) => {
		const serverEndpoint = this.serverEndpoints[ind - 1];
		return postEndpoint<RSSRound1Response>(serverEndpoint, "/rss_round_1", {
		round_name: "rss_round_1",
		server_set: "new",
		server_index: ind,
		new_servers_info: serversInfo,
		user_temp_pubkey: hexPoint(this.tempPubKey),
		target_index: targetIndexes,
		auth: {
		label: newLabel, // TODO: undesigned
		sigs,
		},
		});
		});

		// front end also generates hierarchical secret sharing
		// - calculate lagrange coeffs
		const _finalLagrangeCoeffs = targetIndexes.map((target) => getLagrangeCoeffs([0, 1], 0, target).umod(ecCurve.n));
		const _masterPolys = [];
		const _masterPolyCommits = [];
		const _serverPolys = [];
		const _serverPolyCommits = [];
		for (let i = 0; i < _finalLagrangeCoeffs.length; i++) {
		const _lc = _finalLagrangeCoeffs[i];
		const _m = generatePolynomial(1, _lc.mul(importKey).umod(ecCurve.n));
		_masterPolys.push(_m);
		_masterPolyCommits.push(
		_m.map((coeff) => {
		const _gCoeff = ecCurve.g.mul(coeff);
		return hexPoint(_gCoeff);
		})
		);
		const _s = generatePolynomial(serversInfo.threshold - 1, getShare(_m, 1));
		_serverPolys.push(_s);
		_serverPolyCommits.push(_s.map((coeff) => hexPoint(ecCurve.g.mul(coeff))));
		}
		const _serverEncs = [];
		const _userEncs = [];
		for (let i = 0; i < _masterPolys.length; i++) {
		_serverEncs.push([]); // for each target_index, create an array of server encryptions
		}
		// - generate N + 1 shares
		for (let i = 0; i < targetIndexes.length; i++) {
		const _masterPoly = _masterPolys[i];
		_userEncs.push(
		await encrypt(
		Buffer.from(`04${hexPoint(this.tempPubKey).x.padStart(64, "0")}${hexPoint(this.tempPubKey).y.padStart(64, "0")}`, "hex"),
		Buffer.from(getShare(_masterPoly, 99).toString(16, 64), "hex")
		)
		);

		const _serverPoly = _serverPolys[i];
		const _serverEnc = _serverEncs[i];
		for (let j = 0; j < serversInfo.pubkeys.length; j++) {
		const _pub = serversInfo.pubkeys[j];
		_serverEnc.push(
		await encrypt(
		Buffer.from(`04${_pub.x.padStart(64, "0")}${_pub.y.padStart(64, "0")}`, "hex"),
		Buffer.from(getShare(_serverPoly, j + 1).toString(16, 64), "hex")
		)
		);
		}
		}
		const _data = [];
		for (let i = 0; i < targetIndexes.length; i++) {
		_data.push({
		master_poly_commits: _masterPolyCommits[i],
		server_poly_commits: _serverPolyCommits[i],
		target_encryptions: {
		user_enc: _userEncs[i],
		server_encs: _serverEncs[i],
		},
		});
		}

		// add front end generated hierarchical sharing to the list
		rssRound1Proms.push(
		new Promise((resolve) => {
		resolve({
		target_index: targetIndexes,
		data: _data,
		});
		})
		);

		// await responses
		const rssRound1Responses = await Promise.all(rssRound1Proms);

		// sum up all master poly commits and sum up all server poly commits
		const sums = targetIndexes.map((_, i) => {
		for (let j = 0; j < rssRound1Responses.length; j++) {
		const rssRound1ResponseData = rssRound1Responses[j].data[i];
		const { master_poly_commits: masterPolyCommits, server_poly_commits: serverPolyCommits } = rssRound1ResponseData;
		if (masterPolyCommits.length !== 2) throw new Error("incorrect number of coeffs for master poly commits");
		if (serverPolyCommits.length !== this.serverThreshold) throw new Error("incorrect number of coeffs for server poly commits");
		}

		let sumMasterPolyCommits = [];
		let sumServerPolyCommits = [];

		for (let j = 0; j < rssRound1Responses.length; j++) {
		const rssRound1ResponseData = rssRound1Responses[j].data[i];
		const { master_poly_commits: masterPolyCommits, server_poly_commits: serverPolyCommits } = rssRound1ResponseData;
		if (sumMasterPolyCommits.length === 0 && sumServerPolyCommits.length === 0) {
		sumMasterPolyCommits = masterPolyCommits.map(ecPoint);
		sumServerPolyCommits = serverPolyCommits.map(ecPoint);
		continue;
		}
		sumMasterPolyCommits = sumMasterPolyCommits.map((summedCommit, k) => {
		return ecPoint(masterPolyCommits[k]).add(summedCommit);
		});
		sumServerPolyCommits = sumServerPolyCommits.map((summedCommit, k) => {
		return ecPoint(serverPolyCommits[k]).add(summedCommit);
		});
		}

		return {
		mc: sumMasterPolyCommits,
		sc: sumServerPolyCommits,
		};
		});

		// front end checks
		targetIndexes.map((target, i) => {
		const { mc, sc } = sums[i];
		// check master poly commits are consistent with tssPubKey
		const temp1 = ecPoint(dkgNewPub).mul(getLagrangeCoeffs([1, target], 1));
		const temp2 = mc[0].mul(getLagrangeCoeffs([1, target], target));
		const _tssPubKey = temp1.add(temp2);
		if (
		_tssPubKey.x.toString(16, 64) !== ecPoint(this.tssPubKey).x.toString(16, 64) \|\|
		_tssPubKey.y.toString(16, 64) !== ecPoint(this.tssPubKey).y.toString(16, 64)
		)
		throw new Error("master poly commits inconsistent with tssPubKey");

		// check server poly commits are consistent with master poly commits
		if (mc[0].add(mc[1]).x.toString(16, 64) !== sc[0].x.toString(16, 64) \|\| mc[0].add(mc[1]).y.toString(16, 64) !== sc[0].y.toString(16, 64))
		throw new Error("server poly commits inconsistent with master poly commits");
		return null;
		});

		// front end checks if decrypted user shares are consistent with poly commits
		const privKeyBuffer = Buffer.from(this.tempPrivKey.toString(16, 64), "hex");
		const userShares = [];
		for (let i = 0; i < targetIndexes.length; i++) {
		const userEncs = rssRound1Responses.map((r) => r.data[i].target_encryptions.user_enc);
		const userDecs = await Promise.all(userEncs.map((encMsg) => decrypt(privKeyBuffer, encMsg)));
		const userShare = userDecs.map((userDec) => new BN(userDec)).reduce((acc, d) => acc.add(d).umod(ecCurve.n), new BN(0));
		const { mc } = sums[i];
		const gU = ecCurve.g.mul(userShare);
		const _gU = mc[0].add(mc[1].mul(new BN(99))); // master poly evaluated at x = 99
		if (gU.x.toString(16, 64) !== _gU.x.toString(16, 64) \|\| gU.y.toString(16, 64) !== _gU.y.toString(16, 64))
		throw new Error("decrypted user shares inconsistent with poly commits");
		userShares.push(userShare);
		}

		const userFactorEncs = await Promise.all(
		userShares.map((userShare, i) => {
		const pub = factorPubs[i];
		return encrypt(Buffer.from(`04${pub.x.padStart(64, "0")}${pub.y.padStart(64, "0")}`, "hex"), Buffer.from(userShare.toString(16, 64), "hex"));
		})
		);

		// rearrange received serverEncs before sending them to new servers
		const serverEncs = targetIndexes.map((_, i) => {
		const serverEncsReceived = rssRound1Responses.map((r) => r.data[i].target_encryptions.server_encs);
		// flip the matrix
		const serverEncsToSend = [];
		for (let j = 0; j < this.serverEndpoints.length; j++) {
		const serverEnc = [];

		// Import only has T servers and the user, so it's T + 1
		for (let k = 0; k < this.serverThreshold + 1; k++) {
		serverEnc.push(serverEncsReceived[k][j]);
		}
		serverEncsToSend.push(serverEnc);
		}

		return serverEncsToSend;
		});

		// servers sum up their shares and encrypt it for factorPubs
		const serverIndexes = this.serverEndpoints.map((_, i) => i + 1);
		const serverFactorEncs = await Promise.all(
		serverIndexes.map((ind) => {
		// TODO: specify it's "new" server set for server indexes
		const data = [];
		targetIndexes.map((_, i) => {
		const { mc, sc } = sums[i];
		const round2RequestData = {
		master_commits: mc.map(hexPoint),
		server_commits: sc.map(hexPoint),
		server_encs: serverEncs[i][ind - 1],
		factor_pubkeys: [factorPubs[i]], // TODO: must we do it like this?
		};
		data.push(round2RequestData);
		return null;
		});
		const serverEndpoint = this.serverEndpoints[ind - 1];
		return postEndpoint<RSSRound2Response>(serverEndpoint, "/rss_round_2", {
		round_name: "rss_round_2",
		server_index: ind,
		target_index: targetIndexes,
		data,
		}).catch((e) => log.error(e));
		})
		);
		if (serverFactorEncs.filter((s) => s).length < this.serverThreshold) throw new Error("not enough servers responded");

		const factorEncs: RefreshResponse[] = [];
		for (let i = 0; i < targetIndexes.length; i++) {
		factorEncs.push({
		targetIndex: targetIndexes[i],
		factorPub: factorPubs[i],
		serverFactorEncs: serverFactorEncs.map((s) => s && s.data[i].encs[0]),
		userFactorEnc: userFactorEncs[i],
		});
		}

		return factorEncs;
		}

		async refresh(opts: RefreshOptions): Promise<RefreshResponse[]> {
		@@ -147,0 +390,0 @@ const { targetIndexes, inputIndex, selectedServers, oldLabel, newLabel, sigs, dkgNewPub, inputShare, factorPubs } = opts;

dist/rssClient-bundled.cjs.js

Sorry, the diff of this file is too big to display

dist/rssClient-bundled.cjs.js.map