crypto/frost/src/tests/literal/kp256.rs

use rand_core::OsRng;

use crate::tests::vectors::{Vectors, test_with_vectors};

#[cfg(feature = "secp256k1")]
use crate::curve::{Secp256k1, IetfSecp256k1Hram};

#[cfg(feature = "p256")]
use crate::curve::{P256, IetfP256Hram};

#[cfg(feature = "secp256k1")]
#[test]
fn secp256k1_vectors() {
  test_with_vectors::<_, Secp256k1, IetfSecp256k1Hram>(
    &mut OsRng,
    Vectors {
      threshold: 2,
      shares: &[
        "08f89ffe80ac94dcb920c26f3f46140bfc7f95b493f8310f5fc1ea2b01f4254c",
        "04f0feac2edcedc6ce1253b7fab8c86b856a797f44d83d82a385554e6e401984",
        "00e95d59dd0d46b0e303e500b62b7ccb0e555d49f5b849f5e748c071da8c0dbc",
      ],
      group_secret: "0d004150d27c3bf2a42f312683d35fac7394b1e9e318249c1bfe7f0795a83114",
      group_key: "02f37c34b66ced1fb51c34a90bdae006901f10625cc06c4f64663b0eae87d87b4f",

      msg: "74657374",
      included: &[1, 3],
      nonces: &[
        [
          "36d5c4185c40b02b5e4673e2531a10e6ff9883840a68ec08dbeb896467e21355",
          "7b3f573ca0a28f9f94522be4748df0ed04de8a83085aff4be7b01aa53fb6ac1b",
        ],
        [
          "ba4f8b8e587b2c9fc61a6156885f0bc67654b5e068c9e7749f75c09a98f17c13",
          "316de06639051ac7869e5ac4458eda1fef90ce93fa3c490556c4192e4fa550d0",
        ],
      ],
      sig_shares: &[
        "f9ee00d5ac0c746b751dde99f71d86f8f0300a81bd0336ca6649ef597239e13f",
        "61048ca334ac6a6cb59d6b3ea2b25b7098e204adc09e2f88b024531b081d1d6f",
      ],
      sig: "023cf76388f92d403aa937af2e3cb3e7a2350e40400c16a282e330af2c60eeb85a".to_owned() +
        "5af28d78e0b8ded82abb49d899cfe26ace633248ce58c617569be3e7aa20bd6d",
    },
  );
}

#[cfg(feature = "p256")]
#[test]
fn p256_vectors() {
  test_with_vectors::<_, P256, IetfP256Hram>(
    &mut OsRng,
    Vectors {
      threshold: 2,
      shares: &[
        "0c9c1a0fe806c184add50bbdcac913dda73e482daf95dcb9f35dbb0d8a9f7731",
        "8d8e787bef0ff6c2f494ca45f4dad198c6bee01212d6c84067159c52e1863ad5",
        "0e80d6e8f6192c003b5488ce1eec8f5429587d48cf001541e713b2d53c09d928",
      ],
      group_secret: "8ba9bba2e0fd8c4767154d35a0b7562244a4aaf6f36c8fb8735fa48b301bd8de",
      group_key: "023a309ad94e9fe8a7ba45dfc58f38bf091959d3c99cfbd02b4dc00585ec45ab70",

      msg: "74657374",
      included: &[1, 3],
      nonces: &[
        [
          "9aa66350b0f72b27ce4668323b4280cd49709177ed8373977c22a75546c9995d",
          "bd8b05d7fd0ff5a5ed65b1f105478f7718a981741fa8fa9b55ac6d3c8fc59a05",
        ],
        [
          "4c1aec8e84c496b80af98415fada2e6a4b1f902d4bc6c9682699b8aeffd97419",
          "eeaf5ef7af01e55050fb8acafc9c9306ef1cc13214677ba33e7bc51e8677e892",
        ],
      ],
      sig_shares: &[
        "ec5b8ab47d55903698492a07bb322ab6e7d3cf32581dcedf43c4fa18b46f3e10",
        "c97da3580560e88725a8e393d46fee18ecd2e00148e5e303d4a510fae9c11da5",
      ],
      sig: "036b3eba585ff5d40df29893fb6f60572803aef97800cfaaaa5cf0f0f19d8237f7".to_owned() +
        "b5d92e0d82b678bcbdf20d9b8fa218d017bfb485f9ec135e24b04050a1cd3664",
    },
  );
}
Replace rand with rand_core where possible Turns out rand_core offers OsRng. 2022-07-27 05:43:23 -04:00			`use rand_core::OsRng;`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00
Add the proposed IETF secp256k1 FROST vectors as NonIetf 2022-07-12 03:20:50 -04:00			`use crate::tests::vectors::{Vectors, test_with_vectors};`

Use a macro to generate the Secp256k1/P-256 curves 2022-06-24 08:44:12 -04:00			`#[cfg(feature = "secp256k1")]`
Update to FROST v8 2022-08-26 05:59:43 -04:00			`use crate::curve::{Secp256k1, IetfSecp256k1Hram};`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00
Add support for Ristretto Replaces P-256 as the curve used for testing FROST. 2022-06-06 04:22:49 -04:00			`#[cfg(feature = "p256")]`
Reorganize FROST's handling of curves 2022-06-24 19:47:19 -04:00			`use crate::curve::{P256, IetfP256Hram};`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00
Use a macro to generate the Secp256k1/P-256 curves 2022-06-24 08:44:12 -04:00			`#[cfg(feature = "secp256k1")]`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00			`#[test]`
FROST Ed448 (#107) * Theoretical ed448 impl * Fixes * Basic tests * More efficient scalarmul Precomputes a table to minimize additions required. * Add a torsion test * Split into a constant and variable time backend The variable time one is still far too slow, at 53s for the tests (~5s a scalarmul). It should be usable as a PoC though. * Rename unsafe Ed448 It's not only unworthy of the Serai branding and deserves more clarity in the name. * Add wide reduction to ed448 * Add Zeroize to Ed448 * Rename Ed448 group.rs to point.rs * Minor lint to FROST * Ed448 ciphersuite with 8032 test vector * Macro out the backend fields * Slight efficiency improvement to point decompression * Disable the multiexp test in FROST for Ed448 * fmt + clippy ed448 * Fix an infinite loop in the constant time ed448 backend * Add b"chal" to the 8032 context string for Ed448 Successfully tests against proposed vectors for the FROST IETF draft. * Fix fmt and clippy * Use a tabled pow algorithm in ed448's const backend * Slight tweaks to variable time backend Stop from_repr(MODULUS) from passing. * Use extended points Almost two orders of magnitude faster. * Efficient ed448 doubling * Remove the variable time backend With the recent performance improvements, the constant time backend is now 4x faster than the variable time backend was. While the variable time backend remains much faster, and the constant time backend is still slow compared to other libraries, it's sufficiently performant now. The FROST test, which runs a series of multiexps over the curve, does take 218.26s while Ristretto takes 1 and secp256k1 takes 4.57s. While 50x slower than secp256k1 is horrible, it's ~1.5 orders of magntiude, which is close enough to the desire stated in https://github.com/serai-dex/serai/issues/108 to meet it. Largely makes this library safe to use. * Correct constants in ed448 * Rename unsafe-ed448 to minimal-ed448 Enables all FROST tests against it. * No longer require the hazmat feature to use ed448 * Remove extraneous as_refs 2022-08-29 02:32:59 -05:00			`fn secp256k1_vectors() {`
Update to FROST v8 2022-08-26 05:59:43 -04:00			`test_with_vectors::<_, Secp256k1, IetfSecp256k1Hram>(`
Add the proposed IETF secp256k1 FROST vectors as NonIetf 2022-07-12 03:20:50 -04:00			`&mut OsRng,`
			`Vectors {`
			`threshold: 2,`
			`shares: &[`
			`"08f89ffe80ac94dcb920c26f3f46140bfc7f95b493f8310f5fc1ea2b01f4254c",`
			`"04f0feac2edcedc6ce1253b7fab8c86b856a797f44d83d82a385554e6e401984",`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`"00e95d59dd0d46b0e303e500b62b7ccb0e555d49f5b849f5e748c071da8c0dbc",`
Add the proposed IETF secp256k1 FROST vectors as NonIetf 2022-07-12 03:20:50 -04:00			`],`
			`group_secret: "0d004150d27c3bf2a42f312683d35fac7394b1e9e318249c1bfe7f0795a83114",`
			`group_key: "02f37c34b66ced1fb51c34a90bdae006901f10625cc06c4f64663b0eae87d87b4f",`

			`msg: "74657374",`
			`included: &[1, 3],`
			`nonces: &[`
			`[`
Update to FROST v10 Further expands documentation to near-completion. 2022-09-29 07:08:20 -04:00			`"36d5c4185c40b02b5e4673e2531a10e6ff9883840a68ec08dbeb896467e21355",`
			`"7b3f573ca0a28f9f94522be4748df0ed04de8a83085aff4be7b01aa53fb6ac1b",`
Add the proposed IETF secp256k1 FROST vectors as NonIetf 2022-07-12 03:20:50 -04:00			`],`
			`[`
Update to FROST v10 Further expands documentation to near-completion. 2022-09-29 07:08:20 -04:00			`"ba4f8b8e587b2c9fc61a6156885f0bc67654b5e068c9e7749f75c09a98f17c13",`
			`"316de06639051ac7869e5ac4458eda1fef90ce93fa3c490556c4192e4fa550d0",`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`],`
Add the proposed IETF secp256k1 FROST vectors as NonIetf 2022-07-12 03:20:50 -04:00			`],`
			`sig_shares: &[`
Update to FROST v10 Further expands documentation to near-completion. 2022-09-29 07:08:20 -04:00			`"f9ee00d5ac0c746b751dde99f71d86f8f0300a81bd0336ca6649ef597239e13f",`
			`"61048ca334ac6a6cb59d6b3ea2b25b7098e204adc09e2f88b024531b081d1d6f",`
Add the proposed IETF secp256k1 FROST vectors as NonIetf 2022-07-12 03:20:50 -04:00			`],`
Update to FROST v10 Further expands documentation to near-completion. 2022-09-29 07:08:20 -04:00			`sig: "023cf76388f92d403aa937af2e3cb3e7a2350e40400c16a282e330af2c60eeb85a".to_owned() +`
			`"5af28d78e0b8ded82abb49d899cfe26ace633248ce58c617569be3e7aa20bd6d",`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`},`
Add the proposed IETF secp256k1 FROST vectors as NonIetf 2022-07-12 03:20:50 -04:00			`);`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00			`}`

Add support for Ristretto Replaces P-256 as the curve used for testing FROST. 2022-06-06 04:22:49 -04:00			`#[cfg(feature = "p256")]`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00			`#[test]`
			`fn p256_vectors() {`
Add support for Ristretto Replaces P-256 as the curve used for testing FROST. 2022-06-06 04:22:49 -04:00			`test_with_vectors::<_, P256, IetfP256Hram>(`
			`&mut OsRng,`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00			`Vectors {`
			`threshold: 2,`
			`shares: &[`
			`"0c9c1a0fe806c184add50bbdcac913dda73e482daf95dcb9f35dbb0d8a9f7731",`
			`"8d8e787bef0ff6c2f494ca45f4dad198c6bee01212d6c84067159c52e1863ad5",`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`"0e80d6e8f6192c003b5488ce1eec8f5429587d48cf001541e713b2d53c09d928",`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00			`],`
			`group_secret: "8ba9bba2e0fd8c4767154d35a0b7562244a4aaf6f36c8fb8735fa48b301bd8de",`
			`group_key: "023a309ad94e9fe8a7ba45dfc58f38bf091959d3c99cfbd02b4dc00585ec45ab70",`

			`msg: "74657374",`
			`included: &[1, 3],`
			`nonces: &[`
			`[`
Update to FROST v10 Further expands documentation to near-completion. 2022-09-29 07:08:20 -04:00			`"9aa66350b0f72b27ce4668323b4280cd49709177ed8373977c22a75546c9995d",`
			`"bd8b05d7fd0ff5a5ed65b1f105478f7718a981741fa8fa9b55ac6d3c8fc59a05",`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00			`],`
			`[`
Update to FROST v10 Further expands documentation to near-completion. 2022-09-29 07:08:20 -04:00			`"4c1aec8e84c496b80af98415fada2e6a4b1f902d4bc6c9682699b8aeffd97419",`
			`"eeaf5ef7af01e55050fb8acafc9c9306ef1cc13214677ba33e7bc51e8677e892",`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`],`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00			`],`
			`sig_shares: &[`
Update to FROST v10 Further expands documentation to near-completion. 2022-09-29 07:08:20 -04:00			`"ec5b8ab47d55903698492a07bb322ab6e7d3cf32581dcedf43c4fa18b46f3e10",`
			`"c97da3580560e88725a8e393d46fee18ecd2e00148e5e303d4a510fae9c11da5",`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00			`],`
Update to FROST v10 Further expands documentation to near-completion. 2022-09-29 07:08:20 -04:00			`sig: "036b3eba585ff5d40df29893fb6f60572803aef97800cfaaaa5cf0f0f19d8237f7".to_owned() +`
			`"b5d92e0d82b678bcbdf20d9b8fa218d017bfb485f9ec135e24b04050a1cd3664",`
Apply an initial set of rustfmt rules 2022-07-15 01:26:07 -04:00			`},`
Add first party support for k256 and p256 under feature flags Given the lack of vectors for k256, it's currently a match of the p256 spec (with a distinct context string), yet p256 is still always used when testing. 2022-06-05 16:08:51 -04:00			`);`
			`}`