Add the openings of the PCs to the eVRF as necessary

2025-12-13 22:49:25 +00:00 · 2024-07-22 18:13:57 -04:00
parent db31809708
commit 49a183194d
10 changed files with 281 additions and 50 deletions
--- a/crypto/evrf/divisors/Cargo.toml
+++ b/crypto/evrf/divisors/Cargo.toml
@@ -20,6 +20,7 @@ group = "0.13"

 hex = { version = "0.4", optional = true }
 dalek-ff-group = { path = "../../dalek-ff-group", features = ["std"], optional = true }
+pasta_curves = { version = "0.5", default-features = false, features = ["bits", "alloc"], optional = true }

 [dev-dependencies]
 rand_core = { version = "0.6", features = ["getrandom"] }
@@ -30,3 +31,4 @@ pasta_curves = { version = "0.5", default-features = false, features = ["bits",

 [features]
 ed25519 = ["hex", "dalek-ff-group"]
+pasta = ["pasta_curves"]
--- a/crypto/evrf/divisors/src/lib.rs
+++ b/crypto/evrf/divisors/src/lib.rs
@@ -180,6 +180,48 @@ pub fn new_divisor<C: DivisorCurve>(points: &[C]) -> Option<Poly<C::FieldElement
  Some(divs.remove(0).1)
 }

+#[cfg(any(test, feature = "pasta"))]
+mod pasta {
+  use group::{ff::Field, Curve};
+  use pasta_curves::{
+    arithmetic::{Coordinates, CurveAffine},
+    Ep, Fp, Eq, Fq,
+  };
+  use crate::DivisorCurve;
+
+  impl DivisorCurve for Ep {
+    type FieldElement = Fp;
+
+    fn a() -> Self::FieldElement {
+      Self::FieldElement::ZERO
+    }
+    fn b() -> Self::FieldElement {
+      Self::FieldElement::from(5u64)
+    }
+
+    fn to_xy(point: Self) -> Option<(Self::FieldElement, Self::FieldElement)> {
+      Option::<Coordinates<_>>::from(point.to_affine().coordinates())
+        .map(|coords| (*coords.x(), *coords.y()))
+    }
+  }
+
+  impl DivisorCurve for Eq {
+    type FieldElement = Fq;
+
+    fn a() -> Self::FieldElement {
+      Self::FieldElement::ZERO
+    }
+    fn b() -> Self::FieldElement {
+      Self::FieldElement::from(5u64)
+    }
+
+    fn to_xy(point: Self) -> Option<(Self::FieldElement, Self::FieldElement)> {
+      Option::<Coordinates<_>>::from(point.to_affine().coordinates())
+        .map(|coords| (*coords.x(), *coords.y()))
+    }
+  }
+}
+
 #[cfg(any(test, feature = "ed25519"))]
 mod ed25519 {
  use group::{
--- a/crypto/evrf/divisors/src/tests/mod.rs
+++ b/crypto/evrf/divisors/src/tests/mod.rs
@@ -1,30 +1,11 @@
 use rand_core::OsRng;

-use group::{ff::Field, Group, Curve};
+use group::{ff::Field, Group};
 use dalek_ff_group::EdwardsPoint;
-use pasta_curves::{
-  arithmetic::{Coordinates, CurveAffine},
-  Ep, Fp,
-};
+use pasta_curves::{Ep, Eq};

 use crate::{DivisorCurve, Poly, new_divisor};

-impl DivisorCurve for Ep {
-  type FieldElement = Fp;
-
-  fn a() -> Self::FieldElement {
-    Self::FieldElement::ZERO
-  }
-  fn b() -> Self::FieldElement {
-    Self::FieldElement::from(5u64)
-  }
-
-  fn to_xy(point: Self) -> Option<(Self::FieldElement, Self::FieldElement)> {
-    Option::<Coordinates<_>>::from(point.to_affine().coordinates())
-      .map(|coords| (*coords.x(), *coords.y()))
-  }
-}
-
 // Equation 4 in the security proofs
 fn check_divisor<C: DivisorCurve>(points: Vec<C>) {
  // Create the divisor
@@ -208,6 +189,13 @@ fn test_divisor_pallas() {
  test_subset_sum_to_infinity::<Ep>();
 }

+#[test]
+fn test_divisor_vesta() {
+  test_divisor::<Eq>();
+  test_same_point::<Eq>();
+  test_subset_sum_to_infinity::<Eq>();
+}
+
 #[test]
 fn test_divisor_ed25519() {
  // Since we're implementing Wei25519 ourselves, check the isomorphism works as expected