Skip to content

[WIP] Secp256r1 support for ECDSA verify and decompress opcodes #3495

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
algoidurovic wants to merge 47 commits into from
Closed

[WIP] Secp256r1 support for ECDSA verify and decompress opcodes #3495

algoidurovic wants to merge 47 commits into from

Conversation

@algoidurovic
Copy link
Contributor

@algoidurovic algoidurovic commented Jan 24, 2022

ECDSA opcodes only support the Secp256k1 curve. The goal of this PR is to extend the opcodes to support the Secp256r1 curve as well. Note: the PkRecover opcode is not covered here.

Testing included correctness and benchmark tests. Benchmark tests indicate a significant slowdown when the Secp256r1 curve is used, meaning the current opcode cost may not be viable.

Added some helper test functions.

algoidurovic and others added 20 commits October 13, 2021 18:56
@algoidurovic
fixed off-by-one error in the assembler's typeDig() and improved unit…
430552f 
… test
@algoidurovic
Merge branch 'master' of https://github.com/algorand/go-algorand
390f589
@algoidurovic
Merge branch 'algorand:master' into master
a8f4f2d
@algoidurovic
Merge branch 'master' of github.com:algoidurovic/go-algorand
6957542
@shiqizng
adding json_ref
7ea33ef
@shiqizng
added json_ref opcode, tests, docs
8ba214b
@shiqizng
resolve merge conflicts
2b312d5
@shiqizng
addressing reviews
bb5ebf3
@shiqizng
review changes, added json spec doc
dba9d06
@shiqizng
fix lint error
6a3bc0a
@shiqizng
Merge branch 'master' of https://github.com/algorand/go-algorand into…
d865b5f 
… json_ref
@shiqizng
license update
baf8758
@shiqizng
changes as per reviews
ffa08bb
@shiqizng
more changes
8ade1ca
@shiqizng
remove extra lines
aa3e4eb
@shiqizng
minor refactoring
9b38b6d
@algoidurovic
Merge branch 'master' of https://github.com/algorand/go-algorand
1ed6da1
@shiqizng
adding more tests
fa78d06
@shiqizng
update docs
b0ba83a
@algoidurovic
initial implementation w/ correctness and benchmark tests
93bed2f
@jasonpaulos
Copy link
Contributor

jasonpaulos commented Jan 24, 2022

From doc.go for ecdsa_verify:

The signed data must be 32 bytes long, and signatures in lower-S form are only accepted

I suspect these constraints might not be true for the secp256r1 curve. And if that's the case we should document it (or decide to enforce them).

algoidurovic and others added 16 commits January 27, 2022 13:51
@algoidurovic
merge branch 'fido2-future' of https://github.com/tzaffi/go-algorand
a5e7118 
…into secp256r1
Merge branch 'master' of https://github.com/algorand/go-algorand into…
7a83896 
… fido2-future
Merge branch 'json_ref' of https://github.com/shiqizng/go-algorand in…
623f167 
…to fido2-future
@algoidurovic
updated version to avoid inclusion of r1 field in v6. The new field i…
741d5d5 
…s meant to be reserved for the fido2 experimental branch
@algoidurovic
fixed typo for fidoVersion
2f6ab8a
@algoidurovic
Merge branch 'master' of https://github.com/algorand/go-algorand into…
3da9460 
… secp256r1
pass assembler_test.go with json_ref
cfbf3cd
pass json_ref eval tests
e111e91
codegen_verification removed // indirect
8ad0c78
@algoidurovic
resolve merge conflicts and swap int/byte for pushint/pushbytes in no…
3ffc1be 
…nsense tests
@algoidurovic
undo deletion of json_ref opcode
23c1ef3
@algoidurovic
removed generated catchpoint files
d3a771a
@algoidurovic
do not run secp256r1 tests until logic version exceeds fido version
f18624e
@algoidurovic
backport UnmarshallCompressed implementation to use with < go 1.15
c2e27ce
@algoidurovic
backported elliptic.MarshalCompressed
22ff844
@algoidurovic
use backported bigint.fillbytes()
a2420f6
@codecov-commenter
Copy link

codecov-commenter commented Feb 1, 2022
edited
Loading

Codecov Report

Merging #3495 (f1984c0) into master (93a372d) will decrease coverage by 0.10%.
The diff coverage is 21.21%.

Impacted file tree graph

@@            Coverage Diff             @@
##           master    #3495      +/-   ##
==========================================
- Coverage   47.57%   47.46%   -0.11%     
==========================================
  Files         370      370              
  Lines       60060    60213     +153     
==========================================
+ Hits        28572    28579       +7     
- Misses      28178    28323     +145     
- Partials     3310     3311       +1
Impacted Files Coverage Δ
data/transactions/logic/assembler.go 77.15% <0.00%> (-1.22%) ⬇️
data/transactions/logic/doc.go 77.41% <ø> (ø)
data/transactions/logic/opcodes.go 100.00% <ø> (ø)
data/transactions/logic/fields_string.go 5.80% <10.00%> (+0.32%) ⬆️
data/transactions/logic/eval.go 82.18% <23.80%> (-3.51%) ⬇️
data/transactions/logic/fields.go 76.08% <57.14%> (-1.57%) ⬇️
agreement/cryptoVerifier.go 75.17% <0.00%> (-2.13%) ⬇️
agreement/proposalManager.go 96.07% <0.00%> (-1.97%) ⬇️
catchup/service.go 69.62% <0.00%> (-0.50%) ⬇️
... and 4 more

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 93a372d...f1984c0. Read the comment docs.

@michaeldiamant michaeldiamant mentioned this pull request Mar 15, 2022
Open
@michaeldiamant
Copy link
Contributor

michaeldiamant commented Mar 15, 2022

Closing because:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

Team Scytale

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@algoidurovic @jasonpaulos @codecov-commenter @michaeldiamant @shiqizng