ChainSafe
diff --git a/‎src/bls/pairing.zig‎
Lines changed: 162 additions & 0 deletions b/‎src/bls/pairing.zig‎
Lines changed: 162 additions & 0 deletions
diff --git a/‎src/bls/public_key.zig‎
Lines changed: 167 additions & 0 deletions b/‎src/bls/public_key.zig‎
Lines changed: 167 additions & 0 deletions
@@ -0,0 +1,162 @@
+const std = @import("std");
+const Allocator = std.mem.Allocator;
+const util = @import("util.zig");
+const BLST_ERROR = util.BLST_ERROR;
+const toBlstError = util.toBlstError;
+
+const c = @cImport({
+    @cInclude("blst.h");
+});
+
+const PairingError = error{ BufferTooSmall, DstTooSmall };
+
+const PTag = enum {
+    p1,
+    p2,
+};
+
+const PairingPk = union(PTag) {
+    p1: c.blst_p1_affine,
+    p2: c.blst_p2_affine,
+};
+
+const Pairing = struct {
+    v: []u8,
+
+    /// Rust always use a heap allocation here, but adding an allocator is too complex
+    /// instead of that zig provide a buffer that's big enough for the struct to operate on so that:
+    /// - it does not have allocator in its api
+    /// - can use stack allocation at consumer side
+    /// - can reuse memory if it makes sense at consumer side
+    pub fn new(buffer: []u8, hash_or_encode: bool, dst: []u8) PairingError!Pairing {
+        if (buffer.len < c.blst_pairing_sizeof()) {
+            return PairingError.BufferTooSmall;
+        }
+
+        if (dst.len == 0) {
+            return PairingError.DstTooSmall;
+        }
+
+        const obj = Pairing{
+            .v = buffer[0..c.blst_pairing_sizeof()],
+        };
+        obj.init(hash_or_encode, &dst[0]);
+
+        return obj;
+    }
+
+    // Javascript can leverage this api to allocate a Pairing buffer on its own
+    pub fn sizeOf() usize {
+        return c.blst_pairing_sizeof();
+    }
+
+    pub fn init(self: *Pairing, hash_or_encode: bool, dst: []u8) void {
+        c.blst_pairing_init(self.ctx(), hash_or_encode, &dst[0], dst.len);
+    }
+
+    fn ctx(self: *Pairing) *c.blst_pairing {
+        const ptr: *c.blst_pairing = @ptrCast(&self.v[0]);
+        return ptr;
+    }
+
+    fn constCtx(self: *const Pairing) *const c.blst_pairing {
+        const ptr: *const c.blst_pairing = @ptrCast(&self.v[0]);
+        return ptr;
+    }
+
+    pub fn aggregateG1(self: *Pairing, pk: *const c.blst_p1_affine, pk_validate: bool, sig: *const c.blst_p2_affine, sig_groupcheck: bool, msg: []u8, aug: ?[]u8) BLST_ERROR!void {
+        const aug_ptr = if (aug != null and aug.len > 0) &aug[0] else null;
+        const aug_len = if (aug != null) aug.len else null;
+
+        const res = c.blst_pairing_chk_n_aggr_pk_in_g1(self.ctx, pk, pk_validate, sig, sig_groupcheck, &msg[0], msg.len, aug_ptr, aug_len);
+
+        const err = toBlstError(res);
+        if (err != null) {
+            return err;
+        }
+    }
+
+    pub fn aggregateG2(self: *Pairing, pk: *const c.blst_p2_affine, pk_validate: bool, sig: *const c.blst_p1_affine, sig_groupcheck: bool, msg: []u8, aug: ?[]u8) BLST_ERROR!void {
+        const aug_ptr = if (aug != null and aug.len > 0) &aug[0] else null;
+        const aug_len = if (aug != null) aug.len else null;
+
+        const res = c.blst_pairing_chk_n_aggr_pk_in_g2(self.ctx, pk, pk_validate, sig, sig_groupcheck, &msg[0], msg.len, aug_ptr, aug_len);
+
+        const err = toBlstError(res);
+        if (err != null) {
+            return err;
+        }
+    }
+
+    pub fn mulAndAggregateG1(self: *Pairing, pk: *const c.blst_p1_affine, pk_validate: bool, sig: *const c.blst_p2_affine, sig_groupcheck: bool, scalar: []u8, nbits: usize, msg: []u8, aug: ?[]u8) BLST_ERROR!void {
+        const aug_ptr = if (aug != null and aug.len > 0) &aug[0] else null;
+        const aug_len = if (aug != null) aug.len else null;
+
+        const res = c.blst_pairing_chk_n_mul_n_aggr_pk_in_g1(self.ctx, pk, pk_validate, sig, sig_groupcheck, &scalar[0], nbits, &msg[0], msg.len, aug_ptr, aug_len);
+
+        const err = toBlstError(res);
+        if (err != null) {
+            return err;
+        }
+    }
+
+    pub fn mulAndAggregateG2(self: *Pairing, pk: *const c.blst_p2_affine, pk_validate: bool, sig: *const c.blst_p1_affine, sig_groupcheck: bool, scalar: []u8, nbits: usize, msg: []u8, aug: ?[]u8) BLST_ERROR!void {
+        const aug_ptr = if (aug != null and aug.len > 0) &aug[0] else null;
+        const aug_len = if (aug != null) aug.len else null;
+
+        const res = c.blst_pairing_chk_n_mul_n_aggr_pk_in_g2(self.ctx, pk, pk_validate, sig, sig_groupcheck, &scalar[0], nbits, &msg[0], msg.len, aug_ptr, aug_len);
+
+        const err = toBlstError(res);
+        if (err != null) {
+            return err;
+        }
+    }
+
+    pub fn aggregatedG1(gtsig: *c.blst_fp12, sig: *const c.blst_p1_affine) void {
+        c.blst_aggregated_in_g1(gtsig, sig);
+    }
+
+    pub fn aggregatedG2(gtsig: *c.blst_fp12, sig: *const c.blst_p2_affine) void {
+        c.blst_aggregated_in_g2(gtsig, sig);
+    }
+
+    pub fn commit(self: *Pairing) void {
+        c.blst_pairing_commit(self.ctx());
+    }
+
+    pub fn merge(self: *Pairing, ctx1: *const Pairing) BLST_ERROR!void {
+        const res = c.blst_pairing_merge(self.ctx(), ctx1.constCtx());
+
+        const err = toBlstError(res);
+        if (err != null) {
+            return err;
+        }
+    }
+
+    pub fn finalVerify(self: *const Pairing, gtsig: ?*const c.blst_fp12) bool {
+        const gtsig_ptr = if (gtsig != null) gtsig.? else null;
+        return c.blst_pairing_finalverify(self.constCtx(), gtsig_ptr);
+    }
+
+    pub fn rawAggregate(self: *Pairing, q: *c.blst_p2_affine, p: *c.blst_p1_affine) void {
+        c.blst_pairing_raw_aggregate(self.ctx(), q, p);
+    }
+
+    pub fn asFp12(self: *Pairing) *c.blst_fp12 {
+        return c.blst_pairing_as_fp12(self.ctx());
+    }
+};
+
+test "init Pairing" {
+    const allocator = std.testing.allocator;
+    const buffer = allocator.alloc(u8, Pairing.sizeOf());
+    defer allocator.free(buffer);
+
+    _ = try Pairing.new(buffer, true, "destination");
+}
+
+test "sizeOf Pairing" {
+    // this works on MacOS, adding this test to understand more about the size of Pairing
+    std.debug.print("Size of Pairing: {}", .{Pairing.sizeOf()});
+    std.testing.expectEqual(3192, Pairing.sizeOf());
+}
@@ -0,0 +1,167 @@
+const c = @cImport({
+    @cInclude("blst.h");
+});
+
+const util = @import("util.zig");
+const BLST_ERROR = util.BLST_ERROR;
+const toBlstError = util.toBlstError;
+
+// TODO: implement Clone, Copy, Equal
+pub const PublicKey = struct {
+    point: c.blst_p1_affine,
+
+    pub fn default() PublicKey {
+        return .{
+            .point = util.default_blst_p1_affline(),
+        };
+    }
+
+    // Core operations
+
+    // key_validate
+    pub fn validate(self: *const PublicKey) BLST_ERROR!void {
+        if (c.blst_p1_affine_is_inf(&self.point)) {
+            return BLST_ERROR.PK_IS_INFINITY;
+        }
+
+        if (c.blst_p1_affine_in_g1(&self.point) == false) {
+            return BLST_ERROR.POINT_NOT_IN_GROUP;
+        }
+    }
+
+    pub fn key_validate(key: []const u8) BLST_ERROR!void {
+        const pk = try PublicKey.fromBytes(key);
+        try pk.validate();
+    }
+
+    pub fn fromAggregate(agg_pk: *const AggregatePublicKey) PublicKey {
+        var pk_aff = PublicKey.default();
+        c.blst_p1_to_affine(&pk_aff.point, &agg_pk.point);
+        return pk_aff;
+    }
+
+    // Serdes
+
+    pub fn compress(self: *const PublicKey) [48]u8 {
+        var pk_comp = [_]u8{0} ** 48;
+        c.blst_p1_affine_compress(&pk_comp[0], &self.point);
+        return pk_comp;
+    }
+
+    pub fn serialize(self: *const PublicKey) [96]u8 {
+        var pk_out = [_]u8{0} ** 96;
+        c.blst_p1_affine_serialize(&pk_out[0], &self.point);
+        return pk_out;
+    }
+
+    pub fn uncompress(pk_comp: []const u8) BLST_ERROR!PublicKey {
+        if (pk_comp.len == 48 and (pk_comp[0] & 0x80) != 0) {
+            var pk = PublicKey.default();
+            const res = c.blst_p1_uncompress(&pk.point, &pk_comp[0]);
+            const err = toBlstError(res);
+            if (err != null) {
+                return err.?;
+            }
+            return pk;
+        }
+
+        return BLST_ERROR.BAD_ENCODING;
+    }
+
+    pub fn deserialize(pk_in: []const u8) BLST_ERROR!PublicKey {
+        if ((pk_in.len == 96 and (pk_in[0] & 0x80) == 0) or
+            (pk_in.len == 48 and (pk_in[0] & 0x80) != 0))
+        {
+            var pk = PublicKey.default();
+            const res = c.blst_p1_deserialize(&pk.point, &pk_in[0]);
+            const err = toBlstError(res);
+            if (err != null) {
+                return err.?;
+            }
+            return pk;
+        }
+
+        return BLST_ERROR.BAD_ENCODING;
+    }
+
+    pub fn fromBytes(pk_in: []const u8) BLST_ERROR!PublicKey {
+        return PublicKey.deserialize(pk_in);
+    }
+
+    pub fn toBytes(self: *const PublicKey) [48]u8 {
+        return self.compress();
+    }
+
+    // TODO: Eq, PartialEq, Serialize, Deserialize?
+};
+
+// TODO: implement Debug, Clone, Copy?
+pub const AggregatePublicKey = struct {
+    point: c.blst_p1,
+
+    pub fn default() AggregatePublicKey {
+        return .{
+            .point = util.default_blst_p1(),
+        };
+    }
+
+    pub fn fromPublicKey(pk: *const PublicKey) AggregatePublicKey {
+        var agg_pk = AggregatePublicKey.default();
+        c.blst_p1_from_affine(&agg_pk.point, &pk.point);
+
+        return agg_pk;
+    }
+
+    pub fn toPublicKey(self: *const AggregatePublicKey) PublicKey {
+        var pk = PublicKey.default();
+        c.blst_p1_to_affine(&pk.point, &self.point);
+    }
+
+    // Aggregate
+    pub fn aggregate(pks: []*const PublicKey, pks_validate: bool) BLST_ERROR!AggregatePublicKey {
+        if (pks.len == 0) {
+            return BLST_ERROR.AGGR_TYPE_MISMATCH;
+        }
+        if (pks.validate) {
+            try pks[0].validate();
+        }
+
+        var agg_pk = AggregatePublicKey.fromPublicKey(pks[0]);
+        for (pks[1..]) |pk| {
+            if (pks_validate) {
+                try pk.validate();
+            }
+
+            c.blst_p1_add_or_double_affine(&agg_pk.point, &agg_pk.point, &pk.point);
+        }
+
+        return agg_pk;
+    }
+
+    pub fn aggregateSerialized(pks: [][]const u8, pks_validate: bool) BLST_ERROR!AggregatePublicKey {
+        // TODO - threading
+        if (pks.len == 0) {
+            return BLST_ERROR.AGGR_TYPE_MISMATCH;
+        }
+        var pk = if (pks_validate) PublicKey.key_validate(pks[0]) else PublicKey.fromBytes(pks[0]);
+        var agg_pk = AggregatePublicKey.fromPublicKey(&pk);
+        for (pks[1..]) |s| {
+            pk = if (pks_validate) PublicKey.key_validate(s) else PublicKey.fromBytes(s);
+            c.blst_p1_add_or_double_affine(&agg_pk.point, &agg_pk.point, &pk.point);
+        }
+
+        return agg_pk;
+    }
+
+    pub fn addAggregate(self: *AggregatePublicKey, agg_pk: *const AggregatePublicKey) BLST_ERROR!void {
+        c.blst_p1_add_or_double_affine(&self.point, &self.point, &agg_pk.point);
+    }
+
+    pub fn addPublicKey(self: *AggregatePublicKey, pk: *const PublicKey, pk_validate: bool) BLST_ERROR!void {
+        if (pk_validate) {
+            try pk.validate();
+        }
+
+        c.blst_p1_add_or_double_affine(&self.point, &self.point, &pk.point);
+    }
+};