Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[WIP] Chapter 3 (elliptic curve crypto) #2

Open
wants to merge 8 commits into
base: main
Choose a base branch
from
Open

[WIP] Chapter 3 (elliptic curve crypto) #2

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
5261355
start finite field eliptic curve implementation
HermanObst Aug 1, 2023
6f82746
add implementation for defininf new ec field points
HermanObst Aug 2, 2023
4f57a1f
add implementation for adding ec field points
HermanObst Aug 2, 2023
c4aad3e
polish add implementation for ec field points
HermanObst Aug 3, 2023
0527be6
add test for point addition
HermanObst Aug 3, 2023
b8a751b
run clippy
HermanObst Aug 3, 2023
7372952
add scalar multiplication
HermanObst Aug 3, 2023
e4bf9be
reorder repo
HermanObst Aug 3, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
22 changes: 11 additions & 11 deletions src/finite_field.rs → src/ecc/finite_field.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,26 +4,26 @@ use num_bigint::ToBigInt;
use std::ops::{Add, Div, Mul, Sub};


#[derive(Debug, PartialEq, Eq)]
struct FieldElement {
num: BigInt,
prime: BigInt,
#[derive(Debug, PartialEq, Eq, Clone)]
pub(crate) struct FieldElement {
pub(crate) num: BigInt,
pub(crate) prime: BigInt,
}

#[allow(dead_code)]
impl FieldElement {
fn new(num: BigInt, prime: BigInt) -> FieldElement {
pub fn new(num: BigInt, prime: BigInt) -> FieldElement {
FieldElement {
num,
prime,
}
}

fn eq(&self, elem: FieldElement) -> bool {
pub fn eq(&self, elem: FieldElement) -> bool {
self.num == elem.num && self.prime == elem.prime
}

fn pow(&self, exp: &BigInt) -> FieldElement {
pub fn pow(&self, exp: &BigInt) -> FieldElement {
let positive_exponent = exp.rem_euclid(self.prime.clone() - 1);
let num = self.num.modpow(&positive_exponent, &self.prime);

Expand All @@ -38,7 +38,7 @@ impl Add<FieldElement> for FieldElement {
assert!(self.prime == elem.prime, "Cannot add two numbers in different fields");
let num = (self.num + elem.num).rem_euclid(self.prime.clone());

FieldElement::new(num, self.prime.clone())
FieldElement::new(num, self.prime)
}
}

Expand All @@ -49,7 +49,7 @@ impl Sub<FieldElement> for FieldElement {
assert!(self.prime == elem.prime, "Cannot subtract two numbers in different fields");
let num = (self.num - elem.num).rem_euclid(self.prime.clone());

FieldElement::new(num, self.prime.clone())
FieldElement::new(num, self.prime)
}
}

Expand All @@ -60,7 +60,7 @@ impl Mul<FieldElement> for FieldElement {
assert!(self.prime == elem.prime, "Cannot multiply two numbers in different fields");
let num = (self.num * elem.num).rem_euclid(self.prime.clone());

FieldElement::new(num, self.prime.clone())
FieldElement::new(num, self.prime)
}
}

Expand All @@ -72,7 +72,7 @@ impl Div<FieldElement> for FieldElement {
let factor = elem.num.modpow(&(self.prime.clone() - 2_i32.to_bigint().unwrap()), &self.prime);
let num = (self.num.clone() * factor) % self.prime.clone();

FieldElement::new(num, self.prime.clone())
FieldElement::new(num, self.prime)
}
}

Expand Down
3 changes: 3 additions & 0 deletions src/ecc/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
pub mod finite_field;
pub mod point_field;
pub mod point;
2 changes: 1 addition & 1 deletion src/point.rs → src/ecc/point.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
use bitcoin::types::errors::Errors;
use crate::types::errors::Errors;
use num_bigint::{BigInt, ToBigInt};
use core::ops::Add;

Expand Down
262 changes: 262 additions & 0 deletions src/ecc/point_field.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,262 @@
use crate::types::errors::Errors;
use super::finite_field::FieldElement;
use num_bigint::{BigInt, ToBigInt};
use core::ops::{Add, Mul};

#[allow(dead_code)]
#[derive(Clone, Debug, PartialEq)]
enum PointValue {
Point(FieldElement,FieldElement),
Infinity
}

#[derive(Clone, Debug, PartialEq)]
struct EllipticCurve {
a: FieldElement,
b: FieldElement
}

impl EllipticCurve {
fn new(a: FieldElement, b: FieldElement) -> Self {
EllipticCurve { a, b }
}
}
#[derive(Clone, Debug, PartialEq)]
struct Point {
point: PointValue,
elliptic_curve: EllipticCurve
}

#[allow(dead_code)]
impl Point {
fn new_point(x: FieldElement, y: FieldElement, a: FieldElement, b: FieldElement) -> Result<Self, Errors> {
// Checks if point is included in the curve y2 = x3 + ax + b
if y.pow(&2.to_bigint().unwrap()) != x.pow(&3.to_bigint().unwrap()) + a.clone() * x.clone() + b.clone() {
return Err(Errors::InvalidPoint);
}

Ok(Point{point: PointValue::Point(x, y), elliptic_curve: EllipticCurve::new(a, b)})
}

fn new_infinity(a: FieldElement, b: FieldElement) -> Self {
Point{point: PointValue::Infinity, elliptic_curve: EllipticCurve::new(a, b)}
}
}

impl Add<Point> for Point {
type Output = Self;

fn add(self, other: Point) -> Self {
assert!(!(self.elliptic_curve != other.elliptic_curve), "{}", Errors::DifferentCurves);

let a = self.elliptic_curve.a.clone();
let b = self.elliptic_curve.b.clone();
let prime = self.elliptic_curve.a.prime.clone();

// TODO: Use Pattern matching for if clauses
match (self.point.clone(), other.point.clone()) {
(PointValue::Point(x1,y1), PointValue::Point(x2,y2)) => {
if x1 == x2 {
if y1 == y2 {
// Case P1 == P2

// tanget line is vertical
if y1.num == 0.to_bigint().unwrap() {
return Point::new_infinity(a, b)
}

let slope = (FieldElement::new(BigInt::from(3), prime.clone()) * x1.pow(&BigInt::from(2)) + a.clone()) / (FieldElement::new(BigInt::from(2), prime.clone()) * y1.clone());
let x3 = slope.pow(&BigInt::from(2)) - FieldElement::new(BigInt::from(2), prime)*x1.clone();
let y3 = slope*(x1 - x3.clone()) - y1;

// This unwrap cannot fail as this functions already recives two valid points.
Point::new_point(x3, y3, a, b).unwrap()
} else {
// Vertical line (same x but different y coordinates)
Point::new_infinity(a, b)
}
} else {
// Case were x coordinates are differents
let slope = (y2 - y1.clone())/(x2.clone() - x1.clone());
let x3 = slope.pow(&BigInt::from(2)) - x1.clone() - x2;
let y3 = slope*(x1 - x3.clone()) - y1;
// This unwrap cannot fail as this functions already recives two valid points.
Point::new_point(x3, y3, a, b).unwrap()
}
},
// Handle identity (Infinity point). In case both are Infinity, returns Infinity (self).
(_, PointValue::Infinity) => self,
(PointValue::Infinity, _) => other
}
}
}

impl<T> Mul<T> for Point where T: Into<BigInt> {
type Output = Self;

fn mul(self, coefficient: T) -> Self {
let mut coef: BigInt = coefficient.into();
let mut current = self.clone();
let mut result = Point::new_infinity(self.elliptic_curve.a, self.elliptic_curve.b);

// Use BigInt::from(0) instead of BigInt::one()
while coef != BigInt::from(0) {
if coef.clone() & BigInt::from(1) == BigInt::from(1) {
result = result + current.clone();
}
current = current.clone() + current;
coef = coef >> 1;
}
result
}
}


#[cfg(test)]
mod point_tests {
use num_bigint::ToBigInt;

use super::*;

#[test]
fn test_create_ec_field_valid_point() {
let prime = 223.to_bigint().unwrap();
let a = FieldElement::new(0.to_bigint().unwrap(), prime.clone());
let b = FieldElement::new(7.to_bigint().unwrap(), prime.clone());


let valid_points: [(BigInt, BigInt); 3] = [(192.to_bigint().unwrap(), 105.to_bigint().unwrap()), (17.to_bigint().unwrap(), 56.to_bigint().unwrap()), (1.to_bigint().unwrap(), 193.to_bigint().unwrap())];
let invalid_points: [(BigInt, BigInt); 2] = [(200.to_bigint().unwrap(), 119.to_bigint().unwrap()), (42.to_bigint().unwrap(), 99.to_bigint().unwrap())];

for (x, y) in valid_points.iter() {
let x = FieldElement::new(x.clone(), prime.clone());
let y = FieldElement::new(y.clone(), prime.clone());
assert!(Point::new_point(x, y, a.clone(), b.clone()).is_ok())
}

for (x, y) in invalid_points.iter() {
let x = FieldElement::new(x.clone(), prime.clone());
let y = FieldElement::new(y.clone(), prime.clone());
assert_eq!(Point::new_point(x, y, a.clone(), b.clone()), Err(Errors::InvalidPoint))
}
}

#[test]
fn test_add_ec_field_points_different_x() {
let prime = BigInt::from(223);
let a = FieldElement::new(BigInt::from(0), prime.clone());
let b = FieldElement::new(BigInt::from(7), prime.clone());
let x1 = FieldElement::new(BigInt::from(192), prime.clone());
let y1 = FieldElement::new(BigInt::from(105), prime.clone());
let x2 = FieldElement::new(BigInt::from(17), prime.clone());
let y2 = FieldElement::new(BigInt::from(56), prime.clone());

let p1 = Point::new_point(x1, y1, a.clone(), b.clone()).unwrap();
let p2 = Point::new_point(x2, y2, a.clone(), b.clone()).unwrap();

let xr = FieldElement::new(BigInt::from(170), prime.clone());
let yr = FieldElement::new(BigInt::from(142), prime.clone());
let r = Point::new_point(xr, yr, a.clone(), b.clone()).unwrap();

assert!(p1.clone() + p2.clone() == r);
}

#[test]
fn test_add_ec_field_points_inf(){
let prime = BigInt::from(223);
let a = FieldElement::new(BigInt::from(0), prime.clone());
let b = FieldElement::new(BigInt::from(7), prime.clone());
let x1 = FieldElement::new(BigInt::from(192), prime.clone());
let y1 = FieldElement::new(BigInt::from(105), prime.clone());

let p1 = Point::new_point(x1, y1, a.clone(), b.clone()).unwrap();

assert_eq!(p1.clone() + Point::new_infinity(a.clone(), b.clone()), p1);
}

#[test]
fn test_add_vertical_line() {
// This happen when points have same x and different y coordinates
let prime = BigInt::from(223);
let a = FieldElement::new(BigInt::from(5), prime.clone());
let b = FieldElement::new(BigInt::from(7), prime.clone());

let one = FieldElement::new(BigInt::from(1), prime.clone());
let one_minus = FieldElement::new(BigInt::from(-1), prime.clone());

let p1 = Point::new_point(one_minus.clone(), one, a.clone(), b.clone()).unwrap();
let p2 = Point::new_point(one_minus.clone(), one_minus, a.clone(), b.clone()).unwrap();

assert_eq!(p1 + p2, Point::new_infinity(a,b));
}

#[test]
fn test_add_same_point() {
let prime = BigInt::from(223);
let a = FieldElement::new(BigInt::from(0), prime.clone());
let b = FieldElement::new(BigInt::from(7), prime.clone());
let x1 = FieldElement::new(BigInt::from(192), prime.clone());
let y1 = FieldElement::new(BigInt::from(105), prime.clone());
let p1 = Point::new_point(x1, y1, a.clone(), b.clone()).unwrap();


let xr = FieldElement::new(BigInt::from(49), prime.clone());
let yr = FieldElement::new(BigInt::from(71), prime.clone());
let r = Point::new_point(xr, yr, a.clone(), b.clone()).unwrap();

assert_eq!(p1.clone() + p1.clone(), r);

let x1 = FieldElement::new(BigInt::from(143), prime.clone());
let y1 = FieldElement::new(BigInt::from(98), prime.clone());
let p1 = Point::new_point(x1, y1, a.clone(), b.clone()).unwrap();

let xr = FieldElement::new(BigInt::from(64), prime.clone());
let yr = FieldElement::new(BigInt::from(168), prime.clone());
let r = Point::new_point(xr, yr, a.clone(), b.clone()).unwrap();

assert_eq!(p1.clone() + p1.clone(), r);

let x1 = FieldElement::new(BigInt::from(47), prime.clone());
let y1 = FieldElement::new(BigInt::from(71), prime.clone());
let p1 = Point::new_point(x1, y1, a.clone(), b.clone()).unwrap();

let xr = FieldElement::new(BigInt::from(36), prime.clone());
let yr = FieldElement::new(BigInt::from(111), prime.clone());
let r = Point::new_point(xr, yr, a.clone(), b.clone()).unwrap();

assert_eq!(p1.clone() + p1.clone(), r);

let xr = FieldElement::new(BigInt::from(194), prime.clone());
let yr = FieldElement::new(BigInt::from(51), prime.clone());
let r = Point::new_point(xr, yr, a.clone(), b.clone()).unwrap();

assert_eq!(p1.clone() + p1.clone() + p1.clone() + p1.clone(), r);

let xr = FieldElement::new(BigInt::from(116), prime.clone());
let yr = FieldElement::new(BigInt::from(55), prime.clone());
let r = Point::new_point(xr, yr, a.clone(), b.clone()).unwrap();

assert_eq!(p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone(), r);

let r = Point::new_infinity(a.clone(), b.clone());

assert_eq!(p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone(), r);
assert_eq!(p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone() + p1.clone(), p1);
}

#[test]
fn test_scalar_mul() {
let prime = BigInt::from(223);
let a = FieldElement::new(BigInt::from(0), prime.clone());
let b = FieldElement::new(BigInt::from(7), prime.clone());

let x = FieldElement::new(BigInt::from(15), prime.clone());
let y = FieldElement::new(BigInt::from(86), prime.clone());

let p = Point::new_point(x, y, a.clone(), b.clone()).unwrap();

assert_eq!(p.clone(), p.clone() * 1u64);
assert_eq!(p.clone() * 7u64, Point::new_infinity(a, b));
assert_eq!(p.clone() * 3, p.clone() + p.clone() + p);
}
}
1 change: 0 additions & 1 deletion src/lib.rs
View file
Open in desktop

This file was deleted.

4 changes: 2 additions & 2 deletions src/main.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
mod finite_field;
mod point;
mod ecc;
mod types;

fn main() {
println!("Hello, world!");
Expand Down
3 changes: 2 additions & 1 deletion src/types/errors.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,5 +4,6 @@ use thiserror::Error;
pub enum Errors {
#[error("Point is not included in the curve")]
InvalidPoint,

#[error("Cannot add points from different curves")]
DifferentCurves,
}