wallet-core/src/crypto/cryptoWorker.ts

763 lines
23 KiB
TypeScript
Raw Normal View History

2016-02-19 00:49:22 +01:00
/*
This file is part of TALER
(C) 2016 GNUnet e.V.
TALER is free software; you can redistribute it and/or modify it under the
terms of the GNU General Public License as published by the Free Software
Foundation; either version 3, or (at your option) any later version.
TALER is distributed in the hope that it will be useful, but WITHOUT ANY
WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with
2016-07-07 17:59:29 +02:00
TALER; see the file COPYING. If not, see <http://www.gnu.org/licenses/>
2016-02-19 00:49:22 +01:00
*/
/**
* Web worker for crypto operations.
*/
2017-05-24 16:14:23 +02:00
/**
* Imports.
*/
import * as Amounts from "../amounts";
import { AmountJson } from "../amounts";
2018-09-20 02:56:13 +02:00
import * as timer from "../timer";
2017-10-15 19:28:35 +02:00
import {
CoinRecord,
CoinStatus,
DenominationRecord,
PreCoinRecord,
RefreshPreCoinRecord,
RefreshSessionRecord,
ReserveRecord,
2017-11-30 04:07:36 +01:00
TipPlanchet,
WireFee,
} from "../dbTypes";
2019-06-26 15:30:32 +02:00
import { CoinPaySig, ContractTerms, PaybackRequest } from "../talerTypes";
2019-06-26 15:30:32 +02:00
import { BenchmarkResult, CoinWithDenom, PayCoinInfo } from "../walletTypes";
import { canonicalJson } from "../helpers";
2017-05-28 01:10:54 +02:00
2018-09-20 21:11:09 +02:00
import * as emscLoader from "./emscLoader";
import {
Amount,
EddsaPublicKey,
HashCode,
HashContext,
RefreshMeltCoinAffirmationPS,
} from "./emscInterface";
2017-05-28 01:10:54 +02:00
import * as native from "./emscInterface";
2016-02-19 00:49:22 +01:00
namespace RpcFunctions {
2019-07-31 01:33:56 +02:00
export let enableTracing: boolean = false;
/**
* Create a pre-coin of the given denomination to be withdrawn from then given
* reserve.
*/
2019-06-26 15:30:32 +02:00
export function createPreCoin(
denom: DenominationRecord,
reserve: ReserveRecord,
): PreCoinRecord {
2017-05-28 01:10:54 +02:00
const reservePriv = new native.EddsaPrivateKey();
reservePriv.loadCrock(reserve.reserve_priv);
2017-05-28 01:10:54 +02:00
const reservePub = new native.EddsaPublicKey();
reservePub.loadCrock(reserve.reserve_pub);
2017-05-28 01:10:54 +02:00
const denomPub = native.RsaPublicKey.fromCrock(denom.denomPub);
const coinPriv = native.EddsaPrivateKey.create();
const coinPub = coinPriv.getPublicKey();
const blindingFactor = native.RsaBlindingKeySecret.create();
const pubHash: native.HashCode = coinPub.hash();
const ev = native.rsaBlind(pubHash, blindingFactor, denomPub);
2016-02-19 00:49:22 +01:00
if (!ev) {
throw Error("couldn't blind (malicious exchange key?)");
}
if (!denom.feeWithdraw) {
throw Error("Field fee_withdraw missing");
}
2017-05-28 01:10:54 +02:00
const amountWithFee = new native.Amount(denom.value);
amountWithFee.add(new native.Amount(denom.feeWithdraw));
2017-05-28 01:10:54 +02:00
const withdrawFee = new native.Amount(denom.feeWithdraw);
2019-05-08 07:01:17 +02:00
const denomPubHash = denomPub.encode().hash();
// Signature
2017-05-28 01:10:54 +02:00
const withdrawRequest = new native.WithdrawRequestPS({
amount_with_fee: amountWithFee.toNbo(),
2017-05-28 01:10:54 +02:00
h_coin_envelope: ev.hash(),
2019-05-08 07:01:17 +02:00
h_denomination_pub: denomPubHash,
2017-05-28 01:10:54 +02:00
reserve_pub: reservePub,
withdraw_fee: withdrawFee.toNbo(),
});
2017-05-28 01:10:54 +02:00
const sig = native.eddsaSign(withdrawRequest.toPurpose(), reservePriv);
2017-05-28 01:10:54 +02:00
const preCoin: PreCoinRecord = {
blindingKey: blindingFactor.toCrock(),
2017-05-28 01:10:54 +02:00
coinEv: ev.toCrock(),
coinPriv: coinPriv.toCrock(),
2017-05-28 01:10:54 +02:00
coinPub: coinPub.toCrock(),
coinValue: denom.value,
2019-05-08 07:01:17 +02:00
denomPub: denomPub.toCrock(),
denomPubHash: denomPubHash.toCrock(),
exchangeBaseUrl: reserve.exchange_base_url,
2017-11-30 04:07:36 +01:00
isFromTip: false,
2017-05-28 01:10:54 +02:00
reservePub: reservePub.toCrock(),
withdrawSig: sig.toCrock(),
};
return preCoin;
}
/**
* Create a planchet used for tipping, including the private keys.
*/
2017-11-30 04:07:36 +01:00
export function createTipPlanchet(denom: DenominationRecord): TipPlanchet {
const denomPub = native.RsaPublicKey.fromCrock(denom.denomPub);
const coinPriv = native.EddsaPrivateKey.create();
const coinPub = coinPriv.getPublicKey();
const blindingFactor = native.RsaBlindingKeySecret.create();
const pubHash: native.HashCode = coinPub.hash();
const ev = native.rsaBlind(pubHash, blindingFactor, denomPub);
if (!ev) {
throw Error("couldn't blind (malicious exchange key?)");
}
if (!denom.feeWithdraw) {
throw Error("Field fee_withdraw missing");
}
const tipPlanchet: TipPlanchet = {
blindingKey: blindingFactor.toCrock(),
coinEv: ev.toCrock(),
coinPriv: coinPriv.toCrock(),
coinPub: coinPub.toCrock(),
coinValue: denom.value,
denomPub: denomPub.encode().toCrock(),
2019-06-26 15:30:32 +02:00
denomPubHash: denomPub
.encode()
.hash()
.toCrock(),
2017-11-30 04:07:36 +01:00
};
return tipPlanchet;
}
/**
* Create and sign a message to request payback for a coin.
*/
export function createPaybackRequest(coin: CoinRecord): PaybackRequest {
2017-05-28 01:10:54 +02:00
const p = new native.PaybackRequestPS({
coin_blind: native.RsaBlindingKeySecret.fromCrock(coin.blindingKey),
coin_pub: native.EddsaPublicKey.fromCrock(coin.coinPub),
2019-06-26 15:30:32 +02:00
h_denom_pub: native.RsaPublicKey.fromCrock(coin.denomPub)
.encode()
.hash(),
});
2017-05-28 01:10:54 +02:00
const coinPriv = native.EddsaPrivateKey.fromCrock(coin.coinPriv);
const coinSig = native.eddsaSign(p.toPurpose(), coinPriv);
const paybackRequest: PaybackRequest = {
coin_blind_key_secret: coin.blindingKey,
coin_pub: coin.coinPub,
coin_sig: coinSig.toCrock(),
2017-05-28 01:10:54 +02:00
denom_pub: coin.denomPub,
denom_sig: coin.denomSig,
};
return paybackRequest;
}
/**
* Check if a payment signature is valid.
*/
2019-06-26 15:30:32 +02:00
export function isValidPaymentSignature(
sig: string,
contractHash: string,
merchantPub: string,
): boolean {
2017-05-28 01:10:54 +02:00
const p = new native.PaymentSignaturePS({
contract_hash: native.HashCode.fromCrock(contractHash),
});
2017-05-28 01:10:54 +02:00
const nativeSig = new native.EddsaSignature();
nativeSig.loadCrock(sig);
2017-05-28 01:10:54 +02:00
const nativePub = native.EddsaPublicKey.fromCrock(merchantPub);
2019-06-26 15:30:32 +02:00
return native.eddsaVerify(
native.SignaturePurpose.MERCHANT_PAYMENT_OK,
p.toPurpose(),
nativeSig,
nativePub,
);
}
/**
* Check if a wire fee is correctly signed.
*/
2019-06-26 15:30:32 +02:00
export function isValidWireFee(
type: string,
wf: WireFee,
masterPub: string,
): boolean {
2017-05-28 01:10:54 +02:00
const p = new native.MasterWireFeePS({
2019-06-26 15:30:32 +02:00
closing_fee: new native.Amount(wf.closingFee).toNbo(),
2017-05-28 01:10:54 +02:00
end_date: native.AbsoluteTimeNbo.fromStampSeconds(wf.endStamp),
h_wire_method: native.ByteArray.fromStringWithNull(type).hash(),
2017-04-27 04:06:48 +02:00
start_date: native.AbsoluteTimeNbo.fromStampSeconds(wf.startStamp),
2019-06-26 15:30:32 +02:00
wire_fee: new native.Amount(wf.wireFee).toNbo(),
});
2017-05-28 01:10:54 +02:00
const nativeSig = new native.EddsaSignature();
nativeSig.loadCrock(wf.sig);
2017-05-28 01:10:54 +02:00
const nativePub = native.EddsaPublicKey.fromCrock(masterPub);
2019-06-26 15:30:32 +02:00
return native.eddsaVerify(
native.SignaturePurpose.MASTER_WIRE_FEES,
p.toPurpose(),
nativeSig,
nativePub,
);
}
/**
* Check if the signature of a denomination is valid.
*/
2019-06-26 15:30:32 +02:00
export function isValidDenom(
denom: DenominationRecord,
masterPub: string,
): boolean {
2017-05-28 01:10:54 +02:00
const p = new native.DenominationKeyValidityPS({
2019-06-26 15:30:32 +02:00
denom_hash: native.RsaPublicKey.fromCrock(denom.denomPub)
.encode()
.hash(),
expire_legal: native.AbsoluteTimeNbo.fromTalerString(
denom.stampExpireLegal,
),
expire_spend: native.AbsoluteTimeNbo.fromTalerString(
denom.stampExpireDeposit,
),
expire_withdraw: native.AbsoluteTimeNbo.fromTalerString(
denom.stampExpireWithdraw,
),
fee_deposit: new native.Amount(denom.feeDeposit).toNbo(),
fee_refresh: new native.Amount(denom.feeRefresh).toNbo(),
fee_refund: new native.Amount(denom.feeRefund).toNbo(),
fee_withdraw: new native.Amount(denom.feeWithdraw).toNbo(),
2017-05-28 01:10:54 +02:00
master: native.EddsaPublicKey.fromCrock(masterPub),
start: native.AbsoluteTimeNbo.fromTalerString(denom.stampStart),
2019-06-26 15:30:32 +02:00
value: new native.Amount(denom.value).toNbo(),
});
2017-05-28 01:10:54 +02:00
const nativeSig = new native.EddsaSignature();
nativeSig.loadCrock(denom.masterSig);
2017-05-28 01:10:54 +02:00
const nativePub = native.EddsaPublicKey.fromCrock(masterPub);
2019-06-26 15:30:32 +02:00
return native.eddsaVerify(
native.SignaturePurpose.MASTER_DENOMINATION_KEY_VALIDITY,
p.toPurpose(),
nativeSig,
nativePub,
);
}
/**
* Create a new EdDSA key pair.
*/
2019-06-26 15:30:32 +02:00
export function createEddsaKeypair(): { priv: string; pub: string } {
const priv = native.EddsaPrivateKey.create();
const pub = priv.getPublicKey();
2019-06-26 15:30:32 +02:00
return { priv: priv.toCrock(), pub: pub.toCrock() };
}
2016-02-19 00:49:22 +01:00
/**
* Unblind a blindly signed value.
*/
export function rsaUnblind(sig: string, bk: string, pk: string): string {
2019-06-26 15:30:32 +02:00
const denomSig = native.rsaUnblind(
native.RsaSignature.fromCrock(sig),
native.RsaBlindingKeySecret.fromCrock(bk),
native.RsaPublicKey.fromCrock(pk),
);
2017-05-28 01:10:54 +02:00
return denomSig.encode().toCrock();
}
/**
* Generate updated coins (to store in the database)
* and deposit permissions for each given coin.
*/
2019-06-26 15:30:32 +02:00
export function signDeposit(
contractTerms: ContractTerms,
cds: CoinWithDenom[],
totalAmount: AmountJson,
): PayCoinInfo {
const ret: PayCoinInfo = {
originalCoins: [],
sigs: [],
updatedCoins: [],
};
const contractTermsHash = hashString(canonicalJson(contractTerms));
2019-06-26 15:30:32 +02:00
const feeList: AmountJson[] = cds.map(x => x.denom.feeDeposit);
let fees = Amounts.add(Amounts.getZero(feeList[0].currency), ...feeList)
.amount;
// okay if saturates
2019-06-26 15:30:32 +02:00
fees = Amounts.sub(fees, Amounts.parseOrThrow(contractTerms.max_fee))
.amount;
const total = Amounts.add(fees, totalAmount).amount;
2019-06-26 15:30:32 +02:00
const amountSpent = native.Amount.getZero(
cds[0].coin.currentAmount.currency,
);
2017-05-28 01:10:54 +02:00
const amountRemaining = new native.Amount(total);
for (const cd of cds) {
let coinSpend: Amount;
2019-06-26 15:30:32 +02:00
const originalCoin = { ...cd.coin };
2017-05-28 01:10:54 +02:00
if (amountRemaining.value === 0 && amountRemaining.fraction === 0) {
break;
}
if (amountRemaining.cmp(new native.Amount(cd.coin.currentAmount)) < 0) {
coinSpend = new native.Amount(amountRemaining.toJson());
} else {
coinSpend = new native.Amount(cd.coin.currentAmount);
}
amountSpent.add(coinSpend);
amountRemaining.sub(coinSpend);
2017-05-28 01:10:54 +02:00
const feeDeposit: Amount = new native.Amount(cd.denom.feeDeposit);
// Give the merchant at least the deposit fee, otherwise it'll reject
// the coin.
if (coinSpend.cmp(feeDeposit) < 0) {
coinSpend = feeDeposit;
}
2017-05-28 01:10:54 +02:00
const newAmount = new native.Amount(cd.coin.currentAmount);
newAmount.sub(coinSpend);
cd.coin.currentAmount = newAmount.toJson();
2017-08-27 03:56:19 +02:00
cd.coin.status = CoinStatus.PurchasePending;
2017-05-28 01:10:54 +02:00
const d = new native.DepositRequestPS({
amount_with_fee: coinSpend.toNbo(),
coin_pub: native.EddsaPublicKey.fromCrock(cd.coin.coinPub),
deposit_fee: new native.Amount(cd.denom.feeDeposit).toNbo(),
h_contract: native.HashCode.fromCrock(contractTermsHash),
h_wire: native.HashCode.fromCrock(contractTerms.H_wire),
merchant: native.EddsaPublicKey.fromCrock(contractTerms.merchant_pub),
2019-06-26 15:30:32 +02:00
refund_deadline: native.AbsoluteTimeNbo.fromTalerString(
contractTerms.refund_deadline,
),
timestamp: native.AbsoluteTimeNbo.fromTalerString(
contractTerms.timestamp,
),
2016-11-03 00:47:22 +01:00
});
2019-06-26 15:30:32 +02:00
const coinSig = native
.eddsaSign(
d.toPurpose(),
native.EddsaPrivateKey.fromCrock(cd.coin.coinPriv),
)
.toCrock();
2017-05-28 01:10:54 +02:00
const s: CoinPaySig = {
coin_pub: cd.coin.coinPub,
2017-05-28 01:10:54 +02:00
coin_sig: coinSig,
contribution: Amounts.toString(coinSpend.toJson()),
denom_pub: cd.coin.denomPub,
2018-01-04 13:22:23 +01:00
exchange_url: cd.denom.exchangeBaseUrl,
2017-05-28 01:10:54 +02:00
ub_sig: cd.coin.denomSig,
};
ret.sigs.push(s);
ret.updatedCoins.push(cd.coin);
ret.originalCoins.push(originalCoin);
}
return ret;
}
/**
* Create a new refresh session.
*/
2019-06-26 15:30:32 +02:00
export function createRefreshSession(
exchangeBaseUrl: string,
kappa: number,
meltCoin: CoinRecord,
newCoinDenoms: DenominationRecord[],
meltFee: AmountJson,
): RefreshSessionRecord {
let valueWithFee = Amounts.getZero(newCoinDenoms[0].value.currency);
2017-05-28 01:10:54 +02:00
for (const ncd of newCoinDenoms) {
2019-06-26 15:30:32 +02:00
valueWithFee = Amounts.add(valueWithFee, ncd.value, ncd.feeWithdraw)
.amount;
}
// melt fee
valueWithFee = Amounts.add(valueWithFee, meltFee).amount;
2017-05-28 01:10:54 +02:00
const sessionHc = new HashContext();
2017-05-28 01:10:54 +02:00
const transferPubs: string[] = [];
const transferPrivs: string[] = [];
2017-05-28 01:10:54 +02:00
const preCoinsForGammas: RefreshPreCoinRecord[][] = [];
for (let i = 0; i < kappa; i++) {
2017-05-28 01:10:54 +02:00
const t = native.EcdhePrivateKey.create();
const pub = t.getPublicKey();
sessionHc.read(pub);
transferPrivs.push(t.toCrock());
transferPubs.push(pub.toCrock());
}
2017-05-28 01:10:54 +02:00
for (const denom of newCoinDenoms) {
const r = native.RsaPublicKey.fromCrock(denom.denomPub);
sessionHc.read(r.encode());
}
sessionHc.read(native.EddsaPublicKey.fromCrock(meltCoin.coinPub));
2019-06-26 15:30:32 +02:00
sessionHc.read(new native.Amount(valueWithFee).toNbo());
for (let i = 0; i < kappa; i++) {
2017-05-28 01:10:54 +02:00
const preCoins: RefreshPreCoinRecord[] = [];
for (let j = 0; j < newCoinDenoms.length; j++) {
2017-05-28 01:10:54 +02:00
const transferPriv = native.EcdhePrivateKey.fromCrock(transferPrivs[i]);
const oldCoinPub = native.EddsaPublicKey.fromCrock(meltCoin.coinPub);
const transferSecret = native.ecdhEddsa(transferPriv, oldCoinPub);
2017-05-28 01:10:54 +02:00
const fresh = native.setupFreshCoin(transferSecret, j);
2017-05-28 01:10:54 +02:00
const coinPriv = fresh.priv;
const coinPub = coinPriv.getPublicKey();
const blindingFactor = fresh.blindingKey;
const pubHash: native.HashCode = coinPub.hash();
2019-06-26 15:30:32 +02:00
const denomPub = native.RsaPublicKey.fromCrock(
newCoinDenoms[j].denomPub,
);
const ev = native.rsaBlind(pubHash, blindingFactor, denomPub);
if (!ev) {
throw Error("couldn't blind (malicious exchange key?)");
}
2017-05-28 01:10:54 +02:00
const preCoin: RefreshPreCoinRecord = {
blindingKey: blindingFactor.toCrock(),
coinEv: ev.toCrock(),
privateKey: coinPriv.toCrock(),
2017-05-28 01:10:54 +02:00
publicKey: coinPub.toCrock(),
};
preCoins.push(preCoin);
sessionHc.read(ev);
}
preCoinsForGammas.push(preCoins);
}
2017-05-28 01:10:54 +02:00
const sessionHash = new HashCode();
sessionHash.alloc();
sessionHc.finish(sessionHash);
2017-05-28 01:10:54 +02:00
const confirmData = new RefreshMeltCoinAffirmationPS({
2019-06-26 15:30:32 +02:00
amount_with_fee: new Amount(valueWithFee).toNbo(),
2017-05-28 01:10:54 +02:00
coin_pub: EddsaPublicKey.fromCrock(meltCoin.coinPub),
2019-06-26 15:30:32 +02:00
melt_fee: new Amount(meltFee).toNbo(),
session_hash: sessionHash,
});
2019-06-26 15:30:32 +02:00
const confirmSig: string = native
.eddsaSign(
confirmData.toPurpose(),
native.EddsaPrivateKey.fromCrock(meltCoin.coinPriv),
)
.toCrock();
let valueOutput = Amounts.getZero(newCoinDenoms[0].value.currency);
2017-05-28 01:10:54 +02:00
for (const denom of newCoinDenoms) {
valueOutput = Amounts.add(valueOutput, denom.value).amount;
}
2017-05-28 01:10:54 +02:00
const refreshSession: RefreshSessionRecord = {
confirmSig,
2017-05-28 01:10:54 +02:00
exchangeBaseUrl,
finished: false,
hash: sessionHash.toCrock(),
2017-05-28 01:10:54 +02:00
meltCoinPub: meltCoin.coinPub,
2019-06-26 15:30:32 +02:00
newDenomHashes: newCoinDenoms.map(d => d.denomPubHash),
newDenoms: newCoinDenoms.map(d => d.denomPub),
norevealIndex: undefined,
2017-05-28 01:10:54 +02:00
preCoinsForGammas,
transferPrivs,
2017-05-28 01:10:54 +02:00
transferPubs,
valueOutput,
2017-05-28 01:10:54 +02:00
valueWithFee,
};
return refreshSession;
}
2017-05-24 16:14:23 +02:00
/**
* Hash a string including the zero terminator.
*/
export function hashString(str: string): string {
const b = native.ByteArray.fromStringWithNull(str);
return b.hash().toCrock();
}
/**
* Hash a denomination public key.
*/
export function hashDenomPub(denomPub: string): string {
2019-06-26 15:30:32 +02:00
return native.RsaPublicKey.fromCrock(denomPub)
.encode()
.hash()
.toCrock();
}
export function signCoinLink(
oldCoinPriv: string,
newDenomHash: string,
oldCoinPub: string,
transferPub: string,
coinEv: string,
): string {
const coinEvHash = native.ByteArray.fromCrock(coinEv).hash();
const coinLink = new native.CoinLinkSignaturePS({
coin_envelope_hash: coinEvHash,
h_denom_pub: native.HashCode.fromCrock(newDenomHash),
old_coin_pub: native.EddsaPublicKey.fromCrock(oldCoinPub),
transfer_pub: native.EcdhePublicKey.fromCrock(transferPub),
});
const coinPriv = native.EddsaPrivateKey.fromCrock(oldCoinPriv);
const sig = native.eddsaSign(coinLink.toPurpose(), coinPriv);
return sig.toCrock();
}
2018-09-20 02:56:13 +02:00
export function benchmark(repetitions: number): BenchmarkResult {
let time_hash = 0;
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
hashString("hello world");
time_hash += timer.performanceNow() - start;
}
let time_hash_big = 0;
const ba = new native.ByteArray(4096);
for (let i = 0; i < repetitions; i++) {
ba.randomize(native.RandomQuality.WEAK);
const start = timer.performanceNow();
2019-06-26 15:30:32 +02:00
ba.hash();
2018-09-20 02:56:13 +02:00
time_hash_big += timer.performanceNow() - start;
}
let time_eddsa_create = 0;
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
const priv: native.EddsaPrivateKey = native.EddsaPrivateKey.create();
2019-06-26 15:30:32 +02:00
time_eddsa_create += timer.performanceNow() - start;
2018-09-20 02:56:13 +02:00
priv.destroy();
}
let time_eddsa_sign = 0;
const eddsaPriv: native.EddsaPrivateKey = native.EddsaPrivateKey.create();
const eddsaPub: native.EddsaPublicKey = eddsaPriv.getPublicKey();
const h: native.HashCode = new native.HashCode();
h.alloc();
h.random(native.RandomQuality.WEAK);
const ps = new native.PaymentSignaturePS({
contract_hash: h,
});
const p = ps.toPurpose();
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
native.eddsaSign(p, eddsaPriv);
time_eddsa_sign += timer.performanceNow() - start;
}
const eddsaSig = native.eddsaSign(p, eddsaPriv);
let time_ecdsa_create = 0;
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
const priv: native.EcdsaPrivateKey = native.EcdsaPrivateKey.create();
time_ecdsa_create += timer.performanceNow() - start;
priv.destroy();
}
let time_eddsa_verify = 0;
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
2019-06-26 15:30:32 +02:00
native.eddsaVerify(
native.SignaturePurpose.MERCHANT_PAYMENT_OK,
p,
eddsaSig,
eddsaPub,
);
2018-09-20 02:56:13 +02:00
time_eddsa_verify += timer.performanceNow() - start;
}
2018-09-22 17:18:25 +02:00
/* rsa 2048 */
let time_rsa_2048_blind = 0;
const rsaPriv2048: native.RsaPrivateKey = native.RsaPrivateKey.create(2048);
const rsaPub2048 = rsaPriv2048.getPublicKey();
const blindingSecret2048 = native.RsaBlindingKeySecret.create();
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
native.rsaBlind(h, blindingSecret2048, rsaPub2048);
time_rsa_2048_blind += timer.performanceNow() - start;
}
2019-06-26 15:30:32 +02:00
const blindedMessage2048 = native.rsaBlind(
h,
blindingSecret2048,
rsaPub2048,
);
2018-09-22 17:18:25 +02:00
if (!blindedMessage2048) {
throw Error("should not happen");
}
2019-06-26 15:30:32 +02:00
const rsaBlindSig2048 = native.rsaSignBlinded(
rsaPriv2048,
blindedMessage2048,
);
2018-09-22 17:18:25 +02:00
let time_rsa_2048_unblind = 0;
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
native.rsaUnblind(rsaBlindSig2048, blindingSecret2048, rsaPub2048);
time_rsa_2048_unblind += timer.performanceNow() - start;
}
2019-06-26 15:30:32 +02:00
const unblindedSig2048 = native.rsaUnblind(
rsaBlindSig2048,
blindingSecret2048,
rsaPub2048,
);
2018-09-22 17:18:25 +02:00
let time_rsa_2048_verify = 0;
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
native.rsaVerify(h, unblindedSig2048, rsaPub2048);
time_rsa_2048_verify += timer.performanceNow() - start;
}
/* rsa 4096 */
let time_rsa_4096_blind = 0;
const rsaPriv4096: native.RsaPrivateKey = native.RsaPrivateKey.create(4096);
const rsaPub4096 = rsaPriv4096.getPublicKey();
const blindingSecret4096 = native.RsaBlindingKeySecret.create();
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
native.rsaBlind(h, blindingSecret4096, rsaPub4096);
time_rsa_4096_blind += timer.performanceNow() - start;
}
2019-06-26 15:30:32 +02:00
const blindedMessage4096 = native.rsaBlind(
h,
blindingSecret4096,
rsaPub4096,
);
2018-09-22 17:18:25 +02:00
if (!blindedMessage4096) {
throw Error("should not happen");
}
2019-06-26 15:30:32 +02:00
const rsaBlindSig4096 = native.rsaSignBlinded(
rsaPriv4096,
blindedMessage4096,
);
2018-09-22 17:18:25 +02:00
let time_rsa_4096_unblind = 0;
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
native.rsaUnblind(rsaBlindSig4096, blindingSecret4096, rsaPub4096);
time_rsa_4096_unblind += timer.performanceNow() - start;
}
2019-06-26 15:30:32 +02:00
const unblindedSig4096 = native.rsaUnblind(
rsaBlindSig4096,
blindingSecret4096,
rsaPub4096,
);
2018-09-22 17:18:25 +02:00
let time_rsa_4096_verify = 0;
for (let i = 0; i < repetitions; i++) {
const start = timer.performanceNow();
native.rsaVerify(h, unblindedSig4096, rsaPub4096);
time_rsa_4096_verify += timer.performanceNow() - start;
}
2018-09-20 02:56:13 +02:00
return {
repetitions,
time: {
hash_small: time_hash,
hash_big: time_hash_big,
eddsa_create: time_eddsa_create,
eddsa_sign: time_eddsa_sign,
eddsa_verify: time_eddsa_verify,
ecdsa_create: time_ecdsa_create,
2018-09-22 17:18:25 +02:00
rsa_2048_blind: time_rsa_2048_blind,
rsa_2048_unblind: time_rsa_2048_unblind,
rsa_2048_verify: time_rsa_2048_verify,
rsa_4096_blind: time_rsa_4096_blind,
rsa_4096_unblind: time_rsa_4096_unblind,
rsa_4096_verify: time_rsa_4096_verify,
2019-06-26 15:30:32 +02:00
},
2018-09-20 02:56:13 +02:00
};
}
}
2017-05-28 01:10:54 +02:00
const worker: Worker = (self as any) as Worker;
worker.onmessage = (msg: MessageEvent) => {
if (!Array.isArray(msg.data.args)) {
console.error("args must be array");
return;
}
2017-05-28 01:10:54 +02:00
if (typeof msg.data.id !== "number") {
console.error("RPC id must be number");
}
2017-05-28 01:10:54 +02:00
if (typeof msg.data.operation !== "string") {
console.error("RPC operation must be string");
}
2017-05-28 01:10:54 +02:00
const f = (RpcFunctions as any)[msg.data.operation];
if (!f) {
console.error(`unknown operation: '${msg.data.operation}'`);
return;
}
2018-09-20 21:11:09 +02:00
2019-07-31 01:33:56 +02:00
if (RpcFunctions.enableTracing) {
console.log("onmessage with", msg.data.operation);
}
2018-09-20 21:11:09 +02:00
2019-06-26 15:30:32 +02:00
emscLoader.getLib().then(p => {
2018-09-20 21:11:09 +02:00
const lib = p.lib;
if (!native.isInitialized()) {
2019-07-31 01:33:56 +02:00
if (RpcFunctions.enableTracing) {
console.log("initializing emscripten for then first time with lib");
}
2018-09-20 21:11:09 +02:00
native.initialize(lib);
}
2019-07-31 01:33:56 +02:00
if (RpcFunctions.enableTracing) {
console.log("about to execute", msg.data.operation);
}
2018-09-20 21:11:09 +02:00
const res = f(...msg.data.args);
2019-07-31 01:33:56 +02:00
if (RpcFunctions.enableTracing) {
console.log("finished executing", msg.data.operation);
}
2018-09-20 21:11:09 +02:00
worker.postMessage({ result: res, id: msg.data.id });
});
2017-05-28 01:10:54 +02:00
};