nucypher · piotr-roslaniec · Feb 6, 2024 · Feb 7, 2024 · Feb 12, 2024 · Feb 14, 2024
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -9,6 +9,47 @@ members = [
     "subproductdomain",
 ]
 
+[workspace.dependencies]
+anyhow = "1.0.47"
+ark-bls12-381 = "0.4.0"
+ark-ec = "0.4"
+ark-ff = "0.4"
+ark-poly = "0.4"
+ark-serialize = "0.4"
+ark-std = "0.4"
+bincode = "1.3.3"
+chacha20poly1305 = "0.10.1"
+criterion = "0.3"
+console_error_panic_hook = "0.1.7"
+derive_more = { version = "0.99", default-features = false }
+digest = "0.10.0"
+ferveo-common = { path = "ferveo-common" }
+ferveo-tdec = { path = "ferveo-tdec" }
+generic-array = "0.14.7"
+getrandom = "0.2"
+hex = "0.4"
+itertools = "0.10.5"
+js-sys = "0.3.63"
+measure_time = "0.8"
+miracl_core = "=2.3.0"
+pprof = "0.6"
+pyo3 = "0.18.2"
+pyo3-build-config = "*"
+rand = "0.8"
+rand_core = "0.6.4"
+rand_old =  { package = "rand", version = "0.7" } # TODO: Used by benchmarks/pairing.rs, update to rand = "0.8" when possible
+serde = "1.0"
+serde_bytes = "0.11.9"
+serde_with = "2.2.0"
+sha2 = "0.10.6"
+subproductdomain = { path = "subproductdomain" }
+test-case = "3.3.1"
+thiserror = "1.0"
+wasm-bindgen = "0.2.86"
+wasm-bindgen-derive = "0.2.1"
+wasm-bindgen-test = "0.3.28"
+zeroize = "1.6.0"
+
 [profile.bench]
 opt-level = 3
 debug = true

diff --git a/ferveo-common/Cargo.toml b/ferveo-common/Cargo.toml
@@ -7,14 +7,14 @@ authors = ["Heliax AG <[email protected]>", "Piotr Roslaniec <[email protected]
 description = "Common types and traits for Ferveo"
 
 [dependencies]
-ark-ec = "0.4"
-ark-serialize = { version = "0.4", features = ["derive"] }
-ark-std = "0.4"
-bincode = "1.3.3"
-generic-array = "0.14.7"
-rand = "0.8"
-serde = { version = "1.0", features = ["derive"] }
-serde_with = "2.2.0"
+ark-ec = { workspace = true }
+ark-serialize = { workspace = true, features = ["derive"] }
+ark-std = { workspace = true }
+bincode = { workspace = true }
+generic-array = { workspace = true }
+rand = { workspace = true }
+serde = { workspace = true, features = ["derive"] }
+serde_with = { workspace = true }
 
 [dev-dependencies]
-ark-bls12-381 = "0.4.0"
+ark-bls12-381 = { workspace = true }
diff --git a/ferveo-common/src/keypair.rs b/ferveo-common/src/keypair.rs
@@ -6,7 +6,10 @@ use ark_std::{
     rand::{prelude::StdRng, RngCore, SeedableRng},
     UniformRand,
 };
-use generic_array::{typenum::U96, GenericArray};
+use generic_array::{
+    typenum::{Unsigned, U96},
+    GenericArray,
+};
 use serde::*;
 use serde_with::serde_as;
 
@@ -55,7 +58,7 @@ impl<E: Pairing> PublicKey<E> {
     }
 
     pub fn serialized_size() -> usize {
-        96
+        U96::to_usize()
     }
 }
 
@@ -106,7 +109,6 @@ impl<E: Pairing> Ord for Keypair<E> {
 
 impl<E: Pairing> Keypair<E> {
     /// Returns the public session key for the publicly verifiable DKG participant
-
     pub fn public_key(&self) -> PublicKey<E> {
         PublicKey::<E> {
             encryption_key: E::G2Affine::generator()
@@ -116,7 +118,6 @@ impl<E: Pairing> Keypair<E> {
     }
 
     /// Creates a new ephemeral session key for participating in the DKG
-
     pub fn new<R: RngCore>(rng: &mut R) -> Self {
         Self {
             decryption_key: E::ScalarField::rand(rng),

diff --git a/ferveo-python/Cargo.toml b/ferveo-python/Cargo.toml
@@ -15,7 +15,7 @@ default = ["extension-module"]
 
 [dependencies]
 ferveo = { package = "ferveo-pre-release", path = "../ferveo", features = ["bindings-python"] }
-pyo3 = "0.18.2"
+pyo3 = { workspace = true }
 
 [build-dependencies]
-pyo3-build-config = "*"
+pyo3-build-config = { workspace = true }
diff --git a/ferveo-python/examples/server_api_precomputed.py b/ferveo-python/examples/server_api_precomputed.py
@@ -39,6 +39,9 @@ def gen_eth_addr(i: int) -> str:
     )
     messages.append(ValidatorMessage(sender, dkg.generate_transcript()))
 
+# We only need `shares_num` messages to aggregate the transcript
+messages = messages[:shares_num]
+
 # Every validator can aggregate the transcripts
 dkg = Dkg(
     tau=tau,
@@ -59,11 +62,15 @@ def gen_eth_addr(i: int) -> str:
 # In the meantime, the client creates a ciphertext and decryption request
 msg = "abc".encode()
 aad = "my-aad".encode()
-ciphertext = encrypt(msg, aad, dkg.public_key)
+ciphertext = encrypt(msg, aad, client_aggregate.public_key)
+
+# In precomputed variant, the client selects a subset of validators to use for decryption
+selected_validators = validators[:security_threshold]
+selected_keypairs = validator_keypairs[:security_threshold]
 
 # Having aggregated the transcripts, the validators can now create decryption shares
 decryption_shares = []
-for validator, validator_keypair in zip(validators, validator_keypairs):
+for validator, validator_keypair in zip(selected_validators, selected_keypairs):
     dkg = Dkg(
         tau=tau,
         shares_num=shares_num,
@@ -80,13 +87,15 @@ def gen_eth_addr(i: int) -> str:
 
     # Create a decryption share for the ciphertext
     decryption_share = aggregate.create_decryption_share_precomputed(
-        dkg, ciphertext.header, aad, validator_keypair
+        dkg, ciphertext.header, aad, validator_keypair, selected_validators
     )
     decryption_shares.append(decryption_share)
 
+# We need at most `security_threshold` decryption shares
+decryption_shares = decryption_shares[:security_threshold]
+
 # Now, the decryption share can be used to decrypt the ciphertext
 # This part is in the client API
-
 shared_secret = combine_decryption_shares_precomputed(decryption_shares)
 
 # The client should have access to the public parameters of the DKG

diff --git a/ferveo-python/examples/server_api_simple.py b/ferveo-python/examples/server_api_simple.py
@@ -40,6 +40,9 @@ def gen_eth_addr(i: int) -> str:
     )
     messages.append(ValidatorMessage(sender, dkg.generate_transcript()))
 
+# We only need `shares_num` messages to aggregate the transcript
+messages = messages[:shares_num]
+
 # Now that every validator holds a dkg instance and a transcript for every other validator,
 # every validator can aggregate the transcripts
 me = validators[0]
@@ -62,7 +65,7 @@ def gen_eth_addr(i: int) -> str:
 # In the meantime, the client creates a ciphertext and decryption request
 msg = "abc".encode()
 aad = "my-aad".encode()
-ciphertext = encrypt(msg, aad, dkg.public_key)
+ciphertext = encrypt(msg, aad, client_aggregate.public_key)
 
 # The client can serialize/deserialize ciphertext for transport
 ciphertext_ser = bytes(ciphertext)
@@ -90,6 +93,9 @@ def gen_eth_addr(i: int) -> str:
     )
     decryption_shares.append(decryption_share)
 
+# We only need `threshold` decryption shares in simple variant
+decryption_shares = decryption_shares[:security_threshold]
+
 # Now, the decryption share can be used to decrypt the ciphertext
 # This part is in the client API