Merge pull request #408 from tronprotocol/feature/add_native_sign_and_keygen

Sign and generate keys natively for shielded transaction

Author: Federico2014

README.md

@@ -1934,10 +1934,10 @@ ivk
 > The ivk of shielded address
 
 ak
-> The ak of shielded address
+> The ak of shielded address. Please set this field to null, if you don't care whether the notes are spent or not.
 
 nk
-> The nk of shielded address
+> The nk of shielded address. Please set this field to null, if you don't care whether the notes are spent or not.
 
 startNum
 > The starting block number of the scan

build.gradle

@@ -20,6 +20,7 @@ compileJava.options*.compilerArgs = [
 repositories {
     mavenLocal()
     mavenCentral()
+    maven { url 'https://jitpack.io' }
 }
 
 sourceSets {
@@ -89,6 +90,7 @@ dependencies {
     compile group: 'org.projectlombok', name: 'lombok', version: '1.18.2'
 
     compile group: 'org.jline', name: 'jline', version: '3.15.0'
+    compile 'com.github.tronprotocol:zksnark-java-sdk:master-SNAPSHOT'
 }
 
 protobuf {

src/main/java/org/tron/common/zksnark/JLibrustzcash.java

@@ -0,0 +1,199 @@
+package org.tron.common.zksnark;
+
+import org.tron.common.zksnark.LibrustzcashParam.BindingSigParams;
+import org.tron.common.zksnark.LibrustzcashParam.CheckOutputNewParams;
+import org.tron.common.zksnark.LibrustzcashParam.CheckOutputParams;
+import org.tron.common.zksnark.LibrustzcashParam.CheckSpendNewParams;
+import org.tron.common.zksnark.LibrustzcashParam.CheckSpendParams;
+import org.tron.common.zksnark.LibrustzcashParam.ComputeCmParams;
+import org.tron.common.zksnark.LibrustzcashParam.ComputeNfParams;
+import org.tron.common.zksnark.LibrustzcashParam.CrhIvkParams;
+import org.tron.common.zksnark.LibrustzcashParam.FinalCheckNewParams;
+import org.tron.common.zksnark.LibrustzcashParam.FinalCheckParams;
+import org.tron.common.zksnark.LibrustzcashParam.InitZksnarkParams;
+import org.tron.common.zksnark.LibrustzcashParam.IvkToPkdParams;
+import org.tron.common.zksnark.LibrustzcashParam.KaAgreeParams;
+import org.tron.common.zksnark.LibrustzcashParam.KaDerivepublicParams;
+import org.tron.common.zksnark.LibrustzcashParam.MerkleHashParams;
+import org.tron.common.zksnark.LibrustzcashParam.OutputProofParams;
+import org.tron.common.zksnark.LibrustzcashParam.SpendProofParams;
+import org.tron.common.zksnark.LibrustzcashParam.SpendSigParams;
+import org.tron.core.exception.ZksnarkException;
+
+public class JLibrustzcash {
+  private static Librustzcash INSTANCE = LibrustzcashWrapper.getInstance();
+
+  public static void librustzcashInitZksnarkParams(InitZksnarkParams params) {
+    INSTANCE.librustzcashInitZksnarkParams(params.getSpend_path(),
+        params.getSpend_hash(), params.getOutput_path(), params.getOutput_hash());
+  }
+
+  public static void librustzcashCrhIvk(CrhIvkParams params) {
+    INSTANCE.librustzcashCrhIvk(params.getAk(), params.getNk(), params.getIvk());
+  }
+
+  public static boolean librustzcashKaAgree(KaAgreeParams params) {
+    return INSTANCE.librustzcashSaplingKaAgree(params.getP(), params.getSk(), params.getResult());
+  }
+
+  public static boolean librustzcashComputeCm(ComputeCmParams params) {
+    return INSTANCE.librustzcashSaplingComputeCm(params.getD(), params.getPkD(),
+        params.getValue(), params.getR(), params.getCm());
+  }
+
+  public static boolean librustzcashComputeNf(ComputeNfParams params) {
+    INSTANCE.librustzcashSaplingComputeNf(params.getD(), params.getPkD(), params.getValue(),
+        params.getR(), params.getAk(), params.getNk(), params.getPosition(), params.getResult());
+    return true;
+  }
+
+  /**
+   * @param ask the spend authorizing key,to generate ak, 32 bytes
+   * @return ak 32 bytes
+   */
+  public static byte[] librustzcashAskToAk(byte[] ask) throws ZksnarkException {
+    LibrustzcashParam.valid32Params(ask);
+    byte[] ak = new byte[32];
+    INSTANCE.librustzcashAskToAk(ask, ak);
+    return ak;
+  }
+
+  /**
+   * @param nsk the proof authorizing key, to generate nk, 32 bytes
+   * @return 32 bytes
+   */
+  public static byte[] librustzcashNskToNk(byte[] nsk) throws ZksnarkException {
+    LibrustzcashParam.valid32Params(nsk);
+    byte[] nk = new byte[32];
+    INSTANCE.librustzcashNskToNk(nsk, nk);
+    return nk;
+  }
+
+  // void librustzcash_nsk_to_nk(const unsigned char *nsk, unsigned char *result);
+
+  /**
+   * @return r: random number, less than r_J,   32 bytes
+   */
+  public static byte[] librustzcashSaplingGenerateR(byte[] r) throws ZksnarkException {
+    LibrustzcashParam.valid32Params(r);
+    INSTANCE.librustzcashSaplingGenerateR(r);
+    return r;
+  }
+
+  public static boolean librustzcashSaplingKaDerivepublic(KaDerivepublicParams params) {
+    return INSTANCE.librustzcashSaplingKaDerivepublic(params.getDiversifier(), params.getEsk(),
+        params.getResult());
+  }
+
+  public static long librustzcashSaplingProvingCtxInit() {
+    return INSTANCE.librustzcashSaplingProvingCtxInit();
+  }
+
+  /**
+   * check validity of d
+   *
+   * @param d 11 bytes
+   */
+  public static boolean librustzcashCheckDiversifier(byte[] d) throws ZksnarkException {
+    LibrustzcashParam.valid11Params(d);
+    return INSTANCE.librustzcashCheckDiversifier(d);
+  }
+
+  public static boolean librustzcashSaplingSpendProof(SpendProofParams params) {
+    return INSTANCE.librustzcashSaplingSpendProof(params.getCtx(), params.getAk(),
+        params.getNsk(), params.getD(), params.getR(), params.getAlpha(), params.getValue(),
+        params.getAnchor(), params.getVoucherPath(), params.getCv(), params.getRk(),
+        params.getZkproof());
+  }
+
+  public static boolean librustzcashSaplingOutputProof(OutputProofParams params) {
+    return INSTANCE.librustzcashSaplingOutputProof(params.getCtx(), params.getEsk(),
+        params.getD(), params.getPkD(), params.getR(), params.getValue(), params.getCv(),
+        params.getZkproof());
+  }
+
+  public static boolean librustzcashSaplingSpendSig(SpendSigParams params) {
+    return INSTANCE.librustzcashSaplingSpendSig(params.getAsk(), params.getAlpha(),
+        params.getSigHash(), params.getResult());
+  }
+
+  public static boolean librustzcashSaplingBindingSig(BindingSigParams params) {
+    return INSTANCE.librustzcashSaplingBindingSig(params.getCtx(),
+        params.getValueBalance(), params.getSighash(), params.getResult());
+  }
+
+  /**
+   * convert value to 32-byte scalar
+   *
+   * @param value 64 bytes
+   * @param data 32 bytes
+   */
+  public static void librustzcashToScalar(byte[] value, byte[] data) throws ZksnarkException {
+    LibrustzcashParam.validParamLength(value, 64);
+    LibrustzcashParam.valid32Params(data);
+    INSTANCE.librustzcashToScalar(value, data);
+  }
+
+  public static void librustzcashSaplingProvingCtxFree(long ctx) {
+    INSTANCE.librustzcashSaplingProvingCtxFree(ctx);
+  }
+
+  public static long librustzcashSaplingVerificationCtxInit() {
+    return INSTANCE.librustzcashSaplingVerificationCtxInit();
+  }
+
+  public static boolean librustzcashSaplingCheckSpend(CheckSpendParams params) {
+    return INSTANCE.librustzcashSaplingCheckSpend(params.getCtx(), params.getCv(),
+        params.getAnchor(), params.getNullifier(), params.getRk(), params.getZkproof(),
+        params.getSpendAuthSig(), params.getSighashValue());
+  }
+
+  public static boolean librustzcashSaplingCheckOutput(CheckOutputParams params) {
+    return INSTANCE.librustzcashSaplingCheckOutput(params.getCtx(), params.getCv(),
+        params.getCm(), params.getEphemeralKey(), params.getZkproof());
+  }
+
+  public static boolean librustzcashSaplingFinalCheck(FinalCheckParams params) {
+    return INSTANCE.librustzcashSaplingFinalCheck(params.getCtx(),
+        params.getValueBalance(), params.getBindingSig(), params.getSighashValue());
+  }
+
+  public static boolean librustzcashSaplingCheckSpendNew(CheckSpendNewParams params) {
+    return INSTANCE.librustzcashSaplingCheckSpendNew(params.getCv(),
+        params.getAnchor(), params.getNullifier(), params.getRk(), params.getZkproof(),
+        params.getSpendAuthSig(), params.getSighashValue());
+  }
+
+  public static boolean librustzcashSaplingCheckOutputNew(CheckOutputNewParams params) {
+    return INSTANCE.librustzcashSaplingCheckOutputNew(params.getCv(), params.getCm(),
+        params.getEphemeralKey(), params.getZkproof());
+  }
+
+  public static boolean librustzcashSaplingFinalCheckNew(FinalCheckNewParams params) {
+    return INSTANCE
+        .librustzcashSaplingFinalCheckNew(params.getValueBalance(), params.getBindingSig(),
+            params.getSighashValue(), params.getSpendCv(), params.getSpendCvLen(),
+            params.getOutputCv(), params.getOutputCvLen());
+  }
+
+  public static void librustzcashSaplingVerificationCtxFree(long ctx) {
+    INSTANCE.librustzcashSaplingVerificationCtxFree(ctx);
+  }
+
+  public static boolean librustzcashIvkToPkd(IvkToPkdParams params) {
+    return INSTANCE.librustzcashIvkToPkd(params.getIvk(), params.getD(), params.getPkD());
+  }
+
+  public static void librustzcashMerkleHash(MerkleHashParams params) {
+    INSTANCE.librustzcashMerkleHash(params.getDepth(), params.getA(), params.getB(),
+        params.getResult());
+  }
+
+  /**
+   * @param result uncommitted value, 32 bytes
+   */
+  public static void librustzcashTreeUncommitted(byte[] result) throws ZksnarkException {
+    LibrustzcashParam.valid32Params(result);
+    INSTANCE.librustzcashTreeUncommitted(result);
+  }
+}

src/main/java/org/tron/common/zksnark/JLibsodium.java

@@ -0,0 +1,62 @@
+package org.tron.common.zksnark;
+
+import org.tron.common.zksnark.JLibsodiumParam.Black2bSaltPersonalParams;
+import org.tron.common.zksnark.JLibsodiumParam.Blake2bFinalParams;
+import org.tron.common.zksnark.JLibsodiumParam.Blake2bInitSaltPersonalParams;
+import org.tron.common.zksnark.JLibsodiumParam.Blake2bUpdateParams;
+import org.tron.common.zksnark.JLibsodiumParam.Chacha20Poly1305IetfEncryptParams;
+import org.tron.common.zksnark.JLibsodiumParam.Chacha20poly1305IetfDecryptParams;
+
+public class JLibsodium {
+  public static final int CRYPTO_GENERICHASH_BLAKE2B_PERSONALBYTES = 16;
+  public static final int CRYPTO_AEAD_CHACHA20POLY1305_IETF_NPUBBYTES = 12;
+  private static Libsodium INSTANCE = LibsodiumWrapper.getInstance();
+
+  public static int cryptoGenerichashBlake2bInitSaltPersonal(Blake2bInitSaltPersonalParams params) {
+    return INSTANCE
+        .cryptoGenerichashBlake2BInitSaltPersonal(params.getState(), params.getKey(),
+            params.getKeyLen(), params.getOutLen(), params.getSalt(), params.getPersonal());
+  }
+
+  public static int cryptoGenerichashBlake2bUpdate(Blake2bUpdateParams params) {
+    return INSTANCE
+        .cryptoGenerichashBlake2BUpdate(params.getState(), params.getIn(), params.getInLen());
+  }
+
+  public static int cryptoGenerichashBlake2bFinal(Blake2bFinalParams params) {
+    return INSTANCE.cryptoGenerichashBlake2BFinal(params.getState(),
+        params.getOut(), params.getOutLen());
+  }
+
+  public static int cryptoGenerichashBlack2bSaltPersonal(Black2bSaltPersonalParams params) {
+    return INSTANCE.cryptoGenerichashBlake2BSaltPersonal(params.getOut(), params.getOutLen(),
+        params.getIn(), params.getInLen(), params.getKey(), params.getKeyLen(),
+        params.getSalt(),
+        params.getPersonal());
+  }
+
+  public static int cryptoAeadChacha20poly1305IetfDecrypt(
+      Chacha20poly1305IetfDecryptParams params) {
+    return INSTANCE
+        .cryptoAeadChacha20Poly1305IetfDecrypt(params.getM(), params.getMLenP(),
+            params.getNSec(),
+            params.getC(), params.getCLen(), params.getAd(),
+            params.getAdLen(), params.getNPub(), params.getK());
+  }
+
+  public static int cryptoAeadChacha20Poly1305IetfEncrypt(
+      Chacha20Poly1305IetfEncryptParams params) {
+    return INSTANCE
+        .cryptoAeadChacha20Poly1305IetfEncrypt(params.getC(), params.getCLenP(), params.getM(),
+            params.getMLen(), params.getAd(), params.getAdLen(),
+            params.getNSec(), params.getNPub(), params.getK());
+  }
+
+  public static long initState() {
+    return INSTANCE.cryptoGenerichashBlake2BStateInit();
+  }
+
+  public static void freeState(long state) {
+    INSTANCE.cryptoGenerichashBlake2BStateFree(state);
+  }
+}