nucypher / nucypher-core Goto Github PK

Core structures for Nucypher network in Rust

Rust 82.03% Python 11.50% Makefile 0.32% TypeScript 5.54% JavaScript 0.61%

nucypher-core's Introduction

Cryptographic primitives, hosted on the decentralized nodes of the Threshold network, offering accessible, intuitive, and extensible runtimes and interfaces for secrets management and dynamic access control.

TACo Access Control

TACo (Threshold Access Control) is end-to-end encrypted data sharing and communication, without the requirement of trusting a centralized authority, who might unilaterally deny service or even decrypt private user data. It is the only access control layer available to Web3 developers that can offer a decentralized service, through a live, well-collateralized and battle-tested network. See more here: https://docs.threshold.network/applications/threshold-access-control

Getting Involved

NuCypher is a community-driven project and we're very open to outside contributions.

All our development discussions happen in our Discord server, where we're happy to answer technical questions, discuss feature requests, and accept bug reports.

If you're interested in contributing code, please check out our Contribution Guide and browse our Open Issues for potential areas to contribute.

Security

If you identify vulnerabilities with any nucypher code, please email [email protected] with relevant information to your findings. We will work with researchers to coordinate vulnerability disclosure between our stakers, partners, and users to ensure successful mitigation of vulnerabilities.

Throughout the reporting process, we expect researchers to honor an embargo period that may vary depending on the severity of the disclosure. This ensures that we have the opportunity to fix any issues, identify further issues (if any), and inform our users.

Sometimes vulnerabilities are of a more sensitive nature and require extra precautions. We are happy to work together to use a more secure medium, such as Signal. Email [email protected] and we will coordinate a communication channel that we're both comfortable with.

A great place to begin your research is by working on our testnet. Please see our documentation to get started. We ask that you please respect testnet machines and their owners. If you find a vulnerability that you suspect has given you access to a machine against the owner's permission, stop what you're doing and immediately email [email protected].

nucypher-core's People

Contributors

Stargazers

Watchers

Forkers

piotr-roslaniec fjarri theref kprasch jmyles pinkdiamond1 derekpierre anders927

nucypher-core's Issues

Renaming things

Some of the terminology changed with the Threshold merge. Currently need renaming:

staker -> staking_provider
decentralized_identity_evidence - undecided, operator_signature? See what ends up being merged with nucypher/nucypher#2850
something else?

Expose "slim" WASM inline build variant

See note in #83 (comment)

Publish v0.0.1 to pypi

Update nucypher-core dependency in nucypher (see nucypher/nucypher#2832 (comment))

Implement `PartialEq` and `Eq` for WASM structs in bindings

Should improve the ergonomics of the WASM bindings by allowing === and == comparison in JS.
Consider implementing equals method in WASM bindings
Related to: nucypher/ferveo#126

Support `serde` serialization to human-readable formats

Initially the objects in nucypher-core were only intended to be serialized in binary because we were only concerned with protocol objects. Recently an issue was raised on Discord about deserializing the JSON response from Porter with fields like

      {
        "checksum_address": "314CaB1F5e6731f14F1deb4413d76b09D68710CA",
        "encrypting_key": "033c8e562e959b70714c96ec65cfd74f35d29526f8e8b38d148e8551b702dfb581"
      },

It would be convenient if these field could be deserialized by serde into Address and PublicKey. There are two problems here:

Address's serde serialization for human-readable formats is the serde default, that is a list of integers. So it cannot be deserialized from the hex form above at all.
While PublicKey would deserialize fine, it may be better to have a 0x prefix in front of the hex representation, to match the Ethereum RPC format (and the same applies to Address).

Naturally, fixing that should be done in a consistent manner. There are several interconnecting issues (which also affect umbral), so the scope of the changes needs to be determined.

Several bytearray-like objects in nucypher-core (Address, FleetStateChecksum, HRAC and the third-party recoverable::Signature) use the custom arrays_as_bytes serialization. certificate_der field of NodeMetadataPayload uses serde_bytes. These will have to be modified to support human-readable formats. One way to do it is to expose the machinery from serde.rs in umbral and use it in nucypher-core. The problem is that it deals with objects that are represented as arrays with size known at compile time, so that may have to be changed.

operator_signature and certificate_der fields of NodeMetadataPayload may need to be wrapped in types so that we could impl Serialize/Deserialize for them. This way the Option<recoverable::Signature> that we need will be handled automatically, too. Now we need a special function in arrays_as_bytes.rs to handle it.

Should we care about human-readable serialization of protocol objects? How will versioning work in this case?

Define new (versioned) Conditions object (to wrap a blob of base 64)?

This should possibly defined in https://github.com/nucypher/rust-umbral just like capsule and we will wrap it here

Implement a "slim" WASM packaging for `nucypher-core`

Implement an alternative "slim" export in the nucypher-core package for WASM-aware bundlers
Provides nucypher-core users with a lightweight (~33% smaller) alternative for "fat" export which contains base64-encoded inlined WASM
Consider merging the nucypher-core-wasm and nucypher-core-wasm-bundler directories on the back of this change
Refers to #83

Should we be using `Option<&Conditions>` for nucypher-core cbd/dkg related objects

Conditions aren't really optional, why do we use Option<&Conditions> as parameters for various dkg protocol objects? Shouldn't it accept Conditions instead? No Condition is not an option for dkg (it was optional for PRE adapted tDec), we actually always want conditions.

cc @piotr-roslaniec , @KPrasch .

Expose `FerveoVariant` in language bindings

Expose as a language-specific type in bindings
Handle serialization & validation internally
Update downstream dependencies
Refers to nucypher/ferveo#116

Handle downstream changes from `[email protected]`

Update nucypher-core to account for changes in nucypher/ferveo#132

Attach conditions to MessageKit, RetrievalKit, ReencryptionRequest

Bump protocol versions for those objects
Enrico signs conditions data and includes signature in the MessageKit?

Keep `NodeMetadataPayload.decentralized_identity_evidence` as a `recoverable::Signature`

Currently it is kept as a bytestring, so an invalid NodeMetadataPayload can be created if the signature format is wrong, which will later lead to an error when calling derive_operator_address(). Instead, it would be better to fail early by checking that the signature is valid on NodeMetadataPayload creation.

Integrate and re-export ferveo for public API

Presently all ferveo-generated objects are handled as bytes. Instead, ferveo types can be implemented directly in dks.rs as well as the python/wasm bindings. This implies that ferveo provides a crate exporting it's python and wasm bindings for consumption in nucypher-core (nucypher/ferveo#87).

targets

ThresholdDecryptionRequest.ciphertext -> ferveo.api.Ciphertext
ThresholdDecryptionResponse.decryption_share-> ferveo.tpke.api.DecryptionShareSimple||DecryptionSharePrecomputed
NodeMetadataPayload.ferveo_public_key -> ferveo.common.keypair.PublicKey

Introduce helper function for Python bindings to handle conversion of Rust error to Python `ValueError`

Suggestion from @piotr-roslaniec (#54 (comment)) :

   // Elsewhere
   fn map_py_value_err<T: fmt::Display>(err: T) -> PyErr {
     PyValueError::new_err(format!("{err}"))
   }

    <potential error returning call>.map_err(map_py_value_err)?;

Update `umbral-pre-python` typings

Downstream changes from nucypher/rust-umbral#126

Implement `ThresholdDecryptionRequest` and `ThresholdDecryptionResponse`

Requirements

Implement two new serde-versioned bytes-serializable entities for use in nucypher/nucypher and nucypher/nucypher-ts threshold decryption product (working title "tCBD"). Bob will use these entities to gather threshold decryption shares. Both python and WASM binding are needed.

Entities

ThresholdDecryptionRequest (ThRq)
- ritual ID: int
- ciphertext: ferveo.Ciphertext
- conditions: Conditions
- context: Context
ThresholdDecryptionResponse (ThRs)
- share: ferveo.DecryptionShare

Notes

Implementation is very similar to ReencryptionRequest/ReencryptionResponse
see development mockup here: https://github.com/nucypher/nucypher/blob/385e982e1c0bd830894b63f5a809881d6b412ab4/nucypher/utilities/mock.py
see usage in nucypher/nucypher's Ursula here: https://github.com/nucypher/nucypher/blob/385e982e1c0bd830894b63f5a809881d6b412ab4/nucypher/network/server.py#L143
consider encrypting ThresholdDecryptionResponse for Bob.
will require a version bump

Move nickname derivation code into nucypher-core?

Nickname derivation in nucypher (from staker addresses/fleet state checksums, see https://github.com/nucypher/nucypher/blob/main/nucypher/acumen/nicknames.py) is non-trivial to reproduce in other languages (although possible). Should we move it into this crate? In case nucypher-ts wants to use it.

Use modules in WASM and Python bindings

Introduce wasm_bindgen(module = "ferveo/nucypher") in order to avoid naming conflicts between umbral.Ciphertext & ferveo.Ciphertext etc., in WASM bindings
Instead of relaying on prefixes (FerveoPublicKey, UmbralPublicKey, etc.) make sure that the naming conflicts are avoided by exposing types from their respective modules (ferveo.PublicKey, umbral.PublicKey).

Update `ferveo` Python typings

Downstream changes from nucypher/ferveo#139