multiparty · p-flock · Jun 8, 2020 · Jun 9, 2020 · Jun 10, 2020 · Jun 10, 2020
diff --git a/.gitmodules b/.gitmodules
@@ -0,0 +1 @@
+
diff --git a/demos/GMW_demo/1-out-of-n/.eslintrc b/demos/GMW_demo/1-out-of-n/.eslintrc
@@ -0,0 +1,45 @@
+{
+  "root": true,
+  "extends": "eslint:recommended",
+  "rules": {
+    "indent": [2, 2, { "SwitchCase": 1 }],
+    "keyword-spacing": [2, { "before": true, "after": true }],
+    "object-shorthand": [2, "consistent"],
+    "no-unused-vars": [1, {"vars": "local", "args": "none"}],
+    "quote-props": [1, "consistent-as-needed"],
+    "eqeqeq": [2, "smart"],
+    "brace-style": 2,
+    "curly": 2,
+    "quotes": [2, "single", { "avoidEscape": true }],
+    "no-trailing-spaces": 2,
+    "space-before-function-paren": [2, {
+      "anonymous": "always",
+      "named": "never",
+      "asyncArrow": "always"
+    }],
+    "no-console": 0,
+    "space-before-blocks": [2, "always"],
+    "requirejs/no-invalid-define": 2,
+    "requirejs/no-multiple-define": 2,
+    "requirejs/no-named-define": 2,
+    "requirejs/no-commonjs-wrapper": 2,
+    "requirejs/no-object-define": 1
+  },
+  "env": {
+    "browser": true,
+    "jquery": true,
+    "node": true,
+    "amd": true,
+    "es6": true
+  },
+
+  "parserOptions": {
+    "ecmaVersion": 6,
+    "ecmaFeatures": {
+      "experimentalObjectRestSpread": true
+    }
+  },
+  "plugins": [
+    "requirejs"
+  ]
+}
diff --git a/demos/GMW_demo/1-out-of-n/.gitattributes b/demos/GMW_demo/1-out-of-n/.gitattributes
@@ -0,0 +1,2 @@
+# Auto detect text files and perform LF normalization
+* text=auto
diff --git a/demos/GMW_demo/1-out-of-n/.gitignore b/demos/GMW_demo/1-out-of-n/.gitignore
@@ -0,0 +1,3 @@
+.DS_Store
+node_modules
+package-lock.json
diff --git a/demos/GMW_demo/1-out-of-n/IO.js b/demos/GMW_demo/1-out-of-n/IO.js
@@ -0,0 +1,59 @@
+/*
+ *  the IO object to be used for OT
+ *  to pass as the IO parameter for 1-out-of-N.
+ *
+ */
+// IO send
+const give = function ( op_id, jiff,session_id, tag, msg) {
+  /* give a message */
+  const createMSGObj=function (msg,op_id,tag,jiff) {
+    var four_opts={};
+    four_opts['opts']=msg;
+    four_opts['sender_id']=jiff.id;
+    four_opts['op_id']=op_id;
+    four_opts['tag']=tag;
+    return four_opts;
+  };
+  var temp=(op_id.split(':')[3]).split('-');
+  var to=parseInt(temp[2]); // sending msg to partyid
+  var from=parseInt(temp[1]);
+  var four_opts=createMSGObj(msg,op_id,tag,jiff) ;
+  four_opts = jiff.hooks.execute_array_hooks('beforeOperation', [jiff, 'open', four_opts], 2);
+  msg=JSON.stringify(four_opts);// jason object
+  var to_party=to;
+  if (jiff.id===to) {
+    to_party=from;
+  }
+  var recls=[];
+  recls.push(to_party);
+  jiff.emit('OT',recls,msg,true);
+  return ;
+};
+
+
+// IO receive
+const get = function (op_id,jiff,session_id, tag) {
+  /* get a message */
+  var temp=(op_id.split(':')[3]).split('-');
+  var fromId=parseInt(temp[1]);
+  var toId=parseInt(temp[2]);
+  var shareid=op_id+'-'+tag;
+  var from_party=fromId;
+  if (jiff.id===fromId) {
+    from_party=toId;
+  }
+
+  if (jiff.deferreds[shareid] == null) {
+    jiff.deferreds[shareid] = {};
+  }
+  if (jiff.deferreds[shareid][from_party] == null) { // not ready, setup a deferred
+    jiff.deferreds[shareid][from_party] = new jiff.helpers.Deferred();
+  }
+  // resolving in customized listen
+  return jiff.deferreds[shareid][from_party].promise;
+};
+
+module.exports = {
+  give: give,
+  get: get
+};
diff --git a/demos/GMW_demo/1-out-of-n/LICENSE b/demos/GMW_demo/1-out-of-n/LICENSE
@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2020 Wyatt Howe
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
diff --git a/demos/GMW_demo/1-out-of-n/crypto.js b/demos/GMW_demo/1-out-of-n/crypto.js
@@ -0,0 +1,28 @@
+module.exports = function (sodium, util) {
+
+  // PRF of length m
+  const PRF = function (k, I) {
+    var x = Uint8Array.from(util.to_bits(I, 32));
+    return sodium.crypto_aead_chacha20poly1305_encrypt(x, null, null, new Uint8Array(8), k);
+  };
+
+  // KDF of length t
+  const KDF = function () {
+    return sodium.randombytes_buf(32);
+  };
+
+  const encrypt_generic = function (plaintext, key) {
+    return sodium.crypto_aead_chacha20poly1305_encrypt(plaintext, null, null, new Uint8Array(8), key);
+  };
+
+  const decrypt_generic = function (ciphertext, key) {
+    return sodium.crypto_aead_chacha20poly1305_decrypt(null, ciphertext, null, new Uint8Array(8), key);
+  };
+
+  return {
+    PRF: PRF,
+    KDF: KDF,
+    encrypt_generic: encrypt_generic,
+    decrypt_generic: decrypt_generic
+  };
+};
diff --git a/demos/GMW_demo/1-out-of-n/index.js b/demos/GMW_demo/1-out-of-n/index.js
@@ -0,0 +1,13 @@
+module.exports = function (io, sodium) {
+  if (sodium == null) {
+    sodium = require('libsodium-wrappers-sumo');
+  }
+
+  const ot = require('./ot.js')(io, sodium);
+
+  return new Promise(function (resolve) {
+    sodium.ready.then(function () {
+      resolve(ot);
+    });
+  });
+};
diff --git a/demos/GMW_demo/1-out-of-n/ot.js b/demos/GMW_demo/1-out-of-n/ot.js
@@ -0,0 +1,153 @@
+module.exports = function (io, sodium) {
+  const util = require('./util.js')(sodium);
+  const crypto = require('./crypto.js')(sodium, util);
+
+  // 1-out-of-2 OT sending
+  const send_from_2 = function (X1, X2, op_id, jiff,session_id) {
+    op_id = op_id + ':1in2ot';
+    var get = io.get.bind(null, op_id,jiff,session_id);
+    var give = io.give.bind(null, op_id, jiff,session_id);
+
+    const a = sodium.crypto_core_ristretto255_scalar_random();
+    const A = sodium.crypto_scalarmult_ristretto255_base(a);
+
+    give('A', util.to_str(A));
+    get('B').then(function (B_str) {
+      const B = util.from_str(B_str);
+
+      var k0 = sodium.crypto_scalarmult_ristretto255(a, B);
+      var k1 = sodium.crypto_scalarmult_ristretto255(a, sodium.crypto_core_ristretto255_sub(B, A));
+
+      k0 = sodium.crypto_generichash(32, k0);
+      k1 = sodium.crypto_generichash(32, k1);
+
+      const e0 = crypto.encrypt_generic(X1, k0);
+      const e1 = crypto.encrypt_generic(X2, k1);
+      give('e', util.to_str([e0, e1]));
+    });
+  };
+
+  // 1-out-of-2 OT receiving
+  const receive_from_2 = function (c, op_id, jiff,session_id) {
+    op_id = op_id + ':1in2ot';
+    var get = io.get.bind(null, op_id, jiff,session_id);
+    var give = io.give.bind(null, op_id,jiff, session_id);
+
+    const b = sodium.crypto_core_ristretto255_scalar_random();
+    var B = sodium.crypto_scalarmult_ristretto255_base(b);
+
+    return new Promise(function (resolve) {
+      get('A').then(function (A_str) {
+        const A = util.from_str(A_str);
+
+        if (c === 1) {
+          B = sodium.crypto_core_ristretto255_add(A, B);
+        }
+        give('B', util.to_str(B));
+        get('e').then(function (both_e_str) {
+          const e12 = util.from_str(both_e_str);
+          const e = e12[c];  // e_c from [e_1, e_2]
+
+          var k = sodium.crypto_scalarmult_ristretto255(b, A);
+          k = sodium.crypto_generichash(32, k);
+
+          var Xc = crypto.decrypt_generic(e, k);
+          resolve(Xc);
+        });
+      });
+    });
+  };
+
+  // 1-out-of-2 OT sending
+  const send_from_N = function (X, N, op_id,jiff, session_id) {
+    var I, j;
+    op_id = op_id + ':1inNot';
+    var give = io.give.bind(null, op_id, jiff,session_id);
+    X = util.sanitize(X);  // Check padding and fix if not the right type
+
+    if (N == null) {
+      N = X.length;
+    }
+
+    const l = Math.ceil(Math.log2(N));  // N = 2^l
+
+    var K = Array(l);
+    for (j = 0; j < l; j++) {
+      K[j] = Array(2);
+      for (var b = 0; b <= 1; b++) {
+        K[j][b] = crypto.KDF();  // {K_{j}}^{b}
+      }
+    }
+
+    var Y = Array(N);
+    for (I = 0; I < N; I++) {
+      var i = util.to_bits(I, l);  // l bits of I
+
+      Y[I] = X[I];  // new Uint8Array(m);
+      for (j = 0; j < l; j++) {
+        const i_j = i[j];
+        const K_j = K[j];
+        const Kj_ij = K_j[i_j];  // {K_{j}}^{i_j}
+        Y[I] = util.xor(Y[I], crypto.PRF(Kj_ij, I));
+      }
+    }
+
+    for (j = 0; j < l; j++) {
+      const K_j = K[j];
+
+      send_from_2(K_j[0], K_j[1], op_id+j,jiff, session_id);
+    }
+
+    for (I = 0; I < N; I++) {
+      give('I' + String(I), util.to_str(Y[I]));  // reveal Y_I
+    }
+  };
+
+  // 1-out-of-2 OT receiving
+  const receive_from_N = function (I, N, op_id, jiff,session_id) {
+    var j;
+    op_id = op_id + ':1inNot';
+    var get = io.get.bind(null, op_id, jiff,session_id);
+
+    return new Promise(function (resolve) {
+      const l = Math.ceil(Math.log2(N));  // N = 2^l
+      const i = util.to_bits(I, l);  // l bits of I
+
+      var K = Array(l);
+      for (j = 0; j < l; j++) {
+        const i_j = i[j];  // bit j=i_j of I
+        K[j] = receive_from_2(i_j, op_id+j, jiff,session_id);  // pick {K_{j}}^{b} which is also {K_{j}}^{i_j}
+      }
+
+      Promise.all(K).then(function (K) {
+        var Y_I = new Uint8Array(32);
+        for (var pI = 0; pI < N; pI++) {
+          const pY_pI = get('I' + String(pI));
+          if (pI === I) {
+            Y_I = pY_pI;
+          }
+        }
+
+        Y_I.then(function (Y_I_str) {
+          const Y_I = util.from_str(Y_I_str);
+
+          var X_I = Y_I;  // new Uint8Array(m);
+          for (j = 0; j < l; j++) {
+            const Kj_ij = K[j];  // {K_{j}}^{i_j}
+            X_I = util.xor(X_I, crypto.PRF(Kj_ij, I));
+          }
+
+          // Done
+          resolve(X_I);
+        });
+      });
+    });
+  };
+
+  return {
+    send: send_from_N,
+    receive: receive_from_N,
+    single_send: send_from_2,
+    single_receive: receive_from_2
+  };
+};
diff --git a/demos/GMW_demo/1-out-of-n/package.json b/demos/GMW_demo/1-out-of-n/package.json
@@ -0,0 +1,41 @@
+{
+  "name": "1-out-of-n",
+  "version": "0.3.1",
+  "description": "1-out-of-n oblivious transfer",
+  "main": "index.js",
+  "files": [
+    "index.js",
+    "lib/crypto.js",
+    "lib/ot.js",
+    "lib/util.js"
+  ],
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+ssh://[email protected]/wyatt-howe/1-out-of-n.git"
+  },
+  "keywords": [
+    "1-in-n",
+    "1-out-of-n",
+    "ot",
+    "oblivious-transfer",
+    "oblivious",
+    "transfer"
+  ],
+  "author": "Wyatt Howe <[email protected]>",
+  "license": "MIT",
+  "bugs": {
+    "url": "https://github.com/wyatt-howe/1-out-of-n/issues"
+  },
+  "homepage": "https://github.com/wyatt-howe/1-out-of-n/#README",
+  "dependencies": {
+    "1-out-of-n": "^0.3.0",
+    "libsodium-wrappers-sumo": "^0.7.6"
+  },
+  "dev-dependencies": {
+    "eslint": "^7.2.0",
+    "eslint-plugin-requirejs": "^4.0.0"
+  }
+}