| Safe Haskell | None |
|---|---|
| Language | Haskell2010 |
Morley.Tezos.Crypto.Timelock
Description
Timelock puzzle algorithms implementation.
This module follows the reference implementation for the most part, which you can find in the [tezos repository](https:/gitlab.comtezostezos-blobb1a2ff0334405cafd7465bfa991d23844f0b4e70srclib_crypto/timelock.ml).
For a more high-level overview of the concepts, refer to the timelock documentation page.
The general idea is built upon Rivest, Shamir, Wagner "Time-lock puzzles and timed-release Crypto", there are however some differences from the paper:
- The paper suggests using RC5 cipher, which Tezos implementation eschews in favor of NaCl's "secret box".
- The paper suggest generating the symmetric secret key \(K\) directly, then encrypting it with a randomly chosen value \(a\) as \(C_K = K + a^{2^t} \pmod n\). Tezos implementation instead randomly generates only \(a\), and then produces the secret key using BLAKE2b KDF with a fixed key from \(a^{2^t} \pmod n\).
- Since the secret key is determined only by the "unlocked" value, the time-locked value representation also differs. In the paper it's represented as ((n,a,t,C_K,C_M)), i.e. the tuple of modulus, "locked" value, time, encrypted key and encrypted message. In Tezos implementation it's instead ((a,n,C_M)), and \(t\) is treated as a separate argument.
- Likely to guard the protocol from guessing attacks, additional "proof" verification is added, described in [Boneh, Bünz, Fisch "A Survey of Two Verifiable Delay Functions"](https:/eprint.iacr.org2018/712.pdf)
Synopsis
- newtype TLTime where
- data Chest = Chest {
- chestLockedVal :: Locked
- chestPublicModulus :: PublicModulus
- chestCiphertext :: Ciphertext
- data ChestKey = ChestKey {
- ckUnlockedVal :: Unlocked
- ckProof :: Proof
- data Ciphertext = Ciphertext {
- ctNonce :: Nonce
- ctPayload :: ByteString
- data OpeningResult
- createChestAndChestKey :: ByteString -> TLTime -> IO (Chest, ChestKey)
- createChestKey :: Chest -> TLTime -> ChestKey
- chestBytes :: Chest -> ByteString
- chestKeyBytes :: ChestKey -> ByteString
- chestFromBytes :: ByteString -> Either Text Chest
- chestKeyFromBytes :: ByteString -> Either Text ChestKey
- openChest :: Chest -> ChestKey -> TLTime -> OpeningResult
- mkTLTime :: (Integral i, Bits i) => i -> Either Text TLTime
- unsafeMkTLTime :: HasCallStack => Word64 -> TLTime
- createChestAndChestKeyFromSeed :: Int -> ByteString -> TLTime -> (Chest, ChestKey)
Documentation
Number of steps a timelock needs to be opened without knowing a "secret", i.e. modulo factorization.
The reference implementation uses OCaml int, and it can only be positive,
so on 64-bit architecture it's actually a 62-bit natural. We use Word64
to represent it.
Constructors
| UnsafeTLTime | |
A locked chest
Constructors
| Chest | |
Fields
| |
Instances
| Eq Chest Source # | |
| Show Chest Source # | |
| Generic Chest Source # | |
| Binary Chest Source # | |
| NFData Chest Source # | |
Defined in Morley.Tezos.Crypto.Timelock | |
| IsoValue Chest Source # | |
| TypeHasDoc Chest Source # | |
Defined in Morley.Michelson.Typed.Haskell.Doc Associated Types type TypeDocFieldDescriptions Chest :: FieldDescriptions Source # Methods typeDocName :: Proxy Chest -> Text Source # typeDocMdDescription :: Markdown Source # typeDocMdReference :: Proxy Chest -> WithinParens -> Markdown Source # typeDocDependencies :: Proxy Chest -> [SomeDocDefinitionItem] Source # | |
| type Rep Chest Source # | |
Defined in Morley.Tezos.Crypto.Timelock | |
| type ToT Chest Source # | |
Defined in Morley.Michelson.Typed.Haskell.Value | |
| type TypeDocFieldDescriptions Chest Source # | |
Defined in Morley.Michelson.Typed.Haskell.Doc | |
A chest "key" with proof that it was indeed opened fairly.
Constructors
| ChestKey | |
Fields
| |
Instances
| Eq ChestKey Source # | |
| Show ChestKey Source # | |
| Generic ChestKey Source # | |
| Binary ChestKey Source # | |
| NFData ChestKey Source # | |
Defined in Morley.Tezos.Crypto.Timelock | |
| IsoValue ChestKey Source # | |
| TypeHasDoc ChestKey Source # | |
Defined in Morley.Michelson.Typed.Haskell.Doc Associated Types type TypeDocFieldDescriptions ChestKey :: FieldDescriptions Source # Methods typeDocName :: Proxy ChestKey -> Text Source # typeDocMdDescription :: Markdown Source # typeDocMdReference :: Proxy ChestKey -> WithinParens -> Markdown Source # typeDocDependencies :: Proxy ChestKey -> [SomeDocDefinitionItem] Source # typeDocHaskellRep :: TypeDocHaskellRep ChestKey Source # typeDocMichelsonRep :: TypeDocMichelsonRep ChestKey Source # | |
| type Rep ChestKey Source # | |
Defined in Morley.Tezos.Crypto.Timelock | |
| type ToT ChestKey Source # | |
Defined in Morley.Michelson.Typed.Haskell.Value | |
| type TypeDocFieldDescriptions ChestKey Source # | |
Defined in Morley.Michelson.Typed.Haskell.Doc | |
data Ciphertext Source #
Ciphertext with nonce.
Constructors
| Ciphertext | |
Fields
| |
Instances
| Eq Ciphertext Source # | |
Defined in Morley.Tezos.Crypto.Timelock | |
| Show Ciphertext Source # | |
Defined in Morley.Tezos.Crypto.Timelock Methods showsPrec :: Int -> Ciphertext -> ShowS # show :: Ciphertext -> String # showList :: [Ciphertext] -> ShowS # | |
| Generic Ciphertext Source # | |
Defined in Morley.Tezos.Crypto.Timelock Associated Types type Rep Ciphertext :: Type -> Type # | |
| Binary Ciphertext Source # | |
Defined in Morley.Tezos.Crypto.Timelock | |
| NFData Ciphertext Source # | |
Defined in Morley.Tezos.Crypto.Timelock Methods rnf :: Ciphertext -> () # | |
| type Rep Ciphertext Source # | |
Defined in Morley.Tezos.Crypto.Timelock | |
data OpeningResult Source #
The result of opening the chest.
Constructors
| Correct ByteString | The chest was opened correctly. |
| BogusCipher | The chest was opened correctly, but the contents do not decode with the given symmetric key. |
| BogusOpening | The chest was not opened correctly, i.e. proof verification failed. |
Instances
| Eq OpeningResult Source # | |
Defined in Morley.Tezos.Crypto.Timelock Methods (==) :: OpeningResult -> OpeningResult -> Bool # (/=) :: OpeningResult -> OpeningResult -> Bool # | |
| Show OpeningResult Source # | |
Defined in Morley.Tezos.Crypto.Timelock Methods showsPrec :: Int -> OpeningResult -> ShowS # show :: OpeningResult -> String # showList :: [OpeningResult] -> ShowS # | |
createChestAndChestKey Source #
Arguments
| :: ByteString | Chest content |
| -> TLTime | Time (in elementary actions) to open without key. |
| -> IO (Chest, ChestKey) |
Create a timelock puzzle and a key.
chestBytes :: Chest -> ByteString Source #
Convert a Chest to binary representation, used by Tezos
chestKeyBytes :: ChestKey -> ByteString Source #
Convert a ChestKey to binary representation, used by Tezos
chestFromBytes :: ByteString -> Either Text Chest Source #
Read a Chest from binary representation, used by Tezos
chestKeyFromBytes :: ByteString -> Either Text ChestKey Source #
Read a ChestKey from binary representation, used by Tezos
openChest :: Chest -> ChestKey -> TLTime -> OpeningResult Source #
Try to (quickly) open a chest with the given key, verifying the proof.
mkTLTime :: (Integral i, Bits i) => i -> Either Text TLTime Source #
Safely creates TLTime checking for
overflow and underflow. Accepts a number of any type.
unsafeMkTLTime :: HasCallStack => Word64 -> TLTime Source #
Internal, not safe for cryptography
createChestAndChestKeyFromSeed Source #
Arguments
| :: Int | Pseudo-random seed |
| -> ByteString | Chest content |
| -> TLTime | TLTime (in elementary actions) to open without key. |
| -> (Chest, ChestKey) |
Construct a chest purely based on a seed for pseudorandom generator. This is not suitable for cryptography, used in tests.