implement SignedPod (non-mock) using proof-based signatures (#160)

2025-03-25 22:17:14 +01:00 · 2025-03-25 22:17:14 +01:00 · d6033b7090
commit d6033b7090
parent 30f26a94ef
9 changed files with 259 additions and 60 deletions
--- a/src/backends/plonky2/mock/signedpod.rs
+++ b/src/backends/plonky2/mock/signedpod.rs
@ -1,4 +1,4 @@
-use anyhow::Result;
+use anyhow::{anyhow, Result};
 use std::any::Any;
 use std::collections::HashMap;

@ -55,44 +55,47 @@ impl MockSignedPod {
 }

 impl Pod for MockSignedPod {
-    fn verify(&self) -> bool {
+    fn verify(&self) -> Result<()> {
        // 1. Verify type
-        let value_at_type = match self.dict.get(&hash_str(KEY_TYPE).into()) {
-            Ok(v) => v,
-            Err(_) => return false,
-        };
+        let value_at_type = self.dict.get(&hash_str(KEY_TYPE).into())?;
        if Value::from(PodType::MockSigned) != value_at_type {
-            return false;
+            return Err(anyhow!(
+                "type does not match, expected MockSigned ({}), found {}",
+                PodType::MockSigned,
+                value_at_type
+            ));
        }

        // 2. Verify id
-        let mt = match MerkleTree::new(
+        let mt = MerkleTree::new(
            MAX_DEPTH,
            &self
                .dict
                .iter()
                .map(|(&k, &v)| (k, v))
                .collect::<HashMap<Value, Value>>(),
-        ) {
-            Ok(mt) => mt,
-            Err(_) => return false,
-        };
+        )?;
        let id = PodId(mt.root());
        if id != self.id {
-            return false;
+            return Err(anyhow!(
+                "id does not match, expected {}, computed {}",
+                self.id,
+                id
+            ));
        }

        // 3. Verify signature
-        let pk_hash = match self.dict.get(&hash_str(KEY_SIGNER).into()) {
-            Ok(v) => v,
-            Err(_) => return false,
-        };
+        let pk_hash = self.dict.get(&hash_str(KEY_SIGNER).into())?;
        let signature = format!("{}_signed_by_{}", id, pk_hash);
        if signature != self.signature {
-            return false;
+            return Err(anyhow!(
+                "signature does not match, expected {}, computed {}",
+                self.id,
+                id
+            ));
        }

-        true
+        Ok(())
    }

    fn id(&self) -> PodId {
@ -138,17 +141,17 @@ pub mod tests {
        let pod = pod.sign(&mut signer).unwrap();
        let pod = pod.pod.into_any().downcast::<MockSignedPod>().unwrap();

-        assert!(pod.verify());
+        pod.verify()?;
        println!("id: {}", pod.id());
        println!("kvs: {:?}", pod.kvs());

        let mut bad_pod = pod.clone();
        bad_pod.signature = "".into();
-        assert!(!bad_pod.verify());
+        assert!(bad_pod.verify().is_err());

        let mut bad_pod = pod.clone();
        bad_pod.id.0 .0[0] = F::ZERO;
-        assert!(!bad_pod.verify());
+        assert!(bad_pod.verify().is_err());

        let mut bad_pod = pod.clone();
        let bad_kv = (hash_str(KEY_SIGNER).into(), Value(PodId(EMPTY_HASH).0 .0));
@ -160,7 +163,7 @@ pub mod tests {
            .collect::<HashMap<Value, Value>>();
        let bad_mt = MerkleTree::new(MAX_DEPTH, bad_kvs_mt)?;
        bad_pod.dict.mt = bad_mt;
-        assert!(!bad_pod.verify());
+        assert!(bad_pod.verify().is_err());

        let mut bad_pod = pod.clone();
        let bad_kv = (hash_str(KEY_TYPE).into(), Value::from(0));
@ -172,7 +175,7 @@ pub mod tests {
            .collect::<HashMap<Value, Value>>();
        let bad_mt = MerkleTree::new(MAX_DEPTH, bad_kvs_mt)?;
        bad_pod.dict.mt = bad_mt;
-        assert!(!bad_pod.verify());
+        assert!(bad_pod.verify().is_err());

        Ok(())
    }