[zk-token-sdk] Make `ElGamalKeypair` fields private #32190

samkim-crypto · 2023-06-19T07:40:32Z

Problem

Currently, the fields public and secret in the type ElGamalKeypair are all public. This is somewhat unnatural and could also cause security issues since the secret component implements Copy allowing downstream to copy/clone the secret key in memory under the hood.

Summary of Changes

Changed the public and secret fields in ElGamalKeypair to be private
Added constructor for ElGamalKeypair and getters for its private fields
Updated the rest of the repo for the new visibility

I referenced the interface for Keypair in the sdk. There, we have the interface

pub fn secret(&self) -> &SecretKey { ... } // returns reference to `SecretKey`

and

pub fn pubkey(&self) -> Pubkey { ...} // returns a copy of `Pubkey`

In this PR, I made both getters to return references to ElGamalSecretKey and ElGamalPubkey. For secret key, it obviously makes sense to return a reference. For the pubkey part, I thought returning a refernce is more flexible than returning a fully owned ElGamalPubkey since ElGamalPubkey implements Copy and hence, the returned variable from the getter can always be dereferenced immediately.

But when I was updating the rest of the crates, encountered some occurrences in tests like

let random_elgamal_pubkey = ElGamalKeypair::new_rand().pubkey();

which does not compile because the output of ElGamalKeypair::new_rand() is freed immediately after its call and random_elgamal_pubkey becomes a dangling pointer. The snippet would work if the getter returned a fully-owned ElGamalPubkey.

With returning a reference, the snippet above has to become

let random_elgamal_keypair = ElGamalKeypair::new_rand(); // must save keypair in a variable
let random_elgamal_pubkey = random_elgamal_keypair::pubkey();

I think generating a random ElGamalPubkey without generating a corresponding ElGamalSecretKey will be very rare in practice other than in tests, so I think this is more minor for downstream.

But one other example is

let keypair = ElGamalKeypair::new_rand();

let pod_elgamal_pubkey: PodElGamalPubkey = keypair.pubkey().into(); // does not work
let pod_elgamal_pubkey: PodElGamalPubkey = (*keypair.pubkey()).into(); // must be dereferenced first

There are some issues like these that make the code slightly less ergonomic. I thought about this a bit and I thought going with returning &ElGamalPubkey is still the way to go, but I'd be happy to discuss.

This is a follow-up to #31468 (comment).

Fixes #

codecov · 2023-06-19T09:39:59Z

Codecov Report

Merging #32190 (af36808) into master (c142ba1) will decrease coverage by 0.1%.
The diff coverage is 98.9%.

@@            Coverage Diff            @@
##           master   #32190     +/-   ##
=========================================
- Coverage    82.0%    82.0%   -0.1%     
=========================================
  Files         769      769             
  Lines      209137   209208     +71     
=========================================
+ Hits       171587   171633     +46     
- Misses      37550    37575     +25

zk-token-sdk/src/encryption/elgamal.rs

* make `ElGamalKeypair` fields private * update the rest of `zk-token-sdk` for the visibility update * update `zk-token-proof-tests` for the visibility update * update `zk-keygen` for the visibility update * update `zk-token-proof` benches for the updated visibility * cargo fmt * rename `ElGamalKeypair::new` to `ElGamalKeypair::new_for_tests` (cherry picked from commit 1452ed7) # Conflicts: # programs/zk-token-proof/benches/verify_proofs.rs

* make `ElGamalKeypair` fields private * update the rest of `zk-token-sdk` for the visibility update * update `zk-token-proof-tests` for the visibility update * update `zk-keygen` for the visibility update * update `zk-token-proof` benches for the updated visibility * cargo fmt * rename `ElGamalKeypair::new` to `ElGamalKeypair::new_for_tests`

* make `ElGamalKeypair` fields private * update the rest of `zk-token-sdk` for the visibility update * update `zk-token-proof-tests` for the visibility update * update `zk-keygen` for the visibility update * update `zk-token-proof` benches for the updated visibility * cargo fmt * rename `ElGamalKeypair::new` to `ElGamalKeypair::new_for_tests` (cherry picked from commit 1452ed7) # Conflicts: # programs/zk-token-proof/benches/verify_proofs.rs

#32190) (#32235)

* make `ElGamalKeypair` fields private * update the rest of `zk-token-sdk` for the visibility update * update `zk-token-proof-tests` for the visibility update * update `zk-keygen` for the visibility update * update `zk-token-proof` benches for the updated visibility * cargo fmt * rename `ElGamalKeypair::new` to `ElGamalKeypair::new_for_tests`

samkim-crypto added the work in progress This isn't quite right yet label Jun 19, 2023

samkim-crypto added v1.16 PRs that should be backported to v1.16 and removed work in progress This isn't quite right yet labels Jun 20, 2023

samkim-crypto requested a review from CriesofCarrots June 20, 2023 07:51

CriesofCarrots reviewed Jun 20, 2023

View reviewed changes

zk-token-sdk/src/encryption/elgamal.rs Outdated Show resolved Hide resolved

samkim-crypto added 7 commits June 22, 2023 07:57

make ElGamalKeypair fields private

3731663

update the rest of zk-token-sdk for the visibility update

0954cee

update zk-token-proof-tests for the visibility update

9b766d9

update zk-keygen for the visibility update

23a471d

update zk-token-proof benches for the updated visibility

e41998d

cargo fmt

20cbfb2

rename ElGamalKeypair::new to ElGamalKeypair::new_for_tests

af36808

samkim-crypto requested a review from CriesofCarrots June 22, 2023 01:25

CriesofCarrots approved these changes Jun 22, 2023

View reviewed changes

samkim-crypto merged commit 1452ed7 into solana-labs:master Jun 22, 2023

mergify bot mentioned this pull request Jun 22, 2023

v1.16: [zk-token-sdk] Make ElGamalKeypair fields private (backport of #32190) #32235

Merged

ryoqun mentioned this pull request Jun 23, 2023

Add special feature for inter-crate safe dev-related code reuse #32169

Merged

samkim-crypto pushed a commit that referenced this pull request Jun 25, 2023

v1.16: [zk-token-sdk] Make ElGamalKeypair fields private (backport of

ca1be35

#32190) (#32235)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[zk-token-sdk] Make `ElGamalKeypair` fields private #32190

[zk-token-sdk] Make `ElGamalKeypair` fields private #32190

samkim-crypto commented Jun 19, 2023 •

edited

Loading

codecov bot commented Jun 19, 2023 •

edited

Loading

[zk-token-sdk] Make ElGamalKeypair fields private #32190

[zk-token-sdk] Make ElGamalKeypair fields private #32190

Conversation

samkim-crypto commented Jun 19, 2023 • edited Loading

Problem

Summary of Changes

codecov bot commented Jun 19, 2023 • edited Loading

Codecov Report

[zk-token-sdk] Make `ElGamalKeypair` fields private #32190

[zk-token-sdk] Make `ElGamalKeypair` fields private #32190

samkim-crypto commented Jun 19, 2023 •

edited

Loading

codecov bot commented Jun 19, 2023 •

edited

Loading