reorg commit/clsigs

2018-03-25 00:03:59 -04:00 · 2018-03-25 00:03:59 -04:00 · 646cd7a4c0
parent 88090174da
commit 646cd7a4c0
5 changed files with 746 additions and 318 deletions
--- a/.idea/libraries/Cargo__libbolt_.xml
+++ b/.idea/libraries/Cargo__libbolt_.xml
@ -1,28 +1,28 @@
 <component name="libraryTable">
  <library name="Cargo &lt;libbolt&gt;">
    <CLASSES>
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/winapi-x86_64-pc-windows-gnu-0.4.0" />
      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/bn-0.4.3" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/fuchsia-zircon-0.3.3" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/rustc-serialize-0.3.24" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/rand-0.4.2" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/winapi-i686-pc-windows-gnu-0.4.0" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/sodiumoxide-0.0.16" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/byteorder-1.2.1" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/bitflags-1.0.1" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/num-traits-0.1.43" />
      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/serde-0.7.15" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/rand-0.3.22" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/fuchsia-zircon-sys-0.3.3" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/serde-1.0.27" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/pkg-config-0.3.9" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/winapi-0.3.4" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/byteorder-1.2.1" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/rand-0.4.2" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/libc-0.2.36" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/byteorder-0.5.3" />
      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/bincode-0.6.1" />
      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/num-traits-0.2.0" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/pkg-config-0.3.9" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/fuchsia-zircon-sys-0.3.3" />
      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/libsodium-sys-0.0.16" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/libc-0.2.36" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/winapi-0.3.4" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/rand-0.3.22" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/fuchsia-zircon-0.3.3" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/bitflags-1.0.1" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/winapi-i686-pc-windows-gnu-0.4.0" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/serde-1.0.27" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/num-traits-0.1.43" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/sodiumoxide-0.0.16" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/winapi-x86_64-pc-windows-gnu-0.4.0" />
+      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/rustc-serialize-0.3.24" />
      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/bincode-0.5.9" />
-      <root url="file://$USER_HOME$/.cargo/registry/src/github.com-1ecc6299db9ec823/byteorder-0.5.3" />
    </CLASSES>
    <SOURCES />
  </library>
--- a/bin/bolt.rs
+++ b/bin/bolt.rs
@ -3,6 +3,7 @@ extern crate rand;
 extern crate libbolt;
 use bn::{Group, Fr, G1, G2, pairing};

+use libbolt::sym;
 use libbolt::clsigs;
 use libbolt::commit_scheme;

@ -28,6 +29,27 @@ fn main() {
    assert!(alice_ss == bob_ss && bob_ss == carol_ss);
    println!("All bn unit tests succeeded!");

+
+    println!("******************************************");
+    sym::init();
+    // SymKeyEnc tests
+    let l = 128; // TODO: figure out how to apply this to secretbox
+    let key1 = sym::keygen(l);
+    let key2 = sym::keygen(l);
+
+    // println!("key: {:?}", key);
+
+    let pt1 = String::from("hello world");
+    let ciphertext = sym::encrypt(&key1, &pt1);
+    println!("{}", ciphertext);
+
+    let pt2 = sym::decrypt(&key1, &ciphertext);
+    println!("Recovered plaintext: {}", pt2);
+    assert!(pt1 == pt2);
+
+//    let pt3 = sym::decrypt(&key2, &ciphertext);
+//    assert!(pt1 != pt3);
+    println!("SymKeyEnc is complete!");
    println!("******************************************");

    // CL sig tests
@ -35,12 +57,12 @@ fn main() {
    let keypair = clsigs::keygen(&mpk);
    println!("{}", keypair.pk);

-    let msg1 = clsigs::Message::new(String::from("refund"), alice_sk, 10);
-    let msg2 = clsigs::Message::new(String::from("refund"), alice_sk, 12);
-    let signature = clsigs::sign(&keypair.sk, &msg1);
+    let msg1 = libbolt::RefundMessage::new(alice_sk, 10).hash(); // TODO: add ck (l-bit key)
+    let msg2 = libbolt::RefundMessage::new(alice_sk, 11).hash(); // TODO: add ck (l-bit key)
+    let signature = clsigs::sign(&keypair.sk, msg1);
    println!("{}", signature);
-    assert!(clsigs::verify(&mpk, &keypair.pk, &msg1, &signature) == true);
-    assert!(clsigs::verify(&mpk, &keypair.pk, &msg2, &signature) == false);
+    assert!(clsigs::verify(&mpk, &keypair.pk, msg1, &signature) == true);
+    assert!(clsigs::verify(&mpk, &keypair.pk, msg2, &signature) == false);

    println!("CL signature verified!");

@ -49,9 +71,9 @@ fn main() {
    let pk = commit_scheme::setup();
    // let sk = libbolt::SecretKeySigs { x: Fr::random(rng), y: Fr::random(rng) };
    // let msg = String::from("Hello, World!");
-    let msg1 = commit_scheme::Message::new(alice_sk, bob_sk, 10);
-    let msg2 = commit_scheme::Message::new(alice_sk, bob_sk, 11);
-    let msg3 = commit_scheme::Message::new(bob_sk, alice_sk, 10);
+    let msg1 = commit_scheme::Message::new(keypair.sk, alice_sk, bob_sk, 10);
+    let msg2 = commit_scheme::Message::new(keypair.sk, alice_sk, bob_sk, 11);
+    let msg3 = commit_scheme::Message::new(keypair.sk, bob_sk, alice_sk, 10);

    let cm = commit_scheme::commit(&pk, &msg1);

--- a/src/clsigs.rs
+++ b/src/clsigs.rs
@ -0,0 +1,127 @@
+// clsigs.rs
+
+use std::fmt;
+use std::str;
+//use std::default;
+use rand;
+use bn::{Group, Fr, G1, G2, pairing};
+//use debug_elem_in_hex;
+use bincode::SizeLimit::Infinite;
+use bincode::rustc_serialize::encode;
+use sodiumoxide::crypto::hash::sha512;
+
+pub struct PublicParams {
+    g: G1
+}
+
+pub struct PublicKey {
+    X: G1,
+    Y: G1
+}
+
+impl fmt::Display for PublicKey {
+    fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
+        let x_vec: Vec<u8> = encode(&self.X, Infinite).unwrap();
+        let y_vec: Vec<u8> = encode(&self.Y, Infinite).unwrap();
+        let mut x_s = String::new();
+        for x in x_vec.iter() {
+            x_s = format!("{}{:x}", x_s, x);
+        }
+
+        let mut y_s = String::new();
+        for y in y_vec.iter() {
+            y_s = format!("{}{:x}", y_s, y);
+        }
+
+        write!(f, "PK : (X=0x{}, Y=0x{})", x_s, y_s)
+    }
+}
+
+#[derive(Copy, Clone)]
+pub struct SecretKey {
+    x: Fr,
+    y: Fr
+}
+
+impl SecretKey {
+    pub fn encode(&self) -> Vec<u8> {
+        let mut output_buf = Vec::new();
+        let x_vec: Vec<u8> = encode(&self.x, Infinite).unwrap();
+        let y_vec: Vec<u8> = encode(&self.y, Infinite).unwrap();
+        output_buf.extend(x_vec);
+        output_buf.extend(y_vec);
+        return output_buf;
+    }
+}
+
+pub struct KeyPair {
+    pub sk: SecretKey,
+    pub pk: PublicKey
+}
+
+pub struct Signature {
+    a: G2,
+    b: G2,
+    c: G2
+}
+
+impl fmt::Display for Signature {
+    fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
+        let a_vec: Vec<u8> = encode(&self.a, Infinite).unwrap();
+        let b_vec: Vec<u8> = encode(&self.b, Infinite).unwrap();
+        let c_vec: Vec<u8> = encode(&self.c, Infinite).unwrap();
+        let mut a_s = String::new();
+        for x in a_vec.iter() {
+            a_s = format!("{}{:x}", a_s, x);
+        }
+
+        let mut b_s = String::new();
+        for y in b_vec.iter() {
+            b_s = format!("{}{:x}", b_s, y);
+        }
+
+        let mut c_s = String::new();
+        for y in c_vec.iter() {
+            c_s = format!("{}{:x}", c_s, y);
+        }
+
+        write!(f, "Signature : (\na = 0x{},\nb = 0x{},\nc = 0x{}\n)", a_s, b_s, c_s)
+    }
+}
+
+pub fn setup() -> PublicParams {
+    let rng = &mut rand::thread_rng();
+    let g = G1::random(rng);
+    let mpk = PublicParams { g: g };
+    return mpk;
+}
+
+pub fn keygen(mpk : &PublicParams) -> KeyPair {
+    let rng = &mut rand::thread_rng();
+    let x = Fr::random(rng);
+    let y = Fr::random(rng);
+    let sk = SecretKey { x: x, y: y };
+    let pk = PublicKey { X: mpk.g * x,
+                         Y: mpk.g * y
+                        };
+    return KeyPair { sk: sk, pk: pk }
+}
+
+pub fn sign(sk: &SecretKey, m: Fr) -> Signature {
+    let rng = &mut rand::thread_rng();
+    let a = G2::random(rng);
+    //let m = msg.hash();
+    let b = a * sk.y;
+    let c = a * (sk.x + (m * sk.x * sk.y));
+    let sig = Signature { a: a, b: b, c: c };
+    return sig;
+}
+
+pub fn verify(mpk: &PublicParams, pk: &PublicKey, m: Fr, sig: &Signature) -> bool {
+    //let m = msg.hash();
+    let lhs1 = pairing(pk.Y, sig.a);
+    let rhs1 = pairing(mpk.g, sig.b);
+    let lhs2 = pairing(pk.X, sig.a) * (pairing(pk.X, sig.b).pow(m));
+    let rhs2 = pairing(mpk.g, sig.c);
+    return (lhs1 == rhs1) && (lhs2 == rhs2);
+}
--- a/src/commit_scheme.rs
+++ b/src/commit_scheme.rs
@ -0,0 +1,111 @@
+// commit_schemes.rs
+
+use std::fmt;
+use rand;
+use bn::{Group, Fr, G1};
+use clsigs;
+use debug_elem_in_hex;
+use bincode::SizeLimit::Infinite;
+use bincode::rustc_serialize::encode;
+use sodiumoxide::crypto::hash::sha512;
+// define some structures here
+#[derive(Copy, Clone)]
+pub struct PublicKey {
+    g: G1,
+    h: G1
+}
+
+#[derive(Copy, Clone)]
+pub struct Commitment {
+    c: G1,
+    d: Fr
+}
+
+impl fmt::Display for PublicKey {
+    fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
+        let g_vec: Vec<u8> = encode(&self.g, Infinite).unwrap();
+        let h_vec: Vec<u8> = encode(&self.h, Infinite).unwrap();
+        let mut g_s = String::new();
+        for x in g_vec.iter() {
+            g_s = format!("{}{:x}", g_s, x);
+        }
+
+        let mut h_s = String::new();
+        for y in h_vec.iter() {
+            h_s = format!("{}{:x}", h_s, y);
+        }
+
+        write!(f, "PK : (g=0x{}, h=0x{})", g_s, h_s)
+    }
+}
+
+
+impl fmt::Display for Commitment {
+    fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
+        let c_vec: Vec<u8> = encode(&self.c, Infinite).unwrap();
+        let mut c_s = String::new();
+        for x in c_vec.iter() {
+            c_s = format!("{}{:x}", c_s, x);
+        }
+
+        let d_vec: Vec<u8> = encode(&self.d, Infinite).unwrap();
+        let mut d_s = String::new();
+        for x in d_vec.iter() {
+            d_s = format!("{}{:x}", d_s, x);
+        }
+        write!(f, "Commitment : (c=0x{}, d=0x{})", c_s, d_s)
+    }
+}
+
+/*
+Implements the setup algorithm for the Pedersen92 commitment scheme
+*/
+pub fn setup() -> PublicKey {
+    println!("Run Setup...");
+    let rng = &mut rand::thread_rng();
+    let g = G1::random(rng);
+    let h = G1::random(rng);
+    let pk = PublicKey { g: g, h: h };
+    println!("{}", pk);
+    return pk;
+}
+
+/*
+commit(pk, msg) -> cm where
+- pk is the public key generated from setup()
+- msg is the message structure for the commitment scheme
+- cm is the output commitment message for the given message
+*/
+pub fn commit(pk: &PublicKey, m: Fr) -> Commitment {
+    let rng = &mut rand::thread_rng();
+
+    let r = Fr::random(rng);
+
+    //let m = msg.hash();
+    let p = "commit -> m";
+    debug_elem_in_hex(p, &m);
+
+    let c = (pk.g * m) + (pk.h * r);
+    // return (c, r) <- d=r
+    let commitment = Commitment { c: c, d: r };
+
+    // debugging
+    println!("{}", commitment);
+    return commitment;
+}
+
+/*
+decommit(pk, cm, msg) -> bool where
+- pk is the public key generated from setup()
+- cm is the commitment
+- m is the message to validate
+- outputs T/F for whether the cm is a valid commitmentt to the msg
+*/
+pub fn decommit(pk: &PublicKey, cm: &Commitment, m: Fr) -> bool {
+    //let m = msg.hash();
+    let p = "decommit -> m";
+    debug_elem_in_hex(p, &m);
+
+    let dm = (pk.g * m) + (pk.h * cm.d);
+    return dm == cm.c;
+}
--- a/src/lib.rs
+++ b/src/lib.rs
@ -82,330 +82,498 @@ pub fn misc_tests() {

 }

-////////////////////////////////// CL Sigs /////////////////////////////////////
-
-pub mod clsigs {
+////////////////////////////////// SymKeyEnc ///////////////////////////////////
+/*
+    Symmetric Key Encryption Scheme.
+*/
+pub mod sym {
    use std::fmt;
-    use std::str;
-    use std::default;
-    use rand;
-    use bn::{Group, Fr, G1, G2, pairing};
-    use debug_elem_in_hex;
-    use bincode::SizeLimit::Infinite;
-    use bincode::rustc_serialize::encode;
-    use sodiumoxide::crypto::hash::sha512;
+    use sodiumoxide;
+    use sodiumoxide::crypto::secretbox;

-    pub struct PublicParams {
-        g: G1
+    pub struct SymCT {
+        nonce: secretbox::Nonce,
+        ciphertext: Vec<u8>
    }

-    pub struct PublicKey {
-        X: G1,
-        Y: G1
-    }

-    impl fmt::Display for PublicKey {
+    impl fmt::Display for SymCT {
        fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
-            let x_vec: Vec<u8> = encode(&self.X, Infinite).unwrap();
-            let y_vec: Vec<u8> = encode(&self.Y, Infinite).unwrap();
-            let mut x_s = String::new();
-            for x in x_vec.iter() {
-                x_s = format!("{}{:x}", x_s, x);
-            }
-
            let mut y_s = String::new();
-            for y in y_vec.iter() {
+            for y in self.ciphertext.iter() {
                y_s = format!("{}{:x}", y_s, y);
            }

-            write!(f, "PK : (X=0x{}, Y=0x{})", x_s, y_s)
-        }
-    }
-
-    pub struct SecretKey {
-        x: Fr,
-        y: Fr
-    }
-
-    pub struct KeyPair {
-        pub sk: SecretKey,
-        pub pk: PublicKey
-    }
-
-    pub struct Signature {
-        a: G2,
-        b: G2,
-        c: G2
-    }
-
-    impl fmt::Display for Signature {
-        fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
-            let a_vec: Vec<u8> = encode(&self.a, Infinite).unwrap();
-            let b_vec: Vec<u8> = encode(&self.b, Infinite).unwrap();
-            let c_vec: Vec<u8> = encode(&self.c, Infinite).unwrap();
-            let mut a_s = String::new();
-            for x in a_vec.iter() {
-                a_s = format!("{}{:x}", a_s, x);
-            }
-
-            let mut b_s = String::new();
-            for y in b_vec.iter() {
-                b_s = format!("{}{:x}", b_s, y);
-            }
-
-            let mut c_s = String::new();
-            for y in c_vec.iter() {
-                c_s = format!("{}{:x}", c_s, y);
-            }
-
-            write!(f, "Signature : (\na = 0x{},\nb = 0x{},\nc = 0x{}\n)", a_s, b_s, c_s)
+            write!(f, "CT : (ct=0x{})", y_s)
        }
    }

    #[derive(Clone)]
-    pub struct Message {
-        prefix: String, // the secret key for the signature scheme
-        c_id: Fr, // uniquely identifies the
-        index: i32, // index
-        // ck: Fr, // TODO: l-bit key (from SymKeyEnc)
+    pub struct SymKey {
+        key: secretbox::Key,
+        l: i32
    }

-    impl Message {
-        pub fn new(_prefix: String, _c_id: Fr, _index: i32) -> Message {
-            Message {
-                prefix: _prefix, c_id: _c_id, index: _index,
-            }
-        }
+    pub fn init() {
+        sodiumoxide::init();
+    }

-        fn hash(&self) -> Fr {
-            let mut input_buf = Vec::new();
-            input_buf.extend_from_slice(self.prefix.as_bytes());
-            let c_id_vec: Vec<u8> = encode(&self.c_id, Infinite).unwrap();
-            // encode cId in the vector
-            input_buf.extend(c_id_vec);
-            // encoee the balance as a hex string
-            let b = format!("{:x}", self.index);
-            input_buf.extend_from_slice(b.as_bytes());
-            // TODO: add the ck vector (l-bit key)
-    //        let mut in_str = String::new();
-    //        for y in input_buf.iter() {
-    //            in_str = format!("{}{:x}", in_str, y);
-    //        }
-    //        println!("input_buf: {}", in_str);
+    pub fn keygen(l: i32) -> SymKey {
+        // TODO: make sure key is a l-bit key
+        return SymKey { key: secretbox::gen_key(), l: l };
+    }

-            // hash the inputs via SHA256
-            let sha2_digest = sha512::hash(input_buf.as_slice());
-            // println!("hash: {:?}", sha2_digest);
-            // let h = format!("{:x}", HexSlice::new(&sha2_digest));
-            let mut hash_buf: [u8; 64] = [0; 64];
-            hash_buf.copy_from_slice(&sha2_digest[0..64]);
-            return Fr::interpret(&hash_buf);
+    pub fn encrypt(key: &SymKey, plaintext: &String) -> SymCT {
+        let nonce = secretbox::gen_nonce();
+        let pt = plaintext.as_bytes();
+        let ct = secretbox::seal(pt, &nonce, &key.key);
+        return SymCT { nonce: nonce, ciphertext: ct };
+    }
+
+    pub fn decrypt(key: &SymKey, ciphertext: &SymCT) -> String {
+        let nonce = ciphertext.nonce;
+        let pt = secretbox::open(&ciphertext.ciphertext, &nonce, &key.key).unwrap();
+        // TODO: investigate better error handling here
+        let plaintext = String::from_utf8(pt).expect("Found invalid UTF-8");
+        return plaintext;
+    }
+}
+
+////////////////////////////////// SymKeyEnc ///////////////////////////////////
+
+////////////////////////////////// OTEnc ///////////////////////////////////////
+
+// TODO: implement this next
+pub mod ot {
+
+}
+
+////////////////////////////////// OTEnc ///////////////////////////////////////
+
+////////////////////////////////// CL Sigs /////////////////////////////////////
+
+pub mod clsigs;
+pub mod commit_scheme;
+//pub mod clsigs {
+//    use std::fmt;
+//    use std::str;
+//    //use std::default;
+//    use rand;
+//    use bn::{Group, Fr, G1, G2, pairing};
+//    //use debug_elem_in_hex;
+//    use bincode::SizeLimit::Infinite;
+//    use bincode::rustc_serialize::encode;
+//    use sodiumoxide::crypto::hash::sha512;
+//
+//    pub struct PublicParams {
+//        g: G1
+//    }
+//
+//    pub struct PublicKey {
+//        X: G1,
+//        Y: G1
+//    }
+//
+//    impl fmt::Display for PublicKey {
+//        fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
+//            let x_vec: Vec<u8> = encode(&self.X, Infinite).unwrap();
+//            let y_vec: Vec<u8> = encode(&self.Y, Infinite).unwrap();
+//            let mut x_s = String::new();
+//            for x in x_vec.iter() {
+//                x_s = format!("{}{:x}", x_s, x);
+//            }
+//
+//            let mut y_s = String::new();
+//            for y in y_vec.iter() {
+//                y_s = format!("{}{:x}", y_s, y);
+//            }
+//
+//            write!(f, "PK : (X=0x{}, Y=0x{})", x_s, y_s)
+//        }
+//    }
+//
+//    #[derive(Copy, Clone)]
+//    pub struct SecretKey {
+//        x: Fr,
+//        y: Fr
+//    }
+//
+//    impl SecretKey {
+//        pub fn encode(&self) -> Vec<u8> {
+//            let mut output_buf = Vec::new();
+//            let x_vec: Vec<u8> = encode(&self.x, Infinite).unwrap();
+//            let y_vec: Vec<u8> = encode(&self.y, Infinite).unwrap();
+//            output_buf.extend(x_vec);
+//            output_buf.extend(y_vec);
+//            return output_buf;
+//        }
+//    }
+//
+//    pub struct KeyPair {
+//        pub sk: SecretKey,
+//        pub pk: PublicKey
+//    }
+//
+//    pub struct Signature {
+//        a: G2,
+//        b: G2,
+//        c: G2
+//    }
+//
+//    impl fmt::Display for Signature {
+//        fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
+//            let a_vec: Vec<u8> = encode(&self.a, Infinite).unwrap();
+//            let b_vec: Vec<u8> = encode(&self.b, Infinite).unwrap();
+//            let c_vec: Vec<u8> = encode(&self.c, Infinite).unwrap();
+//            let mut a_s = String::new();
+//            for x in a_vec.iter() {
+//                a_s = format!("{}{:x}", a_s, x);
+//            }
+//
+//            let mut b_s = String::new();
+//            for y in b_vec.iter() {
+//                b_s = format!("{}{:x}", b_s, y);
+//            }
+//
+//            let mut c_s = String::new();
+//            for y in c_vec.iter() {
+//                c_s = format!("{}{:x}", c_s, y);
+//            }
+//
+//            write!(f, "Signature : (\na = 0x{},\nb = 0x{},\nc = 0x{}\n)", a_s, b_s, c_s)
+//        }
+//    }
+//
+//    #[derive(Clone)]
+//    pub struct Message<'a> {
+//        prefix: &'a str, // string prefix for the prefix
+//        c_id: Fr, // uniquely identifies the
+//        index: i32, // index
+//        // ck: Fr, // TODO: l-bit key (from SymKeyEnc)
+//    }
+//
+//    impl<'a> Message<'a> {
+//        pub fn new(_prefix: &str, _c_id: Fr, _index: i32) -> Message {
+//            Message {
+//                prefix: _prefix, c_id: _c_id, index: _index,
+//            }
+//        }
+//
+//        fn hash(&self) -> Fr {
+//            let mut input_buf = Vec::new();
+//            input_buf.extend_from_slice(self.prefix.as_bytes());
+//            let c_id_vec: Vec<u8> = encode(&self.c_id, Infinite).unwrap();
+//            // encode cId in the vector
+//            input_buf.extend(c_id_vec);
+//            // encoee the balance as a hex string
+//            let b = format!("{:x}", self.index);
+//            input_buf.extend_from_slice(b.as_bytes());
+//            // TODO: add the ck vector (l-bit key)
+//    //        let mut in_str = String::new();
+//    //        for y in input_buf.iter() {
+//    //            in_str = format!("{}{:x}", in_str, y);
+//    //        }
+//    //        println!("input_buf: {}", in_str);
+//
+//            // hash the inputs via SHA256
+//            let sha2_digest = sha512::hash(input_buf.as_slice());
+//            // println!("hash: {:?}", sha2_digest);
+//            // let h = format!("{:x}", HexSlice::new(&sha2_digest));
+//            let mut hash_buf: [u8; 64] = [0; 64];
+//            hash_buf.copy_from_slice(&sha2_digest[0..64]);
+//            return Fr::interpret(&hash_buf);
+//        }
+//    }
+//
+//
+//    pub fn setup() -> PublicParams {
+//        let rng = &mut rand::thread_rng();
+//        let g = G1::random(rng);
+//        let mpk = PublicParams { g: g };
+//        return mpk;
+//    }
+//
+//    pub fn keygen(mpk : &PublicParams) -> KeyPair {
+//        let rng = &mut rand::thread_rng();
+//        let x = Fr::random(rng);
+//        let y = Fr::random(rng);
+//        let sk = SecretKey { x: x, y: y };
+//        let pk = PublicKey { X: mpk.g * x,
+//                             Y: mpk.g * y
+//                            };
+//        return KeyPair { sk: sk, pk: pk }
+//    }
+//
+//    pub fn sign(sk: &SecretKey, msg: &Message) -> Signature {
+//        let rng = &mut rand::thread_rng();
+//        let a = G2::random(rng);
+//        let m = msg.hash();
+//        let b = a * sk.y;
+//        let c = a * (sk.x + (m * sk.x * sk.y));
+//        let sig = Signature { a: a, b: b, c: c };
+//        return sig;
+//    }
+//
+//    pub fn verify(mpk: &PublicParams, pk: &PublicKey, msg: &Message, sig: &Signature) -> bool {
+//        let m = msg.hash();
+//        let lhs1 = pairing(pk.Y, sig.a);
+//        let rhs1 = pairing(mpk.g, sig.b);
+//        let lhs2 = pairing(pk.X, sig.a) * (pairing(pk.X, sig.b).pow(m));
+//        let rhs2 = pairing(mpk.g, sig.c);
+//        return (lhs1 == rhs1) && (lhs2 == rhs2);
+//    }
+//
+//}
+
+#[derive(Clone)]
+pub struct RefundMessage<'a> {
+    prefix: &'a str, // string prefix for the prefix
+    c_id: Fr, // uniquely identifies the
+    index: i32, // index
+    // ck: Fr, // TODO: l-bit key (from SymKeyEnc)
+}
+
+impl<'a> RefundMessage<'a> {
+    pub fn new(_c_id: Fr, _index: i32) -> RefundMessage<'a> {
+        RefundMessage {
+            prefix: "refund", c_id: _c_id, index: _index,
        }
    }

+    pub fn hash(&self) -> Fr {
+        let mut input_buf = Vec::new();
+        input_buf.extend_from_slice(self.prefix.as_bytes());
+        let c_id_vec: Vec<u8> = encode(&self.c_id, Infinite).unwrap();
+        // encode cId in the vector
+        input_buf.extend(c_id_vec);
+        // encoee the balance as a hex string
+        let b = format!("{:x}", self.index);
+        input_buf.extend_from_slice(b.as_bytes());
+        // TODO: add the ck vector (l-bit key)
+//        let mut in_str = String::new();
+//        for y in input_buf.iter() {
+//            in_str = format!("{}{:x}", in_str, y);
+//        }
+//        println!("input_buf: {}", in_str);

-    pub fn setup() -> PublicParams {
-        let rng = &mut rand::thread_rng();
-        let g = G1::random(rng);
-        let mpk = PublicParams { g: g };
-        return mpk;
+        // hash the inputs via SHA256
+        let sha2_digest = sha512::hash(input_buf.as_slice());
+        // println!("hash: {:?}", sha2_digest);
+        // let h = format!("{:x}", HexSlice::new(&sha2_digest));
+        let mut hash_buf: [u8; 64] = [0; 64];
+        hash_buf.copy_from_slice(&sha2_digest[0..64]);
+        return Fr::interpret(&hash_buf);
    }
-
-    pub fn keygen(mpk : &PublicParams) -> KeyPair {
-        let rng = &mut rand::thread_rng();
-        let x = Fr::random(rng);
-        let y = Fr::random(rng);
-        let sk = SecretKey { x: x, y: y };
-        let pk = PublicKey { X: mpk.g * x,
-                             Y: mpk.g * y
-                            };
-        return KeyPair { sk: sk, pk: pk }
-    }
-
-    pub fn sign(sk: &SecretKey, msg: &Message) -> Signature {
-        let rng = &mut rand::thread_rng();
-        let a = G2::random(rng);
-        let m = msg.hash();
-        let b = a * sk.y;
-        let c = a * (sk.x + (m * sk.x * sk.y));
-        let sig = Signature { a: a, b: b, c: c };
-        return sig;
-    }
-
-    pub fn verify(mpk: &PublicParams, pk: &PublicKey, msg: &Message, sig: &Signature) -> bool {
-        let m = msg.hash();
-        let lhs1 = pairing(pk.Y, sig.a);
-        let rhs1 = pairing(mpk.g, sig.b);
-        let lhs2 = pairing(pk.X, sig.a) * (pairing(pk.X, sig.b).pow(m));
-        let rhs2 = pairing(mpk.g, sig.c);
-        return (lhs1 == rhs1) && (lhs2 == rhs2);
-    }
-
 }

 ////////////////////////////////// CL Sigs /////////////////////////////////////

 ////////////////////////////////// COMMITMENT //////////////////////////////////

-pub mod commit_scheme {
-    use std::fmt;
-    use rand;
-    use std::str;
-    use std::default;
-    use bn::{Group, Fr, G1};
-    use debug_elem_in_hex;
-    use bincode::SizeLimit::Infinite;
-    use bincode::rustc_serialize::encode;
-    use sodiumoxide::crypto::hash::sha512;
-
-    // define some structures here
-    #[derive(Copy, Clone)]
-    pub struct PublicKey {
-        g: G1,
-        h: G1
-    }
-
-    #[derive(Copy, Clone)]
-    pub struct Commitment {
-        c: G1,
-        d: Fr
-    }
-
-    impl fmt::Display for PublicKey {
-        fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
-            let g_vec: Vec<u8> = encode(&self.g, Infinite).unwrap();
-            let h_vec: Vec<u8> = encode(&self.h, Infinite).unwrap();
-            let mut g_s = String::new();
-            for x in g_vec.iter() {
-                g_s = format!("{}{:x}", g_s, x);
-            }
-
-            let mut h_s = String::new();
-            for y in h_vec.iter() {
-                h_s = format!("{}{:x}", h_s, y);
-            }
-
-            write!(f, "PK : (g=0x{}, h=0x{})", g_s, h_s)
-        }
-    }
-
-
-    impl fmt::Display for Commitment {
-        fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
-            let c_vec: Vec<u8> = encode(&self.c, Infinite).unwrap();
-            let mut c_s = String::new();
-            for x in c_vec.iter() {
-                c_s = format!("{}{:x}", c_s, x);
-            }
-
-            let d_vec: Vec<u8> = encode(&self.d, Infinite).unwrap();
-            let mut d_s = String::new();
-            for x in d_vec.iter() {
-                d_s = format!("{}{:x}", d_s, x);
-            }
-            write!(f, "Commitment : (c=0x{}, d=0x{})", c_s, d_s)
-        }
-    }
-
-    /*
-    Implements the setup algorithm for the Pedersen92 commitment scheme
-    */
-    pub fn setup() -> PublicKey {
-        println!("Run Setup...");
-        let rng = &mut rand::thread_rng();
-        let g = G1::random(rng);
-        let h = G1::random(rng);
-        let pk = PublicKey { g: g, h: h };
-        println!("{}", pk);
-        return pk;
-    }
-
-    #[derive(Copy, Clone)]
-    pub struct Message {
-    //    sk_sigs: SecretKeySigs, // the secret key for the signature scheme
-        k1: Fr, // seed 1 for PRF
-        k2: Fr, // seed 2 for PRF
-        balance: i32 // the balance for the user
-    }
-
-    impl Message {
-        pub fn new(_k1: Fr, _k2: Fr, _balance: i32) -> Message {
-            Message {
-                k1: _k1, k2: _k2, balance: _balance,
-            }
-        }
-
-        fn hash(&self) -> Fr {
-            let mut input_buf = Vec::new();
-            // TODO: add sk_sigs to encode it
-            let k1_vec: Vec<u8> = encode(&self.k1, Infinite).unwrap();
-            let k2_vec: Vec<u8> = encode(&self.k2, Infinite).unwrap();
-            // encode k1 in the vector
-            input_buf.extend(k1_vec);
-            // encode k2 in the vector
-            input_buf.extend(k2_vec);
-            // encoee the balance as a hex string
-            let b = format!("{:x}", self.balance);
-    //        println!("Balance: {}", b);
-            input_buf.extend_from_slice(b.as_bytes());
-    //        let mut in_str = String::new();
-    //        for y in input_buf.iter() {
-    //            in_str = format!("{}{:x}", in_str, y);
-    //        }
-    //        println!("input_buf: {}", in_str);
-
-            // hash the inputs via SHA256
-            let sha2_digest = sha512::hash(input_buf.as_slice());
-            // println!("hash: {:?}", sha2_digest);
-            // let h = format!("{:x}", HexSlice::new(&sha2_digest));
-            let mut hash_buf: [u8; 64] = [0; 64];
-            hash_buf.copy_from_slice(&sha2_digest[0..64]);
-            return Fr::interpret(&hash_buf);
-        }
-    }
-
-
-    /*
-    commit(pk, msg) -> cm where
-    - pk is the public key generated from setup()
-    - msg is the message structure for the commitment scheme
-    - cm is the output commitment message for the given message
-    */
-    pub fn commit(pk: &PublicKey, msg: &Message) -> Commitment {
-        let rng = &mut rand::thread_rng();
-
-        let r = Fr::random(rng);
-
-        let m = msg.hash();
-        let p = "commit -> m";
-        debug_elem_in_hex(p, &m);
-
-        let c = (pk.g * m) + (pk.h * r);
-        // return (c, r) <- d=r
-        let commitment = Commitment { c: c, d: r };
-
-        // debugging
-        println!("{}", commitment);
-        return commitment;
-    }
-
-    /*
-    decommit(pk, cm, msg) -> bool where
-    - pk is the public key generated from setup()
-    - cm is the commitment
-    - msg is the message to validate
-    - outputs T/F for whether the cm is a valid commitmentt to the msg
-    */
-    pub fn decommit(pk: &PublicKey, cm: &Commitment, msg: &Message) -> bool {
-        let m = msg.hash();
-        let p = "decommit -> m";
-        debug_elem_in_hex(p, &m);
-
-        let dm = (pk.g * m) + (pk.h * cm.d);
-        return dm == cm.c;
-    }
-
+#[derive(Copy, Clone)]
+pub struct Message {
+    sk: clsigs::SecretKey, // the secret key for the signature scheme (Is it possible to make this a generic field?)
+    k1: Fr, // seed 1 for PRF
+    k2: Fr, // seed 2 for PRF
+    balance: i32 // the balance for the user
 }
+
+impl Message {
+    pub fn new(_sk: clsigs::SecretKey, _k1: Fr, _k2: Fr, _balance: i32) -> Message {
+        Message {
+            sk: _sk, k1: _k1, k2: _k2, balance: _balance,
+        }
+    }
+
+    fn hash(&self) -> Fr {
+        let mut input_buf = self.sk.encode();
+        // TODO: add sk_sigs to encode it
+        let k1_vec: Vec<u8> = encode(&self.k1, Infinite).unwrap();
+        let k2_vec: Vec<u8> = encode(&self.k2, Infinite).unwrap();
+        // encode k1 in the vector
+        input_buf.extend(k1_vec);
+        // encode k2 in the vector
+        input_buf.extend(k2_vec);
+        // encoee the balance as a hex string
+        let b = format!("{:x}", self.balance);
+//        println!("Balance: {}", b);
+        input_buf.extend_from_slice(b.as_bytes());
+//        let mut in_str = String::new();
+//        for y in input_buf.iter() {
+//            in_str = format!("{}{:x}", in_str, y);
+//        }
+//        println!("input_buf: {}", in_str);
+
+        // hash the inputs via SHA256
+        let sha2_digest = sha512::hash(input_buf.as_slice());
+        // println!("hash: {:?}", sha2_digest);
+        // let h = format!("{:x}", HexSlice::new(&sha2_digest));
+        let mut hash_buf: [u8; 64] = [0; 64];
+        hash_buf.copy_from_slice(&sha2_digest[0..64]);
+        return Fr::interpret(&hash_buf);
+    }
+}
+
+
+//pub mod commit_scheme {
+//    use std::fmt;
+//    use rand;
+//    //use std::str;
+//    //use std::default;
+//    use bn::{Group, Fr, G1};
+//    use debug_elem_in_hex;
+//    use bincode::SizeLimit::Infinite;
+//    use bincode::rustc_serialize::encode;
+//    use sodiumoxide::crypto::hash::sha512;
+//    use clsigs;
+//    // define some structures here
+//    #[derive(Copy, Clone)]
+//    pub struct PublicKey {
+//        g: G1,
+//        h: G1
+//    }
+//
+//    #[derive(Copy, Clone)]
+//    pub struct Commitment {
+//        c: G1,
+//        d: Fr
+//    }
+//
+//    impl fmt::Display for PublicKey {
+//        fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
+//            let g_vec: Vec<u8> = encode(&self.g, Infinite).unwrap();
+//            let h_vec: Vec<u8> = encode(&self.h, Infinite).unwrap();
+//            let mut g_s = String::new();
+//            for x in g_vec.iter() {
+//                g_s = format!("{}{:x}", g_s, x);
+//            }
+//
+//            let mut h_s = String::new();
+//            for y in h_vec.iter() {
+//                h_s = format!("{}{:x}", h_s, y);
+//            }
+//
+//            write!(f, "PK : (g=0x{}, h=0x{})", g_s, h_s)
+//        }
+//    }
+//
+//
+//    impl fmt::Display for Commitment {
+//        fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
+//            let c_vec: Vec<u8> = encode(&self.c, Infinite).unwrap();
+//            let mut c_s = String::new();
+//            for x in c_vec.iter() {
+//                c_s = format!("{}{:x}", c_s, x);
+//            }
+//
+//            let d_vec: Vec<u8> = encode(&self.d, Infinite).unwrap();
+//            let mut d_s = String::new();
+//            for x in d_vec.iter() {
+//                d_s = format!("{}{:x}", d_s, x);
+//            }
+//            write!(f, "Commitment : (c=0x{}, d=0x{})", c_s, d_s)
+//        }
+//    }
+//
+//    #[derive(Copy, Clone)]
+//    pub struct Message {
+//        sk: clsigs::SecretKey, // the secret key for the signature scheme (Is it possible to make this a generic field?)
+//        k1: Fr, // seed 1 for PRF
+//        k2: Fr, // seed 2 for PRF
+//        balance: i32 // the balance for the user
+//    }
+//
+//    impl Message {
+//        pub fn new(_sk: clsigs::SecretKey, _k1: Fr, _k2: Fr, _balance: i32) -> Message {
+//            Message {
+//                sk: _sk, k1: _k1, k2: _k2, balance: _balance,
+//            }
+//        }
+//
+//        fn hash(&self) -> Fr {
+//            let mut input_buf = self.sk.encode();
+//            // TODO: add sk_sigs to encode it
+//            let k1_vec: Vec<u8> = encode(&self.k1, Infinite).unwrap();
+//            let k2_vec: Vec<u8> = encode(&self.k2, Infinite).unwrap();
+//            // encode k1 in the vector
+//            input_buf.extend(k1_vec);
+//            // encode k2 in the vector
+//            input_buf.extend(k2_vec);
+//            // encoee the balance as a hex string
+//            let b = format!("{:x}", self.balance);
+//    //        println!("Balance: {}", b);
+//            input_buf.extend_from_slice(b.as_bytes());
+//    //        let mut in_str = String::new();
+//    //        for y in input_buf.iter() {
+//    //            in_str = format!("{}{:x}", in_str, y);
+//    //        }
+//    //        println!("input_buf: {}", in_str);
+//
+//            // hash the inputs via SHA256
+//            let sha2_digest = sha512::hash(input_buf.as_slice());
+//            // println!("hash: {:?}", sha2_digest);
+//            // let h = format!("{:x}", HexSlice::new(&sha2_digest));
+//            let mut hash_buf: [u8; 64] = [0; 64];
+//            hash_buf.copy_from_slice(&sha2_digest[0..64]);
+//            return Fr::interpret(&hash_buf);
+//        }
+//    }
+//
+//
+//    /*
+//    Implements the setup algorithm for the Pedersen92 commitment scheme
+//    */
+//    pub fn setup() -> PublicKey {
+//        println!("Run Setup...");
+//        let rng = &mut rand::thread_rng();
+//        let g = G1::random(rng);
+//        let h = G1::random(rng);
+//        let pk = PublicKey { g: g, h: h };
+//        println!("{}", pk);
+//        return pk;
+//    }
+//
+//    /*
+//    commit(pk, msg) -> cm where
+//    - pk is the public key generated from setup()
+//    - msg is the message structure for the commitment scheme
+//    - cm is the output commitment message for the given message
+//    */
+//    pub fn commit(pk: &PublicKey, msg: &Message) -> Commitment {
+//        let rng = &mut rand::thread_rng();
+//
+//        let r = Fr::random(rng);
+//
+//        let m = msg.hash();
+//        let p = "commit -> m";
+//        debug_elem_in_hex(p, &m);
+//
+//        let c = (pk.g * m) + (pk.h * r);
+//        // return (c, r) <- d=r
+//        let commitment = Commitment { c: c, d: r };
+//
+//        // debugging
+//        println!("{}", commitment);
+//        return commitment;
+//    }
+//
+//    /*
+//    decommit(pk, cm, msg) -> bool where
+//    - pk is the public key generated from setup()
+//    - cm is the commitment
+//    - msg is the message to validate
+//    - outputs T/F for whether the cm is a valid commitmentt to the msg
+//    */
+//    pub fn decommit(pk: &PublicKey, cm: &Commitment, msg: &Message) -> bool {
+//        let m = msg.hash();
+//        let p = "decommit -> m";
+//        debug_elem_in_hex(p, &m);
+//
+//        let dm = (pk.g * m) + (pk.h * cm.d);
+//        return dm == cm.c;
+//    }
+//
+//}
 ////////////////////////////////// COMMITMENT //////////////////////////////////

 //pub fn keygen() {