Skip to content

Bvvvp009/lighter-rust

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

18 Commits
api-client
api-client
Β 
Β 
crypto
crypto
Β 
Β 
docs
docs
Β 
Β 
poseidon-hash
poseidon-hash
Β 
Β 
scripts
scripts
Β 
Β 
signer
signer
Β 
Β 
.env.example
.env.example
Β 
Β 
.gitignore
.gitignore
Β 
Β 
CHANGELOG.md
CHANGELOG.md
Β 
Β 
Cargo.toml
Cargo.toml
Β 
Β 
README.md
README.md
Β 
Β 
go.mod
go.mod
Β 
Β 
justfile
justfile
Β 
Β 

Repository files navigation

goldilocks-poseidon2

⚠️ NOT SECURITY AUDITED

This software has not been independently security-audited. Do not use in production without a professional cryptographic review. See Security.

Rust implementation of Poseidon2 hash and ECgFp5 Schnorr signatures over the Goldilocks prime field (p = 2⁢⁴ βˆ’ 2Β³Β² + 1).

These are standalone cryptographic primitives ported from the Lighter Protocol Go implementation (elliottech/poseidon_crypto). Round constants are cross-verified against that reference and against Plonky3.

Crates

Crate Folder Description
poseidon-hash poseidon-hash/ Goldilocks field arithmetic, Poseidon2 permutation, Fp5 quintic extension, Merkle tree
goldilocks-crypto crypto/ ECgFp5 elliptic curve, Schnorr key generation, signing, and batch verification

Quick Start

# Cargo.toml
[dependencies]
poseidon-hash     = "0.1"
goldilocks-crypto = "0.1"

Hash with Poseidon2

use poseidon_hash::{Goldilocks, hash_to_quintic_extension};

let input = vec![
    Goldilocks::from_canonical_u64(1),
    Goldilocks::from_canonical_u64(2),
];
let digest = hash_to_quintic_extension(&input);
let bytes: [u8; 40] = digest.to_bytes_le();

Sign and verify a message

use goldilocks_crypto::{KeyPair, Signature};

let kp  = KeyPair::generate();
let msg = [0u8; 40]; // 40-byte message (Fp5 digest)

let sig: Signature = kp.sign(&msg).unwrap();
sig.verify(&msg, &kp.public_key_bytes()).unwrap();

Running Tests

cargo test --workspace --all-targets

Expected: 143 tests, 0 failures.

Suite Count
poseidon-hash unit tests 59
goldilocks-crypto unit tests 21
goldilocks-crypto integration 2
goldilocks-crypto security 61

Algorithm Parameters

Parameter Value
Field prime p = 2⁢⁴ βˆ’ 2Β³Β² + 1 (Goldilocks)
Hash function Poseidon2
Sponge width / rate 12 / 8
Full rounds 8 (4 + 4)
Partial rounds 22
S-box degree 7
Curve ECgFp5 over GF(p⁡)
Signature Schnorr + Poseidon2

Constant provenance:

⚠️ Security

This software has NOT been independently security-audited.

  • Do not deploy to production without a professional cryptographic review.
  • Correctness is verified via 143 unit/integration tests and cross-checked against the Go reference implementation, but that is not a substitute for a formal audit.
  • #![forbid(unsafe_code)] is set in both crates β€” no unsafe Rust is used.
  • Private keys are zeroized on drop via the zeroize crate, but side-channel resistance has not been formally evaluated.
  • This is an unofficial open-source port and is not affiliated with or endorsed by the Lighter Protocol team.
  • Use at your own risk.

Repository Layout

poseidon-hash/      Goldilocks field + Poseidon2 + Fp5 + Merkle tree
  src/lib.rs
  CHANGELOG.md
  README.md

crypto/             ECgFp5 curve + Schnorr signatures
  src/lib.rs
  README.md

License

Licensed under either of:

at your option.

  • Poseidon2 Hashing: Efficient zero-knowledge proof-friendly hashing
  • Thread-Safe: Send + Sync for concurrent operations
  • Production-Ready: Battle-tested cryptographic primitives
  • One-to-One Go Compatibility: βœ… Verified - Matches Go implementation exactly
  • Verified Compatibility: All critical components tested and verified with Go test vectors

πŸ“¦ Libraries

The SDK is organized into three core libraries:

1. poseidon-hash

Poseidon2 hash function implementation for zero-knowledge proof systems.

Features:

  • Goldilocks field arithmetic (p = 2^64 - 2^32 + 1)
  • Fp5Element (quintic extension field) operations
  • Poseidon2 hash function with exact Go compatibility
[dependencies]
poseidon-hash = { path = "./poseidon-hash" }

2. crypto (goldilocks-crypto)

Cryptographic primitives including:

  • Goldilocks field arithmetic
  • ECgFp5 curve operations
  • Schnorr signature generation and verification
  • Scalar field operations
[dependencies]
goldilocks-crypto = { path = "./crypto" }
poseidon-hash = { path = "./poseidon-hash" }

3. signer

High-level signing interface for:

  • Key management (40-byte private keys)
  • Message signing (40-byte messages)
  • Authentication token generation
  • Public key derivation
[dependencies]
signer = { path = "./signer" }
goldilocks-crypto = { path = "./crypto" }
poseidon-hash = { path = "./poseidon-hash" }

πŸƒ Quick Start

Installation

Add to your Cargo.toml:

[dependencies]
signer = { path = "../lighter-rust/signer" }
goldilocks-crypto = { path = "../lighter-rust/crypto" }
poseidon-hash = { path = "../lighter-rust/poseidon-hash" }
hex = "0.4"

Basic Usage

Key Management and Signing

use signer::KeyManager;
use hex;

fn main() -> Result<(), Box<dyn std::error::Error>> {
    // Create KeyManager from private key hex string (80 hex chars = 40 bytes)
    let private_key_hex = "6227989d19d906db99e5da73c3ce4c2e41d80854cecce7618a1e45978a604c7c8fac5d6cc3eb315b";
    let key_manager = KeyManager::from_hex(private_key_hex)?;
    
    // Get public key (40 bytes)
    let public_key = key_manager.public_key_bytes();
    println!("Public key: {}", hex::encode(&public_key));
    
    // Sign a 40-byte message
    let message: [u8; 40] = [0u8; 40]; // Your 40-byte message hash
    let signature = key_manager.sign(&message)?;
    println!("Signature: {}", hex::encode(&signature));
    
    // Create auth token
    let deadline = 1735689600i64;
    let account_index = 271i64;
    let api_key_index = 4u8;
    let auth_token = key_manager.create_auth_token(deadline, account_index, api_key_index)?;
    println!("Auth token: {}", auth_token);
    
    Ok(())
}

Using Cryptographic Primitives Directly

use goldilocks_crypto::{ScalarField, Point, sign, verify_signature};

fn main() -> Result<(), Box<dyn std::error::Error>> {
    // Generate a random private key
    let private_key = ScalarField::sample_crypto();
    let private_key_bytes = private_key.to_bytes_le();
    
    // Derive public key
    let public_key = Point::generator().mul(&private_key);
    let public_key_bytes = public_key.encode().to_bytes_le();
    
    // Sign a message (nonce is generated internally)
    let message = [0u8; 40];
    let signature = sign(&private_key_bytes, &message)?;
    
    // Verify signature
    let is_valid = verify_signature(&signature, &message, &public_key_bytes)?;
    assert!(is_valid);
    
    Ok(())
}

πŸ“š Examples

The SDK includes comprehensive examples in each library:

Signer Examples

# Run signer examples
cd signer
cargo run --example compare_with_go

Crypto Examples

# Run crypto benchmarks
cd crypto
cargo bench

Running Tests

# Run all tests
cargo test

# Run tests for specific library
cargo test -p signer
cargo test -p goldilocks-crypto
cargo test -p poseidon-hash

πŸ“– Documentation

Comprehensive documentation is available in the docs/ directory:

πŸ”§ Building

# Build all libraries
cargo build --release

# Build examples
cargo build --examples

# Run tests
cargo test

# Run benchmarks
cargo bench

🎯 Key Features

Thread Safety

All core operations are thread-safe. Share KeyManager across threads:

use std::sync::Arc;
use signer::KeyManager;

let key_manager = Arc::new(KeyManager::from_hex(private_key_hex)?);

// Use in multiple threads
let km1 = key_manager.clone();
let km2 = key_manager.clone();

std::thread::spawn(move || {
    let sig = km1.sign(&message).unwrap();
});

std::thread::spawn(move || {
    let sig = km2.sign(&message).unwrap();
});

Go Compatibility

The implementation is designed to match the Go implementation exactly:

  • Same cryptographic primitives
  • Same signature format (80 bytes: 40 bytes s + 40 bytes e)
  • Same key format (40-byte private keys)
  • Same auth token format
  • Byte-level compatibility verified through tests

πŸ” Security

  • Secure Key Management: Private keys never logged or exposed
  • Cryptographically Secure RNG: Uses ScalarField::sample_crypto() for random generation
  • Production-Ready: Battle-tested cryptographic primitives
  • ⚠️ Security Warning: This library has NOT been audited. Use with caution in production.

πŸ“Š Performance

  • Signing: < 1ms per signature
  • Hash Operations: Optimized Poseidon2 implementation
  • Point Operations: Windowed scalar multiplication
  • Memory: Zero-copy where possible

πŸ› οΈ Requirements

  • Rust 1.70+ (see rust-toolchain.toml)
  • No external runtime dependencies (core libraries are no_std compatible with alloc)

πŸ“ License

See individual library licenses.

🀝 Contributing

Contributions are always welcome, Feel free!

πŸ”— Links

πŸ“ž Support

For issues and questions:

  1. Review Documentation
  2. Check Implementation Plan
  3. See library-specific documentation in docs/ directory

Built with ❀️ for high-performance cryptographic operations on Lighter Protocol

About

Unofficial pure Rust-Signer for lighter protocol with full native libraries.

Resources

Readme
Activity

Stars

23 stars

Watchers

2 watching

Forks

13 forks
Report repository

Releases

1 tags

Packages

 
 
 

Contributors

Languages