feat: CRP-2763 add a basic BLS signing service example (#94)

Adds a basic BLS signing example where a user can log in and create signatures and also see the signatures she created in the past. Additonally, there is UI to verify a custom signature.

Author: altkdf

.github/workflows/examples-basic-bls-signing.yml

@@ -0,0 +1,52 @@
+name: examples-basic-bls-signing
+on:
+  push:
+    branches:
+      - main
+  pull_request:
+    paths:
+      - examples/basic_bls_signing/**
+      - backend/**
+      - Cargo.toml
+      - Cargo.lock
+      - frontend/ic_vetkeys/**
+      - package.json
+      - package-lock.json
+      - .github/workflows/provision-darwin.sh
+      - .github/workflows/provision-linux.sh
+      - .github/workflows/examples-basic-bls-signing.yml
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+jobs:
+  examples-basic-bls-signing-darwin:
+    runs-on: macos-15
+    steps:
+      - uses: actions/checkout@v4
+      - name: Provision Darwin
+        run: |
+          bash .github/workflows/provision-darwin.sh
+      - name: Deploy Basic BLS Signing Darwin
+        run: |
+          set -eExuo pipefail
+          cargo install candid-extractor
+          npm i
+          pushd examples/basic_bls_signing
+          ./deploy_locally.sh
+          cd frontend
+          npm run lint
+  examples-basic-bls-signing-linux:
+    runs-on: ubuntu-24.04
+    steps:
+      - uses: actions/checkout@v4
+      - name: Provision Linux
+        run: bash .github/workflows/provision-linux.sh
+      - name: Deploy Basic BLS Signing Linux
+        run: |
+          set -eExuo pipefail
+          cargo install candid-extractor
+          npm i
+          pushd examples/basic_bls_signing
+          ./deploy_locally.sh
+          cd frontend
+          npm run lint

Cargo.lock

@@ -5,7 +5,8 @@ members = [
     "backend/rs/canisters/ic_vetkeys_encrypted_maps_canister",
     "backend/rs/canisters/ic_vetkeys_manager_canister",
     "backend/rs/canisters/tests",
-    "examples/password_manager_with_metadata/backend"
+    "examples/basic_bls_signing/backend",
+    "examples/password_manager_with_metadata/backend",
 ]
 resolver = "2"
 
@@ -39,4 +40,4 @@ ic-dummy-getrandom-for-wasm = "0.1.0"
 [profile.release]
 lto = true
 opt-level = 'z'
-panic = 'abort'
+panic = 'abort'

Cargo.toml

@@ -0,0 +1,58 @@
+# Basic BLS Signing
+
+> [!IMPORTANT]  
+> These support libraries are under active development and are subject to change. Access to the repositories have been opened to allow for early feedback. Please check back regularly for updates.
+
+The **Basic BLS signing** example demonstrates how to use **[vetKeys](https://internetcomputer.org/docs/building-apps/network-features/vetkeys/introduction)** to implement secure BLS signing on the **Internet Computer (IC)**, where every authenticated user can ask the canister (IC smart contract) to produce signatures, where the **Internet Identity Principal** identifies the signer. This canister ensures that users can only produce signature for their own principal and not for someone else's principal. Furthermore, the vetKeys in this dapp can only be produced upon a user request, as specified in the canister code, meaning that the canister cannot produce signatures for arbitrary users or messages.
+
+For confirming that the canister can only produce signatures in the intended way, users need to inspect the code installed in the canister. For this, it is crucial that canisters using VetKeys have their code public.
+
+![UI Screenshot](ui_screenshot.png)
+
+## Features
+
+- **Signer Authorization**: Only authorized users can produce signatures and only for their own identity.
+- **Frontend Signature Verification**: Any user can publish any signature from their principal in the canister storage and the frontend automatically checks the signature validity.
+
+## Setup
+
+### Prerequisites
+
+- [Internet Computer software development kit](https://internetcomputer.org/docs/building-apps/getting-started/install)
+- [npm](https://www.npmjs.com/package/npm)
+
+### Install Dependencies
+
+```bash
+npm install
+```
+
+### Deploy the Canisters
+
+Run the local deployment script, which starts the local development environment (`dfx`) if necessary, builds both backend and frontend (asset) canisters, and installs them locally.
+```bash
+bash deploy_locally.sh
+```
+
+## Example Components
+
+### Backend
+
+The backend consists of a canister that:
+* Produces signatures upon a user request.
+* Allows users to retrieve the root public key that can be used to check any user's signature for this canister.
+* Allows users to store signatures (real or fake) in a log datastructure.
+
+### Frontend
+
+The frontend is a vanilla typescript application providing a simple interface for signing, showing the signatures stored in the canister, and publishing a signature.
+
+To run the frontend in development mode with hot reloading (after running `deploy_locally.sh`):
+
+```bash
+npm run dev
+```
+
+## Additional Resources
+
+- **[What are VetKeys](https://internetcomputer.org/docs/building-apps/network-features/encryption/vetkeys)** - For more information about VetKeys and VetKD.

examples/basic_bls_signing/README.md

@@ -0,0 +1,22 @@
+[package]
+name = "ic-vetkeys-example-basic-bls-signing-backend"
+authors.workspace = true
+description.workspace = true
+documentation.workspace = true
+edition.workspace = true
+version.workspace = true
+license.workspace = true
+
+[lib]
+path = "src/lib.rs"
+crate-type = ["cdylib"]
+
+[dependencies]
+candid = { workspace = true }
+getrandom = { version = "0.2", features = ["custom"] }
+ic-cdk = { workspace = true }
+ic-stable-structures = { workspace = true }
+ic-vetkeys = { path = "../../../backend/rs/ic_vetkeys" }
+serde = { workspace = true }
+serde_bytes = { workspace = true }
+serde_cbor = { workspace = true }

examples/basic_bls_signing/backend/Cargo.toml

@@ -0,0 +1,17 @@
+ROOT_DIR := $(shell git rev-parse --show-toplevel)
+
+.PHONY: compile-wasm
+.SILENT: compile-wasm
+compile-wasm:
+	cargo build --release --target wasm32-unknown-unknown
+
+.PHONY: extract-candid
+.SILENT: extract-candid
+extract-candid: compile-wasm
+	candid-extractor $(ROOT_DIR)/target/wasm32-unknown-unknown/release/ic_vetkeys_example_basic_bls_signing_backend.wasm > backend.did
+
+.PHONY: clean
+.SILENT: clean
+clean:
+	cargo clean
+	rm -rf .dfx

examples/basic_bls_signing/backend/Makefile

@@ -0,0 +1,6 @@
+type Signature = record { signature : blob; message : text; timestamp : nat64 };
+service : (text) -> {
+  get_my_signatures : () -> (vec Signature) query;
+  get_my_verification_key : () -> (blob);
+  sign_message : (text) -> (blob);
+}

examples/basic_bls_signing/backend/backend.did

@@ -0,0 +1,145 @@
+pub mod types;
+use candid::Principal;
+use ic_cdk::management_canister::{VetKDCurve, VetKDKeyId, VetKDPublicKeyArgs};
+use ic_cdk::{init, query, update};
+use ic_stable_structures::{
+    memory_manager::{MemoryId, MemoryManager, VirtualMemory},
+    Cell as StableCell, DefaultMemoryImpl, StableBTreeMap,
+};
+use serde_bytes::ByteBuf;
+use std::cell::RefCell;
+use types::Signature;
+
+type Memory = VirtualMemory<DefaultMemoryImpl>;
+
+type VetKeyPublicKey = ByteBuf;
+type RawSignature = ByteBuf;
+type RawMessage = String;
+type Timestamp = u64;
+
+thread_local! {
+    static MEMORY_MANAGER: RefCell<MemoryManager<DefaultMemoryImpl>> =
+        RefCell::new(MemoryManager::init(DefaultMemoryImpl::default()));
+
+    static SIGNATURES: RefCell<StableBTreeMap<(Principal, Timestamp), Signature, Memory>> = RefCell::new(StableBTreeMap::init(
+            MEMORY_MANAGER.with_borrow(|m| m.get(MemoryId::new(3))),
+        ));
+
+    static KEY_NAME: RefCell<StableCell<String, Memory>> =
+        RefCell::new(StableCell::init(
+            MEMORY_MANAGER.with(|m| m.borrow().get(MemoryId::new(2))),
+            String::new(),
+        )
+        .expect("failed to initialize key name"));
+}
+
+#[init]
+fn init(key_name_string: String) {
+    KEY_NAME.with_borrow_mut(|key_name| {
+        key_name
+            .set(key_name_string)
+            .expect("failed to set key name");
+    });
+}
+
+#[update]
+async fn sign_message(message: RawMessage) -> RawSignature {
+    let signer = ic_cdk::api::msg_caller();
+    let signature_bytes = ic_vetkeys::management_canister::sign_with_bls(
+        message.as_bytes().to_vec(),
+        context(&signer),
+        key_id(),
+    )
+    .await
+    .expect("ic_vetkeys' sign_with_bls failed");
+
+    SIGNATURES.with_borrow_mut(|sigs| {
+        let timestamp = ic_cdk::api::time();
+        let sig = Signature {
+            message,
+            signature: signature_bytes.clone(),
+            timestamp,
+        };
+
+        // In rare cases a user may call `sign_message` in quick succession
+        // so that multiple signature requests are in a single consensus round,
+        // which leads to ic_cdk::api::time() returning the same value for all
+        // of the requests. In that case, we just keep increasing the timestamp
+        // used in the map key until we hit a slot this is available.
+        let mut timestamp_for_mapkey = timestamp;
+        while sigs.get(&(signer, timestamp_for_mapkey)).is_some() {
+            timestamp_for_mapkey += 1;
+        }
+
+        assert!(sigs.insert((signer, timestamp_for_mapkey), sig).is_none());
+    });
+
+    ByteBuf::from(signature_bytes)
+}
+
+#[query]
+fn get_my_signatures() -> Vec<Signature> {
+    let me = ic_cdk::api::msg_caller();
+    SIGNATURES.with_borrow(|signer_and_timestamp_to_sig| {
+        signer_and_timestamp_to_sig
+            .range((me, 0)..)
+            .take_while(|((signer, _ts), _sig)| signer == &me)
+            .map(|((_, _), sig)| sig)
+            .collect()
+    })
+}
+
+#[update]
+async fn get_my_verification_key() -> VetKeyPublicKey {
+    let request = VetKDPublicKeyArgs {
+        canister_id: None,
+        context: context(&ic_cdk::api::msg_caller()),
+        key_id: key_id(),
+    };
+    let result = ic_cdk::management_canister::vetkd_public_key(&request)
+        .await
+        .expect("call to vetkd_public_key failed");
+
+    VetKeyPublicKey::from(result.public_key)
+}
+
+fn context(signer: &Principal) -> Vec<u8> {
+    // A domain separator is not strictly necessary in this dapp, but having one is considered a good practice.
+    const DOMAIN_SEPARATOR: [u8; 22] = *b"basic_bls_signing_dapp";
+    const DOMAIN_SEPARATOR_LENGTH: u8 = DOMAIN_SEPARATOR.len() as u8;
+    [DOMAIN_SEPARATOR_LENGTH]
+        .into_iter()
+        .chain(DOMAIN_SEPARATOR)
+        .chain(signer.as_ref().iter().cloned())
+        .collect()
+}
+
+fn key_id() -> VetKDKeyId {
+    VetKDKeyId {
+        curve: VetKDCurve::Bls12_381_G2,
+        name: KEY_NAME.with_borrow(|key_name| key_name.get().clone()),
+    }
+}
+
+// In the following, we register a custom getrandom implementation because
+// otherwise getrandom (which is a dependency of some other dependencies) fails to compile.
+// This is necessary because getrandom by default fails to compile for the
+// wasm32-unknown-unknown target (which is required for deploying a canister).
+// Our custom implementation always fails, which is sufficient here because
+// the used RNGs are _manually_ seeded rather than by the system.
+#[cfg(all(
+    target_arch = "wasm32",
+    target_vendor = "unknown",
+    target_os = "unknown"
+))]
+getrandom::register_custom_getrandom!(always_fail);
+#[cfg(all(
+    target_arch = "wasm32",
+    target_vendor = "unknown",
+    target_os = "unknown"
+))]
+fn always_fail(_buf: &mut [u8]) -> Result<(), getrandom::Error> {
+    Err(getrandom::Error::UNSUPPORTED)
+}
+
+ic_cdk::export_candid!();

examples/basic_bls_signing/backend/src/lib.rs

@@ -0,0 +1,28 @@
+use std::borrow::Cow;
+
+use candid::{CandidType, Principal};
+use ic_stable_structures::{storable::Bound, Storable};
+use serde::{Deserialize, Serialize};
+
+pub type CanisterId = Principal;
+
+#[derive(CandidType, Serialize, Deserialize, Clone, Debug)]
+
+pub struct Signature {
+    pub message: String,
+    #[serde(with = "serde_bytes")]
+    pub signature: Vec<u8>,
+    pub timestamp: u64,
+}
+
+impl Storable for Signature {
+    fn to_bytes(&self) -> Cow<[u8]> {
+        Cow::Owned(serde_cbor::to_vec(self).expect("failed to serialize"))
+    }
+
+    fn from_bytes(bytes: Cow<[u8]>) -> Self {
+        serde_cbor::from_slice(&bytes).expect("failed to deserialize")
+    }
+
+    const BOUND: Bound = Bound::Unbounded;
+}

examples/basic_bls_signing/backend/src/types.rs

@@ -0,0 +1,18 @@
+#!/bin/bash
+
+set -e
+
+# Check that `dfx` is installed.
+dfx --version >> /dev/null
+
+# Run `dfx` if it is not already running.
+dfx ping &> /dev/null || dfx start --background --clean >> /dev/null
+
+# Deploy the Internet Identity canister.
+dfx deps pull && dfx deps init && dfx deps deploy
+
+# Deploy backend canister.
+dfx deploy --argument '("dfx_test_key")' basic_bls_signing
+
+# Deploy frontend canister.
+dfx deploy www