def test_ballot_box_spoil_ballot(self):
# Arrange
keypair = elgamal_keypair_from_secret(int_to_q(2))
election = election_factory.get_fake_election()
metadata, context = election_factory.get_fake_ciphertext_election(
election, keypair.public_key
)
store = BallotStore()
source = election_factory.get_fake_ballot(metadata)
self.assertTrue(source.is_valid(metadata.ballot_styles[0].object_id))
# Act
data = encrypt_ballot(source, metadata, context, SEED_HASH)
subject = BallotBox(metadata, context, store)
result = subject.spoil(data)
# Assert
expected = store.get(source.object_id)
self.assertEqual(expected.state, BallotBoxState.SPOILED)
self.assertEqual(result.state, BallotBoxState.SPOILED)
self.assertEqual(expected.object_id, result.object_id)
# Test failure modes
self.assertIsNone(subject.spoil(data)) # cannot spoil again
self.assertIsNone(subject.cast(data)) # cannot cast a ballot alraedy spoiled
def test_ballot_box_cast_ballot(self):
# Arrange
keypair = elgamal_keypair_from_secret(int_to_q(2))
manifest = election_factory.get_fake_manifest()
internal_manifest, context = election_factory.get_fake_ciphertext_election(
manifest, keypair.public_key)
store = DataStore()
source = election_factory.get_fake_ballot(internal_manifest)
self.assertTrue(
source.is_valid(internal_manifest.ballot_styles[0].object_id))
# Act
data = encrypt_ballot(source, internal_manifest, context, SEED)
self.assertTrue(
ballot_is_valid_for_election(data, internal_manifest, context))
subject = BallotBox(internal_manifest, context, store)
result = subject.cast(data)
# Assert
expected = store.get(source.object_id)
self.assertEqual(expected.state, BallotBoxState.CAST)
self.assertEqual(result.state, BallotBoxState.CAST)
self.assertEqual(expected.object_id, result.object_id)
# Test failure modes
self.assertIsNone(subject.cast(data)) # cannot cast again
self.assertIsNone(
subject.spoil(data)) # cannot spoil a ballot already cast
def generate(self, number_of_ballots: int = DEFAULT_NUMBER_OF_BALLOTS):
"""
Generate the sample data set
"""
rmtree(RESULTS_DIR, ignore_errors=True)
(
public_data,
private_data,
) = self.election_factory.get_hamilton_election_with_encryption_context()
plaintext_ballots = self.ballot_factory.generate_fake_plaintext_ballots_for_election(
public_data.metadata, number_of_ballots
)
self.encrypter = EncryptionMediator(
public_data.metadata, public_data.context, self.encryption_device
)
ciphertext_ballots: List[CiphertextBallot] = []
for plaintext_ballot in plaintext_ballots:
ciphertext_ballots.append(
get_optional(self.encrypter.encrypt(plaintext_ballot))
)
ballot_store = BallotStore()
ballot_box = BallotBox(public_data.metadata, public_data.context, ballot_store)
accepted_ballots: List[CiphertextAcceptedBallot] = []
for ballot in ciphertext_ballots:
if randint(0, 100) % 10 == 0:
accepted_ballots.append(ballot_box.spoil(ballot))
else:
accepted_ballots.append(ballot_box.cast(ballot))
ciphertext_tally = get_optional(
tally_ballots(ballot_store, public_data.metadata, public_data.context)
)
decrypter = DecryptionMediator(
public_data.metadata, public_data.context, ciphertext_tally
)
for guardian in private_data.guardians:
decrypter.announce(guardian)
plaintext_tally = get_optional(decrypter.get_plaintext_tally())
publish(
public_data.description,
public_data.context,
public_data.constants,
accepted_ballots,
ciphertext_tally,
plaintext_tally,
public_data.guardians,
)
publish_private_data(
plaintext_ballots, ciphertext_ballots, private_data.guardians
)
def step_3_cast_and_spoil(self) -> None:
"""
Accept each ballot by marking it as either cast or spoiled.
This example demonstrates one way to accept ballots using the `BallotBox` class
"""
# Configure the Ballot Box
self.ballot_store = BallotStore()
self.ballot_box = BallotBox(self.metadata, self.context,
self.ballot_store)
# Randomly cast or spoil the ballots
for ballot in self.ciphertext_ballots:
# if randint(0, 1):
# accepted_ballot = self.ballot_box.cast(ballot)
# else:
# accepted_ballot = self.ballot_box.spoil(ballot)
accepted_ballot = self.ballot_box.cast(ballot)
self._assert_message(
BallotBox.__qualname__,
f"Accepted Ballot Id: {ballot.object_id} state: {get_optional(accepted_ballot).state}",
accepted_ballot is not None,
)
# Send Over Network
send_over_network(self.ciphertext_ballots)
def test_eg_conversion(self, state: DominionBallotsAndContext,
seed: ElementModQ) -> None:
ied = InternalElectionDescription(state.ed)
ballot_box = BallotBox(ied, state.cec)
seed_hash = EncryptionDevice("Location").get_hash()
nonces = Nonces(seed)[0:len(state.ballots)]
for b, n in zip(state.ballots, nonces):
eb = encrypt_ballot(b, ied, state.cec, seed_hash, n)
self.assertIsNotNone(eb)
pb = decrypt_ballot_with_secret(
eb,
ied,
state.cec.crypto_extended_base_hash,
state.cec.elgamal_public_key,
state.secret_key,
)
self.assertEqual(b, pb)
self.assertGreater(len(eb.contests), 0)
cast_result = ballot_box.cast(eb)
self.assertIsNotNone(cast_result)
tally = tally_ballots(ballot_box._store, ied, state.cec)
self.assertIsNotNone(tally)
results = decrypt_tally_with_secret(tally, state.secret_key)
self.assertEqual(len(results.keys()), len(state.id_map.keys()))
for obj_id in results.keys():
self.assertIn(obj_id, state.id_map)
cvr_sum = int(state.dominion_cvrs.data[state.id_map[obj_id]].sum())
decryption = results[obj_id]
self.assertEqual(cvr_sum, decryption)
def create() -> Tuple:
"""
An election with only one guardian and random keys gets generated.
More configuration options and the ability to hold a key ceremony should be added later.
"""
# Open an election manifest file
with open(os.path.join(ELECTION_MANIFEST), "r") as manifest:
string_representation = manifest.read()
election_description = ElectionDescription.from_json(
string_representation)
# Create an election builder instance, and configure it for a single public-private keypair.
# in a real election, you would configure this for a group of guardians. See Key Ceremony for more information.
# TODO: Allow real key ceremony
builder = ElectionBuilder(
number_of_guardians=
1, # since we will generate a single public-private keypair, we set this to 1
quorum=
1, # since we will generate a single public-private keypair, we set this to 1
description=election_description)
# We simply generate a random keypair. For a real election this step should
# be replaced by the key ceremony
keypair = elgamal_keypair_random()
builder.set_public_key(keypair.public_key)
# get an `InternalElectionDescription` and `CiphertextElectionContext`
# that are used for the remainder of the election.
(metadata, context) = builder.build()
# Configure an encryption device
# In the docs the encrypter device gets defined when encrypting a ballot.
# I think for our usecase it makes more sense to define one encrypter and use for the whole election
device = EncryptionDevice("polling-place-one")
encrypter = EncryptionMediator(metadata, context, device)
store = BallotStore()
ballot_box = BallotBox(metadata, context, store)
return metadata, context, encrypter, ballot_box, store, keypair
def step_3_cast_and_spoil(self) -> None:
"""
Accept each ballot by marking it as either cast or spoiled.
This example demonstrates one way to accept ballots using the `BallotBox` class
"""
# Configure the Ballot Box
self.ballot_store = DataStore()
self.ballot_box = BallotBox(self.internal_manifest, self.context,
self.ballot_store)
# Randomly cast or spoil the ballots
for ballot in self.ciphertext_ballots:
if randint(0, 1):
submitted_ballot = self.ballot_box.cast(ballot)
else:
submitted_ballot = self.ballot_box.spoil(ballot)
self._assert_message(
BallotBox.__qualname__,
f"Submitted Ballot Id: {ballot.object_id} state: {get_optional(submitted_ballot).state}",
submitted_ballot is not None,
)
def setUp(self):
self.key_ceremony = KeyCeremonyMediator(self.CEREMONY_DETAILS)
self.guardians: List[Guardian] = []
# Setup Guardians
for i in range(self.NUMBER_OF_GUARDIANS):
sequence = i + 2
self.guardians.append(
Guardian(
"guardian_" + str(sequence),
sequence,
self.NUMBER_OF_GUARDIANS,
self.QUORUM,
))
# Attendance (Public Key Share)
for guardian in self.guardians:
self.key_ceremony.announce(guardian)
self.key_ceremony.orchestrate(identity_auxiliary_encrypt)
self.key_ceremony.verify(identity_auxiliary_decrypt)
self.joint_public_key = self.key_ceremony.publish_joint_key()
self.assertIsNotNone(self.joint_public_key)
# setup the election
self.election = election_factory.get_fake_election()
builder = ElectionBuilder(self.NUMBER_OF_GUARDIANS, self.QUORUM,
self.election)
self.assertIsNone(
builder.build()) # Can't build without the public key
builder.set_public_key(self.joint_public_key)
self.metadata, self.context = get_optional(builder.build())
self.encryption_device = EncryptionDevice("location")
self.ballot_marking_device = EncryptionMediator(
self.metadata, self.context, self.encryption_device)
# get some fake ballots
self.fake_cast_ballot = ballot_factory.get_fake_ballot(
self.metadata, "some-unique-ballot-id-cast")
self.more_fake_ballots = []
for i in range(10):
self.more_fake_ballots.append(
ballot_factory.get_fake_ballot(
self.metadata, f"some-unique-ballot-id-cast{i}"))
self.fake_spoiled_ballot = ballot_factory.get_fake_ballot(
self.metadata, "some-unique-ballot-id-spoiled")
self.assertTrue(
self.fake_cast_ballot.is_valid(
self.metadata.ballot_styles[0].object_id))
self.assertTrue(
self.fake_spoiled_ballot.is_valid(
self.metadata.ballot_styles[0].object_id))
self.expected_plaintext_tally = accumulate_plaintext_ballots(
[self.fake_cast_ballot] + self.more_fake_ballots)
# Fill in the expected values with any missing selections
# that were not made on any ballots
selection_ids = set([
selection.object_id for contest in self.metadata.contests
for selection in contest.ballot_selections
])
missing_selection_ids = selection_ids.difference(
set(self.expected_plaintext_tally))
for id in missing_selection_ids:
self.expected_plaintext_tally[id] = 0
# Encrypt
encrypted_fake_cast_ballot = self.ballot_marking_device.encrypt(
self.fake_cast_ballot)
encrypted_fake_spoiled_ballot = self.ballot_marking_device.encrypt(
self.fake_spoiled_ballot)
self.assertIsNotNone(encrypted_fake_cast_ballot)
self.assertIsNotNone(encrypted_fake_spoiled_ballot)
self.assertTrue(
encrypted_fake_cast_ballot.is_valid_encryption(
self.context.crypto_extended_base_hash, self.joint_public_key))
# encrypt some more fake ballots
self.more_fake_encrypted_ballots = []
for fake_ballot in self.more_fake_ballots:
self.more_fake_encrypted_ballots.append(
self.ballot_marking_device.encrypt(fake_ballot))
# configure the ballot box
ballot_store = BallotStore()
ballot_box = BallotBox(self.metadata, self.context, ballot_store)
ballot_box.cast(encrypted_fake_cast_ballot)
ballot_box.spoil(encrypted_fake_spoiled_ballot)
# Cast some more fake ballots
for fake_ballot in self.more_fake_encrypted_ballots:
ballot_box.cast(fake_ballot)
# generate encrypted tally
self.ciphertext_tally = tally_ballots(ballot_store, self.metadata,
self.context)
def setUp(self):
# Key Ceremony
self.key_ceremony_mediator = KeyCeremonyMediator(
"key_ceremony_mediator_mediator", self.CEREMONY_DETAILS)
self.guardians: List[Guardian] = KeyCeremonyHelper.create_guardians(
self.CEREMONY_DETAILS)
KeyCeremonyHelper.perform_full_ceremony(self.guardians,
self.key_ceremony_mediator)
self.joint_public_key = self.key_ceremony_mediator.publish_joint_key()
# Setup the election
manifest = election_factory.get_fake_manifest()
builder = ElectionBuilder(self.NUMBER_OF_GUARDIANS, self.QUORUM,
manifest)
builder.set_public_key(self.joint_public_key.joint_public_key)
builder.set_commitment_hash(self.joint_public_key.commitment_hash)
self.internal_manifest, self.context = get_optional(builder.build())
self.encryption_device = election_factory.get_encryption_device()
self.ballot_marking_device = EncryptionMediator(
self.internal_manifest, self.context, self.encryption_device)
# get some fake ballots
self.fake_cast_ballot = ballot_factory.get_fake_ballot(
self.internal_manifest, "some-unique-ballot-id-cast")
self.more_fake_ballots = []
for i in range(10):
self.more_fake_ballots.append(
ballot_factory.get_fake_ballot(
self.internal_manifest, f"some-unique-ballot-id-cast{i}"))
self.fake_spoiled_ballot = ballot_factory.get_fake_ballot(
self.internal_manifest, "some-unique-ballot-id-spoiled")
self.more_fake_spoiled_ballots = []
for i in range(2):
self.more_fake_spoiled_ballots.append(
ballot_factory.get_fake_ballot(
self.internal_manifest,
f"some-unique-ballot-id-spoiled{i}"))
self.assertTrue(
self.fake_cast_ballot.is_valid(
self.internal_manifest.ballot_styles[0].object_id))
self.assertTrue(
self.fake_spoiled_ballot.is_valid(
self.internal_manifest.ballot_styles[0].object_id))
self.expected_plaintext_tally = accumulate_plaintext_ballots(
[self.fake_cast_ballot] + self.more_fake_ballots)
# Fill in the expected values with any missing selections
# that were not made on any ballots
selection_ids = {
selection.object_id
for contest in self.internal_manifest.contests
for selection in contest.ballot_selections
}
missing_selection_ids = selection_ids.difference(
set(self.expected_plaintext_tally))
for id in missing_selection_ids:
self.expected_plaintext_tally[id] = 0
# Encrypt
self.encrypted_fake_cast_ballot = self.ballot_marking_device.encrypt(
self.fake_cast_ballot)
self.encrypted_fake_spoiled_ballot = self.ballot_marking_device.encrypt(
self.fake_spoiled_ballot)
# encrypt some more fake ballots
self.more_fake_encrypted_ballots = []
for fake_ballot in self.more_fake_ballots:
self.more_fake_encrypted_ballots.append(
self.ballot_marking_device.encrypt(fake_ballot))
# encrypt some more fake ballots
self.more_fake_encrypted_spoiled_ballots = []
for fake_ballot in self.more_fake_spoiled_ballots:
self.more_fake_encrypted_spoiled_ballots.append(
self.ballot_marking_device.encrypt(fake_ballot))
# configure the ballot box
ballot_store = DataStore()
ballot_box = BallotBox(self.internal_manifest, self.context,
ballot_store)
ballot_box.cast(self.encrypted_fake_cast_ballot)
ballot_box.spoil(self.encrypted_fake_spoiled_ballot)
# Cast some more fake ballots
for fake_ballot in self.more_fake_encrypted_ballots:
ballot_box.cast(fake_ballot)
# Spoil some more fake ballots
for fake_ballot in self.more_fake_encrypted_spoiled_ballots:
ballot_box.spoil(fake_ballot)
# generate encrypted tally
self.ciphertext_tally = tally_ballots(ballot_store,
self.internal_manifest,
self.context)
self.ciphertext_ballots = get_ballots(ballot_store,
BallotBoxState.SPOILED)
def generate(
self,
number_of_ballots: int = DEFAULT_NUMBER_OF_BALLOTS,
cast_spoil_ratio: int = CAST_SPOIL_RATIO,
):
"""
Generate the sample data set
"""
# Clear the results directory
rmtree(RESULTS_DIR, ignore_errors=True)
# Configure the election
(
public_data,
private_data,
) = self.election_factory.get_hamilton_election_with_encryption_context(
)
plaintext_ballots = self.ballot_factory.generate_fake_plaintext_ballots_for_election(
public_data.metadata, number_of_ballots)
self.encrypter = EncryptionMediator(public_data.metadata,
public_data.context,
self.encryption_device)
# Encrypt some ballots
ciphertext_ballots: List[CiphertextBallot] = []
for plaintext_ballot in plaintext_ballots:
ciphertext_ballots.append(
get_optional(self.encrypter.encrypt(plaintext_ballot)))
ballot_store = BallotStore()
ballot_box = BallotBox(public_data.metadata, public_data.context,
ballot_store)
# Randomly cast/spoil the ballots
accepted_ballots: List[CiphertextAcceptedBallot] = []
for ballot in ciphertext_ballots:
if randint(0, 100) % cast_spoil_ratio == 0:
accepted_ballots.append(ballot_box.spoil(ballot))
else:
accepted_ballots.append(ballot_box.cast(ballot))
# Tally
ciphertext_tally = get_optional(
tally_ballots(ballot_store, public_data.metadata,
public_data.context))
# Decrypt
decrypter = DecryptionMediator(public_data.metadata,
public_data.context, ciphertext_tally)
for i, guardian in enumerate(private_data.guardians):
if i < QUORUM or not THRESHOLD_ONLY:
decrypter.announce(guardian)
plaintext_tally = get_optional(decrypter.get_plaintext_tally())
# Publish
publish(
public_data.description,
public_data.context,
public_data.constants,
[self.encryption_device],
accepted_ballots,
ciphertext_tally.spoiled_ballots.values(),
publish_ciphertext_tally(ciphertext_tally),
plaintext_tally,
public_data.guardians,
)
publish_private_data(plaintext_ballots, ciphertext_ballots,
private_data.guardians)
def generate(
self,
number_of_ballots: int = DEFAULT_NUMBER_OF_BALLOTS,
spoil_rate: int = DEFAULT_SPOIL_RATE,
use_all_guardians: bool = DEFAULT_USE_ALL_GUARDIANS,
):
"""
Generate the sample data set
"""
# Clear the results directory
rmtree(RESULTS_DIR, ignore_errors=True)
# Configure the election
(
manifest,
private_data,
) = self.election_factory.get_hamilton_manifest_with_encryption_context()
plaintext_ballots = (
self.ballot_factory.generate_fake_plaintext_ballots_for_election(
manifest.internal_manifest, number_of_ballots
)
)
self.encrypter = EncryptionMediator(
manifest.internal_manifest, manifest.context, self.encryption_device
)
# Encrypt some ballots
ciphertext_ballots: List[CiphertextBallot] = []
for plaintext_ballot in plaintext_ballots:
ciphertext_ballots.append(
get_optional(self.encrypter.encrypt(plaintext_ballot))
)
ballot_store = DataStore()
ballot_box = BallotBox(
manifest.internal_manifest, manifest.context, ballot_store
)
# Randomly cast/spoil the ballots
submitted_ballots: List[SubmittedBallot] = []
for ballot in ciphertext_ballots:
if randint(0, 100) < spoil_rate:
submitted_ballots.append(ballot_box.spoil(ballot))
else:
submitted_ballots.append(ballot_box.cast(ballot))
# Tally
spoiled_ciphertext_ballots = get_ballots(ballot_store, BallotBoxState.SPOILED)
ciphertext_tally = get_optional(
tally_ballots(ballot_store, manifest.internal_manifest, manifest.context)
)
# Decrypt
mediator = DecryptionMediator("sample-manifest-decrypter", manifest.context)
available_guardians = (
private_data.guardians
if use_all_guardians
else private_data.guardians[0:QUORUM]
)
DecryptionHelper.perform_decryption_setup(
available_guardians,
mediator,
manifest.context,
ciphertext_tally,
spoiled_ciphertext_ballots,
)
plaintext_tally = get_optional(mediator.get_plaintext_tally(ciphertext_tally))
plaintext_spoiled_ballots = get_optional(
mediator.get_plaintext_ballots(spoiled_ciphertext_ballots)
)
# Publish
publish(
manifest.manifest,
manifest.context,
manifest.constants,
[self.encryption_device],
submitted_ballots,
plaintext_spoiled_ballots.values(),
ciphertext_tally.publish(),
plaintext_tally,
manifest.guardians,
)
publish_private_data(
plaintext_ballots, ciphertext_ballots, private_data.guardians
)