sortifal/CIA
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
CIA/e-voting-system
History
Alexis Bruneteau adfec105d8 fix: Correct ElGamal public key base64 encoding consistency 
## Issue
ElGamal encryption failed with "Invalid base64: 23:5:9..." error because:
- `/api/votes/setup` stored public key as base64-encoded bytes
- `/api/admin/init-keys` stored public key as raw UTF-8 bytes
- Client received plain "p:g:h" text instead of base64, causing decoding failure

## Root Cause
Inconsistent storage format:
- votes.py line 505: `base64.b64encode(elgamal.public_key_bytes)`
- admin.py line 169: `elgamal.public_key_bytes` (no encoding)
- Return paths decoded base64 as UTF-8, exposing plain format to client

## Fix
1. Both endpoints now consistently store `base64.b64encode(elgamal.public_key_bytes)`
2. Return paths decode base64 to ASCII (which is valid base64 format)
3. Updated validation in admin.py to properly decode base64 before validation
4. Frontend ElGamalEncryption.encrypt() expects base64 input, now receives it correctly

## Files Changed
- backend/routes/votes.py: Lines 505, 513, 550
- backend/routes/admin.py: Lines 159-162, 169, 182

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-11 19:33:22 +01:00
..
.backups/frontend-old
fix: Correct ElGamal public key serialization and .gitignore Python lib paths
2025-11-07 18:19:48 +01:00
.claude
fix: Implement vote check endpoint in frontend API proxy
2025-11-10 02:56:47 +01:00
backend
fix: Correct ElGamal public key base64 encoding consistency
2025-11-11 19:33:22 +01:00
blockchain-worker
feat: Implement dark theme for frontend with toggle
2025-11-07 16:35:44 +01:00
bootnode
feat: Implement dark theme for frontend with toggle
2025-11-07 16:35:44 +01:00
docker
feat: Add development mode for Next.js frontend with hot reload and verbose logging
2025-11-11 19:18:42 +01:00
docs
fix: Restore backend infrastructure and complete Phase 2 & 3
2025-11-07 01:56:10 +01:00
frontend
fix: Prevent TypeError on blockchain page from undefined blocks array
2025-11-11 19:18:42 +01:00
openspec
feat: Implement dark theme for frontend with toggle
2025-11-07 16:35:44 +01:00
rapport
fix: Implement vote check endpoint in frontend API proxy
2025-11-10 02:56:47 +01:00
tests
fix: Fix all identified bugs and add comprehensive tests
2025-11-07 18:07:57 +01:00
validator
feat: Add transaction broadcasting between PoA validators
2025-11-07 17:00:14 +01:00
.env.example
chore: Setup complete Docker Compose configuration
2025-11-07 02:09:07 +01:00
.gitignore
fix: Correct ElGamal public key serialization and .gitignore Python lib paths
2025-11-07 18:19:48 +01:00
build.sh
feat: Implement Historique and Upcoming Votes pages with styling and data fetching
2025-11-06 05:12:03 +01:00
DEV_MODE.md
feat: Add development mode for Next.js frontend with hot reload and verbose logging
2025-11-11 19:18:42 +01:00
dev-mode.sh
feat: Add development mode for Next.js frontend with hot reload and verbose logging
2025-11-11 19:18:42 +01:00
docker-compose.dev.yml
feat: Add development mode for Next.js frontend with hot reload and verbose logging
2025-11-11 19:18:42 +01:00
docker-compose.multinode.yml
fix: Add active election to database initialization for demo
2025-11-07 02:53:46 +01:00
docker-compose.yml
feat: Implement dark theme for frontend with toggle
2025-11-07 16:35:44 +01:00
fix_elgamal_keys.py
feat: Complete frontend-backend API integration for voting system
2025-11-07 03:32:08 +01:00
Makefile
feat: Implement Historique and Upcoming Votes pages with styling and data fetching
2025-11-06 05:12:03 +01:00
poetry.lock
fix: Restore backend infrastructure and complete Phase 2 & 3
2025-11-07 01:56:10 +01:00
pyproject.toml
fix: Restore backend infrastructure and complete Phase 2 & 3
2025-11-07 01:56:10 +01:00
pytest.ini
Initial commit: Complete e-voting system with cryptography
2025-11-03 16:13:08 +01:00
QUICK_DEV_START.md
feat: Add development mode for Next.js frontend with hot reload and verbose logging
2025-11-11 19:18:42 +01:00
RAPPORT_RESUME.md
fix: Implement vote check endpoint in frontend API proxy
2025-11-10 02:56:47 +01:00
README.md
Add post-quantum cryptography (FIPS 203/204)
2025-11-05 17:49:29 +01:00
rebuild.sh
feat: Implement Historique and Upcoming Votes pages with styling and data fetching
2025-11-06 05:12:03 +01:00
restore_data.py
feat: Implement Historique and Upcoming Votes pages with styling and data fetching
2025-11-06 05:12:03 +01:00
start.sh
docs: Update Adminer port reference in start.sh from 8080 to 8081
2025-11-07 02:20:36 +01:00
stop.sh
chore: Add Docker startup and shutdown scripts
2025-11-07 02:10:18 +01:00
test_blockchain_election.py
fix: Update test script to use root endpoint for health check
2025-11-07 03:10:54 +01:00
test_blockchain.py
feat: Implement dark theme for frontend with toggle
2025-11-07 16:35:44 +01:00
verify_system.sh
chore: Add system health check verification script
2025-11-07 18:16:12 +01:00

README.md

E-Voting System - Post-Quantum Cryptography

Système de vote électronique sécurisé avec cryptographie post-quantique hybride certifiée NIST FIPS 203/204.

🚀 Démarrer

# Lancer tous les services
docker-compose up -d

# Frontend: http://localhost:3000
# API: http://localhost:8000/docs
# Database: localhost:3306

🔐 Sécurité Post-Quantique

  • Signatures: RSA-PSS + ML-DSA-65 (Dilithium) - FIPS 204
  • Chiffrement: ML-KEM-768 (Kyber) + ElGamal - FIPS 203
  • Hachage: SHA-256 (quantum-resistant)
  • Approche hybride: Defense-in-depth

Voir .claude/POSTQUANTUM_CRYPTO.md pour les détails.

📁 Structure

.
├── docker/                 # Configuration Docker
├── src/
│   ├── backend/           # API FastAPI
│   ├── crypto/            # Cryptographie classique + PQC
│   └── frontend/          # Interface web
├── tests/                 # Tests unitaires
├── docker-compose.yml
└── README.md

🧪 Tests

pytest tests/ -v

🔑 Clés Cryptographiques

  • Génération: Clés hybrides RSA + Dilithium + Kyber à l'inscription
  • Stockage: Base de données sécurisée
  • Signatures: RSA-PSS + Dilithium sur chaque vote
  • Chiffrement: ML-KEM-768 (Kyber)

📊 Endpoints API

  • POST /api/auth/register - Inscription avec génération de clés PQC
  • POST /api/auth/login - Authentification JWT
  • GET /api/elections/active - Élection active
  • POST /api/votes/submit - Vote signé avec signatures hybrides
  • GET /api/elections/{id}/results - Résultats

Voir http://localhost:8000/docs pour API interactive.

Production-ready post-quantum e-voting system 🔐 MIT