package octez-libs
A package that contains multiple base libraries used by the Octez suite
Install
Dune Dependency
Authors
Maintainers
Sources
tezos-octez-v20.1.tag.bz2
sha256=ddfb5076eeb0b32ac21c1eed44e8fc86a6743ef18ab23fff02d36e365bb73d61
sha512=d22a827df5146e0aa274df48bc2150b098177ff7e5eab52c6109e867eb0a1f0ec63e6bfbb0e3645a6c2112de3877c91a17df32ccbff301891ce4ba630c997a65
doc/src/octez-libs.crypto/signature_v1.ml.html
Source file signature_v1.ml
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434 435 436 437 438 439 440 441 442 443 444 445 446 447 448 449 450 451 452 453 454 455 456 457 458 459 460 461 462 463 464 465 466 467 468 469 470 471 472 473 474 475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494 495 496 497 498 499 500 501 502 503 504 505 506 507 508 509 510 511 512 513 514 515 516 517 518 519 520 521 522 523 524 525 526 527 528 529 530 531 532 533 534 535 536 537 538 539 540 541 542 543 544 545 546 547 548 549 550 551 552 553 554 555 556 557 558 559 560 561 562 563 564 565 566 567 568 569 570 571 572 573 574 575 576 577 578 579 580 581 582 583 584 585 586 587 588 589 590 591 592 593 594 595 596 597 598 599 600 601 602 603 604 605 606 607 608 609 610 611 612 613 614 615 616 617 618 619 620 621 622 623 624 625 626 627 628 629 630 631 632 633 634 635 636 637 638 639 640 641 642 643 644 645 646 647 648 649 650 651 652 653 654 655 656 657 658 659 660 661 662 663 664 665 666 667 668 669 670 671 672 673 674 675 676 677 678 679 680 681 682 683 684 685 686 687 688 689 690 691 692 693 694 695 696 697 698 699 700 701 702 703 704 705 706 707 708 709 710 711 712 713 714 715 716 717 718 719 720 721 722 723 724 725 726 727 728 729 730 731 732 733 734 735 736 737 738 739 740 741 742 743 744 745 746 747 748 749 750 751 752 753 754 755 756 757 758 759 760 761 762 763 764 765 766 767 768 769 770 771 772 773 774 775 776 777 778 779 780 781 782 783 784 785 786 787 788 789 790 791 792 793 794 795 796 797 798 799 800 801 802 803 804 805 806 807 808 809 810 811 812 813 814 815 816 817 818 819 820 821 822 823 824 825 826 827 828 829 830 831 832 833 834 835 836 837 838 839 840 841 842 843 844 845 846 847 848 849 850 851 852 853 854 855 856 857 858 859 860 861 862 863 864 865 866 867 868 869 870 871 872 873 874 875 876 877 878 879 880 881 882 883 884 885 886 887 888 889 890 891 892 893 894 895 896 897 898 899 900 901 902 903 904 905 906 907 908 909 910 911 912 913 914 915 916 917 918 919 920 921 922 923(*****************************************************************************) (* *) (* Open Source License *) (* Copyright (c) 2018 Dynamic Ledger Solutions, Inc. <contact@tezos.com> *) (* Copyright (c) 2020 Metastate AG <hello@metastate.dev> *) (* Copyright (c) 2022 Nomadic Labs <contact@nomadic-labs.com> *) (* *) (* Permission is hereby granted, free of charge, to any person obtaining a *) (* copy of this software and associated documentation files (the "Software"),*) (* to deal in the Software without restriction, including without limitation *) (* the rights to use, copy, modify, merge, publish, distribute, sublicense, *) (* and/or sell copies of the Software, and to permit persons to whom the *) (* Software is furnished to do so, subject to the following conditions: *) (* *) (* The above copyright notice and this permission notice shall be included *) (* in all copies or substantial portions of the Software. *) (* *) (* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR*) (* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, *) (* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL *) (* THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER*) (* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING *) (* FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER *) (* DEALINGS IN THE SOFTWARE. *) (* *) (*****************************************************************************) open Error_monad type public_key_hash = | Ed25519 of Ed25519.Public_key_hash.t | Secp256k1 of Secp256k1.Public_key_hash.t | P256 of P256.Public_key_hash.t | Bls of Bls.Public_key_hash.t type public_key = | Ed25519 of Ed25519.Public_key.t | Secp256k1 of Secp256k1.Public_key.t | P256 of P256.Public_key.t | Bls of Bls.Public_key.t type secret_key = | Ed25519 of Ed25519.Secret_key.t | Secp256k1 of Secp256k1.Secret_key.t | P256 of P256.Secret_key.t | Bls of Bls.Secret_key.t type watermark = Signature_v0.watermark = | Block_header of Chain_id.t | Endorsement of Chain_id.t | Generic_operation | Custom of Bytes.t module Public_key_hash = struct type t = public_key_hash = | Ed25519 of Ed25519.Public_key_hash.t | Secp256k1 of Secp256k1.Public_key_hash.t | P256 of P256.Public_key_hash.t | Bls of Bls.Public_key_hash.t let name = "Signature.Public_key_hash" let title = "A Ed25519, Secp256k1, P256, or BLS public key hash" type Base58.data += Data of t (* unused *) let b58check_encoding = (* unused *) Base58.register_encoding ~prefix:"\255\255" ~length:2 ~to_raw:(fun _ -> assert false) ~of_raw:(fun _ -> assert false) ~wrap:(fun x -> Data x) let raw_encoding = let open Data_encoding in def "public_key_hash" ~description:title @@ union [ case (Tag 0) Ed25519.Public_key_hash.encoding ~title:"Ed25519" (function Ed25519 x -> Some x | _ -> None) (function x -> Ed25519 x); case (Tag 1) Secp256k1.Public_key_hash.encoding ~title:"Secp256k1" (function Secp256k1 x -> Some x | _ -> None) (function x -> Secp256k1 x); case (Tag 2) ~title:"P256" P256.Public_key_hash.encoding (function P256 x -> Some x | _ -> None) (function x -> P256 x); case (Tag 3) ~title:"Bls" Bls.Public_key_hash.encoding (function Bls x -> Some x | _ -> None) (function x -> Bls x); ] let to_bytes s = Data_encoding.Binary.to_bytes_exn raw_encoding s let of_bytes_opt s = Data_encoding.Binary.of_bytes_opt raw_encoding s let to_string s = Bytes.to_string (to_bytes s) let of_string_opt s = of_bytes_opt (Bytes.of_string s) let size = 1 + Ed25519.size let zero = Ed25519 Ed25519.Public_key_hash.zero include Helpers.MakeRaw (struct type nonrec t = t let name = name let of_bytes_opt = of_bytes_opt let of_string_opt = of_string_opt let to_string = to_string end) let of_b58check_opt s = match Base58.decode s with | Some (Ed25519.Public_key_hash.Data pkh) -> Some (Ed25519 pkh) | Some (Secp256k1.Public_key_hash.Data pkh) -> Some (Secp256k1 pkh) | Some (P256.Public_key_hash.Data pkh) -> Some (P256 pkh) | Some (Bls.Public_key_hash.Data pkh) -> Some (Bls pkh) | _ -> None let of_b58check_exn s = match of_b58check_opt s with | Some x -> x | None -> Format.kasprintf Stdlib.failwith "Unexpected data (%s)" name let of_b58check s = match of_b58check_opt s with | Some x -> Ok x | None -> error_with "Failed to read a b58check_encoding data (%s): %S" name s let to_b58check = function | Ed25519 pkh -> Ed25519.Public_key_hash.to_b58check pkh | Secp256k1 pkh -> Secp256k1.Public_key_hash.to_b58check pkh | P256 pkh -> P256.Public_key_hash.to_b58check pkh | Bls pkh -> Bls.Public_key_hash.to_b58check pkh let to_short_b58check = function | Ed25519 pkh -> Ed25519.Public_key_hash.to_short_b58check pkh | Secp256k1 pkh -> Secp256k1.Public_key_hash.to_short_b58check pkh | P256 pkh -> P256.Public_key_hash.to_short_b58check pkh | Bls pkh -> Bls.Public_key_hash.to_short_b58check pkh let to_path key l = match key with | Ed25519 h -> "ed25519" :: Ed25519.Public_key_hash.to_path h l | Secp256k1 h -> "secp256k1" :: Secp256k1.Public_key_hash.to_path h l | P256 h -> "p256" :: P256.Public_key_hash.to_path h l | Bls h -> "bls" :: Bls.Public_key_hash.to_path h l let of_path = function | "ed25519" :: q -> ( match Ed25519.Public_key_hash.of_path q with | Some pkh -> Some (Ed25519 pkh) | None -> None) | "secp256k1" :: q -> ( match Secp256k1.Public_key_hash.of_path q with | Some pkh -> Some (Secp256k1 pkh) | None -> None) | "p256" :: q -> ( match P256.Public_key_hash.of_path q with | Some pkh -> Some (P256 pkh) | None -> None) | "bls" :: q -> ( match Bls.Public_key_hash.of_path q with | Some pkh -> Some (Bls pkh) | None -> None) | _ -> assert false (* FIXME classification des erreurs *) let of_path_exn = function | "ed25519" :: q -> Ed25519 (Ed25519.Public_key_hash.of_path_exn q) | "secp256k1" :: q -> Secp256k1 (Secp256k1.Public_key_hash.of_path_exn q) | "p256" :: q -> P256 (P256.Public_key_hash.of_path_exn q) | "bls" :: q -> Bls (Bls.Public_key_hash.of_path_exn q) | _ -> assert false (* FIXME classification des erreurs *) let path_length = let l1 = Ed25519.Public_key_hash.path_length and l2 = Secp256k1.Public_key_hash.path_length and l3 = P256.Public_key_hash.path_length and l4 = Bls.Public_key_hash.path_length in assert (Compare.Int.(l1 = l2)) ; assert (Compare.Int.(l1 = l3)) ; assert (Compare.Int.(l1 = l4)) ; 1 + l1 let prefix_path _ = assert false (* unused *) let seeded_hash = Stdlib.Hashtbl.seeded_hash let hash = Stdlib.Hashtbl.hash include Compare.Make (struct type nonrec t = t let compare a b = match (a, b) with | Ed25519 x, Ed25519 y -> Ed25519.Public_key_hash.compare x y | Secp256k1 x, Secp256k1 y -> Secp256k1.Public_key_hash.compare x y | P256 x, P256 y -> P256.Public_key_hash.compare x y | Bls x, Bls y -> Bls.Public_key_hash.compare x y | _ -> Stdlib.compare a b end) include Helpers.MakeEncoder (struct type nonrec t = t let name = name let title = title let raw_encoding = raw_encoding let of_b58check = of_b58check let of_b58check_opt = of_b58check_opt let of_b58check_exn = of_b58check_exn let to_b58check = to_b58check let to_short_b58check = to_short_b58check end) include Helpers.MakeIterator (struct type nonrec t = t let hash = hash let seeded_hash = seeded_hash let compare = compare let equal = equal let encoding = encoding end) let rpc_arg = Tezos_rpc.Arg.like rpc_arg ~descr:"A Secp256k1 of a Ed25519 public key hash (Base58Check-encoded)" "pkh" module Logging = struct let tag = Tag.def ~doc:title name pp end end module Public_key = struct type t = public_key = | Ed25519 of Ed25519.Public_key.t | Secp256k1 of Secp256k1.Public_key.t | P256 of P256.Public_key.t | Bls of Bls.Public_key.t let name = "Signature.Public_key" let title = "A Ed25519, Secp256k1, or P256 public key" let hash pk = match pk with | Ed25519 pk -> Public_key_hash.Ed25519 (Ed25519.Public_key.hash pk) | Secp256k1 pk -> Public_key_hash.Secp256k1 (Secp256k1.Public_key.hash pk) | P256 pk -> Public_key_hash.P256 (P256.Public_key.hash pk) | Bls pk -> Public_key_hash.Bls (Bls.Public_key.hash pk) include Compare.Make (struct type nonrec t = t let compare a b = match (a, b) with | Ed25519 x, Ed25519 y -> Ed25519.Public_key.compare x y | Secp256k1 x, Secp256k1 y -> Secp256k1.Public_key.compare x y | P256 x, P256 y -> P256.Public_key.compare x y | Bls x, Bls y -> Bls.Public_key.compare x y | Ed25519 _, (Secp256k1 _ | P256 _ | Bls _) -> -1 | Secp256k1 _, (P256 _ | Bls _) -> -1 | P256 _, Bls _ -> -1 | Bls _, (P256 _ | Secp256k1 _ | Ed25519 _) -> 1 | P256 _, (Secp256k1 _ | Ed25519 _) -> 1 | Secp256k1 _, Ed25519 _ -> 1 end) type Base58.data += Data of t (* unused *) let b58check_encoding = (* unused *) Base58.register_encoding ~prefix:"\255\255" ~length:2 ~to_raw:(fun _ -> assert false) ~of_raw:(fun _ -> assert false) ~wrap:(fun x -> Data x) let of_b58check_opt s = match Base58.decode s with | Some (Ed25519.Public_key.Data public_key) -> Some (Ed25519 public_key) | Some (Secp256k1.Public_key.Data public_key) -> Some (Secp256k1 public_key) | Some (P256.Public_key.Data public_key) -> Some (P256 public_key) | Some (Bls.Public_key.Data public_key) -> Some (Bls public_key) | _ -> None let of_b58check_exn s = match of_b58check_opt s with | Some x -> x | None -> Format.kasprintf Stdlib.failwith "Unexpected data (%s)" name let of_b58check s = match of_b58check_opt s with | Some x -> Ok x | None -> error_with "Failed to read a b58check_encoding data (%s): %S" name s let to_b58check = function | Ed25519 pk -> Ed25519.Public_key.to_b58check pk | Secp256k1 pk -> Secp256k1.Public_key.to_b58check pk | P256 pk -> P256.Public_key.to_b58check pk | Bls pk -> Bls.Public_key.to_b58check pk let to_short_b58check = function | Ed25519 pk -> Ed25519.Public_key.to_short_b58check pk | Secp256k1 pk -> Secp256k1.Public_key.to_short_b58check pk | P256 pk -> P256.Public_key.to_short_b58check pk | Bls pk -> Bls.Public_key.to_short_b58check pk let of_bytes_without_validation b = let tag = Bytes.(get_int8 b 0) in let b = Bytes.(sub b 1 (length b - 1)) in match tag with | 0 -> Option.bind (Ed25519.Public_key.of_bytes_without_validation b) (fun pk -> Some (Ed25519 pk)) | 1 -> Option.bind (Secp256k1.Public_key.of_bytes_without_validation b) (fun pk -> Some (Secp256k1 pk)) | 2 -> Option.bind (P256.Public_key.of_bytes_without_validation b) (fun pk -> Some (P256 pk)) | 3 -> Option.bind (Bls.Public_key.of_bytes_without_validation b) (fun pk -> Some (Bls pk)) | _ -> None include Helpers.MakeEncoder (struct type nonrec t = t let name = name let title = title let raw_encoding = let open Data_encoding in def "public_key" ~description:title @@ union [ case (Tag 0) Ed25519.Public_key.encoding ~title:"Ed25519" (function Ed25519 x -> Some x | _ -> None) (function x -> Ed25519 x); case (Tag 1) Secp256k1.Public_key.encoding ~title:"Secp256k1" (function Secp256k1 x -> Some x | _ -> None) (function x -> Secp256k1 x); case ~title:"P256" (Tag 2) P256.Public_key.encoding (function P256 x -> Some x | _ -> None) (function x -> P256 x); case ~title:"Bls" (Tag 3) Bls.Public_key.encoding (function Bls x -> Some x | _ -> None) (function x -> Bls x); ] let of_b58check = of_b58check let of_b58check_opt = of_b58check_opt let of_b58check_exn = of_b58check_exn let to_b58check = to_b58check let to_short_b58check = to_short_b58check end) let size pk = Data_encoding.Binary.length encoding pk let pp ppf t = Format.fprintf ppf "%s" (to_b58check t) end module Secret_key = struct type t = secret_key = | Ed25519 of Ed25519.Secret_key.t | Secp256k1 of Secp256k1.Secret_key.t | P256 of P256.Secret_key.t | Bls of Bls.Secret_key.t let name = "Signature.Secret_key" let title = "A Ed25519, Secp256k1 or P256 secret key" let to_public_key = function | Ed25519 sk -> Public_key.Ed25519 (Ed25519.Secret_key.to_public_key sk) | Secp256k1 sk -> Public_key.Secp256k1 (Secp256k1.Secret_key.to_public_key sk) | P256 sk -> Public_key.P256 (P256.Secret_key.to_public_key sk) | Bls sk -> Public_key.Bls (Bls.Secret_key.to_public_key sk) include Compare.Make (struct type nonrec t = t let compare a b = match (a, b) with | Ed25519 x, Ed25519 y -> Ed25519.Secret_key.compare x y | Secp256k1 x, Secp256k1 y -> Secp256k1.Secret_key.compare x y | P256 x, P256 y -> P256.Secret_key.compare x y | Bls x, Bls y -> Bls.Secret_key.compare x y | _ -> Stdlib.compare a b end) type Base58.data += Data of t (* unused *) let b58check_encoding = (* unused *) Base58.register_encoding ~prefix:"\255\255" ~length:2 ~to_raw:(fun _ -> assert false) ~of_raw:(fun _ -> assert false) ~wrap:(fun x -> Data x) let of_b58check_opt b = match Base58.decode b with | Some (Ed25519.Secret_key.Data sk) -> Some (Ed25519 sk) | Some (Secp256k1.Secret_key.Data sk) -> Some (Secp256k1 sk) | Some (P256.Secret_key.Data sk) -> Some (P256 sk) | Some (Bls.Secret_key.Data sk) -> Some (Bls sk) | _ -> None let of_b58check_exn s = match of_b58check_opt s with | Some x -> x | None -> Format.kasprintf Stdlib.failwith "Unexpected data (%s)" name let of_b58check s = match of_b58check_opt s with | Some x -> Ok x | None -> error_with "Failed to read a b58check_encoding data (%s): %S" name s let to_b58check = function | Ed25519 sk -> Ed25519.Secret_key.to_b58check sk | Secp256k1 sk -> Secp256k1.Secret_key.to_b58check sk | P256 sk -> P256.Secret_key.to_b58check sk | Bls sk -> Bls.Secret_key.to_b58check sk let to_short_b58check = function | Ed25519 sk -> Ed25519.Secret_key.to_short_b58check sk | Secp256k1 sk -> Secp256k1.Secret_key.to_short_b58check sk | P256 sk -> P256.Secret_key.to_short_b58check sk | Bls sk -> Bls.Secret_key.to_short_b58check sk include Helpers.MakeEncoder (struct type nonrec t = t let name = name let title = title let raw_encoding = let open Data_encoding in def "secret_key" ~description:title @@ union [ case (Tag 0) Ed25519.Secret_key.encoding ~title:"Ed25519" (function Ed25519 x -> Some x | _ -> None) (function x -> Ed25519 x); case (Tag 1) Secp256k1.Secret_key.encoding ~title:"Secp256k1" (function Secp256k1 x -> Some x | _ -> None) (function x -> Secp256k1 x); case (Tag 2) ~title:"P256" P256.Secret_key.encoding (function P256 x -> Some x | _ -> None) (function x -> P256 x); case (Tag 3) ~title:"Bls" Bls.Secret_key.encoding (function Bls x -> Some x | _ -> None) (function x -> Bls x); ] let of_b58check = of_b58check let of_b58check_opt = of_b58check_opt let of_b58check_exn = of_b58check_exn let to_b58check = to_b58check let to_short_b58check = to_short_b58check end) let pp ppf t = Format.fprintf ppf "%s" (to_b58check t) end type signature = | Ed25519 of Ed25519.t | Secp256k1 of Secp256k1.t | P256 of P256.t | Bls of Bls.t | Unknown of Bytes.t type prefix = Bls_prefix of Bytes.t type splitted = {prefix : prefix option; suffix : Bytes.t} type t = signature let name = "Signature.V1" let title = "A Ed25519, Secp256k1, P256 or BLS signature" let to_bytes = function | Ed25519 b -> Ed25519.to_bytes b | Secp256k1 b -> Secp256k1.to_bytes b | P256 b -> P256.to_bytes b | Bls b -> Bls.to_bytes b | Unknown b -> b let of_bytes_opt s = let len = Bytes.length s in if len = Bls.size then Option.map (fun b -> Bls b) (Bls.of_bytes_opt s) else if len = Ed25519.size then Some (Unknown s) else None let () = assert (Ed25519.size = 64) ; assert (Secp256k1.size = 64) ; assert (P256.size = 64) ; assert (Bls.size = 96) type Base58.data += Data_unknown of Bytes.t let unknown_b58check_encoding = Base58.register_encoding ~prefix:Base58.Prefix.generic_signature ~length:Ed25519.size ~to_raw:Bytes.to_string ~of_raw:(fun s -> Some (Bytes.of_string s)) ~wrap:(fun x -> Data_unknown x) let () = Base58.check_encoded_prefix unknown_b58check_encoding "sig" 96 type Base58.data += Data of t (* unused *) let b58check_encoding = (* unused *) Base58.register_encoding ~prefix:"\255\255" ~length:2 ~to_raw:(fun _ -> assert false) ~of_raw:(fun _ -> assert false) ~wrap:(fun x -> Data x) include Compare.Make (struct type nonrec t = t let compare a b = let a = to_bytes a and b = to_bytes b in Bytes.compare a b end) let of_b58check_opt s = if TzString.has_prefix ~prefix:Ed25519.b58check_encoding.encoded_prefix s then Option.map (fun x -> Ed25519 x) (Ed25519.of_b58check_opt s) else if TzString.has_prefix ~prefix:Secp256k1.b58check_encoding.encoded_prefix s then Option.map (fun x -> Secp256k1 x) (Secp256k1.of_b58check_opt s) else if TzString.has_prefix ~prefix:P256.b58check_encoding.encoded_prefix s then Option.map (fun x -> P256 x) (P256.of_b58check_opt s) else if TzString.has_prefix ~prefix:Bls.b58check_encoding.encoded_prefix s then Option.map (fun x -> Bls x) (Bls.of_b58check_opt s) else Option.map (fun x -> Unknown x) (Base58.simple_decode unknown_b58check_encoding s) let of_b58check_exn s = match of_b58check_opt s with | Some x -> x | None -> Format.kasprintf Stdlib.failwith "Unexpected data (%s)" name let of_b58check s = match of_b58check_opt s with | Some x -> Ok x | None -> error_with "Failed to read a b58check_encoding data (%s): %S" name s let to_b58check = function | Ed25519 b -> Ed25519.to_b58check b | Secp256k1 b -> Secp256k1.to_b58check b | P256 b -> P256.to_b58check b | Bls b -> Bls.to_b58check b | Unknown b -> Base58.simple_encode unknown_b58check_encoding b let to_short_b58check = function | Ed25519 b -> Ed25519.to_short_b58check b | Secp256k1 b -> Secp256k1.to_short_b58check b | P256 b -> P256.to_short_b58check b | Bls b -> Bls.to_short_b58check b | Unknown b -> Base58.simple_encode unknown_b58check_encoding b let raw_encoding = conv to_bytes (fun b -> match of_bytes_opt b with | None -> Format.kasprintf Stdlib.failwith "Not a valid signature: %a" Hex.pp (Hex.of_bytes b) | Some s -> s) Variable.bytes include Helpers.MakeEncoder (struct type nonrec t = t let name = name let title = title let raw_encoding = raw_encoding let of_b58check = of_b58check let of_b58check_opt = of_b58check_opt let of_b58check_exn = of_b58check_exn let to_b58check = to_b58check let to_short_b58check = to_short_b58check end) let to_bytes s = Data_encoding.Binary.to_bytes_exn raw_encoding s let of_bytes_opt s = Data_encoding.Binary.of_bytes_opt raw_encoding s let to_string s = Bytes.to_string (to_bytes s) let of_string_opt s = of_bytes_opt (Bytes.of_string s) include Helpers.MakeRaw (struct type nonrec t = t let name = name let of_bytes_opt = of_bytes_opt let of_string_opt = of_string_opt let to_string = to_string end) let size t = Data_encoding.Binary.length encoding t let pp ppf t = Format.fprintf ppf "%s" (to_b58check t) let of_ed25519 s = Ed25519 s let of_secp256k1 s = Secp256k1 s let of_p256 s = P256 s let of_bls s = Bls s let zero = of_ed25519 Ed25519.zero (* NOTE: At the moment, only BLS signatures can be encoded with a tag. We impose this restriction so that there is only one valid binary representation for a same signature (modulo malleability). We reserve the tags 0, 1, 2 and 255 for tags of the other signatures if we decide to unify signature representation one day.*) let prefix_encoding = let open Data_encoding in def "bls_signature_prefix" ~description:"The prefix of a BLS signature, i.e. the first 32 bytes." @@ union [ case (Tag 3) ~title:"Bls_prefix" (Fixed.bytes (Bls.size - Ed25519.size)) (function Bls_prefix x -> Some x) (function x -> Bls_prefix x); ] let split_signature = function | (Ed25519 _ | Secp256k1 _ | P256 _) as s -> {prefix = None; suffix = to_bytes s} | Bls s -> let s = Bls.to_bytes s in let prefix = Bytes.sub s 0 32 in let suffix = Bytes.sub s 32 64 in {prefix = Some (Bls_prefix prefix); suffix} | Unknown s -> assert (Compare.Int.(Bytes.length s = 64)) ; {prefix = None; suffix = s} let of_splitted {prefix; suffix} = let open Option_syntax in match prefix with | None -> of_bytes_opt suffix | Some (Bls_prefix prefix) -> let+ s = Bls.of_bytes_opt (Bytes.cat prefix suffix) in Bls s let bytes_of_watermark = function | Block_header chain_id -> Bytes.cat (Bytes.of_string "\x01") (Chain_id.to_bytes chain_id) | Endorsement chain_id -> Bytes.cat (Bytes.of_string "\x02") (Chain_id.to_bytes chain_id) | Generic_operation -> Bytes.of_string "\x03" | Custom bytes -> bytes let pp_watermark ppf = let open Format in function | Block_header chain_id -> fprintf ppf "Block-header: %a" Chain_id.pp chain_id | Endorsement chain_id -> fprintf ppf "Endorsement: %a" Chain_id.pp chain_id | Generic_operation -> pp_print_string ppf "Generic-operation" | Custom bytes -> let hexed = Hex.of_bytes bytes |> Hex.show in fprintf ppf "Custom: 0x%s" (try String.sub hexed 0 10 ^ "..." with Invalid_argument _ -> hexed) let sign ?watermark secret_key message = let watermark = Option.map bytes_of_watermark watermark in match secret_key with | Secret_key.Ed25519 sk -> of_ed25519 (Ed25519.sign ?watermark sk message) | Secp256k1 sk -> of_secp256k1 (Secp256k1.sign ?watermark sk message) | P256 sk -> of_p256 (P256.sign ?watermark sk message) | Bls sk -> of_bls (Bls.sign ?watermark sk message) let check ?watermark public_key signature message = let watermark = Option.map bytes_of_watermark watermark in match (public_key, signature) with | Public_key.Ed25519 pk, Unknown signature -> ( match Ed25519.of_bytes_opt signature with | Some s -> Ed25519.check ?watermark pk s message | None -> false) | Public_key.Secp256k1 pk, Unknown signature -> ( match Secp256k1.of_bytes_opt signature with | Some s -> Secp256k1.check ?watermark pk s message | None -> false) | Public_key.P256 pk, Unknown signature -> ( match P256.of_bytes_opt signature with | Some s -> P256.check ?watermark pk s message | None -> false) | Public_key.Bls pk, Unknown signature -> ( match Bls.of_bytes_opt signature with | Some s -> Bls.check ?watermark pk s message | None -> false) | Public_key.Ed25519 pk, Ed25519 signature -> Ed25519.check ?watermark pk signature message | Public_key.Secp256k1 pk, Secp256k1 signature -> Secp256k1.check ?watermark pk signature message | Public_key.P256 pk, P256 signature -> P256.check ?watermark pk signature message | Public_key.Bls pk, Bls signature -> Bls.check ?watermark pk signature message | _ -> false (* The following cache is a hack to work around a quadratic algorithm in Tezos Mainnet protocols up to Edo. *) module type ENDORSEMENT_CACHE_MAKER = functor (H : Stdlib.Hashtbl.HashedType) -> Aches.Vache.MAP with type key = H.t let make_endorsement_cache : (module ENDORSEMENT_CACHE_MAKER) = match Sys.getenv_opt "TEZOS_DISABLE_ENDORSEMENT_SIGNATURE_CACHE" with | Some _ -> (module Aches.Vache.EmptyMap) | None -> (module Aches.Vache.Map (Aches.Vache.FIFO_Sloppy) (Aches.Vache.Strong)) module Endorsement_cache = (val make_endorsement_cache) (struct type nonrec t = t let equal = equal let hash = Hashtbl.hash end) let endorsement_cache = Endorsement_cache.create 300 let check ?watermark public_key signature message = match watermark with | Some (Endorsement _) -> ( (* signature check cache only applies to endorsements *) match Endorsement_cache.find_opt endorsement_cache signature with | Some (key, msg) -> (* we rely on this property : signature_1 = signature_2 => key_1 = key_2 /\ message_1 = message_2 *) Public_key.equal public_key key && Bytes.equal msg message | None -> let res = check ?watermark public_key signature message in if res then Endorsement_cache.replace endorsement_cache signature (public_key, message) ; res) | _ -> check ?watermark public_key signature message let append ?watermark sk msg = Bytes.cat msg (to_bytes (sign ?watermark sk msg)) let concat msg signature = Bytes.cat msg (to_bytes signature) type algo = Ed25519 | Secp256k1 | P256 | Bls let algos = [Ed25519; Secp256k1; P256; Bls] let generate_key ?(algo = Ed25519) ?seed () = match algo with | Ed25519 -> let pkh, pk, sk = Ed25519.generate_key ?seed () in (Public_key_hash.Ed25519 pkh, Public_key.Ed25519 pk, Secret_key.Ed25519 sk) | Secp256k1 -> let pkh, pk, sk = Secp256k1.generate_key ?seed () in ( Public_key_hash.Secp256k1 pkh, Public_key.Secp256k1 pk, Secret_key.Secp256k1 sk ) | P256 -> let pkh, pk, sk = P256.generate_key ?seed () in (Public_key_hash.P256 pkh, Public_key.P256 pk, Secret_key.P256 sk) | Bls -> let pkh, pk, sk = Bls.generate_key ?seed () in (Public_key_hash.Bls pkh, Public_key.Bls pk, Secret_key.Bls sk) let deterministic_nonce sk msg = match sk with | Secret_key.Ed25519 sk -> Ed25519.deterministic_nonce sk msg | Secret_key.Secp256k1 sk -> Secp256k1.deterministic_nonce sk msg | Secret_key.P256 sk -> P256.deterministic_nonce sk msg | Secret_key.Bls sk -> Bls.deterministic_nonce sk msg let deterministic_nonce_hash sk msg = match sk with | Secret_key.Ed25519 sk -> Ed25519.deterministic_nonce_hash sk msg | Secret_key.Secp256k1 sk -> Secp256k1.deterministic_nonce_hash sk msg | Secret_key.P256 sk -> P256.deterministic_nonce_hash sk msg | Secret_key.Bls sk -> Bls.deterministic_nonce_hash sk msg module Of_V0 = struct let public_key_hash : Signature_v0.Public_key_hash.t -> Public_key_hash.t = function | Signature_v0.Ed25519 k -> Ed25519 k | Signature_v0.Secp256k1 k -> Secp256k1 k | Signature_v0.P256 k -> P256 k let public_key : Signature_v0.Public_key.t -> Public_key.t = function | Signature_v0.Ed25519 k -> Ed25519 k | Signature_v0.Secp256k1 k -> Secp256k1 k | Signature_v0.P256 k -> P256 k let secret_key : Signature_v0.Secret_key.t -> Secret_key.t = function | Signature_v0.Ed25519 k -> Ed25519 k | Signature_v0.Secp256k1 k -> Secp256k1 k | Signature_v0.P256 k -> P256 k let signature : Signature_v0.t -> t = function | Signature_v0.Ed25519 k -> Ed25519 k | Signature_v0.Secp256k1 k -> Secp256k1 k | Signature_v0.P256 k -> P256 k | Signature_v0.Unknown k -> Unknown k end