bsv-wallet-toolbox 0.2.23

Pure Rust BSV wallet-toolbox implementation
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231

//! BRC-29 Script Template for authenticated P2PKH payments.
//!
//! Implements the Simple Authenticated BSV P2PKH Payment Protocol (BRC-29)
//! using Type-42 key derivation. Ported from wallet-toolbox/src/utility/ScriptTemplateBRC29.ts.

use bsv::primitives::private_key::PrivateKey;
use bsv::primitives::public_key::PublicKey;
use bsv::script::templates::p2pkh::P2PKH;
use bsv::script::templates::ScriptTemplateLock;
use bsv::wallet::key_deriver::KeyDeriver;
use bsv::wallet::types::{Counterparty, CounterpartyType, Protocol};

use crate::error::WalletResult;

/// P2PKH unlock script estimated length: 1 (push) + 73 (DER sig + sighash) + 1 (push) + 33 (pubkey) = 108
pub const BRC29_UNLOCK_LENGTH: usize = 108;

/// BRC-29 protocol ID as a tuple: (security_level, protocol_name)
pub const BRC29_PROTOCOL_ID: (u8, &str) = (2, "3241645161d8");

/// Returns the BRC-29 Protocol for use with KeyDeriver.
pub fn brc29_protocol() -> Protocol {
    Protocol {
        security_level: BRC29_PROTOCOL_ID.0,
        protocol: BRC29_PROTOCOL_ID.1.to_string(),
    }
}

/// BRC-29 authenticated P2PKH script template.
///
/// Uses Type-42 key derivation to produce deterministic locking and unlocking
/// scripts for authenticated payments between two parties.
#[derive(Debug, Clone)]
pub struct ScriptTemplateBRC29 {
    /// The derivation prefix (random per transaction).
    pub derivation_prefix: String,
    /// The derivation suffix (random per output).
    pub derivation_suffix: String,
}

impl ScriptTemplateBRC29 {
    /// Create a new BRC-29 script template.
    pub fn new(derivation_prefix: String, derivation_suffix: String) -> Self {
        Self {
            derivation_prefix,
            derivation_suffix,
        }
    }

    /// Returns the key ID for derivation: "{prefix} {suffix}"
    pub fn key_id(&self) -> String {
        format!("{} {}", self.derivation_prefix, self.derivation_suffix)
    }

    /// Produce a P2PKH locking script using BRC-29 key derivation.
    ///
    /// The locker derives a public key from the unlocker's public key using
    /// Type-42 derivation with the BRC-29 protocol.
    pub fn lock(
        &self,
        locker_priv_key: &PrivateKey,
        unlocker_pub_key: &PublicKey,
    ) -> WalletResult<Vec<u8>> {
        let key_deriver = KeyDeriver::new(locker_priv_key.clone());
        let counterparty = Counterparty {
            counterparty_type: CounterpartyType::Other,
            public_key: Some(unlocker_pub_key.clone()),
        };
        let derived_pub = key_deriver
            .derive_public_key(&brc29_protocol(), &self.key_id(), &counterparty, false)
            .map_err(|e| {
                crate::error::WalletError::Internal(format!("BRC-29 lock derivation failed: {}", e))
            })?;

        let p2pkh = P2PKH::from_public_key_hash(Self::pubkey_to_hash(&derived_pub));
        let locking_script = p2pkh.lock().map_err(|e| {
            crate::error::WalletError::Internal(format!("P2PKH lock failed: {}", e))
        })?;
        Ok(locking_script.to_binary())
    }

    /// Produce a P2PKH unlock template using BRC-29 key derivation.
    ///
    /// The unlocker derives a private key from the locker's public key using
    /// Type-42 derivation with the BRC-29 protocol, then creates a P2PKH
    /// signer from the derived private key.
    pub fn unlock(
        &self,
        unlocker_priv_key: &PrivateKey,
        locker_pub_key: &PublicKey,
    ) -> WalletResult<P2PKH> {
        let key_deriver = KeyDeriver::new(unlocker_priv_key.clone());
        let counterparty = Counterparty {
            counterparty_type: CounterpartyType::Other,
            public_key: Some(locker_pub_key.clone()),
        };
        let derived_priv = key_deriver
            .derive_private_key(&brc29_protocol(), &self.key_id(), &counterparty)
            .map_err(|e| {
                crate::error::WalletError::Internal(format!(
                    "BRC-29 unlock derivation failed: {}",
                    e
                ))
            })?;

        Ok(P2PKH::from_private_key(derived_priv))
    }

    /// Convert a PublicKey to a 20-byte hash suitable for P2PKH.
    fn pubkey_to_hash(pubkey: &PublicKey) -> [u8; 20] {
        let hash_vec = pubkey.to_hash();
        let mut hash = [0u8; 20];
        hash.copy_from_slice(&hash_vec);
        hash
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    fn test_keys() -> (PrivateKey, PublicKey, PrivateKey, PublicKey) {
        let locker_priv = PrivateKey::from_hex("aa").unwrap();
        let locker_pub = locker_priv.to_public_key();
        let unlocker_priv = PrivateKey::from_hex("bb").unwrap();
        let unlocker_pub = unlocker_priv.to_public_key();
        (locker_priv, locker_pub, unlocker_priv, unlocker_pub)
    }

    #[test]
    fn test_key_id_format() {
        let tmpl = ScriptTemplateBRC29::new("prefix123".to_string(), "suffix456".to_string());
        assert_eq!(tmpl.key_id(), "prefix123 suffix456");
    }

    #[test]
    fn test_brc29_protocol_values() {
        let proto = brc29_protocol();
        assert_eq!(proto.security_level, 2);
        assert_eq!(proto.protocol, "3241645161d8");
    }

    #[test]
    fn test_brc29_unlock_length_constant() {
        assert_eq!(BRC29_UNLOCK_LENGTH, 108);
    }

    #[test]
    fn test_lock_produces_valid_p2pkh_script() {
        let (locker_priv, _locker_pub, _unlocker_priv, unlocker_pub) = test_keys();
        let tmpl = ScriptTemplateBRC29::new("test_prefix".to_string(), "test_suffix".to_string());
        let script = tmpl.lock(&locker_priv, &unlocker_pub).unwrap();

        // P2PKH locking script is always 25 bytes
        assert_eq!(script.len(), 25, "P2PKH locking script should be 25 bytes");
        // OP_DUP OP_HASH160 PUSH20 <hash> OP_EQUALVERIFY OP_CHECKSIG
        assert_eq!(script[0], 0x76, "should start with OP_DUP");
        assert_eq!(script[1], 0xa9, "second byte should be OP_HASH160");
        assert_eq!(script[23], 0x88, "should have OP_EQUALVERIFY");
        assert_eq!(script[24], 0xac, "should end with OP_CHECKSIG");
    }

    #[test]
    fn test_lock_is_deterministic() {
        let (locker_priv, _locker_pub, _unlocker_priv, unlocker_pub) = test_keys();
        let tmpl = ScriptTemplateBRC29::new("det_prefix".to_string(), "det_suffix".to_string());
        let script1 = tmpl.lock(&locker_priv, &unlocker_pub).unwrap();
        let script2 = tmpl.lock(&locker_priv, &unlocker_pub).unwrap();
        assert_eq!(script1, script2, "lock should be deterministic");
    }

    #[test]
    fn test_unlock_produces_p2pkh_with_private_key() {
        let (_locker_priv, locker_pub, unlocker_priv, _unlocker_pub) = test_keys();
        let tmpl = ScriptTemplateBRC29::new("test_prefix".to_string(), "test_suffix".to_string());
        let p2pkh = tmpl.unlock(&unlocker_priv, &locker_pub).unwrap();

        // The P2PKH should have a private key set (for signing)
        assert!(
            p2pkh.private_key.is_some(),
            "unlock should produce P2PKH with private key"
        );
    }

    #[test]
    fn test_lock_unlock_key_correspondence() {
        // The locking script created by locker should match the hash of the
        // derived key that the unlocker produces via unlock.
        let (locker_priv, locker_pub, unlocker_priv, unlocker_pub) = test_keys();
        let tmpl = ScriptTemplateBRC29::new("test_prefix".to_string(), "test_suffix".to_string());

        let lock_script = tmpl.lock(&locker_priv, &unlocker_pub).unwrap();
        let p2pkh = tmpl.unlock(&unlocker_priv, &locker_pub).unwrap();

        // Extract the hash from the locking script (bytes 3..23)
        let lock_hash = &lock_script[3..23];

        // The P2PKH from unlock should have the same hash
        let unlock_hash = p2pkh.public_key_hash.unwrap();
        assert_eq!(
            lock_hash,
            &unlock_hash[..],
            "lock and unlock should derive corresponding keys"
        );
    }

    #[test]
    fn test_self_payment_lock_unlock_correspondence() {
        // Self-payment: same key for both locker and unlocker (change outputs).
        // This is exactly how change outputs work in the wallet.
        let priv_key = PrivateKey::from_hex("aa").unwrap();
        let pub_key = priv_key.to_public_key();
        let tmpl = ScriptTemplateBRC29::new(
            "VOP/NBBNR3V3DeJv40Qmsg==".to_string(),
            "gN0oZKrb2L03fUnl1hJOiA==".to_string(),
        );

        // Lock: lock(self_priv, self_pub) — as done in make_change_lock
        let lock_script = tmpl.lock(&priv_key, &pub_key).unwrap();
        // Unlock: unlock(self_priv, self_pub) — as done in complete_signed_transaction
        let p2pkh = tmpl.unlock(&priv_key, &pub_key).unwrap();

        let lock_hash = &lock_script[3..23];
        let unlock_hash = p2pkh.public_key_hash.unwrap();
        assert_eq!(
            lock_hash,
            &unlock_hash[..],
            "self-payment: lock and unlock should derive corresponding keys"
        );
    }
}