fastcrypto 0.1.9

Common cryptographic library used at Mysten Labs
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359

// Copyright (c) 2022, Mysten Labs, Inc.
// SPDX-License-Identifier: Apache-2.0

use schemars::JsonSchema;
use serde::{
    de,
    de::{Deserializer, Error},
    Deserialize, Serialize,
};
use serde_with::serde_as;
use std::fmt;
use std::fmt::{Debug, Display};

use crate::error::{FastCryptoError, FastCryptoResult};
use crate::{
    encoding::{Base64, Encoding},
    traits::{KeyPair, SigningKey, ToFromBytes, VerifyingKey},
};

pub(crate) fn to_custom_error<'de, D, E>(e: E) -> D::Error
where
    E: Debug,
    D: Deserializer<'de>,
{
    Error::custom(format!("byte deserialization failed, cause by: {:?}", e))
}

pub fn keypair_decode_base64<T: KeyPair>(value: &str) -> FastCryptoResult<T> {
    let bytes = Base64::decode(value)?;
    let sk_length = <<T as KeyPair>::PrivKey as SigningKey>::LENGTH;
    let pk_length = <<T as KeyPair>::PubKey as VerifyingKey>::LENGTH;
    if bytes.len() != pk_length + sk_length {
        return Err(FastCryptoError::InputLengthWrong(pk_length + sk_length));
    }
    let secret = <T as KeyPair>::PrivKey::from_bytes(&bytes[..sk_length])?;
    // Read only sk bytes for privkey, and derive pubkey from privkey and returns keypair
    Ok(secret.into())
}

///
/// Serialization of internal types.
///
/// Every type's serialization should work as following:
/// - Return base64 encoded bytes for is_human_readable() serializers.
/// - Else, return the bytes as a fixed size array. This should be the canonical representation of
///   the object (e.g., as defined in RFCs).
///
/// Types that do store a *cached* version of the serialized object should implement [ToFromBytes]
/// and call [serialize_deserialize_with_to_from_bytes].
///
/// Types that do *not* store a cached version of the serialized object should implement
/// [ToFromByteArray] and call [serialize_deserialize_with_to_from_byte_array].
///
/// Note that in theory internal types should not be exposed via APIs and thus never be serialized
/// with is_human_readable(). Instead, external types should be used (see
/// [generate_bytes_representation]).
///

// Serde treats arrays larger than 32 as variable length arrays, and adds the length as a prefix.
// Since we want a fixed size representation, we wrap it in this helper struct and use serde_as.
#[serde_as]
#[derive(Serialize, Deserialize)]
#[serde(transparent)]
pub struct SerializationHelper<const N: usize>(#[serde_as(as = "[_; N]")] pub [u8; N]);

pub trait ToFromByteArray<const LENGTH: usize>: Sized {
    const BYTE_LENGTH: usize = LENGTH;
    fn from_byte_array(bytes: &[u8; LENGTH]) -> Result<Self, FastCryptoError>;
    fn to_byte_array(&self) -> [u8; LENGTH];
}

/// Macro for generating Serialize/Deserialize for a type that implements [ToFromByteArray].
#[macro_export]
macro_rules! serialize_deserialize_with_to_from_byte_array {
    ($type:ty) => {
        impl ::serde::Serialize for $type {
            fn serialize<S: ::serde::Serializer>(&self, serializer: S) -> Result<S::Ok, S::Error> {
                use $crate::encoding::Base64;
                use $crate::encoding::Encoding;
                use $crate::serde_helpers::SerializationHelper;

                let bytes = &self.to_byte_array();
                match serializer.is_human_readable() {
                    true => Base64::encode(bytes).serialize(serializer),
                    false => SerializationHelper::<{ <$type>::BYTE_LENGTH }>(*bytes)
                        .serialize(serializer),
                }
            }
        }

        impl<'de> ::serde::Deserialize<'de> for $type {
            fn deserialize<D: ::serde::Deserializer<'de>>(
                deserializer: D,
            ) -> Result<Self, D::Error> {
                use $crate::encoding::Base64;
                use $crate::encoding::Encoding;
                use $crate::serde_helpers::SerializationHelper;

                let bytes = match deserializer.is_human_readable() {
                    true => {
                        let s = String::deserialize(deserializer)?;
                        let decoded = Base64::decode(&s)
                            .map_err(|_| de::Error::custom("Base64 decoding failed"))?;
                        if decoded.len() != { <$type>::BYTE_LENGTH } {
                            return Err(de::Error::custom(format!(
                                "Invalid buffer length {}, expecting {}",
                                decoded.len(),
                                { <$type>::BYTE_LENGTH }
                            )));
                        }
                        decoded.try_into().unwrap()
                    }
                    false => {
                        let helper: SerializationHelper<{ <$type>::BYTE_LENGTH }> =
                            Deserialize::deserialize(deserializer)?;
                        helper.0
                    }
                };
                Self::from_byte_array(&bytes)
                    .map_err(|_| de::Error::custom("Failed in reconstructing the object"))
            }
        }
    };
}

#[macro_export]
macro_rules! serialize_deserialize_with_to_from_bytes {
    ($type:ty, $length:tt) => {
        impl ::serde::Serialize for $type {
            fn serialize<S: ::serde::Serializer>(&self, serializer: S) -> Result<S::Ok, S::Error> {
                use $crate::serde_helpers::SerializationHelper;
                match serializer.is_human_readable() {
                    true => serializer.serialize_str(&self.encode_base64()),
                    false => SerializationHelper::<{ $length }>(self.as_ref().try_into().unwrap())
                        .serialize(serializer),
                }
            }
        }

        impl<'de> ::serde::Deserialize<'de> for $type {
            fn deserialize<D: ::serde::Deserializer<'de>>(
                deserializer: D,
            ) -> Result<Self, D::Error> {
                use serde::Deserialize;
                use $crate::serde_helpers::SerializationHelper;
                if deserializer.is_human_readable() {
                    let s = <String as ::serde::Deserialize>::deserialize(deserializer)?;
                    Self::decode_base64(&s).map_err(::serde::de::Error::custom)
                } else {
                    let helper: SerializationHelper<{ $length }> =
                        Deserialize::deserialize(deserializer)?;
                    <Self as ToFromBytes>::from_bytes(&helper.0).map_err(::serde::de::Error::custom)
                }
            }
        }
    };
}

///
/// External types.
///
/// [BytesRepresentation] is a basic wrapper for storing bincode serialized objects.
///
/// To be used in external interfaces instead of the internal types.
/// - Derive by calling [generate_bytes_representation].
/// - Uses Base64 when serialized with a human readable serializer, and raw bytes otherwise.
///
/// Note that in theory external types should not be stored in Sui and only be serialized with
/// is_human_readable(). For storage and computation in Sui, internal types should be used (see
/// above).
///

// schemars is used for guiding JsonSchema to create a schema with type Base64 and no wrapping
// type.
#[derive(Clone, Debug, PartialOrd, Ord, PartialEq, Eq, JsonSchema, Hash)]
#[serde(transparent)]
pub struct BytesRepresentation<const N: usize>(#[schemars(with = "Base64")] pub [u8; N]);

/// Macro for generating a new alias for BytesRepresentation with the given $length, and From
/// functions for both directions.
/// - $type - the source type.
/// - $length - byte length of the source type when serialized using bincode.
/// - $new_type - the alias name.
///
// TODO: Can we deduce $new_type from $type?
#[macro_export]
macro_rules! generate_bytes_representation {
    ($type:ty, $length:tt, $new_type:ident) => {

        pub type $new_type = BytesRepresentation<$length>;

        impl TryFrom<&BytesRepresentation<$length>> for $type {
            type Error = FastCryptoError;

            fn try_from(value: &BytesRepresentation<$length>) -> Result<Self, Self::Error> {
                let o: $type =
                    bincode::deserialize(&value.0).map_err(|_| FastCryptoError::InvalidInput)?;
                Ok(o)
            }
        }

        impl From<&$type> for BytesRepresentation<$length> {
            fn from(value: &$type) -> Self {
                let buffer = bincode::serialize(value).unwrap();
                let buffer_len = buffer.len();
                Self(
                    // The following error should happen only in case the object was defined with
                    // the wrong length, thus cannot be handled in runtime.
                    buffer.try_into().expect(
                        format!(
                            "BytesRepresentation of length {} defined with invalid serialized length {}",
                            $length, buffer_len
                        )
                        .as_ref(),
                    ),
                )
            }
        }
    };
}

impl<const N: usize> Serialize for BytesRepresentation<N> {
    fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
    where
        S: serde::Serializer,
    {
        match serializer.is_human_readable() {
            true => Base64::encode(self.0).serialize(serializer),
            false => SerializationHelper::<N>(self.0).serialize(serializer),
        }
    }
}

impl<'de, const N: usize> Deserialize<'de> for BytesRepresentation<N> {
    fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
    where
        D: de::Deserializer<'de>,
    {
        let bytes: [u8; N] = match deserializer.is_human_readable() {
            true => {
                let s = String::deserialize(deserializer)?;
                let decoded =
                    Base64::decode(&s).map_err(|_| de::Error::custom("Base64 decoding failed"))?;
                if decoded.len() != N {
                    return Err(de::Error::custom(format!(
                        "Invalid buffer length {}, expecting {}",
                        decoded.len(),
                        N
                    )));
                }
                decoded.try_into().unwrap()
            }
            false => {
                let helper: SerializationHelper<N> = Deserialize::deserialize(deserializer)?;
                helper.0
            }
        };
        Ok(Self(bytes))
    }
}

impl<const N: usize> Display for BytesRepresentation<N> {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> Result<(), fmt::Error> {
        write!(f, "{}", Base64::encode(self.0))
    }
}

/// Given a byte array of length `N * SIZE_IN_BYTES`, deserialize it into a vector of `N` elements
/// of type `T` with the given deserialization function.
pub fn deserialize_vector<const SIZE_IN_BYTES: usize, T>(
    bytes: &[u8],
    from_byte_array: fn(&[u8; SIZE_IN_BYTES]) -> FastCryptoResult<T>,
) -> FastCryptoResult<Vec<T>> {
    if bytes.len() % SIZE_IN_BYTES != 0 {
        return Err(FastCryptoError::InvalidInput);
    }
    bytes
        .chunks_exact(SIZE_IN_BYTES)
        .map(|chunk| {
            from_byte_array(
                &chunk
                    .try_into()
                    .expect("Length of `chunk` is always equal to SIZE_IN_BYTES"),
            )
        })
        .collect::<FastCryptoResult<Vec<T>>>()
}

/// Serialize a vector of elements of type T into a byte array by simply concatenating their binary
/// representations with the given deserialization function.
pub fn serialize_vector<const SIZE_IN_BYTES: usize, T>(
    elements: &[T],
    to_byte_array: fn(&T) -> [u8; SIZE_IN_BYTES],
) -> Vec<u8> {
    elements.iter().flat_map(to_byte_array).collect()
}

// This is needed in Narwhal certificates but we don't want default implementations for all BytesRepresentations.
impl Default for crate::bls12381::min_sig::BLS12381AggregateSignatureAsBytes {
    fn default() -> Self {
        (&crate::bls12381::min_sig::BLS12381AggregateSignature::default()).into()
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::groups::bls12381::{G1Element, G1ElementAsBytes, G1_ELEMENT_BYTE_LENGTH};
    use crate::groups::GroupElement;
    use schemars::schema_for;

    #[derive(Serialize, Deserialize, JsonSchema)]
    struct Dummy<T> {
        key: T,
    }

    #[test]
    fn test_serializations() {
        let g1 = G1Element::generator();
        let b64 = G1ElementAsBytes::from(&g1);
        let d1 = Dummy::<G1ElementAsBytes> { key: b64 };
        // Test that we are not adding extra fields.
        assert_eq!(
            serde_json::to_string(&d1).unwrap(),
            r#"{"key":"l/HTpzGX15QmlWOMT6msD8NojE+XdLkFoU46PxcbrFhsVeg/+Xoa7/s68ArbIsa7"}"#
        );
        // Test that we don't add extra bytes on top of the actual serialized data.
        let ser = bincode::serialize(&d1).unwrap();
        assert_eq!(G1_ELEMENT_BYTE_LENGTH, ser.len());
        // Check we can go back correctly.
        let d2: Dummy<G1ElementAsBytes> = bincode::deserialize(&ser).unwrap();
        let g2 = G1Element::try_from(&d2.key).unwrap();
        assert_eq!(g1, g2);
        // Check the resulting schema.
        let schema = schema_for!(Dummy::<G1ElementAsBytes>);
        assert_eq!(
            r##"{
  "$schema": "http://json-schema.org/draft-07/schema#",
  "title": "Dummy_for_Base64",
  "type": "object",
  "required": [
    "key"
  ],
  "properties": {
    "key": {
      "$ref": "#/definitions/Base64"
    }
  },
  "definitions": {
    "Base64": {
      "description": "Base64 encoding",
      "type": "string"
    }
  }
}"##,
            serde_json::to_string_pretty(&schema).unwrap()
        );
    }
}