use std::fmt::{self, Debug};
use bitcoin::hashes::{Hash, sha256};
use fedimint_core::encoding::{Decodable, Encodable};
use secp256k1::{Keypair, Message, Secp256k1, Signing, Verification};
use serde::{Deserialize, Serialize};
pub const BACKUP_REQUEST_MAX_PAYLOAD_SIZE_BYTES: usize = 128 * 1024;
#[derive(Serialize, Deserialize, Encodable, Decodable)]
pub struct BackupRequest {
pub id: secp256k1::PublicKey,
#[serde(with = "fedimint_core::hex::serde")]
pub payload: Vec<u8>,
pub timestamp: std::time::SystemTime,
}
impl BackupRequest {
fn hash(&self) -> sha256::Hash {
self.consensus_hash()
}
pub fn sign(self, keypair: &Keypair) -> anyhow::Result<SignedBackupRequest> {
let signature = secp256k1::SECP256K1
.sign_schnorr(&Message::from_digest(*self.hash().as_ref()), keypair);
Ok(SignedBackupRequest {
request: self,
signature,
})
}
}
impl fmt::Debug for BackupRequest {
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
f.debug_struct("BackupRequest")
.field("id", &self.id)
.field("timestamp", &self.timestamp)
.field("payload_len", &self.payload.len())
.finish()
}
}
#[derive(Debug, Serialize, Deserialize)]
pub struct SignedBackupRequest {
#[serde(flatten)]
request: BackupRequest,
pub signature: secp256k1::schnorr::Signature,
}
impl SignedBackupRequest {
pub fn verify_valid<C>(&self, ctx: &Secp256k1<C>) -> Result<&BackupRequest, secp256k1::Error>
where
C: Signing + Verification,
{
ctx.verify_schnorr(
&self.signature,
&secp256k1::Message::from_digest_slice(&self.request.hash().to_byte_array())
.expect("Can't fail"),
&self.request.id.x_only_public_key().0,
)?;
Ok(&self.request)
}
}