signedby-sdk 1.0.1

SIGNEDBYME SDK - Human-Controlled Identity for Autonomous Agents
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168

// key_manager.rs
// Manages DID keys and Taproot keys for BTC-native operations

use anyhow::{Result, anyhow};
use bitcoin::secp256k1::{Secp256k1, SecretKey, PublicKey, Keypair, XOnlyPublicKey};
use bitcoin::secp256k1::rand::rngs::OsRng;
use sha2::{Sha256, Digest};
use serde::{Serialize, Deserialize};

/// Key types supported by the KeyManager
#[derive(Debug, Clone, Serialize, Deserialize)]
pub enum KeyType {
    /// Standard secp256k1 ECDSA key (for DID signatures)
    Ecdsa,
    /// Schnorr/Taproot key (for DLC and Bitcoin native ops)
    Schnorr,
}

/// A keypair with both ECDSA and Schnorr capabilities
#[derive(Debug, Clone)]
pub struct ManagedKey {
    pub secret_key: SecretKey,
    pub public_key: PublicKey,
    pub x_only_pubkey: XOnlyPublicKey,
    pub keypair: Keypair,
}

impl ManagedKey {
    /// Generate a new random keypair
    pub fn generate() -> Result<Self> {
        let secp = Secp256k1::new();
        let (secret_key, public_key) = secp.generate_keypair(&mut OsRng);
        let keypair = Keypair::from_secret_key(&secp, &secret_key);
        let (x_only_pubkey, _parity) = keypair.x_only_public_key();
        
        Ok(Self {
            secret_key,
            public_key,
            x_only_pubkey,
            keypair,
        })
    }
    
    /// Create from existing secret key bytes
    pub fn from_bytes(bytes: &[u8]) -> Result<Self> {
        let secp = Secp256k1::new();
        let secret_key = SecretKey::from_slice(bytes)
            .map_err(|e| anyhow!("Invalid secret key: {}", e))?;
        let public_key = PublicKey::from_secret_key(&secp, &secret_key);
        let keypair = Keypair::from_secret_key(&secp, &secret_key);
        let (x_only_pubkey, _parity) = keypair.x_only_public_key();
        
        Ok(Self {
            secret_key,
            public_key,
            x_only_pubkey,
            keypair,
        })
    }
    
    /// Get DID string (did:btcr:pubkey_hex)
    pub fn to_did(&self) -> String {
        format!("did:btcr:{}", hex::encode(self.public_key.serialize()))
    }
    
    /// Get compressed public key hex (33 bytes)
    pub fn pubkey_hex(&self) -> String {
        hex::encode(self.public_key.serialize())
    }
    
    /// Get x-only public key hex (32 bytes, for Schnorr/Taproot)
    pub fn x_only_pubkey_hex(&self) -> String {
        hex::encode(self.x_only_pubkey.serialize())
    }
    
    /// Sign a message with ECDSA (returns DER hex)
    pub fn sign_ecdsa(&self, message: &[u8]) -> Result<String> {
        let secp = Secp256k1::new();
        let mut hasher = Sha256::new();
        hasher.update(message);
        let hash = hasher.finalize();
        
        let msg = bitcoin::secp256k1::Message::from_digest_slice(&hash)
            .map_err(|e| anyhow!("Invalid message: {}", e))?;
        
        let sig = secp.sign_ecdsa(&msg, &self.secret_key);
        Ok(hex::encode(sig.serialize_der()))
    }
    
    /// Sign a message with Schnorr (returns signature hex, 64 bytes)
    pub fn sign_schnorr(&self, message: &[u8]) -> Result<String> {
        let secp = Secp256k1::new();
        let mut hasher = Sha256::new();
        hasher.update(message);
        let hash = hasher.finalize();
        
        let msg = bitcoin::secp256k1::Message::from_digest_slice(&hash)
            .map_err(|e| anyhow!("Invalid message: {}", e))?;
        
        let sig = secp.sign_schnorr_no_aux_rand(&msg, &self.keypair);
        Ok(hex::encode(sig.serialize()))
    }
    
    /// Verify a Schnorr signature
    pub fn verify_schnorr(&self, message: &[u8], sig_hex: &str) -> Result<bool> {
        let secp = Secp256k1::new();
        
        let sig_bytes = hex::decode(sig_hex)
            .map_err(|e| anyhow!("Invalid signature hex: {}", e))?;
        
        let sig = bitcoin::secp256k1::schnorr::Signature::from_slice(&sig_bytes)
            .map_err(|e| anyhow!("Invalid signature: {}", e))?;
        
        let mut hasher = Sha256::new();
        hasher.update(message);
        let hash = hasher.finalize();
        
        let msg = bitcoin::secp256k1::Message::from_digest_slice(&hash)
            .map_err(|e| anyhow!("Invalid message: {}", e))?;
        
        Ok(secp.verify_schnorr(&sig, &msg, &self.x_only_pubkey).is_ok())
    }
}

/// Derive a Taproot internal key from a DID key
pub fn derive_taproot_internal_key(did_key: &ManagedKey) -> XOnlyPublicKey {
    did_key.x_only_pubkey
}

/// JSON representation for export
#[derive(Serialize, Deserialize)]
pub struct KeyManagerExport {
    pub did: String,
    pub pubkey_hex: String,
    pub x_only_pubkey_hex: String,
    pub key_type: String,
}

impl From<&ManagedKey> for KeyManagerExport {
    fn from(key: &ManagedKey) -> Self {
        Self {
            did: key.to_did(),
            pubkey_hex: key.pubkey_hex(),
            x_only_pubkey_hex: key.x_only_pubkey_hex(),
            key_type: "secp256k1".to_string(),
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    
    #[test]
    fn test_key_generation() {
        let key = ManagedKey::generate().unwrap();
        assert_eq!(key.pubkey_hex().len(), 66); // 33 bytes compressed
        assert_eq!(key.x_only_pubkey_hex().len(), 64); // 32 bytes x-only
    }
    
    #[test]
    fn test_schnorr_sign_verify() {
        let key = ManagedKey::generate().unwrap();
        let message = b"test message";
        let sig = key.sign_schnorr(message).unwrap();
        assert!(key.verify_schnorr(message, &sig).unwrap());
    }
}