Module `0x1::single_key`

This module implements Single Key representations of public keys. It is used to represent public keys for the Ed25519, SECP256K1, WebAuthn, and Keyless schemes in a unified way.

Enum AnyPublicKey
Constants
Function new_public_key_from_bytes
Function deserialize_any_public_key
Function is_keyless_or_federated_keyless_public_key
Function from_ed25519_public_key_unvalidated
Function to_authentication_key
Specification

use 0x1::bcs;
use 0x1::bcs_stream;
use 0x1::ed25519;
use 0x1::error;
use 0x1::federated_keyless;
use 0x1::hash;
use 0x1::keyless;
use 0x1::secp256k1;
use 0x1::secp256r1;

Enum `AnyPublicKey`

enum AnyPublicKey has copy, drop, store

Variants

Ed25519

Fields

pk: ed25519::UnvalidatedPublicKey

Secp256k1Ecdsa

Fields

pk: secp256k1::ECDSARawPublicKey

Secp256r1Ecdsa

Fields

pk: secp256r1::ECDSARawPublicKey

Keyless

Fields

pk: keyless::PublicKey

FederatedKeyless

Fields

pk: federated_keyless::PublicKey

Constants

The identifier of the Single Key signature scheme, which is used when deriving Aptos authentication keys by hashing it together with an Single Key public key.

const SIGNATURE_SCHEME_ID: u8 = 2;

Scheme identifier for Ed25519 single keys.

const ED25519_PUBLIC_KEY_TYPE: u8 = 0;

Unrecognized public key type.

const E_INVALID_PUBLIC_KEY_TYPE: u64 = 1;

There are extra bytes in the input when deserializing a Single Key public key.

const E_INVALID_SINGLE_KEY_EXTRA_BYTES: u64 = 2;

Scheme identifier for Federated Keyless single keys.

const FEDERATED_KEYLESS_PUBLIC_KEY_TYPE: u8 = 4;

Scheme identifier for Keyless single keys.

const KEYLESS_PUBLIC_KEY_TYPE: u8 = 3;

Scheme identifier for SECP256K1 single keys.

const SECP256K1_PUBLIC_KEY_TYPE: u8 = 1;

Scheme identifier for WebAuthn single keys.

const WEB_AUTHN_PUBLIC_KEY_TYPE: u8 = 2;

Function `new_public_key_from_bytes`

Parses the input bytes as a AnyPublicKey. The public key bytes are not guaranteed to be a valid representation of a point on its corresponding curve if applicable. It does check that the bytes deserialize into a well-formed public key for the given scheme.

public fun new_public_key_from_bytes(bytes: vector<u8>): single_key::AnyPublicKey

Implementation

public fun new_public_key_from_bytes(bytes: vector<u8>): AnyPublicKey {
    let stream = bcs_stream::new(bytes);
    let pk = deserialize_any_public_key(&mut stream);
    assert!(!bcs_stream::has_remaining(&mut stream), error::invalid_argument(E_INVALID_SINGLE_KEY_EXTRA_BYTES));
    pk
}

Function `deserialize_any_public_key`

Deserializes a Single Key public key from a BCS stream.

public fun deserialize_any_public_key(stream: &mut bcs_stream::BCSStream): single_key::AnyPublicKey

Implementation

public fun deserialize_any_public_key(stream: &mut bcs_stream::BCSStream): AnyPublicKey {
    let scheme_id = bcs_stream::deserialize_u8(stream);
    let pk: AnyPublicKey;
    if (scheme_id == ED25519_PUBLIC_KEY_TYPE) {
        let public_key_bytes = bcs_stream::deserialize_vector(stream, |x| deserialize_u8(x));
        pk = AnyPublicKey::Ed25519{pk: ed25519::new_unvalidated_public_key_from_bytes(public_key_bytes)}
    } else if (scheme_id == SECP256K1_PUBLIC_KEY_TYPE) {
        let public_key_bytes = bcs_stream::deserialize_vector(stream, |x| deserialize_u8(x));
        pk = AnyPublicKey::Secp256k1Ecdsa{pk: secp256k1::ecdsa_raw_public_key_from_64_bytes(public_key_bytes)};
    } else if (scheme_id == WEB_AUTHN_PUBLIC_KEY_TYPE) {
        let public_key_bytes = bcs_stream::deserialize_vector(stream, |x| deserialize_u8(x));
        pk = AnyPublicKey::Secp256r1Ecdsa{pk: secp256r1::ecdsa_raw_public_key_from_64_bytes(public_key_bytes)};
    } else if (scheme_id == KEYLESS_PUBLIC_KEY_TYPE) {
        pk = AnyPublicKey::Keyless{pk: keyless::deserialize_public_key(stream)};
    } else if (scheme_id == FEDERATED_KEYLESS_PUBLIC_KEY_TYPE) {
        pk = AnyPublicKey::FederatedKeyless{pk: federated_keyless::deserialize_public_key(stream)}
    } else {
        abort error::invalid_argument(E_INVALID_PUBLIC_KEY_TYPE);
    };
    pk
}

Function `is_keyless_or_federated_keyless_public_key`

Returns true if the public key is a keyless or federated keyless public key.

public fun is_keyless_or_federated_keyless_public_key(pk: &single_key::AnyPublicKey): bool

Implementation

public fun is_keyless_or_federated_keyless_public_key(pk: &AnyPublicKey): bool {
    match (pk) {
        AnyPublicKey::Keyless { .. } => true,
        AnyPublicKey::FederatedKeyless { .. } => true,
        _ => false
    }
}

Function `from_ed25519_public_key_unvalidated`

Converts an unvalidated Ed25519 public key to an AnyPublicKey.

public fun from_ed25519_public_key_unvalidated(pk: ed25519::UnvalidatedPublicKey): single_key::AnyPublicKey

Implementation

public fun from_ed25519_public_key_unvalidated(pk: ed25519::UnvalidatedPublicKey): AnyPublicKey {
    AnyPublicKey::Ed25519 { pk }
}

Function `to_authentication_key`

Gets the authentication key for the AnyPublicKey.

public fun to_authentication_key(self: &single_key::AnyPublicKey): vector<u8>

Implementation

public fun to_authentication_key(self: &AnyPublicKey): vector<u8> {
    let pk_bytes = bcs::to_bytes(self);
    pk_bytes.push_back(SIGNATURE_SCHEME_ID);
    hash::sha3_256(pk_bytes)
}

Specification

pragma verify = false;

Keyboard shortcuts

The Aptos Framework Book