//! Helper functions for managing light client key material. use zcash_primitives::{consensus, zip32::AccountId}; #[cfg(feature = "transparent-inputs")] use zcash_primitives::legacy::keys as legacy; pub mod sapling { use zcash_primitives::zip32::{AccountId, ChildIndex}; pub use zcash_primitives::zip32::{ExtendedFullViewingKey, ExtendedSpendingKey}; /// Derives the ZIP 32 [`ExtendedSpendingKey`] for a given coin type and account from the /// given seed. /// /// # Panics /// /// Panics if `seed` is shorter than 32 bytes. /// /// # Examples /// /// ``` /// use zcash_primitives::{ /// constants::testnet::COIN_TYPE, /// zip32::AccountId, /// }; /// use zcash_client_backend::{ /// keys::sapling, /// }; /// /// let extsk = sapling::spending_key(&[0; 32][..], COIN_TYPE, AccountId(0)); /// ``` /// [`ExtendedSpendingKey`]: zcash_primitives::zip32::ExtendedSpendingKey pub fn spending_key(seed: &[u8], coin_type: u32, account: AccountId) -> ExtendedSpendingKey { if seed.len() < 32 { panic!("ZIP 32 seeds MUST be at least 32 bytes"); } ExtendedSpendingKey::from_path( &ExtendedSpendingKey::master(&seed), &[ ChildIndex::Hardened(32), ChildIndex::Hardened(coin_type), ChildIndex::Hardened(account.0), ], ) } } #[derive(Debug)] #[doc(hidden)] pub enum DerivationError { #[cfg(feature = "transparent-inputs")] Transparent(hdwallet::error::Error), } /// A set of viewing keys that are all associated with a single /// ZIP-0032 account identifier. #[derive(Clone, Debug)] #[doc(hidden)] pub struct UnifiedSpendingKey { account: AccountId, #[cfg(feature = "transparent-inputs")] transparent: legacy::AccountPrivKey, sapling: sapling::ExtendedSpendingKey, } #[doc(hidden)] impl UnifiedSpendingKey { pub fn from_seed( params: &P, seed: &[u8], account: AccountId, ) -> Result { if seed.len() < 32 { panic!("ZIP 32 seeds MUST be at least 32 bytes"); } #[cfg(feature = "transparent-inputs")] let transparent = legacy::AccountPrivKey::from_seed(params, seed, account) .map_err(DerivationError::Transparent)?; Ok(UnifiedSpendingKey { account, #[cfg(feature = "transparent-inputs")] transparent, sapling: sapling::spending_key(seed, params.coin_type(), account), }) } pub fn to_unified_full_viewing_key(&self) -> UnifiedFullViewingKey { UnifiedFullViewingKey { account: self.account, #[cfg(feature = "transparent-inputs")] transparent: Some(self.transparent.to_account_pubkey()), sapling: Some(sapling::ExtendedFullViewingKey::from(&self.sapling)), } } pub fn account(&self) -> AccountId { self.account } /// Returns the transparent component of the unified key at the /// BIP44 path `m/44'/'/'`. #[cfg(feature = "transparent-inputs")] pub fn transparent(&self) -> &legacy::AccountPrivKey { &self.transparent } /// Returns the Sapling extended full viewing key component of this /// unified key. pub fn sapling(&self) -> &sapling::ExtendedSpendingKey { &self.sapling } } /// A set of viewing keys that are all associated with a single /// ZIP-0032 account identifier. #[derive(Clone, Debug)] #[doc(hidden)] pub struct UnifiedFullViewingKey { account: AccountId, #[cfg(feature = "transparent-inputs")] transparent: Option, // TODO: This type is invalid for a UFVK; create a `sapling::DiversifiableFullViewingKey` // to replace it. sapling: Option, } #[doc(hidden)] impl UnifiedFullViewingKey { /// Construct a new unified full viewing key, if the required components are present. pub fn new( account: AccountId, #[cfg(feature = "transparent-inputs")] transparent: Option, sapling: Option, ) -> Option { if sapling.is_none() { None } else { Some(UnifiedFullViewingKey { account, #[cfg(feature = "transparent-inputs")] transparent, sapling, }) } } /// Returns the ZIP32 account identifier to which all component /// keys are related. pub fn account(&self) -> AccountId { self.account } /// Returns the transparent component of the unified key at the /// BIP44 path `m/44'/'/'`. #[cfg(feature = "transparent-inputs")] pub fn transparent(&self) -> Option<&legacy::AccountPubKey> { self.transparent.as_ref() } /// Returns the Sapling extended full viewing key component of this /// unified key. pub fn sapling(&self) -> Option<&sapling::ExtendedFullViewingKey> { self.sapling.as_ref() } } #[cfg(test)] mod tests { use super::sapling; use zcash_primitives::zip32::AccountId; #[cfg(feature = "transparent-inputs")] use { crate::encoding::AddressCodec, zcash_primitives::{consensus::MAIN_NETWORK, legacy, legacy::keys::IncomingViewingKey}, }; #[cfg(feature = "transparent-inputs")] fn seed() -> Vec { let seed_hex = "6ef5f84def6f4b9d38f466586a8380a38593bd47c8cda77f091856176da47f26b5bd1c8d097486e5635df5a66e820d28e1d73346f499801c86228d43f390304f"; hex::decode(&seed_hex).unwrap() } #[test] #[should_panic] fn spending_key_panics_on_short_seed() { let _ = sapling::spending_key(&[0; 31][..], 0, AccountId(0)); } #[cfg(feature = "transparent-inputs")] #[test] fn pk_to_taddr() { let taddr = legacy::keys::AccountPrivKey::from_seed(&MAIN_NETWORK, &seed(), AccountId(0)) .unwrap() .to_account_pubkey() .derive_external_ivk() .unwrap() .derive_address(0) .unwrap() .encode(&MAIN_NETWORK); assert_eq!(taddr, "t1PKtYdJJHhc3Pxowmznkg7vdTwnhEsCvR4".to_string()); } }