df/d9e/multisig__account_8h_source.html

// Copyright (c) 2021-2022, The Monero Project

//

// All rights reserved.

//

// Redistribution and use in source and binary forms, with or without modification, are

// permitted provided that the following conditions are met:

//

// 1. Redistributions of source code must retain the above copyright notice, this list of

//    conditions and the following disclaimer.

//

// 2. Redistributions in binary form must reproduce the above copyright notice, this list

//    of conditions and the following disclaimer in the documentation and/or other

//    materials provided with the distribution.

//

// 3. Neither the name of the copyright holder nor the names of its contributors may be

//    used to endorse or promote products derived from this software without specific

//    prior written permission.

//

// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY

// EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF

// MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL

// THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,

// PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS

// INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

// STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF

// THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.


#pragma once


#include "crypto/crypto.h"

#include "multisig_kex_msg.h"


#include <cstdint>

#include <string>

#include <unordered_map>

#include <unordered_set>

#include <vector>


namespace multisig

{

  using multisig_keyset_map_memsafe_t =

    std::unordered_map<crypto::public_key_memsafe, std::unordered_set<crypto::public_key>>;


  class multisig_account final

  {

  public:

  //constructors

    // default constructor

    multisig_account() = default;


    multisig_account(const crypto::secret_key &base_privkey,

      const crypto::secret_key &base_common_privkey);


    // reconstruct from full account details (not recommended)

    multisig_account(const std::uint32_t threshold,

      std::vector<crypto::public_key> signers,

      const crypto::secret_key &base_privkey,

      const crypto::secret_key &base_common_privkey,

      std::vector<crypto::secret_key> multisig_privkeys,

      const crypto::secret_key &common_privkey,

      const crypto::public_key &multisig_pubkey,

      const crypto::public_key &common_pubkey,

      const std::uint32_t kex_rounds_complete,

      multisig_keyset_map_memsafe_t kex_origins_map,

      std::string next_round_kex_message);


    // copy constructor: default


  //destructor: default

    ~multisig_account() = default;


  //overloaded operators: none


  //getters

    // get threshold

    std::uint32_t get_threshold() const { return m_threshold; }

    // get signers

    const std::vector<crypto::public_key>& get_signers() const { return m_signers; }

    // get base privkey

    const crypto::secret_key& get_base_privkey() const { return m_base_privkey; }

    // get base pubkey

    const crypto::public_key& get_base_pubkey() const { return m_base_pubkey; }

    // get base common privkey

    const crypto::secret_key& get_base_common_privkey() const { return m_base_common_privkey; }

    // get multisig privkeys

    const std::vector<crypto::secret_key>& get_multisig_privkeys() const { return m_multisig_privkeys; }

    // get common privkey

    const crypto::secret_key& get_common_privkey() const { return m_common_privkey; }

    // get multisig pubkey

    const crypto::public_key& get_multisig_pubkey() const { return m_multisig_pubkey; }

    // get common pubkey

    const crypto::public_key& get_common_pubkey() const { return m_common_pubkey; }

    // get kex rounds complete

    std::uint32_t get_kex_rounds_complete() const { return m_kex_rounds_complete; }

    // get kex keys to origins map

    const multisig_keyset_map_memsafe_t& get_kex_keys_to_origins_map() const { return m_kex_keys_to_origins_map; }

    // get the kex msg for the next round

    const std::string& get_next_kex_round_msg() const { return m_next_round_kex_message; }


  //account status functions

    // account has been intialized, and the account holder can use the 'common' key

    bool account_is_active() const;

    // account has gone through main kex rounds, only remaining step is to verify all other participants are ready

    bool main_kex_rounds_done() const;

    // account is ready to make multisig signatures

    bool multisig_is_ready() const;


  //account helpers

  private:

    // set the threshold (M) and signers (N)

    void set_multisig_config(const std::size_t threshold, std::vector<crypto::public_key> signers);


  //account mutators: key exchange to set up account

  public:

    void initialize_kex(const std::uint32_t threshold,

      std::vector<crypto::public_key> signers,

      const std::vector<multisig_kex_msg> &expanded_msgs_rnd1);

    void kex_update(const std::vector<multisig_kex_msg> &expanded_msgs,

      const bool force_update_use_with_caution = false);


  private:

    // implementation of kex_update() (non-transactional)

    void kex_update_impl(const std::vector<multisig_kex_msg> &expanded_msgs, const bool incomplete_signer_set);

    void initialize_kex_update(const std::vector<multisig_kex_msg> &expanded_msgs,

      const std::uint32_t kex_rounds_required,

      std::vector<crypto::public_key> &exclude_pubkeys_out);

    void finalize_kex_update(const std::uint32_t kex_rounds_required,

      multisig_keyset_map_memsafe_t result_keys_to_origins_map);


  //member variables

  private:

    // [M] minimum number of co-signers to sign a message with the aggregate pubkey

    std::uint32_t m_threshold{0};

    // [N] base keys of all participants in the multisig (used to initiate key exchange, and as participant ids for msg signing)

    std::vector<crypto::public_key> m_signers;


    // base keypair of the participant

    // - used for signing messages, as the initial base key for key exchange, and to make DH derivations for key exchange

    crypto::secret_key m_base_privkey;

    crypto::public_key m_base_pubkey;

    // common base privkey, used to produce the aggregate common privkey

    crypto::secret_key m_base_common_privkey;


    // the account's private key shares of the multisig address

    // TODO: also record which other signers have these privkeys, to enable aggregation signing (instead of round-robin)

    std::vector<crypto::secret_key> m_multisig_privkeys;

    // a privkey owned by all multisig participants (e.g. a cryptonote view key)

    crypto::secret_key m_common_privkey;

    // the multisig public key (e.g. a cryptonote spend key)

    crypto::public_key m_multisig_pubkey;

    // the common public key (e.g. a view spend key)

    crypto::public_key m_common_pubkey;


    // number of key exchange rounds that have been completed (all messages for the round collected and processed)

    std::uint32_t m_kex_rounds_complete{0};

    // this account's pubkeys for the in-progress key exchange round

    // - either DH derivations (intermediate rounds), H(derivation)*G (final round), empty (when kex is done)

    multisig_keyset_map_memsafe_t m_kex_keys_to_origins_map;

    // the account's message for the in-progress key exchange round

    std::string m_next_round_kex_message;

  };


  std::uint32_t multisig_kex_rounds_required(const std::uint32_t num_signers, const std::uint32_t threshold);


  std::uint32_t multisig_setup_rounds_required(const std::uint32_t num_signers, const std::uint32_t threshold);

} //namespace multisig

multisig::multisig_account::get_common_privkey
const crypto::secret_key & get_common_privkey() const
Definition multisig_account.h:132

multisig::multisig_account::set_multisig_config
void set_multisig_config(const std::size_t threshold, std::vector< crypto::public_key > signers)
Definition multisig_account.cpp:137

multisig::multisig_account::finalize_kex_update
void finalize_kex_update(const std::uint32_t kex_rounds_required, multisig_keyset_map_memsafe_t result_keys_to_origins_map)
Definition multisig_account_kex_impl.cpp:745

multisig::multisig_account::initialize_kex_update
void initialize_kex_update(const std::vector< multisig_kex_msg > &expanded_msgs, const std::uint32_t kex_rounds_required, std::vector< crypto::public_key > &exclude_pubkeys_out)
Definition multisig_account_kex_impl.cpp:687

multisig::multisig_account::get_kex_keys_to_origins_map
const multisig_keyset_map_memsafe_t & get_kex_keys_to_origins_map() const
Definition multisig_account.h:140

multisig::multisig_account::get_signers
const std::vector< crypto::public_key > & get_signers() const
Definition multisig_account.h:122

multisig::multisig_account::m_common_pubkey
crypto::public_key m_common_pubkey
Definition multisig_account.h:232

multisig::multisig_account::get_base_common_privkey
const crypto::secret_key & get_base_common_privkey() const
Definition multisig_account.h:128

multisig::multisig_account::m_base_common_privkey
crypto::secret_key m_base_common_privkey
Definition multisig_account.h:221

multisig::multisig_account::get_multisig_privkeys
const std::vector< crypto::secret_key > & get_multisig_privkeys() const
Definition multisig_account.h:130

multisig::multisig_account::~multisig_account
~multisig_account()=default

multisig::multisig_account::m_next_round_kex_message
std::string m_next_round_kex_message
Definition multisig_account.h:241

multisig::multisig_account::get_next_kex_round_msg
const std::string & get_next_kex_round_msg() const
Definition multisig_account.h:142

multisig::multisig_account::get_threshold
std::uint32_t get_threshold() const
Definition multisig_account.h:120

multisig::multisig_account::m_kex_keys_to_origins_map
multisig_keyset_map_memsafe_t m_kex_keys_to_origins_map
Definition multisig_account.h:239

multisig::multisig_account::get_multisig_pubkey
const crypto::public_key & get_multisig_pubkey() const
Definition multisig_account.h:134

multisig::multisig_account::get_common_pubkey
const crypto::public_key & get_common_pubkey() const
Definition multisig_account.h:136

multisig::multisig_account::kex_update_impl
void kex_update_impl(const std::vector< multisig_kex_msg > &expanded_msgs, const bool incomplete_signer_set)
Definition multisig_account_kex_impl.cpp:852

multisig::multisig_account::multisig_is_ready
bool multisig_is_ready() const
Definition multisig_account.cpp:127

multisig::multisig_account::m_multisig_pubkey
crypto::public_key m_multisig_pubkey
Definition multisig_account.h:230

multisig::multisig_account::m_base_pubkey
crypto::public_key m_base_pubkey
Definition multisig_account.h:219

multisig::multisig_account::m_kex_rounds_complete
std::uint32_t m_kex_rounds_complete
kex variables
Definition multisig_account.h:236

multisig::multisig_account::account_is_active
bool account_is_active() const
Definition multisig_account.cpp:110

multisig::multisig_account::m_signers
std::vector< crypto::public_key > m_signers
Definition multisig_account.h:213

multisig::multisig_account::kex_update
void kex_update(const std::vector< multisig_kex_msg > &expanded_msgs, const bool force_update_use_with_caution=false)
Definition multisig_account.cpp:184

multisig::multisig_account::m_multisig_privkeys
std::vector< crypto::secret_key > m_multisig_privkeys
core multisig account keys
Definition multisig_account.h:226

multisig::multisig_account::multisig_account
multisig_account()=default

multisig::multisig_account::get_base_pubkey
const crypto::public_key & get_base_pubkey() const
Definition multisig_account.h:126

multisig::multisig_account::m_base_privkey
crypto::secret_key m_base_privkey
local participant's personal keys
Definition multisig_account.h:218

multisig::multisig_account::main_kex_rounds_done
bool main_kex_rounds_done() const
Definition multisig_account.cpp:117

multisig::multisig_account::initialize_kex
void initialize_kex(const std::uint32_t threshold, std::vector< crypto::public_key > signers, const std::vector< multisig_kex_msg > &expanded_msgs_rnd1)
Definition multisig_account.cpp:169

multisig::multisig_account::get_kex_rounds_complete
std::uint32_t get_kex_rounds_complete() const
Definition multisig_account.h:138

multisig::multisig_account::m_common_privkey
crypto::secret_key m_common_privkey
Definition multisig_account.h:228

multisig::multisig_account::get_base_privkey
const crypto::secret_key & get_base_privkey() const
Definition multisig_account.h:124

multisig::multisig_account::m_threshold
std::uint32_t m_threshold
misc. account details
Definition multisig_account.h:211

crypto.h

multisig_kex_msg.h

crypto::secret_key
epee::mlocked< tools::scrubbed< ec_scalar > > secret_key
Definition crypto.h:72

crypto::public_key
POD_CLASS public_key
Definition crypto.h:64

multisig
Definition multisig.cpp:46

multisig::multisig_kex_rounds_required
std::uint32_t multisig_kex_rounds_required(const std::uint32_t num_signers, const std::uint32_t threshold)
Definition multisig_account.cpp:197

multisig::multisig_setup_rounds_required
std::uint32_t multisig_setup_rounds_required(const std::uint32_t num_signers, const std::uint32_t threshold)
Definition multisig_account.cpp:206

multisig::multisig_keyset_map_memsafe_t
std::unordered_map< crypto::public_key_memsafe, std::unordered_set< crypto::public_key > > multisig_keyset_map_memsafe_t
Definition multisig_account.h:78