Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat(rust/rbac-registration): refactoring #127

Merged
merged 94 commits into from
Jan 24, 2025
Merged
Show file tree
Hide file tree
Changes from 5 commits
Commits
Show all changes
94 commits
Select commit Hold shift + click to select a range
6ad8cdc
Introduce Cip0134UriSet type (#119)
stanislav-tkach Dec 30, 2024
0b680c7
Store x509 certificates (Cip509RbacMetadata::x509_certs) in the decod…
stanislav-tkach Dec 31, 2024
c94f142
Store and update certificate URIs in the registration chain (#130)
stanislav-tkach Jan 2, 2025
8298dff
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 2, 2025
78df433
Merge branch 'main' into rbac-registration-improvements
stevenj Jan 3, 2025
927da38
Check for presense of purpose and txn_inputs_hash fields
stanislav-tkach Jan 3, 2025
84137d9
Use Blake2b256Hash type
stanislav-tkach Jan 3, 2025
a5af8a8
Make Cip509 field private
stanislav-tkach Jan 3, 2025
012601e
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 7, 2025
800ee5c
Use problem report
stanislav-tkach Jan 8, 2025
ec483f2
More problem report usage in Cip509RbacMetadata
stanislav-tkach Jan 8, 2025
d9cd7b9
Cip0134Uri::try_from(&[u8])
stanislav-tkach Jan 8, 2025
b3be9b0
Move addresses extraction to a function
stanislav-tkach Jan 8, 2025
2afd1ff
Move Cip0134Uri to the cardano-blockchain-types crate
stanislav-tkach Jan 8, 2025
de667b7
role data as map
stanislav-tkach Jan 8, 2025
fccfe4f
Role0 constant
stanislav-tkach Jan 8, 2025
154d1da
Member functions
stanislav-tkach Jan 8, 2025
a7a5251
Cip509 constructors
stanislav-tkach Jan 8, 2025
822f057
Merge branch 'main' into rbac-registration-improvements
stevenj Jan 9, 2025
f832ec1
Validation
stanislav-tkach Jan 10, 2025
847c6dc
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 10, 2025
60a0dba
Fix after merge
stanislav-tkach Jan 10, 2025
20e731e
Validation tests
stanislav-tkach Jan 10, 2025
1ce2bf0
Registration chain
stanislav-tkach Jan 10, 2025
5750462
Fix clippy warnings and some tests
stanislav-tkach Jan 10, 2025
45e9786
Test decremented_index
stanislav-tkach Jan 11, 2025
4044a84
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 13, 2025
fb7d600
decode context
stanislav-tkach Jan 13, 2025
5832e8a
Role data conversion
stanislav-tkach Jan 14, 2025
cf8937a
Fix clippy lints
stanislav-tkach Jan 14, 2025
df6fef9
Update the validation tests
stanislav-tkach Jan 14, 2025
7a31b92
Update chunks decoding tests
stanislav-tkach Jan 14, 2025
56609ef
Move payment history types
stanislav-tkach Jan 14, 2025
d129ea1
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 14, 2025
551acae
Move payment history to Cip509
stanislav-tkach Jan 14, 2025
d852869
Add TODO comments
stanislav-tkach Jan 14, 2025
b9ad9cf
Use TxnWitness from cardano-blockchain-types
stanislav-tkach Jan 14, 2025
31c8df5
Clippy
stanislav-tkach Jan 14, 2025
7432ec1
Use (more) types from the 'cardano-blockchain-types' crate
stanislav-tkach Jan 14, 2025
13362d0
Update the registration chain tests
stanislav-tkach Jan 14, 2025
92556e2
Fix clippy (again)
stanislav-tkach Jan 14, 2025
e2c163c
Fix warnings in the tests
stanislav-tkach Jan 14, 2025
7b0befe
Use the 'cbork-utils' crate
stanislav-tkach Jan 15, 2025
1ea6d16
Remove MultiEraBlock::new_block
stanislav-tkach Jan 15, 2025
068cbdf
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 15, 2025
bf843d4
Fix the 'decode_any' usage
stanislav-tkach Jan 15, 2025
6c71c5a
Split certificates into multiple files
stanislav-tkach Jan 15, 2025
36d7c45
Fix some review comments
stanislav-tkach Jan 16, 2025
aac3103
Remove duplicated hash helpers
stanislav-tkach Jan 16, 2025
ea67b47
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 16, 2025
5934fd4
Fix after merge
stanislav-tkach Jan 16, 2025
b51687f
Update the payment key logic
stanislav-tkach Jan 16, 2025
d47695e
Remove unused dependencies
stanislav-tkach Jan 16, 2025
4bce78c
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 16, 2025
06536b8
More error handling
stanislav-tkach Jan 16, 2025
3d9faf8
Improve role 0 signing key validation
stanislav-tkach Jan 17, 2025
c787b27
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 17, 2025
5247896
Error handling
stanislav-tkach Jan 17, 2025
372b59b
More error handling
stanislav-tkach Jan 17, 2025
b6d4519
Fix Clippy
stanislav-tkach Jan 17, 2025
aa1aaec
Improve error handling once again
stanislav-tkach Jan 17, 2025
3eb7126
update decode_revocation_list
stanislav-tkach Jan 17, 2025
d8adc38
test(rust/rbac-registration): Fix test in CIP509 (#160)
bkioshn Jan 20, 2025
369b43b
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 20, 2025
cad6c62
Fix after merge
stanislav-tkach Jan 20, 2025
8909b59
Add the 'assert_valid' function for the test data
stanislav-tkach Jan 20, 2025
05ac75e
test(rust/rbac-registration): RBAC None role0 key reference (#163)
bkioshn Jan 21, 2025
1819264
Add/fix certificates/role checks
stanislav-tkach Jan 21, 2025
bd283e0
Check the encryption key for non-0 roles
stanislav-tkach Jan 21, 2025
ff4d433
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 21, 2025
d5e9e27
Check for role 0 certificates for other roles
stanislav-tkach Jan 21, 2025
9c56ed5
test(rust/rbac-registration): Fix test data + undefined bug (#168)
bkioshn Jan 22, 2025
8bff419
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 22, 2025
98ef6dd
Remove the 'raw_aux_module' because it was moved to cardano-blockchai…
stanislav-tkach Jan 22, 2025
9df7c30
Use block.txn_metadata function
stanislav-tkach Jan 22, 2025
5c53373
Remove removed params from the documentation
stanislav-tkach Jan 22, 2025
bd804fe
One more update for the role data validation
stanislav-tkach Jan 22, 2025
5dd995d
Remove unused dependency
stanislav-tkach Jan 22, 2025
2add588
Ensure that there is no encryption key for the role 0
stanislav-tkach Jan 23, 2025
a4335f4
Use the encryption key value in the message
stanislav-tkach Jan 23, 2025
7214cdc
Use UuidV4
stanislav-tkach Jan 23, 2025
c7d1aa1
Remove duplicated check
stanislav-tkach Jan 23, 2025
8287bc0
Revert UUID changes (temporary)
stanislav-tkach Jan 23, 2025
596b47d
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 23, 2025
fecdd65
Update UUID names
stanislav-tkach Jan 23, 2025
81eec3d
Use revision for cbork-utils
stanislav-tkach Jan 23, 2025
5d67b68
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 23, 2025
925b539
Use revisions instead of paths for dependencies
stanislav-tkach Jan 23, 2025
3371497
Merge remote-tracking branch 'origin/rbac-registration-improvements' …
stanislav-tkach Jan 23, 2025
1ca1e49
test(rust/rbac-registration): Fix RBAC test data (#175)
bkioshn Jan 24, 2025
21e6bfc
Use tag for dependencies
stanislav-tkach Jan 24, 2025
a43d6ec
Update public key at 0 index error message
stanislav-tkach Jan 24, 2025
7c81843
Merge branch 'main' into rbac-registration-improvements
stevenj Jan 24, 2025
3823a9c
Merge branch 'main' into rbac-registration-improvements
stanislav-tkach Jan 24, 2025
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
119 changes: 76 additions & 43 deletions rust/rbac-registration/src/cardano/cip509/mod.rs
Original file line number Diff line number Diff line change
Expand Up @@ -25,28 +25,43 @@ use validation::{
use x509_chunks::X509Chunks;

use super::transaction::witness::TxWitness;
use crate::utils::{
decode_helper::{decode_bytes, decode_helper, decode_map_len},
general::{decode_utf8, decremented_index},
hashing::{blake2b_128, blake2b_256},
use crate::{
cardano::cip509::{rbac::Cip509RbacMetadata, types::ValidationSignature},
utils::{
decode_helper::{decode_bytes, decode_helper, decode_map_len},
general::decremented_index,
hashing::{blake2b_128, blake2b_256},
},
};

/// CIP509 label.
pub const LABEL: u64 = 509;

/// CIP509.
#[derive(Debug, PartialEq, Clone, Default)]
/// A x509 metadata envelope.
///
/// The envelope is required to prevent replayability attacks. See [this document] for
/// more details.
///
/// [this document]: https://github.com/input-output-hk/catalyst-CIPs/blob/x509-envelope-metadata/CIP-XXXX/README.md
#[derive(Debug, PartialEq, Clone)]
pub struct Cip509 {
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
/// `UUIDv4` Purpose .
pub purpose: Uuid, // (bytes .size 16)
/// A registration purpose (`UUIDv4`).
///
/// The purpose is defined by the consuming dApp.
pub purpose: Uuid,
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
/// Transaction inputs hash.
pub txn_inputs_hash: TxInputHash, // bytes .size 16
/// Optional previous transaction ID.
pub prv_tx_id: Option<Hash<32>>, // bytes .size 32
/// x509 chunks.
pub x509_chunks: X509Chunks, // chunk_type => [ + x509_chunk ]
pub txn_inputs_hash: TxInputHash,
/// An optional hash of the previous transaction.
///
/// The hash must always be present except for the first registration transaction.
// TODO: Use the `Blake2b256Hash` type from the `cardano-blockchain-types` crate.
pub prv_tx_id: Option<Hash<32>>,
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
/// Metadata.
///
/// This field encoded in chunks. See [`X509Chunks`] for more details.
pub metadata: Cip509RbacMetadata,
/// Validation signature.
pub validation_signature: Vec<u8>, // bytes size (1..64)
pub validation_signature: ValidationSignature,
}

/// Validation value for CIP509 metadatum.
Expand Down Expand Up @@ -92,7 +107,13 @@ pub(crate) enum Cip509IntIdentifier {
impl Decode<'_, ()> for Cip509 {
fn decode(d: &mut Decoder, ctx: &mut ()) -> Result<Self, decode::Error> {
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
let map_len = decode_map_len(d, "CIP509")?;
let mut cip509_metadatum = Cip509::default();

let mut purpose = Uuid::default();
let mut txn_inputs_hash = TxInputHash::default();
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
let mut prv_tx_id = None;
let mut metadata = None;
let mut validation_signature = Vec::new();

for _ in 0..map_len {
// Use probe to peak
let key = d.probe().u8()?;
Expand All @@ -101,43 +122,57 @@ impl Decode<'_, ()> for Cip509 {
let _: u8 = decode_helper(d, "CIP509", ctx)?;
match key {
Cip509IntIdentifier::Purpose => {
cip509_metadatum.purpose =
Uuid::try_from(decode_bytes(d, "CIP509 purpose")?).map_err(|_| {
decode::Error::message("Invalid data size of Purpose")
})?;
purpose = Uuid::try_from(decode_bytes(d, "CIP509 purpose")?)
.map_err(|_| decode::Error::message("Invalid data size of Purpose"))?;
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
},
Cip509IntIdentifier::TxInputsHash => {
cip509_metadatum.txn_inputs_hash =
txn_inputs_hash =
TxInputHash::try_from(decode_bytes(d, "CIP509 txn inputs hash")?)
.map_err(|_| {
decode::Error::message("Invalid data size of TxInputsHash")
})?;
},
Cip509IntIdentifier::PreviousTxId => {
let prv_tx_hash: [u8; 32] = decode_bytes(d, "CIP509 previous tx ID")?
let hash: [u8; 32] = decode_bytes(d, "CIP509 previous tx ID")?
.try_into()
.map_err(|_| {
decode::Error::message("Invalid data size of PreviousTxId")
})?;
cip509_metadatum.prv_tx_id = Some(Hash::from(prv_tx_hash));
decode::Error::message("Invalid data size of PreviousTxId")
})?;
prv_tx_id = Some(Hash::from(hash));
},
Cip509IntIdentifier::ValidationSignature => {
let validation_signature = decode_bytes(d, "CIP509 validation signature")?;
if validation_signature.is_empty() || validation_signature.len() > 64 {
return Err(decode::Error::message(
"Invalid data size of ValidationSignature",
));
}
cip509_metadatum.validation_signature = validation_signature;
let signature = decode_bytes(d, "CIP509 validation signature")?;
validation_signature = signature;
},
}
} else {
// Handle the x509 chunks 10 11 12
let x509_chunks = X509Chunks::decode(d, ctx)?;
cip509_metadatum.x509_chunks = x509_chunks;
// Technically it is possible to store multiple copies (or different instances) of
// metadata, but it isn't allowed. See this link for more details:
// https://github.com/input-output-hk/catalyst-CIPs/blob/x509-envelope-metadata/CIP-XXXX/README.md#keys-10-11-or-12---x509-chunked-data
if metadata.is_some() {
return Err(decode::Error::message(
"Only one instance of the chunked metadata should be present",
));
}
metadata = Some(x509_chunks.into());
}
}
Ok(cip509_metadatum)

let metadata =
metadata.ok_or_else(|| decode::Error::message("Missing metadata in CIP509"))?;
let validation_signature = validation_signature
.try_into()
.map_err(|e| decode::Error::message(format!("Invalid validation signature: {e:?}")))?;

Ok(Self {
purpose,
txn_inputs_hash,
prv_tx_id,
metadata,
validation_signature,
})
}
}

Expand Down Expand Up @@ -179,16 +214,14 @@ impl Cip509 {
let mut is_valid_stake_public_key = true;
let mut is_valid_payment_key = true;
let mut is_valid_signing_key = true;
if let Some(role_set) = &self.x509_chunks.0.role_set {
// Validate only role 0
for role in role_set {
if role.role_number == 0 {
is_valid_stake_public_key =
validate_stake_public_key(self, txn, validation_report).unwrap_or(false);
is_valid_payment_key =
validate_payment_key(txn, role, validation_report).unwrap_or(false);
is_valid_signing_key = validate_role_singing_key(role, validation_report);
}
// Validate only role 0
for role in &self.metadata.role_set {
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
if role.role_number == 0 {
is_valid_stake_public_key =
validate_stake_public_key(self, txn, validation_report).unwrap_or(false);
is_valid_payment_key =
validate_payment_key(txn, role, validation_report).unwrap_or(false);
is_valid_signing_key = validate_role_singing_key(role, validation_report);
}
}
Cip509Validation {
Expand Down
9 changes: 5 additions & 4 deletions rust/rbac-registration/src/cardano/cip509/rbac/certs.rs
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ pub enum X509DerCert {
/// Deleted indicates the key is deleted.
Deleted,
/// X.509 certificate.
X509Cert(Vec<u8>),
X509Cert(Box<Certificate>),
}

impl Decode<'_, ()> for X509DerCert {
Expand All @@ -34,9 +34,10 @@ impl Decode<'_, ()> for X509DerCert {
minicbor::data::Type::Undefined => Ok(Self::Undefined),
minicbor::data::Type::Bytes => {
let data = decode_bytes(d, "X509DerCert")?;
Certificate::from_der(&data)
.map_err(|_| decode::Error::message("Invalid x509 certificate"))?;
Ok(Self::X509Cert(data.clone()))
let certificate = Certificate::from_der(&data).map_err(|e| {
decode::Error::message(format!("Invalid x509 certificate: {e:?}"))
})?;
Ok(Self::X509Cert(Box::new(certificate)))
},
_ => Err(decode::Error::message("Invalid datatype for X509DerCert")),
}
Expand Down
128 changes: 60 additions & 68 deletions rust/rbac-registration/src/cardano/cip509/rbac/mod.rs
Original file line number Diff line number Diff line change
Expand Up @@ -16,24 +16,43 @@ use role_data::RoleData;
use strum_macros::FromRepr;

use super::types::cert_key_hash::CertKeyHash;
use crate::utils::decode_helper::{
decode_any, decode_array_len, decode_bytes, decode_helper, decode_map_len,
use crate::{
cardano::cip509::utils::Cip0134UriSet,
utils::decode_helper::{
decode_any, decode_array_len, decode_bytes, decode_helper, decode_map_len,
},
};

/// Cip509 RBAC metadata.
#[derive(Debug, PartialEq, Clone, Default)]
///
/// See [this document] for more details.
///
/// [this document]: https://github.com/input-output-hk/catalyst-CIPs/tree/x509-role-registration-metadata/CIP-XXXX
#[derive(Debug, PartialEq, Clone)]
pub struct Cip509RbacMetadata {
/// Optional list of x509 certificates.
pub x509_certs: Option<Vec<X509DerCert>>,
/// Optional list of c509 certificates.
/// The value can be either the c509 certificate or c509 metadatum reference.
pub c509_certs: Option<Vec<C509Cert>>,
/// Optional list of Public keys.
pub pub_keys: Option<Vec<SimplePublicKeyType>>,
/// Optional list of revocation list.
pub revocation_list: Option<Vec<CertKeyHash>>,
/// Optional list of role data.
pub role_set: Option<Vec<RoleData>>,
/// A potentially empty list of x509 certificates.
pub x509_certs: Vec<X509DerCert>,
/// A potentially empty list of c509 certificates.
pub c509_certs: Vec<C509Cert>,
/// A set of URIs contained in both x509 and c509 certificates.
///
/// URIs from different certificate types are stored separately and certificate
/// indexes are preserved too.
///
/// This field isn't present in the encoded format and is populated by processing both
/// `x509_certs` and `c509_certs` fields.
pub certificate_uris: Cip0134UriSet,
/// A list of public keys that can be used instead of storing full certificates.
///
/// Check [this section] to understand the how certificates and the public keys list
/// are related.
///
/// [this section]: https://github.com/input-output-hk/catalyst-CIPs/tree/x509-role-registration-metadata/CIP-XXXX#storing-certificates-and-public-key
pub pub_keys: Vec<SimplePublicKeyType>,
/// A potentially empty list of revoked certificates.
pub revocation_list: Vec<CertKeyHash>,
/// A potentially empty list of role data.
pub role_set: Vec<RoleData>,
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
/// Optional map of purpose key data.
/// Empty map if no purpose key data is present.
pub purpose_key_data: HashMap<u16, Vec<u8>>,
Expand All @@ -60,86 +79,59 @@ pub enum Cip509RbacMetadataInt {
RoleSet = 100,
}

impl Cip509RbacMetadata {
/// Create a new instance of `Cip509RbacMetadata`.
pub(crate) fn new() -> Self {
Self {
x509_certs: None,
c509_certs: None,
pub_keys: None,
revocation_list: None,
role_set: None,
purpose_key_data: HashMap::new(),
}
}

/// Set the x509 certificates.
fn set_x509_certs(&mut self, x509_certs: Vec<X509DerCert>) {
self.x509_certs = Some(x509_certs);
}

/// Set the c509 certificates.
fn set_c509_certs(&mut self, c509_certs: Vec<C509Cert>) {
self.c509_certs = Some(c509_certs);
}

/// Set the public keys.
fn set_pub_keys(&mut self, pub_keys: Vec<SimplePublicKeyType>) {
self.pub_keys = Some(pub_keys);
}

/// Set the revocation list.
fn set_revocation_list(&mut self, revocation_list: Vec<CertKeyHash>) {
self.revocation_list = Some(revocation_list);
}

/// Set the role data set.
fn set_role_set(&mut self, role_set: Vec<RoleData>) {
self.role_set = Some(role_set);
}
}

impl Decode<'_, ()> for Cip509RbacMetadata {
fn decode(d: &mut Decoder, ctx: &mut ()) -> Result<Self, decode::Error> {
let map_len = decode_map_len(d, "Cip509RbacMetadata")?;

let mut x509_rbac_metadata = Cip509RbacMetadata::new();
let mut x509_certs = Vec::new();
let mut c509_certs = Vec::new();
let mut pub_keys = Vec::new();
let mut revocation_list = Vec::new();
let mut role_set = Vec::new();
let mut purpose_key_data = HashMap::new();

for _ in 0..map_len {
let key: u16 = decode_helper(d, "key in Cip509RbacMetadata", ctx)?;
if let Some(key) = Cip509RbacMetadataInt::from_repr(key) {
match key {
Cip509RbacMetadataInt::X509Certs => {
let x509_certs = decode_array_rbac(d, "x509 certificate")?;
x509_rbac_metadata.set_x509_certs(x509_certs);
x509_certs = decode_array_rbac(d, "x509 certificate")?;
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
},
Cip509RbacMetadataInt::C509Certs => {
let c509_certs = decode_array_rbac(d, "c509 certificate")?;
x509_rbac_metadata.set_c509_certs(c509_certs);
c509_certs = decode_array_rbac(d, "c509 certificate")?;
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
},
Cip509RbacMetadataInt::PubKeys => {
let pub_keys = decode_array_rbac(d, "public keys")?;
x509_rbac_metadata.set_pub_keys(pub_keys);
pub_keys = decode_array_rbac(d, "public keys")?;
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
},
Cip509RbacMetadataInt::RevocationList => {
let revocation_list = decode_revocation_list(d)?;
x509_rbac_metadata.set_revocation_list(revocation_list);
revocation_list = decode_revocation_list(d)?;
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
},
Cip509RbacMetadataInt::RoleSet => {
let role_set = decode_array_rbac(d, "role set")?;
x509_rbac_metadata.set_role_set(role_set);
role_set = decode_array_rbac(d, "role set")?;
stanislav-tkach marked this conversation as resolved.
Show resolved Hide resolved
},
}
} else {
if !(FIRST_PURPOSE_KEY..=LAST_PURPOSE_KEY).contains(&key) {
return Err(decode::Error::message(format!("Invalid purpose key set, should be with the range {FIRST_PURPOSE_KEY} - {LAST_PURPOSE_KEY}")));
}
x509_rbac_metadata
.purpose_key_data
.insert(key, decode_any(d, "purpose key")?);

purpose_key_data.insert(key, decode_any(d, "purpose key")?);
}
}
Ok(x509_rbac_metadata)

let certificate_uris = Cip0134UriSet::new(&x509_certs, &c509_certs).map_err(|e| {
decode::Error::message(format!("Unable to parse URIs from certificates: {e:?}"))
})?;

Ok(Self {
x509_certs,
c509_certs,
certificate_uris,
pub_keys,
revocation_list,
role_set,
purpose_key_data,
})
}
}

Expand Down
4 changes: 4 additions & 0 deletions rust/rbac-registration/src/cardano/cip509/types/mod.rs
Original file line number Diff line number Diff line change
Expand Up @@ -2,3 +2,7 @@

pub mod cert_key_hash;
pub mod tx_input_hash;

pub use validation_signature::ValidationSignature;

mod validation_signature;
Original file line number Diff line number Diff line change
@@ -1,6 +1,10 @@
//! Transaction input hash type

/// Transaction input hash representing in 16 bytes.
/// A 16-byte hash of the transaction inputs field.
///
/// This type is described [here].
///
/// [here]: https://github.com/input-output-hk/catalyst-CIPs/blob/x509-envelope-metadata/CIP-XXXX/README.md#key-1-txn-inputs-hash
#[derive(Debug, PartialEq, Clone, Default)]
pub struct TxInputHash([u8; 16]);

Expand Down
Loading
Loading