[seal] handle committee v2 servers

Author: joyqvq

packages/seal/src/bcs.ts

@@ -51,6 +51,44 @@ export const KeyServerMoveV1 = bcs.struct('KeyServerV1', {
 	pk: bcs.byteVector(),
 });
 
+/**
+ * The Move struct for PartialKeyServer (committee member).
+ */
+export const PartialKeyServer = bcs.struct('PartialKeyServer', {
+	partialPk: bcs.byteVector(),
+	url: bcs.string(),
+	partyId: bcs.u16(),
+});
+
+/**
+ * The Move enum for ServerType (V2).
+ */
+export const ServerType = bcs.enum('ServerType', {
+	Independent: bcs.struct('Independent', {
+		url: bcs.string(),
+	}),
+	Committee: bcs.struct('Committee', {
+		version: bcs.u32(),
+		threshold: bcs.u16(),
+		partialKeyServers: bcs.vector(
+			bcs.struct('VecMapEntry', {
+				key: bcs.Address,
+				value: PartialKeyServer,
+			}),
+		),
+	}),
+});
+
+/**
+ * The Move struct for the KeyServerV2 object.
+ */
+export const KeyServerMoveV2 = bcs.struct('KeyServerV2', {
+	name: bcs.string(),
+	keyType: bcs.u8(),
+	pk: bcs.byteVector(),
+	serverType: ServerType,
+});
+
 /**
  * The Move struct for the parent object.
  */

packages/seal/src/client.ts

@@ -303,9 +303,26 @@ export class SealClient {
 			throw new InvalidKeyServerError('No key servers found');
 		}
 
+		// Set aggregator URLs for committee servers from config
+		keyServers.forEach((server) => {
+			const config = this.#configs.get(server.objectId);
+			if (server.serverType === 'Committee') {
+				if (!config?.aggregatorUrl) {
+					throw new InvalidClientOptionsError(
+						`Committee server ${server.objectId} requires aggregatorUrl in config`,
+					);
+				}
+				server.url = config.aggregatorUrl;
+			}
+		});
+
 		if (this.#verifyKeyServers) {
 			await Promise.all(
 				keyServers.map(async (server) => {
+					// Skip /service verification for committee/aggregator servers
+					if (server.serverType === 'Committee') {
+						return;
+					}
 					const config = this.#configs.get(server.objectId);
 					if (!(await verifyKeyServer(server, this.#timeout, config?.apiKeyName, config?.apiKey))) {
 						throw new InvalidKeyServerError(`Key server ${server.objectId} is not valid`);

packages/seal/src/key-server.ts

@@ -3,7 +3,7 @@
 import { bcs, fromBase64, fromHex, toBase64, toHex } from '@mysten/bcs';
 import { bls12_381 } from '@noble/curves/bls12-381';
 
-import { KeyServerMove, KeyServerMoveV1 } from './bcs.js';
+import { KeyServerMove, KeyServerMoveV1, KeyServerMoveV2 } from './bcs.js';
 import { InvalidKeyServerError, InvalidKeyServerVersionError, SealAPIError } from './error.js';
 import { DST_POP } from './ibe.js';
 import { PACKAGE_VERSION } from './version.js';
@@ -13,14 +13,14 @@ import { flatten, Version } from './utils.js';
 import { elgamalDecrypt } from './elgamal.js';
 import type { Certificate } from './session-key.js';
 
-const EXPECTED_SERVER_VERSION = 1;
-
 export type KeyServer = {
 	objectId: string;
 	name: string;
 	url: string;
 	keyType: KeyServerType;
 	pk: Uint8Array<ArrayBuffer>;
+	/** Server type: 'Independent' or 'Committee' */
+	serverType: 'Independent' | 'Committee';
 };
 
 export enum KeyServerType {
@@ -33,6 +33,9 @@ export const SERVER_VERSION_REQUIREMENT = new Version('0.4.1');
  * Given a list of key server object IDs, returns a list of SealKeyServer
  * from onchain state containing name, objectId, URL and pk.
  *
+ * Supports both V1 (independent servers) and V2 (independent + committee servers).
+ * For V2 committee servers, returns the aggregator URL which clients use to fetch keys.
+ *
  * @param objectIds - The key server object IDs.
  * @param client - The SuiClient to use.
  * @returns - An array of SealKeyServer.
@@ -51,39 +54,94 @@ export async function retrieveKeyServers({
 				objectId,
 			});
 			const ks = KeyServerMove.parse(await res.object.content);
-			if (
-				EXPECTED_SERVER_VERSION < Number(ks.firstVersion) ||
-				EXPECTED_SERVER_VERSION > Number(ks.lastVersion)
-			) {
+
+			// Determine which version to use (prefer V2 if available)
+			let version: number;
+			if (Number(ks.firstVersion) <= 2 && Number(ks.lastVersion) >= 2) {
+				version = 2;
+			} else if (Number(ks.firstVersion) <= 1 && Number(ks.lastVersion) >= 1) {
+				version = 1;
+			} else {
 				throw new InvalidKeyServerVersionError(
-					`Key server ${objectId} supports versions between ${ks.firstVersion} and ${ks.lastVersion} (inclusive), but SDK expects version ${EXPECTED_SERVER_VERSION}`,
+					`Key server ${objectId} supports versions between ${ks.firstVersion} and ${ks.lastVersion} (inclusive), but SDK expects version 1 or 2`,
 				);
 			}
 
-			// Then fetch the expected versioned object and parse it.
+			// Fetch the versioned object
 			const resVersionedKs = await client.core.getDynamicField({
 				parentId: objectId,
 				name: {
 					type: 'u64',
-					bcs: bcs.u64().serialize(EXPECTED_SERVER_VERSION).toBytes(),
+					bcs: bcs.u64().serialize(version).toBytes(),
 				},
 			});
 
-			const ksVersioned = KeyServerMoveV1.parse(resVersionedKs.dynamicField.value.bcs);
+			if (version === 2) {
+				// Parse V2 key server (supports both Independent and Committee modes)
+				const ksV2 = KeyServerMoveV2.parse(resVersionedKs.dynamicField.value.bcs);
 
-			if (ksVersioned.keyType !== KeyServerType.BonehFranklinBLS12381) {
-				throw new InvalidKeyServerError(
-					`Server ${objectId} has invalid key type: ${ksVersioned.keyType}`,
-				);
-			}
+				// Handle Move hex literal format: x"0x..."
+				// If pk starts with 'x"0x', it's stored as ASCII and needs to be converted
+				let pk = ksV2.pk;
+				if (pk.length > 96 && pk[0] === 120 && pk[1] === 34 && pk[2] === 48 && pk[3] === 120) {
+					// Decode Move hex literal: x"0x..." -> bytes
+					const hexStr = String.fromCharCode(...pk);
+					// Extract hex string between x"0x and "
+					const match = hexStr.match(/^x"(0x[0-9a-fA-F]+)"$/);
+					if (match) {
+						pk = new Uint8Array(fromHex(match[1]));
+					}
+				}
 
-			return {
-				objectId,
-				name: ksVersioned.name,
-				url: ksVersioned.url,
-				keyType: ksVersioned.keyType,
-				pk: new Uint8Array(ksVersioned.pk),
-			};
+				if (ksV2.keyType !== KeyServerType.BonehFranklinBLS12381) {
+					throw new InvalidKeyServerError(
+						`Server ${objectId} has invalid key type: ${ksV2.keyType}`,
+					);
+				}
+
+				// Extract URL and server type
+				let url: string;
+				let serverType: 'Independent' | 'Committee';
+
+				if (ksV2.serverType.$kind === 'Independent') {
+					url = ksV2.serverType.Independent.url;
+					serverType = 'Independent';
+				} else if (ksV2.serverType.$kind === 'Committee') {
+					// For committee mode, URL will be provided by client config
+					// The aggregator is not registered onchain
+					url = ''; // Placeholder, will be replaced by config
+					serverType = 'Committee';
+				} else {
+					throw new InvalidKeyServerError(`Unknown server type for ${objectId}`);
+				}
+
+				return {
+					objectId,
+					name: ksV2.name,
+					url,
+					keyType: ksV2.keyType,
+					pk: new Uint8Array(pk), // Aggregated public key (converted from Move hex literal if needed)
+					serverType,
+				};
+			} else {
+				// Parse V1 key server (backward compatibility)
+				const ksV1 = KeyServerMoveV1.parse(resVersionedKs.dynamicField.value.bcs);
+
+				if (ksV1.keyType !== KeyServerType.BonehFranklinBLS12381) {
+					throw new InvalidKeyServerError(
+						`Server ${objectId} has invalid key type: ${ksV1.keyType}`,
+					);
+				}
+
+				return {
+					objectId,
+					name: ksV1.name,
+					url: ksV1.url,
+					keyType: ksV1.keyType,
+					pk: new Uint8Array(ksV1.pk),
+					serverType: 'Independent',
+				};
+			}
 		}),
 	);
 }

packages/seal/src/types.ts

@@ -36,6 +36,8 @@ export interface KeyServerConfig {
 	weight: number;
 	apiKeyName?: string;
 	apiKey?: string;
+	/** Optional aggregator URL for committee mode. When provided, the SDK will use this URL instead of fetching individual committee member servers. */
+	aggregatorUrl?: string;
 }
 
 export interface SealClientOptions extends SealClientExtensionOptions {

packages/seal/test/unit/aggregator.test.ts

@@ -0,0 +1,94 @@
+// Copyright (c) Mysten Labs, Inc.
+// SPDX-License-Identifier: Apache-2.0
+
+import { fromHex } from '@mysten/bcs';
+import { Ed25519Keypair } from '@mysten/sui/keypairs/ed25519';
+import { Transaction } from '@mysten/sui/transactions';
+import { getFullnodeUrl, SuiClient } from '@mysten/sui/client';
+import { describe, it, expect } from 'vitest';
+
+import { SealClient } from '../../src/client.js';
+import { SessionKey } from '../../src/session-key.js';
+
+/**
+ * Committee Aggregator Integration Tests
+ *
+ * These tests require a running aggregator server and committee key servers.
+ * To start the servers, run from the seal repository root:
+ *
+ *   cd /path/to/seal
+ *   bash scripts/start-committee-servers.sh
+ *
+ * This will start:
+ * - 3 committee key servers on ports 2024, 2025, 2026
+ * - 1 aggregator server on port 2027
+ *
+ * To run these tests:
+ *   pnpm test test/unit/aggregator.test.ts
+ */
+describe('Committee Aggregator Tests', () => {
+	it('[committee aggregator] encrypt and decrypt through aggregator', { timeout: 12000 }, async () => {
+		// Committee key server configuration
+		const COMMITTEE_KEY_SERVER_OBJ_ID = '0x56eee177d0e3d544354616610d3e06edd65a10f47f0056d111e4d241d70c1969';
+		const AGGREGATOR_URL = 'http://localhost:2027';
+		const PACKAGE_ID = '0x58dce5d91278bceb65d44666ffa225ab397fc3ae9d8398c8c779c5530bd978c2'; // Testnet package with account_based policy
+
+		// Generate fresh keypair for this test (sui address can be any keypair)
+		const testKeypair = Ed25519Keypair.generate();
+		const testAddress = testKeypair.getPublicKey().toSuiAddress();
+
+		const testData = crypto.getRandomValues(new Uint8Array(100));
+
+		// Create a fresh Sui client for this test
+		const suiClient = new SuiClient({ url: getFullnodeUrl('testnet') });
+
+		// Create Seal client with aggregator URL
+		const client = new SealClient({
+			suiClient,
+			serverConfigs: [
+				{
+					objectId: COMMITTEE_KEY_SERVER_OBJ_ID,
+					weight: 1,
+					aggregatorUrl: AGGREGATOR_URL,
+				},
+			],
+			verifyKeyServers: false, // Skip /service verification for aggregator
+		});
+
+		// Encrypt data using committee public key (use account_based policy)
+		const { encryptedObject: encryptedBytes} = await client.encrypt({
+			threshold: 1, // Committee threshold
+			packageId: PACKAGE_ID,
+			id: testAddress,
+			data: testData,
+		});
+
+		// Create session key
+		const sessionKey = await SessionKey.create({
+			address: testAddress,
+			packageId: PACKAGE_ID,
+			ttlMin: 10,
+			signer: testKeypair,
+			suiClient,
+		});
+
+		// Build transaction (account_based policy)
+		const tx = new Transaction();
+		const keyIdArg = tx.pure.vector('u8', fromHex(testAddress));
+		tx.moveCall({
+			target: `${PACKAGE_ID}::account_based::seal_approve`,
+			arguments: [keyIdArg],
+		});
+		const txBytes = await tx.build({ client: suiClient, onlyTransactionKind: true });
+
+		// Decrypt data through aggregator
+		const decryptedData = await client.decrypt({
+			data: encryptedBytes,
+			sessionKey,
+			txBytes,
+		});
+
+		// Verify decrypted data matches original
+		expect(decryptedData).toEqual(testData);
+	});
+});