docs: add docs for starknet-signers (#638)

xJonathanLEI · web-flow · commit 47265350e262 · 2024-07-29T13:37:55.000+08:00
diff --git a/starknet-signers/src/key_pair.rs b/starknet-signers/src/key_pair.rs
@@ -6,23 +6,29 @@ use starknet_core::{
 };
 use starknet_crypto::get_public_key;
 
+/// A ECDSA signing (private) key on the STARK curve.
 #[derive(Debug, Clone)]
 pub struct SigningKey {
     secret_scalar: Felt,
 }
 
+/// A ECDSA verifying (public) key on the STARK curve.
 #[derive(Debug, Clone)]
 pub struct VerifyingKey {
     scalar: Felt,
 }
 
+/// Errors using an encrypted JSON keystore.
 #[cfg(not(target_arch = "wasm32"))]
 #[derive(Debug, thiserror::Error)]
 pub enum KeystoreError {
+    /// The file path is invalid.
     #[error("invalid path")]
     InvalidPath,
+    /// The decrypted secret scalar is not a valid private key.
     #[error("invalid decrypted secret scalar")]
     InvalidScalar,
+    /// Upstream `eth-keystore` error propagated.
     #[error(transparent)]
     Inner(eth_keystore::KeystoreError),
 }
@@ -47,6 +53,7 @@ impl SigningKey {
         Self { secret_scalar }
     }
 
+    /// Constructs [`SigningKey`] directly from a secret scalar.
     pub const fn from_secret_scalar(secret_scalar: Felt) -> Self {
         Self { secret_scalar }
     }
@@ -92,28 +99,35 @@ impl SigningKey {
         Ok(())
     }
 
+    /// Gets the secret scalar in the signing key.
     pub const fn secret_scalar(&self) -> Felt {
         self.secret_scalar
     }
 
+    /// Derives the verifying (public) key that corresponds to the signing key.
     pub fn verifying_key(&self) -> VerifyingKey {
         VerifyingKey::from_scalar(get_public_key(&self.secret_scalar))
     }
 
+    /// Signs a raw hash using ECDSA for a signature.
     pub fn sign(&self, hash: &Felt) -> Result<Signature, EcdsaSignError> {
         ecdsa_sign(&self.secret_scalar, hash).map(|sig| sig.into())
     }
 }
 
 impl VerifyingKey {
+    /// Constructs [`VerifyingKey`] directly from a scalar.
     pub const fn from_scalar(scalar: Felt) -> Self {
         Self { scalar }
     }
 
+    /// Gets the scalar in the verifying key.
     pub const fn scalar(&self) -> Felt {
         self.scalar
     }
 
+    /// Verifies that an ECDSA signature is valid for the verifying key against a certain message
+    /// hash.
     pub fn verify(&self, hash: &Felt, signature: &Signature) -> Result<bool, EcdsaVerifyError> {
         ecdsa_verify(&self.scalar, hash, signature)
     }
diff --git a/starknet-signers/src/ledger.rs b/starknet-signers/src/ledger.rs
@@ -37,18 +37,29 @@ pub struct LedgerStarknetApp {
     transport: Ledger,
 }
 
+/// Errors using the Ledger hardware wallet.
 #[derive(Debug, thiserror::Error)]
 pub enum LedgerError {
+    /// The HD wallet derivation path is malformed or does not conform to EIP-2645.
     #[error("derivation path is empty, not prefixed with m/2645', or is not 6-level long")]
     InvalidDerivationPath,
+    /// Error communicating with the Ledger hardware device.
     #[error(transparent)]
     TransportError(coins_ledger::LedgerError),
+    /// An unknown response code is returned from the device.
     #[error("unknown response code from Ledger: {0}")]
     UnknownResponseCode(u16),
+    /// The response code returned from the device does not indicate success.
     #[error("failed Ledger request: {0}")]
     UnsuccessfulRequest(APDUResponseCodes),
+    /// The response has an unexpected size.
     #[error("unexpected response length - expected: {expected}; actual: {actual}")]
-    UnexpectedResponseLength { expected: usize, actual: usize },
+    UnexpectedResponseLength {
+        /// The expected response size.
+        expected: usize,
+        /// The actual response size.
+        actual: usize,
+    },
 }
 
 /// The `GetPubKey` Ledger command.
diff --git a/starknet-signers/src/lib.rs b/starknet-signers/src/lib.rs
@@ -1,3 +1,7 @@
+//! Starknet signer interface and common implementations.
+
+#![deny(missing_docs)]
+
 mod key_pair;
 pub use key_pair::{SigningKey, VerifyingKey};
 
@@ -7,13 +11,17 @@ pub use key_pair::KeystoreError;
 mod signer;
 pub use signer::Signer;
 
+/// Module containing types related to the use of a simple in-memory signer.
 pub mod local_wallet;
 pub use local_wallet::LocalWallet;
 
+/// Module containing types related to the Ledger hardware wallet.
 #[cfg(feature = "ledger")]
 pub mod ledger;
 #[cfg(feature = "ledger")]
 pub use ledger::{DerivationPath, LedgerError, LedgerSigner};
 
+/// An error type that indicates an error cannot possibly occur. Used as placeholder where
+/// [`Result`] is expected.
 #[derive(Debug, thiserror::Error)]
 pub enum Infallible {}
diff --git a/starknet-signers/src/local_wallet.rs b/starknet-signers/src/local_wallet.rs
@@ -6,18 +6,23 @@ use starknet_core::{
     types::Felt,
 };
 
+/// A signer that simply holds the signing (private) key in memory for performing cryptographic
+/// operations. It's recommended to use hardware-based signers for use cases involving real value.
 #[derive(Debug, Clone)]
 pub struct LocalWallet {
     private_key: SigningKey,
 }
 
+/// Errors using [`LocalWallet`].
 #[derive(Debug, thiserror::Error)]
 pub enum SignError {
+    /// ECDSA signature error.
     #[error(transparent)]
     EcdsaSignError(EcdsaSignError),
 }
 
 impl LocalWallet {
+    /// Constructs [`LocalWallet`] from a [`SigningKey`].
     pub fn from_signing_key(key: SigningKey) -> Self {
         key.into()
     }
diff --git a/starknet-signers/src/signer.rs b/starknet-signers/src/signer.rs
@@ -5,15 +5,29 @@ use auto_impl::auto_impl;
 use starknet_core::{crypto::Signature, types::Felt};
 use std::error::Error;
 
+/// Any signer that can provide a public key as [`Felt`], and sign a raw hash for a signature
+/// encoded as [`Vec<Felt>`].
 #[cfg_attr(not(target_arch = "wasm32"), async_trait)]
 #[cfg_attr(target_arch = "wasm32", async_trait(?Send))]
 #[auto_impl(&, Box, Arc)]
 pub trait Signer {
+    /// Possible errors for calling [`get_public_key`](fn.get_public_key).
     type GetPublicKeyError: Error + Send + Sync;
+    /// Possible errors for calling [`sign`](fn.sign).
     type SignError: Error + Send + Sync;
 
+    /// Retrieves the verifying (public) key from the signer.
     async fn get_public_key(&self) -> Result<VerifyingKey, Self::GetPublicKeyError>;
 
+    /// Requests an ECDSA signature for a message hash.
+    ///
+    /// Signing a raw hash is known as "blind signing". For interactive signers (e.g. hardware
+    /// wallets) that can theoretically provide better security properties via "clear signing",
+    /// using blind signing is bad practice.
+    ///
+    /// However, as of this writing, no actual interactive signer implementation offers clear
+    /// signing. When this changes in the future, this trait shall be altered to allow such clear
+    /// signing capabilities.
     async fn sign_hash(&self, hash: &Felt) -> Result<Signature, Self::SignError>;
 
     /// Whether the underlying signer implementation is interactive, such as a hardware wallet.

Original file line number	Diff line number	Diff line change
`@@ -6,23 +6,29 @@ use starknet_core::{`
`6`	`6`	`};`
`7`	`7`	`use starknet_crypto::get_public_key;`
`8`	`8`
	`9`	`+/// A ECDSA signing (private) key on the STARK curve.`
`9`	`10`	`#[derive(Debug, Clone)]`
`10`	`11`	`pub struct SigningKey {`
`11`	`12`	`secret_scalar: Felt,`
`12`	`13`	`}`
`13`	`14`
	`15`	`+/// A ECDSA verifying (public) key on the STARK curve.`
`14`	`16`	`#[derive(Debug, Clone)]`
`15`	`17`	`pub struct VerifyingKey {`
`16`	`18`	`scalar: Felt,`
`17`	`19`	`}`
`18`	`20`
	`21`	`+/// Errors using an encrypted JSON keystore.`
`19`	`22`	`#[cfg(not(target_arch = "wasm32"))]`
`20`	`23`	`#[derive(Debug, thiserror::Error)]`
`21`	`24`	`pub enum KeystoreError {`
	`25`	`+ /// The file path is invalid.`
`22`	`26`	`#[error("invalid path")]`
`23`	`27`	`InvalidPath,`
	`28`	`+ /// The decrypted secret scalar is not a valid private key.`
`24`	`29`	`#[error("invalid decrypted secret scalar")]`
`25`	`30`	`InvalidScalar,`
	`31`	+ /// Upstream `eth-keystore` error propagated.
`26`	`32`	`#[error(transparent)]`
`27`	`33`	`Inner(eth_keystore::KeystoreError),`
`28`	`34`	`}`
`@@ -47,6 +53,7 @@ impl SigningKey {`
`47`	`53`	`Self { secret_scalar }`
`48`	`54`	`}`
`49`	`55`
	`56`	+ /// Constructs [`SigningKey`] directly from a secret scalar.
`50`	`57`	`pub const fn from_secret_scalar(secret_scalar: Felt) -> Self {`
`51`	`58`	`Self { secret_scalar }`
`52`	`59`	`}`
`@@ -92,28 +99,35 @@ impl SigningKey {`
`92`	`99`	`Ok(())`
`93`	`100`	`}`
`94`	`101`
	`102`	`+ /// Gets the secret scalar in the signing key.`
`95`	`103`	`pub const fn secret_scalar(&self) -> Felt {`
`96`	`104`	`self.secret_scalar`
`97`	`105`	`}`
`98`	`106`
	`107`	`+ /// Derives the verifying (public) key that corresponds to the signing key.`
`99`	`108`	`pub fn verifying_key(&self) -> VerifyingKey {`
`100`	`109`	`VerifyingKey::from_scalar(get_public_key(&self.secret_scalar))`
`101`	`110`	`}`
`102`	`111`
	`112`	`+ /// Signs a raw hash using ECDSA for a signature.`
`103`	`113`	`pub fn sign(&self, hash: &Felt) -> Result<Signature, EcdsaSignError> {`
`104`	`114`	`ecdsa_sign(&self.secret_scalar, hash).map(\|sig\| sig.into())`
`105`	`115`	`}`
`106`	`116`	`}`
`107`	`117`
`108`	`118`	`impl VerifyingKey {`
	`119`	+ /// Constructs [`VerifyingKey`] directly from a scalar.
`109`	`120`	`pub const fn from_scalar(scalar: Felt) -> Self {`
`110`	`121`	`Self { scalar }`
`111`	`122`	`}`
`112`	`123`
	`124`	`+ /// Gets the scalar in the verifying key.`
`113`	`125`	`pub const fn scalar(&self) -> Felt {`
`114`	`126`	`self.scalar`
`115`	`127`	`}`
`116`	`128`
	`129`	`+ /// Verifies that an ECDSA signature is valid for the verifying key against a certain message`
	`130`	`+ /// hash.`
`117`	`131`	`pub fn verify(&self, hash: &Felt, signature: &Signature) -> Result<bool, EcdsaVerifyError> {`
`118`	`132`	`ecdsa_verify(&self.scalar, hash, signature)`
`119`	`133`	`}`