another security pass

Author: gregnazario

CHANGELOG.md

@@ -121,6 +121,10 @@ adheres to the format set out by [Keep a Changelog](https://keepachangelog.com/e
   - Enhanced main package docs with examples
   - Updated README with feature highlights and usage examples
   - Improved godoc comments for all public APIs
+  - Added doc.go files for all internal packages (bcs, crypto, http, types, util)
+  - Internal crypto package documents all key types, authentication schemes, and security considerations
+  - Internal BCS package documents serialization patterns and performance optimizations
+  - Internal HTTP package documents middleware composition patterns
 
 # v1.11.0 (9/26/2025)
 

v2/internal/bcs/doc.go

@@ -0,0 +1,73 @@
+// Package bcs implements Binary Canonical Serialization (BCS) for Aptos.
+//
+// BCS is the serialization format used by the Aptos blockchain for all on-chain data.
+// It is a deterministic, non-self-describing binary format that provides:
+//   - Canonical encoding (same data always produces same bytes)
+//   - Compact representation
+//   - Fast serialization/deserialization
+//
+// # Interface-based Serialization
+//
+// For fine-grained control, implement the Marshaler and Unmarshaler interfaces:
+//
+//	type MyStruct struct {
+//	    Value uint64
+//	    Name  string
+//	}
+//
+//	func (s *MyStruct) MarshalBCS(ser *Serializer) {
+//	    ser.U64(s.Value)
+//	    ser.WriteString(s.Name)
+//	}
+//
+//	func (s *MyStruct) UnmarshalBCS(des *Deserializer) {
+//	    s.Value = des.U64()
+//	    s.Name = des.ReadString()
+//	}
+//
+//	// Serialize
+//	data, err := bcs.Serialize(&myStruct)
+//
+//	// Deserialize
+//	var result MyStruct
+//	err := bcs.Deserialize(&result, data)
+//
+// # Reflection-based Serialization
+//
+// For convenience, use struct tags with Marshal/Unmarshal:
+//
+//	type MyStruct struct {
+//	    Value uint64 `bcs:"1"`
+//	    Name  string `bcs:"2"`
+//	}
+//
+//	data, err := bcs.Marshal(&myStruct)
+//	err := bcs.Unmarshal(data, &result)
+//
+// # Supported Types
+//
+// Primitives:
+//   - bool, uint8, uint16, uint32, uint64, int8, int16, int32, int64
+//   - *big.Int for U128/U256/I128/I256
+//   - string (UTF-8 with length prefix)
+//   - []byte (with length prefix)
+//
+// Composite types:
+//   - Structs (fields serialized in order)
+//   - Slices (length prefix + elements)
+//   - Maps (length prefix + key-value pairs, sorted by key)
+//   - Pointers (Option type: 0 for nil, 1 + value for non-nil)
+//
+// # Thread Safety
+//
+// Serializer and Deserializer are NOT thread-safe. Each goroutine should
+// use its own instance. The Serialize/Deserialize functions handle this
+// automatically using sync.Pool.
+//
+// # Performance
+//
+// The package uses several optimizations:
+//   - sync.Pool for Serializer reuse
+//   - Stack-allocated buffers for small integers
+//   - Zeroing of pooled buffers to prevent data leakage
+package bcs

v2/internal/crypto/doc.go

@@ -0,0 +1,75 @@
+// Package crypto provides cryptographic primitives for the Aptos blockchain.
+//
+// This internal package implements all cryptographic operations required by the SDK:
+//   - Key generation and management
+//   - Digital signatures
+//   - Authentication key derivation
+//   - BCS serialization of cryptographic types
+//
+// # Supported Key Types
+//
+// Ed25519:
+//   - Ed25519PrivateKey: Standard Ed25519 signing key
+//   - Ed25519PublicKey: Ed25519 verification key
+//   - Ed25519Signature: 64-byte Ed25519 signature
+//
+// Secp256k1:
+//   - Secp256k1PrivateKey: ECDSA signing key (Bitcoin-style)
+//   - Secp256k1PublicKey: Uncompressed public key (65 bytes)
+//   - Secp256k1Signature: ECDSA signature (r || s, 64 bytes)
+//
+// Secp256r1 (P-256):
+//   - Secp256r1PrivateKey: ECDSA signing key (WebAuthn-compatible)
+//   - Secp256r1PublicKey: Uncompressed public key (65 bytes)
+//   - Secp256r1Signature: ECDSA signature (r || s, 64 bytes)
+//
+// Post-Quantum:
+//   - SlhDsaPrivateKey: SPHINCS+ SLH-DSA-SHA2-128s signing key
+//   - SlhDsaPublicKey: SLH-DSA public key (32 bytes)
+//   - SlhDsaSignature: SLH-DSA signature (7856 bytes)
+//
+// # Authentication Schemes
+//
+// SingleKey (scheme 0x02):
+//   - AnyPublicKey wraps any supported key type
+//   - AnySignature wraps the corresponding signature type
+//   - Used for modern single-signer accounts
+//
+// MultiKey (scheme 0x03):
+//   - Combines multiple AnyPublicKey instances
+//   - K-of-N threshold signatures
+//   - Supports heterogeneous key types
+//
+// Legacy schemes:
+//   - Ed25519Scheme (0x00): Legacy Ed25519 accounts
+//   - MultiEd25519Scheme (0x01): Legacy multi-sig Ed25519
+//
+// # WebAuthn Support
+//
+// The package supports WebAuthn/Passkey authentication:
+//   - PartialAuthenticatorAssertionResponse: WebAuthn assertion
+//   - AssertionSignature: Wraps Secp256r1 signature
+//   - Verification of client data and authenticator data
+//
+// # Keyless Authentication
+//
+// Types for OIDC-based keyless accounts:
+//   - KeylessPublicKey: OIDC identity commitment
+//   - FederatedKeylessPublicKey: With JWK address
+//   - KeylessSignature: ZK proof or OpenID signature
+//
+// # Thread Safety
+//
+// Private key types (Ed25519PrivateKey, Secp256k1PrivateKey, Secp256r1PrivateKey)
+// are thread-safe. Cached public keys and authentication keys are protected by
+// sync.RWMutex using double-checked locking.
+//
+// Public key and signature types are immutable after creation and safe to share.
+//
+// # Security Considerations
+//
+//   - Private keys are redacted in String() methods to prevent accidental logging
+//   - Signature malleability is prevented by enforcing low-s values
+//   - WebAuthn uses constant-time comparison for challenge verification
+//   - All pooled resources clear sensitive data before reuse
+package crypto

v2/internal/http/doc.go

@@ -0,0 +1,70 @@
+// Package http provides HTTP client utilities for the Aptos SDK.
+//
+// This internal package provides composable HTTP client middleware:
+//   - Retry with exponential backoff
+//   - Rate limiting
+//   - Request/response logging
+//   - Custom header injection
+//   - Timeout management
+//
+// # HTTPDoer Interface
+//
+// All middleware implements the HTTPDoer interface:
+//
+//	type HTTPDoer interface {
+//	    Do(req *http.Request) (*http.Response, error)
+//	}
+//
+// This allows composing multiple middleware layers:
+//
+//	base := &http.Client{}
+//	withTimeout := NewTimeoutClient(base, 30*time.Second)
+//	withRetry := NewRetryClient(withTimeout, DefaultRetryConfig(), logger)
+//	withLogging := NewLoggingClient(withRetry, logger)
+//
+// # Retry Client
+//
+// RetryClient provides automatic retry with exponential backoff:
+//
+//	client := NewRetryClient(inner, RetryConfig{
+//	    MaxRetries:     3,
+//	    InitialBackoff: 100 * time.Millisecond,
+//	    MaxBackoff:     10 * time.Second,
+//	    Multiplier:     2.0,
+//	    Jitter:         0.1,
+//	    RetryableStatusCodes: []int{429, 500, 502, 503, 504},
+//	}, logger)
+//
+// Features:
+//   - Respects Retry-After headers
+//   - Configurable status codes to retry
+//   - Jitter to prevent thundering herd
+//   - Context cancellation support
+//
+// # Rate Limiter
+//
+// RateLimitedClient implements token bucket rate limiting:
+//
+//	client := NewRateLimitedClient(inner, 10.0, 20, logger)  // 10 req/s, burst 20
+//
+// # Header Client
+//
+// HeaderClient adds custom headers to all requests:
+//
+//	client := NewHeaderClient(inner, map[string]string{
+//	    "Authorization": "Bearer token",
+//	    "X-Custom":      "value",
+//	})
+//
+// # Timeout Client
+//
+// TimeoutClient applies a default timeout to requests without one:
+//
+//	client := NewTimeoutClient(inner, 30*time.Second)
+//
+// # Logging Client
+//
+// LoggingClient logs request/response details using slog:
+//
+//	client := NewLoggingClient(inner, slog.Default())
+package http

v2/internal/types/doc.go

@@ -0,0 +1,69 @@
+// Package types provides core type definitions for the Aptos Go SDK.
+//
+// This internal package defines fundamental types used throughout the SDK:
+//   - AccountAddress: 32-byte blockchain addresses
+//   - TypeTag: Move type system representation
+//
+// # AccountAddress
+//
+// AccountAddress represents a 32-byte address on the Aptos blockchain:
+//
+//	// Parse from string
+//	addr, err := types.ParseAddress("0x1")
+//	addr, err := types.ParseAddress("0x0000000000000000000000000000000000000000000000000000000000000001")
+//
+//	// Must-parse (panics on error, useful for constants)
+//	addr := types.MustParseAddress("0x1")
+//
+//	// String representation
+//	str := addr.String()       // "0x1" for special addresses, full hex otherwise
+//	str := addr.StringLong()   // Always full 64-char hex
+//	str := addr.StringShort()  // Minimal hex without leading zeros
+//
+// Special addresses (0x0 through 0xf) use short-form representation per AIP-40.
+//
+// # TypeTag
+//
+// TypeTag represents Move types for generic functions:
+//
+//	// Parse from string
+//	tag, err := types.ParseTypeTag("0x1::aptos_coin::AptosCoin")
+//	tag, err := types.ParseTypeTag("vector<u8>")
+//	tag, err := types.ParseTypeTag("0x1::coin::CoinStore<0x1::aptos_coin::AptosCoin>")
+//
+//	// Primitive types
+//	tag := types.TypeTagBool
+//	tag := types.TypeTagU64
+//	tag := types.TypeTagAddress
+//
+// # BCS Serialization
+//
+// All types implement BCS serialization:
+//
+//	// AccountAddress serializes as 32 fixed bytes
+//	data, err := bcs.Serialize(&addr)
+//
+//	// TypeTag serializes with variant prefix
+//	data, err := bcs.Serialize(&tag)
+//
+// # JSON Serialization
+//
+// Types support JSON for API interactions:
+//
+//	// AccountAddress marshals to quoted hex string
+//	data, _ := json.Marshal(addr)  // "\"0x1\""
+//
+//	// TypeTag marshals to string representation
+//	data, _ := json.Marshal(tag)   // "\"0x1::aptos_coin::AptosCoin\""
+//
+// # Thread Safety
+//
+// AccountAddress and TypeTag are immutable value types and safe to use
+// concurrently after creation.
+//
+// # Performance
+//
+// Address operations are optimized:
+//   - ParseAddress avoids allocations for odd-length hex
+//   - String() uses pre-computed table for special addresses (0x0-0xf)
+package types

v2/internal/util/doc.go

@@ -0,0 +1,67 @@
+// Package util provides internal helper functions for the Aptos Go SDK.
+//
+// This internal package contains utility functions used throughout the SDK:
+//   - Hash functions
+//   - Hex encoding/decoding
+//   - Type conversions
+//   - Buffer pooling
+//
+// # Hash Functions
+//
+// SHA3-256 hashing with pooled hashers for performance:
+//
+//	hash := util.Sha3256Hash([][]byte{data1, data2})
+//
+// The hasher pool reduces allocations in hot paths like signature verification
+// and authentication key derivation.
+//
+// # Hex Encoding
+//
+// Convert between bytes and hex strings:
+//
+//	// Encode with 0x prefix
+//	hex := util.BytesToHex(bytes)  // "0x..."
+//
+//	// Decode with optional 0x prefix
+//	bytes, err := util.ParseHex("0x1234")
+//	bytes, err := util.ParseHex("1234")
+//
+// BytesToHex is optimized to avoid intermediate allocations.
+//
+// # Type Conversions
+//
+// Safe integer conversions with bounds checking:
+//
+//	u8, err := util.IntToU8(255)     // OK
+//	u8, err := util.IntToU8(256)     // Error: out of range
+//
+//	u16, err := util.IntToU16(value)
+//	u32, err := util.IntToU32(value)
+//	u8, err := util.Uint32ToU8(value)
+//
+// String to number conversions:
+//
+//	n, err := util.StrToUint64("123")
+//	bigInt, err := util.StrToBigInt("123456789012345678901234567890")
+//
+// # Buffer Pools
+//
+// Reusable byte buffers for common sizes:
+//
+//	buf := util.GetBuffer32()
+//	defer util.PutBuffer32(buf)
+//	// Use (*buf)[:] for operations
+//
+//	buf := util.GetBuffer64()
+//	defer util.PutBuffer64(buf)
+//
+// Buffer pools:
+//   - Clear sensitive data before returning to pool
+//   - Validate both length AND capacity on return
+//   - Reject modified buffers to prevent data leakage
+//
+// # Thread Safety
+//
+// All functions in this package are thread-safe. Pooled resources use
+// sync.Pool which handles concurrent access.
+package util