zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
110 Commits
183 Branches
291 MiB
Tree: e9537b2da6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'e9537b2da6'
${ noResults }
tendermint/keys/cryptostore/holder.go

154 lines
4.1 KiB
Raw Normal View History

Import keystore logic from light-client
8 years ago
Add codec to keys.Manager, recovery test passes
8 years ago
Import keystore logic from light-client
8 years ago
Add codec to keys.Manager, recovery test passes
8 years ago
Import keystore logic from light-client
8 years ago
Add codec to keys.Manager, recovery test passes
8 years ago
Import keystore logic from light-client
8 years ago
Add codec to keys.Manager, recovery test passes
8 years ago
Import keystore logic from light-client
8 years ago
Expose new and list via cli
8 years ago
Import keystore logic from light-client
8 years ago
Set key algorithm on key creation
8 years ago
Updated Manager interface to return seed on create, fix server tests
8 years ago
Set key algorithm on key creation
8 years ago
Updated Manager interface to return seed on create, fix server tests
8 years ago
Set key algorithm on key creation
8 years ago
Add codec to keys.Manager, recovery test passes
8 years ago
Updated Manager interface to return seed on create, fix server tests
8 years ago
Add codec to keys.Manager, recovery test passes
8 years ago
Import keystore logic from light-client
8 years ago
Expose new and list via cli
8 years ago
Import keystore logic from light-client
8 years ago
Expose new and list via cli
8 years ago
Import keystore logic from light-client
8 years ago
 
  1. package cryptostore
  2. 

  3. import (
  4. 	"strings"
  5. 

  6. 	crypto "github.com/tendermint/go-crypto"
  7. 	keys "github.com/tendermint/go-crypto/keys"
  8. )
  9. 

  10. // Manager combines encyption and storage implementation to provide

  11. // a full-featured key manager

  12. type Manager struct {
  13. 	es    encryptedStorage
  14. 	codec keys.Codec
  15. }
  16. 

  17. func New(coder Encoder, store keys.Storage, codec keys.Codec) Manager {
  18. 	return Manager{
  19. 		es: encryptedStorage{
  20. 			coder: coder,
  21. 			store: store,
  22. 		},
  23. 		codec: codec,
  24. 	}
  25. }
  26. 

  27. // exists just to make sure we fulfill the Signer interface

  28. func (s Manager) assertSigner() keys.Signer {
  29. 	return s
  30. }
  31. 

  32. // exists just to make sure we fulfill the Manager interface

  33. func (s Manager) assertKeyManager() keys.Manager {
  34. 	return s
  35. }
  36. 

  37. // Create adds a new key to the storage engine, returning error if

  38. // another key already stored under this name

  39. //

  40. // algo must be a supported go-crypto algorithm:

  41. //

  42. func (s Manager) Create(name, passphrase, algo string) (keys.Info, string, error) {
  43. 	gen, err := getGenerator(algo)
  44. 	if err != nil {
  45. 		return keys.Info{}, "", err
  46. 	}
  47. 	key := gen.Generate()
  48. 	err = s.es.Put(name, passphrase, key)
  49. 	if err != nil {
  50. 		return keys.Info{}, "", err
  51. 	}
  52. 	seed, err := s.codec.BytesToWords(key.Bytes())
  53. 	phrase := strings.Join(seed, " ")
  54. 	return info(name, key), phrase, err
  55. }
  56. 

  57. func (s Manager) Recover(name, passphrase, seedphrase string) (keys.Info, error) {
  58. 	words := strings.Split(strings.TrimSpace(seedphrase), " ")
  59. 	data, err := s.codec.WordsToBytes(words)
  60. 	if err != nil {
  61. 		return keys.Info{}, err
  62. 	}
  63. 

  64. 	key, err := crypto.PrivKeyFromBytes(data)
  65. 	if err != nil {
  66. 		return keys.Info{}, err
  67. 	}
  68. 

  69. 	// d00d, it worked!  create the bugger....

  70. 	err = s.es.Put(name, passphrase, key)
  71. 	return info(name, key), err
  72. }
  73. 

  74. // List loads the keys from the storage and enforces alphabetical order

  75. func (s Manager) List() (keys.Infos, error) {
  76. 	res, err := s.es.List()
  77. 	res.Sort()
  78. 	return res, err
  79. }
  80. 

  81. // Get returns the public information about one key

  82. func (s Manager) Get(name string) (keys.Info, error) {
  83. 	_, info, err := s.es.store.Get(name)
  84. 	return info, err
  85. }
  86. 

  87. // Sign will modify the Signable in order to attach a valid signature with

  88. // this public key

  89. //

  90. // If no key for this name, or the passphrase doesn't match, returns an error

  91. func (s Manager) Sign(name, passphrase string, tx keys.Signable) error {
  92. 	key, _, err := s.es.Get(name, passphrase)
  93. 	if err != nil {
  94. 		return err
  95. 	}
  96. 	sig := key.Sign(tx.SignBytes())
  97. 	pubkey := key.PubKey()
  98. 	return tx.Sign(pubkey, sig)
  99. }
  100. 

  101. // Export decodes the private key with the current password, encodes

  102. // it with a secure one-time password and generates a sequence that can be

  103. // Imported by another Manager

  104. //

  105. // This is designed to copy from one device to another, or provide backups

  106. // during version updates.

  107. func (s Manager) Export(name, oldpass, transferpass string) ([]byte, error) {
  108. 	key, _, err := s.es.Get(name, oldpass)
  109. 	if err != nil {
  110. 		return nil, err
  111. 	}
  112. 

  113. 	res, err := s.es.coder.Encrypt(key, transferpass)
  114. 	return res, err
  115. }
  116. 

  117. // Import accepts bytes generated by Export along with the same transferpass

  118. // If they are valid, it stores the password under the given name with the

  119. // new passphrase.

  120. func (s Manager) Import(name, newpass, transferpass string, data []byte) error {
  121. 	key, err := s.es.coder.Decrypt(data, transferpass)
  122. 	if err != nil {
  123. 		return err
  124. 	}
  125. 

  126. 	return s.es.Put(name, newpass, key)
  127. }
  128. 

  129. // Delete removes key forever, but we must present the

  130. // proper passphrase before deleting it (for security)

  131. func (s Manager) Delete(name, passphrase string) error {
  132. 	// verify we have the proper password before deleting

  133. 	_, _, err := s.es.Get(name, passphrase)
  134. 	if err != nil {
  135. 		return err
  136. 	}
  137. 	return s.es.Delete(name)
  138. }
  139. 

  140. // Update changes the passphrase with which a already stored key is encoded.

  141. //

  142. // oldpass must be the current passphrase used for encoding, newpass will be

  143. // the only valid passphrase from this time forward

  144. func (s Manager) Update(name, oldpass, newpass string) error {
  145. 	key, _, err := s.es.Get(name, oldpass)
  146. 	if err != nil {
  147. 		return err
  148. 	}
  149. 

  150. 	// we must delete first, as Putting over an existing name returns an error

  151. 	s.Delete(name, oldpass)
  152. 

  153. 	return s.es.Put(name, newpass, key)
  154. }