d0938d817f
This commit implements a new secure, scalable, hierarchical deterministic
wallet address manager package.
The following is an overview of features:
- BIP0032 hierarchical deterministic keys
- BIP0043/BIP0044 multi-account hierarchy
- Strong focus on security:
- Fully encrypted database including public information such as
addresses as well as private information such as private keys and
scripts needed to redeem pay-to-script-hash transactions
- Hardened against memory scraping through the use of actively clearing
private material from memory when locked
- Different crypto keys used for public, private, and script data
- Ability for different passphrases for public and private data
- Scrypt-based key derivation
- NaCl-based secretbox cryptography (XSalsa20 and Poly1305)
- Multi-tier scalable key design to allow instant password changes
regardless of the number of addresses stored
- Import WIF keys
- Import pay-to-script-hash scripts for things such as multi-signature
transactions
- Ability to export a watching-only version which does not contain any
private key material
- Programmatically detectable errors, including encapsulation of errors
from packages it relies on
- Address synchronization capabilities
This commit only provides the implementation package. It does not
include integration into to the existing wallet code base or conversion of
existing addresses. That functionality will be provided by future
commits.
64 lines
2.3 KiB
Go
64 lines
2.3 KiB
Go
/*
|
|
* Copyright (c) 2014 Conformal Systems LLC <info@conformal.com>
|
|
*
|
|
* Permission to use, copy, modify, and distribute this software for any
|
|
* purpose with or without fee is hereby granted, provided that the above
|
|
* copyright notice and this permission notice appear in all copies.
|
|
*
|
|
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
|
|
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
|
|
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
|
|
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
|
|
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
|
|
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
|
|
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
|
|
*/
|
|
|
|
/*
|
|
This test file is part of the waddrmgr package rather than than the
|
|
waddrmgr_test package so it can bridge access to the internals to properly test
|
|
cases which are either not possible or can't reliably be tested via the public
|
|
interface. The functions are only exported while the tests are being run.
|
|
*/
|
|
|
|
package waddrmgr
|
|
|
|
import (
|
|
"github.com/conformal/btcwallet/snacl"
|
|
)
|
|
|
|
// TstMaxRecentHashes makes the unexported maxRecentHashes constant available
|
|
// when tests are run.
|
|
var TstMaxRecentHashes = maxRecentHashes
|
|
|
|
// TstSetScryptParams allows the scrypt parameters to be set to much lower
|
|
// values while the tests are running so they are faster.
|
|
func TstSetScryptParams(n, r, p int) {
|
|
scryptN = n
|
|
scryptR = r
|
|
scryptP = p
|
|
}
|
|
|
|
// TstReplaceNewSecretKeyFunc replaces the new secret key generation function
|
|
// with a version that intentionally fails.
|
|
func TstReplaceNewSecretKeyFunc() {
|
|
newSecretKey = func(passphrase *[]byte) (*snacl.SecretKey, error) {
|
|
return nil, snacl.ErrDecryptFailed
|
|
}
|
|
}
|
|
|
|
// TstResetNewSecretKeyFunc resets the new secret key generation function to the
|
|
// original version.
|
|
func TstResetNewSecretKeyFunc() {
|
|
newSecretKey = defaultNewSecretKey
|
|
}
|
|
|
|
// TstCheckPublicPassphrase return true if the provided public passphrase is
|
|
// correct for the manager.
|
|
func (m *Manager) TstCheckPublicPassphrase(pubPassphrase []byte) bool {
|
|
secretKey := snacl.SecretKey{Key: &snacl.CryptoKey{}}
|
|
secretKey.Parameters = m.masterKeyPub.Parameters
|
|
err := secretKey.DeriveKey(&pubPassphrase)
|
|
return err == nil
|
|
}
|