signr

package
v1.4.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 15, 2024 License: CC0-1.0 Imports: 31 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	// strings used in signature prefix and other places
	AppName                  = "signr"
	ProtocolVersion          = "0"
	DefaultHashFunction      = "SHA256"
	SchnorrSignatures        = "SCHNORR"
	BitcoinCompactSignatures = "ECDSA"
)
View Source 
const (
	// filename extensions found in app data directory
	ConfigExt  = "yaml"
	DeletedExt = "del"
	ConfigName = "config"
	PubExt     = "pub"
)
View Source 
const (
	// expected filesystem permissions/masks
	DataDirPerm    os.FileMode = 0700
	ConfigFilePerm os.FileMode = 0600
	KeyFilePerm    os.FileMode = 0400
	DataFileMask   os.FileMode = 0077
)
View Source 
const (
	PositionBeginning = iota
	PositionContains
	PositionEnding
)
View Source 
const PassPrompt = "type password to use for secret key (press enter for none): "
View Source 
const (
	PasswordEntryViaTTY = iota
)
View Source 
const UnlockPrompt = "type password to unlock encrypted secret key"

Variables

View Source 
var FullSigPrefix = strings.Join(GetDefaultSigningStrings(), "_")
View Source 
var SigTypes = []string{SchnorrSignatures, BitcoinCompactSignatures}

SigTypes are the available signature algorithms

Functions

func ArgonKey 

func ArgonKey(pass []byte) []byte

ArgonKey hash grinds the input password string to derive the actual encryption key used on the secret key.

func CheckFileExists 

func CheckFileExists(name string) (fi os.FileInfo, exists bool, err error)

func FormatSig 

func FormatSig(signingStrings []string, sig *schnorr.Signature) (str string,
	err error)

FormatSig takes a slice of signing strings and stitches them together with underscores, and snips off the hash and replaces it with the provided signature.

func GetDefaultSigningStrings 

func GetDefaultSigningStrings(sigType ...SigID) (signingStrings []string)

GetDefaultSigningStrings returns a slice of strings that forms the prefix of a signature/signing material block.

sigType is used to optionally switch to ECDSA bitcoin transaction signatures to enable the use case of signing PBSTs for on-chain transactions such as anchoring hashes for a chain-bound protocol.

func Hash 

func Hash(filename string) (sum []byte, wasHash bool, err error)

Hash accepts a filename, interpreting "-" to mean to read from stdin, and computes the sha256 hash of the file, or if the text is a 64 character long string that parses to hex, just decodes it and returns the decoded bytes.

func Newline 

func Newline()

func WipeString 

func WipeString(str *string)

func Zero 

func Zero(bytes []byte)

Types

type Position 

type Position int

type Result added in v1.3.5 

type Result struct {
	// contains filtered or unexported fields
}

type SigID 

type SigID int
const (
	// Signature type identifiers
	SchnorrType SigID = iota
	BTCType
)

type Signr 

type Signr struct {
	DataDir       string
	CfgFile       string
	DefaultKey    string
	Verbose       atomic.Bool
	Color         atomic.Bool
	PassEntryType int
}

Signr stores the configuration for signr.

func Init 

func Init(passEntryType int) (s *Signr, err error)

Init sets up the data directory if it doesn't exist, checks the permissions of the directory and configuration file.

Applications consuming this library can use alternative password input methods or use their own and pass the value via environment variables when calling the CLI.

func (*Signr) AddCustom 

func (s *Signr) AddCustom(ss []string,
	Custom string) (signingStrings []string)

AddCustom string to the signature string for namespacing purposes.

func (*Signr) Delete 

func (s *Signr) Delete(name string) (err error)

func (*Signr) DeriveAndCheckKey 

func (s *Signr) DeriveAndCheckKey(name string,
	secret, pass []byte) (sec *secp.SecretKey, err error)

func (*Signr) Equal 

func (s *Signr) Equal(first, second []byte) (same bool)

func (*Signr) Err 

func (s *Signr) Err(format string, a ...interface{})

Err prints an error message, adds some color if enabled.

func (*Signr) Fatal 

func (s *Signr) Fatal(format string, a ...interface{})

Fatal prints an error and then terminates the program.

func (*Signr) GenKeyPair 

func (s *Signr) GenKeyPair() (sec *secp.SecretKey,
	pub *secp.PublicKey, err error)

GenKeyPair creates a fresh new key pair using the entropy source used by crypto/rand (ie, /dev/random on posix systems).

func (*Signr) Generate 

func (s *Signr) Generate() (err error)

func (*Signr) GetAnchor 

func (s *Signr) GetAnchor(args []string, pass, custom string) (WIF,
	NPUB, MERKLE, NSIG string, err error)

func (*Signr) GetCfgFilename 

func (s *Signr) GetCfgFilename() string

func (*Signr) GetKey 

func (s *Signr) GetKey(name, passStr string) (secKey *secp.SecretKey,
	err error)

GetKey scans the keychain for a named key, with optional password string to decrypt the key in the file in the keychain.

func (*Signr) GetKeyPairNames 

func (s *Signr) GetKeyPairNames() (list []string, err error)

func (*Signr) GetList 

func (s *Signr) GetList(g [][]string) (grid [][]string,
	encrypted map[string]struct{}, err error)

func (*Signr) GetNonceHex 

func (s *Signr) GetNonceHex() (nonceHex string, err error)

GetNonceHex returns a random 16 charater hexadecimal string derived from a 64 bit random value acquired through the system's strong entropy source.

func (*Signr) Import 

func (s *Signr) Import(secKey string) (err error)

func (*Signr) Info 

func (s *Signr) Info(format string, a ...interface{})

Info prints a message to stderr that won't be picked up by a standard simple pipe/redirection.

func (*Signr) Log 

func (s *Signr) Log(format string, a ...interface{})

Log prints if verbose is enabled, and adds some color if it is enabled.

func (*Signr) PasswordEntry 

func (s *Signr) PasswordEntry(prompt string, entryType int) (pass []byte,
	err error)

func (*Signr) ReadFile 

func (s *Signr) ReadFile(name string) (data []byte, err error)

func (*Signr) RecogniseSig 

func (s *Signr) RecogniseSig(possibleSig string) (sig *schnorr.Signature,
	pubKey, nonce string)

func (*Signr) Sanitize 

func (s *Signr) Sanitize(in string) (out string, err error)

Sanitize replaces all nonprintable characters with spaces, eliminates spaces more than 1 character in a row, removes leading and following spaces and finally replaces all remaining interstitial spaces with hyphens.

func (*Signr) Save 

func (s *Signr) Save(secret []byte, npub string) (err error)

func (*Signr) SecKeyInfo 

func (s *Signr) SecKeyInfo(name string) (bechSecKey, segwit2PubKey,
	segwit2Address, taprootPubKey, taprootAddress string, err error)

func (*Signr) SetDefault 

func (s *Signr) SetDefault(name string) (err error)

func (*Signr) Sign 

func (s *Signr) Sign(args []string, pass, custom string, asHex, sigOnly,
	noProtocol bool) (sigStr string, key *secp.SecretKey, err error)

Sign some data using a key.

By default the signature includes all of the prefix text that was also used to generate the hash to sign on, for namespacing, which follows the format: 

signr_0_SHA256_SCHNORR_

which is always present. After this can be a custom string, that is sanitised and all whitespaces between its characters are changed to hyphens, to provide namespacing for a custom protocol.

After this by default there is a random 64 bit nonce to ensure the signature is not applied to a repeating hash for the given protocol.

in all cases following this first 4 sections and optional nonce and custom namespace, is the public key of the secret key used to make the signature. This prevents any collisions being found between signatures generated by different secret keys.

Function arguments:

args are one or two, being a filename, a hex string of the hash of a file or blob of data, the second, optional args element is the name of the key in the keychain to use.

pass is the password to decrypt the default or specified private key being used.

custom is an extra custom namespace string that is cleaned of whitespaces and spaces replaced with hyphens, and inserted between the usual first 4 namespace fields and the nonce and/or public key.

asHex specifies to return the signature as 128 raw hex characters, rather than bech32 encoding with the HRP 'sig'.

sigOnly specifies to return only the signature and not the standard prefixed form. This is implicitly used if the first 'args' parameter is a 64 character long hash in hex format.

func (*Signr) Vanity 

func (s *Signr) Vanity(str string, where Position,
	threads int) (e error)

func (*Signr) Verify 

func (s *Signr) Verify(filename, sigOrSigFile, PubKey,
	Custom string) (valid bool, err error)

func (*Signr) VerifyAnchor 

func (s *Signr) VerifyAnchor(input, custom string) (valid bool, err error)

VerifyAnchor takes in the 3 elements found in an anchor transaction inscription, the NPUB, MERKLE and NSIG, encoded in hex as a single 256 character long hex string and splits it into its parts, and validates according to the supplied custom protocol string and signr signing material protocol.

func (*Signr) XOR 

func (s *Signr) XOR(dest, src []byte) []byte

XOR two same length slices of bytes.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.