core/go-blockchain
8
0
Fork 0
Code Issues 5 Pull requests Projects Releases Packages Wiki Activity Actions 2
go-blockchain/wallet/account.go

215 lines
6.6 KiB
Go
Raw Permalink Normal View History

feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
// Copyright (c) 2017-2026 Lethean (https://lt.hn)
//
// Licensed under the European Union Public Licence (EUPL) version 1.2.
// You may obtain a copy of the licence at:
//
// https://joinup.ec.europa.eu/software/page/eupl/licence-eupl
//
// SPDX-License-Identifier: EUPL-1.2
package wallet
import (
"crypto/aes"
"crypto/cipher"
"crypto/rand"
"encoding/hex"
"encoding/json"
"io"
refactor: migrate module path to dappco.re/go/core/blockchain Update go.mod module line, all require/replace directives, and every .go import path from forge.lthn.ai/core/go-blockchain to dappco.re/go/core/blockchain. Add replace directives to bridge dappco.re paths to existing forge.lthn.ai registry during migration. Update CLAUDE.md, README, and docs to reflect the new module path. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-22 01:49:26 +00:00
coreerr "dappco.re/go/core/log"
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
"golang.org/x/crypto/argon2"
refactor: migrate module path to dappco.re/go/core/blockchain Update go.mod module line, all require/replace directives, and every .go import path from forge.lthn.ai/core/go-blockchain to dappco.re/go/core/blockchain. Add replace directives to bridge dappco.re paths to existing forge.lthn.ai registry during migration. Update CLAUDE.md, README, and docs to reflect the new module path. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-22 01:49:26 +00:00
store "dappco.re/go/core/store"
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
fix(types): track decoded address prefixes Co-Authored-By: Charon <charon@lethean.io>
2026-04-04 22:46:12 +00:00
"dappco.re/go/core/blockchain/config"
refactor: migrate module path to dappco.re/go/core/blockchain Update go.mod module line, all require/replace directives, and every .go import path from forge.lthn.ai/core/go-blockchain to dappco.re/go/core/blockchain. Add replace directives to bridge dappco.re paths to existing forge.lthn.ai registry during migration. Update CLAUDE.md, README, and docs to reflect the new module path. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-22 01:49:26 +00:00
"dappco.re/go/core/blockchain/crypto"
"dappco.re/go/core/blockchain/types"
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
)
// Store group and key for the encrypted account blob.
const (
groupAccount = "wallet"
keyAccount = "account"
)
// Argon2id parameters for key derivation.
const (
argonTime = 3
argonMemory = 64 * 1024
argonThreads = 4
argonKeyLen = 32
)
// Encryption envelope sizes.
const (
saltLen = 16
nonceLen = 12
)
// Account holds the spend and view key pairs for a wallet. The spend secret
// key is the master key; the view secret key is deterministically derived as
// Keccak256(spend_secret_key), matching the C++ account_base::generate().
type Account struct {
SpendPublicKey types.PublicKey `json:"spend_public_key"`
SpendSecretKey types.SecretKey `json:"spend_secret_key"`
ViewPublicKey types.PublicKey `json:"view_public_key"`
ViewSecretKey types.SecretKey `json:"view_secret_key"`
chore: fmt.Errorf(static) → errors.New Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-24 16:11:27 +00:00
CreatedAt uint64 `json:"created_at"`
Flags uint8 `json:"flags"`
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
// GenerateAccount creates a new account with random spend keys and a
// deterministically derived view key pair.
func GenerateAccount() (*Account, error) {
spendPub, spendSec, err := crypto.GenerateKeys()
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("GenerateAccount", "wallet: generate spend keys", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
return accountFromSpendKey(spendSec, spendPub)
}
// RestoreFromSeed reconstructs an account from a 25-word mnemonic phrase.
// The spend secret is decoded from the phrase; all other keys are derived.
func RestoreFromSeed(phrase string) (*Account, error) {
key, err := MnemonicDecode(phrase)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("RestoreFromSeed", "wallet: restore from seed", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
spendPub, err := crypto.SecretToPublic(key)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("RestoreFromSeed", "wallet: spend pub from secret", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
return accountFromSpendKey(key, spendPub)
}
// RestoreViewOnly creates a view-only account that can scan incoming
// transactions but cannot spend. The spend secret key is left zeroed.
func RestoreViewOnly(viewSecret types.SecretKey, spendPublic types.PublicKey) (*Account, error) {
viewPub, err := crypto.SecretToPublic([32]byte(viewSecret))
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("RestoreViewOnly", "wallet: view pub from secret", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
return &Account{
SpendPublicKey: spendPublic,
ViewPublicKey: types.PublicKey(viewPub),
ViewSecretKey: viewSecret,
}, nil
}
// ToSeed encodes the spend secret key as a 25-word mnemonic phrase.
func (a *Account) ToSeed() (string, error) {
return MnemonicEncode(a.SpendSecretKey[:])
}
// Address returns the public address derived from the account's public keys.
func (a *Account) Address() types.Address {
return types.Address{
SpendPublicKey: a.SpendPublicKey,
ViewPublicKey: a.ViewPublicKey,
fix(types): track decoded address prefixes Co-Authored-By: Charon <charon@lethean.io>
2026-04-04 22:46:12 +00:00
Prefix: config.AddressPrefix,
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
}
// Save encrypts the account with Argon2id + AES-256-GCM and persists it to
// the given store. The stored blob layout is: salt (16) | nonce (12) | ciphertext.
func (a *Account) Save(s *store.Store, password string) error {
plaintext, err := json.Marshal(a)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return coreerr.E("Account.Save", "wallet: marshal account", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
salt := make([]byte, saltLen)
if _, err := io.ReadFull(rand.Reader, salt); err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return coreerr.E("Account.Save", "wallet: generate salt", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
derived := argon2.IDKey([]byte(password), salt, argonTime, argonMemory, argonThreads, argonKeyLen)
block, err := aes.NewCipher(derived)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return coreerr.E("Account.Save", "wallet: aes cipher", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
gcm, err := cipher.NewGCM(block)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return coreerr.E("Account.Save", "wallet: gcm", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
nonce := make([]byte, nonceLen)
if _, err := io.ReadFull(rand.Reader, nonce); err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return coreerr.E("Account.Save", "wallet: generate nonce", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
ciphertext := gcm.Seal(nil, nonce, plaintext, nil)
blob := make([]byte, 0, saltLen+nonceLen+len(ciphertext))
blob = append(blob, salt...)
blob = append(blob, nonce...)
blob = append(blob, ciphertext...)
return s.Set(groupAccount, keyAccount, hex.EncodeToString(blob))
}
// LoadAccount decrypts and returns the account stored in the given store.
// Returns an error if the password is incorrect or no account exists.
func LoadAccount(s *store.Store, password string) (*Account, error) {
encoded, err := s.Get(groupAccount, keyAccount)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("LoadAccount", "wallet: load account", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
blob, err := hex.DecodeString(encoded)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("LoadAccount", "wallet: decode account hex", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
if len(blob) < saltLen+nonceLen+1 {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("LoadAccount", "wallet: account data too short", nil)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
salt := blob[:saltLen]
nonce := blob[saltLen : saltLen+nonceLen]
ciphertext := blob[saltLen+nonceLen:]
derived := argon2.IDKey([]byte(password), salt, argonTime, argonMemory, argonThreads, argonKeyLen)
block, err := aes.NewCipher(derived)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("LoadAccount", "wallet: aes cipher", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
gcm, err := cipher.NewGCM(block)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("LoadAccount", "wallet: gcm", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
plaintext, err := gcm.Open(nil, nonce, ciphertext, nil)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("LoadAccount", "wallet: decrypt account", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
var acc Account
if err := json.Unmarshal(plaintext, &acc); err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("LoadAccount", "wallet: unmarshal account", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
return &acc, nil
}
// accountFromSpendKey derives the full key set from a spend key pair. The
// view secret is computed as sc_reduce32(Keccak256(spendSec)), matching the
// C++ account_base::generate() derivation.
func accountFromSpendKey(spendSec, spendPub [32]byte) (*Account, error) {
viewSec := crypto.FastHash(spendSec[:])
crypto.ScReduce32(&viewSec)
viewPub, err := crypto.SecretToPublic(viewSec)
if err != nil {
refactor: replace fmt.Errorf/os.* with go-io/go-log conventions Replace all fmt.Errorf and errors.New in production code with coreerr.E("Caller.Method", "message", err) from go-log. Replace os.MkdirAll with coreio.Local.EnsureDir from go-io. Sentinel errors (consensus/errors.go, wire/varint.go) intentionally kept as errors.New for errors.Is compatibility. 270 error call sites converted across 38 files. Test files untouched. crypto/ directory (CGO) untouched. Co-Authored-By: Virgil <virgil@lethean.io>
2026-03-16 21:16:34 +00:00
return nil, coreerr.E("accountFromSpendKey", "wallet: view pub from secret", err)
feat(wallet): account key management with Argon2id encryption GenerateAccount, RestoreFromSeed, RestoreViewOnly with deterministic view key derivation (sc_reduce32(Keccak256(spend_secret))), matching C++ account_base::generate(). Encrypted persistence via Argon2id (time=3, mem=64MB) + AES-256-GCM in go-store. Adds cn_sc_reduce32 to the CGo bridge for scalar reduction mod l, required to convert a hash output into a valid Ed25519 secret key. Co-Authored-By: Charon <charon@lethean.io>
2026-02-20 23:14:17 +00:00
}
return &Account{
SpendPublicKey: types.PublicKey(spendPub),
SpendSecretKey: types.SecretKey(spendSec),
ViewPublicKey: types.PublicKey(viewPub),
ViewSecretKey: types.SecretKey(viewSec),
}, nil
}
Reference in a new issue Copy permalink