crypto

package

v0.45.10 Latest Latest Go to latest Published: Sep 20, 2025 License: Apache-2.0 Imports: 11 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/panoptisDev/pano-cosmos

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
func DecodeArmor(armorStr string) (blockType string, headers map[string]string, data []byte, err error)
func DecryptSymmetric(ciphertext []byte, secret []byte) (plaintext []byte, err error)
func EncodeArmor(blockType string, headers map[string]string, data []byte) string
func EncryptArmorPrivKey(privKeyBytes []byte, passphrase string, algo string) string
func EncryptSymmetric(plaintext []byte, secret []byte) (ciphertext []byte)
func UnarmorDecryptPrivKey(armorStr string, passphrase string) (privKey []byte, algo string, err error)

Constants ¶

This section is empty.

Variables ¶

View Source

var BcryptSecurityParameter = 12

BcryptSecurityParameter is security parameter var, and it can be changed within the lcd test. Making the bcrypt security parameter a var shouldn't be a security issue: One can't verify an invalid key by maliciously changing the bcrypt parameter during a runtime vulnerability. The main security threat this then exposes would be something that changes this during runtime before the user creates their key. This vulnerability must succeed to update this to that same value before every subsequent call to the keys command in future startups / or the attacker must get access to the filesystem. However, with a similar threat model (changing variables in runtime), one can cause the user to sign a different tx than what they see, which is a significantly cheaper attack then breaking a bcrypt hash. (Recall that the nonce still exists to break rainbow tables) For further notes on security parameter choice, see README.md

Functions ¶

func DecodeArmor ¶

func DecodeArmor(armorStr string) (blockType string, headers map[string]string, data []byte, err error)

func DecryptSymmetric ¶

func DecryptSymmetric(ciphertext []byte, secret []byte) (plaintext []byte, err error)

secret must be 32 bytes long. Use something like Sha256(Bcrypt(passphrase)) The ciphertext is (secretbox.Overhead + 24) bytes longer than the plaintext.

func EncodeArmor ¶

func EncodeArmor(blockType string, headers map[string]string, data []byte) string

func EncryptArmorPrivKey ¶

func EncryptArmorPrivKey(privKeyBytes []byte, passphrase string, algo string) string

Encrypt and armor the private key.

func EncryptSymmetric ¶

func EncryptSymmetric(plaintext []byte, secret []byte) (ciphertext []byte)

secret must be 32 bytes long. Use something like Sha256(Bcrypt(passphrase)) The ciphertext is (secretbox.Overhead + 24) bytes longer than the plaintext.

func UnarmorDecryptPrivKey ¶

func UnarmorDecryptPrivKey(armorStr string, passphrase string) (privKey []byte, algo string, err error)

UnarmorDecryptPrivKey returns the privkey byte slice, a string of the algo type, and an error

Types ¶

This section is empty.

Source Files ¶

View all Source files

armor.go

Directories ¶

Path	Synopsis
codec
hd Package hd provides support for hierarchical deterministic wallets generation and derivation.	Package hd provides support for hierarchical deterministic wallets generation and derivation.
keyring Package keys provides common key management API.	Package keys provides common key management API.
keys
ed25519
internal/benchmarking
internal/ecdsa Package ECDSA implements Cosmos-SDK compatible ECDSA public and private key.	Package ECDSA implements Cosmos-SDK compatible ECDSA public and private key.
multisig
secp256k1
secp256k1/internal/secp256k1 Package secp256k1 wraps the bitcoin secp256k1 C library.	Package secp256k1 wraps the bitcoin secp256k1 C library.
secp256r1 Package secp256r1 implements Cosmos-SDK compatible ECDSA public and private key.	Package secp256r1 implements Cosmos-SDK compatible ECDSA public and private key.
sr25519
ledger
types
multisig
utils

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL