Documentation ¶
Index ¶
- Variables
- func ArmorInfoBytes(bz []byte) string
- func ArmorPubKeyBytes(bz []byte) string
- func EncryptArmorPrivKey(privKey crypto.PrivKey, passphrase string) string
- func UnarmorDecryptPrivKey(armorStr string, passphrase string) (crypto.PrivKey, error)
- func UnarmorInfoBytes(armorStr string) (bz []byte, err error)
- func UnarmorPubKeyBytes(armorStr string) (bz []byte, err error)
Constants ¶
This section is empty.
Variables ¶
var BcryptSecurityParameter = 12
Make bcrypt security parameter var, so it can be changed within the lcd test Making the bcrypt security parameter a var shouldn't be a security issue: One can't verify an invalid key by maliciously changing the bcrypt parameter during a runtime vulnerability. The main security threat this then exposes would be something that changes this during runtime before the user creates their key. This vulnerability must succeed to update this to that same value before every subsequent call to gaiacli keys in future startups / or the attacker must get access to the filesystem. However, with a similar threat model (changing variables in runtime), one can cause the user to sign a different tx than what they see, which is a significantly cheaper attack then breaking a bcrypt hash. (Recall that the nonce still exists to break rainbow tables) For further notes on security parameter choice, see README.md
Functions ¶
func EncryptArmorPrivKey ¶
Encrypt and armor the private key.
func UnarmorDecryptPrivKey ¶
Unarmor and decrypt the private key.
func UnarmorInfoBytes ¶
Unarmor the InfoBytes
Types ¶
This section is empty.