Safe Haskell	Safe-Inferred
Language	Haskell2010

Cardano.Crypto.WalletHD.Encrypted

Contents

Types
Construction & validation
Passphrase operations
Signing & derivation
Accessors
Test helpers

Description

Keys are stored as CBOR-encoded v2 envelopes: a random 32-byte salt and 24-byte nonce, Argon2id-derived 32-byte wrapping key, and the 64-byte extended secret key encrypted with XChaCha20-Poly1305. The public key and chain code are bound as AEAD additional data so they cannot be silently swapped without detection.

The plaintext secret key is held exclusively in sodium_malloc'd memory (MLockedSizedBytes) which is locked against swapping and is never moved by the GC. All public operations are in IO; callers must mlsbFinalize any MLockedSizedBytes they receive when done with it.

Synopsis

data EncryptedKey
data XPrvFormat
- = LegacyV1
- | EnvelopeV2
data XPrvError
- = XPrvDecodeError
- | XPrvUnsupportedVersion
- | XPrvUnsupportedKdf
- | XPrvUnsupportedCipher
- | XPrvInvalidKdfParams
- | XPrvInvalidSaltLength
- | XPrvInvalidNonceLength
- | XPrvInvalidTagLength
- | XPrvInvalidCiphertextLength
- | XPrvAuthenticationFailed
- | XPrvInvalidSecretKey
- | XPrvInvalidPublicKey
- | XPrvInvalidChainCode
- | XPrvPublicKeyMismatch
- | XPrvInternalError
newtype Signature = Signature ByteString
data DerivationScheme
- = DerivationScheme1
- | DerivationScheme2
type DerivationIndex = Word32
encryptedCreate ∷ (ByteArrayAccess passphrase, ByteArrayAccess secret, ByteArrayAccess cc) ⇒ secret → passphrase → cc → IO (Either XPrvError EncryptedKey)
encryptedCreateDirectWithTweak ∷ (ByteArrayAccess passphrase, ByteArrayAccess secret) ⇒ secret → passphrase → IO (Either XPrvError EncryptedKey)
encryptedKey ∷ ByteString → Either XPrvError EncryptedKey
unEncryptedKey ∷ EncryptedKey → ByteString
encryptedKeyFormat ∷ EncryptedKey → XPrvFormat
encryptedValidatePassphrase ∷ ByteArrayAccess passphrase ⇒ EncryptedKey → passphrase → IO (Either XPrvError ())
encryptedChangePass ∷ (ByteArrayAccess oldPassPhrase, ByteArrayAccess newPassPhrase) ⇒ oldPassPhrase → newPassPhrase → EncryptedKey → IO (Either XPrvError EncryptedKey)
encryptedSign ∷ (ByteArrayAccess passphrase, ByteArrayAccess msg) ⇒ EncryptedKey → passphrase → msg → IO (Either XPrvError Signature)
encryptedDerivePrivate ∷ ByteArrayAccess passphrase ⇒ DerivationScheme → EncryptedKey → passphrase → DerivationIndex → IO (Either XPrvError EncryptedKey)
encryptedDerivePublic ∷ DerivationScheme → (PublicKey, ChainCode) → DerivationIndex → (PublicKey, ChainCode)
encryptedPublic ∷ EncryptedKey → ByteString
encryptedChainCode ∷ EncryptedKey → ByteString
encryptedKeyMaterial ∷ ByteArrayAccess passphrase ⇒ EncryptedKey → passphrase → IO (Either XPrvError (MLockedSizedBytes 64))
withFastKdfForTesting ∷ IO a → IO a
withDeterministicRandomnessForTesting ∷ IO a → IO a

Types

data EncryptedKey Source #

Instances

Instances details

Show EncryptedKey Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods showsPrec ∷ Int → EncryptedKey → ShowS # show ∷ EncryptedKey → String # showList ∷ [EncryptedKey] → ShowS #
NFData EncryptedKey Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods rnf ∷ EncryptedKey → () #
Eq EncryptedKey Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods (==) ∷ EncryptedKey → EncryptedKey → Bool # (/=) ∷ EncryptedKey → EncryptedKey → Bool #
ByteArrayAccess EncryptedKey Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods length ∷ EncryptedKey → Int Source # withByteArray ∷ EncryptedKey → (Ptr p → IO a) → IO a Source # copyByteArrayToPtr ∷ EncryptedKey → Ptr p → IO () Source #

data XPrvFormat Source #

Constructors

LegacyV1
EnvelopeV2

Instances

Instances details

Show XPrvFormat Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods showsPrec ∷ Int → XPrvFormat → ShowS # show ∷ XPrvFormat → String # showList ∷ [XPrvFormat] → ShowS #
Eq XPrvFormat Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods (==) ∷ XPrvFormat → XPrvFormat → Bool # (/=) ∷ XPrvFormat → XPrvFormat → Bool #

data XPrvError Source #

Constructors

XPrvDecodeError
XPrvUnsupportedVersion
XPrvUnsupportedKdf
XPrvUnsupportedCipher
XPrvInvalidKdfParams
XPrvInvalidSaltLength
XPrvInvalidNonceLength
XPrvInvalidTagLength
XPrvInvalidCiphertextLength
XPrvAuthenticationFailed
XPrvInvalidSecretKey
XPrvInvalidPublicKey
XPrvInvalidChainCode
XPrvPublicKeyMismatch
XPrvInternalError

Instances

Instances details

Show XPrvError Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods showsPrec ∷ Int → XPrvError → ShowS # show ∷ XPrvError → String # showList ∷ [XPrvError] → ShowS #
Eq XPrvError Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods (==) ∷ XPrvError → XPrvError → Bool # (/=) ∷ XPrvError → XPrvError → Bool #

newtype Signature Source #

Constructors

Signature ByteString

Instances

Instances details

Show Signature Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods showsPrec ∷ Int → Signature → ShowS # show ∷ Signature → String # showList ∷ [Signature] → ShowS #
NFData Signature Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods rnf ∷ Signature → () #
Eq Signature Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods (==) ∷ Signature → Signature → Bool # (/=) ∷ Signature → Signature → Bool #

data DerivationScheme Source #

Constructors

DerivationScheme1
DerivationScheme2

Instances

Instances details

Bounded DerivationScheme Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods minBound ∷ DerivationScheme # maxBound ∷ DerivationScheme #
Enum DerivationScheme Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods succ ∷ DerivationScheme → DerivationScheme # pred ∷ DerivationScheme → DerivationScheme # toEnum ∷ Int → DerivationScheme # fromEnum ∷ DerivationScheme → Int # enumFrom ∷ DerivationScheme → [DerivationScheme] # enumFromThen ∷ DerivationScheme → DerivationScheme → [DerivationScheme] # enumFromTo ∷ DerivationScheme → DerivationScheme → [DerivationScheme] # enumFromThenTo ∷ DerivationScheme → DerivationScheme → DerivationScheme → [DerivationScheme] #
Show DerivationScheme Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods showsPrec ∷ Int → DerivationScheme → ShowS # show ∷ DerivationScheme → String # showList ∷ [DerivationScheme] → ShowS #
Eq DerivationScheme Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods (==) ∷ DerivationScheme → DerivationScheme → Bool # (/=) ∷ DerivationScheme → DerivationScheme → Bool #
Ord DerivationScheme Source #
Instance details Defined in Cardano.Crypto.WalletHD.Encrypted Methods compare ∷ DerivationScheme → DerivationScheme → Ordering # (<) ∷ DerivationScheme → DerivationScheme → Bool # (<=) ∷ DerivationScheme → DerivationScheme → Bool # (>) ∷ DerivationScheme → DerivationScheme → Bool # (>=) ∷ DerivationScheme → DerivationScheme → Bool # max ∷ DerivationScheme → DerivationScheme → DerivationScheme # min ∷ DerivationScheme → DerivationScheme → DerivationScheme #

type DerivationIndex = Word32 Source #

Construction & validation

encryptedCreate ∷ (ByteArrayAccess passphrase, ByteArrayAccess secret, ByteArrayAccess cc) ⇒ secret → passphrase → cc → IO (Either XPrvError EncryptedKey) Source #

encryptedCreateDirectWithTweak ∷ (ByteArrayAccess passphrase, ByteArrayAccess secret) ⇒ secret → passphrase → IO (Either XPrvError EncryptedKey) Source #

encryptedKey ∷ ByteString → Either XPrvError EncryptedKey Source #

unEncryptedKey ∷ EncryptedKey → ByteString Source #

encryptedKeyFormat ∷ EncryptedKey → XPrvFormat Source #

Passphrase operations

encryptedValidatePassphrase ∷ ByteArrayAccess passphrase ⇒ EncryptedKey → passphrase → IO (Either XPrvError ()) Source #

encryptedChangePass ∷ (ByteArrayAccess oldPassPhrase, ByteArrayAccess newPassPhrase) ⇒ oldPassPhrase → newPassPhrase → EncryptedKey → IO (Either XPrvError EncryptedKey) Source #

Signing & derivation

encryptedSign ∷ (ByteArrayAccess passphrase, ByteArrayAccess msg) ⇒ EncryptedKey → passphrase → msg → IO (Either XPrvError Signature) Source #

encryptedDerivePrivate ∷ ByteArrayAccess passphrase ⇒ DerivationScheme → EncryptedKey → passphrase → DerivationIndex → IO (Either XPrvError EncryptedKey) Source #

encryptedDerivePublic ∷ DerivationScheme → (PublicKey, ChainCode) → DerivationIndex → (PublicKey, ChainCode) Source #

Accessors

encryptedPublic ∷ EncryptedKey → ByteString Source #

encryptedChainCode ∷ EncryptedKey → ByteString Source #

encryptedKeyMaterial ∷ ByteArrayAccess passphrase ⇒ EncryptedKey → passphrase → IO (Either XPrvError (MLockedSizedBytes 64)) Source #

Decrypt a v2 EncryptedKey and return the 64-byte extended ed25519 scalar in locked memory. The caller must mlsbFinalize the result when done with it.

Test helpers

withFastKdfForTesting ∷ IO a → IO a Source #

Reduce Argon2id cost for fast tests while keeping all v2 envelope structure intact.

withDeterministicRandomnessForTesting ∷ IO a → IO a Source #

Replace system randomness with a deterministic counter for reproducible test output.