sol-safekey 0.1.7

A powerful command-line tool for secure Solana key management with Triple-Factor 2FA
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338

//! Complete Bot Integration Example
//!
//! This example demonstrates how to integrate sol-safekey into a trading bot.
//! It shows pure code integration without CLI - just straightforward function calls.
//!
//! Run with:
//!   cargo build --example complete_bot_example --features solana-ops --release
//!   echo "your_password" | ./build-cache/release/examples/complete_bot_example
//!
//! Or use the startup script:
//!   ./startup-example.sh

use sol_safekey::{KeyManager, solana_utils::*};
use solana_sdk::{signature::Keypair, signer::Signer};
use std::io::{self, BufRead};
use anyhow::{Result, Context};
use colored::Colorize;

const DEFAULT_WALLET_PATH: &str = "keystore.json";
const RPC_URL: &str = "https://api.devnet.solana.com";

/// Read password from stdin (supports both interactive and piped input)
fn read_password_from_stdin() -> Result<String> {
    if atty::is(atty::Stream::Stdin) {
        // Interactive mode - use rpassword for secure input
        print!("πŸ”‘ Enter wallet password: ");
        std::io::Write::flush(&mut std::io::stdout())?;
        let password = rpassword::read_password()
            .context("Failed to read password")?;
        return Ok(password);
    }

    // Piped mode - read from stdin (for startup.sh)
    let stdin = io::stdin();
    let password = stdin.lock()
        .lines()
        .next()
        .ok_or_else(|| anyhow::anyhow!("No password provided via stdin"))?
        .context("Failed to read password from stdin")?
        .trim()
        .to_string();

    if password.is_empty() {
        anyhow::bail!("Password cannot be empty");
    }

    Ok(password)
}

/// Ensure wallet is ready (create if doesn't exist, unlock if exists)
fn ensure_wallet(wallet_path: &str, password: &str) -> Result<Keypair> {
    if std::path::Path::new(wallet_path).exists() {
        println!("{} Wallet found: {}", "βœ…".green(), wallet_path);
        println!("{} Unlocking wallet...", "πŸ”“".cyan());

        // Read and decrypt wallet
        let json = std::fs::read_to_string(wallet_path)
            .context("Failed to read wallet file")?;

        let keypair = KeyManager::keypair_from_encrypted_json(&json, password)
            .map_err(|e| anyhow::anyhow!("Failed to unlock wallet: {}", e))?;

        println!("{} Wallet unlocked!", "βœ…".green());
        println!("πŸ“ Address: {}", keypair.pubkey().to_string().yellow());

        Ok(keypair)
    } else {
        println!("{} Wallet not found: {}", "⚠️".yellow(), wallet_path);
        println!("{} Creating new encrypted wallet...", "πŸ“".cyan());
        println!();

        // Generate new keypair
        let keypair = KeyManager::generate_keypair();
        println!("{} Generated new keypair", "πŸ”‘".cyan());
        println!("πŸ“ Address: {}", keypair.pubkey().to_string().yellow());

        // Encrypt and save
        let json = KeyManager::keypair_to_encrypted_json(&keypair, password)
            .map_err(|e| anyhow::anyhow!("Failed to encrypt wallet: {}", e))?;

        std::fs::write(wallet_path, json)
            .context("Failed to save wallet file")?;

        println!("{} Wallet saved to: {}", "πŸ’Ύ".green(), wallet_path);
        println!();

        println!("{} IMPORTANT: Backup your wallet file and remember your password!", "⚠️".yellow());
        println!("   Wallet file: {}", wallet_path);
        println!();

        Ok(keypair)
    }
}

/// Demo: Check SOL balance
fn check_balance(keypair: &Keypair, rpc_url: &str) -> Result<()> {
    println!("\n━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Checking Balance", "πŸ’°".cyan());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");

    let client = SolanaClient::new(rpc_url.to_string());
    let balance_lamports = client.get_sol_balance(&keypair.pubkey())?;
    let balance_sol = lamports_to_sol(balance_lamports);

    println!("Address: {}", keypair.pubkey().to_string().yellow());
    println!("Balance: {} SOL ({} lamports)",
        balance_sol.to_string().green().bold(),
        balance_lamports);

    if balance_lamports == 0 {
        println!();
        println!("{} Get devnet SOL:", "πŸ’‘".yellow());
        println!("   solana airdrop 2 {} --url devnet", keypair.pubkey());
    }

    Ok(())
}

/// Demo: Transfer SOL (shows how to do it, but doesn't actually execute)
fn demo_transfer(keypair: &Keypair, rpc_url: &str) -> Result<()> {
    println!("\n━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Transfer SOL Demo", "πŸ“€".cyan());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");

    let client = SolanaClient::new(rpc_url.to_string());
    let balance = client.get_sol_balance(&keypair.pubkey())?;

    if balance < 10_000_000 {  // 0.01 SOL
        println!("{} Insufficient balance for transfer demo (need 0.01 SOL)", "⚠️".yellow());
        println!("   Current balance: {} SOL", lamports_to_sol(balance));
        println!("   Please fund your wallet on devnet:");
        println!("   β†’ https://faucet.solana.com");
        println!("   β†’ solana airdrop 1 {}", keypair.pubkey());
        return Ok(());
    }

    println!("{} Sufficient balance for demo", "βœ…".green());
    println!();
    println!("Example code to transfer 0.001 SOL:");
    println!("{}", "─────────────────────────────────────".dimmed());
    println!("{}", "let recipient = Pubkey::from_str(\"<address>\")?;".yellow());
    println!("{}", "let lamports = 1_000_000; // 0.001 SOL".yellow());
    println!("{}", "let signature = client.transfer_sol(keypair, &recipient, lamports)?;".yellow());
    println!("{}", "println!(\"Signature: {}\", signature);".yellow());
    println!("{}", "─────────────────────────────────────".dimmed());

    Ok(())
}

/// Demo: Wrap SOL to WSOL
fn demo_wrap_sol(keypair: &Keypair, rpc_url: &str) -> Result<()> {
    println!("\n━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Wrap SOL to WSOL Demo", "🎁".cyan());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");

    let client = SolanaClient::new(rpc_url.to_string());
    let balance = client.get_sol_balance(&keypair.pubkey())?;

    if balance < 20_000_000 {  // 0.02 SOL
        println!("{} Insufficient balance for wrap demo (need 0.02 SOL)", "⚠️".yellow());
        println!("   Current balance: {} SOL", lamports_to_sol(balance));
        return Ok(());
    }

    println!("{} Sufficient balance for demo", "βœ…".green());
    println!();
    println!("Example code to wrap 0.01 SOL to WSOL:");
    println!("{}", "─────────────────────────────────────".dimmed());
    println!("{}", "let lamports = 10_000_000; // 0.01 SOL".yellow());
    println!("{}", "let signature = client.wrap_sol(keypair, lamports)?;".yellow());
    println!("{}", "println!(\"Wrapped SOL to WSOL: {}\", signature);".yellow());
    println!("{}", "─────────────────────────────────────".dimmed());

    Ok(())
}

/// Demo: Unwrap WSOL to SOL
fn demo_unwrap_sol(_keypair: &Keypair, _rpc_url: &str) -> Result<()> {
    println!("\n━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Unwrap WSOL to SOL Demo", "🎁".cyan());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");

    println!("Example code to unwrap all WSOL back to SOL:");
    println!("{}", "─────────────────────────────────────".dimmed());
    println!("{}", "let signature = client.unwrap_sol(keypair)?;".yellow());
    println!("{}", "println!(\"Unwrapped WSOL to SOL: {}\", signature);".yellow());
    println!("{}", "─────────────────────────────────────".dimmed());

    Ok(())
}

/// Demo: Create durable nonce account
fn demo_create_nonce(keypair: &Keypair, rpc_url: &str) -> Result<()> {
    println!("\n━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Durable Nonce Account Demo", "πŸ”„".cyan());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");

    let client = SolanaClient::new(rpc_url.to_string());
    let balance = client.get_sol_balance(&keypair.pubkey())?;

    // Nonce account requires ~0.002 SOL rent + transaction fee
    if balance < 5_000_000 {  // 0.005 SOL
        println!("{} Insufficient balance for nonce account (need 0.005 SOL)", "⚠️".yellow());
        println!("   Current balance: {} SOL", lamports_to_sol(balance));
        return Ok(());
    }

    println!("{} Sufficient balance for demo", "βœ…".green());
    println!();
    println!("What is a durable nonce account?");
    println!("  - Allows offline transaction signing");
    println!("  - Useful for scheduled or delayed transactions");
    println!("  - Replaces recent_blockhash with durable nonce");
    println!();
    println!("Example code to create nonce account:");
    println!("{}", "─────────────────────────────────────".dimmed());
    println!("{}", "let (nonce_pubkey, sig) = client.create_nonce_account(keypair)?;".yellow());
    println!("{}", "println!(\"Nonce account: {}\", nonce_pubkey);".yellow());
    println!("{}", "println!(\"Signature: {}\", sig);".yellow());
    println!("{}", "─────────────────────────────────────".dimmed());

    Ok(())
}

/// Demo: Transfer SPL tokens
fn demo_transfer_token(_keypair: &Keypair, _rpc_url: &str) -> Result<()> {
    println!("\n━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Transfer SPL Token Demo", "πŸͺ™".cyan());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");

    println!("Example code to transfer SPL tokens:");
    println!("{}", "─────────────────────────────────────".dimmed());
    println!("{}", "let mint = Pubkey::from_str(\"<token_mint_address>\")?;".yellow());
    println!("{}", "let recipient = Pubkey::from_str(\"<recipient_address>\")?;".yellow());
    println!("{}", "let amount = 1000; // token amount (smallest units)".yellow());
    println!("{}", "let signature = client.transfer_token(keypair, &recipient, &mint, amount)?;".yellow());
    println!("{}", "println!(\"Token transfer: {}\", signature);".yellow());
    println!("{}", "─────────────────────────────────────".dimmed());

    Ok(())
}

fn main() -> Result<()> {
    // ζ£€ζŸ₯是否是 safekey 亀互樑式
    let args: Vec<String> = std::env::args().skip(1).collect();
    if args.first().map(|s| s.as_str()) == Some("safekey") {
        // η›΄ζŽ₯调用 sol-safekey ηš„δΊ€δΊ’εΌθœε•
        if let Err(e) = sol_safekey::interactive::show_main_menu() {
            eprintln!("❌ {}", e);
            std::process::exit(1);
        }
        return Ok(());
    }

    println!("\n╔════════════════════════════════════════════════════╗");
    println!("β•‘   Complete Bot Integration Example - sol-safekey  β•‘");
    println!("β•šβ•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•β•\n");

    // Configuration
    let wallet_path = DEFAULT_WALLET_PATH;
    let rpc_url = RPC_URL;

    println!("βš™οΈ  Configuration:");
    println!("   Wallet: {}", wallet_path);
    println!("   RPC: {}", rpc_url);
    println!("   Network: devnet");
    println!();

    // Step 1: Read password from stdin
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Password Input", "πŸ”".cyan());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");

    let password = read_password_from_stdin()
        .context("Failed to read password")?;

    println!("{} Password received", "βœ…".green());
    println!();

    // Step 2: Ensure wallet is ready (create or unlock)
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Wallet Setup", "πŸ”‘".cyan());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");

    let keypair = ensure_wallet(wallet_path, &password)?;

    // Clear password from memory immediately
    drop(password);

    // Step 3: Run bot operations
    println!("\n━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Bot Operations", "πŸ€–".cyan());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");

    // Check balance
    check_balance(&keypair, rpc_url)?;

    // Demo other operations
    demo_transfer(&keypair, rpc_url)?;
    demo_wrap_sol(&keypair, rpc_url)?;
    demo_unwrap_sol(&keypair, rpc_url)?;
    demo_transfer_token(&keypair, rpc_url)?;
    demo_create_nonce(&keypair, rpc_url)?;

    // Summary
    println!("\n━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!("{} Bot Integration Complete!", "βœ…".green());
    println!("━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━");
    println!();
    println!("{} Your bot can now:", "πŸŽ‰".cyan());
    println!("   βœ“ Create and manage encrypted wallets");
    println!("   βœ“ Check SOL and token balances");
    println!("   βœ“ Transfer SOL and SPL tokens");
    println!("   βœ“ Wrap/unwrap SOL to WSOL");
    println!("   βœ“ Create durable nonce accounts");
    println!("   βœ“ Sign and submit transactions");
    println!();
    println!("{} Integration Pattern:", "πŸ’‘".cyan());
    println!("   β€’ Password via stdin pipe (never environment variables)");
    println!("   β€’ Wallet file encrypted with AES-256");
    println!("   β€’ Use startup-example.sh for secure password handling");
    println!("   β€’ All operations use synchronous Solana RPC client");
    println!();
    println!("{} Next Steps:", "πŸ“š".cyan());
    println!("   1. Customize the operations for your trading strategy");
    println!("   2. Add your bot logic (monitoring, decision making, execution)");
    println!("   3. Integrate with your price feeds and trading signals");
    println!("   4. Test on devnet before moving to mainnet");
    println!();
    println!("{} For production use:", "⚠️".yellow());
    println!("   β€’ Always test on devnet first");
    println!("   β€’ Keep your wallet file secure");
    println!("   β€’ Never share your password");
    println!("   β€’ Backup your keystore.json file");
    println!();

    Ok(())
}