1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96

//! key
use crate::{
    api::config::GearConfig,
    result::{Error, Result},
};
use keyring::Entry;
use std::env;
use subxt::{
    sp_core::Pair,
    sp_runtime::{MultiSignature, MultiSigner},
    PairSigner,
};

type SignerAndSeed<P> = (PairSigner<GearConfig, P>, Option<Vec<u8>>);

/// @WARNING: THIS WILL ONLY BE SECURE IF THE keystore IS SECURE.
/// when you have NO PASSWORD, If it can be got by an attacker then
/// they can also get your key.
pub struct Key(String);

impl Key {
    /// Get keyring entry
    pub fn keyring() -> Result<Entry> {
        let username = whoami::username();
        let application = env::current_exe()?
            .file_name()
            .ok_or(Error::InvalidExecutable)?
            .to_string_lossy()
            .to_string();

        Ok(keyring::Entry::new(&application, &username))
    }

    /// New key from string
    pub fn from_string(suri: &str) -> Self {
        Self(suri.into())
    }

    /// New key from keyring
    ///
    /// # TODO
    ///
    /// prepare for #20
    #[allow(unused)]
    pub fn from_keyring() -> Result<Self> {
        let entry = Self::keyring()?;

        Ok(Self(entry.get_password()?))
    }

    /// Generate pair with phrase
    pub fn generate_with_phrase<P>(
        passwd: Option<&str>,
    ) -> Result<(PairSigner<GearConfig, P>, String, Vec<u8>)>
    where
        P: Pair,
        MultiSignature: From<<P as Pair>::Signature>,
        MultiSigner: From<<P as Pair>::Public>,
    {
        let pair = P::generate_with_phrase(passwd);
        Ok((PairSigner::new(pair.0), pair.1, pair.2.as_ref().to_vec()))
    }

    /// Get keypair from key
    pub fn pair<P>(&self, passwd: Option<&str>) -> Result<SignerAndSeed<P>>
    where
        P: Pair,
        MultiSignature: From<<P as Pair>::Signature>,
        MultiSigner: From<<P as Pair>::Public>,
    {
        let (pair, seed) =
            P::from_string_with_seed(&self.0, passwd).map_err(|_| Error::InvalidSecret)?;
        Ok((PairSigner::new(pair), seed.map(|s| s.as_ref().to_vec())))
    }

    /// Sign messages
    pub fn sign<P>(&self, msg: &str, passwd: Option<&str>) -> Result<Vec<u8>>
    where
        P: Pair,
    {
        let pair = P::from_string(&self.0, passwd).map_err(|_| Error::InvalidSecret)?;
        // # Note
        //
        // using `msg.as_bytes()` here, will not decode the hex encoding
        // messages here.
        Ok(pair.sign(msg.as_bytes()).as_ref().to_vec())
    }

    /// Verify messages
    pub fn verify<P>(sig: &[u8], message: &[u8], pubkey: &[u8]) -> Result<bool>
    where
        P: Pair,
    {
        Ok(P::verify_weak(sig, message, pubkey))
    }
}