roysc/plugeth
1
0
Fork 0
forked from cerc-io/plugeth
Code Pull Requests Activity

refuse to overwrite the master key of a previously initialized card

Browse Source
This commit is contained in:
Guillaume Ballet 2019-04-02 19:28:24 +02:00
parent 1d1bee528e
commit 79f4cfac2e
1 changed files with 15 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
accounts/scwallet/wallet.go
View File

@ -589,9 +589,8 @@ func (w *Wallet) Contains(account accounts.Account) bool {
// Initialize installs a keypair generated from the provided key into the wallet. // Initialize installs a keypair generated from the provided key into the wallet.
func (w *Wallet) Initialize(seed []byte) error { func (w *Wallet) Initialize(seed []byte) error {
w.lock.Lock() // DO NOT lock at this stage, as the initialize
defer w.lock.Unlock() // function relies on Status()
return w.session.initialize(seed) return w.session.initialize(seed)
} }
@ -877,6 +876,19 @@ type initializeData struct {
// initialize initializes the card with new key data. // initialize initializes the card with new key data.
func (s *Session) initialize(seed []byte) error { func (s *Session) initialize(seed []byte) error {
// Check that the wallet isn't currently initialized,
// otherwise the key would be overwritten.
status, err := s.Wallet.Status()
if err != nil {
return err
}
if status == "Online" {
return fmt.Errorf("card is already initialized, cowardly refusing to proceed")
}
s.Wallet.lock.Lock()
defer s.Wallet.lock.Unlock()
// HMAC the seed to produce the private key and chain code // HMAC the seed to produce the private key and chain code
mac := hmac.New(sha512.New, []byte("Bitcoin seed")) mac := hmac.New(sha512.New, []byte("Bitcoin seed"))
mac.Write(seed) mac.Write(seed)