Home Explore Help
Sign In
mmgen
/
mmgen-wallet
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 4496f795d7
Branches Tags
mmgen-wallet
/
mmgen
/
bip39.py

bip39.py 4.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137 
  1. #!/usr/bin/env python3
    2. 

  2. #
    3. 

  3. # mmgen = Multi-Mode GENerator, command-line Bitcoin cold storage solution
    4. 

  4. # Copyright (C)2013-2022 The MMGen Project <mmgen@tuta.io>
    5. 

  5. #
    6. 

  6. # This program is free software: you can redistribute it and/or modify
    7. 

  7. # it under the terms of the GNU General Public License as published by
    8. 

  8. # the Free Software Foundation, either version 3 of the License, or
    9. 

  9. # (at your option) any later version.
    10. 

  10. #
    11. 

  11. # This program is distributed in the hope that it will be useful,
    12. 

  12. # but WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    14. 

  14. # GNU General Public License for more details.
    15. 

  15. #
    16. 

  16. # You should have received a copy of the GNU General Public License
    17. 

  17. # along with this program.  If not, see <http://www.gnu.org/licenses/>.
    18. 

  18. 

  19. """
    20. 

  20. bip39.py - Data and routines for BIP39 mnemonic seed phrases
    21. 

  21. """
    22. 

  22. 

  23. from hashlib import sha256
    24. 

  24. 

  25. from .exception import *
    26. 

  26. from .baseconv import baseconv
    27. 

  27. from .util import is_hex_str
    28. 

  28. 

  29. def is_bip39_str(s):
    30. 

  30. 	return bool( bip39.tohex(s.split(), wl_id='bip39') )
    31. 

  31. 

  32. # implements a subset of the baseconv API
    33. 

  33. class bip39(baseconv):
    34. 

  34. 

  35. 	desc            = { 'bip39': ('BIP39 mnemonic', 'BIP39 mnemonic seed phrase') }
    36. 

  36. 	wl_chksums      = { 'bip39': 'f18b9a84' }
    37. 

  37. 	seedlen_map     = { 'bip39': { 16:12, 24:18, 32:24 } }
    38. 

  38. 	seedlen_map_rev = { 'bip39': { 12:16, 18:24, 24:32 } }
    39. 

  39. 

  40. 	from collections import namedtuple
    41. 

  41. 	bc = namedtuple('bip39_constants',['chk_len','mn_len'])
    42. 

  42. 	#    ENT   CS  MS
    43. 

  43. 	constants = {
    44. 

  44. 		128: bc(4, 12),
    45. 

  45. 		160: bc(5, 15),
    46. 

  46. 		192: bc(6, 18),
    47. 

  47. 		224: bc(7, 21),
    48. 

  48. 		256: bc(8, 24),
    49. 

  49. 	}
    50. 

  50. 	from .mn_bip39 import words
    51. 

  51. 	digits = { 'bip39': words }
    52. 

  52. 

  53. 	@classmethod
    54. 

  54. 	def nwords2seedlen(cls,nwords,in_bytes=False,in_hex=False):
    55. 

  55. 		for k,v in cls.constants.items():
    56. 

  56. 			if v.mn_len == nwords:
    57. 

  57. 				return k//8 if in_bytes else k//4 if in_hex else k
    58. 

  58. 		raise MnemonicError(f'{nwords!r}: invalid word length for BIP39 mnemonic')
    59. 

  59. 

  60. 	@classmethod
    61. 

  61. 	def seedlen2nwords(cls,seed_len,in_bytes=False,in_hex=False):
    62. 

  62. 		seed_bits = seed_len * 8 if in_bytes else seed_len * 4 if in_hex else seed_len
    63. 

  63. 		try:
    64. 

  64. 			return cls.constants[seed_bits].mn_len
    65. 

  65. 		except:
    66. 

  66. 			raise ValueError(f'{seed_bits!r}: invalid seed length for BIP39 mnemonic')
    67. 

  67. 

  68. 	@classmethod
    69. 

  69. 	def tobytes(cls,*args,**kwargs):
    70. 

  70. 		raise NotImplementedError('Method not supported')
    71. 

  71. 

  72. 	@classmethod
    73. 

  73. 	def frombytes(cls,*args,**kwargs):
    74. 

  74. 		raise NotImplementedError('Method not supported')
    75. 

  75. 

  76. 	@classmethod
    77. 

  77. 	def tohex(cls,words,wl_id,pad=None):
    78. 

  78. 		assert isinstance(words,(list,tuple)),'words must be list or tuple'
    79. 

  79. 		assert wl_id == 'bip39',"'wl_id' must be 'bip39'"
    80. 

  80. 		assert pad == None, f"{pad}: invalid 'pad' argument (must be None)"
    81. 

  81. 

  82. 		wl = cls.digits[wl_id]
    83. 

  83. 

  84. 		for n,w in enumerate(words):
    85. 

  85. 			if w not in wl:
    86. 

  86. 				raise MnemonicError(f'word #{n+1} is not in the BIP39 word list')
    87. 

  87. 

  88. 		res = ''.join(['{:011b}'.format(wl.index(w)) for w in words])
    89. 

  89. 

  90. 		for k,v in cls.constants.items():
    91. 

  91. 			if len(words) == v.mn_len:
    92. 

  92. 				bitlen = k
    93. 

  93. 				break
    94. 

  94. 		else:
    95. 

  95. 			raise MnemonicError(f'{len(words)}: invalid BIP39 seed phrase length')
    96. 

  96. 

  97. 		seed_bin = res[:bitlen]
    98. 

  98. 		chk_bin = res[bitlen:]
    99. 

  99. 

  100. 		seed_hex = '{:0{w}x}'.format(int(seed_bin,2),w=bitlen//4)
    101. 

  101. 		seed_bytes = bytes.fromhex(seed_hex)
    102. 

  102. 

  103. 		chk_len = cls.constants[bitlen].chk_len
    104. 

  104. 		chk_hex_chk = sha256(seed_bytes).hexdigest()
    105. 

  105. 		chk_bin_chk = '{:0{w}b}'.format(int(chk_hex_chk,16),w=256)[:chk_len]
    106. 

  106. 

  107. 		if chk_bin != chk_bin_chk:
    108. 

  108. 			raise MnemonicError('invalid BIP39 seed phrase checksum')
    109. 

  109. 

  110. 		return seed_hex
    111. 

  111. 

  112. 	@classmethod
    113. 

  113. 	def fromhex(cls,seed_hex,wl_id,pad=None,tostr=False):
    114. 

  114. 		assert is_hex_str(seed_hex),'seed data not a hexadecimal string'
    115. 

  115. 		assert wl_id == 'bip39',"'wl_id' must be 'bip39'"
    116. 

  116. 		assert tostr == False,"'tostr' must be False for 'bip39'"
    117. 

  117. 		assert pad == None, f"{pad}: invalid 'pad' argument (must be None)"
    118. 

  118. 

  119. 		wl = cls.digits[wl_id]
    120. 

  120. 		seed_bytes = bytes.fromhex(seed_hex)
    121. 

  121. 		bitlen = len(seed_bytes) * 8
    122. 

  122. 

  123. 		assert bitlen in cls.constants, f'{bitlen}: invalid seed bit length'
    124. 

  124. 		c = cls.constants[bitlen]
    125. 

  125. 

  126. 		chk_hex = sha256(seed_bytes).hexdigest()
    127. 

  127. 

  128. 		seed_bin = '{:0{w}b}'.format(int(seed_hex,16),w=bitlen)
    129. 

  129. 		chk_bin = '{:0{w}b}'.format(int(chk_hex,16),w=256)[:c.chk_len]
    130. 

  130. 

  131. 		res = seed_bin + chk_bin
    132. 

  132. 

  133. 		return tuple(wl[int(res[i*11:(i+1)*11],2)] for i in range(c.mn_len))
    134. 

  134. 

  135. 	@classmethod
    136. 

  136. 	def init_mn(cls,mn_id):
    137. 

  137. 		assert mn_id == 'bip39', "'mn_id' must be 'bip39'"
    138.