feat: parsing mnemonic phrase from [String]

Add Support For The Mnemonic Phrase To Be An Array

Author: JeneaVranceanu

Sources/Web3Core/KeystoreManager/BIP32HDNode.swift

@@ -22,13 +22,31 @@ extension UInt32 {
 }
 
 public class HDNode {
+    private static var maxIterationIndex = UInt32(1) << 31
+
+    /// Contains private and public prefixes for serialization.
+    /// See [BIP-32's serialization format](https://github.com/bitcoin/bips/blob/master/bip-0032.mediawiki#serialization-format) for more info.
     public struct HDversion {
-        // swiftlint:disable force_unwrapping
-        public var privatePrefix: Data = Data.fromHex("0x0488ADE4")!
-        public var publicPrefix: Data = Data.fromHex("0x0488B21E")!
-        // swiftlint:enable force_unwrapping
-        public init() {}
+        /// Mainnet public key prefix.
+        /// Value `0x0488B21E` is a string `xpub` encoded as Base-58 and later as hexadecimal.
+        public static let publicPrefix: Data! = Data.fromHex("0x0488B21E")
+
+        /// Mainnet private key prefix.
+        /// Value `0x0488ADE4` is a string `xprv` encoded as Base-58 and later as hexadecimal.
+        public static let privatePrefix: Data! = Data.fromHex("0x0488ADE4")
+
+        public let publicPrefix: Data
+        public let privatePrefix: Data
+
+        /// Default values for `publicPrefix` and `privatePrefix` are
+        /// `HDversion.publicPrefix` and `HDversion.privatePrefix` respectively.
+        public init(public publicPrefix: Data = HDversion.publicPrefix,
+                    private privatePrefix: Data = HDversion.privatePrefix) {
+            self.publicPrefix = publicPrefix
+            self.privatePrefix = privatePrefix
+        }
     }
+
     public var path: String? = "m"
     public var privateKey: Data?
     public var publicKey: Data
@@ -37,14 +55,10 @@ public class HDNode {
     public var parentFingerprint: Data = Data(repeating: 0, count: 4)
     public var childNumber: UInt32 = UInt32(0)
     public var isHardened: Bool {
-        childNumber >= (UInt32(1) << 31)
+        childNumber >= Self.maxIterationIndex
     }
     public var index: UInt32 {
-            if self.isHardened {
-                return childNumber - (UInt32(1) << 31)
-            } else {
-                return childNumber
-            }
+        childNumber - (isHardened ? Self.maxIterationIndex : 0)
     }
     public var hasPrivate: Bool {
         privateKey != nil
@@ -65,7 +79,7 @@ public class HDNode {
         guard data.count == 82 else { return nil }
         let header = data[0..<4]
         var serializePrivate = false
-        if header == HDNode.HDversion().privatePrefix {
+        if header == HDversion.privatePrefix {
             serializePrivate = true
         }
         depth = data[4..<5].bytes[0]
@@ -90,30 +104,30 @@ public class HDNode {
 
     public init?(seed: Data) {
         guard seed.count >= 16 else { return nil }
-        // swiftlint:disable force_unwrapping
-        let hmacKey = "Bitcoin seed".data(using: .ascii)!
-        let hmac = HMAC(key: hmacKey.bytes, variant: HMAC.Variant.sha2(.sha512))
+
+        guard let hmacKey = "Bitcoin seed".data(using: .ascii) else { return nil }
+        let hmac = HMAC(key: hmacKey.bytes, variant: .sha2(.sha512))
+
         guard let entropy = try? hmac.authenticate(seed.bytes), entropy.count == 64 else { return nil }
         let I_L = entropy[0..<32]
         let I_R = entropy[32..<64]
         chaincode = Data(I_R)
         let privKeyCandidate = Data(I_L)
         guard SECP256K1.verifyPrivateKey(privateKey: privKeyCandidate) else { return nil }
         guard let pubKeyCandidate = SECP256K1.privateToPublic(privateKey: privKeyCandidate, compressed: true) else { return nil }
-        guard pubKeyCandidate.bytes[0] == 0x02 || pubKeyCandidate.bytes[0] == 0x03 else { return nil }
+        guard pubKeyCandidate.bytes.first == 0x02 || pubKeyCandidate.bytes.first == 0x03 else { return nil }
         publicKey = pubKeyCandidate
         privateKey = privKeyCandidate
         depth = 0x00
         childNumber = UInt32(0)
     }
 
-    private static var curveOrder = BigUInt("FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141", radix: 16)!
-    // swiftlint:enable force_unwrapping
-    public static var defaultPath: String = "m/44'/60'/0'/0"
-    public static var defaultPathPrefix: String = "m/44'/60'/0'"
-    public static var defaultPathMetamask: String = "m/44'/60'/0'/0/0"
-    public static var defaultPathMetamaskPrefix: String = "m/44'/60'/0'/0"
-    public static var hardenedIndexPrefix: UInt32 = (UInt32(1) << 31)
+    private static let curveOrder = BigUInt("FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141", radix: 16)!
+    public static let defaultPath = "m/44'/60'/0'/0"
+    public static let defaultPathPrefix = "m/44'/60'/0'"
+    public static let defaultPathMetamask = "m/44'/60'/0'/0/0"
+    public static let defaultPathMetamaskPrefix = "m/44'/60'/0'/0"
+    public static var hardenedIndexPrefix: UInt32 { Self.maxIterationIndex }
 }
 
 extension HDNode {

Sources/Web3Core/KeystoreManager/BIP32Keystore.swift

@@ -44,7 +44,6 @@ public class BIP32Keystore: AbstractKeystore {
             guard let decryptedRootNode = try? self.getPrefixNodeData(password) else {throw AbstractKeystoreError.encryptionError("Failed to decrypt a keystore")}
             guard let rootNode = HDNode(decryptedRootNode) else {throw AbstractKeystoreError.encryptionError("Failed to deserialize a root node")}
             guard rootNode.depth == (self.rootPrefix.components(separatedBy: "/").count - 1) else {throw AbstractKeystoreError.encryptionError("Derivation depth mismatch")}
-//            guard rootNode.depth == HDNode.defaultPathPrefix.components(separatedBy: "/").count - 1 else {throw AbstractKeystoreError.encryptionError("Derivation depth mismatch")}
             guard let index = UInt32(key.components(separatedBy: "/").last!) else {
                 throw AbstractKeystoreError.encryptionError("Derivation depth mismatch")
             }
@@ -98,7 +97,17 @@ public class BIP32Keystore: AbstractKeystore {
         try self.init(seed: seed, password: password, prefixPath: prefixPath, aesMode: aesMode)
     }
 
-    public init? (seed: Data, password: String, prefixPath: String = HDNode.defaultPathMetamaskPrefix, aesMode: String = "aes-128-cbc") throws {
+    public convenience init?(mnemonicsPhrase: [String], password: String, mnemonicsPassword: String = "", language: BIP39Language = .english, prefixPath: String = HDNode.defaultPathMetamaskPrefix, aesMode: String = "aes-128-cbc") throws {
+        guard var seed = BIP39.seedFromMmemonics(mnemonicsPhrase, password: mnemonicsPassword, language: language) else {
+            throw AbstractKeystoreError.noEntropyError
+        }
+        defer {
+            Data.zero(&seed)
+        }
+        try self.init(seed: seed, password: password, prefixPath: prefixPath, aesMode: aesMode)
+    }
+
+    public init?(seed: Data, password: String, prefixPath: String = HDNode.defaultPathMetamaskPrefix, aesMode: String = "aes-128-cbc") throws {
         addressStorage = PathAddressStorage()
         guard let rootNode = HDNode(seed: seed)?.derive(path: prefixPath, derivePrivateKey: true) else { return nil }
         self.rootPrefix = prefixPath
@@ -127,13 +136,18 @@ public class BIP32Keystore: AbstractKeystore {
         try encryptDataToStorage(password, data: serializedRootNode, aesMode: self.keystoreParams!.crypto.cipher)
     }
 
-    func createNewAccount(parentNode: HDNode, password: String ) throws {
-        var newIndex = UInt32(0)
-        for p in addressStorage.paths {
-            guard let idx = UInt32(p.components(separatedBy: "/").last!) else {continue}
-            if idx >= newIndex {
-                newIndex = idx + 1
-            }
+    func createNewAccount(parentNode: HDNode, password: String = "web3swift") throws {
+        let maxIndex = addressStorage.paths
+            .compactMap { $0.components(separatedBy: "/").last }
+            .compactMap { UInt32($0) }
+            .max()
+
+        let newIndex: UInt32
+
+        if let idx = maxIndex {
+            newIndex = idx + 1
+        } else {
+            newIndex = UInt32.zero
         }
         guard let newNode = parentNode.derive(index: newIndex, derivePrivateKey: true, hardened: false) else {
             throw AbstractKeystoreError.keyDerivationError
@@ -151,7 +165,8 @@ public class BIP32Keystore: AbstractKeystore {
         addressStorage.add(address: newAddress, for: newPath)
     }
 
-    public func createNewCustomChildAccount(password: String, path: String) throws {guard let decryptedRootNode = try? self.getPrefixNodeData(password) else {
+    public func createNewCustomChildAccount(password: String, path: String) throws {
+        guard let decryptedRootNode = try getPrefixNodeData(password) else {
             throw AbstractKeystoreError.encryptionError("Failed to decrypt a keystore")
         }
         guard let rootNode = HDNode(decryptedRootNode) else {
@@ -201,15 +216,11 @@ public class BIP32Keystore: AbstractKeystore {
         try encryptDataToStorage(password, data: serializedRootNode, aesMode: self.keystoreParams!.crypto.cipher)
     }
 
-    fileprivate func encryptDataToStorage(_ password: String, data: Data?, dkLen: Int = 32, N: Int = 4096, R: Int = 6, P: Int = 1, aesMode: String = "aes-128-cbc") throws {
-        if data == nil {
-            throw AbstractKeystoreError.encryptionError("Encryption without key data")
-        }
-        if data!.count != 82 {
+    fileprivate func encryptDataToStorage(_ password: String, data: Data, dkLen: Int = 32, N: Int = 4096, R: Int = 6, P: Int = 1, aesMode: String = "aes-128-cbc") throws {
+        guard data.count == 82 else {
             throw AbstractKeystoreError.encryptionError("Invalid expected data length")
         }
-        let saltLen = 32
-        guard let saltData = Data.randomBytes(length: saltLen) else {
+        guard let saltData = Data.randomBytes(length: 32) else {
             throw AbstractKeystoreError.noEntropyError
         }
         guard let derivedKey = scrypt(password: password, salt: saltData, length: dkLen, N: N, R: R, P: P) else {
@@ -232,7 +243,7 @@ public class BIP32Keystore: AbstractKeystore {
         if aesCipher == nil {
             throw AbstractKeystoreError.aesError
         }
-        guard let encryptedKey = try aesCipher?.encrypt(data!.bytes) else {
+        guard let encryptedKey = try aesCipher?.encrypt(data.bytes) else {
             throw AbstractKeystoreError.aesError
         }
         let encryptedKeyData = Data(encryptedKey)

Sources/Web3Core/KeystoreManager/BIP39.swift

@@ -15,6 +15,7 @@ public enum BIP39Language {
     case french
     case italian
     case spanish
+
     public var words: [String] {
         switch self {
         case .english:
@@ -70,49 +71,94 @@ public enum BIP39Language {
 
 public class BIP39 {
 
-    static public func generateMnemonicsFromEntropy(entropy: Data, language: BIP39Language = BIP39Language.english) -> String? {
-        guard entropy.count >= 16, entropy.count & 4 == 0 else { return nil }
-        let checksum = entropy.sha256()
-        let checksumBits = entropy.count*8/32
-        var fullEntropy = Data()
-        fullEntropy.append(entropy)
-        fullEntropy.append(checksum[0 ..< (checksumBits+7)/8 ])
-        var wordList = [String]()
-        for i in 0 ..< fullEntropy.count*8/11 {
-            guard let bits = fullEntropy.bitsInRange(i*11, 11) else { return nil }
-            let index = Int(bits)
-            guard language.words.count > index else { return nil }
-            let word = language.words[index]
-            wordList.append(word)
+    /// Generates a mnemonic phrase length of which depends on the provided `bitsOfEntropy`.
+    /// Returned value is a single string where words are joined by ``BIP39Language/separator``.
+    /// Keep in mind that different languages may have different separators.
+    /// - Parameters:
+    ///   - bitsOfEntropy: 128 - 12 words, 160 - 15 words, and up to 256 - 24 words as output. The value must be a multiple of 32.
+    ///   - language: words language, default is set to english.
+    /// - Returns: mnemonic phrase as a single string containing 12, 15, 18, 21 or 24 words.
+    public static func generateMnemonics(bitsOfEntropy: Int, language: BIP39Language = .english) throws -> String? {
+        let entropy = try entropyOf(size: bitsOfEntropy)
+        return generateMnemonicsFromEntropy(entropy: entropy, language: language)
+    }
+
+    /// Generates a mnemonic phrase length of which depends on the provided `entropy`.
+    /// - Parameters:
+    ///   - entropy: 128 - 12 words, 192 - 18 words, 256 - 24 words in output.
+    ///   - language: words language, default is set to english.
+    /// - Returns: mnemonic phrase as an array containing 12, 15, 18, 21 or 24 words.
+    /// `nil` is returned in cases like wrong `entropy` value (e.g. `entropy` is not a multiple of 32).
+    public static func generateMnemonics(entropy: Int, language: BIP39Language = .english) throws -> [String] {
+        let entropy = try entropyOf(size: entropy)
+        return generateMnemonicsFrom(entropy: entropy, language: language)
+    }
+
+    private static func entropyOf(size: Int) throws -> Data {
+        guard
+            size >= 128 && size <= 256 && size.isMultiple(of: 32),
+            let entropy = Data.randomBytes(length: size/8)
+        else {
+            throw AbstractKeystoreError.noEntropyError
+        }
+        return entropy
+    }
+
+    static func bitarray(from data: Data) -> String {
+        data.map {
+            let binary = String($0, radix: 2)
+            let padding = String(repeating: "0", count: 8 - binary.count)
+            return padding + binary
+        }.joined()
+    }
+
+    static func generateChecksum(entropyBytes inputData: Data, checksumLength: Int) -> String? {
+        guard let checksumData = inputData.sha256().bitsInRange(0, checksumLength) else {
+            return nil
         }
+        return String(checksumData, radix: 2).leftPadding(toLength: checksumLength, withPad: "0")
+    }
+
+    public static func generateMnemonicsFromEntropy(entropy: Data, language: BIP39Language = .english) -> String? {
+        guard entropy.count >= 16, entropy.count & 4 == 0 else { return nil }
         let separator = language.separator
+        let wordList = generateMnemonicsFrom(entropy: entropy)
         return wordList.joined(separator: separator)
     }
 
-    /// Initializes a new mnemonics set with the provided bitsOfEntropy.
-    /// - Parameters:
-    ///   - bitsOfEntropy: 128 - 12 words, 192 - 18 words , 256 - 24 words in output.
-    ///   - language: words language, default english
-    /// - Returns: random 12-24 words, that represent new Mnemonic phrase.
-    static public func generateMnemonics(bitsOfEntropy: Int, language: BIP39Language = BIP39Language.english) throws -> String? {
-        guard bitsOfEntropy >= 128 && bitsOfEntropy <= 256 && bitsOfEntropy.isMultiple(of: 32) else { return nil }
-        guard let entropy = Data.randomBytes(length: bitsOfEntropy/8) else {throw AbstractKeystoreError.noEntropyError}
-        return BIP39.generateMnemonicsFromEntropy(entropy: entropy, language:
-        language)
+    public static func generateMnemonicsFrom(entropy: Data, language: BIP39Language = .english) -> [String] {
+        let entropyBitSize = entropy.count * 8
+        let checksum_length = entropyBitSize / 32
+
+        var entropy_bits = bitarray(from: entropy)
+
+        guard let checksumTest = generateChecksum(entropyBytes: entropy, checksumLength: checksum_length) else {
+            return []
+        }
+        entropy_bits += checksumTest
+        return entropy_bits
+            .split(intoChunksOf: 11)
+            .compactMap { binary in
+                Int(binary, radix: 2)
+            }
+            .map { index in
+                language.words[index]
+            }
+    }
 
+    public static func mnemonicsToEntropy(_ mnemonics: String, language: BIP39Language = .english) -> Data? {
+        let wordList = mnemonics.components(separatedBy: language.separator)
+        return mnemonicsToEntropy(wordList, language: language)
     }
 
-    static public func mnemonicsToEntropy(_ mnemonics: String, language: BIP39Language = BIP39Language.english) -> Data? {
-        let wordList = mnemonics.components(separatedBy: " ")
-        guard wordList.count >= 12 && wordList.count.isMultiple(of: 3) && wordList.count <= 24 else { return nil }
+    public static func mnemonicsToEntropy(_ mnemonics: [String], language: BIP39Language = .english) -> Data? {
+        guard 12...24 ~= mnemonics.count && mnemonics.count.isMultiple(of: 3) else { return nil }
         var bitString = ""
-        for word in wordList {
-            let idx = language.words.firstIndex(of: word)
-            if idx == nil {
+        for word in mnemonics {
+            guard let idx = language.words.firstIndex(of: word) else {
                 return nil
             }
-            let idxAsInt = language.words.startIndex.distance(to: idx!)
-            let stringForm = String(UInt16(idxAsInt), radix: 2).leftPadding(toLength: 11, withPad: "0")
+            let stringForm = String(UInt16(idx), radix: 2).leftPadding(toLength: 11, withPad: "0")
             bitString.append(stringForm)
         }
         let stringCount = bitString.count
@@ -131,23 +177,30 @@ public class BIP39 {
         return entropy
     }
 
-    static public func seedFromMmemonics(_ mnemonics: String, password: String = "", language: BIP39Language = BIP39Language.english) -> Data? {
-        let valid = BIP39.mnemonicsToEntropy(mnemonics, language: language) != nil
-        if !valid {
+    public static func seedFromMmemonics(_ mnemonics: [String], password: String = "", language: BIP39Language = .english) -> Data? {
+        let wordList = mnemonics.joined(separator: language.separator)
+        return seedFromMmemonics(wordList, password: password, language: language)
+    }
+
+    public static func seedFromMmemonics(_ mnemonics: String, password: String = "", language: BIP39Language = .english) -> Data? {
+        guard mnemonicsToEntropy(mnemonics, language: language) != nil else {
             return nil
         }
+        return dataFrom(mnemonics: mnemonics, password: password)
+    }
+
+    private static func dataFrom(mnemonics: String, password: String) -> Data? {
         guard let mnemData = mnemonics.decomposedStringWithCompatibilityMapping.data(using: .utf8) else { return nil }
         let salt = "mnemonic" + password
         guard let saltData = salt.decomposedStringWithCompatibilityMapping.data(using: .utf8) else { return nil }
         guard let seedArray = try? PKCS5.PBKDF2(password: mnemData.bytes, salt: saltData.bytes, iterations: 2048, keyLength: 64, variant: HMAC.Variant.sha2(.sha512)).calculate() else { return nil }
-        let seed = Data(seedArray)
-        return seed
+        return Data(seedArray)
     }
 
-    static public func seedFromEntropy(_ entropy: Data, password: String = "", language: BIP39Language = BIP39Language.english) -> Data? {
-        guard let mnemonics = BIP39.generateMnemonicsFromEntropy(entropy: entropy, language: language) else {
+    public static func seedFromEntropy(_ entropy: Data, password: String = "", language: BIP39Language = .english) -> Data? {
+        guard let mnemonics = generateMnemonicsFromEntropy(entropy: entropy, language: language) else {
             return nil
         }
-        return BIP39.seedFromMmemonics(mnemonics, password: password, language: language)
+        return seedFromMmemonics(mnemonics, password: password, language: language)
     }
 }