https://github.com/hyperledger/firefly-signer

Signing, Keystore, ABI and RLP encoding utilities for EVM / Ethereum / secp256k1 based blockchains. Written in Go with an enterprise friendly Apache 2.0 license, and a runtime JSON/RPC proxy server. Part of the Hyperledger FireFly project
https://github.com/hyperledger/firefly-signer

Last synced: 12 months ago
JSON representation

Signing, Keystore, ABI and RLP encoding utilities for EVM / Ethereum / secp256k1 based blockchains. Written in Go with an enterprise friendly Apache 2.0 license, and a runtime JSON/RPC proxy server. Part of the Hyperledger FireFly project

• Host: GitHub
• URL: https://github.com/hyperledger/firefly-signer
• Owner: hyperledger
• License: apache-2.0
• Created: 2022-04-28T14:18:03.000Z (almost 4 years ago)
• Default Branch: main
• Last Pushed: 2025-04-25T17:43:31.000Z (about 1 year ago)
• Last Synced: 2025-05-01T09:05:25.874Z (12 months ago)
• Language: Go
• Homepage:
• Size: 529 KB
• Stars: 10
• Watchers: 14
• Forks: 14
• Open Issues: 3
• Metadata Files:
  • Readme: README.md
  • Changelog: CHANGELOG.md
  • Contributing: CONTRIBUTING.md
  • License: LICENSE
  • Code of conduct: CODE_OF_CONDUCT.md
  • Codeowners: CODEOWNERS
  • Security: SECURITY.md

Awesome Lists containing this project

README

          
[![codecov](https://codecov.io/gh/hyperledger/firefly-signer/branch/main/graph/badge.svg?token=OEI8A08P0R)](https://codecov.io/gh/hyperledger/firefly-signer)

[![Go Reference](https://pkg.go.dev/badge/github.com/hyperledger/firefly-signer.svg)](https://pkg.go.dev/github.com/hyperledger/firefly-signer)

# Hyperledger FireFly Signer

A set of Ethereum transaction signing utilities designed for use across projects:

## Go API libraries

- RLP Encoding and Decoding

  - See `pkg/rlp` [go doc](https://pkg.go.dev/github.com/hyperledger/firefly-signer/pkg/rlp)

- ABI Encoding and Decoding

  - Validation of ABI definitions

  - JSON <-> Value Tree <-> ABI Bytes

  - Model API exposed, as well as encode/decode APIs

  - See `pkg/abi` [go doc](https://pkg.go.dev/github.com/hyperledger/firefly-signer/pkg/abi)

- Secp256k1 transaction signing for Ethereum transactions

  - Original

  - EIP-155

  - EIP-1559

  - EIP-712 (see below)

  - See `pkg/ethsigner` [go doc](https://pkg.go.dev/github.com/hyperledger/firefly-signer/pkg/ethsigner)

- EIP-712 Typed Data implementation

  - See `pkg/eip712` [go doc](https://pkg.go.dev/github.com/hyperledger/firefly-signer/pkg/eip712)

- Keystore V3 key file implementation

  - Scrypt - read/write

  - pbkdf2 - read

  - See `pkg/keystorev3` [go doc](https://pkg.go.dev/github.com/hyperledger/firefly-signer/pkg/keystorev3)

- Filesystem wallet

  - Configurable caching for in-memory keys

  - Files in directory with a given extension matching `{{ADDRESS}}.key`/`{{ADDRESS}}.toml` or arbitrary regex

  - Files can be TOML/YAML/JSON metadata pointing to Keystore V3 files + password files

  - Files can be Keystore V3 files directly, with accompanying `{{ADDRESS}}.pass` files

  - Detects newly added files automatically

  - See `pkg/fswallet` [go doc](https://pkg.go.dev/github.com/hyperledger/firefly-signer/pkg/fswallet)

- JSON/RPC client

  - HTTP

  - WebSockets - with `eth_subscribe` support

  - See `pkg/rpcbackend` [go doc](https://pkg.go.dev/github.com/hyperledger/firefly-signer/pkg/rpcbackend)

## JSON/RPC proxy server

A runtime JSON/RPC server/proxy to intercept `eth_sendTransaction` JSON/RPC calls, and pass other

calls through unchanged.

- Lightweight fast-starting runtime

- HTTP/HTTPS server

  - All HTTPS/CORS etc. features from FireFly Microservice framework

  - Configured via YAML

  - Batch JSON/RPC support

- `eth_sendTransaction` implementation to sign transactions

  - If EIP-1559 gas price fields are specified uses `0x02` transactions, otherwise EIP-155

- Makes some JSON/RPC calls on application's behalf

  - Queries Chain ID via `net_version` on startup

  - `eth_accounts` JSON/RPC method support

  - Trivial nonce management built-in (calls `eth_getTransactionCount` for each request)

## JSON/RPC proxy server configuration

For a full list of configuration options see [config.md](./config.md)

## Example configuration

Two examples provided below:

### Flat directory of keys

```yaml

fileWallet:

    path: /data/keystore

    filenames:

        with0xPrefix: false

        primaryExt: '.key.json'

        passwordExt: '.password'

server:

    address: '127.0.0.1'

    port: 8545

backend:

    url: https://blockhain.rpc.endpoint/path

```

### Directory containing TOML configurations

```yaml

fileWallet:

    path: /data/keystore

    filenames:

        with0xPrefix: false

        primaryExt: '.toml'

  metadata:

        format: toml

        keyFileProperty: '{{ index .signing "key-file" }}'

        passwordFileProperty: '{{ index .signing "password-file" }}'

server:

    address: '127.0.0.1'

    port: 8545

backend:

    url: https://blockhain.rpc.endpoint/path

```

Example TOML:

```toml

[metadata]

description = "File based configuration"

[signing]

type = "file-based-signer"

key-file = "/data/keystore/1f185718734552d08278aa70f804580bab5fd2b4.key.json"

password-file = "/data/keystore/1f185718734552d08278aa70f804580bab5fd2b4.pwd"

```

# License

Apache 2.0

# References / credits

### JSON/RPC proxy

The JSON/RPC proxy and RLP encoding code was contributed by Kaleido, Inc.

### Cryptography

secp256k1 cryptography libraries are provided by btcsuite (ISC Licensed):

https://pkg.go.dev/github.com/btcsuite/btcd/btcec

### RLP encoding and keystore

Reference during implementation was made to the web3j implementation of Ethereum

RLP encoding, and Keystore V3 wallet files (Apache 2.0 licensed):

https://github.com/web3j/web3j