cryptnox-sdk-arduino/Sign_8ino_source.html

/*

 * SPDX-License-Identifier: LGPL-3.0-or-later

 * Copyright (c) 2026 Cryptnox SA

 */


#include <CryptnoxWallet.h>

#include <SPI.h>


#define PN532_SS_PIN  (10U)


#define DEMO_PIN      "000000000"


ArduinoLoggerAdapter   serialAdapter;


PN532Adapter           nfc(serialAdapter, PN532_SS_PIN, &SPI);


ArduinoCryptoProvider  cryptoProvider;


ArduinoPlatform        platform;


CryptnoxWallet         wallet(nfc, serialAdapter, cryptoProvider, platform);


void setup() {

    serialAdapter.begin(115200);

    delay(1000);                              /* Arduino R4: wait for Serial */

    SPI.begin();


    if (!wallet.begin()) {

        serialAdapter.println(F("PN532 init failed"));

        while (1);

    }

}


void loop() {

    CW_SecureSession session;

    if (!wallet.connect(session)) {

        serialAdapter.println(F("Card not detected"));

        wallet.disconnect(session);

        delay(1000);

        return;

    }


    uint8_t hash[CW_HASH_SIZE];

    memset(hash, 0x01, sizeof(hash));   /* replace with SHA-256 of your tx */


    CW_SignRequest req(session,

                       CW_SIGN_CURR_K1,

                       CW_SIGN_SIG_ECDSA_LOW_S,

                       CW_SIGN_WITH_PIN);

    req.hash       = hash;

    req.hashLength = sizeof(hash);

    CW_Utils::safe_memcpy(req.pin, sizeof(req.pin),

                          reinterpret_cast<const uint8_t*>(DEMO_PIN), strlen(DEMO_PIN));


    CW_SignResult sig = wallet.sign(req);

    if (sig.errorCode == CW_OK) {

        serialAdapter.println(F("Signature OK"));


        serialAdapter.print(F("  r = "));

        for (uint8_t i = 0U; i < 32U; i++) {

            uint8_t b = sig.signature[CW_SIG_R_OFFSET + i];

            if (b < 0x10U) { serialAdapter.print(F("0")); }

            serialAdapter.print(b, HEX);

        }

        serialAdapter.println();


        serialAdapter.print(F("  s = "));

        for (uint8_t i = 0U; i < 32U; i++) {

            uint8_t b = sig.signature[CW_SIG_S_OFFSET + i];

            if (b < 0x10U) { serialAdapter.print(F("0")); }

            serialAdapter.print(b, HEX);

        }

        serialAdapter.println();


        serialAdapter.print(F("  errorCode = 0x"));

        serialAdapter.println(sig.errorCode, HEX);

    } else if (sig.errorCode == CW_SIGN_PIN_INCORRECT) {

        /* CRITICAL: do NOT loop — each wrong PIN attempt burns a retry. */

        serialAdapter.println(F("Wrong PIN — halting to protect retry counter"));

        CW_Utils::secure_wipe(hash, sizeof(hash));

        CW_Utils::secure_wipe(sig.signature, sizeof(sig.signature));

        wallet.disconnect(session);

        while (1);

    } else {

        serialAdapter.print(F("Sign failed: 0x"));

        serialAdapter.println(sig.errorCode, HEX);

    }


    CW_Utils::secure_wipe(hash, sizeof(hash));

    CW_Utils::secure_wipe(sig.signature, sizeof(sig.signature));

    wallet.disconnect(session);

    delay(1000);

}


setup
void setup()
Arduino setup function.
Definition BasicUsage.ino:88

wallet
CryptnoxWallet wallet(nfc, serialAdapter, cryptoProvider, platform)

nfc
PN532Adapter nfc(serialAdapter, PN532_SS, &SPI)

serialAdapter
ArduinoLoggerAdapter serialAdapter
Definition BasicUsage.ino:47

platform
ArduinoPlatform platform
Definition BasicUsage.ino:79

cryptoProvider
ArduinoCryptoProvider cryptoProvider
Definition BasicUsage.ino:78

loop
void loop()
Arduino main loop.
Definition BasicUsage.ino:117

CW_SIG_R_OFFSET
#define CW_SIG_R_OFFSET
Definition CW_Defs.h:116

CW_HASH_SIZE
#define CW_HASH_SIZE
Definition CW_Defs.h:108

CW_OK
#define CW_OK
Definition CW_Defs.h:80

CW_SIGN_WITH_PIN
#define CW_SIGN_WITH_PIN
Definition CW_Defs.h:92

CW_SIGN_CURR_K1
#define CW_SIGN_CURR_K1
Definition CW_Defs.h:85

CW_SIGN_SIG_ECDSA_LOW_S
#define CW_SIGN_SIG_ECDSA_LOW_S
Definition CW_Defs.h:96

CW_SIG_S_OFFSET
#define CW_SIG_S_OFFSET
Definition CW_Defs.h:117

CW_SIGN_PIN_INCORRECT
#define CW_SIGN_PIN_INCORRECT
Definition CW_Defs.h:103

PN532_SS_PIN
#define PN532_SS_PIN
SPI slave-select (CS) pin connected to the PN532 module.
Definition Connect.ino:31

DEMO_PIN
#define DEMO_PIN
Demo PIN used by this example. Must match the PIN that the card was initialised with (4–9 ASCII digit...
Definition Sign.ino:50

ArduinoCryptoProvider
CW_CryptoProvider implementation for the Arduino UNO R4 (RA4M1).
Definition ArduinoCryptoProvider.h:63

ArduinoLoggerAdapter
CW_Logger implementation wrapping Arduino's HardwareSerial.
Definition ArduinoLoggerAdapter.h:48

ArduinoPlatform
CW_Platform implementation using Arduino's blocking delay().
Definition ArduinoPlatform.h:49

CW_Utils::safe_memcpy
static bool safe_memcpy(uint8_t *dst, size_t dstSize, const uint8_t *src, size_t count)
Safe memcpy — validates pointers, sizes, and checks for overlap.
Definition CW_Utils.cpp:50

CW_Utils::secure_wipe
static void secure_wipe(uint8_t *buf, size_t len)
Securely zero a buffer, guaranteed not to be optimised away.
Definition CW_Utils.cpp:37

CryptnoxWallet
High-level interface for interacting with a Cryptnox Hardware Wallet over NFC.
Definition CryptnoxWallet.h:160

PN532Adapter
CW_NfcTransport implementation over the Adafruit_PN532 driver.
Definition PN532Adapter.h:86

F
#define F(string_literal)
Definition platform_compat.h:42

HEX
#define HEX
Definition platform_compat.h:35

CW_SecureSession
Holds cryptographic session state for reentrant secure channel operations.
Definition CW_Defs.h:168

CW_SignRequest
Request parameters for CryptnoxWallet::sign.
Definition CryptnoxWallet.h:74

CW_SignRequest::hashLength
uint8_t hashLength
Definition CryptnoxWallet.h:81

CW_SignRequest::hash
const uint8_t * hash
Definition CryptnoxWallet.h:80

CW_SignRequest::pin
uint8_t pin[CW_MAX_PIN_LENGTH]
Definition CryptnoxWallet.h:78

CW_SignResult
Result of CryptnoxWallet::sign.
Definition CryptnoxWallet.h:116

CW_SignResult::errorCode
uint8_t errorCode
Definition CryptnoxWallet.h:118

CW_SignResult::signature
uint8_t signature[CW_RAW_SIGNATURE_SIZE]
Definition CryptnoxWallet.h:117