pjkundert
diff --git a/‎slip39/api.py‎
Lines changed: 6 additions & 6 deletions b/‎slip39/api.py‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎slip39/defaults.py‎
Lines changed: 2 additions & 1 deletion b/‎slip39/defaults.py‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎slip39/gui/SLIP-39-SD.org‎
Lines changed: 21 additions & 8 deletions b/‎slip39/gui/SLIP-39-SD.org‎
Lines changed: 21 additions & 8 deletions
diff --git a/‎slip39/gui/SLIP-39-SD.txt‎
Lines changed: 27 additions & 9 deletions b/‎slip39/gui/SLIP-39-SD.txt‎
Lines changed: 27 additions & 9 deletions
@@ -36,7 +36,7 @@
 from hdwallet		import cryptocurrencies
 
 from .defaults		import BITS_DEFAULT, BITS, MNEM_ROWS_COLS, GROUP_REQUIRED_RATIO, CRYPTO_PATHS
-from .util		import ordinal
+from .util		import ordinal, commas
 from .recovery		import produce_bip39, recover_bip39
 
 log				= logging.getLogger( __package__ )
@@ -364,7 +364,7 @@ def path_default( cls, crypto, format=None ):
         crypto			= cls.supported( crypto )
         format			= format.lower() if format else cls.address_format( crypto )
         if format not in cls.CRYPTO_FORMAT_PATH[crypto]:
-            raise ValueError( f"{format} not supported for {crypto}; specify one of {', '.join( cls.CRYPTO_FORMAT_PATH[crypto].keys() )}" )
+            raise ValueError( f"{format} not supported for {crypto}; specify one of {commas( cls.CRYPTO_FORMAT_PATH[crypto].keys() )}" )
         return cls.CRYPTO_FORMAT_PATH[crypto][format]
 
     @classmethod
@@ -380,7 +380,7 @@ def address_format( cls, crypto, format=None ):
 
         format			= format.lower() if format else None
         if format not in cls.FORMATS:
-            raise ValueError( f"{crypto} address format {format!r} not recognized; specify one of {', '.join( cls.FORMATS )}" )
+            raise ValueError( f"{crypto} address format {format!r} not recognized; specify one of {commas( cls.FORMATS )}" )
         cls.CRYPTO_FORMAT[crypto]	= format
 
     @classmethod
@@ -395,7 +395,7 @@ def supported( cls, crypto ):
         )
         if validated:
             return validated
-        raise ValueError( f"{crypto} not presently supported; specify {', '.join( cls.CRYPTOCURRENCIES )}" )
+        raise ValueError( f"{crypto} not presently supported; specify {commas( cls.CRYPTOCURRENCIES )}" )
 
     def __str__( self ):
         """Until from_seed/from_path are invoked, may not have an address or derivation path."""
@@ -905,7 +905,7 @@ def create(
         group_reqs			= list(
             f"{g_nam}({g_of}/{len(g_mns)})" if g_of != len(g_mns) else f"{g_nam}({g_of})"
             for g_nam,(g_of,g_mns) in groups.items() )
-        requires		= f"Recover w/ {group_threshold} of {len(groups)} groups {', '.join(group_reqs)}"
+        requires		= f"Recover w/ {group_threshold} of {len(groups)} groups {commas( group_reqs )}"
         for g_n,(g_name,(g_of,g_mnems)) in enumerate( groups.items() ):
             log.info( f"{g_name}({g_of}/{len(g_mnems)}): {requires}" )
             for mn_n,mnem in enumerate( g_mnems ):
@@ -932,7 +932,7 @@ def mnemonics(
         master_secret		= random_secret( strength // 8 )
     if len( master_secret ) * 8 not in BITS:
         raise ValueError(
-            f"Only {', '.join( f'{b}-' for b in BITS )}bit seeds supported; {len(master_secret)*8}-bit master_secret supplied" )
+            f"Only {commas( BITS, final_and=True )}-bit seeds supported; {len(master_secret)*8}-bit seed supplied" )
     return generate_mnemonics(
         group_threshold	= group_threshold,
         groups		= groups,
 
@@ -102,8 +102,9 @@
 LAYOUT_REC			= 2
 LAYOUT_PRO			= 3
 
-BITS				= (128, 256, 512)
 BITS_DEFAULT			= 128
+BITS				= (128, 256, 512)
+BITS_BIP39			= BITS + (160, 192, 224)
 
 MNEM_ROWS_COLS			= {
     20:	( 7, 3),		# 128-bit seed
 
@@ -5,21 +5,22 @@
 Create (or recover) Seed Data for your SLIP-39 Mnemonic.  Or, backup your insecure/unreliable
 BIP-39 Mnemonic using SLIP-39.
 
-| Controls | Source  | Description                                               |
-|----------+---------+-----------------------------------------------------------|
-| Backup   | BIP-39  | Create SLIP-39 Mnemonics from existing BIP-39 Seed Phrase |
-| Create   | Random  | Create SLIP-39 Mnemonics from secure randomnes            |
-| Recover  | SLIP-39 | Recover Seed from SLIP-39 Mnemonics                       |
-| Pro      | BIP-39  | Recover BIP-39 Seed resulting from Mnemonics + passphrase |
-| Pro      | Fixed   | Hex data may be supplied for the Seed                     |
+| Controls | Source      | Description                                            |
+|----------+-------------+--------------------------------------------------------|
+| Backup   | BIP-39      | Create SLIP-39 Mnemonics to recover BIP-39 Seed Phrase |
+| Create   | Random      | Create SLIP-39 Mnemonics from secure randomnes         |
+| Recover  | SLIP-39     | Recover Seed from SLIP-39 Mnemonics                    |
+| Pro      | BIP-39 Seed | Backup 512-bit BIP-39 Seed from Mnemonics + passphrase |
+| Pro      | Fixed       | Hex data may be supplied for the Seed                  |
 #+END_ABSTRACT
 
 * BIP-39
 
   Backup an existing 12- or 24-word BIP-39 Seed Phrase Mnemonic.  Or, select Create to produce a new
   BIP-39 Mnemonic.  Save your BIP-39 Seed Phrase as a set of SLIP-39 Mnemonic Card Groups.
 
-  Later, select Recover to input your SLIP-39 Mnemonics, and recover your BIP-39 Seed Phrase.
+  Later, select Recover to input your SLIP-39 Mnemonics, and recover your BIP-39 Seed Phrase.  Use
+  this BIP-39 Seed Phrase (plus your passphrase, if any) to initialize a BIP-39 Hardware Wallet.
 
   You can then securely destroy your BIP-39 Mnemonic card(s) (or, keep a copy in some *extremely*
   secure location), and use the SLIP-39 Mnemonic cards as your distributed backup in case of its
@@ -71,6 +72,18 @@ BIP-39 Mnemonic using SLIP-39.
 
   So, 128-bit seeds are probably fine for most practical levels of account security...
 
+* BIP-39 Seed
+
+  If you wish, you can backup a /complete/ BIP-39 Seed Phrase *including its passphrase*, as a raw
+  512-bit BIP-39 Seed!  This ensures that whoever uses the SLIP-39 Mnemonics to recover the wallets
+  does not need to know the original BIP-39 Mnemonic + passphrase.
+
+  There are a couple of drawbacks with this approach, though:
+
+  - Large 59-word SLIP-39 Mnemonics are produced, to store the 512-bit seed
+  - Seed cannot be used with a BIP-39 Hardware Wallet
+    - Produce "Paper Wallets" for whichever derived HD wallets you need to access
+
 ** The Birthday Paradox
 
    However, due to the [[https://en.wikipedia.org/wiki/Birthday_attack][Birthday Attack]], the probability of two parties out of /a large number
 
@@ -1,13 +1,13 @@
 Create (or recover) Seed Data for your SLIP-39 Mnemonic.  Or, backup
 your insecure/unreliable BIP-39 Mnemonic using SLIP-39.
 
- Controls  Source   Description                                               
-------------------------------------------------------------------------------
- Backup    BIP-39   Create SLIP-39 Mnemonics from existing BIP-39 Seed Phrase 
- Create    Random   Create SLIP-39 Mnemonics from secure randomnes            
- Recover   SLIP-39  Recover Seed from SLIP-39 Mnemonics                       
- Pro       BIP-39   Recover BIP-39 Seed resulting from Mnemonics + passphrase 
- Pro       Fixed    Hex data may be supplied for the Seed                     
+ Controls  Source       Description                                            
+-------------------------------------------------------------------------------
+ Backup    BIP-39       Create SLIP-39 Mnemonics to recover BIP-39 Seed Phrase 
+ Create    Random       Create SLIP-39 Mnemonics from secure randomnes         
+ Recover   SLIP-39      Recover Seed from SLIP-39 Mnemonics                    
+ Pro       BIP-39 Seed  Backup 512-bit BIP-39 Seed from Mnemonics + passphrase 
+ Pro       Fixed        Hex data may be supplied for the Seed                  
 
 
 1 BIP-39
@@ -18,7 +18,8 @@ your insecure/unreliable BIP-39 Mnemonic using SLIP-39.
   Phrase as a set of SLIP-39 Mnemonic Card Groups.
 
   Later, select Recover to input your SLIP-39 Mnemonics, and recover
-  your BIP-39 Seed Phrase.
+  your BIP-39 Seed Phrase.  Use this BIP-39 Seed Phrase (plus your
+  passphrase, if any) to initialize a BIP-39 Hardware Wallet.
 
   You can then securely destroy your BIP-39 Mnemonic card(s) (or, keep a
   copy in some *extremely* secure location), and use the SLIP-39
@@ -88,7 +89,24 @@ your insecure/unreliable BIP-39 Mnemonic using SLIP-39.
   account security...
 
 
-3.1 The Birthday Paradox
+4 BIP-39 Seed
+=============
+
+  If you wish, you can backup a /complete/ BIP-39 Seed Phrase *including
+  its passphrase*, as a raw 512-bit BIP-39 Seed!  This ensures that
+  whoever uses the SLIP-39 Mnemonics to recover the wallets does not
+  need to know the original BIP-39 Mnemonic + passphrase.
+
+  There are a couple of drawbacks with this approach, though:
+
+  - Large 59-word SLIP-39 Mnemonics are produced, to store the 512-bit
+    seed
+  - Seed cannot be used with a BIP-39 Hardware Wallet
+    - Produce "Paper Wallets" for whichever derived HD wallets you need
+      to access
+
+
+4.1 The Birthday Paradox
 ~~~~~~~~~~~~~~~~~~~~~~~~
 
   However, due to the [Birthday Attack], the probability of two parties