refactor: replace peek+wipe with use

Author: ovitrif

app/src/main/java/to/bitkit/data/backup/VssBackupClient.kt

@@ -17,7 +17,6 @@ import kotlinx.coroutines.withContext
 import kotlinx.coroutines.withTimeout
 import to.bitkit.data.keychain.Keychain
 import to.bitkit.di.IoDispatcher
-import to.bitkit.domain.models.useAsString
 import to.bitkit.env.Env
 import to.bitkit.utils.Logger
 import javax.inject.Inject
@@ -55,16 +54,13 @@ class VssBackupClient @Inject constructor(
                     if (lnurlAuthServerUrl.isNotEmpty()) {
                         val passphraseSecret = keychain.loadSecret(Keychain.Key.BIP39_PASSPHRASE.name)
 
-                        mnemonicSecret.useAsString { mnemonic ->
-                            vssNewClientWithLnurlAuth(
-                                baseUrl = vssUrl,
-                                storeId = vssStoreId,
-                                mnemonic = mnemonic,
-                                passphrase = passphraseSecret?.peek { String(it) },
-                                lnurlAuthServerUrl = lnurlAuthServerUrl,
-                            )
-                        }
-                        passphraseSecret?.wipe()
+                        vssNewClientWithLnurlAuth(
+                            baseUrl = vssUrl,
+                            storeId = vssStoreId,
+                            mnemonic = mnemonicSecret.use { String(it) },
+                            passphrase = passphraseSecret?.use { String(it) },
+                            lnurlAuthServerUrl = lnurlAuthServerUrl,
+                        )
                     } else {
                         mnemonicSecret.wipe()
                         vssNewClient(

app/src/main/java/to/bitkit/data/backup/VssStoreIdProvider.kt

@@ -2,7 +2,6 @@ package to.bitkit.data.backup
 
 import com.synonym.vssclient.vssDeriveStoreId
 import to.bitkit.data.keychain.Keychain
-import to.bitkit.domain.models.useAsString
 import to.bitkit.env.Env
 import to.bitkit.utils.Logger
 import to.bitkit.utils.ServiceError
@@ -24,14 +23,11 @@ class VssStoreIdProvider @Inject constructor(
                 ?: throw ServiceError.MnemonicNotFound()
             val passphraseSecret = keychain.loadSecret(Keychain.Key.BIP39_PASSPHRASE.name)
 
-            val storeId = mnemonicSecret.useAsString { mnemonic ->
-                vssDeriveStoreId(
-                    prefix = Env.vssStoreIdPrefix,
-                    mnemonic = mnemonic,
-                    passphrase = passphraseSecret?.peek { String(it) },
-                )
-            }
-            passphraseSecret?.wipe()
+            val storeId = vssDeriveStoreId(
+                prefix = Env.vssStoreIdPrefix,
+                mnemonic = mnemonicSecret.use { String(it) },
+                passphrase = passphraseSecret?.use { String(it) },
+            )
 
             cacheMap[walletIndex] = storeId
             Logger.info("VSS store id setup for wallet[$walletIndex]: '$storeId'", context = TAG)

app/src/main/java/to/bitkit/domain/models/Secret.kt

@@ -7,9 +7,12 @@ private const val WIPE_CHAR = '\u0000'
 /**
  * A wrapper that stores sensitive data in a [CharArray] and provides APIs to safely wipe it from memory.
  *
+ * Implements [CharSequence] so it can flow through internal APIs without materializing a [String].
+ * [toString] is intentionally redacted — use [peek] or [use] to access the underlying data.
+ *
  * ALWAYS access the wrapped value inside [use] blocks for auto cleanup.
  */
-class Secret internal constructor(initialValue: CharArray) : AutoCloseable {
+class Secret internal constructor(initialValue: CharArray) : CharSequence, AutoCloseable {
     companion object {
         const val ERR_WIPED = "Secret has already been wiped."
     }
@@ -21,6 +24,15 @@ class Secret internal constructor(initialValue: CharArray) : AutoCloseable {
         initialValue.wipe()
     }
 
+    override val length: Int get() = data?.size ?: 0
+
+    override fun get(index: Int): Char = checkNotNull(data) { ERR_WIPED }[index]
+
+    override fun subSequence(startIndex: Int, endIndex: Int): CharSequence =
+        secretOf(checkNotNull(data) { ERR_WIPED }.copyOfRange(startIndex, endIndex))
+
+    override fun toString(): String = "Secret(***)"
+
     internal operator fun getValue(thisRef: Any?, property: KProperty<*>): CharArray {
         return checkNotNull(data) { ERR_WIPED }
     }
@@ -55,9 +67,17 @@ fun secretOf(value: CharArray) = Secret(value)
 
 fun secretOf(value: String): Secret = Secret(value.toCharArray())
 
-internal inline fun <R> Secret.useAsString(block: (String) -> R): R = use { block(String(it)) }
-
-internal fun Secret.splitWords(): List<Secret> =
-    peek { chars -> String(chars).split(" ").filter { it.isNotBlank() }.map { secretOf(it) } }
+internal fun Secret.splitWords(): List<Secret> = peek { chars ->
+    val words = mutableListOf<Secret>()
+    var start = 0
+    for (i in chars.indices) {
+        if (chars[i] == ' ') {
+            if (i > start) words.add(secretOf(chars.copyOfRange(start, i)))
+            start = i + 1
+        }
+    }
+    if (start < chars.size) words.add(secretOf(chars.copyOfRange(start, chars.size)))
+    words
+}
 
 internal fun List<Secret>.wipeAll() = forEach { it.wipe() }

app/src/main/java/to/bitkit/repositories/LightningRepo.kt

@@ -47,7 +47,6 @@ import to.bitkit.data.CacheStore
 import to.bitkit.data.SettingsStore
 import to.bitkit.data.keychain.Keychain
 import to.bitkit.di.BgDispatcher
-import to.bitkit.domain.models.useAsString
 import to.bitkit.env.Env
 import to.bitkit.ext.getSatsPerVByteFor
 import to.bitkit.ext.nowTimestamp
@@ -685,19 +684,15 @@ class LightningRepo @Inject constructor(
             ?: throw ServiceError.MnemonicNotFound()
         val passphraseSecret = keychain.loadSecret(Keychain.Key.BIP39_PASSPHRASE.name)
 
-        mnemonicSecret.useAsString { mnemonic ->
-            lnurlAuth(
-                k1 = k1,
-                callback = callback,
-                domain = domain,
-                network = Env.network.toCoreNetwork(),
-                bip32Mnemonic = mnemonic,
-                bip39Passphrase = passphraseSecret?.peek { String(it) },
-            ).also {
-                Logger.debug("LNURL auth result: '$it'", context = TAG)
-            }
-        }.also {
-            passphraseSecret?.wipe()
+        lnurlAuth(
+            k1 = k1,
+            callback = callback,
+            domain = domain,
+            network = Env.network.toCoreNetwork(),
+            bip32Mnemonic = mnemonicSecret.use { String(it) },
+            bip39Passphrase = passphraseSecret?.use { String(it) },
+        ).also {
+            Logger.debug("LNURL auth result: '$it'", context = TAG)
         }
     }.onFailure {
         Logger.error("requestLnurlAuth error, k1: $k1, callback: $callback, domain: $domain", it, context = TAG)

app/src/main/java/to/bitkit/repositories/SweepRepo.kt

@@ -9,7 +9,6 @@ import kotlinx.coroutines.withContext
 import to.bitkit.async.ServiceQueue
 import to.bitkit.data.keychain.Keychain
 import to.bitkit.di.BgDispatcher
-import to.bitkit.domain.models.useAsString
 import to.bitkit.env.Env
 import to.bitkit.models.toCoreNetwork
 import to.bitkit.services.CoreService
@@ -38,17 +37,14 @@ class SweepRepo @Inject constructor(
 
             Logger.debug("Checking sweepable balances...", context = TAG)
 
-            val balances = mnemonicSecret.useAsString { mnemonic ->
-                ServiceQueue.CORE.background {
-                    checkSweepableBalances(
-                        mnemonicPhrase = mnemonic,
-                        network = Env.network.toCoreNetwork(),
-                        bip39Passphrase = passphraseSecret?.peek { String(it) },
-                        electrumUrl = Env.electrumServerUrl,
-                    )
-                }
+            val balances = ServiceQueue.CORE.background {
+                checkSweepableBalances(
+                    mnemonicPhrase = mnemonicSecret.use { String(it) },
+                    network = Env.network.toCoreNetwork(),
+                    bip39Passphrase = passphraseSecret?.use { String(it) },
+                    electrumUrl = Env.electrumServerUrl,
+                )
             }
-            passphraseSecret?.wipe()
 
             balances.toSweepableBalances()
         }
@@ -65,19 +61,16 @@ class SweepRepo @Inject constructor(
 
             Logger.debug("Preparing sweep transaction...", context = TAG)
 
-            val preview = mnemonicSecret.useAsString { mnemonic ->
-                ServiceQueue.CORE.background {
-                    prepareSweepTransaction(
-                        mnemonicPhrase = mnemonic,
-                        network = Env.network.toCoreNetwork(),
-                        bip39Passphrase = passphraseSecret?.peek { String(it) },
-                        electrumUrl = Env.electrumServerUrl,
-                        destinationAddress = destinationAddress,
-                        feeRateSatsPerVbyte = feeRateSatsPerVbyte,
-                    )
-                }
+            val preview = ServiceQueue.CORE.background {
+                prepareSweepTransaction(
+                    mnemonicPhrase = mnemonicSecret.use { String(it) },
+                    network = Env.network.toCoreNetwork(),
+                    bip39Passphrase = passphraseSecret?.use { String(it) },
+                    electrumUrl = Env.electrumServerUrl,
+                    destinationAddress = destinationAddress,
+                    feeRateSatsPerVbyte = feeRateSatsPerVbyte,
+                )
             }
-            passphraseSecret?.wipe()
 
             preview.toSweepTransactionPreview()
         }
@@ -91,18 +84,15 @@ class SweepRepo @Inject constructor(
 
             Logger.debug("Broadcasting sweep transaction...", context = TAG)
 
-            val result = mnemonicSecret.useAsString { mnemonic ->
-                ServiceQueue.CORE.background {
-                    broadcastSweepTransaction(
-                        psbt = psbt,
-                        mnemonicPhrase = mnemonic,
-                        network = Env.network.toCoreNetwork(),
-                        bip39Passphrase = passphraseSecret?.peek { String(it) },
-                        electrumUrl = Env.electrumServerUrl,
-                    )
-                }
+            val result = ServiceQueue.CORE.background {
+                broadcastSweepTransaction(
+                    psbt = psbt,
+                    mnemonicPhrase = mnemonicSecret.use { String(it) },
+                    network = Env.network.toCoreNetwork(),
+                    bip39Passphrase = passphraseSecret?.use { String(it) },
+                    electrumUrl = Env.electrumServerUrl,
+                )
             }
-            passphraseSecret?.wipe()
 
             result.toSweepResult()
         }

app/src/main/java/to/bitkit/repositories/WalletRepo.kt

@@ -23,7 +23,6 @@ import to.bitkit.data.keychain.Keychain
 import to.bitkit.di.BgDispatcher
 import to.bitkit.domain.models.Secret
 import to.bitkit.domain.models.secretOf
-import to.bitkit.domain.models.useAsString
 import to.bitkit.env.Env
 import to.bitkit.ext.filterOpen
 import to.bitkit.ext.nowTimestamp
@@ -345,18 +344,15 @@ class WalletRepo @Inject constructor(
                 isChange = isChange,
             ).substringBeforeLast("/0")
 
-            val result = mnemonicSecret.useAsString { mnemonic ->
-                coreService.onchain.deriveBitcoinAddresses(
-                    mnemonicPhrase = mnemonic,
-                    derivationPathStr = baseDerivationPath,
-                    network = Env.network,
-                    bip39Passphrase = passphraseSecret?.peek { String(it) },
-                    isChange = isChange,
-                    startIndex = startIndex.toUInt(),
-                    count = count.toUInt(),
-                )
-            }
-            passphraseSecret?.wipe()
+            val result = coreService.onchain.deriveBitcoinAddresses(
+                mnemonicPhrase = mnemonicSecret,
+                derivationPathStr = baseDerivationPath,
+                network = Env.network,
+                bip39Passphrase = passphraseSecret,
+                isChange = isChange,
+                startIndex = startIndex.toUInt(),
+                count = count.toUInt(),
+            )
 
             val addresses = result.addresses.mapIndexed { index, address ->
                 AddressModel(

app/src/main/java/to/bitkit/services/CoreService.kt

@@ -69,6 +69,7 @@ import org.lightningdevkit.ldknode.PaymentStatus
 import org.lightningdevkit.ldknode.TransactionDetails
 import to.bitkit.async.ServiceQueue
 import to.bitkit.data.CacheStore
+import to.bitkit.domain.models.Secret
 import to.bitkit.env.Env
 import to.bitkit.ext.amountSats
 import to.bitkit.ext.create
@@ -1446,37 +1447,37 @@ class OnchainService {
     }
 
     suspend fun deriveBitcoinAddress(
-        mnemonicPhrase: String,
+        mnemonicPhrase: Secret,
         derivationPathStr: String?,
         network: Network?,
-        bip39Passphrase: String?,
+        bip39Passphrase: Secret?,
     ): GetAddressResponse {
         return ServiceQueue.CORE.background {
             com.synonym.bitkitcore.deriveBitcoinAddress(
-                mnemonicPhrase = mnemonicPhrase,
+                mnemonicPhrase = mnemonicPhrase.use { String(it) },
                 derivationPathStr = derivationPathStr,
                 network = network?.toCoreNetwork(),
-                bip39Passphrase = bip39Passphrase,
+                bip39Passphrase = bip39Passphrase?.use { String(it) },
             )
         }
     }
 
     @Suppress("LongParameterList")
     suspend fun deriveBitcoinAddresses(
-        mnemonicPhrase: String,
+        mnemonicPhrase: Secret,
         derivationPathStr: String?,
         network: Network?,
-        bip39Passphrase: String?,
+        bip39Passphrase: Secret?,
         isChange: Boolean?,
         startIndex: UInt?,
         count: UInt?,
     ): GetAddressesResponse {
         return ServiceQueue.CORE.background {
-            return@background com.synonym.bitkitcore.deriveBitcoinAddresses(
-                mnemonicPhrase = mnemonicPhrase,
+            com.synonym.bitkitcore.deriveBitcoinAddresses(
+                mnemonicPhrase = mnemonicPhrase.use { String(it) },
                 derivationPathStr = derivationPathStr,
                 network = network?.toCoreNetwork(),
-                bip39Passphrase = bip39Passphrase,
+                bip39Passphrase = bip39Passphrase?.use { String(it) },
                 isChange = isChange,
                 startIndex = startIndex,
                 count = count,
@@ -1485,17 +1486,17 @@ class OnchainService {
     }
 
     suspend fun derivePrivateKey(
-        mnemonicPhrase: String,
+        mnemonicPhrase: Secret,
         derivationPathStr: String?,
         network: Network?,
-        bip39Passphrase: String?,
+        bip39Passphrase: Secret?,
     ): String {
         return ServiceQueue.CORE.background {
             com.synonym.bitkitcore.derivePrivateKey(
-                mnemonicPhrase = mnemonicPhrase,
+                mnemonicPhrase = mnemonicPhrase.use { String(it) },
                 derivationPathStr = derivationPathStr,
                 network = network?.toCoreNetwork(),
-                bip39Passphrase = bip39Passphrase,
+                bip39Passphrase = bip39Passphrase?.use { String(it) },
             )
         }
     }

app/src/main/java/to/bitkit/services/LightningService.kt

@@ -43,7 +43,6 @@ import to.bitkit.data.SettingsStore
 import to.bitkit.data.backup.VssStoreIdProvider
 import to.bitkit.data.keychain.Keychain
 import to.bitkit.di.BgDispatcher
-import to.bitkit.domain.models.useAsString
 import to.bitkit.env.Env
 import to.bitkit.ext.totalNextOutboundHtlcLimitSats
 import to.bitkit.ext.uByteList
@@ -152,13 +151,10 @@ class LightningService @Inject constructor(
                 ?: throw ServiceError.MnemonicNotFound()
             val passphraseSecret = keychain.loadSecret(Keychain.Key.BIP39_PASSPHRASE.name)
 
-            mnemonicSecret.useAsString { mnemonic ->
-                setEntropyBip39Mnemonic(
-                    mnemonic = mnemonic,
-                    passphrase = passphraseSecret?.peek { String(it) },
-                )
-            }
-            passphraseSecret?.wipe()
+            setEntropyBip39Mnemonic(
+                mnemonic = mnemonicSecret.use { String(it) },
+                passphrase = passphraseSecret?.use { String(it) },
+            )
         }
         try {
             val vssStoreId = vssStoreIdProvider.getVssStoreId(walletIndex)