Skip to content
/ shamir-cli Public

Modular CLI agents for Shamir Secret Sharing — operational silence, audit-grade recovery, and annotated resilience.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

krunixbase/shamir-cli

BranchesTags

Repository files navigation

shamir-cli

shamir-cli is a reference‑grade command‑line tool for splitting and recovering secrets using Shamir Secret Sharing over GF(256), with mandatory authenticated encryption and explicit, auditable formats.

The project prioritizes correctness, auditability, and fail‑closed security semantics over convenience or backward compatibility.

Key Properties

  • Threshold‑based secret recovery (Shamir Secret Sharing)
  • Finite field arithmetic over GF(256)
  • Mandatory authenticated encryption (AEAD)
  • Deterministic, versioned share format
  • Explicit failure on any corruption or misuse
  • Full test coverage with canonical vectors

Design Philosophy

shamir-cli is built around the following principles:

  • Explicit over implicit
  • Failure over silent recovery
  • Auditability over performance
  • Determinism over opacity

Every cryptographic decision is documented, testable, and intentional.

Architecture Overview

Secret ↓ AEAD (ChaCha20‑Poly1305) ↓ Shamir Split (GF256) ↓ FORMAT=2 Share Files

Recovery reverses this process and fails immediately on any integrity violation.

Cryptography

  • Field: GF(256)
  • Polynomial: AES irreducible polynomial (0x11b)
  • AEAD: ChaCha20‑Poly1305
  • KDF: HKDF‑SHA256

All parameters are fixed and documented.

Share Format

Shares are stored as human‑readable text files using a strict, versioned format:

FORMAT=2 FIELD=GF256 INDEX=1 THRESHOLD=3 TOTAL=5 SALT=... NONCE=... DATA=...

Unsupported versions or malformed files are rejected.

Failure Semantics

The system is explicitly fail‑closed.

Failures include:

  • Insufficient shares
  • Duplicate indices
  • Corrupted or truncated data
  • Authentication failure
  • Format violations

No partial recovery or best‑effort behavior is permitted.

Documentation

  • docs/CRYPTO_SPEC.md — cryptographic design and primitives
  • docs/SECURITY_MODEL.md — attacker model and guarantees
  • docs/NON_GOALS.md — explicitly excluded features
  • tests/vectors/ — canonical test vectors

Intended Use

shamir-cli is intended for:

  • Secure secret escrow
  • Threshold‑based recovery workflows
  • Auditable security systems
  • Long‑term archival of sensitive material

It is not a general encryption tool or key management system.

License

MIT License. See LICENSE for details.

Status

Stable contract release.

CLI behavior and FORMAT=2 are considered production‑ready and frozen as of v0.2.1. Future releases in the v0.2.x series will not introduce breaking changes.

Version

Current stable release: v0.2.1

This release defines the canonical CLI behavior and the FORMAT=2 share serialization contract. All v0.2.x releases are backward‑compatible with this version.

About

Modular CLI agents for Shamir Secret Sharing — operational silence, audit-grade recovery, and annotated resilience.

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 3

v0.1.0 — Initial Reference Release Latest
Jan 18, 2026
+ 2 releases

Packages

No packages published

Languages