2016-09-08 21:13:10 +04:00
|
|
|
(**************************************************************************)
|
|
|
|
|
(* *)
|
|
|
|
|
(* Copyright (c) 2014 - 2016. *)
|
|
|
|
|
(* Dynamic Ledger Solutions, Inc. <contact@tezos.com> *)
|
|
|
|
|
(* *)
|
|
|
|
|
(* All rights reserved. No warranty, explicit or implicit, provided. *)
|
|
|
|
|
(* *)
|
|
|
|
|
(**************************************************************************)
|
|
|
|
|
|
2017-10-09 12:55:12 +04:00
|
|
|
module Ed25519 = Tezos_protocol_environment.Ed25519
|
2016-11-14 18:55:24 +04:00
|
|
|
|
2016-09-08 21:13:10 +04:00
|
|
|
module Public_key_hash = Client_aliases.Alias (struct
|
|
|
|
|
type t = Ed25519.Public_key_hash.t
|
|
|
|
|
let encoding = Ed25519.Public_key_hash.encoding
|
2017-04-05 11:54:21 +04:00
|
|
|
let of_source _ s = Lwt.return (Ed25519.Public_key_hash.of_b58check s)
|
2017-04-05 03:02:10 +04:00
|
|
|
let to_source _ p = return (Ed25519.Public_key_hash.to_b58check p)
|
2016-09-08 21:13:10 +04:00
|
|
|
let name = "public key hash"
|
|
|
|
|
end)
|
|
|
|
|
|
|
|
|
|
module Public_key = Client_aliases.Alias (struct
|
2017-02-28 05:56:40 +04:00
|
|
|
type t = Ed25519.Public_key.t
|
|
|
|
|
let encoding = Ed25519.Public_key.encoding
|
2017-04-05 11:54:21 +04:00
|
|
|
let of_source _ s = Lwt.return (Ed25519.Public_key.of_b58check s)
|
2017-04-05 03:02:10 +04:00
|
|
|
let to_source _ p = return (Ed25519.Public_key.to_b58check p)
|
2016-09-08 21:13:10 +04:00
|
|
|
let name = "public key"
|
|
|
|
|
end)
|
|
|
|
|
|
|
|
|
|
module Secret_key = Client_aliases.Alias (struct
|
2017-02-28 05:56:40 +04:00
|
|
|
type t = Ed25519.Secret_key.t
|
|
|
|
|
let encoding = Ed25519.Secret_key.encoding
|
2017-04-05 11:54:21 +04:00
|
|
|
let of_source _ s = Lwt.return (Ed25519.Secret_key.of_b58check s)
|
2017-04-05 03:02:10 +04:00
|
|
|
let to_source _ p = return (Ed25519.Secret_key.to_b58check p)
|
2016-09-08 21:13:10 +04:00
|
|
|
let name = "secret key"
|
|
|
|
|
end)
|
|
|
|
|
|
2017-01-12 19:13:03 +04:00
|
|
|
module Seed = struct
|
|
|
|
|
|
|
|
|
|
let to_hex s =
|
|
|
|
|
Sodium.Sign.Bytes.of_seed s
|
|
|
|
|
|> Bytes.to_string
|
|
|
|
|
|> Hex_encode.hex_encode
|
|
|
|
|
|
|
|
|
|
let of_hex s =
|
|
|
|
|
Hex_encode.hex_decode s
|
|
|
|
|
|> Bytes.of_string
|
|
|
|
|
|> Sodium.Sign.Bytes.to_seed
|
|
|
|
|
|
|
|
|
|
let generate () =
|
|
|
|
|
(* Seed is 32 bytes long *)
|
|
|
|
|
Sodium.Random.Bytes.generate Sodium.Sign.seed_size
|
|
|
|
|
|> Sodium.Sign.Bytes.to_seed
|
|
|
|
|
|
|
|
|
|
let extract =
|
|
|
|
|
Sodium.Sign.secret_key_to_seed
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
let gen_keys ?seed cctxt name =
|
|
|
|
|
let seed =
|
|
|
|
|
match seed with
|
|
|
|
|
| None -> Seed.generate ()
|
|
|
|
|
| Some s -> s in
|
|
|
|
|
let secret_key, public_key = Sodium.Sign.seed_keypair seed in
|
2017-04-05 03:02:10 +04:00
|
|
|
Secret_key.add cctxt name secret_key >>=? fun () ->
|
|
|
|
|
Public_key.add cctxt name public_key >>=? fun () ->
|
|
|
|
|
Public_key_hash.add
|
|
|
|
|
cctxt name (Ed25519.Public_key.hash public_key) >>=? fun () ->
|
|
|
|
|
cctxt.message
|
|
|
|
|
"I generated a brand new pair of keys under the name '%s'." name >>= fun () ->
|
2017-04-05 01:35:41 +04:00
|
|
|
return ()
|
2016-09-08 21:13:10 +04:00
|
|
|
|
2017-10-15 14:42:58 +04:00
|
|
|
let gen_keys_containing ?(prefix=false) ~containing ~name (cctxt : Client_commands.context) =
|
|
|
|
|
let unrepresentable =
|
|
|
|
|
List.filter (fun s -> not @@ Base58.Alphabet.all_in_alphabet Base58.Alphabet.bitcoin s) containing in
|
|
|
|
|
match unrepresentable with
|
|
|
|
|
| _ :: _ ->
|
|
|
|
|
cctxt.warning
|
|
|
|
|
"The following can't be written in the key alphabet (%a): %a"
|
|
|
|
|
Base58.Alphabet.pp Base58.Alphabet.bitcoin
|
|
|
|
|
(Format.pp_print_list
|
|
|
|
|
~pp_sep:(fun ppf () -> Format.fprintf ppf ", ")
|
|
|
|
|
(fun ppf s -> Format.fprintf ppf "'%s'" s))
|
|
|
|
|
unrepresentable >>= return
|
|
|
|
|
| [] ->
|
|
|
|
|
Public_key_hash.mem cctxt name >>=? fun name_exists ->
|
|
|
|
|
if name_exists && not cctxt.config.force
|
|
|
|
|
then
|
|
|
|
|
cctxt.warning
|
|
|
|
|
"Key for name '%s' already exists. Use -force to update." name >>= return
|
|
|
|
|
else
|
|
|
|
|
begin
|
|
|
|
|
cctxt.message "This process uses a brute force search and \
|
|
|
|
|
may take a long time to find a key." >>= fun () ->
|
|
|
|
|
let matches =
|
|
|
|
|
if prefix then
|
|
|
|
|
let containing_tz1 = List.map ((^) "tz1") containing in
|
|
|
|
|
(fun key -> List.exists
|
|
|
|
|
(fun containing ->
|
|
|
|
|
String.sub key 0 (String.length containing) = containing)
|
|
|
|
|
containing_tz1)
|
|
|
|
|
else
|
|
|
|
|
let re = Str.regexp (String.concat "\\|" containing) in
|
|
|
|
|
(fun key -> try ignore (Str.search_forward re key 0); true
|
|
|
|
|
with Not_found -> false) in
|
|
|
|
|
let rec loop attempts =
|
|
|
|
|
let seed = Seed.generate () in
|
|
|
|
|
let secret_key, public_key = Sodium.Sign.seed_keypair seed in
|
|
|
|
|
let hash = Ed25519.Public_key_hash.to_b58check @@ Ed25519.Public_key.hash public_key in
|
|
|
|
|
if matches hash
|
|
|
|
|
then
|
|
|
|
|
Secret_key.add cctxt name secret_key >>=? fun () ->
|
|
|
|
|
Public_key.add cctxt name public_key >>=? fun () ->
|
|
|
|
|
Public_key_hash.add cctxt name (Ed25519.Public_key.hash public_key) >>=? fun () ->
|
|
|
|
|
return hash
|
|
|
|
|
else begin if attempts mod 25_000 = 0
|
|
|
|
|
then cctxt.message "Tried %d keys without finding a match" attempts
|
|
|
|
|
else Lwt.return () end >>= fun () ->
|
|
|
|
|
loop (attempts + 1) in
|
|
|
|
|
loop 1 >>=? fun key_hash ->
|
|
|
|
|
cctxt.message
|
|
|
|
|
"Generated '%s' under the name '%s'." key_hash name >>= fun () ->
|
|
|
|
|
return ()
|
|
|
|
|
end
|
|
|
|
|
|
2016-09-08 21:13:10 +04:00
|
|
|
let check_keys_consistency pk sk =
|
|
|
|
|
let message = MBytes.of_string "Voulez-vous coucher avec moi, ce soir ?" in
|
|
|
|
|
let signature = Ed25519.sign sk message in
|
2017-02-28 05:56:40 +04:00
|
|
|
Ed25519.Signature.check pk signature message
|
2016-09-08 21:13:10 +04:00
|
|
|
|
2016-12-03 16:05:02 +04:00
|
|
|
let get_key cctxt pkh =
|
2017-04-05 03:02:10 +04:00
|
|
|
Public_key_hash.rev_find cctxt pkh >>=? function
|
2016-12-03 16:05:02 +04:00
|
|
|
| None -> cctxt.error "no keys for the source contract manager"
|
2016-09-08 21:13:10 +04:00
|
|
|
| Some n ->
|
2017-04-05 03:02:10 +04:00
|
|
|
Public_key.find cctxt n >>=? fun pk ->
|
|
|
|
|
Secret_key.find cctxt n >>=? fun sk ->
|
2016-09-08 21:13:10 +04:00
|
|
|
return (n, pk, sk)
|
|
|
|
|
|
2017-02-28 11:18:06 +04:00
|
|
|
let get_keys cctxt =
|
2017-04-05 03:02:10 +04:00
|
|
|
Secret_key.load cctxt >>=? fun sks ->
|
2017-04-11 00:58:36 +04:00
|
|
|
Lwt_list.filter_map_s
|
2017-04-05 03:02:10 +04:00
|
|
|
(fun (name, sk) ->
|
2017-04-11 00:58:36 +04:00
|
|
|
begin
|
2017-04-05 03:02:10 +04:00
|
|
|
Public_key.find cctxt name >>=? fun pk ->
|
|
|
|
|
Public_key_hash.find cctxt name >>=? fun pkh ->
|
2017-04-11 00:58:36 +04:00
|
|
|
return (name, pkh, pk, sk)
|
|
|
|
|
end >>= function
|
|
|
|
|
| Ok r -> Lwt.return (Some r)
|
|
|
|
|
| Error _ -> Lwt.return_none)
|
|
|
|
|
sks >>= fun keys ->
|
|
|
|
|
return keys
|
2017-02-28 11:18:06 +04:00
|
|
|
|
2017-01-12 19:13:03 +04:00
|
|
|
let list_keys cctxt =
|
2017-04-05 03:02:10 +04:00
|
|
|
Public_key_hash.load cctxt >>=? fun l ->
|
|
|
|
|
map_s
|
|
|
|
|
(fun (name, pkh) ->
|
|
|
|
|
Public_key.mem cctxt name >>=? fun pkm ->
|
|
|
|
|
Secret_key.mem cctxt name >>=? fun pks ->
|
|
|
|
|
return (name, pkh, pkm, pks))
|
2017-01-12 19:13:03 +04:00
|
|
|
l
|
2017-02-28 11:18:06 +04:00
|
|
|
|
2017-09-15 17:18:00 +04:00
|
|
|
let alias_keys cctxt name =
|
|
|
|
|
Public_key_hash.load cctxt >>=? fun l ->
|
|
|
|
|
let rec find_key = function
|
|
|
|
|
| [] -> return None
|
|
|
|
|
| (key_name, pkh) :: tl ->
|
2017-11-13 17:29:28 +04:00
|
|
|
if key_name = name
|
2017-09-15 17:18:00 +04:00
|
|
|
then
|
|
|
|
|
Public_key.find_opt cctxt name >>=? fun pkm ->
|
|
|
|
|
Secret_key.find_opt cctxt name >>=? fun pks ->
|
|
|
|
|
return (Some (pkh, pkm, pks))
|
|
|
|
|
else find_key tl
|
|
|
|
|
in find_key l
|
|
|
|
|
|
2016-12-03 16:05:02 +04:00
|
|
|
let group =
|
|
|
|
|
{ Cli_entries.name = "keys" ;
|
|
|
|
|
title = "Commands for managing cryptographic keys" }
|
|
|
|
|
|
2016-09-08 21:13:10 +04:00
|
|
|
let commands () =
|
|
|
|
|
let open Cli_entries in
|
2017-03-15 04:17:20 +04:00
|
|
|
let open Client_commands in
|
2017-09-19 13:31:35 +04:00
|
|
|
let show_private_switch =
|
|
|
|
|
switch
|
|
|
|
|
~parameter:"-show-secret"
|
|
|
|
|
~doc:"Show the private key" in
|
2017-04-05 03:02:10 +04:00
|
|
|
[
|
|
|
|
|
|
|
|
|
|
command ~group ~desc: "generate a pair of keys"
|
2017-09-19 13:31:35 +04:00
|
|
|
no_options
|
2016-09-08 21:13:10 +04:00
|
|
|
(prefixes [ "gen" ; "keys" ]
|
|
|
|
|
@@ Secret_key.fresh_alias_param
|
|
|
|
|
@@ stop)
|
2017-09-19 13:31:35 +04:00
|
|
|
(fun () name cctxt -> gen_keys cctxt name) ;
|
2017-04-05 03:02:10 +04:00
|
|
|
|
2017-10-15 14:42:58 +04:00
|
|
|
command ~group ~desc: "Generate keys including the given string"
|
|
|
|
|
(args1 (switch ~doc:"The key must begin with tz1[containing]" ~parameter:"-prefix"))
|
|
|
|
|
(prefixes [ "gen" ; "vanity" ; "keys" ]
|
|
|
|
|
@@ Public_key_hash.fresh_alias_param
|
|
|
|
|
@@ prefix "matching"
|
|
|
|
|
@@ (seq_of_param @@ string ~name:"strs" ~desc:"String key must contain"))
|
|
|
|
|
(fun prefix name containing cctxt ->
|
|
|
|
|
gen_keys_containing ~prefix ~containing ~name cctxt) ;
|
|
|
|
|
|
2016-12-03 16:05:02 +04:00
|
|
|
command ~group ~desc: "add a secret key to the wallet"
|
2017-09-19 13:31:35 +04:00
|
|
|
no_options
|
2016-09-08 21:13:10 +04:00
|
|
|
(prefixes [ "add" ; "secret" ; "key" ]
|
|
|
|
|
@@ Secret_key.fresh_alias_param
|
|
|
|
|
@@ Secret_key.source_param
|
|
|
|
|
@@ stop)
|
2017-09-19 13:31:35 +04:00
|
|
|
(fun () name sk cctxt ->
|
2017-04-05 03:02:10 +04:00
|
|
|
Public_key.find_opt cctxt name >>=? function
|
|
|
|
|
| None ->
|
2017-06-20 18:54:36 +04:00
|
|
|
let pk = Sodium.Sign.secret_key_to_public_key sk in
|
|
|
|
|
Public_key_hash.add cctxt
|
|
|
|
|
name (Ed25519.Public_key.hash pk) >>=? fun () ->
|
|
|
|
|
Public_key.add cctxt name pk >>=? fun () ->
|
|
|
|
|
Secret_key.add cctxt name sk
|
2017-04-05 03:02:10 +04:00
|
|
|
| Some pk ->
|
|
|
|
|
fail_unless
|
|
|
|
|
(check_keys_consistency pk sk || cctxt.config.force)
|
|
|
|
|
(failure
|
|
|
|
|
"public and secret keys '%s' don't correspond, \
|
2017-10-15 14:42:58 +04:00
|
|
|
please don't use -force" name) >>=? fun () ->
|
2017-04-05 03:02:10 +04:00
|
|
|
Secret_key.add cctxt name sk) ;
|
|
|
|
|
|
2016-12-03 16:05:02 +04:00
|
|
|
command ~group ~desc: "add a public key to the wallet"
|
2017-09-19 13:31:35 +04:00
|
|
|
no_options
|
2016-09-08 21:13:10 +04:00
|
|
|
(prefixes [ "add" ; "public" ; "key" ]
|
|
|
|
|
@@ Public_key.fresh_alias_param
|
|
|
|
|
@@ Public_key.source_param
|
|
|
|
|
@@ stop)
|
2017-09-19 13:31:35 +04:00
|
|
|
(fun () name key cctxt ->
|
2017-04-05 03:02:10 +04:00
|
|
|
Public_key_hash.add cctxt
|
|
|
|
|
name (Ed25519.Public_key.hash key) >>=? fun () ->
|
|
|
|
|
Public_key.add cctxt name key) ;
|
|
|
|
|
|
2016-12-03 16:05:02 +04:00
|
|
|
command ~group ~desc: "add an ID a public key hash to the wallet"
|
2017-09-19 13:31:35 +04:00
|
|
|
no_options
|
2016-09-08 21:13:10 +04:00
|
|
|
(prefixes [ "add" ; "identity" ]
|
|
|
|
|
@@ Public_key_hash.fresh_alias_param
|
|
|
|
|
@@ Public_key_hash.source_param
|
|
|
|
|
@@ stop)
|
2017-09-19 13:31:35 +04:00
|
|
|
(fun () name hash cctxt -> Public_key_hash.add cctxt name hash) ;
|
2017-04-05 03:02:10 +04:00
|
|
|
|
2016-12-03 16:05:02 +04:00
|
|
|
command ~group ~desc: "list all public key hashes and associated keys"
|
2017-09-19 13:31:35 +04:00
|
|
|
no_options
|
2016-09-08 21:13:10 +04:00
|
|
|
(fixed [ "list" ; "known" ; "identities" ])
|
2017-09-19 13:31:35 +04:00
|
|
|
(fun () cctxt ->
|
2017-04-05 03:02:10 +04:00
|
|
|
list_keys cctxt >>=? fun l ->
|
|
|
|
|
iter_s
|
|
|
|
|
(fun (name, pkh, pkm, pks) ->
|
|
|
|
|
Public_key_hash.to_source cctxt pkh >>=? fun v ->
|
|
|
|
|
cctxt.message "%s: %s%s%s" name v
|
|
|
|
|
(if pkm then " (public key known)" else "")
|
|
|
|
|
(if pks then " (secret key known)" else "") >>= fun () ->
|
|
|
|
|
return ())
|
|
|
|
|
l) ;
|
|
|
|
|
|
2017-09-15 17:18:00 +04:00
|
|
|
command ~group ~desc: "show the keys associated with an identity"
|
2017-09-19 13:31:35 +04:00
|
|
|
(args1 show_private_switch)
|
2017-09-15 17:18:00 +04:00
|
|
|
(prefixes [ "show" ; "identity"]
|
|
|
|
|
@@ Public_key_hash.alias_param
|
|
|
|
|
@@ stop)
|
2017-09-19 13:31:35 +04:00
|
|
|
(fun show_private (name, _) cctxt ->
|
2017-09-15 17:18:00 +04:00
|
|
|
let ok_lwt x = x >>= (fun x -> return x) in
|
|
|
|
|
alias_keys cctxt name >>=? fun key_info ->
|
|
|
|
|
match key_info with
|
|
|
|
|
| None -> ok_lwt @@ cctxt.message "No keys found for identity"
|
|
|
|
|
| Some (hash, pub, priv) ->
|
|
|
|
|
Public_key_hash.to_source cctxt hash >>=? fun hash ->
|
|
|
|
|
ok_lwt @@ cctxt.message "Hash: %s" hash >>=? fun () ->
|
|
|
|
|
match pub with
|
|
|
|
|
| None -> return ()
|
|
|
|
|
| Some pub ->
|
|
|
|
|
Public_key.to_source cctxt pub >>=? fun pub ->
|
|
|
|
|
ok_lwt @@ cctxt.message "Public Key: %s" pub >>=? fun () ->
|
2017-09-19 13:31:35 +04:00
|
|
|
if show_private then
|
2017-09-15 17:18:00 +04:00
|
|
|
match priv with
|
|
|
|
|
| None -> return ()
|
|
|
|
|
| Some priv ->
|
|
|
|
|
Secret_key.to_source cctxt priv >>=? fun priv ->
|
|
|
|
|
ok_lwt @@ cctxt.message "Secret Key: %s" priv
|
|
|
|
|
else return ()) ;
|
|
|
|
|
|
2016-12-03 16:05:02 +04:00
|
|
|
command ~group ~desc: "forget all keys"
|
2017-09-19 13:31:35 +04:00
|
|
|
no_options
|
2016-09-08 21:13:10 +04:00
|
|
|
(fixed [ "forget" ; "all" ; "keys" ])
|
2017-09-19 13:31:35 +04:00
|
|
|
(fun () cctxt ->
|
2017-04-05 03:02:10 +04:00
|
|
|
fail_unless cctxt.config.force
|
2017-10-15 14:42:58 +04:00
|
|
|
(failure "this can only used with option -force") >>=? fun () ->
|
2017-04-05 03:02:10 +04:00
|
|
|
Public_key.save cctxt [] >>=? fun () ->
|
|
|
|
|
Secret_key.save cctxt [] >>=? fun () ->
|
|
|
|
|
Public_key_hash.save cctxt []) ;
|
|
|
|
|
|
|
|
|
|
]
|
