ligo/src/client/client_keys.ml

(**************************************************************************)
(*                                                                        *)
(*    Copyright (c) 2014 - 2016.                                          *)
(*    Dynamic Ledger Solutions, Inc. <contact@tezos.com>                  *)
(*                                                                        *)
(*    All rights reserved. No warranty, explicit or implicit, provided.   *)
(*                                                                        *)
(**************************************************************************)

module Ed25519 = Environment.Ed25519

module Public_key_hash = Client_aliases.Alias (struct
    type t = Ed25519.Public_key_hash.t
    let encoding = Ed25519.Public_key_hash.encoding
    let of_source _ s = Lwt.return (Ed25519.Public_key_hash.of_b58check s)
    let to_source _ p = Lwt.return (Ed25519.Public_key_hash.to_b58check p)
    let name = "public key hash"
  end)

module Public_key = Client_aliases.Alias (struct
    type t = Ed25519.Public_key.t
    let encoding = Ed25519.Public_key.encoding
    let of_source _ s = Lwt.return (Ed25519.Public_key.of_b58check s)
    let to_source _ p = Lwt.return (Ed25519.Public_key.to_b58check p)
    let name = "public key"
  end)

module Secret_key = Client_aliases.Alias (struct
    type t = Ed25519.Secret_key.t
    let encoding = Ed25519.Secret_key.encoding
    let of_source _ s = Lwt.return (Ed25519.Secret_key.of_b58check s)
    let to_source _ p = Lwt.return (Ed25519.Secret_key.to_b58check p)
    let name = "secret key"
  end)

module Seed = struct

  let to_hex s =
    Sodium.Sign.Bytes.of_seed s
    |> Bytes.to_string
    |> Hex_encode.hex_encode

  let of_hex s =
    Hex_encode.hex_decode s
    |> Bytes.of_string
    |> Sodium.Sign.Bytes.to_seed

  let generate () =
    (* Seed is 32 bytes long *)
    Sodium.Random.Bytes.generate Sodium.Sign.seed_size
    |> Sodium.Sign.Bytes.to_seed

  let extract =
    Sodium.Sign.secret_key_to_seed
end

let gen_keys ?seed cctxt name =
  let seed =
    match seed with
    | None -> Seed.generate ()
    | Some s -> s in
  let secret_key, public_key = Sodium.Sign.seed_keypair seed in
  Secret_key.add cctxt name secret_key >>= fun () ->
  Public_key.add cctxt name public_key >>= fun () ->
  Public_key_hash.add cctxt name (Ed25519.Public_key.hash public_key) >>= fun () ->
  cctxt.message "I generated a brand new pair of keys under the name '%s'." name

let check_keys_consistency pk sk =
  let message = MBytes.of_string "Voulez-vous coucher avec moi, ce soir ?" in
  let signature = Ed25519.sign sk message in
  Ed25519.Signature.check pk signature message

let get_key cctxt pkh =
  Public_key_hash.rev_find cctxt pkh >>= function
  | None -> cctxt.error "no keys for the source contract manager"
  | Some n ->
      Public_key.find cctxt n >>= fun pk ->
      Secret_key.find cctxt n >>= fun sk ->
      return (n, pk, sk)

let get_keys cctxt =
  Secret_key.load cctxt >>=
  Lwt_list.filter_map_p begin fun (name, sk) ->
    Lwt.catch begin fun () ->
      Public_key.find cctxt name >>= fun pk ->
      Public_key_hash.find cctxt name >>= fun pkh ->
      Lwt.return (Some (name, pkh, pk, sk))
    end begin fun _ ->
      Lwt.return_none
    end
  end

let list_keys cctxt =
  Public_key_hash.load cctxt >>= fun l ->
  Lwt_list.map_s (fun (name, pkh) ->
      Public_key.mem cctxt name >>= fun pkm ->
      Secret_key.mem cctxt name >>= fun pks ->
      Lwt.return (name, pkh, pkm, pks))
    l

let group =
  { Cli_entries.name = "keys" ;
    title = "Commands for managing cryptographic keys" }

let commands () =
  let open Cli_entries in
  let open Client_commands in
  [ command ~group ~desc: "generate a pair of keys"
      (prefixes [ "gen" ; "keys" ]
       @@ Secret_key.fresh_alias_param
       @@ stop)
      (fun name cctxt -> gen_keys cctxt name) ;
    command ~group ~desc: "add a secret key to the wallet"
      (prefixes [ "add" ; "secret" ; "key" ]
       @@ Secret_key.fresh_alias_param
       @@ Secret_key.source_param
       @@ stop)
      (fun name sk cctxt ->
         Lwt.catch (fun () ->
             Public_key.find cctxt name >>= fun pk ->
             if check_keys_consistency pk sk || cctxt.config.force then
               Secret_key.add cctxt name sk
             else
               cctxt.error
                 "public and secret keys '%s' don't correspond, \
                  please don't use -force true" name)
           (function
             | Not_found ->
                 cctxt.error
                   "no public key named '%s', add it before adding the secret key" name
             | exn -> Lwt.fail exn)) ;
    command ~group ~desc: "add a public key to the wallet"
      (prefixes [ "add" ; "public" ; "key" ]
       @@ Public_key.fresh_alias_param
       @@ Public_key.source_param
       @@ stop)
      (fun name key cctxt ->
         Public_key_hash.add cctxt name (Ed25519.Public_key.hash key) >>= fun () ->
         Public_key.add cctxt name key) ;
    command ~group ~desc: "add an ID a public key hash to the wallet"
      (prefixes [ "add" ; "identity" ]
       @@ Public_key_hash.fresh_alias_param
       @@ Public_key_hash.source_param
       @@ stop)
      (fun name hash cctxt ->
         Public_key_hash.add cctxt name hash) ;
    command ~group ~desc: "list all public key hashes and associated keys"
      (fixed [ "list" ; "known" ; "identities" ])
      (fun cctxt ->
         list_keys cctxt >>= fun l ->
         Lwt_list.iter_s (fun (name, pkh, pkm, pks) ->
             Public_key_hash.to_source cctxt pkh >>= fun v ->
             cctxt.message "%s: %s%s%s" name v
               (if pkm then " (public key known)" else "")
               (if pks then " (secret key known)" else ""))
           l) ;
    command ~group ~desc: "forget all keys"
      (fixed [ "forget" ; "all" ; "keys" ])
      (fun cctxt ->
         if not cctxt.config.force then
           cctxt.Client_commands.error "this can only used with option -force true"
         else
           Public_key.save cctxt [] >>= fun () ->
           Secret_key.save cctxt [] >>= fun () ->
           Public_key_hash.save cctxt []) ;
     ]
First public release 2016-09-08 21:13:10 +04:00			`(**************************************************************************)`
			`(* *)`
			`(* Copyright (c) 2014 - 2016. *)`
			`(* Dynamic Ledger Solutions, Inc. <contact@tezos.com> *)`
			`(* *)`
			`(* All rights reserved. No warranty, explicit or implicit, provided. *)`
			`(* *)`
			`(**************************************************************************)`

Shell: inline `Ed25519` into `Environment` This interface is not used in the shell, only in the protocol. It is just a (documented) wrapper over a fragment of sodium. 2016-11-14 18:55:24 +04:00			`module Ed25519 = Environment.Ed25519`

First public release 2016-09-08 21:13:10 +04:00			`module Public_key_hash = Client_aliases.Alias (struct`
			`type t = Ed25519.Public_key_hash.t`
			`let encoding = Ed25519.Public_key_hash.encoding`
Switch to Base58. Base48 was fun but... hell yeah... let's stay standard. Public encoding of hash: ``` Block: "B..." (len: 51) Operation: "o..." (len: 51) Protocol: "P..." (len: 51) Ed25519: "tz1.." (len: 36) Contract: "TZ1.." (len: 36) NetworkdId: "id.." (len: 30) ``` Other internal prefixes (in the RPC): ``` Hash of Michelson's expression: "expr..." (len: 54) Ed25519 public key: "edpk..." (len: 54) Ed25519 secret key: "edsk..." (len: 98) Ed25519 signature: "edsig.." (len: 99) Hash of a random seed nonce: "nce...." (len: 53) Random seed: "rng...." (len: 53) ``` 2017-02-19 21:22:32 +04:00			`let of_source _ s = Lwt.return (Ed25519.Public_key_hash.of_b58check s)`
			`let to_source _ p = Lwt.return (Ed25519.Public_key_hash.to_b58check p)`
First public release 2016-09-08 21:13:10 +04:00			`let name = "public key hash"`
			`end)`

			`module Public_key = Client_aliases.Alias (struct`
Alphanet: remove the secret `bootstrap` keys 2017-02-28 05:56:40 +04:00			`type t = Ed25519.Public_key.t`
			`let encoding = Ed25519.Public_key.encoding`
			`let of_source _ s = Lwt.return (Ed25519.Public_key.of_b58check s)`
			`let to_source _ p = Lwt.return (Ed25519.Public_key.to_b58check p)`
First public release 2016-09-08 21:13:10 +04:00			`let name = "public key"`
			`end)`

			`module Secret_key = Client_aliases.Alias (struct`
Alphanet: remove the secret `bootstrap` keys 2017-02-28 05:56:40 +04:00			`type t = Ed25519.Secret_key.t`
			`let encoding = Ed25519.Secret_key.encoding`
			`let of_source _ s = Lwt.return (Ed25519.Secret_key.of_b58check s)`
			`let to_source _ p = Lwt.return (Ed25519.Secret_key.to_b58check p)`
First public release 2016-09-08 21:13:10 +04:00			`let name = "secret key"`
			`end)`

Client: add optional seed argument to Client_keys.gen_keys 2017-01-12 19:13:03 +04:00			`module Seed = struct`

			`let to_hex s =`
			`Sodium.Sign.Bytes.of_seed s`
			`\|> Bytes.to_string`
			`\|> Hex_encode.hex_encode`

			`let of_hex s =`
			`Hex_encode.hex_decode s`
			`\|> Bytes.of_string`
			`\|> Sodium.Sign.Bytes.to_seed`

			`let generate () =`
			`(* Seed is 32 bytes long *)`
			`Sodium.Random.Bytes.generate Sodium.Sign.seed_size`
			`\|> Sodium.Sign.Bytes.to_seed`

			`let extract =`
			`Sodium.Sign.secret_key_to_seed`
			`end`

			`let gen_keys ?seed cctxt name =`
			`let seed =`
			`match seed with`
			`\| None -> Seed.generate ()`
			`\| Some s -> s in`
			`let secret_key, public_key = Sodium.Sign.seed_keypair seed in`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`Secret_key.add cctxt name secret_key >>= fun () ->`
			`Public_key.add cctxt name public_key >>= fun () ->`
Alphanet: remove the secret `bootstrap` keys 2017-02-28 05:56:40 +04:00			`Public_key_hash.add cctxt name (Ed25519.Public_key.hash public_key) >>= fun () ->`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`cctxt.message "I generated a brand new pair of keys under the name '%s'." name`
First public release 2016-09-08 21:13:10 +04:00
			`let check_keys_consistency pk sk =`
			`let message = MBytes.of_string "Voulez-vous coucher avec moi, ce soir ?" in`
			`let signature = Ed25519.sign sk message in`
Alphanet: remove the secret `bootstrap` keys 2017-02-28 05:56:40 +04:00			`Ed25519.Signature.check pk signature message`
First public release 2016-09-08 21:13:10 +04:00
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`let get_key cctxt pkh =`
			`Public_key_hash.rev_find cctxt pkh >>= function`
			`\| None -> cctxt.error "no keys for the source contract manager"`
First public release 2016-09-08 21:13:10 +04:00			`\| Some n ->`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`Public_key.find cctxt n >>= fun pk ->`
			`Secret_key.find cctxt n >>= fun sk ->`
First public release 2016-09-08 21:13:10 +04:00			`return (n, pk, sk)`

Client: allow the baker te re-read `keys`. Is a new key is added, the baker will start baking for this key. No need to relauch the baker anymore. 2017-02-28 11:18:06 +04:00			`let get_keys cctxt =`
			`Secret_key.load cctxt >>=`
			`Lwt_list.filter_map_p begin fun (name, sk) ->`
			`Lwt.catch begin fun () ->`
			`Public_key.find cctxt name >>= fun pk ->`
			`Public_key_hash.find cctxt name >>= fun pkh ->`
			`Lwt.return (Some (name, pkh, pk, sk))`
			`end begin fun _ ->`
			`Lwt.return_none`
			`end`
			`end`

Client: add optional seed argument to Client_keys.gen_keys 2017-01-12 19:13:03 +04:00			`let list_keys cctxt =`
			`Public_key_hash.load cctxt >>= fun l ->`
			`Lwt_list.map_s (fun (name, pkh) ->`
			`Public_key.mem cctxt name >>= fun pkm ->`
			`Secret_key.mem cctxt name >>= fun pks ->`
			`Lwt.return (name, pkh, pkm, pks))`
			`l`
Client: allow the baker te re-read `keys`. Is a new key is added, the baker will start baking for this key. No need to relauch the baker anymore. 2017-02-28 11:18:06 +04:00
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`let group =`
			`{ Cli_entries.name = "keys" ;`
			`title = "Commands for managing cryptographic keys" }`

First public release 2016-09-08 21:13:10 +04:00			`let commands () =`
			`let open Cli_entries in`
Client: switch to JSON config file and remove config-file dependency. 2017-03-15 04:17:20 +04:00			`let open Client_commands in`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`[ command ~group ~desc: "generate a pair of keys"`
First public release 2016-09-08 21:13:10 +04:00			`(prefixes [ "gen" ; "keys" ]`
			`@@ Secret_key.fresh_alias_param`
			`@@ stop)`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`(fun name cctxt -> gen_keys cctxt name) ;`
			`command ~group ~desc: "add a secret key to the wallet"`
First public release 2016-09-08 21:13:10 +04:00			`(prefixes [ "add" ; "secret" ; "key" ]`
			`@@ Secret_key.fresh_alias_param`
			`@@ Secret_key.source_param`
			`@@ stop)`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`(fun name sk cctxt ->`
First public release 2016-09-08 21:13:10 +04:00			`Lwt.catch (fun () ->`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`Public_key.find cctxt name >>= fun pk ->`
Client: switch to JSON config file and remove config-file dependency. 2017-03-15 04:17:20 +04:00			`if check_keys_consistency pk sk \|\| cctxt.config.force then`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`Secret_key.add cctxt name sk`
First public release 2016-09-08 21:13:10 +04:00			`else`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`cctxt.error`
			`"public and secret keys '%s' don't correspond, \`
			`please don't use -force true" name)`
First public release 2016-09-08 21:13:10 +04:00			`(function`
			`\| Not_found ->`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`cctxt.error`
			`"no public key named '%s', add it before adding the secret key" name`
First public release 2016-09-08 21:13:10 +04:00			`\| exn -> Lwt.fail exn)) ;`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`command ~group ~desc: "add a public key to the wallet"`
First public release 2016-09-08 21:13:10 +04:00			`(prefixes [ "add" ; "public" ; "key" ]`
			`@@ Public_key.fresh_alias_param`
			`@@ Public_key.source_param`
			`@@ stop)`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`(fun name key cctxt ->`
Alphanet: remove the secret `bootstrap` keys 2017-02-28 05:56:40 +04:00			`Public_key_hash.add cctxt name (Ed25519.Public_key.hash key) >>= fun () ->`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`Public_key.add cctxt name key) ;`
			`command ~group ~desc: "add an ID a public key hash to the wallet"`
First public release 2016-09-08 21:13:10 +04:00			`(prefixes [ "add" ; "identity" ]`
			`@@ Public_key_hash.fresh_alias_param`
			`@@ Public_key_hash.source_param`
			`@@ stop)`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`(fun name hash cctxt ->`
			`Public_key_hash.add cctxt name hash) ;`
			`command ~group ~desc: "list all public key hashes and associated keys"`
First public release 2016-09-08 21:13:10 +04:00			`(fixed [ "list" ; "known" ; "identities" ])`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`(fun cctxt ->`
Client: add optional seed argument to Client_keys.gen_keys 2017-01-12 19:13:03 +04:00			`list_keys cctxt >>= fun l ->`
			`Lwt_list.iter_s (fun (name, pkh, pkm, pks) ->`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`Public_key_hash.to_source cctxt pkh >>= fun v ->`
			`cctxt.message "%s: %s%s%s" name v`
First public release 2016-09-08 21:13:10 +04:00			`(if pkm then " (public key known)" else "")`
Client: remove compilation warnings due to Cli_entries.log returning 'unit Lwt.t' 2016-11-22 20:59:09 +04:00			`(if pks then " (secret key known)" else ""))`
First public release 2016-09-08 21:13:10 +04:00			`l) ;`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`command ~group ~desc: "forget all keys"`
First public release 2016-09-08 21:13:10 +04:00			`(fixed [ "forget" ; "all" ; "keys" ])`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`(fun cctxt ->`
Client: switch to JSON config file and remove config-file dependency. 2017-03-15 04:17:20 +04:00			`if not cctxt.config.force then`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`cctxt.Client_commands.error "this can only used with option -force true"`
First public release 2016-09-08 21:13:10 +04:00			`else`
Client: add a context to command evaluation. 2016-12-03 16:05:02 +04:00			`Public_key.save cctxt [] >>= fun () ->`
			`Secret_key.save cctxt [] >>= fun () ->`
			`Public_key_hash.save cctxt []) ;`
First public release 2016-09-08 21:13:10 +04:00			`]`