2022-05-16 22:34:47 +02:00
#!/usr/bin/env python3
# link: https://git.p2p.legal/aya/dpgpid/
2022-09-23 11:33:13 +02:00
# desc: generate ed25519 keys for duniter and ipfs from gpg
2022-05-16 22:34:47 +02:00
# Copyleft 2022 Yann Autissier <aya@asycn.io>
# all crypto science belongs to Pascal Engélibert <tuxmain@zettascript.org>
# coming from files available at https://git.p2p.legal/qo-op/Astroport.ONE/tools
2022-05-21 03:37:51 +02:00
# gpgme stuff has been provided by Ben McGinnes
# and comes from http://files.au.adversary.org/crypto/gpgme-python-howto.html
# gpg key extraction is taken from work of Simon Vareille available at
# https://gist.github.com/SimonVareille/fda49baf5f3e15b5c88e25560aeb2822
2022-05-16 22:34:47 +02:00
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU Affero General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU Affero General Public License for more details.
# You should have received a copy of the GNU Affero General Public License
# along with this program. If not, see <https://www.gnu.org/licenses/>.
import argparse
import base58
import base64
import configparser
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
from cryptography.hazmat.primitives.asymmetric import ed25519
2022-05-16 22:34:47 +02:00
from cryptography.hazmat.primitives import serialization
import duniterpy.key
2022-05-21 03:37:51 +02:00
import gpg
2022-09-27 16:33:07 +02:00
from jwcrypto import jwk
2022-08-31 18:01:15 +02:00
import logging as log
2022-05-21 03:37:51 +02:00
import nacl.bindings
2022-05-29 21:51:44 +02:00
import nacl.encoding
2022-05-21 03:37:51 +02:00
import pgpy
2022-08-28 23:26:59 +02:00
import pynentry
2022-08-31 18:01:15 +02:00
from SecureBytes import clearmem
2022-05-16 22:34:47 +02:00
import os
import re
2022-05-21 03:37:51 +02:00
import struct
2022-05-16 22:34:47 +02:00
import sys
import time
2022-08-28 23:26:59 +02:00
import warnings
2022-05-16 22:34:47 +02:00
2022-09-27 16:33:07 +02:00
__version__='0.0.5'
2022-05-16 22:34:47 +02:00
2022-06-25 22:43:28 +02:00
class keygen:
2022-05-16 22:34:47 +02:00
def __init__(self):
2022-09-12 14:19:05 +02:00
self.parser = argparse.ArgumentParser(description="""
2022-09-23 11:33:13 +02:00
Generate ed25519 keys for duniter and ipfs from gpg.
It converts a gpg key, a duniter username/password, or any ed25519 key to
a duniter wallet or an IPFS key.""")
2022-05-16 22:34:47 +02:00
self.parser.add_argument(
"-d",
"--debug",
action="store_true",
2022-09-27 16:33:07 +02:00
help="show debug informations (WARNING: including SECRET KEY)",
2022-05-16 22:34:47 +02:00
)
self.parser.add_argument(
2022-09-15 19:32:01 +02:00
"-f",
"--format",
2022-09-27 16:33:07 +02:00
choices=['ewif', 'jwk', 'nacl','pb2','pem','pubsec','seed','wif'],
2022-09-15 19:32:01 +02:00
default=None,
2022-09-27 16:33:07 +02:00
dest="format",
help="output file format, default: pem (pkcs8)",
2022-09-15 19:32:01 +02:00
)
self.parser.add_argument(
2022-09-12 14:19:05 +02:00
"-g",
"--gpg",
action="store_true",
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
help="use gpg key with uid matched by username",
2022-09-12 14:19:05 +02:00
)
self.parser.add_argument(
2022-05-16 22:34:47 +02:00
"-i",
"--input",
dest="input",
2022-09-27 16:33:07 +02:00
help="read ed25519 key from file FILE, autodetect format: {credentials,ewif,jwk,nacl,mnemonic,pb2,pubsec,seed,wif}",
metavar='FILE',
2022-05-16 22:34:47 +02:00
)
self.parser.add_argument(
2022-09-12 14:19:05 +02:00
"-k",
"--keys",
2022-05-16 22:34:47 +02:00
action="store_true",
2022-09-12 14:19:05 +02:00
help="show public and secret keys",
2022-05-16 22:34:47 +02:00
)
self.parser.add_argument(
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
"-m",
"--mnemonic",
action="store_true",
help="use username as a DUBP mnemonic passphrase",
)
self.parser.add_argument(
2022-05-16 22:34:47 +02:00
"-o",
"--output",
dest="output",
default=None,
2022-09-27 16:33:07 +02:00
help="write ed25519 key to file FILE",
metavar='FILE',
2022-06-25 22:43:28 +02:00
)
self.parser.add_argument(
2022-09-12 12:22:48 +02:00
"-p",
2022-09-12 14:19:05 +02:00
"--prefix",
2022-09-12 12:22:48 +02:00
action="store_true",
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
help="prefix output text with key type",
2022-09-12 12:22:48 +02:00
)
self.parser.add_argument(
2022-06-25 22:43:28 +02:00
"-q",
"--quiet",
action="store_true",
help="show only errors",
)
self.parser.add_argument(
2022-09-12 12:22:48 +02:00
"-s",
"--secret",
action="store_true",
2022-09-27 16:33:07 +02:00
help="show only secret key",
2022-09-12 12:22:48 +02:00
)
self.parser.add_argument(
2022-06-25 22:43:28 +02:00
"-t",
"--type",
2022-09-27 16:33:07 +02:00
choices=['b58mh','b64mh','base58','base64','duniter','ipfs','jwk'],
2022-09-12 12:22:48 +02:00
default="base58",
2022-09-27 16:33:07 +02:00
dest="type",
help="output text format, default: base58",
2022-05-16 22:34:47 +02:00
)
self.parser.add_argument(
"-v",
"--verbose",
action="store_true",
help="show more informations",
)
self.parser.add_argument(
"--version",
action="store_true",
help="show version and exit",
)
self.parser.add_argument(
2022-06-25 22:43:28 +02:00
'username',
2022-05-16 22:34:47 +02:00
nargs="?",
)
self.parser.add_argument(
'password',
nargs="?",
)
2022-06-25 22:43:28 +02:00
def _check_args(self, args):
2022-08-31 18:01:15 +02:00
log.debug("keygen._check_args(%s)" % args)
2022-09-27 16:33:07 +02:00
if self.input is None and self.username is None:
self.parser.error('keygen requires an input file or a username')
2022-08-31 18:01:15 +02:00
def _cleanup(self):
log.debug("keygen._cleanup()")
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
if hasattr(self, 'duniterpy'):
if hasattr(self.duniterpy, 'seed') and self.duniterpy.seed:
clearmem(self.duniterpy.seed)
log.debug("cleared: keygen.duniterpy.seed")
if hasattr(self.duniterpy, 'sk') and self.duniterpy.sk:
clearmem(self.duniterpy.sk)
log.debug("cleared: keygen.duniterpy.sk")
2022-09-15 19:32:01 +02:00
if hasattr(self, 'ed25519_secret_base58') and self.ed25519_secret_base58:
clearmem(self.ed25519_secret_base58)
log.debug("cleared: keygen.ed25519_secret_base58")
if hasattr(self, 'ed25519_secret_base64') and self.ed25519_secret_base64:
clearmem(self.ed25519_secret_base64)
log.debug("cleared: keygen.ed25519_secret_base64")
2022-09-12 14:19:05 +02:00
if hasattr(self, 'ed25519_secret_bytes') and self.ed25519_secret_bytes:
2022-08-31 18:01:15 +02:00
clearmem(self.ed25519_secret_bytes)
2022-09-12 14:19:05 +02:00
log.debug("cleared: keygen.ed25519_secret_bytes")
if hasattr(self, 'ed25519_secret_pem_pkcs8') and self.ed25519_secret_pem_pkcs8:
2022-08-31 18:01:15 +02:00
clearmem(self.ed25519_secret_pem_pkcs8)
2022-09-12 14:19:05 +02:00
log.debug("cleared: keygen.ed25515_secret_pem_pkcs8")
2022-09-23 11:33:13 +02:00
if hasattr(self, 'ed25519_secret_protobuf') and self.ed25519_secret_protobuf:
clearmem(self.ed25519_secret_protobuf)
log.debug("cleared: keygen.ed25515_secret_protobuf")
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
if hasattr(self, 'ed25519_seed_bytes') and self.ed25519_seed_bytes:
clearmem(self.ed25519_seed_bytes)
log.debug("cleared: keygen.ed25519_seed_bytes")
2022-09-12 14:19:05 +02:00
if hasattr(self, 'ipfs_privkey') and self.ipfs_privkey:
2022-08-31 18:01:15 +02:00
clearmem(self.ipfs_privkey)
2022-09-12 14:19:05 +02:00
log.debug("cleared: keygen.ipfs_privkey")
2022-09-27 16:33:07 +02:00
if hasattr(self, 'jwk'):
if hasattr(self.jwk, 'd') and self.jwk.d:
clearmem(self.jwk.d)
log.debug("cleared: keygen.jwk.d")
2022-09-12 14:19:05 +02:00
if hasattr(self, 'password') and self.password:
clearmem(self.password)
log.debug("cleared: keygen.password")
2022-09-27 16:33:07 +02:00
if hasattr(self, 'pgp_secret_armor') and self.pgp_secret_armor:
clearmem(self.pgp_secret_armor)
log.debug("cleared: keygen.pgp_secret_armor")
2022-09-12 12:22:48 +02:00
if hasattr(self, 'pgpy'):
2022-09-12 14:19:05 +02:00
if hasattr(self.pgpy._key.keymaterial, 'p') and self.pgpy._key.keymaterial.p and not isinstance(self.pgpy._key.keymaterial.p, pgpy.packet.fields.ECPoint):
2022-09-12 12:22:48 +02:00
clearmem(self.pgpy._key.keymaterial.p)
2022-09-12 14:19:05 +02:00
log.debug("cleared: keygen.pgpy._key.material.p")
if hasattr(self.pgpy._key.keymaterial, 'q') and self.pgpy._key.keymaterial.q:
2022-09-12 12:22:48 +02:00
clearmem(self.pgpy._key.keymaterial.q)
2022-09-12 14:19:05 +02:00
log.debug("cleared: keygen.pgpy._key.material.q")
if hasattr(self.pgpy._key.keymaterial, 's') and self.pgpy._key.keymaterial.s:
2022-09-12 12:22:48 +02:00
clearmem(self.pgpy._key.keymaterial.s)
2022-09-12 14:19:05 +02:00
log.debug("cleared: keygen.pgpy._key.material.s")
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
if hasattr(self, 'username') and self.username:
clearmem(self.username)
log.debug("cleared: keygen.username")
2022-05-16 22:34:47 +02:00
2022-06-25 22:43:28 +02:00
def _invalid_type(self):
2022-08-31 18:01:15 +02:00
log.debug("keygen._invalid_type()")
2022-09-27 16:33:07 +02:00
self.parser.error(f"type {self.type} is not valid.")
2022-05-16 22:34:47 +02:00
def _load_config(self):
2022-08-31 18:01:15 +02:00
log.debug("keygen._load_config()")
2022-05-16 22:34:47 +02:00
self.config = configparser.RawConfigParser()
config_dir = os.path.join(os.environ.get('XDG_CONFIG_HOME', os.path.expanduser('~/.config')), 'dpgpid')
2022-05-21 03:37:51 +02:00
log.debug("config_dir=%s" % config_dir)
2022-06-25 22:43:28 +02:00
self.config.read( [config_dir + '/keygen.conf'] )
2022-05-16 22:34:47 +02:00
2022-09-15 19:32:01 +02:00
def _output(self, public_key, secret_key, public_key_prefix, secret_key_prefix):
log.debug("keygen._output()")
if self.output is None:
self._output_text(public_key, secret_key, public_key_prefix, secret_key_prefix)
else:
self._output_file()
os.chmod(self.output, 0o600)
self._cleanup()
def _output_file(self):
log.debug("keygen._output_file()")
2022-09-27 16:33:07 +02:00
try:
if self.format == 'dewif':
if not hasattr(self, 'duniterpy'):
self.duniterpy_from_ed25519_seed_bytes()
if not self.password:
with pynentry.PynEntry() as p:
p.description = f"""Data in DEWIF file needs to be encrypted.
Please enter a password to encrypt seed.
"""
p.prompt = 'Passphrase:'
try:
self.password = p.get_pin()
except pynentry.PinEntryCancelled:
log.warning('Cancelled! Goodbye.')
self._cleanup()
exit(1)
self.duniterpy.save_dewif_v1_file(self.output, self.password)
elif self.format == 'ewif':
if not hasattr(self, 'duniterpy'):
self.duniterpy_from_ed25519_seed_bytes()
if not self.password:
with pynentry.PynEntry() as p:
p.description = f"""Data in EWIF file needs to be encrypted.
Please enter a password to encrypt seed.
"""
p.prompt = 'Passphrase:'
try:
self.password = p.get_pin()
except pynentry.PinEntryCancelled:
log.warning('Cancelled! Goodbye.')
self._cleanup()
exit(1)
self.duniterpy.save_ewif_file(self.output, self.password)
elif self.format == 'jwk':
if not hasattr(self, 'jwk'):
self.jwk_from_ed25519()
with open(self.output, "w") as file:
file.write(self.jwk.export())
elif self.format == 'nacl':
if not hasattr(self, 'duniterpy'):
self.duniterpy_from_ed25519_seed_bytes()
self.duniterpy.save_private_key(self.output)
elif self.format == 'pb2':
if not hasattr(self, 'ed25519_secret_protobuf'):
self.protobuf_from_ed25519()
with open(self.output, "wb") as file:
file.write(self.ed25519_secret_protobuf)
elif self.format == 'pubsec':
if not hasattr(self, 'duniterpy'):
self.duniterpy_from_ed25519_seed_bytes()
self.duniterpy.save_pubsec_file(self.output)
elif self.format == 'seed':
if not hasattr(self, 'duniterpy'):
self.duniterpy_from_ed25519_seed_bytes()
self.duniterpy.save_seedhex_file(self.output)
elif self.format == 'wif':
if not hasattr(self, 'duniterpy'):
self.duniterpy_from_ed25519_seed_bytes()
self.duniterpy.save_wif_file(self.output)
else:
if not hasattr(self, 'ed25519_secret_pem_pkcs8'):
self.pem_pkcs8_from_ed25519()
with open(self.output, "w") as file:
file.write(self.ed25519_secret_pem_pkcs8)
except Exception as e:
log.error(f'Unable to output file {self.output}: {e}')
self._cleanup()
exit(2)
2022-09-15 19:32:01 +02:00
def _output_text(self, public_key, secret_key, public_key_prefix, secret_key_prefix):
log.debug("keygen._output_text()")
if self.keys or not self.secret:
print("%s" % ''.join([self.prefix * public_key_prefix, public_key]))
if self.keys or self.secret:
print("%s" % ''.join([self.prefix * secret_key_prefix, secret_key]))
2022-08-31 18:01:15 +02:00
def _run(self, argv):
args = self.parser.parse_args(argv)
vars(self).update(vars(args))
# display version
if args.version:
version()
sys.exit()
# define log format
log_format='%(asctime)s %(levelname)s: %(message)s'
log_datefmt='%Y/%m/%d %H:%M:%S'
if args.debug:
log_level='DEBUG'
elif args.quiet:
log_level='ERROR'
elif args.verbose:
log_level='INFO'
else:
log_level='WARNING'
log.basicConfig(format=log_format, datefmt=log_datefmt, level=log_level)
log.debug("keygen.run(%s)" % argv)
self._check_args(args)
self._load_config()
2022-09-12 12:22:48 +02:00
self.gpg = gpg.Context(armor=True, offline=True)
2022-08-31 18:01:15 +02:00
self.gpg.set_passphrase_cb(self.gpg_passphrase_cb)
self.ed25519(args)
method = getattr(self, f'do_{self.type}', self._invalid_type)
return method()
2022-09-23 11:33:13 +02:00
def b58mh_from_protobuf(self):
log.debug("keygen.b58mh_from_protobuf()")
try:
self.ed25519_public_b58mh = base58.b58encode(self.ed25519_public_protobuf).decode('ascii')
self.ed25519_secret_b58mh = base58.b58encode(self.ed25519_secret_protobuf).decode('ascii')
except Exception as e:
log.error(f'Unable to get b58mh from protobuf: {e}')
self._cleanup()
exit(2)
log.debug("keygen.ed25519_public_b58mh=%s" % self.ed25519_public_b58mh)
log.debug("keygen.ed25519_secret_b58mh=%s" % self.ed25519_secret_b58mh)
def b64mh_from_protobuf(self):
log.debug("keygen.b64mh_from_protobuf()")
try:
self.ed25519_public_b64mh = base64.b64encode(self.ed25519_public_protobuf).decode('ascii')
self.ed25519_secret_b64mh = base64.b64encode(self.ed25519_secret_protobuf).decode('ascii')
except Exception as e:
log.error(f'Unable to get b64mh from protobuf: {e}')
self._cleanup()
exit(2)
log.debug("keygen.ed25519_public_b64mh=%s" % self.ed25519_public_b64mh)
log.debug("keygen.ed25519_secret_b64mh=%s" % self.ed25519_secret_b64mh)
2022-05-21 03:37:51 +02:00
def base58_from_ed25519(self):
2022-08-31 18:01:15 +02:00
log.debug("keygen.base58_from_ed25519()")
2022-09-23 11:33:13 +02:00
try:
self.ed25519_public_base58 = base58.b58encode(self.ed25519_public_bytes).decode('ascii')
self.ed25519_secret_base58 = base58.b58encode(self.ed25519_secret_bytes).decode('ascii')
except Exception as e:
log.error(f'Unable to get base58 from ed25519: {e}')
self._cleanup()
exit(2)
2022-09-15 19:32:01 +02:00
log.debug("keygen.ed25519_public_base58=%s" % self.ed25519_public_base58)
log.debug("keygen.ed25519_secret_base58=%s" % self.ed25519_secret_base58)
def base64_from_ed25519(self):
log.debug("keygen.base64_from_ed25519()")
2022-09-23 11:33:13 +02:00
try:
self.ed25519_public_base64 = base64.b64encode(self.ed25519_public_bytes).decode('ascii')
self.ed25519_secret_base64 = base64.b64encode(self.ed25519_secret_bytes).decode('ascii')
except Exception as e:
log.error(f'Unable to get base64 from ed25519: {e}')
self._cleanup()
exit(2)
2022-09-15 19:32:01 +02:00
log.debug("keygen.ed25519_public_base64=%s" % self.ed25519_public_base64)
log.debug("keygen.ed25519_secret_base64=%s" % self.ed25519_secret_base64)
2022-05-21 03:37:51 +02:00
2022-09-23 11:33:13 +02:00
def do_b58mh(self):
log.debug("keygen.do_b58mh()")
self.protobuf_from_ed25519()
self.b58mh_from_protobuf()
self._output(self.ed25519_public_b58mh, self.ed25519_secret_b58mh, 'pub: ', 'sec: ')
def do_b64mh(self):
log.debug("keygen.do_b64mh()")
self.protobuf_from_ed25519()
self.b64mh_from_protobuf()
self._output(self.ed25519_public_b64mh, self.ed25519_secret_b64mh, 'pub: ', 'sec: ')
2022-06-25 22:43:28 +02:00
2022-09-12 12:22:48 +02:00
def do_base58(self):
2022-09-15 19:32:01 +02:00
log.debug("keygen.do_base58()")
2022-05-21 03:37:51 +02:00
self.base58_from_ed25519()
2022-09-15 19:32:01 +02:00
self._output(self.ed25519_public_base58, self.ed25519_secret_base58, 'pub: ', 'sec: ')
def do_base64(self):
log.debug("keygen.do_base64()")
self.base64_from_ed25519()
self._output(self.ed25519_public_base64, self.ed25519_secret_base64, 'pub: ', 'sec: ')
2022-05-16 22:34:47 +02:00
2022-09-12 12:22:48 +02:00
def do_duniter(self):
2022-09-23 11:33:13 +02:00
log.debug("keygen.do_duniter()")
2022-09-15 19:32:01 +02:00
if not self.format:
self.format = 'pubsec'
2022-09-23 11:33:13 +02:00
self.base58_from_ed25519()
self._output(self.ed25519_public_base58, self.ed25519_secret_base58, 'pub: ', 'sec: ')
2022-09-12 12:22:48 +02:00
2022-05-16 22:34:47 +02:00
def do_ipfs(self):
2022-08-31 18:01:15 +02:00
log.debug("keygen.do_ipfs()")
2022-09-23 11:33:13 +02:00
self.protobuf_from_ed25519()
self.b58mh_from_protobuf()
self.b64mh_from_protobuf()
self._output(self.ed25519_public_b58mh, self.ed25519_secret_b64mh, 'PeerID: ', 'PrivKEY: ')
2022-05-16 22:34:47 +02:00
2022-09-27 16:33:07 +02:00
def do_jwk(self):
log.debug("keygen.do_jwk()")
self.jwk_from_ed25519()
self._output(self.jwk.export_public(), self.jwk.export_private(), 'pub: ', 'sec: ')
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
def duniterpy_from_credentials(self):
log.debug("keygen.duniterpy_from_credentials()")
2022-09-23 11:33:13 +02:00
try:
scrypt_params = duniterpy.key.scrypt_params.ScryptParams(
int(self.config.get('scrypt', 'n')) if self.config.has_option('scrypt', 'n') else 4096,
int(self.config.get('scrypt', 'r')) if self.config.has_option('scrypt', 'r') else 16,
int(self.config.get('scrypt', 'p')) if self.config.has_option('scrypt', 'p') else 1,
int(self.config.get('scrypt', 'sl')) if self.config.has_option('scrypt', 'sl') else 32,
)
if not self.password:
with pynentry.PynEntry() as p:
p.description = f"""Please enter the passord for username "{self.username}"."""
p.prompt = 'Passsord:'
try:
self.password = p.get_pin()
except pynentry.PinEntryCancelled:
log.warning('Cancelled! Goodbye.')
self._cleanup()
exit(1)
self.duniterpy = duniterpy.key.SigningKey.from_credentials(
self.username,
self.password,
scrypt_params
)
except Exception as e:
log.error(f'Unable to get duniter from credentials: {e}')
self._cleanup()
exit(2)
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
log.debug("keygen.duniterpy.seed: %s" % self.duniterpy.seed)
2022-09-27 16:33:07 +02:00
def duniterpy_from_ed25519_seed_bytes(self):
log.debug("keygen.duniterpy_from_ed25519_seed_bytes()")
2022-09-23 11:33:13 +02:00
try:
self.duniterpy = duniterpy.key.SigningKey(self.ed25519_seed_bytes)
except Exception as e:
2022-09-27 16:33:07 +02:00
log.error(f'Unable to get duniterpy from ed25519 seed bytes: {e}')
2022-09-23 11:33:13 +02:00
self._cleanup()
exit(2)
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
log.debug("keygen.duniterpy.seed: %s" % self.duniterpy.seed)
def duniterpy_from_file(self):
log.debug("keygen.duniterpy_from_file()")
try:
with open(self.input, 'r') as file:
lines = file.readlines()
if len(lines) > 0:
line = lines[0].strip()
regex_ewif = re.compile('^Type: EWIF$')
2022-09-27 16:33:07 +02:00
regex_jwk = re.compile('^\\s*{\\s*"crv":\\s*"Ed25519",\\s*"d":\\s*"(.)+",\\s*"kty":\\s*"OKP",\\s*"x":\\s*"(.)+"\\s*}')
regex_nacl = re.compile('^\\s*{\\s*"priv":\\s*"[0-9a-fA-F]+",\\s*"verify":\\s*"[0-9a-fA-F]+",\\s*"sign":\\s*"[0-9a-fA-F]+"\\s*}')
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
regex_pem = re.compile('^-----BEGIN PRIVATE KEY-----$')
regex_pubsec = re.compile('^Type: PubSec$')
regex_seed = re.compile('^[0-9a-fA-F]{64}$')
2022-09-27 16:33:07 +02:00
regex_ssb = re.compile('\\s*{\\s*"curve":\\s*"ed25519",\\s*"public":\\s*"(.+)\\.ed25519",\\s*"private":\\s*"(.+)\\.ed25519",\\s*"id":\\s*"@(.+).ed25519"\\s*}')
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
regex_wif = re.compile('^Type: WIF$')
if re.search(regex_ewif, line):
log.info("input file format detected: ewif")
if not self.password:
with pynentry.PynEntry() as p:
2022-09-27 16:33:07 +02:00
p.description = f"""Data in EWIF file is encrypted.
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
Please enter a password to decrypt seed.
"""
p.prompt = 'Passphrase:'
try:
self.password = p.get_pin()
except pynentry.PinEntryCancelled:
log.warning('Cancelled! Goodbye.')
self._cleanup()
2022-09-23 11:33:13 +02:00
exit(1)
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
self.duniterpy = duniterpy.key.SigningKey.from_ewif_file(self.input, self.password)
2022-09-27 16:33:07 +02:00
elif re.search(regex_jwk, line):
log.info("input file format detected: jwk")
self.jwk_from_json(line)
self.ed25519_seed_bytes_from_jwk()
self.duniterpy_from_ed25519_seed_bytes()
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
elif re.search(regex_nacl, line):
log.info("input file format detected: nacl")
self.duniterpy = duniterpy.key.SigningKey.from_private_key(self.input)
elif re.search(regex_pem, line):
log.info("input file format detected: pem")
2022-09-27 16:33:07 +02:00
self.ed25519_seed_bytes_from_pem(''.join(lines).encode())
self.duniterpy_from_ed25519_seed_bytes()
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
elif re.search(regex_pubsec, line):
log.info("input file format detected: pubsec")
self.duniterpy = duniterpy.key.SigningKey.from_pubsec_file(self.input)
elif re.search(regex_seed, line):
log.info("input file format detected: seed")
self.duniterpy = duniterpy.key.SigningKey.from_seedhex_file(self.input)
elif re.search(regex_ssb, line):
log.info("input file format detected: ssb")
self.duniterpy = duniterpy.key.SigningKey.from_ssb_file(self.input)
elif re.search(regex_wif, line):
log.info("input file format detected: wif")
self.duniterpy = duniterpy.key.SigningKey.from_wif_file(self.input)
elif len(line.split(' ')) == 12:
log.info("input file format detected: mnemonic")
self.username = line
self.duniterpy_from_mnemonic()
elif len(lines) > 1:
log.info("input file format detected: credentials")
self.username = line
self.password = lines[1].strip()
self.duniterpy_from_credentials()
else:
2022-09-23 11:33:13 +02:00
raise NotImplementedError('unknown input file format.')
else:
raise NotImplementedError('empty file.')
except UnicodeDecodeError as e:
try:
with open(self.input, 'rb') as file:
lines = file.readlines()
if len(lines) > 0:
line = lines[0].strip()
2022-09-27 16:33:07 +02:00
regex_dewif = re.compile(b'^\x00\x00\x00\x01\x00\x00\x00\x01')
2022-09-23 11:33:13 +02:00
regex_pb2 = re.compile(b'^\x08\x01\x12@')
2022-09-27 16:33:07 +02:00
if re.search(regex_dewif, line):
log.info("input file format detected: dewif")
if not self.password:
with pynentry.PynEntry() as p:
p.description = f"""Data in DEWIF file is encrypted.
Please enter a password to decrypt seed.
"""
p.prompt = 'Passphrase:'
try:
self.password = p.get_pin()
except pynentry.PinEntryCancelled:
log.warning('Cancelled! Goodbye.')
self._cleanup()
exit(1)
self.duniterpy = duniterpy.key.SigningKey.from_dewif_file(self.input, self.password)
2022-09-23 11:33:13 +02:00
if re.search(regex_pb2, line):
log.info("input file format detected: pb2")
self.ed25519_secret_protobuf = line
2022-09-27 16:33:07 +02:00
self.ed25519_seed_bytes_from_protobuf()
self.duniterpy_from_ed25519_seed_bytes()
2022-09-23 11:33:13 +02:00
else:
raise NotImplementedError('unknown input file format.')
else:
raise NotImplementedError('empty file.')
except Exception as e:
log.error(f'Unable to get duniterpy from file {self.input}: {e}')
self._cleanup()
exit(2)
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
except Exception as e:
2022-09-23 11:33:13 +02:00
log.error(f'Unable to get duniterpy from file {self.input}: {e}')
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
self._cleanup()
2022-09-23 11:33:13 +02:00
exit(2)
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
log.debug("keygen.duniterpy.seed: %s" % self.duniterpy.seed)
def duniterpy_from_mnemonic(self):
log.debug("keygen.duniterpy_from_mnemonic()")
2022-09-23 11:33:13 +02:00
try:
scrypt_params = duniterpy.key.scrypt_params.ScryptParams(
int(self.config.get('scrypt', 'n')) if self.config.has_option('scrypt', 'n') else 4096,
int(self.config.get('scrypt', 'r')) if self.config.has_option('scrypt', 'r') else 16,
int(self.config.get('scrypt', 'p')) if self.config.has_option('scrypt', 'p') else 1,
int(self.config.get('scrypt', 'sl')) if self.config.has_option('scrypt', 'sl') else 32,
)
self.duniterpy = duniterpy.key.SigningKey.from_dubp_mnemonic(
self.username,
scrypt_params
)
except Exception as e:
log.error(f'Unable to get duniterpy from mnemonic: {e}')
self._cleanup()
exit(2)
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
log.debug("keygen.duniterpy.seed: %s" % self.duniterpy.seed)
2022-05-16 22:34:47 +02:00
2022-06-25 22:43:28 +02:00
def ed25519(self, args):
2022-08-31 18:01:15 +02:00
log.debug("keygen.ed25519(%s)" % args)
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
if args.gpg:
2022-06-25 22:43:28 +02:00
self.ed25519_from_gpg()
else:
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
if self.input:
self.duniterpy_from_file()
else:
if self.mnemonic:
self.duniterpy_from_mnemonic()
else:
self.duniterpy_from_credentials()
self.ed25519_from_duniterpy()
2022-06-25 22:43:28 +02:00
2022-05-21 03:37:51 +02:00
def ed25519_from_duniterpy(self):
2022-08-31 18:01:15 +02:00
log.debug("keygen.ed25519_from_duniterpy()")
2022-09-23 11:33:13 +02:00
try:
2022-09-27 16:33:07 +02:00
self.ed25519_seed_bytes_from_duniterpy()
self.ed25519_from_seed_bytes()
except:
2022-09-23 11:33:13 +02:00
log.error(f'Unable to get ed25519 from duniterpy: {e}')
self._cleanup()
exit(2)
2022-06-25 22:43:28 +02:00
def ed25519_from_gpg(self):
2022-08-31 18:01:15 +02:00
log.debug("keygen.ed25519_from_gpg()")
2022-09-23 11:33:13 +02:00
try:
self.pgpy_from_gpg()
self.ed25519_from_pgpy()
except Exception as e:
log.error(f'Unable to get ed25519 from pgp: {e}')
2022-09-12 14:19:05 +02:00
self._cleanup()
2022-08-28 23:26:59 +02:00
exit(2)
2022-05-21 03:37:51 +02:00
def ed25519_from_pgpy(self):
2022-08-31 18:01:15 +02:00
log.debug("keygen.ed25519_from_pgpy()")
2022-09-23 11:33:13 +02:00
try:
log.debug("keygen.pgpy.fingerprint.keyid=%s" % self.pgpy.fingerprint.keyid)
log.debug("keygen.pgpy.is_protected=%s" % self.pgpy.is_protected)
if self.pgpy.is_protected:
if not self.password:
with pynentry.PynEntry() as p:
p.description = f"""The exported pgp key id "{self.pgpy.fingerprint.keyid}" of user "{self.username}" is password protected.
Please enter the passphrase again to unlock it.
"""
p.prompt = 'Passphrase:'
try:
self.password = p.get_pin()
except pynentry.PinEntryCancelled:
log.warning('Cancelled! Goodbye.')
self._cleanup()
exit(1)
try:
with warnings.catch_warnings():
# remove CryptographyDeprecationWarning about deprecated
# SymmetricKeyAlgorithm IDEA, CAST5 and Blowfish (PGPy v0.5.4)
warnings.simplefilter('ignore')
with self.pgpy.unlock(self.password):
assert self.pgpy.is_unlocked
log.debug("keygen.pgpy.is_unlocked=%s" % self.pgpy.is_unlocked)
self.ed25519_seed_bytes_from_pgpy()
except Exception as e:
log.error(f"""Unable to unlock pgp secret key id "{self.pgpy.fingerprint.keyid}" of user "{self.username}": {e}""")
self._cleanup()
exit(2)
else:
self.ed25519_seed_bytes_from_pgpy()
self.ed25519_from_seed_bytes()
except Exception as e:
2022-09-27 16:33:07 +02:00
log.error(f'Unable to get ed25519 seed bytes from pgpy: {e}')
2022-09-23 11:33:13 +02:00
self._cleanup()
exit(2)
2022-09-27 16:33:07 +02:00
def ed25519_from_seed_bytes(self):
log.debug("keygen.ed25519_from_seed_bytes()")
2022-09-23 11:33:13 +02:00
try:
2022-09-27 16:33:07 +02:00
self.ed25519_public_bytes, self.ed25519_secret_bytes = nacl.bindings.crypto_sign_seed_keypair(self.ed25519_seed_bytes)
self.ed25519 = ed25519.Ed25519PrivateKey.from_private_bytes(self.ed25519_seed_bytes)
2022-09-23 11:33:13 +02:00
except Exception as e:
2022-09-27 16:33:07 +02:00
log.error(f'Unable to get ed25519 from seed bytes: {e}')
2022-09-23 11:33:13 +02:00
self._cleanup()
exit(2)
log.debug("keygen.ed25519_public_bytes=%s" % self.ed25519_public_bytes)
log.debug("keygen.ed25519_secret_bytes=%s" % self.ed25519_secret_bytes)
2022-09-27 16:33:07 +02:00
def ed25519_seed_bytes_from_duniterpy(self):
log.debug("keygen.ed25519_seed_bytes_from_duniterpy()")
2022-09-23 11:33:13 +02:00
try:
2022-09-27 16:33:07 +02:00
self.ed25519_seed_bytes = self.duniterpy.sk[:32]
2022-09-23 11:33:13 +02:00
except Exception as e:
2022-09-27 16:33:07 +02:00
log.error(f'Unable to get ed25519 seed bytes from duniterpy: {e}')
self._cleanup()
exit(2)
log.debug("keygen.ed25519_seed_bytes=%s" % self.ed25519_seed_bytes)
def ed25519_seed_bytes_from_jwk(self):
log.debug("keygen.ed25519_seed_bytes_from_jwk()")
try:
self.ed25519_seed_bytes = self.jwk._okp_pri().private_bytes(encoding=serialization.Encoding.Raw, format=serialization.PrivateFormat.Raw, encryption_algorithm=serialization.NoEncryption())
except Exception as e:
log.error(f'Unable to get ed25519 seed bytes from jwk: {e}')
self._cleanup()
exit(2)
def ed25519_seed_bytes_from_pem(self, pem):
log.debug("keygen.ed25519_seed_bytes_from_pem()")
try:
self.ed25519_seed_bytes = serialization.load_pem_private_key(pem, password=None).private_bytes(encoding=serialization.Encoding.Raw, format=serialization.PrivateFormat.Raw, encryption_algorithm=serialization.NoEncryption())
except Exception as e:
log.error(f'Unable to get ed25519 seed bytes from pem: {e}')
2022-09-23 11:33:13 +02:00
self._cleanup()
exit(2)
2022-05-21 03:37:51 +02:00
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
def ed25519_seed_bytes_from_pgpy(self):
log.debug("keygen.ed25519_seed_bytes_from_pgpy()")
2022-09-23 11:33:13 +02:00
try:
self.pgpy_key_type()
if self.pgpy_key_type == 'RSA':
log.debug("keygen.pgpy._key.keymaterial.p=%s" % self.pgpy._key.keymaterial.p)
log.debug("keygen.pgpy._key.keymaterial.q=%s" % self.pgpy._key.keymaterial.q)
# custom seed: use sha256 hash of (p + q)
self.ed25519_seed_bytes = nacl.bindings.crypto_hash_sha256(long_to_bytes(self.pgpy._key.keymaterial.p + self.pgpy._key.keymaterial.q))
elif self.pgpy_key_type in ('ECDSA', 'EdDSA', 'ECDH'):
log.debug("keygen.pgpy._key.keymaterial.s=%s" % self.pgpy._key.keymaterial.s)
self.ed25519_seed_bytes = long_to_bytes(self.pgpy._key.keymaterial.s)
else:
2022-09-27 16:33:07 +02:00
raise NotImplementedError(f"getting seed from {self.pgpy_key_type} key is not implemented")
2022-09-23 11:33:13 +02:00
except Exception as e:
log.error(f'Unable to get ed25519 seed bytes from pgpy: {e}')
self._cleanup()
exit(2)
log.debug("keygen.ed25519_seed_bytes=%s" % self.ed25519_seed_bytes)
add multiple input/output file formats
* input: credentials, dubp mnemonic, ewif, nacl, pem pksc8, pubsec, seed, ssb, wif
* output: ewif, nacl, pb2, pem pksc8, pubsec, seed, wif
* bump version 0.0.4
2022-09-18 22:55:16 +02:00
2022-09-27 16:33:07 +02:00
def ed25519_seed_bytes_from_protobuf(self):
log.debug("keygen.ed25519_seed_bytes_from_protobuf()")
try:
self.ed25519_seed_bytes = self.ed25519_secret_protobuf.lstrip(b'\x08\x01\x12@')[:32]
except Exception as e:
log.error(f'Unable to get ed25519 seed bytes from protobuf: {e}')
self._cleanup()
exit(2)
log.debug("keygen.ed25519_seed_bytes=%s" % self.ed25519_seed_bytes)
2022-08-28 23:26:59 +02:00
def gpg_passphrase_cb(self, uid_hint, passphrase_info, prev_was_bad):
2022-08-31 18:01:15 +02:00
log.debug("keygen.gpg_passphrase_cb(%s, %s, %s)" % (uid_hint, passphrase_info, prev_was_bad))
2022-08-28 23:26:59 +02:00
return self.password
2022-09-27 16:33:07 +02:00
def jwk_from_ed25519(self):
log.debug("keygen.jwk_from_ed25519()")
try:
self.jwk = jwk.JWK.from_pyca(self.ed25519)
except Exception as e:
log.error(f'Unable to get jwk from ed25519: {e}')
self._cleanup()
exit(2)
def jwk_from_json(self, json):
log.debug("keygen.jwk_from_json()")
try:
self.jwk = jwk.JWK.from_json(json)
except Exception as e:
log.error(f'Unable to get jwk from json: {e}')
self._cleanup()
exit(2)
2022-06-25 22:43:28 +02:00
def pem_pkcs8_from_ed25519(self):
2022-08-31 18:01:15 +02:00
log.debug("keygen.pem_pkcs8_from_ed25519()")
2022-09-23 11:33:13 +02:00
try:
2022-09-27 16:33:07 +02:00
self.ed25519_secret_pem_pkcs8 = self.ed25519.private_bytes(encoding=serialization.Encoding.PEM, format=serialization.PrivateFormat.PKCS8, encryption_algorithm=serialization.NoEncryption()).decode('ascii')
2022-09-23 11:33:13 +02:00
except Exception as e:
log.error(f'Unable to get pem pkcs8 from ed25519: {e}')
self._cleanup()
exit(2)
2022-08-31 18:01:15 +02:00
log.debug("keygen.ed25519_secret_pem_pkcs8=%s" % self.ed25519_secret_pem_pkcs8)
2022-06-25 22:43:28 +02:00
2022-09-23 11:33:13 +02:00
def pgpy_from_gpg(self):
log.debug("keygen.pgpy_from_gpg()")
try:
self.gpg_seckeys = list(self.gpg.keylist(pattern=self.username, secret=True))
log.debug("keygen.gpg_seckeys=%s" % self.gpg_seckeys)
if not self.gpg_seckeys:
log.warning(f"""Unable to find any key matching username "{self.username}".""")
self._cleanup()
exit(1)
else:
self.gpg_seckey = self.gpg_seckeys[0]
log.info(f"""Found key id "{self.gpg_seckey.fpr}" matching username "{self.username}".""")
log.debug("keygen.gpg_seckey.expired=%s" % self.gpg_seckey.expired)
log.debug("keygen.gpg_seckey.fpr=%s" % self.gpg_seckey.fpr)
log.debug("keygen.gpg_seckey.revoked=%s" % self.gpg_seckey.revoked)
log.debug("keygen.gpg_seckey.uids=%s" % self.gpg_seckey.uids)
log.debug("keygen.gpg_seckey.owner_trust=%s" % self.gpg_seckey.owner_trust)
log.debug("keygen.gpg_seckey.last_update=%s" % self.gpg_seckey.last_update)
if self.password:
self.gpg.set_pinentry_mode(gpg.constants.PINENTRY_MODE_LOOPBACK)
2022-09-27 16:33:07 +02:00
self.pgp_public_armor = self.gpg.key_export(self.gpg_seckey.fpr)
self.pgp_secret_armor = self.gpg.key_export_secret(self.gpg_seckey.fpr)
log.debug("keygen.pgp_secret_armor=%s" % self.pgp_secret_armor)
if not self.pgp_secret_armor:
2022-09-23 11:33:13 +02:00
log.error(f"""Unable to export gpg secret key id "{self.gpg_seckey.fpr}" of user "{self.username}". Please check your password!""")
self._cleanup()
exit(2)
with warnings.catch_warnings():
# remove CryptographyDeprecationWarning about deprecated
# SymmetricKeyAlgorithm IDEA, CAST5 and Blowfish (PGPy v0.5.4)
warnings.simplefilter('ignore')
2022-09-27 16:33:07 +02:00
self.pgpy, _ = pgpy.PGPKey.from_blob(self.pgp_secret_armor)
2022-09-23 11:33:13 +02:00
except Exception as e:
log.error(f'Unable to get pgpy from gpg: {e}')
self._cleanup()
exit(2)
2022-05-21 03:37:51 +02:00
def pgpy_key_type(self):
2022-08-31 18:01:15 +02:00
log.debug("keygen.pgpy_key_type()")
2022-05-21 03:37:51 +02:00
if isinstance(self.pgpy._key.keymaterial, pgpy.packet.fields.RSAPriv):
self.pgpy_key_type = 'RSA'
elif isinstance(self.pgpy._key.keymaterial, pgpy.packet.fields.DSAPriv):
self.pgpy_key_type = 'DSA'
elif isinstance(self.pgpy._key.keymaterial, pgpy.packet.fields.ElGPriv):
self.pgpy_key_type = 'ElGamal'
elif isinstance(self.pgpy._key.keymaterial, pgpy.packet.fields.ECDSAPriv):
self.pgpy_key_type = 'ECDSA'
elif isinstance(self.pgpy._key.keymaterial, pgpy.packet.fields.EdDSAPriv):
self.pgpy_key_type = 'EdDSA'
elif isinstance(self.pgpy._key.keymaterial, pgpy.packet.fields.ECDHPriv):
self.pgpy_key_type = 'ECDH'
else:
self.pgpy_key_type = 'undefined'
2022-08-31 18:01:15 +02:00
log.debug("keygen.pgpy_key_type=%s" % self.pgpy_key_type)
2022-05-16 22:34:47 +02:00
2022-09-23 11:33:13 +02:00
def protobuf_from_ed25519(self):
2022-09-15 19:32:01 +02:00
# libp2p protobuf version 2
2022-09-23 11:33:13 +02:00
log.debug("keygen.protobuf_from_ed25519()")
try:
self.ed25519_public_protobuf = b'\x00$\x08\x01\x12 ' + self.ed25519_public_bytes
self.ed25519_secret_protobuf = b'\x08\x01\x12@' + self.ed25519_secret_bytes
except Exception as e:
log.error(f'Unable to get protobuf from ed25519: {e}')
self._cleanup()
exit(2)
log.debug("keygen.ed25519_public_protobuf=%s" % self.ed25519_public_protobuf)
log.debug("keygen.ed25519_secret_protobuf=%s" % self.ed25519_secret_protobuf)
2022-09-15 19:32:01 +02:00
##
2022-05-21 03:37:51 +02:00
# long_to_bytes comes from PyCrypto, which is released into Public Domain
# https://github.com/dlitz/pycrypto/blob/master/lib/Crypto/Util/number.py
def bytes_to_long(s):
"""bytes_to_long(string) : long
Convert a byte string to a long integer.
This is (essentially) the inverse of long_to_bytes().
"""
acc = 0
unpack = struct.unpack
length = len(s)
if length % 4:
extra = (4 - length % 4)
s = b'\000' * extra + s
length = length + extra
for i in range(0, length, 4):
acc = (acc << 32) + unpack('>I', s[i:i+4])[0]
return acc
def long_to_bytes(n, blocksize=0):
"""long_to_bytes(n:long, blocksize:int) : string
Convert a long integer to a byte string.
If optional blocksize is given and greater than zero, pad the front of the
byte string with binary zeros so that the length is a multiple of
blocksize.
"""
# after much testing, this algorithm was deemed to be the fastest
s = b''
n = int(n)
pack = struct.pack
while n > 0:
s = pack('>I', n & 0xffffffff) + s
n = n >> 32
# strip off leading zeros
for i in range(len(s)):
if s[i] != b'\000'[0]:
break
else:
# only happens when n == 0
s = b'\000'
i = 0
s = s[i:]
# add back some pad bytes. this could be done more efficiently w.r.t. the
# de-padding being done above, but sigh...
if blocksize > 0 and len(s) % blocksize:
s = (blocksize - len(s) % blocksize) * b'\000' + s
return s
2022-05-16 22:34:47 +02:00
def main(argv=None):
if argv is None:
argv = sys.argv[1:]
2022-06-25 22:43:28 +02:00
cli = keygen()
2022-08-31 18:01:15 +02:00
return cli._run(argv)
2022-05-16 22:34:47 +02:00
def version(version=__version__):
print("%s v%s" % (sys.argv[0],version))
if __name__ == "__main__":
sys.exit(main())
