2 This file is part of GNUnet.
3 Copyright (C) 2012, 2013 GNUnet e.V.
5 GNUnet is free software: you can redistribute it and/or modify it
6 under the terms of the GNU Affero General Public License as published
7 by the Free Software Foundation, either version 3 of the License,
8 or (at your option) any later version.
10 GNUnet is distributed in the hope that it will be useful, but
11 WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 Affero General Public License for more details.
15 You should have received a copy of the GNU Affero General Public License
16 along with this program. If not, see <http://www.gnu.org/licenses/>.
18 SPDX-License-Identifier: AGPL3.0-or-later
22 * @file util/gnunet-ecc.c
23 * @brief tool to manipulate EDDSA key files
24 * @author Christian Grothoff
27 #include "gnunet_util_lib.h"
28 #include "gnunet_testing_lib.h"
32 * Number of characters a Base32-encoded public key requires.
34 #define KEY_STR_LEN sizeof(struct GNUNET_CRYPTO_EddsaPublicKey) * 8 / 5 + 1
37 * Flag for listing public key.
42 * Flag for listing public key.
44 static unsigned int list_keys_count;
47 * Flag for printing public key.
49 static int print_public_key;
52 * Flag for printing private key.
54 static int print_private_key;
57 * Flag for printing public key in hex.
59 static int print_public_key_hex;
62 * Flag for printing the output of random example operations.
64 static int print_examples_flag;
67 * Option set to create a bunch of keys at once.
69 static unsigned int make_keys;
73 * Create a flat file with a large number of key pairs for testing.
75 * @param fn File name to store the keys.
76 * @param prefix Desired prefix for the public keys, NULL if any key is OK.
79 create_keys (const char *fn, const char *prefix)
82 struct GNUNET_CRYPTO_EddsaPrivateKey *pk;
83 struct GNUNET_CRYPTO_EddsaPublicKey target_pub;
84 static char vanity[KEY_STR_LEN + 1];
92 if (NULL == (f = fopen (fn, "w+")))
94 fprintf (stderr, _ ("Failed to open `%s': %s\n"), fn, strerror (errno));
99 len = GNUNET_strlcpy (vanity, prefix, sizeof(vanity));
103 memset (&vanity[len], '0', KEY_STR_LEN - len);
104 vanity[KEY_STR_LEN] = '\0';
105 GNUNET_assert (GNUNET_OK ==
106 GNUNET_CRYPTO_eddsa_public_key_from_string (vanity,
112 * Documentation by example:
115 * n = 5/8 = 0 (bytes)
116 * rest = 5%8 = 5 (bits)
117 * mask = ~(2**(8 - 5) - 1) = ~(2**3 - 1) = ~(8 - 1) = ~b111 = b11111000
118 */mask = ~((int) pow (2, 8 - rest) - 1);
119 target_byte = ((unsigned char *) &target_pub)[n] & mask;
123 /* Just so old (debian) versions of GCC calm down with the warnings. */
124 mask = target_byte = 0;
126 s = GNUNET_CRYPTO_eddsa_public_key_to_string (&target_pub);
128 _ ("Generating %u keys like %s, please wait"),
132 fprintf (stderr, "\nattempt %s [%u, %X]\n", vanity, (unsigned int) n, mask);
136 fprintf (stderr, _ ("Generating %u keys, please wait"), make_keys);
137 /* Just so old (debian) versions of GCC calm down with the warnings. */
138 n = rest = target_byte = mask = 0;
141 while (0 < make_keys--)
143 fprintf (stderr, ".");
144 if (NULL == (pk = GNUNET_CRYPTO_eddsa_key_create ()))
151 struct GNUNET_CRYPTO_EddsaPublicKey newkey;
153 GNUNET_CRYPTO_eddsa_key_get_public (pk, &newkey);
154 if (0 != memcmp (&target_pub, &newkey, n))
161 unsigned char new_byte;
163 new_byte = ((unsigned char *) &newkey)[n] & mask;
164 if (target_byte != new_byte)
171 if (GNUNET_TESTING_HOSTKEYFILESIZE !=
172 fwrite (pk, 1, GNUNET_TESTING_HOSTKEYFILESIZE, f))
175 _ ("\nFailed to write to `%s': %s\n"),
183 if (UINT_MAX == make_keys)
184 fprintf (stderr, _ ("\nFinished!\n"));
186 fprintf (stderr, _ ("\nError, %u keys not generated\n"), make_keys);
192 print_hex (const char *msg, const void *buf, size_t size)
194 printf ("%s: ", msg);
195 for (size_t i = 0; i < size; i++)
197 printf ("%02hhx", ((const uint8_t *) buf)[i]);
204 print_examples_ecdh ()
206 struct GNUNET_CRYPTO_EcdhePrivateKey *dh_priv1;
207 struct GNUNET_CRYPTO_EcdhePublicKey *dh_pub1;
208 struct GNUNET_CRYPTO_EcdhePrivateKey *dh_priv2;
209 struct GNUNET_CRYPTO_EcdhePublicKey *dh_pub2;
210 struct GNUNET_HashCode hash;
213 dh_pub1 = GNUNET_new (struct GNUNET_CRYPTO_EcdhePublicKey);
214 dh_priv1 = GNUNET_CRYPTO_ecdhe_key_create ();
215 dh_pub2 = GNUNET_new (struct GNUNET_CRYPTO_EcdhePublicKey);
216 dh_priv2 = GNUNET_CRYPTO_ecdhe_key_create ();
217 GNUNET_CRYPTO_ecdhe_key_get_public (dh_priv1, dh_pub1);
218 GNUNET_CRYPTO_ecdhe_key_get_public (dh_priv2, dh_pub2);
220 GNUNET_assert (NULL !=
221 GNUNET_STRINGS_data_to_string (dh_priv1, 32, buf, 128));
222 printf ("ECDHE key 1:\n");
223 printf ("private: %s\n", buf);
224 print_hex ("private(hex)", dh_priv1, sizeof *dh_priv1);
225 GNUNET_assert (NULL != GNUNET_STRINGS_data_to_string (dh_pub1, 32, buf, 128));
226 printf ("public: %s\n", buf);
227 print_hex ("public(hex)", dh_pub1, sizeof *dh_pub1);
229 GNUNET_assert (NULL !=
230 GNUNET_STRINGS_data_to_string (dh_priv2, 32, buf, 128));
231 printf ("ECDHE key 2:\n");
232 printf ("private: %s\n", buf);
233 print_hex ("private(hex)", dh_priv2, sizeof *dh_priv2);
234 GNUNET_assert (NULL != GNUNET_STRINGS_data_to_string (dh_pub2, 32, buf, 128));
235 printf ("public: %s\n", buf);
236 print_hex ("public(hex)", dh_pub2, sizeof *dh_pub2);
238 GNUNET_assert (GNUNET_OK ==
239 GNUNET_CRYPTO_ecc_ecdh (dh_priv1, dh_pub2, &hash));
240 GNUNET_assert (NULL != GNUNET_STRINGS_data_to_string (&hash, 64, buf, 128));
241 printf ("ECDH shared secret: %s\n", buf);
243 GNUNET_free (dh_priv1);
244 GNUNET_free (dh_priv2);
245 GNUNET_free (dh_pub1);
246 GNUNET_free (dh_pub2);
251 * Print some random example operations to stdout.
256 print_examples_ecdh ();
257 // print_examples_ecdsa ();
258 // print_examples_eddsa ();
263 print_key (const char *filename)
265 struct GNUNET_DISK_FileHandle *fd;
266 struct GNUNET_CRYPTO_EddsaPrivateKey private_key;
267 struct GNUNET_CRYPTO_EddsaPublicKey public_key;
271 unsigned int total_hostkeys;
275 if (GNUNET_YES != GNUNET_DISK_file_test (filename))
277 fprintf (stderr, _ ("Hostkeys file `%s' not found\n"), filename);
281 /* Check hostkey file size, read entire thing into memory */
283 GNUNET_DISK_file_size (filename, &fs, GNUNET_YES, GNUNET_YES))
287 fprintf (stderr, _ ("Hostkeys file `%s' is empty\n"), filename);
288 return; /* File is empty */
290 if (0 != (fs % GNUNET_TESTING_HOSTKEYFILESIZE))
292 fprintf (stderr, _ ("Incorrect hostkey file format: %s\n"), filename);
295 fd = GNUNET_DISK_file_open (filename,
296 GNUNET_DISK_OPEN_READ,
297 GNUNET_DISK_PERM_NONE);
300 GNUNET_log_strerror_file (GNUNET_ERROR_TYPE_ERROR, "open", filename);
303 hostkeys_data = GNUNET_malloc (fs);
304 sret = GNUNET_DISK_file_read (fd, hostkeys_data, fs);
305 if ((sret < 0) || (fs != (size_t) sret))
307 fprintf (stderr, _ ("Could not read hostkey file: %s\n"), filename);
308 GNUNET_free (hostkeys_data);
309 GNUNET_DISK_file_close (fd);
312 GNUNET_DISK_file_close (fd);
314 if (NULL == hostkeys_data)
316 total_hostkeys = fs / GNUNET_TESTING_HOSTKEYFILESIZE;
317 for (c = 0; (c < total_hostkeys) && (c < list_keys_count); c++)
319 GNUNET_memcpy (&private_key,
320 hostkeys_data + (c * GNUNET_TESTING_HOSTKEYFILESIZE),
321 GNUNET_TESTING_HOSTKEYFILESIZE);
322 GNUNET_CRYPTO_eddsa_key_get_public (&private_key, &public_key);
323 hostkey_str = GNUNET_CRYPTO_eddsa_public_key_to_string (&public_key);
324 if (NULL != hostkey_str)
326 fprintf (stderr, "%4u: %s\n", c, hostkey_str);
327 GNUNET_free (hostkey_str);
330 fprintf (stderr, "%4u: %s\n", c, "invalid");
332 GNUNET_free (hostkeys_data);
337 * Main function that will be run by the scheduler.
339 * @param cls closure, NULL
340 * @param args remaining command-line arguments
341 * @param cfgfile name of the configuration file used (for saving, can be NULL!)
342 * @param cfg configuration
348 const struct GNUNET_CONFIGURATION_Handle *cfg)
354 if (print_examples_flag)
361 fprintf (stderr, "%s", _ ("No hostkey file specified on command line\n"));
371 create_keys (args[0], args[1]);
374 if (print_public_key || print_public_key_hex || print_private_key)
377 struct GNUNET_DISK_FileHandle *keyfile;
378 struct GNUNET_CRYPTO_EddsaPrivateKey pk;
379 struct GNUNET_CRYPTO_EddsaPublicKey pub;
381 keyfile = GNUNET_DISK_file_open (args[0],
382 GNUNET_DISK_OPEN_READ,
383 GNUNET_DISK_PERM_NONE);
386 while (sizeof(pk) == GNUNET_DISK_file_read (keyfile, &pk, sizeof(pk)))
388 GNUNET_CRYPTO_eddsa_key_get_public (&pk, &pub);
389 if (print_public_key_hex)
391 print_hex ("HEX:", &pub, sizeof(pub));
393 else if (print_public_key)
395 str = GNUNET_CRYPTO_eddsa_public_key_to_string (&pub);
396 fprintf (stdout, "%s\n", str);
399 else if (print_private_key)
401 str = GNUNET_CRYPTO_eddsa_private_key_to_string (&pk);
402 fprintf (stdout, "%s\n", str);
406 GNUNET_DISK_file_close (keyfile);
412 * Program to manipulate ECC key files.
414 * @param argc number of arguments from the command line
415 * @param argv command line arguments
416 * @return 0 ok, 1 on error
419 main (int argc, char *const *argv)
421 struct GNUNET_GETOPT_CommandLineOption options[] =
422 { GNUNET_GETOPT_option_flag ('i',
425 "list keys included in a file (for testing)"),
427 GNUNET_GETOPT_option_uint (
431 gettext_noop ("number of keys to list included in a file (for testing)"),
433 GNUNET_GETOPT_option_uint (
437 gettext_noop ("create COUNT public-private key pairs (for testing)"),
439 GNUNET_GETOPT_option_flag ('p',
442 "print the public key in ASCII format"),
444 GNUNET_GETOPT_option_flag ('P',
447 "print the private key in ASCII format"),
449 GNUNET_GETOPT_option_flag ('x',
452 "print the public key in HEX format"),
453 &print_public_key_hex),
454 GNUNET_GETOPT_option_flag (
458 "print examples of ECC operations (used for compatibility testing)"),
459 &print_examples_flag),
460 GNUNET_GETOPT_OPTION_END };
463 list_keys_count = UINT32_MAX;
464 if (GNUNET_OK != GNUNET_STRINGS_get_utf8_args (argc, argv, &argc, &argv))
468 GNUNET_PROGRAM_run (argc,
470 "gnunet-ecc [OPTIONS] keyfile [VANITY_PREFIX]",
472 "Manipulate GNUnet private ECC key files"),
478 GNUNET_free ((void *) argv);
483 /* end of gnunet-ecc.c */