doc/dev/crypter_8h_source.html

// Copyright (c) 2009-2016 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#ifndef BITCOIN_WALLET_CRYPTER_H

#define BITCOIN_WALLET_CRYPTER_H


#include <script/signingprovider.h>

#include <serialize.h>

#include <support/allocators/secure.h>


const unsigned int WALLET_CRYPTO_KEY_SIZE = 32;

const unsigned int WALLET_CRYPTO_SALT_SIZE = 8;

const unsigned int WALLET_CRYPTO_IV_SIZE = 16;


class CMasterKey {

public:

    std::vector<uint8_t> vchCryptedKey;

    std::vector<uint8_t> vchSalt;

    unsigned int nDerivationMethod;

    unsigned int nDeriveIterations;

    std::vector<uint8_t> vchOtherDerivationParameters;


    SERIALIZE_METHODS(CMasterKey, obj) {

        READWRITE(obj.vchCryptedKey, obj.vchSalt, obj.nDerivationMethod,

                  obj.nDeriveIterations, obj.vchOtherDerivationParameters);

    }


    CMasterKey() {

        // 25000 rounds is just under 0.1 seconds on a 1.86 GHz Pentium M

        // ie slightly lower than the lowest hardware we need bother supporting

        nDeriveIterations = 25000;

        nDerivationMethod = 0;

        vchOtherDerivationParameters = std::vector<uint8_t>(0);

    }

};


typedef std::vector<uint8_t, secure_allocator<uint8_t>> CKeyingMaterial;


namespace wallet_crypto_tests {

class TestCrypter;

}


class CCrypter {

    // for test access to chKey/chIV

    friend class wallet_crypto_tests::TestCrypter;


private:

    std::vector<uint8_t, secure_allocator<uint8_t>> vchKey;

    std::vector<uint8_t, secure_allocator<uint8_t>> vchIV;

    bool fKeySet;


    int BytesToKeySHA512AES(const std::vector<uint8_t> &chSalt,

                            const SecureString &strKeyData, int count,

                            uint8_t *key, uint8_t *iv) const;


public:

    bool SetKeyFromPassphrase(const SecureString &strKeyData,

                              const std::vector<uint8_t> &chSalt,

                              const unsigned int nRounds,

                              const unsigned int nDerivationMethod);

    bool Encrypt(const CKeyingMaterial &vchPlaintext,

                 std::vector<uint8_t> &vchCiphertext) const;

    bool Decrypt(const std::vector<uint8_t> &vchCiphertext,

                 CKeyingMaterial &vchPlaintext) const;

    bool SetKey(const CKeyingMaterial &chNewKey,

                const std::vector<uint8_t> &chNewIV);


    void CleanKey() {

        memory_cleanse(vchKey.data(), vchKey.size());

        memory_cleanse(vchIV.data(), vchIV.size());

        fKeySet = false;

    }


    CCrypter() {

        fKeySet = false;

        vchKey.resize(WALLET_CRYPTO_KEY_SIZE);

        vchIV.resize(WALLET_CRYPTO_IV_SIZE);

    }


    ~CCrypter() { CleanKey(); }

};


bool EncryptSecret(const CKeyingMaterial &vMasterKey,

                   const CKeyingMaterial &vchPlaintext, const uint256 &nIV,

                   std::vector<uint8_t> &vchCiphertext);

bool DecryptSecret(const CKeyingMaterial &vMasterKey,

                   const std::vector<uint8_t> &vchCiphertext,

                   const uint256 &nIV, CKeyingMaterial &vchPlaintext);

bool DecryptKey(const CKeyingMaterial &vMasterKey,

                const std::vector<uint8_t> &vchCryptedSecret,

                const CPubKey &vchPubKey, CKey &key);


#endif // BITCOIN_WALLET_CRYPTER_H

CCrypter
Encryption/decryption context with key information.
Definition: crypter.h:64

CCrypter::vchKey
std::vector< uint8_t, secure_allocator< uint8_t > > vchKey
Definition: crypter.h:69

CCrypter::TestCrypter
friend class wallet_crypto_tests::TestCrypter
Definition: crypter.h:66

CCrypter::fKeySet
bool fKeySet
Definition: crypter.h:71

CCrypter::CCrypter
CCrypter()
Definition: crypter.h:95

CCrypter::CleanKey
void CleanKey()
Definition: crypter.h:89

CCrypter::Encrypt
bool Encrypt(const CKeyingMaterial &vchPlaintext, std::vector< uint8_t > &vchCiphertext) const
Definition: crypter.cpp:79

CCrypter::SetKeyFromPassphrase
bool SetKeyFromPassphrase(const SecureString &strKeyData, const std::vector< uint8_t > &chSalt, const unsigned int nRounds, const unsigned int nDerivationMethod)
Definition: crypter.cpp:41

CCrypter::BytesToKeySHA512AES
int BytesToKeySHA512AES(const std::vector< uint8_t > &chSalt, const SecureString &strKeyData, int count, uint8_t *key, uint8_t *iv) const
Definition: crypter.cpp:13

CCrypter::~CCrypter
~CCrypter()
Definition: crypter.h:101

CCrypter::vchIV
std::vector< uint8_t, secure_allocator< uint8_t > > vchIV
Definition: crypter.h:70

CCrypter::Decrypt
bool Decrypt(const std::vector< uint8_t > &vchCiphertext, CKeyingMaterial &vchPlaintext) const
Definition: crypter.cpp:100

CCrypter::SetKey
bool SetKey(const CKeyingMaterial &chNewKey, const std::vector< uint8_t > &chNewIV)
Definition: crypter.cpp:65

CKey
An encapsulated secp256k1 private key.
Definition: key.h:28

CMasterKey
Private key encryption is done based on a CMasterKey, which holds a salt and random encryption key.
Definition: crypter.h:31

CMasterKey::SERIALIZE_METHODS
SERIALIZE_METHODS(CMasterKey, obj)
Definition: crypter.h:43

CMasterKey::CMasterKey
CMasterKey()
Definition: crypter.h:48

CMasterKey::vchOtherDerivationParameters
std::vector< uint8_t > vchOtherDerivationParameters
Use this for more parameters to key derivation, such as the various parameters to scrypt.
Definition: crypter.h:41

CMasterKey::vchSalt
std::vector< uint8_t > vchSalt
Definition: crypter.h:34

CMasterKey::nDerivationMethod
unsigned int nDerivationMethod
0 = EVP_sha512() 1 = scrypt()
Definition: crypter.h:37

CMasterKey::nDeriveIterations
unsigned int nDeriveIterations
Definition: crypter.h:38

CMasterKey::vchCryptedKey
std::vector< uint8_t > vchCryptedKey
Definition: crypter.h:33

CPubKey
An encapsulated public key.
Definition: pubkey.h:31

TestCrypter
Definition: wallet_crypto_tests.cpp:17

uint256
256-bit opaque blob.
Definition: uint256.h:129

memory_cleanse
void memory_cleanse(void *ptr, size_t len)
Secure overwrite a buffer (possibly containing secret data) with zero-bytes.
Definition: cleanse.cpp:14

DecryptKey
bool DecryptKey(const CKeyingMaterial &vMasterKey, const std::vector< uint8_t > &vchCryptedSecret, const CPubKey &vchPubKey, CKey &key)
Definition: crypter.cpp:146

WALLET_CRYPTO_IV_SIZE
const unsigned int WALLET_CRYPTO_IV_SIZE
Definition: crypter.h:14

EncryptSecret
bool EncryptSecret(const CKeyingMaterial &vMasterKey, const CKeyingMaterial &vchPlaintext, const uint256 &nIV, std::vector< uint8_t > &vchCiphertext)
Definition: crypter.cpp:121

DecryptSecret
bool DecryptSecret(const CKeyingMaterial &vMasterKey, const std::vector< uint8_t > &vchCiphertext, const uint256 &nIV, CKeyingMaterial &vchPlaintext)
Definition: crypter.cpp:134

WALLET_CRYPTO_SALT_SIZE
const unsigned int WALLET_CRYPTO_SALT_SIZE
Definition: crypter.h:13

CKeyingMaterial
std::vector< uint8_t, secure_allocator< uint8_t > > CKeyingMaterial
Definition: crypter.h:57

WALLET_CRYPTO_KEY_SIZE
const unsigned int WALLET_CRYPTO_KEY_SIZE
Definition: crypter.h:12

wallet_crypto_tests
Definition: crypter.h:59

secure.h

SecureString
std::basic_string< char, std::char_traits< char >, secure_allocator< char > > SecureString
Definition: secure.h:55

serialize.h

READWRITE
#define READWRITE(...)
Definition: serialize.h:166

signingprovider.h

count
static int count
Definition: tests.c:31