crypter_8h_source.html

// Copyright (c) 2009-2020 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#ifndef BITCOIN_WALLET_CRYPTER_H

#define BITCOIN_WALLET_CRYPTER_H


#include <serialize.h>

#include <support/allocators/secure.h>

#include <script/signingprovider.h>


const unsigned int WALLET_CRYPTO_KEY_SIZE = 32;

const unsigned int WALLET_CRYPTO_SALT_SIZE = 8;

const unsigned int WALLET_CRYPTO_IV_SIZE = 16;


class CMasterKey

{

public:

    std::vector<unsigned char> vchCryptedKey;

    std::vector<unsigned char> vchSalt;

    unsigned int nDerivationMethod;

    unsigned int nDeriveIterations;

    std::vector<unsigned char> vchOtherDerivationParameters;


    SERIALIZE_METHODS(CMasterKey, obj)

    {

        READWRITE(obj.vchCryptedKey, obj.vchSalt, obj.nDerivationMethod, obj.nDeriveIterations, obj.vchOtherDerivationParameters);

    }


    CMasterKey()

    {

        // 25000 rounds is just under 0.1 seconds on a 1.86 GHz Pentium M

        // ie slightly lower than the lowest hardware we need bother supporting

        nDeriveIterations = 25000;

        nDerivationMethod = 0;

        vchOtherDerivationParameters = std::vector<unsigned char>(0);

    }

};


typedef std::vector<unsigned char, secure_allocator<unsigned char> > CKeyingMaterial;


namespace wallet_crypto_tests

{

    class TestCrypter;

}


class CCrypter

{

friend class wallet_crypto_tests::TestCrypter; // for test access to chKey/chIV

private:

    std::vector<unsigned char, secure_allocator<unsigned char>> vchKey;

    std::vector<unsigned char, secure_allocator<unsigned char>> vchIV;

    bool fKeySet;


    int BytesToKeySHA512AES(const std::vector<unsigned char>& chSalt, const SecureString& strKeyData, int count, unsigned char *key,unsigned char *iv) const;


public:

    bool SetKeyFromPassphrase(const SecureString &strKeyData, const std::vector<unsigned char>& chSalt, const unsigned int nRounds, const unsigned int nDerivationMethod);

    bool Encrypt(const CKeyingMaterial& vchPlaintext, std::vector<unsigned char> &vchCiphertext) const;

    bool Decrypt(const std::vector<unsigned char>& vchCiphertext, CKeyingMaterial& vchPlaintext) const;

    bool SetKey(const CKeyingMaterial& chNewKey, const std::vector<unsigned char>& chNewIV);


    void CleanKey()

    {

        memory_cleanse(vchKey.data(), vchKey.size());

        memory_cleanse(vchIV.data(), vchIV.size());

        fKeySet = false;

    }


    CCrypter()

    {

        fKeySet = false;

        vchKey.resize(WALLET_CRYPTO_KEY_SIZE);

        vchIV.resize(WALLET_CRYPTO_IV_SIZE);

    }


    ~CCrypter()

    {

        CleanKey();

    }

};


bool EncryptSecret(const CKeyingMaterial& vMasterKey, const CKeyingMaterial &vchPlaintext, const uint256& nIV, std::vector<unsigned char> &vchCiphertext);

bool DecryptSecret(const CKeyingMaterial& vMasterKey, const std::vector<unsigned char>& vchCiphertext, const uint256& nIV, CKeyingMaterial& vchPlaintext);

bool DecryptKey(const CKeyingMaterial& vMasterKey, const std::vector<unsigned char>& vchCryptedSecret, const CPubKey& vchPubKey, CKey& key);


#endif // BITCOIN_WALLET_CRYPTER_H

CCrypter
Encryption/decryption context with key information.
Definition: crypter.h:70

CCrypter::Encrypt
bool Encrypt(const CKeyingMaterial &vchPlaintext, std::vector< unsigned char > &vchCiphertext) const
Definition: crypter.cpp:71

CCrypter::SetKey
bool SetKey(const CKeyingMaterial &chNewKey, const std::vector< unsigned char > &chNewIV)
Definition: crypter.cpp:59

CCrypter::TestCrypter
friend class wallet_crypto_tests::TestCrypter
Definition: crypter.h:71

CCrypter::fKeySet
bool fKeySet
Definition: crypter.h:75

CCrypter::CCrypter
CCrypter()
Definition: crypter.h:92

CCrypter::SetKeyFromPassphrase
bool SetKeyFromPassphrase(const SecureString &strKeyData, const std::vector< unsigned char > &chSalt, const unsigned int nRounds, const unsigned int nDerivationMethod)
Definition: crypter.cpp:39

CCrypter::Decrypt
bool Decrypt(const std::vector< unsigned char > &vchCiphertext, CKeyingMaterial &vchPlaintext) const
Definition: crypter.cpp:89

CCrypter::BytesToKeySHA512AES
int BytesToKeySHA512AES(const std::vector< unsigned char > &chSalt, const SecureString &strKeyData, int count, unsigned char *key, unsigned char *iv) const
Definition: crypter.cpp:13

CCrypter::CleanKey
void CleanKey()
Definition: crypter.h:85

CCrypter::vchIV
std::vector< unsigned char, secure_allocator< unsigned char > > vchIV
Definition: crypter.h:74

CCrypter::vchKey
std::vector< unsigned char, secure_allocator< unsigned char > > vchKey
Definition: crypter.h:73

CCrypter::~CCrypter
~CCrypter()
Definition: crypter.h:99

CKey
An encapsulated private key.
Definition: key.h:27

CMasterKey
Private key encryption is done based on a CMasterKey, which holds a salt and random encryption key.
Definition: crypter.h:34

CMasterKey::vchSalt
std::vector< unsigned char > vchSalt
Definition: crypter.h:37

CMasterKey::SERIALIZE_METHODS
SERIALIZE_METHODS(CMasterKey, obj)
Definition: crypter.h:46

CMasterKey::CMasterKey
CMasterKey()
Definition: crypter.h:51

CMasterKey::nDerivationMethod
unsigned int nDerivationMethod
0 = EVP_sha512() 1 = scrypt()
Definition: crypter.h:40

CMasterKey::vchCryptedKey
std::vector< unsigned char > vchCryptedKey
Definition: crypter.h:36

CMasterKey::vchOtherDerivationParameters
std::vector< unsigned char > vchOtherDerivationParameters
Use this for more parameters to key derivation, such as the various parameters to scrypt.
Definition: crypter.h:44

CMasterKey::nDeriveIterations
unsigned int nDeriveIterations
Definition: crypter.h:41

CPubKey
An encapsulated public key.
Definition: pubkey.h:33

TestCrypter
Definition: wallet_crypto_tests.cpp:16

uint256
256-bit opaque blob.
Definition: uint256.h:124

memory_cleanse
void memory_cleanse(void *ptr, size_t len)
Secure overwrite a buffer (possibly containing secret data) with zero-bytes.
Definition: cleanse.cpp:14

DecryptKey
bool DecryptKey(const CKeyingMaterial &vMasterKey, const std::vector< unsigned char > &vchCryptedSecret, const CPubKey &vchPubKey, CKey &key)
Definition: crypter.cpp:127

EncryptSecret
bool EncryptSecret(const CKeyingMaterial &vMasterKey, const CKeyingMaterial &vchPlaintext, const uint256 &nIV, std::vector< unsigned char > &vchCiphertext)
Definition: crypter.cpp:107

WALLET_CRYPTO_IV_SIZE
const unsigned int WALLET_CRYPTO_IV_SIZE
Definition: crypter.h:15

CKeyingMaterial
std::vector< unsigned char, secure_allocator< unsigned char > > CKeyingMaterial
Definition: crypter.h:61

WALLET_CRYPTO_SALT_SIZE
const unsigned int WALLET_CRYPTO_SALT_SIZE
Definition: crypter.h:14

WALLET_CRYPTO_KEY_SIZE
const unsigned int WALLET_CRYPTO_KEY_SIZE
Definition: crypter.h:13

DecryptSecret
bool DecryptSecret(const CKeyingMaterial &vMasterKey, const std::vector< unsigned char > &vchCiphertext, const uint256 &nIV, CKeyingMaterial &vchPlaintext)
Definition: crypter.cpp:117

wallet_crypto_tests
Definition: crypter.h:64

secure.h

SecureString
std::basic_string< char, std::char_traits< char >, secure_allocator< char > > SecureString
Definition: secure.h:59

serialize.h

READWRITE
#define READWRITE(...)
Definition: serialize.h:147

signingprovider.h

count
static int count
Definition: tests.c:41