doxygen/html/crypter_8h_source.html

 // Copyright (c) 2009-2015 The Bitcoin Core developers
 // Distributed under the MIT software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.

 #ifndef BITCOIN_WALLET_CRYPTER_H
 #define BITCOIN_WALLET_CRYPTER_H

 #include "keystore.h"
 #include "serialize.h"
 #include "support/allocators/secure.h"

 class uint256;

 const unsigned int WALLET_CRYPTO_KEY_SIZE = 32;
 const unsigned int WALLET_CRYPTO_SALT_SIZE = 8;

 class CMasterKey
 {
 public:
     std::vector<unsigned char> vchCryptedKey;
     std::vector<unsigned char> vchSalt;
     unsigned int nDerivationMethod;
     unsigned int nDeriveIterations;
     std::vector<unsigned char> vchOtherDerivationParameters;

     ADD_SERIALIZE_METHODS;

     template <typename Stream, typename Operation>
     inline void SerializationOp(Stream& s, Operation ser_action, int nType, int nVersion) {
         READWRITE(vchCryptedKey);
         READWRITE(vchSalt);
         READWRITE(nDerivationMethod);
         READWRITE(nDeriveIterations);
         READWRITE(vchOtherDerivationParameters);
     }

     CMasterKey()
     {
         // 25000 rounds is just under 0.1 seconds on a 1.86 GHz Pentium M
         // ie slightly lower than the lowest hardware we need bother supporting
         nDeriveIterations = 25000;
         nDerivationMethod = 0;
         vchOtherDerivationParameters = std::vector<unsigned char>(0);
     }
 };

 typedef std::vector<unsigned char, secure_allocator<unsigned char> > CKeyingMaterial;

 class CCrypter
 {
 private:
     unsigned char chKey[WALLET_CRYPTO_KEY_SIZE];
     unsigned char chIV[WALLET_CRYPTO_KEY_SIZE];
     bool fKeySet;

 public:
     bool SetKeyFromPassphrase(const SecureString &strKeyData, const std::vector<unsigned char>& chSalt, const unsigned int nRounds, const unsigned int nDerivationMethod);
     bool Encrypt(const CKeyingMaterial& vchPlaintext, std::vector<unsigned char> &vchCiphertext);
     bool Decrypt(const std::vector<unsigned char>& vchCiphertext, CKeyingMaterial& vchPlaintext);
     bool SetKey(const CKeyingMaterial& chNewKey, const std::vector<unsigned char>& chNewIV);

     void CleanKey()
     {
         memory_cleanse(chKey, sizeof(chKey));
         memory_cleanse(chIV, sizeof(chIV));
         fKeySet = false;
     }

     CCrypter()
     {
         fKeySet = false;

         // Try to keep the key data out of swap (and be a bit over-careful to keep the IV that we don't even use out of swap)
         // Note that this does nothing about suspend-to-disk (which will put all our key data on disk)
         // Note as well that at no point in this program is any attempt made to prevent stealing of keys by reading the memory of the running process.
         LockedPageManager::Instance().LockRange(&chKey[0], sizeof chKey);
         LockedPageManager::Instance().LockRange(&chIV[0], sizeof chIV);
     }

     ~CCrypter()
     {
         CleanKey();

         LockedPageManager::Instance().UnlockRange(&chKey[0], sizeof chKey);
         LockedPageManager::Instance().UnlockRange(&chIV[0], sizeof chIV);
     }
 };

 bool EncryptAES256(const SecureString& sKey, const SecureString& sPlaintext, const std::string& sIV, std::string& sCiphertext);
 bool DecryptAES256(const SecureString& sKey, const std::string& sCiphertext, const std::string& sIV, SecureString& sPlaintext);


 class CCryptoKeyStore : public CBasicKeyStore
 {
 private:
     CryptedKeyMap mapCryptedKeys;
     CHDChain cryptedHDChain;

     CKeyingMaterial vMasterKey;

     bool fUseCrypto;

     bool fDecryptionThoroughlyChecked;

     bool fOnlyMixingAllowed;

 protected:
     bool SetCrypted();

     bool EncryptKeys(CKeyingMaterial& vMasterKeyIn);

     bool EncryptHDChain(const CKeyingMaterial& vMasterKeyIn);
     bool DecryptHDChain(CHDChain& hdChainRet) const;
     bool SetHDChain(const CHDChain& chain);
     bool SetCryptedHDChain(const CHDChain& chain);

     bool Unlock(const CKeyingMaterial& vMasterKeyIn, bool fForMixingOnly = false);

 public:
     CCryptoKeyStore() : fUseCrypto(false), fDecryptionThoroughlyChecked(false), fOnlyMixingAllowed(false)
     {
     }

     bool IsCrypted() const
     {
         return fUseCrypto;
     }

     // This function should be used in a different combinations to determine
     // if CCryptoKeyStore is fully locked so that no operations requiring access
     // to private keys are possible:
     //      IsLocked(true)
     // or if CCryptoKeyStore's private keys are available for mixing only:
     //      !IsLocked(true) && IsLocked()
     // or if they are available for everything:
     //      !IsLocked()
     bool IsLocked(bool fForMixing = false) const
     {
         if (!IsCrypted())
             return false;
         bool result;
         {
             LOCK(cs_KeyStore);
             result = vMasterKey.empty();
         }
         // fForMixing   fOnlyMixingAllowed  return
         // ---------------------------------------
         // true         true                result
         // true         false               result
         // false        true                true
         // false        false               result

         if(!fForMixing && fOnlyMixingAllowed) return true;

         return result;
     }

     bool Lock(bool fAllowMixing = false);

     virtual bool AddCryptedKey(const CPubKey &vchPubKey, const std::vector<unsigned char> &vchCryptedSecret);
     bool AddKeyPubKey(const CKey& key, const CPubKey &pubkey);
     bool HaveKey(const CKeyID &address) const
     {
         {
             LOCK(cs_KeyStore);
             if (!IsCrypted())
                 return CBasicKeyStore::HaveKey(address);
             return mapCryptedKeys.count(address) > 0;
         }
         return false;
     }
     bool GetKey(const CKeyID &address, CKey& keyOut) const;
     bool GetPubKey(const CKeyID &address, CPubKey& vchPubKeyOut) const;
     void GetKeys(std::set<CKeyID> &setAddress) const
     {
         if (!IsCrypted())
         {
             CBasicKeyStore::GetKeys(setAddress);
             return;
         }
         setAddress.clear();
         CryptedKeyMap::const_iterator mi = mapCryptedKeys.begin();
         while (mi != mapCryptedKeys.end())
         {
             setAddress.insert((*mi).first);
             mi++;
         }
     }

     bool GetHDChain(CHDChain& hdChainRet) const;

     boost::signals2::signal<void (CCryptoKeyStore* wallet)> NotifyStatusChanged;
 };

 #endif // BITCOIN_WALLET_CRYPTER_H
CMasterKey::vchSalt
std::vector< unsigned char > vchSalt
Definition: crypter.h:37

CCryptoKeyStore::IsCrypted
bool IsCrypted() const
Definition: crypter.h:153

CMasterKey::ADD_SERIALIZE_METHODS
ADD_SERIALIZE_METHODS
Definition: crypter.h:46

CCryptoKeyStore::HaveKey
bool HaveKey(const CKeyID &address) const
Check whether a key corresponding to a given address is present in the store.
Definition: crypter.h:191

CMasterKey::vchOtherDerivationParameters
std::vector< unsigned char > vchOtherDerivationParameters
Definition: crypter.h:44

WALLET_CRYPTO_KEY_SIZE
const unsigned int WALLET_CRYPTO_KEY_SIZE
Definition: crypter.h:14

READWRITE
#define READWRITE(obj)
Definition: serialize.h:175

CCryptoKeyStore::DecryptHDChain
bool DecryptHDChain(CHDChain &hdChainRet) const
Definition: crypter.cpp:450

CCrypter::~CCrypter
~CCrypter()
Definition: crypter.h:101

CMasterKey::CMasterKey
CMasterKey()
Definition: crypter.h:57

CCrypter::Encrypt
bool Encrypt(const CKeyingMaterial &vchPlaintext, std::vector< unsigned char > &vchCiphertext)
Definition: crypter.cpp:50

CCryptoKeyStore::fOnlyMixingAllowed
bool fOnlyMixingAllowed
if fOnlyMixingAllowed is true, only mixing should be allowed in unlocked wallet
Definition: crypter.h:133

CCrypter::chKey
unsigned char chKey[WALLET_CRYPTO_KEY_SIZE]
Definition: crypter.h:73

CCryptoKeyStore::AddKeyPubKey
bool AddKeyPubKey(const CKey &key, const CPubKey &pubkey)
Add a key to the store.
Definition: crypter.cpp:302

SecureString
std::basic_string< char, std::char_traits< char >, secure_allocator< char > > SecureString
Definition: secure.h:61

CBasicKeyStore::HaveKey
bool HaveKey(const CKeyID &address) const
Check whether a key corresponding to a given address is present in the store.
Definition: keystore.h:69

CKeyingMaterial
std::vector< unsigned char, secure_allocator< unsigned char > > CKeyingMaterial
Definition: keystore.h:116

CKeyID
Definition: pubkey.h:27

CCrypter::CleanKey
void CleanKey()
Definition: crypter.h:83

CCryptoKeyStore::mapCryptedKeys
CryptedKeyMap mapCryptedKeys
Definition: crypter.h:120

CKeyingMaterial
std::vector< unsigned char, secure_allocator< unsigned char > > CKeyingMaterial
Definition: crypter.h:67

CCrypter::SetKeyFromPassphrase
bool SetKeyFromPassphrase(const SecureString &strKeyData, const std::vector< unsigned char > &chSalt, const unsigned int nRounds, const unsigned int nDerivationMethod)
Definition: crypter.cpp:17

CryptedKeyMap
std::map< CKeyID, std::pair< CPubKey, std::vector< unsigned char > > > CryptedKeyMap
Definition: keystore.h:117

DecryptAES256
bool DecryptAES256(const SecureString &sKey, const std::string &sCiphertext, const std::string &sIV, SecureString &sPlaintext)
Definition: crypter.cpp:174

CCrypter::fKeySet
bool fKeySet
Definition: crypter.h:75

CCryptoKeyStore::GetKey
bool GetKey(const CKeyID &address, CKey &keyOut) const
Definition: crypter.cpp:336

CHDChain
Definition: hdchain.h:28

CMasterKey
Definition: crypter.h:33

CCryptoKeyStore::fUseCrypto
bool fUseCrypto
Definition: crypter.h:127

CCryptoKeyStore::SetHDChain
bool SetHDChain(const CHDChain &chain)
Definition: crypter.cpp:501

CCryptoKeyStore::GetPubKey
bool GetPubKey(const CKeyID &address, CPubKey &vchPubKeyOut) const
Definition: crypter.cpp:354

CBasicKeyStore
Definition: keystore.h:56

CCryptoKeyStore::GetHDChain
bool GetHDChain(CHDChain &hdChainRet) const
Definition: crypter.cpp:525

CCrypter::chIV
unsigned char chIV[WALLET_CRYPTO_KEY_SIZE]
Definition: crypter.h:74

keystore.h

CCrypter::CCrypter
CCrypter()
Definition: crypter.h:90

memory_cleanse
void memory_cleanse(void *ptr, size_t len)
Definition: cleanse.cpp:10

CCrypter
Definition: crypter.h:70

serialize.h

CKeyStore::cs_KeyStore
CCriticalSection cs_KeyStore
Definition: keystore.h:23

LOCK
#define LOCK(cs)
Definition: sync.h:168

CCryptoKeyStore::cryptedHDChain
CHDChain cryptedHDChain
Definition: crypter.h:121

LockedPageManagerBase::LockRange
void LockRange(void *p, size_t size)
Definition: pagelocker.h:44

CCryptoKeyStore::NotifyStatusChanged
boost::signals2::signal< void(CCryptoKeyStore *wallet)> NotifyStatusChanged
Definition: crypter.h:225

CMasterKey::nDeriveIterations
unsigned int nDeriveIterations
Definition: crypter.h:41

CCryptoKeyStore::IsLocked
bool IsLocked(bool fForMixing=false) const
Definition: crypter.h:166

LockedPageManagerBase::UnlockRange
void UnlockRange(void *p, size_t size)
Definition: pagelocker.h:66

CCrypter::SetKey
bool SetKey(const CKeyingMaterial &chNewKey, const std::vector< unsigned char > &chNewIV)
Definition: crypter.cpp:38

CMasterKey::SerializationOp
void SerializationOp(Stream &s, Operation ser_action, int nType, int nVersion)
Definition: crypter.h:49

CMasterKey::vchCryptedKey
std::vector< unsigned char > vchCryptedKey
Definition: crypter.h:36

CCrypter::Decrypt
bool Decrypt(const std::vector< unsigned char > &vchCiphertext, CKeyingMaterial &vchPlaintext)
Definition: crypter.cpp:81

CCryptoKeyStore::GetKeys
void GetKeys(std::set< CKeyID > &setAddress) const
Definition: crypter.h:203

CBasicKeyStore::GetKeys
void GetKeys(std::set< CKeyID > &setAddress) const
Definition: keystore.h:78

uint256
Definition: uint256.h:114

WALLET_CRYPTO_SALT_SIZE
const unsigned int WALLET_CRYPTO_SALT_SIZE
Definition: crypter.h:15

CMasterKey::nDerivationMethod
unsigned int nDerivationMethod
Definition: crypter.h:40

CCryptoKeyStore::CCryptoKeyStore
CCryptoKeyStore()
Definition: crypter.h:149

CCryptoKeyStore::Unlock
bool Unlock(const CKeyingMaterial &vMasterKeyIn, bool fForMixingOnly=false)
Definition: crypter.cpp:248

CCryptoKeyStore::Lock
bool Lock(bool fAllowMixing=false)
Definition: crypter.cpp:233

CCryptoKeyStore::EncryptHDChain
bool EncryptHDChain(const CKeyingMaterial &vMasterKeyIn)
Definition: crypter.cpp:397

CCryptoKeyStore::SetCrypted
bool SetCrypted()
Definition: crypter.cpp:222

CCryptoKeyStore::AddCryptedKey
virtual bool AddCryptedKey(const CPubKey &vchPubKey, const std::vector< unsigned char > &vchCryptedSecret)
Definition: crypter.cpp:324

CPubKey
Definition: pubkey.h:37

CCryptoKeyStore::vMasterKey
CKeyingMaterial vMasterKey
Definition: crypter.h:123

CCryptoKeyStore::fDecryptionThoroughlyChecked
bool fDecryptionThoroughlyChecked
keeps track of whether Unlock has run a thorough check before
Definition: crypter.h:130

LockedPageManager::Instance
static LockedPageManager & Instance()
Definition: pagelocker.h:136

CCryptoKeyStore
Definition: crypter.h:117

CCryptoKeyStore::SetCryptedHDChain
bool SetCryptedHDChain(const CHDChain &chain)
Definition: crypter.cpp:513

CKey
Definition: key.h:35

secure.h

extract_strings_qt.key
key
Definition: extract_strings_qt.py:73

EncryptAES256
bool EncryptAES256(const SecureString &sKey, const SecureString &sPlaintext, const std::string &sIV, std::string &sCiphertext)
Definition: crypter.cpp:125

CCryptoKeyStore::EncryptKeys
bool EncryptKeys(CKeyingMaterial &vMasterKeyIn)
will encrypt previously unencrypted keys
Definition: crypter.cpp:373

rpcuser.result
result
Definition: rpcuser.py:37