rippled/WalletPropose_8cpp_source.html

#include <xrpld/rpc/handlers/admin/keygen/WalletPropose.h>


#include <xrpld/rpc/Context.h>

#include <xrpld/rpc/detail/RPCHelpers.h>


#include <xrpl/basics/strHex.h>

#include <xrpl/json/json_value.h>

#include <xrpl/protocol/AccountID.h>

#include <xrpl/protocol/ErrorCodes.h>

#include <xrpl/protocol/KeyType.h>

#include <xrpl/protocol/PublicKey.h>

#include <xrpl/protocol/RPCErr.h>

#include <xrpl/protocol/SecretKey.h>

#include <xrpl/protocol/Seed.h>

#include <xrpl/protocol/jss.h>

#include <xrpl/protocol/tokens.h>


#include <cmath>

#include <map>

#include <optional>

#include <string>


namespace xrpl {


double


estimateEntropy(std::string const& input)

{

    // First, we calculate the Shannon entropy. This gives

    // the average number of bits per symbol that we would

    // need to encode the input.

    std::map<int, double> freq;


    for (auto const& c : input)

        freq[c]++;


    double se = 0.0;


    for (auto const& [_, f] : freq)

    {

        (void)_;

        auto x = f / input.length();

        se += x * log2(x);

    }


    // We multiply it by the length, to get an estimate of

    // the number of bits in the input. We floor because it

    // is better to be conservative.

    return std::floor(-se * input.length());

}


// {

//  passphrase: <string>

// }

json::Value


doWalletPropose(RPC::JsonContext& context)

{

    return walletPropose(context.params);

}


json::Value


walletPropose(json::Value const& params)

{

    std::optional<KeyType> keyType;

    std::optional<Seed> seed;

    bool libSeed = false;


    if (params.isMember(jss::key_type))

    {

        if (!params[jss::key_type].isString())

        {

            return RPC::expectedFieldError(jss::key_type, "string");

        }


        keyType = keyTypeFromString(params[jss::key_type].asString());


        if (!keyType)

            return rpcError(RpcInvalidParams);

    }


    // XrplLib encodes seed used to generate an Ed25519 wallet in a

    // non-standard way. While we never encode seeds that way, we try

    // to detect such keys to avoid user confusion.

    {

        if (params.isMember(jss::passphrase))

        {

            seed = RPC::parseXrplLibSeed(params[jss::passphrase]);

        }

        else if (params.isMember(jss::seed))

        {

            seed = RPC::parseXrplLibSeed(params[jss::seed]);

        }


        if (seed)

        {

            libSeed = true;


            // If the user *explicitly* requests a key type other than

            // Ed25519 we return an error.

            if (keyType.value_or(KeyType::Ed25519) != KeyType::Ed25519)

                return rpcError(RpcBadSeed);


            keyType = KeyType::Ed25519;

        }

    }


    if (!seed)

    {

        if (params.isMember(jss::passphrase) || params.isMember(jss::seed) ||

            params.isMember(jss::seed_hex))

        {

            json::Value err;


            seed = RPC::getSeedFromRPC(params, err);


            if (!seed)

                return err;

        }

        else

        {

            seed = randomSeed();

        }

    }


    if (!keyType)

        keyType = KeyType::Secp256k1;


    auto const publicKey = generateKeyPair(*keyType, *seed).first;


    json::Value obj(json::ValueType::Object);


    auto const seed1751 = seedAs1751(*seed);

    auto const seedHex = strHex(*seed);

    auto const seedBase58 = toBase58(*seed);


    obj[jss::master_seed] = seedBase58;

    obj[jss::master_seed_hex] = seedHex;

    obj[jss::master_key] = seed1751;

    obj[jss::account_id] = toBase58(calcAccountID(publicKey));

    obj[jss::public_key] = toBase58(TokenType::AccountPublic, publicKey);

    obj[jss::key_type] = to_string(*keyType);

    obj[jss::public_key_hex] = strHex(publicKey);


    // If a passphrase was specified, and it was hashed and used as a seed

    // run a quick entropy check and add an appropriate warning, because

    // "brain wallets" can be easily attacked.

    if (!libSeed && params.isMember(jss::passphrase))

    {

        auto const passphrase = params[jss::passphrase].asString();


        if (passphrase != seed1751 && passphrase != seedBase58 && passphrase != seedHex)

        {

            // 80 bits of entropy isn't bad, but it's better to

            // err on the side of caution and be conservative.

            if (estimateEntropy(passphrase) < 80.0)

            {

                obj[jss::warning] =

                    "This wallet was generated using a user-supplied "

                    "passphrase that has low entropy and is vulnerable "

                    "to brute-force attacks.";

            }

            else

            {

                obj[jss::warning] =

                    "This wallet was generated using a user-supplied "

                    "passphrase. It may be vulnerable to brute-force "

                    "attacks.";

            }

        }

    }


    return obj;

}


}  // namespace xrpl

std::string

json::Value
Represents a JSON value.
Definition json_value.h:130

json::Value::asString
std::string asString() const
Returns the unquoted string value.
Definition json_value.cpp:483

json::Value::isMember
bool isMember(char const *key) const
Return true if the object has a member named key.
Definition json_value.cpp:1036

cmath

std::floor
T floor(T... args)

map

json::ValueType::Object
@ Object
object value (collection of name/value pairs).
Definition json_value.h:26

xrpl::RPC::parseXrplLibSeed
std::optional< Seed > parseXrplLibSeed(json::Value const &value)
Parses a XrplLib seed from RPC parameters.
Definition RPCHelpers.cpp:140

xrpl::RPC::getSeedFromRPC
std::optional< Seed > getSeedFromRPC(json::Value const &params, json::Value &error)
Extracts a Seed from RPC parameters.
Definition RPCHelpers.cpp:158

xrpl::RPC::expectedFieldError
json::Value expectedFieldError(std::string const &name, std::string const &type)
Definition ErrorCodes.h:297

xrpl
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition algorithm.h:5

xrpl::KeyType::Secp256k1
@ Secp256k1
Definition KeyType.h:9

xrpl::KeyType::Ed25519
@ Ed25519
Definition KeyType.h:10

xrpl::RpcInvalidParams
@ RpcInvalidParams
Definition ErrorCodes.h:66

xrpl::RpcBadSeed
@ RpcBadSeed
Definition ErrorCodes.h:81

xrpl::doWalletPropose
json::Value doWalletPropose(RPC::JsonContext &context)
Definition WalletPropose.cpp:55

xrpl::keyTypeFromString
std::optional< KeyType > keyTypeFromString(std::string const &s)
Definition KeyType.h:14

xrpl::randomSeed
Seed randomSeed()
Create a seed using secure random numbers.
Definition Seed.cpp:48

xrpl::strHex
std::string strHex(FwdIt begin, FwdIt end)
Definition strHex.h:10

xrpl::toBase58
std::string toBase58(AccountID const &v)
Convert AccountID to base58 checked string.
Definition AccountID.cpp:93

xrpl::seedAs1751
std::string seedAs1751(Seed const &seed)
Encode a Seed in RFC1751 format.
Definition Seed.cpp:116

xrpl::generateKeyPair
std::pair< PublicKey, SecretKey > generateKeyPair(KeyType type, Seed const &seed)
Generate a key pair deterministically.
Definition SecretKey.cpp:335

xrpl::to_string
std::string to_string(BaseUInt< Bits, Tag > const &a)
Definition base_uint.h:633

xrpl::rpcError
json::Value rpcError(ErrorCodeI iError)
Definition RPCErr.cpp:13

xrpl::walletPropose
json::Value walletPropose(json::Value const &params)
Definition WalletPropose.cpp:61

xrpl::calcAccountID
AccountID calcAccountID(PublicKey const &pk)
Definition AccountID.cpp:147

xrpl::TokenType::AccountPublic
@ AccountPublic
Definition tokens.h:23

xrpl::estimateEntropy
double estimateEntropy(std::string const &input)
Definition WalletPropose.cpp:26

optional

std::string::length
T length(T... args)

string

xrpl::RPC::JsonContext
Definition Context.h:33

xrpl::RPC::JsonContext::params
json::Value params
Definition Context.h:43

std::optional::value_or
T value_or(T... args)