rippled/WalletPropose_8cpp_source.html

#include <xrpld/rpc/Context.h>

#include <xrpld/rpc/detail/RPCHelpers.h>

#include <xrpld/rpc/handlers/admin/keygen/WalletPropose.h>


#include <xrpl/basics/strHex.h>

#include <xrpl/protocol/ErrorCodes.h>

#include <xrpl/protocol/KeyType.h>

#include <xrpl/protocol/PublicKey.h>

#include <xrpl/protocol/RPCErr.h>

#include <xrpl/protocol/SecretKey.h>

#include <xrpl/protocol/Seed.h>

#include <xrpl/protocol/jss.h>


#include <cmath>

#include <map>


namespace xrpl {


double


estimate_entropy(std::string const& input)

{

    // First, we calculate the Shannon entropy. This gives

    // the average number of bits per symbol that we would

    // need to encode the input.

    std::map<int, double> freq;


    for (auto const& c : input)

        freq[c]++;


    double se = 0.0;


    for (auto const& [_, f] : freq)

    {

        (void)_;

        auto x = f / input.length();

        se += (x)*log2(x);

    }


    // We multiply it by the length, to get an estimate of

    // the number of bits in the input. We floor because it

    // is better to be conservative.

    return std::floor(-se * input.length());

}


// {

//  passphrase: <string>

// }

Json::Value


doWalletPropose(RPC::JsonContext& context)

{

    return walletPropose(context.params);

}


Json::Value


walletPropose(Json::Value const& params)

{

    std::optional<KeyType> keyType;

    std::optional<Seed> seed;

    bool rippleLibSeed = false;


    if (params.isMember(jss::key_type))

    {

        if (!params[jss::key_type].isString())

        {

            return RPC::expected_field_error(jss::key_type, "string");

        }


        keyType = keyTypeFromString(params[jss::key_type].asString());


        if (!keyType)

            return rpcError(rpcINVALID_PARAMS);

    }


    // ripple-lib encodes seed used to generate an Ed25519 wallet in a

    // non-standard way. While we never encode seeds that way, we try

    // to detect such keys to avoid user confusion.

    {

        if (params.isMember(jss::passphrase))

        {

            seed = RPC::parseRippleLibSeed(params[jss::passphrase]);

        }

        else if (params.isMember(jss::seed))

        {

            seed = RPC::parseRippleLibSeed(params[jss::seed]);

        }


        if (seed)

        {

            rippleLibSeed = true;


            // If the user *explicitly* requests a key type other than

            // Ed25519 we return an error.

            if (keyType.value_or(KeyType::ed25519) != KeyType::ed25519)

                return rpcError(rpcBAD_SEED);


            keyType = KeyType::ed25519;

        }

    }


    if (!seed)

    {

        if (params.isMember(jss::passphrase) || params.isMember(jss::seed) ||

            params.isMember(jss::seed_hex))

        {

            Json::Value err;


            seed = RPC::getSeedFromRPC(params, err);


            if (!seed)

                return err;

        }

        else

        {

            seed = randomSeed();

        }

    }


    if (!keyType)

        keyType = KeyType::secp256k1;


    auto const publicKey = generateKeyPair(*keyType, *seed).first;


    Json::Value obj(Json::objectValue);


    auto const seed1751 = seedAs1751(*seed);

    auto const seedHex = strHex(*seed);

    auto const seedBase58 = toBase58(*seed);


    obj[jss::master_seed] = seedBase58;

    obj[jss::master_seed_hex] = seedHex;

    obj[jss::master_key] = seed1751;

    obj[jss::account_id] = toBase58(calcAccountID(publicKey));

    obj[jss::public_key] = toBase58(TokenType::AccountPublic, publicKey);

    obj[jss::key_type] = to_string(*keyType);

    obj[jss::public_key_hex] = strHex(publicKey);


    // If a passphrase was specified, and it was hashed and used as a seed

    // run a quick entropy check and add an appropriate warning, because

    // "brain wallets" can be easily attacked.

    if (!rippleLibSeed && params.isMember(jss::passphrase))

    {

        auto const passphrase = params[jss::passphrase].asString();


        if (passphrase != seed1751 && passphrase != seedBase58 && passphrase != seedHex)

        {

            // 80 bits of entropy isn't bad, but it's better to

            // err on the side of caution and be conservative.

            if (estimate_entropy(passphrase) < 80.0)

            {

                obj[jss::warning] =

                    "This wallet was generated using a user-supplied "

                    "passphrase that has low entropy and is vulnerable "

                    "to brute-force attacks.";

            }

            else

            {

                obj[jss::warning] =

                    "This wallet was generated using a user-supplied "

                    "passphrase. It may be vulnerable to brute-force "

                    "attacks.";

            }

        }

    }


    return obj;

}


}  // namespace xrpl

std::string

Json::Value
Represents a JSON value.
Definition json_value.h:130

Json::Value::asString
std::string asString() const
Returns the unquoted string value.
Definition json_value.cpp:476

Json::Value::isMember
bool isMember(char const *key) const
Return true if the object has a member named key.
Definition json_value.cpp:1017

cmath

std::floor
T floor(T... args)

map

Json::objectValue
@ objectValue
object value (collection of name/value pairs).
Definition json_value.h:26

xrpl::RPC::expected_field_error
Json::Value expected_field_error(std::string const &name, std::string const &type)
Definition ErrorCodes.h:297

xrpl::RPC::parseRippleLibSeed
std::optional< Seed > parseRippleLibSeed(Json::Value const &value)
Parses a RippleLib seed from RPC parameters.
Definition RPCHelpers.cpp:117

xrpl::RPC::getSeedFromRPC
std::optional< Seed > getSeedFromRPC(Json::Value const &params, Json::Value &error)
Extracts a Seed from RPC parameters.
Definition RPCHelpers.cpp:135

xrpl
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition algorithm.h:5

xrpl::KeyType::ed25519
@ ed25519

xrpl::KeyType::secp256k1
@ secp256k1

xrpl::keyTypeFromString
std::optional< KeyType > keyTypeFromString(std::string const &s)
Definition KeyType.h:14

xrpl::randomSeed
Seed randomSeed()
Create a seed using secure random numbers.
Definition Seed.cpp:47

xrpl::to_string
std::string to_string(base_uint< Bits, Tag > const &a)
Definition base_uint.h:602

xrpl::strHex
std::string strHex(FwdIt begin, FwdIt end)
Definition strHex.h:10

xrpl::toBase58
std::string toBase58(AccountID const &v)
Convert AccountID to base58 checked string.
Definition AccountID.cpp:92

xrpl::doWalletPropose
Json::Value doWalletPropose(RPC::JsonContext &context)
Definition WalletPropose.cpp:49

xrpl::estimate_entropy
double estimate_entropy(std::string const &input)
Definition WalletPropose.cpp:20

xrpl::seedAs1751
std::string seedAs1751(Seed const &seed)
Encode a Seed in RFC1751 format.
Definition Seed.cpp:115

xrpl::generateKeyPair
std::pair< PublicKey, SecretKey > generateKeyPair(KeyType type, Seed const &seed)
Generate a key pair deterministically.
Definition SecretKey.cpp:333

xrpl::walletPropose
Json::Value walletPropose(Json::Value const &params)
Definition WalletPropose.cpp:55

xrpl::calcAccountID
AccountID calcAccountID(PublicKey const &pk)
Definition AccountID.cpp:146

xrpl::TokenType::AccountPublic
@ AccountPublic

xrpl::rpcError
Json::Value rpcError(error_code_i iError)
Definition RPCErr.cpp:12

xrpl::rpcBAD_SEED
@ rpcBAD_SEED
Definition ErrorCodes.h:79

xrpl::rpcINVALID_PARAMS
@ rpcINVALID_PARAMS
Definition ErrorCodes.h:64

std::optional

std::string::length
T length(T... args)

xrpl::RPC::JsonContext
Definition Context.h:33

xrpl::RPC::JsonContext::params
Json::Value params
Definition Context.h:43

std::optional::value_or
T value_or(T... args)