github.com/keybase/client/go@v0.0.0-20241007131713-f10651d043c8/libkb/paperkey_phrase.go (about) 1 // Copyright 2015 Keybase, Inc. All rights reserved. Use of 2 // this source code is governed by the included BSD license. 3 4 package libkb 5 6 import ( 7 "crypto/sha256" 8 "errors" 9 "strings" 10 ) 11 12 // PaperKeyPhrase is the string that can generate a paper key. It 13 // is versioned and forced to be lowercase. To make a new random 14 // phrase, use MakePaperKeyPhrase. To convert a string to a 15 // PaperKeyPhrase, use NewPaperKeyPhrase. 16 type PaperKeyPhrase string 17 18 // MakePaperKeyPhrase creates a new, random paper key phrase for 19 // the given version. 20 func MakePaperKeyPhrase(version uint8) (PaperKeyPhrase, error) { 21 nbits := PaperKeySecretEntropy + PaperKeyIDBits + PaperKeyVersionBits 22 for i := 0; i < 1000; i++ { 23 words, err := SecWordList(nbits) 24 if err != nil { 25 return "", err 26 } 27 if wordVersion(words[len(words)-1]) != version { 28 continue 29 } 30 return NewPaperKeyPhrase(strings.Join(words, " ")), nil 31 } 32 return "", KeyGenError{Msg: "exhausted attempts to generate valid paper key"} 33 } 34 35 // NewPaperKeyPhrase converts a string into a PaperKeyPhrase. 36 func NewPaperKeyPhrase(phrase string) PaperKeyPhrase { 37 phrase = strings.TrimSpace(strings.ToLower(phrase)) 38 return PaperKeyPhrase(strings.Join(strings.Fields(phrase), " ")) 39 } 40 41 // String returns a string representation of the phrase. 42 func (p PaperKeyPhrase) String() string { 43 return string(p) 44 } 45 46 // Bytes returns a byte slice of the phrase. 47 func (p PaperKeyPhrase) Bytes() []byte { 48 return []byte(p) 49 } 50 51 // Version calculates the phrase version. 0-15 are possible 52 // versions. 53 func (p PaperKeyPhrase) Version() (uint8, error) { 54 words := p.words() 55 if len(words) == 0 { 56 return 0, errors.New("empty paper key phrase") 57 } 58 return wordVersion(words[len(words)-1]), nil 59 } 60 61 func (p PaperKeyPhrase) InvalidWords() (words []string) { 62 for _, w := range p.words() { 63 // in secwords.go: 64 if !ValidSecWord(w) { 65 words = append(words, w) 66 } 67 } 68 return words 69 } 70 71 // Prefix returns the first two words in the phrase. 72 func (p PaperKeyPhrase) Prefix() string { 73 return strings.Join(p.words()[0:2], " ") 74 } 75 76 // words returns the phrase as a slice of words. 77 func (p PaperKeyPhrase) words() []string { 78 return strings.Fields(p.String()) 79 } 80 81 func (p PaperKeyPhrase) NumWords() int { 82 return len(p.words()) 83 } 84 85 // wordVersion calculates the paper key phrase version based on a 86 // word. 87 func wordVersion(word string) uint8 { 88 h := sha256.Sum256([]byte(word)) 89 if PaperKeyVersionBits > 8 { 90 panic("PaperKeyVersionBits must be 8 bits or fewer") 91 } 92 return h[len(h)-1] & ((1 << PaperKeyVersionBits) - 1) 93 } 94 95 func NewPaperKeyPhraseCheckVersion(m MetaContext, passphrase string) (ret PaperKeyPhrase, err error) { 96 paperPhrase := NewPaperKeyPhrase(passphrase) 97 version, err := paperPhrase.Version() 98 if err != nil { 99 return ret, err 100 } 101 if version != PaperKeyVersion { 102 m.Debug("paper version mismatch: generated paper key version = %d, libkb version = %d", version, PaperKeyVersion) 103 return ret, KeyVersionError{} 104 } 105 return paperPhrase, nil 106 }