mmgen-walletgen 5.8 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169
  1. #!/usr/bin/env python
  2. #
  3. # mmgen = Multi-Mode GENerator, command-line Bitcoin cold storage solution
  4. # Copyright (C) 2013 by philemon <mmgen-py@yandex.com>
  5. #
  6. # This program is free software: you can redistribute it and/or modify
  7. # it under the terms of the GNU General Public License as published by
  8. # the Free Software Foundation, either version 3 of the License, or
  9. # (at your option) any later version.
  10. #
  11. # This program is distributed in the hope that it will be useful,
  12. # but WITHOUT ANY WARRANTY; without even the implied warranty of
  13. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  14. # GNU General Public License for more details.
  15. #
  16. # You should have received a copy of the GNU General Public License
  17. # along with this program. If not, see <http://www.gnu.org/licenses/>.
  18. """
  19. mmgen-walletgen: Generate a mmgen deterministic wallet
  20. """
  21. import sys, os
  22. from hashlib import sha256
  23. from mmgen.Opts import *
  24. from mmgen.license import *
  25. import mmgen.config as g
  26. from mmgen.walletgen import *
  27. from mmgen.util import *
  28. prog_name = sys.argv[0].split("/")[-1]
  29. help_data = {
  30. 'prog_name': prog_name,
  31. 'desc': "Generate a {} deterministic wallet".format(g.proj_name),
  32. 'usage': "[opts] [infile]",
  33. 'options': """
  34. -h, --help Print this help message
  35. -d, --outdir d Specify an alternate directory 'd' for output
  36. -e, --echo-passphrase Print passphrase to screen when typing it
  37. -H, --show-hash-presets Show information on available hash presets
  38. -l, --seed-len n Create seed of length 'n'. Options: {}
  39. (default: {})
  40. -L, --label l Label to identify this wallet (32 chars max.
  41. Allowed symbols: A-Z, a-z, 0-9, " ", "_", ".")
  42. -p, --hash-preset p Use scrypt.hash() parameters from preset 'p'
  43. (default: '{}')
  44. -P, --passwd-file f Get passphrase from file 'f'
  45. -q, --quiet Suppress warnings; overwrite files without
  46. prompting
  47. -u, --usr-randlen n Get 'n' characters of randomness from the user
  48. (default: {})
  49. -b, --from-brain l,p Generate wallet from a user-created passphrase,
  50. i.e. a "brainwallet", using seed length 'l' and
  51. hash preset 'p' (comma-separated)
  52. -m, --from-mnemonic Generate wallet from an Electrum-like mnemonic
  53. -s, --from-seed Generate wallet from a seed in .{S} format
  54. By default (i.e. when invoked without any of the '--from-<what>' options),
  55. {} generates a wallet based on a random seed.
  56. Data for the --from-<what> options will be taken from <infile> if <infile>
  57. is specified. Otherwise, the user will be prompted to enter the data.
  58. For passphrases all combinations of whitespace are equal, and leading and
  59. trailing space are ignored. This permits reading passphrase data from a
  60. multi-line file with free spacing and indentation. This is particularly
  61. convenient for long brainwallet passphrases, for example.
  62. BRAINWALLET NOTE:
  63. As brainwallets require especially strong hashing to thwart dictionary
  64. attacks, the brainwallet hash preset must be specified by the user, using
  65. the 'p' parameter of the '--from-brain' option. This preset should be
  66. stronger than the one used for hashing the seed (i.e. the default value or
  67. the one specified in the '--hash-preset' option).
  68. The '--from-brain' option also requires the user to specify a seed length
  69. (the 'l' parameter), which overrides both the default and any one given in
  70. the '--seed-len' option.
  71. For a brainwallet passphrase to always generate the same keys and
  72. addresses, the same 'l' and 'p' parameters to '--from-brain' must be used
  73. in all future invocations with that passphrase.
  74. """.format(
  75. ",".join([str(i) for i in g.seed_lens]),
  76. g.seed_len,
  77. g.hash_preset,
  78. g.usr_randlen,
  79. prog_name,
  80. S=g.seed_ext,
  81. )
  82. }
  83. short_opts = "hd:eHl:L:p:P:qu:b:ms"
  84. long_opts = "help","outdir=","echo_passphrase","show_hash_presets","seed_len=",\
  85. "label=","hash_preset=","passwd_file=","quiet","usr_randlen=",\
  86. "from_brain=","from_mnemonic","from_seed"
  87. opts,cmd_args = process_opts(sys.argv,help_data,short_opts,long_opts)
  88. if 'show_hash_presets' in opts: show_hash_presets()
  89. check_opts(opts,long_opts)
  90. if g.debug: show_opts_and_cmd_args(opts,cmd_args)
  91. if len(cmd_args) == 1:
  92. infile = cmd_args[0]
  93. check_infile(infile)
  94. elif len(cmd_args) == 0:
  95. infile = ""
  96. else: usage(help_data)
  97. # Begin execution
  98. if not 'quiet' in opts: do_license_msg()
  99. msg_r("Acquiring random data from your computer...")
  100. from time import sleep
  101. sleep(0.25)
  102. try:
  103. from Crypto import Random
  104. r = Random.new()
  105. os_rand_data = (r.read(256),r.read(128))
  106. except:
  107. msg("FAILED\nUnable to generate random numbers. Exiting")
  108. sys.exit(2)
  109. msg("OK")
  110. if g.debug: display_os_random_data(os_rand_data)
  111. usr_keys,key_timings = get_random_data_from_user(opts)
  112. msg("")
  113. if g.debug: display_user_random_data(usr_keys,key_timings)
  114. usr_rand_data = sha256(usr_keys).digest() + \
  115. sha256("".join(key_timings)).digest()
  116. for i in 'from_mnemonic','from_brain','from_seed':
  117. if infile or (i in opts):
  118. seed = get_seed_retry(infile,opts); break
  119. else:
  120. # Truncate random data for smaller seed lengths
  121. seed = os_rand_data[0] + usr_rand_data
  122. seed = sha256(seed).digest()[:opts['seed_len']/8]
  123. salt = os_rand_data[1] + usr_rand_data
  124. salt = sha256(salt).digest()[:g.salt_len]
  125. if not 'quiet' in opts:
  126. msg("""
  127. Now you must choose a passphrase to encrypt the seed with. A key will be
  128. generated from your passphrase using a hash preset of '%s'. Please note that
  129. no strength checking of passphrases is performed. For an empty passphrase,
  130. just hit ENTER twice.
  131. """ % opts['hash_preset'])
  132. passwd = get_new_passphrase("{} wallet passphrase".format(g.proj_name), opts)
  133. key = make_key(passwd, salt, opts['hash_preset'])
  134. enc_seed = encrypt_seed(seed, key, opts)
  135. write_wallet_to_file(seed,passwd,make_chksum_8(key),salt,enc_seed,opts)