Add build script.

[brdnet.git] / ECC.pas

unit ECC;

INTERFACE
uses ed25519,Sha1;
type tEccKey=ed25519.tKey32;
type tPoWRec=packed record
 data:ed25519.tKey32;
 stamp:LongWord; {NetOrder}
 end;

var SecretKey:ed25519.tKey64;
var PublicKey:tEccKey;
var PublicPoW:tPoWRec;
var ZeroDigest:tSha1Digest;
const cDig3PowMask=%0010;
const cPoWValidDays=5;
const cTSEpoch=40179;
procedure CreateChallenge(out Challenge: tEccKey);
procedure CreateResponse(const Challenge: tEccKey; out Response: tSha1Digest; const srce:tEccKey);
function VerifyPoW(const proof:tPoWRec; const RemotePub:tEccKey):boolean;

operator :=(k:tEccKey) s:string;

IMPLEMENTATION
uses SysUtils,StrUtils,DateUtils;

procedure CreateChallenge(out Challenge: tEccKey);
 var i:byte;
 begin
 for i:=0 to 31 do challenge[i]:=Random(256);
end;

procedure CreateResponse(const Challenge: tEccKey; out Response: tSha1Digest; const srce:tEccKey);
 var Shared:tEccKey;
 var shactx:tSha1Context;
 begin
 ed25519.SharedSecret(shared,srce,secretkey);
 Sha1Init(shactx);
 Sha1Update(shactx,challenge,sizeof(challenge));
 Sha1Update(shactx,shared,sizeof(shared));
 Sha1Final(shactx,Response);
end;

var TSNow:LongWord;

function VerifyPoW(const proof:tPoWRec; const RemotePub:tEccKey):boolean;
 var shactx:tSha1Context;
 var digest:tSha1Digest;
 var delta:Integer;
 begin
 delta:=TSNow-BEtoN(proof.stamp);
 if (delta<=cPoWValidDays) and (delta>=-1) then begin
 Sha1Init(shactx);
 Sha1Update(shactx,proof,sizeof(proof));
 Sha1Update(shactx,RemotePub,sizeof(RemotePub));
 Sha1Final(shactx,digest);
 result:=(CompareByte(digest,ZeroDigest,3)=0)and((digest[3]and cDig3PoWMask)=0);
 end else result:=false;
end;

const cPoWFN='proof.dat';
procedure PoWLoadFromFile;
 var f:file of tPoWRec;
 begin
 assign(f,cPoWFN);
 reset(f);
 read(f,PublicPoW);
 close(f);
end;
procedure PoWGenerate;
 var f:file of tPoWRec;
 var i:byte;
 var counter:LongWord;
 var start:tDateTime;
 begin
 assign(f,cPoWFN);
 rewrite(f);
 write('ECC: Generating PoW, this may take a while...');
 PublicPow.stamp:=NtoBE(TSNow);
 Start:=Now; counter:=0;
 repeat
  for i:=0 to 31 do PublicPoW.data[i]:=Random(256);
  inc(counter);
 until VerifyPoW(PublicPoW,PublicKey);
 writeln(' PoW found in ',(Now-start)*SecsPerDay:1:0,'s speed=',counter/((Now-start)*SecsPerDay):1:0,'h/s');
 write(f,PublicPoW);
 close(f);
end;

const cSeckeyFN='secret.dat';
procedure LoadFromFile;
 var f:file of ed25519.tPrivKey;
 begin
 assign(f,cSecKeyFN);
 reset(f);
 read(f,SecretKey);
 close(f);
end;

procedure SaveGenerated;
 var f:file of ed25519.tPrivKey;
 begin
 assign(f,cSecKeyFN);
 rewrite(f);
 //fpchmod
 write(f,SecretKey);
 close(f);
end;

procedure Generate;
 {$IFDEF UNIX}
 var f:file of ed25519.tPrivKey;
 begin
 assign(f,'/dev/urandom');
 reset(f);
 read(f,SecretKey);
 close(f);
 {$ELSE}
 begin
 {$WARNING Not enough Random in windows license key}
 {$ERROR This unit requires UNIX-compatile operating system}
 {$ENDIF}
end;

procedure DerivePublic;
 begin
 CreatekeyPair(PublicKey,SecretKey);
end;

operator :=(k:tEccKey) s:string;
 begin
 Setlength(s,64);
 BinToHex(@k,@s[1],32);
end;

BEGIN
 FillChar(ZeroDigest,sizeof(ZeroDigest),0);
 TSNow:=trunc(Now-cTSEpoch);
 //writeln('ECC: Today is W',TSNow);
 try LoadFromFile;
 except on e:Exception do begin
  writeln('ECC: '+cSecKeyFN+' '+e.message+' while loading secret key, generating new keypair');
  Generate;
  (*until (PublicKey[31]=0)and(PublicKey[30]=0);*)
  SaveGenerated;
 end end;
 DerivePublic;
 writeln('ECC: pubkey is ',string(PublicKey));
 try
  PoWLoadFromFile;
  if not VerifyPoW(PublicPoW,PublicKey)
   then raise eXception.Create('invalid or expired proof');
  if (TSNow-BEtoN(PublicPow.Stamp))>=cPoWValidDays
   then raise eXception.Create('proof about to expire');
 except on e:Exception do begin
  writeln('ECC: '+cPOWFN+' '+e.message+' while loading proof');
  PoWGenerate;
 end end;
 //writeln('ECC: ProofOfWork valid for W',BEtoN(PublicPow.Stamp));
END.