gpgpdump v0.5.0 をリリースした
OpenPGP パケットの内容を視覚化する gpgpdump の v0.5.0 をリリースした。
まず --indent オプションを追加した。
$ gpgpdump -h
Usage:
gpgpdump [flags] [OpenPGP file]
Flags:
-a, --armor accepts ASCII input only
--debug for debug
-h, --help help for gpgpdump
--indent int indent size for output string
-i, --int dumps multi-precision integers
-j, --json output with JSON format
-l, --literal dumps literal packets (tag 11)
-m, --marker dumps marker packets (tag 10)
-p, --private dumps private packets (tag 60-63)
-t, --toml output with TOML format
-u, --utc output with UTC time
-v, --version output version of gpgpdumpこのオプションで出力テキストのインデント幅を調整できる。
$ cat testdata/eccsig.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iF4EARMIAAYFAlTDCN8ACgkQMfv9qV+7+hg2HwEA6h2iFFuCBv3VrsSf2BREQaT1
T1ZprZqwRPOjiLJg9AwA/ArTwCPz7c2vmxlv7sRlRLUI6CdsOqhuO1KfYXrq7idI
=ZOTN
-----END PGP SIGNATURE-----
$ cat testdata/eccsig.asc | gpgpdump -u --indent 2
Signature Packet (tag 2) (94 bytes)
Version: 4 (current)
Signiture Type: Signature of a canonical text document (0x01)
Public-key Algorithm: ECDSA public key algorithm (pub 19)
Hash Algorithm: SHA2-256 (hash 8)
Hashed Subpacket (6 bytes)
Signature Creation Time (sub 2): 2015-01-24T02:52:15Z
Unhashed Subpacket (10 bytes)
Issuer (sub 16): 0x31fbfda95fbbfa18
Hash left 2 bytes
36 1f
ECDSA value r (256 bits)
ECDSA value s (252 bits)
--indent オプションがない場合には今までどおりインデントにタブ文字を使う。
--indent オプションは JSON (-j) または TOML (-t) でも有効となる。
前バージョンからの変更点として JSON 出力時に --indent オプションがないとコンパクト出力となる。
$ cat testdata/eccsig.asc | gpgpdump -u -j
{"Packet":[{"name":"Signature Packet (tag 2)","note":"94 bytes","Item":[{"name":"Version","value":"4","note":"current"},{"name":"Signiture Type","value":"Signature of a canonical text document (0x01)"},{"name":"Public-key Algorithm","value":"ECDSA public key algorithm (pub 19)"},{"name":"Hash Algorithm","value":"SHA2-256 (hash 8)"},{"name":"Hashed Subpacket","note":"6 bytes","Item":[{"name":"Signature Creation Time (sub 2)","value":"2015-01-24T02:52:15Z"}]},{"name":"Unhashed Subpacket","note":"10 bytes","Item":[{"name":"Issuer (sub 16)","value":"0x31fbfda95fbbfa18"}]},{"name":"Hash left 2 bytes","dump":"36 1f"},{"name":"ECDSA value r","note":"256 bits"},{"name":"ECDSA value s","note":"252 bits"}]}]}
前にリリースした「jq のようなもの」と組み合わせれば
$ cat testdata/eccsig.asc | gpgpdump -u -j | gjq -C .Packet.[0].Item.[0:2]
[
{
"name": "Version",
"value": "4",
"note": "current"
},
{
"name": "Signiture Type",
"value": "Signature of a canonical text document (0x01)"
},
{
"name": "Public-key Algorithm",
"value": "ECDSA public key algorithm (pub 19)"
}
]
とかできるので問題ないだろう。
もうひとつ。 RFC 4880bis の V5 パケットへの対応を更に進めた。
具体的には先日公開されたサンプルについて
$ cat testdata/v5/sample.txt | gpgpdump -u --indent 2
Secret-Key Packet (tag 5) (97 bytes)
Version: 5 (draft)
Public-Key
Public key creation time: 2019-03-20T08:08:04Z
5c 91 f4 e4
Public-key Algorithm: EdDSA (pub 22)
ECC Curve OID: ed25519 (256bits key size)
2b 06 01 04 01 da 47 0f 01
EdDSA EC point (40 || compressd format) (263 bits)
Secret-Key (s2k usage 0; plain secret-key material)
EdDSA secret key (256 bits)
2-octet checksum
0e 5c
User ID Packet (tag 13) (24 bytes)
User ID: emma.goldman@example.net
Signature Packet (tag 2) (150 bytes)
Version: 5 (draft)
Signiture Type: Positive certification of a User ID and Public-Key packet (0x13)
Public-key Algorithm: EdDSA (pub 22)
Hash Algorithm: SHA2-256 (hash 8)
Hashed Subpacket (72 bytes)
Issuer Fingerprint (sub 33) (33 bytes)
Version: 5 (need 32 octets length)
Fingerprint (32 bytes)
19 34 7b c9 87 24 64 02 5f 99 df 3e c2 e0 00 0e d9 88 48 92 e1 f7 b3 ea 4c 94 00 91 59 56 9b 54
Signature Creation Time (sub 2): 2019-03-20T08:08:04Z
Key Flags (sub 27) (1 bytes)
Flag: This key may be used to certify other keys.
Flag: This key may be used to sign data.
Preferred Symmetric Algorithms (sub 11) (4 bytes)
Symmetric Algorithm: AES with 256-bit key (sym 9)
Symmetric Algorithm: AES with 192-bit key (sym 8)
Symmetric Algorithm: AES with 128-bit key (sym 7)
Symmetric Algorithm: TripleDES (168 bit key derived from 192) (sym 2)
Preferred AEAD Algorithms (sub 34) (2 bytes)
AEAD Algorithm: OCB mode <RFC7253> (aead 2)
AEAD Algorithm: EAX mode (aead 1)
Preferred Hash Algorithms (sub 21) (5 bytes)
Hash Algorithm: SHA2-512 (hash 10)
Hash Algorithm: SHA2-384 (hash 9)
Hash Algorithm: SHA2-256 (hash 8)
Hash Algorithm: SHA2-224 (hash 11)
Hash Algorithm: SHA-1 (hash 2)
Preferred Compression Algorithms (sub 22) (3 bytes)
Compression Algorithm: ZLIB <RFC1950> (comp 2)
Compression Algorithm: BZip2 (comp 3)
Compression Algorithm: ZIP <RFC1951> (comp 1)
Features (sub 30) (1 bytes)
Flag: Modification Detection (packets 18 and 19)
Flag: Unknown flag1(0x06)
Key Server Preferences (sub 23) (1 bytes)
Flag: No-modify
Hash left 2 bytes
f5 c0
EdDSA compressed value r (254 bits)
EdDSA compressed value s (255 bits)
Secret-Subkey Packet (tag 7) (102 bytes)
Version: 5 (draft)
Public-Key
Public key creation time: 2019-03-20T08:08:04Z
5c 91 f4 e4
Public-key Algorithm: ECDH public key algorithm (pub 18)
ECC Curve OID: cv25519 (256bits key size)
2b 06 01 04 01 97 55 01 05 01
ECDH EC point (40 || X) (263 bits)
KDF parameters (3 bytes)
Hash Algorithm: SHA2-256 (hash 8)
Symmetric Algorithm: AES with 128-bit key (sym 7)
Secret-Key (s2k usage 0; plain secret-key material)
ECDH secret key (255 bits)
2-octet checksum
11 47
Signature Packet (tag 2) (122 bytes)
Version: 5 (draft)
Signiture Type: Subkey Binding Signature (0x18)
Public-key Algorithm: EdDSA (pub 22)
Hash Algorithm: SHA2-256 (hash 8)
Hashed Subpacket (44 bytes)
Issuer Fingerprint (sub 33) (33 bytes)
Version: 5 (need 32 octets length)
Fingerprint (32 bytes)
19 34 7b c9 87 24 64 02 5f 99 df 3e c2 e0 00 0e d9 88 48 92 e1 f7 b3 ea 4c 94 00 91 59 56 9b 54
Signature Creation Time (sub 2): 2019-03-20T08:08:04Z
Key Flags (sub 27) (1 bytes)
Flag: This key may be used to encrypt communications.
Flag: This key may be used to encrypt storage.
Hash left 2 bytes
39 24
EdDSA compressed value r (256 bits)
EdDSA compressed value s (256 bits)と表示できるようになった。
よーし,うむうむ,よーし。
参考図書
- 暗号技術入門 第3版 秘密の国のアリス
- 結城 浩 (著)
- SBクリエイティブ 2015-08-25 (Release 2015-09-17)
- Kindle版
- B015643CPE (ASIN)
- 評価
SHA-3 や Bitcoin/Blockchain など新しい知見や技術要素を大幅追加。暗号技術を使うだけならこれ1冊でとりあえず無問題。
- プログラミング言語Go
- アラン・ドノバン (著), ブライアン・カーニハン (著), 柴田芳樹 (著)
- 丸善出版 2016-06-20 (Release 2021-07-13)
- Kindle版
- B099928SJD (ASIN)
- 評価
Kindle 版出た! 一部内容が古びてしまったが,この本は Go 言語の教科書と言ってもいいだろう。感想はこちら。