Notes on micheld and blackbox ----------------------------- These notes are based on a quick tour that Andrei gave us. To get the code: cvs co micheld cd micheld make 1. Setting up the micheld server on linbb ----------------------------------------- To start a new micheld server you need to go to libb: ssh e614secret@linbb muon The micheld executable is ~e614secret/src/micheld-production-3/micheld.static To automatically have micheld start: cp micheldaemon /etc/rc.d/init.d Note that micheldaemon is the script that starts micheld.static, all the error messages end up in /var/log/messages on tw04. New spectrum x,costh are stored on linbb in (for spectrum 35 for example): /data/micheld-production/data/sp00035/... 1.5 Creating a new blackbox --------------------------- Use the program rsa_kgen.static. It takes one argument which is the name of the key. It then makes a public (.pub) and private key (.priv). Hide the private key somewhere safe, and don't look at it until you want to open the box. Then put the public key into the databas. (see 2. below). 2. micheld database ------------------- The micheld database is on tw04 and is in postgresql. To access the database ssh to tw04, then start database tool: psql -U micheld micheld05 Some psql commands to look at info in the database: \d (to see table) select * from parset_defaults; (note need semicolon for anything to happen!) \d cryptokeys select * from cryptokeys; select * from spectrum; select * from parsets where parset = 15; select * from cryptokeys where key_id = 1; select * from michelpar_cleartext; Some psql commands to change values in database: update parset_defaults set max_deta = 0; insert into cryptokeys (public_key,comment) values ('big long string of numbers...','Official twist key for DD-MM-YYYY'); -> returns key_id = 3 (or new number for blackbox key) 3. Making a new spectrum (base,rho,eta,xidelta, or xixidelta,...) ----------------------------------------------------------------- The program used to talk to the micheld server to make new samples is micheld_ctl.static (Note that you can get all of the micheld code from cvs with cvs co micheld). Get info on micheld status micheld_ctl.static INFO Make a new set: micheld_ctl.static NEWSET Make a new spectrum: micheld_ctl.static NEWSPECTRUM parset mask samplesize nsamples parset is the set number (from the NEWSET command or check database) mask says what type of spectrum (practice your binary to hex conversions): spectrum mask ------- --- xidelta 0x3000 xixidelta 0xC00 delta 0x300 xi 0xC0 eta 0x30 rho 0xC base 0x3 samplesize is the number of x,costh to throw for each sample file nsamples is the number of sample files of x,costh to make It takes about 20s to generate a sample of 100,000 x,costh on linbb Count the number of samples made: micheld_ctl.static COUNT_SAMPLES spectrum spectrum is the spectrum number (gets printed out when you run NEWSPECTRUM, or probably can find it with the INFO command or look in micheld database) 4. Open a blackbox ------------------ The program to open the blackbox is in with the micheld package, eg: /home/nozarm/e614soft/twtools/micheld/open_box.static Usage: open_box parset keyfile dbinfo To open the box you need to get the private key from the CD locked away, once you have the key run the command: openbox.static 20 TWIST_key_1.key dbinfo05.txt The 20 is the parset to show the hidden values for, TWIST_key_1.key is the name of the file containing the private key, dbinfo05.txt contains the parameters needed to connect to micheld and the database. dbinfo05.txt contains the following line: dbname=micheld05 user=micheld password=muon host=tw04.triumf.ca port=5432 --------------------------- Blair, Mina (23 Sept 2005)