matrixswarm

How to Use the Directive Encryption Tool

By matrixswarm
July 28, 2025 AT 03:19 PM (updated: 6 days ago)

Accreditation This guide was prepared in collaboration with Gemini, the swarm's designated AI construct for documentation and analysis. This guide explains how to use the matrixswarm-encrypt-directive tool to secure your boot directives. This tool encrypts an entire directive file, protecting sensitive information like API keys, private keys, and file integrity hashes before the swarm is even launched. Overview The primary function of this tool is to take a plaintext directive file (.py or .json) and output an encrypted version. Its key features include: AES-GCM Encryption: Encrypts the entire directive with a strong, authenticated encryption cipher. Automatic Key Generation: Can automatically generate secure RSA keypairs for agents directly within the directive, which is ideal for agents that need to decrypt messages from external sources. Future-Proof Security: This tool is the foundation for advanced security patterns, such as storing private keys for matrix_https and matrix_websocket to enable mutually authenticated communication, and for storing tripwire_lite file hashes to ensure the integrity of the swarm's core files.

Step 1: Prepare Your Directive

Before encrypting, you need to prepare your directive file. While it works with .json, using a .py file is recommended. The most powerful feature of this tool is its ability to generate RSA keypairs on the fly. To use it, simply set the value of any privkey field to the special marker string ##GENERATE_KEY##. The tool will replace this marker with a new private key and automatically add a corresponding pubkey field next to it. It's important to note, that all ##GENERATE_KEY## will be replaced with the same private and public key pair. You can manually add your own if you like. Here is an example directive for an agent that will receive encrypted messages: gatekeeper-demo.py 



import os

matrix_directive = {
    "universal_id": "matrix",
    "name": "matrix",
    "children": [
        {
            "universal_id": "gatekeeper-1",
            "name": "contact_reflex",
            "config": {
                # The tool will replace this marker with a new keypair
                "privkey": "##GENERATE_KEY##",
                "watched_paths": ["/var/www/my_site/public_html/messages_out"]
            }
        },
        {
             "universal_id": "contact-reflex",
             "name": "contact_reflex",
             "app": "swarm-core",
            "config": {
                       "oracle_timeout": 15,
                       "watched_paths": [
                                      "/path/to/some/php/dropzone/outgoing_msgs/",
                                      "/path/to/some/php/dropzone2/outgoing_msgs/",
                                ],
                      "suspended": 0,
                      "enable_fallback_forward": 1,
                      "enable_oracle": 1,
                      "privkey": "##GENERATE_KEY##"
               }
        },
    ]
}

Step 2: Run the Encryption Command and Save Your Keys!

This is the most important step. The tool will print the necessary secret keys to your console one time. These keys are not saved anywhere else. You must copy them to a secure location immediately. The output will contain: AES Key: The master key used to encrypt the entire file. You will need this for the main matrixswarm-boot command. Public Key(s): The public half of any RSA keypairs that were generated. You will need to provide this key to any external application (like a PHP web form) that needs to send encrypted messages to your agent. Execute the tool from your terminal, providing your input .py file and specifying an output file name. 



Linux

[glitched] $ matrixswarm-encrypt-directive --in .matrixswarm/boot_directives/gatekeeper-demo.py --out .matrixswarm/boot_directives/gatekeeper-demo.enc.json

[🔑] SAVE THIS AES KEY. YOU WILL NOT SEE IT AGAIN:
K7h6WjK8yaP9N3L9Hqshq7vHHKfB32jBV5FZ1grulnI=

[🪪] PUBKEY(S) FOR ENCRYPTING MESSAGES:
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXVSidkhFHOLFngvx/mL
XIMDCZ979ZCk/GJ2b0GRtutO21qEFKYypDDBBL5CJj6Yq/SPa5MV/rVmA0aUpRRV
NAMXDln3DL8ff22Pb24MdpJDzbzoufWyKyPIkkcZE2wU8gzskBx1i3ARdwugBo33
Ukbr7PYpD9EZk1nHY7chRuY1RHSlRDm0JQUPnWtSox5Seb3tqrpAgyNotvOVEBUA
dQ7Ysp6Nj5YHWYKpiGxSQgu+WyhCS/NXX5AFWCCNC+liJ1NGav5nWeCsGqKmVGIJ
birHt+KSvqrIOPeMi0fBzYOVPJwx1HqB8JNWPBJ0E3n7aZMjENq86unJD/meBTam
WQIDAQAB
-----END PUBLIC KEY-----

This is what the encrypted directive looks like:

cat .matrixswarm/boot_directives/gatekeeper-demo.enc.json              {
  "nonce": "RiC72KGRbd+IPbdc",
  "tag": "0NtswxWb3EZ1YeOsAJxQAQ==",
  "ciphertext": "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"
}

Step 3: Use the Encrypted Directive

Your directive is now securely encrypted. To launch a swarm using this file, you will provide the path to the encrypted .enc.json file and the AES key you saved from Step 3 to the bootloader command. A convenient consequence of using the encryption directive is the same key is used as the --swarm_key for the lifetime of the hive. Any encrypted logs can easily be decrypted by downloading and using the key. 


Bash


matrixswarm-boot --universe ai --reboot --encrypted-directive .matrixswarm/boot_directives/gatekeeper-demo.enc.json --swarm_key K7h6WjK8yaP9N3L9Hqshq7vHHKfB32jBV5FZ1grulnI=

The bootloader will use the AES key to decrypt the directive in memory, and the swarm will initialize with all the secrets safely loaded.

Comments 0

Category: security best practices

Tags: #security, #rsa, #aes-gcm, #encryption, #directive, #key-generation, #cli-tool, #bootstrapping, #secrets-management

Author: matrixswarm

Views: 10

Added: July 28, 2025

Updated: July 28, 2025

Hello again!

We missed you - welcome home

Forgot password?
No account? Sign up

Flag Content