GNUnet  0.17.6
gnunet_abd_service.h
Go to the documentation of this file.
1 /*
2  This file is part of GNUnet
3  Copyright (C) 2012-2014 GNUnet e.V.
4 
5  GNUnet is free software: you can redistribute it and/or modify it
6  under the terms of the GNU Affero General Public License as published
7  by the Free Software Foundation, either version 3 of the License,
8  or (at your option) any later version.
9 
10  GNUnet is distributed in the hope that it will be useful, but
11  WITHOUT ANY WARRANTY; without even the implied warranty of
12  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13  Affero General Public License for more details.
14 
15  You should have received a copy of the GNU Affero General Public License
16  along with this program. If not, see <http://www.gnu.org/licenses/>.
17 
18  SPDX-License-Identifier: AGPL3.0-or-later
19  */
20 
32 #ifndef GNUNET_ABD_SERVICE_H
33 #define GNUNET_ABD_SERVICE_H
34 
35 #include "gnunet_util_lib.h"
36 #include "gnunet_gns_service.h"
37 #include "gnunet_identity_service.h"
38 
39 #ifdef __cplusplus
40 extern "C"
41 {
42 #if 0 /* keep Emacsens' auto-indent happy */
43 }
44 #endif
45 #endif
46 
47 
51 struct GNUNET_ABD_Handle;
52 
56 struct GNUNET_ABD_Request;
57 
58 /*
59 * Enum used for checking whether the issuer has the authority to issue credentials or is just a subject
60 */
61 enum GNUNET_ABD_CredentialFlags
62 {
63 
64  // Subject had credentials before, but have been revoked now
65  GNUNET_ABD_FLAG_REVOKED=0,
66 
67  // Subject flag indicates that the subject is a holder of this credential and may present it as such
68  GNUNET_ABD_FLAG_SUBJECT=1,
69 
70  // Issuer flag is used to signify that the subject is allowed to issue this credential and delegate issuance
71  GNUNET_ABD_FLAG_ISSUER=2
72 
73 };
74 
75 GNUNET_NETWORK_STRUCT_BEGIN
79 struct GNUNET_ABD_DelegationRecord
80 {
81 
85  uint32_t set_count;
86 
90  uint64_t data_size;
95 };
96 
100 struct GNUNET_ABD_DelegationRecordSet
101 {
102 
106  struct GNUNET_IDENTITY_PublicKey subject_key;
107 
111  uint32_t subject_attribute_len;
112 };
113 
114 
115 GNUNET_NETWORK_STRUCT_END
116 
120 struct GNUNET_ABD_DelegationSet
121 {
122 
126  struct GNUNET_IDENTITY_PublicKey subject_key;
127 
128  uint32_t subject_attribute_len;
129 
133  const char *subject_attribute;
134 };
135 
136 
140 struct GNUNET_ABD_Delegation
141 {
142 
146  struct GNUNET_IDENTITY_PublicKey issuer_key;
147 
151  struct GNUNET_IDENTITY_PublicKey subject_key;
152 
156  uint32_t issuer_attribute_len;
157 
161  const char *issuer_attribute;
162 
166  uint32_t subject_attribute_len;
167 
171  const char *subject_attribute;
172 };
173 
174 
178 struct GNUNET_ABD_Delegate
179 {
180 
184  struct GNUNET_IDENTITY_PublicKey issuer_key;
185 
189  struct GNUNET_IDENTITY_PublicKey subject_key;
190 
194  struct GNUNET_IDENTITY_Signature signature;
195 
199  struct GNUNET_TIME_Absolute expiration;
200 
204  uint32_t issuer_attribute_len;
205 
209  const char *issuer_attribute;
210 
214  uint32_t subject_attribute_len;
215 
219  const char *subject_attribute;
220 
221 };
222 
223 /*
224 * Enum used for checking whether the issuer has the authority to issue credentials or is just a subject
225 */
226 enum GNUNET_ABD_AlgoDirectionFlags
227 {
228 
229  // Subject had credentials before, but have been revoked now
230  GNUNET_ABD_FLAG_FORWARD=1 << 0,
231 
232  // Subject flag indicates that the subject is a holder of this credential and may present it as such
233  GNUNET_ABD_FLAG_BACKWARD=1 << 1
234 
235 };
236 
243 struct GNUNET_ABD_Handle *
244 GNUNET_ABD_connect (const struct GNUNET_CONFIGURATION_Handle *cfg);
245 
246 
252 void
253 GNUNET_ABD_disconnect (struct GNUNET_ABD_Handle *handle);
254 
255 
265 typedef void (*GNUNET_ABD_CredentialResultProcessor) (void *cls,
266  unsigned int d_count,
267  struct
268  GNUNET_ABD_Delegation *
269  delegation_chain,
270  unsigned int c_count,
271  struct GNUNET_ABD_Delegate
272  *delegte);
273 
274 typedef void (*GNUNET_ABD_IntermediateResultProcessor) (void *cls,
275  struct
276  GNUNET_ABD_Delegation *
277  delegation,
278  bool is_bw);
279 
287 typedef void (*GNUNET_ABD_DelegateResultProcessor) (void *cls,
288  uint32_t success);
289 
297 typedef void (*GNUNET_ABD_RemoveDelegateResultProcessor) (void *cls,
298  uint32_t success);
299 
300 
319 struct GNUNET_ABD_Request*
320  GNUNET_ABD_verify (struct GNUNET_ABD_Handle *handle,
321  const struct GNUNET_IDENTITY_PublicKey *issuer_key,
322  const char *issuer_attribute,
323  const struct GNUNET_IDENTITY_PublicKey *subject_key,
324  uint32_t delegate_count,
325  const struct GNUNET_ABD_Delegate *delegates,
326  enum GNUNET_ABD_AlgoDirectionFlags direction,
327  GNUNET_ABD_CredentialResultProcessor proc,
328  void *proc_cls,
329  GNUNET_ABD_IntermediateResultProcessor,
330  void *proc2_cls);
331 
332 struct GNUNET_ABD_Request*
333  GNUNET_ABD_collect (struct GNUNET_ABD_Handle *handle,
334  const struct GNUNET_IDENTITY_PublicKey *issuer_key,
335  const char *issuer_attribute,
336  const struct GNUNET_IDENTITY_PrivateKey *subject_key,
337  enum GNUNET_ABD_AlgoDirectionFlags direction,
338  GNUNET_ABD_CredentialResultProcessor proc,
339  void *proc_cls,
340  GNUNET_ABD_IntermediateResultProcessor,
341  void *proc2_cls);
342 
355 struct GNUNET_ABD_Request *
356 GNUNET_ABD_add_delegation (struct GNUNET_ABD_Handle *handle,
357  struct GNUNET_IDENTITY_Ego *issuer,
358  const char *attribute,
359  struct GNUNET_IDENTITY_PublicKey *subject,
360  const char *delegated_attribute,
361  GNUNET_ABD_DelegateResultProcessor proc,
362  void *proc_cls);
363 
374 struct GNUNET_ABD_Request *
375 GNUNET_ABD_remove_delegation (struct GNUNET_ABD_Handle *handle,
376  struct GNUNET_IDENTITY_Ego *issuer,
377  const char *attribute,
378  GNUNET_ABD_RemoveDelegateResultProcessor proc,
379  void *proc_cls);
380 
381 
391 struct GNUNET_ABD_Delegate*
392 GNUNET_ABD_delegate_issue (const struct GNUNET_IDENTITY_PrivateKey *issuer,
393  struct GNUNET_IDENTITY_PublicKey *subject,
394  const char *iss_attr,
395  const char *sub_attr,
396  struct GNUNET_TIME_Absolute *expiration);
397 
398 
404 void
405 GNUNET_ABD_request_cancel (struct GNUNET_ABD_Request *lr);
406 
407 
408 #if 0 /* keep Emacsens' auto-indent happy */
409 {
410 #endif
411 #ifdef __cplusplus
412 }
413 #endif
414 
415 #endif
416  /* end of group */
expiration
static char * expiration
Credential TTL.
Definition: gnunet-abd.c:96
issuer_key
static char * issuer_key
Issuer pubkey string.
Definition: gnunet-abd.c:112
cfg
static const struct GNUNET_CONFIGURATION_Handle * cfg
Configuration we are using.
Definition: gnunet-abd.c:36
subject
static char * subject
Subject pubkey string.
Definition: gnunet-abd.c:86
direction
enum GNUNET_ABD_AlgoDirectionFlags direction
API enum, filled and passed for collect/verify.
Definition: gnunet-abd.c:172
handle
static struct GNUNET_DNS_Handle * handle
Handle to transport service.
Definition: gnunet-dns-monitor.c:35
lr
static struct GNUNET_GNS_LookupWithTldRequest * lr
Handle to lookup request.
Definition: gnunet-gns.c:99
gnunet_gns_service.h
API to the GNS service.
gnunet_identity_service.h
Identity service; implements identity management for GNUnet.
gnunet_util_lib.h
GNUNET_ABD_add_delegation
struct GNUNET_ABD_Request * GNUNET_ABD_add_delegation(struct GNUNET_ABD_Handle *handle, struct GNUNET_IDENTITY_Ego *issuer, const char *attribute, struct GNUNET_IDENTITY_PublicKey *subject, const char *delegated_attribute, GNUNET_ABD_DelegateResultProcessor proc, void *proc_cls)
Delegate an attribute.
GNUNET_ABD_RemoveDelegateResultProcessor
void(* GNUNET_ABD_RemoveDelegateResultProcessor)(void *cls, uint32_t success)
Iterator called on obtained result for an attribute delegation removal.
Definition: gnunet_abd_service.h:297
GNUNET_ABD_delegate_issue
struct GNUNET_ABD_Delegate * GNUNET_ABD_delegate_issue(const struct GNUNET_IDENTITY_PrivateKey *issuer, struct GNUNET_IDENTITY_PublicKey *subject, const char *iss_attr, const char *sub_attr, struct GNUNET_TIME_Absolute *expiration)
Issue an attribute to a subject.
Definition: delegate_misc.c:197
GNUNET_ABD_IntermediateResultProcessor
void(* GNUNET_ABD_IntermediateResultProcessor)(void *cls, struct GNUNET_ABD_Delegation *delegation, bool is_bw)
Definition: gnunet_abd_service.h:274
GNUNET_ABD_collect
struct GNUNET_ABD_Request * GNUNET_ABD_collect(struct GNUNET_ABD_Handle *handle, const struct GNUNET_IDENTITY_PublicKey *issuer_key, const char *issuer_attribute, const struct GNUNET_IDENTITY_PrivateKey *subject_key, enum GNUNET_ABD_AlgoDirectionFlags direction, GNUNET_ABD_CredentialResultProcessor proc, void *proc_cls, GNUNET_ABD_IntermediateResultProcessor, void *proc2_cls)
Performs attribute collection.
Definition: abd_api.c:424
GNUNET_ABD_AlgoDirectionFlags
GNUNET_ABD_AlgoDirectionFlags
Definition: gnunet_abd_service.h:227
GNUNET_ABD_verify
struct GNUNET_ABD_Request * GNUNET_ABD_verify(struct GNUNET_ABD_Handle *handle, const struct GNUNET_IDENTITY_PublicKey *issuer_key, const char *issuer_attribute, const struct GNUNET_IDENTITY_PublicKey *subject_key, uint32_t delegate_count, const struct GNUNET_ABD_Delegate *delegates, enum GNUNET_ABD_AlgoDirectionFlags direction, GNUNET_ABD_CredentialResultProcessor proc, void *proc_cls, GNUNET_ABD_IntermediateResultProcessor, void *proc2_cls)
Performs attribute verification.
Definition: abd_api.c:498
GNUNET_ABD_remove_delegation
struct GNUNET_ABD_Request * GNUNET_ABD_remove_delegation(struct GNUNET_ABD_Handle *handle, struct GNUNET_IDENTITY_Ego *issuer, const char *attribute, GNUNET_ABD_RemoveDelegateResultProcessor proc, void *proc_cls)
Remove a delegation.
GNUNET_ABD_CredentialFlags
GNUNET_ABD_CredentialFlags
Definition: gnunet_abd_service.h:62
GNUNET_ABD_connect
struct GNUNET_ABD_Handle * GNUNET_ABD_connect(const struct GNUNET_CONFIGURATION_Handle *cfg)
Initialize the connection with the Credential service.
Definition: abd_api.c:355
GNUNET_ABD_DelegateResultProcessor
void(* GNUNET_ABD_DelegateResultProcessor)(void *cls, uint32_t success)
Iterator called on obtained result for an attribute delegation.
Definition: gnunet_abd_service.h:287
GNUNET_ABD_disconnect
void GNUNET_ABD_disconnect(struct GNUNET_ABD_Handle *handle)
Shutdown connection with the Credentail service.
Definition: abd_api.c:377
GNUNET_ABD_request_cancel
void GNUNET_ABD_request_cancel(struct GNUNET_ABD_Request *lr)
Cancel pending lookup request.
Definition: abd_api.c:400
GNUNET_ABD_CredentialResultProcessor
void(* GNUNET_ABD_CredentialResultProcessor)(void *cls, unsigned int d_count, struct GNUNET_ABD_Delegation *delegation_chain, unsigned int c_count, struct GNUNET_ABD_Delegate *delegte)
Iterator called on obtained result for an attribute verification.
Definition: gnunet_abd_service.h:265
GNUNET_ABD_FLAG_BACKWARD
@ GNUNET_ABD_FLAG_BACKWARD
Definition: gnunet_abd_service.h:233
GNUNET_ABD_FLAG_FORWARD
@ GNUNET_ABD_FLAG_FORWARD
Definition: gnunet_abd_service.h:230
GNUNET_ABD_FLAG_SUBJECT
@ GNUNET_ABD_FLAG_SUBJECT
Definition: gnunet_abd_service.h:68
GNUNET_ABD_FLAG_REVOKED
@ GNUNET_ABD_FLAG_REVOKED
Definition: gnunet_abd_service.h:65
GNUNET_ABD_FLAG_ISSUER
@ GNUNET_ABD_FLAG_ISSUER
Definition: gnunet_abd_service.h:71
GNUNET_NETWORK_STRUCT_BEGIN
#define GNUNET_NETWORK_STRUCT_BEGIN
Define as empty, GNUNET_PACKED should suffice, but this won't work on W32.
Definition: gnunet_common.h:259
GNUNET_NETWORK_STRUCT_END
#define GNUNET_NETWORK_STRUCT_END
Define as empty, GNUNET_PACKED should suffice, but this won't work on W32;.
Definition: gnunet_common.h:264
GNUNET_ABD_Delegate
A delegate.
Definition: gnunet_abd_service.h:179
GNUNET_ABD_Delegate::subject_attribute
const char * subject_attribute
The subject attribute.
Definition: gnunet_abd_service.h:219
GNUNET_ABD_Delegate::issuer_attribute
const char * issuer_attribute
The issuer attribute.
Definition: gnunet_abd_service.h:209
GNUNET_ABD_Delegate::signature
struct GNUNET_IDENTITY_Signature signature
Signature of this credential.
Definition: gnunet_abd_service.h:194
GNUNET_ABD_Delegate::issuer_attribute_len
uint32_t issuer_attribute_len
Length of the issuer attribute.
Definition: gnunet_abd_service.h:204
GNUNET_ABD_Delegate::subject_attribute_len
uint32_t subject_attribute_len
Length of the subject attribute.
Definition: gnunet_abd_service.h:214
GNUNET_ABD_Delegate::subject_key
struct GNUNET_IDENTITY_PublicKey subject_key
Public key of the subject this credential was issued to.
Definition: gnunet_abd_service.h:189
GNUNET_ABD_Delegate::expiration
struct GNUNET_TIME_Absolute expiration
Expiration of this credential.
Definition: gnunet_abd_service.h:199
GNUNET_ABD_Delegate::issuer_key
struct GNUNET_IDENTITY_PublicKey issuer_key
The issuer of the credential.
Definition: gnunet_abd_service.h:184
GNUNET_ABD_DelegationRecordSet
The attribute delegation record.
Definition: gnunet_abd_service.h:101
GNUNET_ABD_DelegationRecordSet::subject_key
struct GNUNET_IDENTITY_PublicKey subject_key
Public key of the subject this attribute was delegated to.
Definition: gnunet_abd_service.h:106
GNUNET_ABD_DelegationRecordSet::subject_attribute_len
uint32_t subject_attribute_len
Length of attribute, may be 0.
Definition: gnunet_abd_service.h:111
GNUNET_ABD_DelegationRecord
The attribute delegation record.
Definition: gnunet_abd_service.h:80
GNUNET_ABD_DelegationRecord::data_size
uint64_t data_size
Length of delegation sets.
Definition: gnunet_abd_service.h:90
GNUNET_ABD_DelegationRecord::set_count
uint32_t set_count
Number of delegation sets in this record.
Definition: gnunet_abd_service.h:85
GNUNET_ABD_DelegationSet
The attribute delegation record.
Definition: gnunet_abd_service.h:121
GNUNET_ABD_DelegationSet::subject_attribute
const char * subject_attribute
The subject attribute.
Definition: gnunet_abd_service.h:133
GNUNET_ABD_DelegationSet::subject_key
struct GNUNET_IDENTITY_PublicKey subject_key
Public key of the subject this attribute was delegated to.
Definition: gnunet_abd_service.h:126
GNUNET_ABD_DelegationSet::subject_attribute_len
uint32_t subject_attribute_len
Definition: gnunet_abd_service.h:128
GNUNET_ABD_Delegation
A delegation.
Definition: gnunet_abd_service.h:141
GNUNET_ABD_Delegation::issuer_attribute_len
uint32_t issuer_attribute_len
Length of the attribute.
Definition: gnunet_abd_service.h:156
GNUNET_ABD_Delegation::issuer_key
struct GNUNET_IDENTITY_PublicKey issuer_key
The issuer of the delegation.
Definition: gnunet_abd_service.h:146
GNUNET_ABD_Delegation::subject_attribute_len
uint32_t subject_attribute_len
Length of the attribute.
Definition: gnunet_abd_service.h:166
GNUNET_ABD_Delegation::issuer_attribute
const char * issuer_attribute
The attribute.
Definition: gnunet_abd_service.h:161
GNUNET_ABD_Delegation::subject_attribute
const char * subject_attribute
The attribute.
Definition: gnunet_abd_service.h:171
GNUNET_ABD_Delegation::subject_key
struct GNUNET_IDENTITY_PublicKey subject_key
Public key of the subject this attribute was delegated to.
Definition: gnunet_abd_service.h:151
GNUNET_ABD_Handle
Connection to the ABD service.
Definition: abd_api.c:97
GNUNET_ABD_Request
Handle to a verify request.
Definition: abd_api.c:44
GNUNET_ABD_Request::proc_cls
void * proc_cls
verify_proc closure
Definition: abd_api.c:69
GNUNET_ABD_Request::proc2_cls
void * proc2_cls
verify_proc2 closure
Definition: abd_api.c:79
GNUNET_CONFIGURATION_Handle
configuration data
Definition: configuration.c:153
GNUNET_IDENTITY_Ego
Handle for an ego.
Definition: identity.h:37
GNUNET_IDENTITY_PrivateKey
A private key for an identity as per LSD0001.
Definition: gnunet_identity_service.h:95
GNUNET_IDENTITY_PublicKey
An identity key as per LSD0001.
Definition: gnunet_identity_service.h:122
GNUNET_IDENTITY_Signature
An identity signature as per LSD0001.
Definition: gnunet_identity_service.h:149
GNUNET_TIME_Absolute
Time for absolute times used by GNUnet, in microseconds.
Definition: gnunet_time_lib.h:53
Generated by doxygen 1.9.1