GNUnet  0.20.0
gnunet_abd_service.h
Go to the documentation of this file.
1 /*
2  This file is part of GNUnet
3  Copyright (C) 2012-2014 GNUnet e.V.
4 
5  GNUnet is free software: you can redistribute it and/or modify it
6  under the terms of the GNU Affero General Public License as published
7  by the Free Software Foundation, either version 3 of the License,
8  or (at your option) any later version.
9 
10  GNUnet is distributed in the hope that it will be useful, but
11  WITHOUT ANY WARRANTY; without even the implied warranty of
12  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13  Affero General Public License for more details.
14 
15  You should have received a copy of the GNU Affero General Public License
16  along with this program. If not, see <http://www.gnu.org/licenses/>.
17 
18  SPDX-License-Identifier: AGPL3.0-or-later
19  */
20 
35 #ifndef GNUNET_ABD_SERVICE_H
36 #define GNUNET_ABD_SERVICE_H
37 
38 
39 #include "gnunet_util_lib.h"
40 #include "gnunet_gns_service.h"
41 #include "gnunet_identity_service.h"
42 
43 #ifdef __cplusplus
44 extern "C"
45 {
46 #if 0 /* keep Emacsens' auto-indent happy */
47 }
48 #endif
49 #endif
50 
51 
55 struct GNUNET_ABD_Handle;
56 
60 struct GNUNET_ABD_Request;
61 
62 /*
63 * Enum used for checking whether the issuer has the authority to issue credentials or is just a subject
64 */
65 enum GNUNET_ABD_CredentialFlags
66 {
67 
68  // Subject had credentials before, but have been revoked now
69  GNUNET_ABD_FLAG_REVOKED=0,
70 
71  // Subject flag indicates that the subject is a holder of this credential and may present it as such
72  GNUNET_ABD_FLAG_SUBJECT=1,
73 
74  // Issuer flag is used to signify that the subject is allowed to issue this credential and delegate issuance
75  GNUNET_ABD_FLAG_ISSUER=2
76 
77 };
78 
79 GNUNET_NETWORK_STRUCT_BEGIN
83 struct GNUNET_ABD_DelegationRecord
84 {
85 
89  uint32_t set_count;
90 
94  uint64_t data_size;
99 };
100 
104 struct GNUNET_ABD_DelegationRecordSet
105 {
106 
110  struct GNUNET_IDENTITY_PublicKey subject_key;
111 
115  uint32_t subject_attribute_len;
116 };
117 
118 
119 GNUNET_NETWORK_STRUCT_END
120 
124 struct GNUNET_ABD_DelegationSet
125 {
126 
130  struct GNUNET_IDENTITY_PublicKey subject_key;
131 
132  uint32_t subject_attribute_len;
133 
137  const char *subject_attribute;
138 };
139 
140 
144 struct GNUNET_ABD_Delegation
145 {
146 
150  struct GNUNET_IDENTITY_PublicKey issuer_key;
151 
155  struct GNUNET_IDENTITY_PublicKey subject_key;
156 
160  uint32_t issuer_attribute_len;
161 
165  const char *issuer_attribute;
166 
170  uint32_t subject_attribute_len;
171 
175  const char *subject_attribute;
176 };
177 
178 
182 struct GNUNET_ABD_Delegate
183 {
184 
188  struct GNUNET_IDENTITY_PublicKey issuer_key;
189 
193  struct GNUNET_IDENTITY_PublicKey subject_key;
194 
198  struct GNUNET_IDENTITY_Signature signature;
199 
203  struct GNUNET_TIME_Absolute expiration;
204 
208  uint32_t issuer_attribute_len;
209 
213  const char *issuer_attribute;
214 
218  uint32_t subject_attribute_len;
219 
223  const char *subject_attribute;
224 
225 };
226 
227 /*
228 * Enum used for checking whether the issuer has the authority to issue credentials or is just a subject
229 */
230 enum GNUNET_ABD_AlgoDirectionFlags
231 {
232 
233  // Subject had credentials before, but have been revoked now
234  GNUNET_ABD_FLAG_FORWARD=1 << 0,
235 
236  // Subject flag indicates that the subject is a holder of this credential and may present it as such
237  GNUNET_ABD_FLAG_BACKWARD=1 << 1
238 
239 };
240 
247 struct GNUNET_ABD_Handle *
248 GNUNET_ABD_connect (const struct GNUNET_CONFIGURATION_Handle *cfg);
249 
250 
256 void
257 GNUNET_ABD_disconnect (struct GNUNET_ABD_Handle *handle);
258 
259 
269 typedef void (*GNUNET_ABD_CredentialResultProcessor) (void *cls,
270  unsigned int d_count,
271  struct
272  GNUNET_ABD_Delegation *
273  delegation_chain,
274  unsigned int c_count,
275  struct GNUNET_ABD_Delegate
276  *delegte);
277 
278 typedef void (*GNUNET_ABD_IntermediateResultProcessor) (void *cls,
279  struct
280  GNUNET_ABD_Delegation *
281  delegation,
282  bool is_bw);
283 
291 typedef void (*GNUNET_ABD_DelegateResultProcessor) (void *cls,
292  uint32_t success);
293 
301 typedef void (*GNUNET_ABD_RemoveDelegateResultProcessor) (void *cls,
302  uint32_t success);
303 
304 
323 struct GNUNET_ABD_Request*
324  GNUNET_ABD_verify (struct GNUNET_ABD_Handle *handle,
325  const struct GNUNET_IDENTITY_PublicKey *issuer_key,
326  const char *issuer_attribute,
327  const struct GNUNET_IDENTITY_PublicKey *subject_key,
328  uint32_t delegate_count,
329  const struct GNUNET_ABD_Delegate *delegates,
330  enum GNUNET_ABD_AlgoDirectionFlags direction,
331  GNUNET_ABD_CredentialResultProcessor proc,
332  void *proc_cls,
333  GNUNET_ABD_IntermediateResultProcessor,
334  void *proc2_cls);
335 
336 struct GNUNET_ABD_Request*
337  GNUNET_ABD_collect (struct GNUNET_ABD_Handle *handle,
338  const struct GNUNET_IDENTITY_PublicKey *issuer_key,
339  const char *issuer_attribute,
340  const struct GNUNET_IDENTITY_PrivateKey *subject_key,
341  enum GNUNET_ABD_AlgoDirectionFlags direction,
342  GNUNET_ABD_CredentialResultProcessor proc,
343  void *proc_cls,
344  GNUNET_ABD_IntermediateResultProcessor,
345  void *proc2_cls);
346 
359 struct GNUNET_ABD_Request *
360 GNUNET_ABD_add_delegation (struct GNUNET_ABD_Handle *handle,
361  struct GNUNET_IDENTITY_Ego *issuer,
362  const char *attribute,
363  struct GNUNET_IDENTITY_PublicKey *subject,
364  const char *delegated_attribute,
365  GNUNET_ABD_DelegateResultProcessor proc,
366  void *proc_cls);
367 
378 struct GNUNET_ABD_Request *
379 GNUNET_ABD_remove_delegation (struct GNUNET_ABD_Handle *handle,
380  struct GNUNET_IDENTITY_Ego *issuer,
381  const char *attribute,
382  GNUNET_ABD_RemoveDelegateResultProcessor proc,
383  void *proc_cls);
384 
385 
395 struct GNUNET_ABD_Delegate*
396 GNUNET_ABD_delegate_issue (const struct GNUNET_IDENTITY_PrivateKey *issuer,
397  struct GNUNET_IDENTITY_PublicKey *subject,
398  const char *iss_attr,
399  const char *sub_attr,
400  struct GNUNET_TIME_Absolute *expiration);
401 
402 
408 void
409 GNUNET_ABD_request_cancel (struct GNUNET_ABD_Request *lr);
410 
411 
412 #if 0 /* keep Emacsens' auto-indent happy */
413 {
414 #endif
415 #ifdef __cplusplus
416 }
417 #endif
418 
419 #endif
420  /* end of group */
422  /* end of group addition to reclaim_suite */
expiration
static char * expiration
Credential TTL.
Definition: gnunet-abd.c:96
issuer_key
static char * issuer_key
Issuer pubkey string.
Definition: gnunet-abd.c:112
cfg
static const struct GNUNET_CONFIGURATION_Handle * cfg
Configuration we are using.
Definition: gnunet-abd.c:36
subject
static char * subject
Subject pubkey string.
Definition: gnunet-abd.c:86
direction
enum GNUNET_ABD_AlgoDirectionFlags direction
API enum, filled and passed for collect/verify.
Definition: gnunet-abd.c:172
handle
static struct GNUNET_DNS_Handle * handle
Handle to transport service.
Definition: gnunet-dns-monitor.c:34
lr
static struct GNUNET_GNS_LookupWithTldRequest * lr
Handle to lookup request.
Definition: gnunet-gns.c:98
gnunet_gns_service.h
API to the GNS service.
gnunet_identity_service.h
Identity service; implements identity management for GNUnet.
gnunet_util_lib.h
GNUNET_ABD_add_delegation
struct GNUNET_ABD_Request * GNUNET_ABD_add_delegation(struct GNUNET_ABD_Handle *handle, struct GNUNET_IDENTITY_Ego *issuer, const char *attribute, struct GNUNET_IDENTITY_PublicKey *subject, const char *delegated_attribute, GNUNET_ABD_DelegateResultProcessor proc, void *proc_cls)
Delegate an attribute.
GNUNET_ABD_RemoveDelegateResultProcessor
void(* GNUNET_ABD_RemoveDelegateResultProcessor)(void *cls, uint32_t success)
Iterator called on obtained result for an attribute delegation removal.
Definition: gnunet_abd_service.h:301
GNUNET_ABD_delegate_issue
struct GNUNET_ABD_Delegate * GNUNET_ABD_delegate_issue(const struct GNUNET_IDENTITY_PrivateKey *issuer, struct GNUNET_IDENTITY_PublicKey *subject, const char *iss_attr, const char *sub_attr, struct GNUNET_TIME_Absolute *expiration)
Issue an attribute to a subject.
Definition: delegate_misc.c:198
GNUNET_ABD_IntermediateResultProcessor
void(* GNUNET_ABD_IntermediateResultProcessor)(void *cls, struct GNUNET_ABD_Delegation *delegation, bool is_bw)
Definition: gnunet_abd_service.h:278
GNUNET_ABD_collect
struct GNUNET_ABD_Request * GNUNET_ABD_collect(struct GNUNET_ABD_Handle *handle, const struct GNUNET_IDENTITY_PublicKey *issuer_key, const char *issuer_attribute, const struct GNUNET_IDENTITY_PrivateKey *subject_key, enum GNUNET_ABD_AlgoDirectionFlags direction, GNUNET_ABD_CredentialResultProcessor proc, void *proc_cls, GNUNET_ABD_IntermediateResultProcessor, void *proc2_cls)
Performs attribute collection.
Definition: abd_api.c:424
GNUNET_ABD_AlgoDirectionFlags
GNUNET_ABD_AlgoDirectionFlags
Definition: gnunet_abd_service.h:231
GNUNET_ABD_verify
struct GNUNET_ABD_Request * GNUNET_ABD_verify(struct GNUNET_ABD_Handle *handle, const struct GNUNET_IDENTITY_PublicKey *issuer_key, const char *issuer_attribute, const struct GNUNET_IDENTITY_PublicKey *subject_key, uint32_t delegate_count, const struct GNUNET_ABD_Delegate *delegates, enum GNUNET_ABD_AlgoDirectionFlags direction, GNUNET_ABD_CredentialResultProcessor proc, void *proc_cls, GNUNET_ABD_IntermediateResultProcessor, void *proc2_cls)
Performs attribute verification.
Definition: abd_api.c:498
GNUNET_ABD_remove_delegation
struct GNUNET_ABD_Request * GNUNET_ABD_remove_delegation(struct GNUNET_ABD_Handle *handle, struct GNUNET_IDENTITY_Ego *issuer, const char *attribute, GNUNET_ABD_RemoveDelegateResultProcessor proc, void *proc_cls)
Remove a delegation.
GNUNET_ABD_CredentialFlags
GNUNET_ABD_CredentialFlags
Definition: gnunet_abd_service.h:66
GNUNET_ABD_connect
struct GNUNET_ABD_Handle * GNUNET_ABD_connect(const struct GNUNET_CONFIGURATION_Handle *cfg)
Initialize the connection with the Credential service.
Definition: abd_api.c:355
GNUNET_ABD_DelegateResultProcessor
void(* GNUNET_ABD_DelegateResultProcessor)(void *cls, uint32_t success)
Iterator called on obtained result for an attribute delegation.
Definition: gnunet_abd_service.h:291
GNUNET_ABD_disconnect
void GNUNET_ABD_disconnect(struct GNUNET_ABD_Handle *handle)
Shutdown connection with the Credentail service.
Definition: abd_api.c:377
GNUNET_ABD_request_cancel
void GNUNET_ABD_request_cancel(struct GNUNET_ABD_Request *lr)
Cancel pending lookup request.
Definition: abd_api.c:400
GNUNET_ABD_CredentialResultProcessor
void(* GNUNET_ABD_CredentialResultProcessor)(void *cls, unsigned int d_count, struct GNUNET_ABD_Delegation *delegation_chain, unsigned int c_count, struct GNUNET_ABD_Delegate *delegte)
Iterator called on obtained result for an attribute verification.
Definition: gnunet_abd_service.h:269
GNUNET_ABD_FLAG_BACKWARD
@ GNUNET_ABD_FLAG_BACKWARD
Definition: gnunet_abd_service.h:237
GNUNET_ABD_FLAG_FORWARD
@ GNUNET_ABD_FLAG_FORWARD
Definition: gnunet_abd_service.h:234
GNUNET_ABD_FLAG_SUBJECT
@ GNUNET_ABD_FLAG_SUBJECT
Definition: gnunet_abd_service.h:72
GNUNET_ABD_FLAG_REVOKED
@ GNUNET_ABD_FLAG_REVOKED
Definition: gnunet_abd_service.h:69
GNUNET_ABD_FLAG_ISSUER
@ GNUNET_ABD_FLAG_ISSUER
Definition: gnunet_abd_service.h:75
GNUNET_NETWORK_STRUCT_BEGIN
#define GNUNET_NETWORK_STRUCT_BEGIN
Define as empty, GNUNET_PACKED should suffice, but this won't work on W32.
Definition: gnunet_common.h:269
GNUNET_NETWORK_STRUCT_END
#define GNUNET_NETWORK_STRUCT_END
Define as empty, GNUNET_PACKED should suffice, but this won't work on W32;.
Definition: gnunet_common.h:274
GNUNET_ABD_Delegate
A delegate.
Definition: gnunet_abd_service.h:183
GNUNET_ABD_Delegate::subject_attribute
const char * subject_attribute
The subject attribute.
Definition: gnunet_abd_service.h:223
GNUNET_ABD_Delegate::issuer_attribute
const char * issuer_attribute
The issuer attribute.
Definition: gnunet_abd_service.h:213
GNUNET_ABD_Delegate::signature
struct GNUNET_IDENTITY_Signature signature
Signature of this credential.
Definition: gnunet_abd_service.h:198
GNUNET_ABD_Delegate::issuer_attribute_len
uint32_t issuer_attribute_len
Length of the issuer attribute.
Definition: gnunet_abd_service.h:208
GNUNET_ABD_Delegate::subject_attribute_len
uint32_t subject_attribute_len
Length of the subject attribute.
Definition: gnunet_abd_service.h:218
GNUNET_ABD_Delegate::subject_key
struct GNUNET_IDENTITY_PublicKey subject_key
Public key of the subject this credential was issued to.
Definition: gnunet_abd_service.h:193
GNUNET_ABD_Delegate::expiration
struct GNUNET_TIME_Absolute expiration
Expiration of this credential.
Definition: gnunet_abd_service.h:203
GNUNET_ABD_Delegate::issuer_key
struct GNUNET_IDENTITY_PublicKey issuer_key
The issuer of the credential.
Definition: gnunet_abd_service.h:188
GNUNET_ABD_DelegationRecordSet
The attribute delegation record.
Definition: gnunet_abd_service.h:105
GNUNET_ABD_DelegationRecordSet::subject_key
struct GNUNET_IDENTITY_PublicKey subject_key
Public key of the subject this attribute was delegated to.
Definition: gnunet_abd_service.h:110
GNUNET_ABD_DelegationRecordSet::subject_attribute_len
uint32_t subject_attribute_len
Length of attribute, may be 0.
Definition: gnunet_abd_service.h:115
GNUNET_ABD_DelegationRecord
The attribute delegation record.
Definition: gnunet_abd_service.h:84
GNUNET_ABD_DelegationRecord::data_size
uint64_t data_size
Length of delegation sets.
Definition: gnunet_abd_service.h:94
GNUNET_ABD_DelegationRecord::set_count
uint32_t set_count
Number of delegation sets in this record.
Definition: gnunet_abd_service.h:89
GNUNET_ABD_DelegationSet
The attribute delegation record.
Definition: gnunet_abd_service.h:125
GNUNET_ABD_DelegationSet::subject_attribute
const char * subject_attribute
The subject attribute.
Definition: gnunet_abd_service.h:137
GNUNET_ABD_DelegationSet::subject_key
struct GNUNET_IDENTITY_PublicKey subject_key
Public key of the subject this attribute was delegated to.
Definition: gnunet_abd_service.h:130
GNUNET_ABD_DelegationSet::subject_attribute_len
uint32_t subject_attribute_len
Definition: gnunet_abd_service.h:132
GNUNET_ABD_Delegation
A delegation.
Definition: gnunet_abd_service.h:145
GNUNET_ABD_Delegation::issuer_attribute_len
uint32_t issuer_attribute_len
Length of the attribute.
Definition: gnunet_abd_service.h:160
GNUNET_ABD_Delegation::issuer_key
struct GNUNET_IDENTITY_PublicKey issuer_key
The issuer of the delegation.
Definition: gnunet_abd_service.h:150
GNUNET_ABD_Delegation::subject_attribute_len
uint32_t subject_attribute_len
Length of the attribute.
Definition: gnunet_abd_service.h:170
GNUNET_ABD_Delegation::issuer_attribute
const char * issuer_attribute
The attribute.
Definition: gnunet_abd_service.h:165
GNUNET_ABD_Delegation::subject_attribute
const char * subject_attribute
The attribute.
Definition: gnunet_abd_service.h:175
GNUNET_ABD_Delegation::subject_key
struct GNUNET_IDENTITY_PublicKey subject_key
Public key of the subject this attribute was delegated to.
Definition: gnunet_abd_service.h:155
GNUNET_ABD_Handle
Connection to the ABD service.
Definition: abd_api.c:97
GNUNET_ABD_Request
Handle to a verify request.
Definition: abd_api.c:44
GNUNET_ABD_Request::proc_cls
void * proc_cls
verify_proc closure
Definition: abd_api.c:69
GNUNET_ABD_Request::proc2_cls
void * proc2_cls
verify_proc2 closure
Definition: abd_api.c:79
GNUNET_CONFIGURATION_Handle
configuration data
Definition: configuration.c:150
GNUNET_IDENTITY_Ego
Handle for an ego.
Definition: identity.h:37
GNUNET_IDENTITY_PrivateKey
A private key for an identity as per LSD0001.
Definition: gnunet_identity_service.h:96
GNUNET_IDENTITY_PublicKey
An identity key as per LSD0001.
Definition: gnunet_identity_service.h:123
GNUNET_IDENTITY_Signature
An identity signature as per LSD0001.
Definition: gnunet_identity_service.h:150
GNUNET_TIME_Absolute
Time for absolute times used by GNUnet, in microseconds.
Definition: gnunet_time_lib.h:54