d4/d71/gnunet-crypto-tvg_8c_source.html

 /*
      This file is part of GNUnet.
      Copyright (C) 2020 GNUnet e.V.

      GNUnet is free software: you can redistribute it and/or modify it
      under the terms of the GNU Affero General Public License as published
      by the Free Software Foundation, either version 3 of the License,
      or (at your option) any later version.

      GNUnet is distributed in the hope that it will be useful, but
      WITHOUT ANY WARRANTY; without even the implied warranty of
      MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
      Affero General Public License for more details.

      You should have received a copy of the GNU Affero General Public License
      along with this program.  If not, see <http://www.gnu.org/licenses/>.

      SPDX-License-Identifier: AGPL3.0-or-later
  */

 #include "platform.h"
 #include "gnunet_util_lib.h"
 #include "gnunet_signatures.h"
 #include "gnunet_testing_lib.h"
 #include <gcrypt.h>

 GNUNET_NETWORK_STRUCT_BEGIN

 struct TestSignatureDataPS
 {
   struct GNUNET_CRYPTO_EccSignaturePurpose purpose;
   uint32_t testval;
 };

 GNUNET_NETWORK_STRUCT_END


 static void
 display_data (char *label, void *data, size_t size)
 {
   char *enc = GNUNET_STRINGS_data_to_string_alloc (data, size);
   printf ("%s %s\n", label, enc);
   GNUNET_free (enc);
 }


 static void
 run (void *cls,
      char *const *args,
      const char *cfgfile,
      const struct GNUNET_CONFIGURATION_Handle *cfg)
 {
   {
     struct GNUNET_HashCode hc;
     char *str = "Hello, GNUnet";

     GNUNET_CRYPTO_hash (str, strlen (str), &hc);

     printf ("hash code:\n");
     display_data ("  input", str, strlen (str));
     display_data ("  output", &hc, sizeof (struct GNUNET_HashCode));
   }
   {
     struct GNUNET_CRYPTO_EcdhePrivateKey priv1;
     struct GNUNET_CRYPTO_EcdhePublicKey pub1;
     struct GNUNET_CRYPTO_EcdhePrivateKey priv2;
     struct GNUNET_HashCode skm;

     GNUNET_CRYPTO_ecdhe_key_create (&priv1);
     GNUNET_CRYPTO_ecdhe_key_create (&priv2);
     GNUNET_CRYPTO_ecdhe_key_get_public (&priv1,
                                         &pub1);
     GNUNET_assert (GNUNET_OK ==
                    GNUNET_CRYPTO_ecc_ecdh (&priv2,
                                            &pub1,
                                            &skm));

     printf ("ecdhe key:\n");
     display_data ("  priv1",
                   &priv1,
                   sizeof (struct GNUNET_CRYPTO_EcdhePrivateKey));
     display_data ("  pub1",
                   &pub1,
                   sizeof (struct GNUNET_CRYPTO_EcdhePublicKey));
     display_data ("  priv2",
                   &priv2,
                   sizeof (struct GNUNET_CRYPTO_EcdhePrivateKey));
     display_data ("  skm",
                   &skm,
                   sizeof (struct GNUNET_HashCode));
   }

   {
     struct GNUNET_CRYPTO_EddsaPrivateKey priv;
     struct GNUNET_CRYPTO_EddsaPublicKey pub;

     GNUNET_CRYPTO_eddsa_key_create (&priv);
     GNUNET_CRYPTO_eddsa_key_get_public (&priv,
                                         &pub);

     printf ("eddsa key:\n");
     display_data ("  priv",
                   &priv,
                   sizeof (struct GNUNET_CRYPTO_EddsaPrivateKey));
     display_data ("  pub",
                   &pub,
                   sizeof (struct GNUNET_CRYPTO_EddsaPublicKey));
   }
   {
     struct GNUNET_CRYPTO_EddsaPrivateKey priv;
     struct GNUNET_CRYPTO_EddsaPublicKey pub;
     struct GNUNET_CRYPTO_EddsaSignature sig;
     struct TestSignatureDataPS data = { 0 };

     GNUNET_CRYPTO_eddsa_key_create (&priv);
     GNUNET_CRYPTO_eddsa_key_get_public (&priv,
                                         &pub);
     data.purpose.size = htonl (sizeof (data));
     data.purpose.purpose = htonl (GNUNET_SIGNATURE_PURPOSE_TEST);
     GNUNET_CRYPTO_eddsa_sign (&priv,
                               &data,
                               &sig);
     GNUNET_assert (GNUNET_OK ==
                    GNUNET_CRYPTO_eddsa_verify (GNUNET_SIGNATURE_PURPOSE_TEST,
                                                &data,
                                                &sig,
                                                &pub));

     printf ("eddsa sig:\n");
     display_data ("  priv",
                   &priv,
                   sizeof (struct GNUNET_CRYPTO_EddsaPrivateKey));
     display_data ("  pub",
                   &pub,
                   sizeof (struct GNUNET_CRYPTO_EddsaPublicKey));
     display_data ("  data",
                   &data,
                   sizeof (struct TestSignatureDataPS));
     display_data ("  sig",
                   &sig,
                   sizeof (struct GNUNET_CRYPTO_EddsaSignature));
   }

   {
     size_t out_len = 64;
     char out[out_len];
     char *ikm = "I'm the secret input key material";
     char *salt = "I'm very salty";
     char *ctx = "I'm a context chunk, also known as 'info' in the RFC";

     GNUNET_assert (GNUNET_OK ==
                    GNUNET_CRYPTO_kdf (&out,
                                       out_len,
                                       salt,
                                       strlen (salt),
                                       ikm,
                                       strlen (ikm),
                                       ctx,
                                       strlen (ctx),
                                       NULL));

     printf ("kdf:\n");
     display_data ("  salt", salt, strlen (salt));
     display_data ("  ikm", ikm, strlen (ikm));
     display_data ("  ctx", ctx, strlen (ctx));
     printf ("  out_len %u\n", (unsigned int) out_len);
     display_data ("  out", out, out_len);
   }
   {
     struct GNUNET_CRYPTO_EcdhePrivateKey priv_ecdhe;
     struct GNUNET_CRYPTO_EcdhePublicKey pub_ecdhe;
     struct GNUNET_CRYPTO_EddsaPrivateKey priv_eddsa;
     struct GNUNET_CRYPTO_EddsaPublicKey pub_eddsa;
     struct GNUNET_HashCode key_material;

     GNUNET_CRYPTO_ecdhe_key_create (&priv_ecdhe);
     GNUNET_CRYPTO_ecdhe_key_get_public (&priv_ecdhe, &pub_ecdhe);
     GNUNET_CRYPTO_eddsa_key_create (&priv_eddsa);
     GNUNET_CRYPTO_eddsa_key_get_public (&priv_eddsa, &pub_eddsa);
     GNUNET_CRYPTO_ecdh_eddsa (&priv_ecdhe, &pub_eddsa, &key_material);

     printf ("eddsa_ecdh:\n");
     display_data ("  priv_ecdhe",
                   &priv_ecdhe,
                   sizeof (struct GNUNET_CRYPTO_EcdhePrivateKey));
     display_data ("  pub_ecdhe",
                   &pub_ecdhe,
                   sizeof (struct GNUNET_CRYPTO_EcdhePublicKey));
     display_data ("  priv_eddsa",
                   &priv_eddsa,
                   sizeof (struct GNUNET_CRYPTO_EddsaPrivateKey));
     display_data ("  pub_eddsa",
                   &pub_eddsa,
                   sizeof (struct GNUNET_CRYPTO_EddsaPublicKey));
     display_data ("  key_material",
                   &key_material,
                   sizeof (struct GNUNET_HashCode));
   }

   {
     struct GNUNET_CRYPTO_RsaPrivateKey *skey;
     struct GNUNET_CRYPTO_RsaPublicKey *pkey;
     struct GNUNET_HashCode message_hash;
     struct GNUNET_CRYPTO_RsaBlindingKeySecret bks;
     struct GNUNET_CRYPTO_RsaSignature *blinded_sig;
     struct GNUNET_CRYPTO_RsaSignature *sig;
     void *blinded_data;
     size_t blinded_len;
     void *public_enc_data;
     size_t public_enc_len;
     void *blinded_sig_enc_data;
     size_t blinded_sig_enc_length;
     void *sig_enc_data;
     size_t sig_enc_length;
     skey = GNUNET_CRYPTO_rsa_private_key_create (2048);
     pkey = GNUNET_CRYPTO_rsa_private_key_get_public (skey);
     GNUNET_CRYPTO_random_block (GNUNET_CRYPTO_QUALITY_WEAK,
                                 &message_hash,
                                 sizeof (struct GNUNET_HashCode));
     GNUNET_CRYPTO_random_block (GNUNET_CRYPTO_QUALITY_WEAK,
                                 &bks,
                                 sizeof (struct
                                         GNUNET_CRYPTO_RsaBlindingKeySecret));
     GNUNET_assert (GNUNET_YES ==
                    GNUNET_CRYPTO_rsa_blind (&message_hash,
                                             &bks,
                                             pkey,
                                             &blinded_data,
                                             &blinded_len));
     blinded_sig = GNUNET_CRYPTO_rsa_sign_blinded (skey, blinded_data,
                                                   blinded_len);
     sig = GNUNET_CRYPTO_rsa_unblind (blinded_sig, &bks, pkey);
     GNUNET_assert (GNUNET_YES == GNUNET_CRYPTO_rsa_verify (&message_hash, sig,
                                                            pkey));
     public_enc_len = GNUNET_CRYPTO_rsa_public_key_encode (pkey,
                                                           &public_enc_data);
     blinded_sig_enc_length = GNUNET_CRYPTO_rsa_signature_encode (blinded_sig,
                                                                  &
                                                                  blinded_sig_enc_data);
     sig_enc_length = GNUNET_CRYPTO_rsa_signature_encode (sig, &sig_enc_data);
     printf ("blind signing:\n");
     display_data ("  message_hash", &message_hash, sizeof (struct
                                                            GNUNET_HashCode));
     display_data ("  rsa_public_key", public_enc_data, public_enc_len);
     display_data ("  blinding_key_secret", &bks, sizeof (struct
                                                          GNUNET_CRYPTO_RsaBlindingKeySecret));
     display_data ("  blinded_message", blinded_data, blinded_len);
     display_data ("  blinded_sig", blinded_sig_enc_data,
                   blinded_sig_enc_length);
     display_data ("  sig", sig_enc_data, sig_enc_length);
     GNUNET_CRYPTO_rsa_private_key_free (skey);
     GNUNET_CRYPTO_rsa_public_key_free (pkey);
     GNUNET_CRYPTO_rsa_signature_free (sig);
     GNUNET_CRYPTO_rsa_signature_free (blinded_sig);
   }
 }


 int
 main (int argc,
       char *const *argv)
 {
   const struct GNUNET_GETOPT_CommandLineOption options[] = {
     GNUNET_GETOPT_OPTION_END
   };

   GNUNET_assert (GNUNET_OK ==
                  GNUNET_log_setup ("gnunet-crypto-tvg",
                                    "INFO",
                                    NULL));
   if (GNUNET_OK !=
       GNUNET_PROGRAM_run (argc, argv,
                           "gnunet-crypto-tvg",
                           "Generate test vectors for cryptographic operations",
                           options,
                           &run, NULL))
     return 1;
   return 0;
 }


 /* end of gnunet-crypto-tvg.c */
TestSignatureDataPS::testval
uint32_t testval
Definition: gnunet-crypto-tvg.c:42

GNUNET_CRYPTO_rsa_blind
int GNUNET_CRYPTO_rsa_blind(const struct GNUNET_HashCode *hash, const struct GNUNET_CRYPTO_RsaBlindingKeySecret *bks, struct GNUNET_CRYPTO_RsaPublicKey *pkey, void **buf, size_t *buf_size)
Blinds the given message with the given blinding key.
Definition: crypto_rsa.c:841

cfg
static const struct GNUNET_CONFIGURATION_Handle * cfg
Configuration we are using.
Definition: gnunet-abd.c:36

pkey
static char * pkey
Public key of the zone to look in, in ASCII.
Definition: gnunet-namecache.c:59

GNUNET_CRYPTO_eddsa_sign
#define GNUNET_CRYPTO_eddsa_sign(priv, ps, sig)
EdDSA sign a given block.
Definition: gnunet_crypto_lib.h:1680

GNUNET_CRYPTO_RsaSignature
an RSA signature
Definition: crypto_rsa.c:63

GNUNET_CRYPTO_rsa_signature_free
void GNUNET_CRYPTO_rsa_signature_free(struct GNUNET_CRYPTO_RsaSignature *sig)
Free memory occupied by signature.
Definition: crypto_rsa.c:1061

GNUNET_CRYPTO_EccSignaturePurpose::purpose
uint32_t purpose
What does this signature vouch for? This must contain a GNUNET_SIGNATURE_PURPOSE_XXX constant (from g...
Definition: gnunet_crypto_lib.h:145

display_data
static GNUNET_NETWORK_STRUCT_END void display_data(char *label, void *data, size_t size)
Print data base32-crockford with a preceding label.
Definition: gnunet-crypto-tvg.c:56

GNUNET_assert
#define GNUNET_assert(cond)
Use this for fatal errors that cannot be handled.
Definition: gnunet_common.h:852

GNUNET_CRYPTO_ecc_ecdh
int GNUNET_CRYPTO_ecc_ecdh(const struct GNUNET_CRYPTO_EcdhePrivateKey *priv, const struct GNUNET_CRYPTO_EcdhePublicKey *pub, struct GNUNET_HashCode *key_material)
Derive key material from a public and a private ECC key.
Definition: crypto_ecc.c:850

GNUNET_CRYPTO_rsa_signature_encode
size_t GNUNET_CRYPTO_rsa_signature_encode(const struct GNUNET_CRYPTO_RsaSignature *sig, void **buffer)
Encode the given signature in a format suitable for storing it into a file.
Definition: crypto_rsa.c:1076

GNUNET_GETOPT_CommandLineOption
Definition of a command line option.
Definition: gnunet_getopt_lib.h:100

platform.h

gnunet_util_lib.h

GNUNET_CRYPTO_rsa_private_key_create
struct GNUNET_CRYPTO_RsaPrivateKey * GNUNET_CRYPTO_rsa_private_key_create(unsigned int len)
Create a new private key.
Definition: crypto_rsa.c:149

GNUNET_CRYPTO_eddsa_verify
#define GNUNET_CRYPTO_eddsa_verify(purp, ps, sig, pub)
Verify EdDSA signature.
Definition: gnunet_crypto_lib.h:1780

GNUNET_CRYPTO_RsaPublicKey
The public information of an RSA key pair.
Definition: crypto_rsa.c:51

GNUNET_GETOPT_OPTION_END
struct GNUNET_GETOPT_CommandLineOption GNUNET_GETOPT_OPTION_END
Definition: 002.c:13

GNUNET_NETWORK_STRUCT_BEGIN
#define GNUNET_NETWORK_STRUCT_BEGIN
Define as empty, GNUNET_PACKED should suffice, but this won&#39;t work on W32.
Definition: gnunet_common.h:228

ctx
static struct GNUNET_DNSSTUB_Context * ctx
Context for DNS resolution.
Definition: gnunet-zonewalk.c:86

GNUNET_CRYPTO_rsa_verify
int GNUNET_CRYPTO_rsa_verify(const struct GNUNET_HashCode *hash, const struct GNUNET_CRYPTO_RsaSignature *sig, const struct GNUNET_CRYPTO_RsaPublicKey *public_key)
Verify whether the given hash corresponds to the given signature and the signature is valid with resp...
Definition: crypto_rsa.c:1285

GNUNET_CRYPTO_EccSignaturePurpose
header of what an ECC signature signs this must be followed by "size - 8" bytes of the actual signed ...
Definition: gnunet_crypto_lib.h:130

GNUNET_CRYPTO_ecdhe_key_create
void GNUNET_CRYPTO_ecdhe_key_create(struct GNUNET_CRYPTO_EcdhePrivateKey *pk)
Create a new private key.
Definition: crypto_ecc.c:508

GNUNET_OK
Definition: gnunet_common.h:87

GNUNET_CRYPTO_hash
void GNUNET_CRYPTO_hash(const void *block, size_t size, struct GNUNET_HashCode *ret)
Compute hash of a given block.
Definition: crypto_hash.c:48

GNUNET_SIGNATURE_PURPOSE_TEST
#define GNUNET_SIGNATURE_PURPOSE_TEST
Test signature, not valid for anything other than writing a test.
Definition: gnunet_signatures.h:47

gnunet_signatures.h

GNUNET_CRYPTO_EccSignaturePurpose::size
uint32_t size
How many bytes does this signature sign? (including this purpose header); in network byte order (!)...
Definition: gnunet_crypto_lib.h:137

GNUNET_HashCode
A 512-bit hashcode.
Definition: gnunet_common.h:242

run
static void run(void *cls, char *const *args, const char *cfgfile, const struct GNUNET_CONFIGURATION_Handle *cfg)
Main function that will be run.
Definition: gnunet-crypto-tvg.c:73

GNUNET_CRYPTO_ecdh_eddsa
int GNUNET_CRYPTO_ecdh_eddsa(const struct GNUNET_CRYPTO_EcdhePrivateKey *priv, const struct GNUNET_CRYPTO_EddsaPublicKey *pub, struct GNUNET_HashCode *key_material)
Derive key material from a EdDSA public key and a private ECDH key.
Definition: crypto_ecc.c:1084

GNUNET_CRYPTO_rsa_unblind
struct GNUNET_CRYPTO_RsaSignature * GNUNET_CRYPTO_rsa_unblind(const struct GNUNET_CRYPTO_RsaSignature *sig, const struct GNUNET_CRYPTO_RsaBlindingKeySecret *bks, struct GNUNET_CRYPTO_RsaPublicKey *pkey)
Unblind a blind-signed signature.
Definition: crypto_rsa.c:1195

GNUNET_CRYPTO_EcdhePrivateKey
Private ECC key encoded for transmission.
Definition: gnunet_crypto_lib.h:243

main
int main(int argc, char *const *argv)
The main function of the test vector generation tool.
Definition: gnunet-crypto-tvg.c:292

size
static unsigned int size
Size of the "table".
Definition: peer.c:67

GNUNET_CRYPTO_ecdhe_key_get_public
void GNUNET_CRYPTO_ecdhe_key_get_public(const struct GNUNET_CRYPTO_EcdhePrivateKey *priv, struct GNUNET_CRYPTO_EcdhePublicKey *pub)
Extract the public key for the given private key.
Definition: crypto_ecc.c:215

GNUNET_CRYPTO_eddsa_key_create
void GNUNET_CRYPTO_eddsa_key_create(struct GNUNET_CRYPTO_EddsaPrivateKey *pk)
Create a new private key.
Definition: crypto_ecc.c:544

GNUNET_CRYPTO_EddsaSignature
an ECC signature using EdDSA.
Definition: gnunet_crypto_lib.h:153

GNUNET_CRYPTO_eddsa_key_get_public
void GNUNET_CRYPTO_eddsa_key_get_public(const struct GNUNET_CRYPTO_EddsaPrivateKey *priv, struct GNUNET_CRYPTO_EddsaPublicKey *pub)
Extract the public key for the given private key.
Definition: crypto_ecc.c:193

GNUNET_NETWORK_STRUCT_END
#define GNUNET_NETWORK_STRUCT_END
Define as empty, GNUNET_PACKED should suffice, but this won&#39;t work on W32;.
Definition: gnunet_common.h:233

GNUNET_CRYPTO_EddsaPrivateKey
Private ECC key encoded for transmission.
Definition: gnunet_crypto_lib.h:267

GNUNET_CONFIGURATION_Handle
configuration data
Definition: configuration.c:84

enc
static OpusEncoder * enc
OPUS encoder.
Definition: gnunet-helper-audio-record.c:206

GNUNET_CRYPTO_rsa_sign_blinded
struct GNUNET_CRYPTO_RsaSignature * GNUNET_CRYPTO_rsa_sign_blinded(const struct GNUNET_CRYPTO_RsaPrivateKey *key, const void *msg, size_t msg_len)
Sign a blinded value, which must be a full domain hash of a message.
Definition: crypto_rsa.c:1005

GNUNET_CRYPTO_EcdhePublicKey
Public ECC key (always for Curve25519) encoded in a format suitable for network transmission and encr...
Definition: gnunet_crypto_lib.h:229

gnunet-chk.args
args
Definition: gnunet-chk.py:369

TestSignatureDataPS::purpose
struct GNUNET_CRYPTO_EccSignaturePurpose purpose
Definition: gnunet-crypto-tvg.c:41

GNUNET_CRYPTO_RsaPrivateKey
The private information of an RSA key pair.
Definition: crypto_rsa.c:39

GNUNET_CRYPTO_random_block
void GNUNET_CRYPTO_random_block(enum GNUNET_CRYPTO_Quality mode, void *buffer, size_t length)
Fill block with a random values.
Definition: crypto_random.c:134

GNUNET_PROGRAM_run
int GNUNET_PROGRAM_run(int argc, char *const *argv, const char *binaryName, const char *binaryHelp, const struct GNUNET_GETOPT_CommandLineOption *options, GNUNET_PROGRAM_Main task, void *task_cls)
Run a standard GNUnet command startup sequence (initialize loggers and configuration, parse options).
Definition: program.c:367

GNUNET_CRYPTO_rsa_private_key_get_public
struct GNUNET_CRYPTO_RsaPublicKey * GNUNET_CRYPTO_rsa_private_key_get_public(const struct GNUNET_CRYPTO_RsaPrivateKey *priv)
Extract the public key of the given private key.
Definition: crypto_rsa.c:265

GNUNET_CRYPTO_RsaBlindingKeySecret
Constant-size pre-secret for blinding key generation.
Definition: gnunet_crypto_lib.h:2006

GNUNET_CRYPTO_rsa_public_key_free
void GNUNET_CRYPTO_rsa_public_key_free(struct GNUNET_CRYPTO_RsaPublicKey *key)
Free memory occupied by the public key.
Definition: crypto_rsa.c:305

GNUNET_CRYPTO_rsa_public_key_encode
size_t GNUNET_CRYPTO_rsa_public_key_encode(const struct GNUNET_CRYPTO_RsaPublicKey *key, void **buffer)
Encode the public key in a format suitable for storing it into a file.
Definition: crypto_rsa.c:346

GNUNET_STRINGS_data_to_string_alloc
char * GNUNET_STRINGS_data_to_string_alloc(const void *buf, size_t size)
Return the base32crockford encoding of the given buffer.
Definition: strings.c:935

GNUNET_log_setup
int GNUNET_log_setup(const char *comp, const char *loglevel, const char *logfile)
Setup logging.
Definition: common_logging.c:708

TestSignatureDataPS
Sample signature struct.
Definition: gnunet-crypto-tvg.c:39

gnunet_testing_lib.h

data
uint32_t data
The data value.
Definition: gnunet-helper-transport-wlan.c:90

GNUNET_CRYPTO_kdf
int GNUNET_CRYPTO_kdf(void *result, size_t out_len, const void *xts, size_t xts_len, const void *skm, size_t skm_len,...)
Derive key.
Definition: crypto_kdf.c:89

GNUNET_YES
Definition: gnunet_common.h:89

GNUNET_CRYPTO_rsa_private_key_free
void GNUNET_CRYPTO_rsa_private_key_free(struct GNUNET_CRYPTO_RsaPrivateKey *key)
Free memory occupied by the private key.
Definition: crypto_rsa.c:183

GNUNET_CRYPTO_QUALITY_WEAK
No good quality of the operation is needed (i.e., random numbers can be pseudo-random).
Definition: gnunet_crypto_lib.h:81

GNUNET_free
#define GNUNET_free(ptr)
Wrapper around free.
Definition: gnunet_common.h:1321

GNUNET_CRYPTO_EddsaPublicKey
Public ECC key (always for curve Ed25519) encoded in a format suitable for network transmission and E...
Definition: gnunet_crypto_lib.h:190