GNUnet 0.24.1-16-gbc519cf4b
delegate_misc.c
Go to the documentation of this file.
1/*
2 This file is part of GNUnet.
3 Copyright (C) 2009-2013, 2016 GNUnet e.V.
4
5 GNUnet is free software: you can redistribute it and/or modify it
6 under the terms of the GNU Affero General Public License as published
7 by the Free Software Foundation, either version 3 of the License,
8 or (at your option) any later version.
9
10 GNUnet is distributed in the hope that it will be useful, but
11 WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 Affero General Public License for more details.
14
15 You should have received a copy of the GNU Affero General Public License
16 along with this program. If not, see <http://www.gnu.org/licenses/>.
17
18 SPDX-License-Identifier: AGPL3.0-or-later
19*/
20
21
28#include "platform.h"
29#include "gnunet_util_lib.h"
30#include "gnunet_abd_service.h"
31#include "gnunet_signatures.h"
32#include "abd.h"
33#include <inttypes.h>
34#include "delegate_misc.h"
35
36char *
37GNUNET_ABD_delegate_to_string (
38 const struct GNUNET_ABD_Delegate *cred)
39{
40 char *cred_str;
41 char *subject_pkey;
42 char *issuer_pkey;
43 char *signature;
44
45 subject_pkey = GNUNET_CRYPTO_public_key_to_string (&cred->subject_key);
46 issuer_pkey = GNUNET_CRYPTO_public_key_to_string (&cred->issuer_key);
47 GNUNET_STRINGS_base64_encode ((char *) &cred->signature,
48 sizeof (struct GNUNET_CRYPTO_Signature),
49 &signature);
50 if (0 == cred->subject_attribute_len)
51 {
52 GNUNET_asprintf (&cred_str,
53 "%s.%s -> %s | %s | %" SCNu64,
54 issuer_pkey,
55 cred->issuer_attribute,
56 subject_pkey,
57 signature,
58 cred->expiration.abs_value_us);
59 }
60 else
61 {
62 GNUNET_asprintf (&cred_str,
63 "%s.%s -> %s.%s | %s | %" SCNu64,
64 issuer_pkey,
65 cred->issuer_attribute,
66 subject_pkey,
67 cred->subject_attribute,
68 signature,
69 cred->expiration.abs_value_us);
70 }
71 GNUNET_free (subject_pkey);
72 GNUNET_free (issuer_pkey);
73 GNUNET_free (signature);
74
75 return cred_str;
76}
77
78
79#define KEY_LEN_ENC (260 / 5)
80
81struct GNUNET_ABD_Delegate *
82GNUNET_ABD_delegate_from_string (const char *s)
83{
84 struct GNUNET_ABD_Delegate *dele;
85 char subject_pkey[KEY_LEN_ENC + 7];
86 char issuer_pkey[KEY_LEN_ENC + 7];
87 char iss_attr[253 + 1];
88 // Needs to be initialized, in case of Type 1 credential (A.a <- B)
89 char sub_attr[253 + 1] = "";
90 char signature[256]; // TODO max payload size
91 int attr_len;
92
93 struct GNUNET_CRYPTO_Signature *sig;
94 struct GNUNET_TIME_Absolute etime_abs;
95
96 // If it's A.a <- B.b...
97 if (6 != sscanf (s,
98 "%58s.%253s -> %58s.%253s | %s | %" SCNu64,
99 issuer_pkey,
100 iss_attr,
101 subject_pkey,
102 sub_attr,
103 signature,
104 &etime_abs.abs_value_us))
105 {
106 // Try if it's A.a <- B
107 if (5 != sscanf (s,
108 "%58s.%253s -> %58s | %s | %" SCNu64,
109 issuer_pkey,
110 iss_attr,
111 subject_pkey,
112 signature,
113 &etime_abs.abs_value_us))
114 {
115 GNUNET_log (GNUNET_ERROR_TYPE_ERROR,
116 "Unable to parse DEL record string `%s'\n",
117 s);
118 return NULL;
119 }
120 }
121
122 // +1 for \0
123 if (strcmp (sub_attr, "") == 0)
124 {
125 attr_len = strlen (iss_attr) + 1;
126 }
127 else
128 {
129 attr_len = strlen (iss_attr) + strlen (sub_attr) + 2;
130 }
131 dele = GNUNET_malloc (sizeof (struct GNUNET_ABD_Delegate) + attr_len);
132
133 {
134 char tmp_str[attr_len];
135 GNUNET_memcpy (tmp_str, iss_attr, strlen (iss_attr));
136 if (strcmp (sub_attr, "") != 0)
137 {
138 tmp_str[strlen (iss_attr)] = '\0';
139 GNUNET_memcpy (tmp_str + strlen (iss_attr) + 1,
140 sub_attr,
141 strlen (sub_attr));
142 }
143 tmp_str[attr_len - 1] = '\0';
144 if (GNUNET_SYSERR ==
145 GNUNET_CRYPTO_public_key_from_string (subject_pkey,
146 &dele->subject_key))
147 {
148 GNUNET_free (dele);
149 return NULL;
150 }
151 if (GNUNET_SYSERR ==
152 GNUNET_CRYPTO_public_key_from_string (issuer_pkey,
153 &dele->issuer_key))
154 {
155 GNUNET_free (dele);
156 return NULL;
157 }
158 GNUNET_assert (sizeof (struct GNUNET_CRYPTO_Signature) ==
159 GNUNET_STRINGS_base64_decode (signature,
160 strlen (signature),
161 (void **) &sig));
162 dele->signature = *sig;
163 dele->expiration = etime_abs;
164 GNUNET_free (sig);
165
166 GNUNET_memcpy (&dele[1], tmp_str, attr_len);
167 }
168
169 dele->issuer_attribute = (char *) &dele[1];
170 dele->issuer_attribute_len = strlen (iss_attr);
171 if (strcmp (sub_attr, "") == 0)
172 {
173 dele->subject_attribute = NULL;
174 dele->subject_attribute_len = 0;
175 }
176 else
177 {
178 dele->subject_attribute = (char *) &dele[1] + strlen (iss_attr) + 1;
179 dele->subject_attribute_len = strlen (sub_attr);
180 }
181
182 return dele;
183}
184
185
196struct GNUNET_ABD_Delegate *
197GNUNET_ABD_delegate_issue (
198 const struct GNUNET_CRYPTO_PrivateKey *issuer,
199 struct GNUNET_CRYPTO_PublicKey *subject,
200 const char *iss_attr,
201 const char *sub_attr,
202 struct GNUNET_TIME_Absolute *expiration)
203{
204 struct DelegateEntry *del;
205 struct GNUNET_ABD_Delegate *dele;
206 size_t size;
207 int attr_len;
208
209 if (NULL == sub_attr)
210 {
211 // +1 for \0
212 attr_len = strlen (iss_attr) + 1;
213 }
214 else
215 {
216 // +2 for both strings need to be terminated with \0
217 attr_len = strlen (iss_attr) + strlen (sub_attr) + 2;
218 }
219 size = sizeof (struct DelegateEntry) + attr_len;
220
221 {
222 char tmp_str[attr_len];
223 GNUNET_memcpy (tmp_str, iss_attr, strlen (iss_attr));
224 if (NULL != sub_attr)
225 {
226 tmp_str[strlen (iss_attr)] = '\0';
227 GNUNET_memcpy (tmp_str + strlen (iss_attr) + 1,
228 sub_attr,
229 strlen (sub_attr));
230 }
231 tmp_str[attr_len - 1] = '\0';
232
233 del = GNUNET_malloc (size);
234 del->purpose.size =
235 htonl (size - sizeof (struct GNUNET_CRYPTO_Signature));
236 del->purpose.purpose = htonl (GNUNET_SIGNATURE_PURPOSE_DELEGATE);
237 GNUNET_CRYPTO_key_get_public (issuer, &del->issuer_key);
238 del->subject_key = *subject;
239 del->expiration = GNUNET_htonll (expiration->abs_value_us);
240 del->issuer_attribute_len = htonl (strlen (iss_attr) + 1);
241 if (NULL == sub_attr)
242 {
243 del->subject_attribute_len = htonl (0);
244 }
245 else
246 {
247 del->subject_attribute_len = htonl (strlen (sub_attr) + 1);
248 }
249
250 GNUNET_memcpy (&del[1], tmp_str, attr_len);
251 GNUNET_CRYPTO_sign_ (issuer, &del->purpose, &del->signature);
252
253 dele = GNUNET_malloc (sizeof (struct GNUNET_ABD_Delegate) + attr_len);
254 dele->signature = del->signature;
255 dele->expiration = *expiration;
256 GNUNET_CRYPTO_key_get_public (issuer, &dele->issuer_key);
257
258 dele->subject_key = *subject;
259
260 // Copy the combined string at the part in the memory where the struct ends
261 GNUNET_memcpy (&dele[1], tmp_str, attr_len);
262 }
263
264 dele->issuer_attribute = (char *) &dele[1];
265 dele->issuer_attribute_len = strlen (iss_attr);
266 if (NULL == sub_attr)
267 {
268 dele->subject_attribute = NULL;
269 dele->subject_attribute_len = 0;
270 }
271 else
272 {
273 dele->subject_attribute = (char *) &dele[1] + strlen (iss_attr) + 1;
274 dele->subject_attribute_len = strlen (sub_attr);
275 }
276
277 GNUNET_free (del);
278 return dele;
279}
abd.h
IPC messages between ABD API and ABD service.
GNUNET_ABD_delegate_to_string
char * GNUNET_ABD_delegate_to_string(const struct GNUNET_ABD_Delegate *cred)
Definition: delegate_misc.c:37
KEY_LEN_ENC
#define KEY_LEN_ENC
Definition: delegate_misc.c:79
GNUNET_ABD_delegate_from_string
struct GNUNET_ABD_Delegate * GNUNET_ABD_delegate_from_string(const char *s)
Definition: delegate_misc.c:82
delegate_misc.h
Delegate helper functions.
issuer_pkey
struct GNUNET_CRYPTO_PublicKey issuer_pkey
Issuer key.
Definition: gnunet-abd.c:107
subject
static char * subject
Subject pubkey string.
Definition: gnunet-abd.c:87
subject_pkey
struct GNUNET_CRYPTO_PublicKey subject_pkey
Subject key.
Definition: gnunet-abd.c:102
cred
static gnutls_certificate_credentials_t cred
The credential.
Definition: gnunet-communicator-http3.c:139
expiration
static struct GNUNET_TIME_Relative expiration
User supplied expiration value.
Definition: gnunet-dht-put.c:47
del
static int del
Desired action is to remove a record.
Definition: gnunet-namestore.c:200
gnunet_abd_service.h
API to the Credential service.
gnunet_signatures.h
GNUNET_SIGNATURE_PURPOSE_DELEGATE
#define GNUNET_SIGNATURE_PURPOSE_DELEGATE
Signature for a GNUnet credential (Reclaim)
Definition: gnunet_signatures.h:178
gnunet_util_lib.h
GNUNET_ABD_delegate_issue
struct GNUNET_ABD_Delegate * GNUNET_ABD_delegate_issue(const struct GNUNET_CRYPTO_PrivateKey *issuer, struct GNUNET_CRYPTO_PublicKey *subject, const char *iss_attr, const char *sub_attr, struct GNUNET_TIME_Absolute *expiration)
Issue an attribute to a subject.
Definition: delegate_misc.c:197
GNUNET_log
#define GNUNET_log(kind,...)
Definition: gnunet_common.h:548
GNUNET_CRYPTO_public_key_to_string
char * GNUNET_CRYPTO_public_key_to_string(const struct GNUNET_CRYPTO_PublicKey *key)
Creates a (Base32) string representation of the public key.
Definition: crypto_pkey.c:379
GNUNET_CRYPTO_key_get_public
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_key_get_public(const struct GNUNET_CRYPTO_PrivateKey *privkey, struct GNUNET_CRYPTO_PublicKey *key)
Retrieves the public key representation of a private key.
Definition: crypto_pkey.c:430
GNUNET_CRYPTO_sign_
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_sign_(const struct GNUNET_CRYPTO_PrivateKey *priv, const struct GNUNET_CRYPTO_EccSignaturePurpose *purpose, struct GNUNET_CRYPTO_Signature *sig)
Sign a given block.
Definition: crypto_pkey.c:293
GNUNET_htonll
uint64_t GNUNET_htonll(uint64_t n)
Convert unsigned 64-bit integer to network byte order.
Definition: common_endian.c:37
GNUNET_memcpy
#define GNUNET_memcpy(dst, src, n)
Call memcpy() but check for n being 0 first.
Definition: gnunet_common.h:1317
GNUNET_CRYPTO_public_key_from_string
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_public_key_from_string(const char *str, struct GNUNET_CRYPTO_PublicKey *key)
Parses a (Base32) string representation of the public key.
Definition: crypto_pkey.c:399
GNUNET_SYSERR
@ GNUNET_SYSERR
Definition: gnunet_common.h:109
GNUNET_assert
#define GNUNET_assert(cond)
Use this for fatal errors that cannot be handled.
Definition: gnunet_common.h:957
GNUNET_ERROR_TYPE_ERROR
@ GNUNET_ERROR_TYPE_ERROR
Definition: gnunet_common.h:414
GNUNET_asprintf
int int GNUNET_asprintf(char **buf, const char *format,...) __attribute__((format(printf
Like asprintf, just portable.
GNUNET_malloc
#define GNUNET_malloc(size)
Wrapper around malloc.
Definition: gnunet_common.h:1352
GNUNET_free
#define GNUNET_free(ptr)
Wrapper around free.
Definition: gnunet_common.h:1412
GNUNET_STRINGS_base64_decode
size_t GNUNET_STRINGS_base64_decode(const char *data, size_t len, void **output)
Decode from Base64.
Definition: strings.c:1704
GNUNET_STRINGS_base64_encode
size_t GNUNET_STRINGS_base64_encode(const void *in, size_t len, char **output)
Encode into Base64.
Definition: strings.c:1602
size
static unsigned int size
Size of the "table".
Definition: peer.c:68
GNUNET_ABD_Delegate
A delegate.
Definition: gnunet_abd_service.h:183
GNUNET_ABD_Delegate::subject_attribute
const char * subject_attribute
The subject attribute.
Definition: gnunet_abd_service.h:223
GNUNET_ABD_Delegate::issuer_attribute
const char * issuer_attribute
The issuer attribute.
Definition: gnunet_abd_service.h:213
GNUNET_ABD_Delegate::issuer_attribute_len
uint32_t issuer_attribute_len
Length of the issuer attribute.
Definition: gnunet_abd_service.h:208
GNUNET_ABD_Delegate::subject_attribute_len
uint32_t subject_attribute_len
Length of the subject attribute.
Definition: gnunet_abd_service.h:218
GNUNET_ABD_Delegate::signature
struct GNUNET_CRYPTO_Signature signature
Signature of this credential.
Definition: gnunet_abd_service.h:198
GNUNET_ABD_Delegate::issuer_key
struct GNUNET_CRYPTO_PublicKey issuer_key
The issuer of the credential.
Definition: gnunet_abd_service.h:188
GNUNET_ABD_Delegate::expiration
struct GNUNET_TIME_Absolute expiration
Expiration of this credential.
Definition: gnunet_abd_service.h:203
GNUNET_ABD_Delegate::subject_key
struct GNUNET_CRYPTO_PublicKey subject_key
Public key of the subject this credential was issued to.
Definition: gnunet_abd_service.h:193
GNUNET_CRYPTO_PrivateKey
A private key for an identity as per LSD0001.
Definition: gnunet_crypto_lib.h:400
GNUNET_CRYPTO_PublicKey
An identity key as per LSD0001.
Definition: gnunet_crypto_lib.h:427
GNUNET_CRYPTO_Signature
An identity signature as per LSD0001.
Definition: gnunet_crypto_lib.h:454
GNUNET_TIME_Absolute
Time for absolute times used by GNUnet, in microseconds.
Definition: gnunet_time_lib.h:54
GNUNET_TIME_Absolute::abs_value_us
uint64_t abs_value_us
The actual value.
Definition: gnunet_time_lib.h:59