Perform and access key revocations. More...

Macros
#define	GNUNET_REVOCATION_VERSION 0x00000000
	Version of the key revocation API. More...

Typedefs
typedef void(*	GNUNET_REVOCATION_Callback) (void *cls, int is_valid)
	Callback to call with the result of a key revocation query. More...

Functions
struct GNUNET_REVOCATION_Query *	GNUNET_REVOCATION_query (const struct GNUNET_CONFIGURATION_Handle cfg, const struct GNUNET_CRYPTO_EcdsaPublicKey key, GNUNET_REVOCATION_Callback func, void *func_cls)
	Check if a key was revoked. More...

void	GNUNET_REVOCATION_query_cancel (struct GNUNET_REVOCATION_Query *q)
	Cancel key revocation check. More...

struct GNUNET_REVOCATION_Handle *	GNUNET_REVOCATION_revoke (const struct GNUNET_CONFIGURATION_Handle cfg, const struct GNUNET_CRYPTO_EcdsaPublicKey key, const struct GNUNET_CRYPTO_EcdsaSignature sig, uint64_t pow, GNUNET_REVOCATION_Callback func, void func_cls)
	Perform key revocation. More...

void	GNUNET_REVOCATION_revoke_cancel (struct GNUNET_REVOCATION_Handle *h)
	Cancel key revocation. More...

int	GNUNET_REVOCATION_check_pow (const struct GNUNET_CRYPTO_EcdsaPublicKey *key, uint64_t pow, unsigned int matching_bits)
	Check if the given proof-of-work value would be acceptable for revoking the given key. More...

void	GNUNET_REVOCATION_sign_revocation (const struct GNUNET_CRYPTO_EcdsaPrivateKey key, struct GNUNET_CRYPTO_EcdsaSignature sig)
	Create a revocation signature. More...

Detailed Description

Perform and access key revocations.

See also: Documentation

Macro Definition Documentation

◆ GNUNET_REVOCATION_VERSION

#define GNUNET_REVOCATION_VERSION 0x00000000

Version of the key revocation API.

Definition at line 51 of file gnunet_revocation_service.h.

Typedef Documentation

◆ GNUNET_REVOCATION_Callback

typedef void(* GNUNET_REVOCATION_Callback) (void *cls, int is_valid)

Callback to call with the result of a key revocation query.

Parameters

cls	closure
is_valid	GNUNET_NO of the key is/was revoked, GNUNET_YES if the key is still valid, GNUNET_SYSERR if we had trouble querying the service

Definition at line 67 of file gnunet_revocation_service.h.

Function Documentation

◆ GNUNET_REVOCATION_query()

struct GNUNET_REVOCATION_Query* GNUNET_REVOCATION_query	(	const struct GNUNET_CONFIGURATION_Handle *	cfg,
		const struct GNUNET_CRYPTO_EcdsaPublicKey *	key,
		GNUNET_REVOCATION_Callback	func,
		void *	func_cls
	)

Check if a key was revoked.

Parameters

cfg	the configuration to use
key	key to check for revocation
func	funtion to call with the result of the check
func_cls	closure to pass to func

Returns: handle to use in GNUNET_REVOCATION_query_cancel to stop REVOCATION from invoking the callback

Definition at line 111 of file revocation_api.c.

References env, GNUNET_REVOCATION_Query::func, GNUNET_REVOCATION_Query::func_cls, GNUNET_CLIENT_connect(), GNUNET_free, GNUNET_MESSAGE_TYPE_REVOCATION_QUERY, GNUNET_MESSAGE_TYPE_REVOCATION_QUERY_RESPONSE, GNUNET_MQ_handler_end, GNUNET_MQ_hd_fixed_size, GNUNET_MQ_msg, GNUNET_MQ_send(), GNUNET_new, key, QueryMessage::key, GNUNET_REVOCATION_Query::mq, q, query_mq_error_handler(), and QueryMessage::reserved.

Referenced by recursive_gns_resolution_revocation(), and run().

 {
   struct GNUNET_REVOCATION_Query *q
     = GNUNET_new (struct GNUNET_REVOCATION_Query);
   struct GNUNET_MQ_MessageHandler handlers[] = {
     GNUNET_MQ_hd_fixed_size (revocation_query_response,
                              GNUNET_MESSAGE_TYPE_REVOCATION_QUERY_RESPONSE,
                              struct QueryResponseMessage,
                              q),
     GNUNET_MQ_handler_end ()
   };
   struct QueryMessage *qm;
   struct GNUNET_MQ_Envelope *env;
 
   q->mq = GNUNET_CLIENT_connect (cfg,
                                  "revocation",
                                  handlers,
                                  &query_mq_error_handler,
                                  q);
   if (NULL == q->mq)
   {
     GNUNET_free (q);
     return NULL;
   }
   q->func = func;
   q->func_cls = func_cls;
   env = GNUNET_MQ_msg (qm,
                        GNUNET_MESSAGE_TYPE_REVOCATION_QUERY);
   qm->reserved = htonl (0);
   qm->key = *key;
   GNUNET_MQ_send (q->mq,
                   env);
   return q;
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_query_cancel()

void GNUNET_REVOCATION_query_cancel ( struct GNUNET_REVOCATION_Query * q )

Cancel key revocation check.

Parameters

q	query to cancel

Definition at line 156 of file revocation_api.c.

References GNUNET_free, GNUNET_MQ_destroy(), and GNUNET_REVOCATION_Query::mq.

Referenced by do_shutdown(), GNS_resolver_lookup_cancel(), handle_revocation_query_response(), and query_mq_error_handler().

 {
   if (NULL != q->mq)
   {
     GNUNET_MQ_destroy (q->mq);
     q->mq = NULL;
   }
   GNUNET_free (q);
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_revoke()

struct GNUNET_REVOCATION_Handle* GNUNET_REVOCATION_revoke	(	const struct GNUNET_CONFIGURATION_Handle *	cfg,
		const struct GNUNET_CRYPTO_EcdsaPublicKey *	key,
		const struct GNUNET_CRYPTO_EcdsaSignature *	sig,
		uint64_t	pow,
		GNUNET_REVOCATION_Callback	func,
		void *	func_cls
	)

Perform key revocation.

Parameters

cfg	the configuration to use
key	public key of the key to revoke
sig	signature to use on the revocation (should have been created using GNUNET_REVOCATION_sign_revocation).
pow	proof of work to use (should have been created by iteratively calling GNUNET_REVOCATION_check_pow)
func	funtion to call with the result of the check (called with `is_valid` being GNUNET_NO if the revocation worked).
func_cls	closure to pass to func

Returns: handle to use in GNUNET_REVOCATION_revoke_cancel to stop REVOCATION from invoking the callback

Definition at line 251 of file revocation_api.c.

References env, GNUNET_REVOCATION_Query::func, GNUNET_REVOCATION_Handle::func, GNUNET_REVOCATION_Query::func_cls, GNUNET_REVOCATION_Handle::func_cls, GNUNET_break, GNUNET_CLIENT_connect(), GNUNET_CONFIGURATION_get_value_number(), GNUNET_free, GNUNET_MESSAGE_TYPE_REVOCATION_REVOKE, GNUNET_MESSAGE_TYPE_REVOCATION_REVOKE_RESPONSE, GNUNET_MQ_handler_end, GNUNET_MQ_hd_fixed_size, GNUNET_MQ_msg, GNUNET_MQ_send(), GNUNET_new, GNUNET_OK, GNUNET_REVOCATION_check_pow(), GNUNET_SIGNATURE_PURPOSE_REVOCATION, GNUNET_YES, h, key, matching_bits, GNUNET_REVOCATION_Handle::mq, RevokeMessage::proof_of_work, RevokeMessage::public_key, RevokeMessage::purpose, GNUNET_CRYPTO_EccSignaturePurpose::purpose, RevokeMessage::reserved, revocation_mq_error_handler(), RevokeMessage::signature, and GNUNET_CRYPTO_EccSignaturePurpose::size.

Referenced by perform_revocation().

 {
   struct GNUNET_REVOCATION_Handle *h
     = GNUNET_new (struct GNUNET_REVOCATION_Handle);
   struct GNUNET_MQ_MessageHandler handlers[] = {
     GNUNET_MQ_hd_fixed_size (revocation_response,
                              GNUNET_MESSAGE_TYPE_REVOCATION_REVOKE_RESPONSE,
                              struct RevocationResponseMessage,
                              h),
     GNUNET_MQ_handler_end ()
   };
   unsigned long long matching_bits;
   struct RevokeMessage *rm;
   struct GNUNET_MQ_Envelope *env;
 
   if ( (GNUNET_OK ==
         GNUNET_CONFIGURATION_get_value_number (cfg,
                                                "REVOCATION",
                                                "WORKBITS",
                                                &matching_bits)) &&
        (GNUNET_YES !=
         GNUNET_REVOCATION_check_pow (key,
                                      pow,
                                      (unsigned int) matching_bits)) )
   {
     GNUNET_break (0);
     GNUNET_free (h);
     return NULL;
   }
 
   h->mq = GNUNET_CLIENT_connect (cfg,
                                  "revocation",
                                  handlers,
                                  &revocation_mq_error_handler,
                                  h);
   if (NULL == h->mq)
   {
     GNUNET_free (h);
     return NULL;
   }
   h->func = func;
   h->func_cls = func_cls;
   env = GNUNET_MQ_msg (rm,
                        GNUNET_MESSAGE_TYPE_REVOCATION_REVOKE);
   rm->reserved = htonl (0);
   rm->proof_of_work = pow;
   rm->purpose.purpose = htonl (GNUNET_SIGNATURE_PURPOSE_REVOCATION);
   rm->purpose.size = htonl (sizeof (struct GNUNET_CRYPTO_EccSignaturePurpose) +
                             sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey));
   rm->public_key = *key;
   rm->signature = *sig;
   GNUNET_MQ_send (h->mq,
                   env);
   return h;
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_revoke_cancel()

void GNUNET_REVOCATION_revoke_cancel ( struct GNUNET_REVOCATION_Handle * h )

Cancel key revocation.

Parameters

h	operation to cancel

Definition at line 319 of file revocation_api.c.

References GNUNET_free, GNUNET_MQ_destroy(), and GNUNET_REVOCATION_Handle::mq.

Referenced by do_shutdown(), handle_revocation_response(), and revocation_mq_error_handler().

 {
   if (NULL != h->mq)
   {
     GNUNET_MQ_destroy (h->mq);
     h->mq = NULL;
   }
   GNUNET_free (h);
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_check_pow()

int GNUNET_REVOCATION_check_pow	(	const struct GNUNET_CRYPTO_EcdsaPublicKey *	key,
		uint64_t	pow,
		unsigned int	matching_bits
	)

Check if the given proof-of-work value would be acceptable for revoking the given key.

Parameters

key	key to check for
pow	proof of work value
matching_bits	how many bits must match (configuration)

Returns: GNUNET_YES if the pow is acceptable, GNUNET_NO if not

Definition at line 381 of file revocation_api.c.

References buf, count_leading_zeroes(), GNUNET_memcpy, GNUNET_NO, GNUNET_YES, and pow_hash().

Referenced by block_plugin_revocation_evaluate(), calculate_pow(), ego_callback(), GNUNET_REVOCATION_revoke(), run(), and verify_revoke_message().

 {
   char buf[sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey) +
            sizeof (pow)] GNUNET_ALIGN;
   struct GNUNET_HashCode result;
 
   GNUNET_memcpy (buf, &pow, sizeof (pow));
   GNUNET_memcpy (&buf[sizeof (pow)], key,
           sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey));
   pow_hash (buf, sizeof (buf), &result);
   return (count_leading_zeroes (&result) >=
           matching_bits) ? GNUNET_YES : GNUNET_NO;
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_sign_revocation()

void GNUNET_REVOCATION_sign_revocation	(	const struct GNUNET_CRYPTO_EcdsaPrivateKey *	key,
		struct GNUNET_CRYPTO_EcdsaSignature *	sig
	)

Create a revocation signature.

Parameters

key	private key of the key to revoke
sig	where to write the revocation signature

Definition at line 405 of file revocation_api.c.

References GNUNET_assert, GNUNET_CRYPTO_ecdsa_key_get_public(), GNUNET_CRYPTO_ecdsa_sign(), GNUNET_OK, GNUNET_SIGNATURE_PURPOSE_REVOCATION, RevokeMessage::public_key, RevokeMessage::purpose, GNUNET_CRYPTO_EccSignaturePurpose::purpose, and GNUNET_CRYPTO_EccSignaturePurpose::size.

Referenced by ego_callback().

 {
   struct RevokeMessage rm;
 
   rm.purpose.purpose = htonl (GNUNET_SIGNATURE_PURPOSE_REVOCATION);
   rm.purpose.size = htonl (sizeof (struct GNUNET_CRYPTO_EccSignaturePurpose) +
                            sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey));
   GNUNET_CRYPTO_ecdsa_key_get_public (key, &rm.public_key);
   GNUNET_assert (GNUNET_OK ==
                  GNUNET_CRYPTO_ecdsa_sign (key,
                                          &rm.purpose,
                                          sig));
 }

Here is the call graph for this function:

Here is the caller graph for this function:

Macros

Typedefs

Functions

Detailed Description

Macro Definition Documentation

◆ GNUNET_REVOCATION_VERSION

Typedef Documentation

◆ GNUNET_REVOCATION_Callback

Function Documentation

◆ GNUNET_REVOCATION_query()

◆ GNUNET_REVOCATION_query_cancel()

◆ GNUNET_REVOCATION_revoke()

◆ GNUNET_REVOCATION_revoke_cancel()

◆ GNUNET_REVOCATION_check_pow()

◆ GNUNET_REVOCATION_sign_revocation()