Perform and access key revocations. More...

Macros
#define	GNUNET_REVOCATION_VERSION 0x00000000
	Version of the key revocation API. More...

Typedefs
typedef void(*	GNUNET_REVOCATION_Callback) (void *cls, int is_valid)
	Callback to call with the result of a key revocation query. More...

Functions
struct GNUNET_REVOCATION_Query *	GNUNET_REVOCATION_query (const struct GNUNET_CONFIGURATION_Handle cfg, const struct GNUNET_CRYPTO_EcdsaPublicKey key, GNUNET_REVOCATION_Callback func, void *func_cls)
	Check if a key was revoked. More...

void	GNUNET_REVOCATION_query_cancel (struct GNUNET_REVOCATION_Query *q)
	Cancel key revocation check. More...

struct GNUNET_REVOCATION_Handle *	GNUNET_REVOCATION_revoke (const struct GNUNET_CONFIGURATION_Handle cfg, const struct GNUNET_CRYPTO_EcdsaPublicKey key, const struct GNUNET_CRYPTO_EcdsaSignature sig, uint64_t pow, GNUNET_REVOCATION_Callback func, void func_cls)
	Perform key revocation. More...

void	GNUNET_REVOCATION_revoke_cancel (struct GNUNET_REVOCATION_Handle *h)
	Cancel key revocation. More...

int	GNUNET_REVOCATION_check_pow (const struct GNUNET_CRYPTO_EcdsaPublicKey *key, uint64_t pow, unsigned int matching_bits)
	Check if the given proof-of-work value would be acceptable for revoking the given key. More...

void	GNUNET_REVOCATION_sign_revocation (const struct GNUNET_CRYPTO_EcdsaPrivateKey key, struct GNUNET_CRYPTO_EcdsaSignature sig)
	Create a revocation signature. More...

Detailed Description

Perform and access key revocations.

See also: Documentation

Macro Definition Documentation

◆ GNUNET_REVOCATION_VERSION

#define GNUNET_REVOCATION_VERSION 0x00000000

Version of the key revocation API.

Definition at line 51 of file gnunet_revocation_service.h.

Typedef Documentation

◆ GNUNET_REVOCATION_Callback

typedef void(* GNUNET_REVOCATION_Callback) (void *cls, int is_valid)

Callback to call with the result of a key revocation query.

Parameters

cls	closure
is_valid	GNUNET_NO of the key is/was revoked, GNUNET_YES if the key is still valid, GNUNET_SYSERR if we had trouble querying the service

Definition at line 67 of file gnunet_revocation_service.h.

Function Documentation

◆ GNUNET_REVOCATION_query()

struct GNUNET_REVOCATION_Query* GNUNET_REVOCATION_query	(	const struct GNUNET_CONFIGURATION_Handle *	cfg,
		const struct GNUNET_CRYPTO_EcdsaPublicKey *	key,
		GNUNET_REVOCATION_Callback	func,
		void *	func_cls
	)

Check if a key was revoked.

Parameters

cfg	the configuration to use
key	key to check for revocation
func	funtion to call with the result of the check
func_cls	closure to pass to func

Returns: handle to use in GNUNET_REVOCATION_query_cancel to stop REVOCATION from invoking the callback

Definition at line 108 of file revocation_api.c.

References env, GNUNET_REVOCATION_Query::func, GNUNET_REVOCATION_Query::func_cls, GNUNET_CLIENT_connect(), GNUNET_free, GNUNET_MESSAGE_TYPE_REVOCATION_QUERY, GNUNET_MESSAGE_TYPE_REVOCATION_QUERY_RESPONSE, GNUNET_MQ_handler_end, GNUNET_MQ_hd_fixed_size, GNUNET_MQ_msg, GNUNET_MQ_send(), GNUNET_new, key, QueryMessage::key, GNUNET_REVOCATION_Query::mq, q, query_mq_error_handler(), and QueryMessage::reserved.

Referenced by recursive_gns_resolution_revocation(), and run().

 {
   struct GNUNET_REVOCATION_Query *q
     = GNUNET_new(struct GNUNET_REVOCATION_Query);
   struct GNUNET_MQ_MessageHandler handlers[] = {
     GNUNET_MQ_hd_fixed_size(revocation_query_response,
                             GNUNET_MESSAGE_TYPE_REVOCATION_QUERY_RESPONSE,
                             struct QueryResponseMessage,
                             q),
     GNUNET_MQ_handler_end()
   };
   struct QueryMessage *qm;
   struct GNUNET_MQ_Envelope *env;
 
   q->mq = GNUNET_CLIENT_connect(cfg,
                                 "revocation",
                                 handlers,
                                 &query_mq_error_handler,
                                 q);
   if (NULL == q->mq)
     {
       GNUNET_free(q);
       return NULL;
     }
   q->func = func;
   q->func_cls = func_cls;
   env = GNUNET_MQ_msg(qm,
                       GNUNET_MESSAGE_TYPE_REVOCATION_QUERY);
   qm->reserved = htonl(0);
   qm->key = *key;
   GNUNET_MQ_send(q->mq,
                  env);
   return q;
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_query_cancel()

void GNUNET_REVOCATION_query_cancel ( struct GNUNET_REVOCATION_Query * q )

Cancel key revocation check.

Parameters

q	query to cancel

Definition at line 153 of file revocation_api.c.

References GNUNET_free, GNUNET_MQ_destroy(), and GNUNET_REVOCATION_Query::mq.

Referenced by do_shutdown(), GNS_resolver_lookup_cancel(), handle_revocation_query_response(), and query_mq_error_handler().

 {
   if (NULL != q->mq)
     {
       GNUNET_MQ_destroy(q->mq);
       q->mq = NULL;
     }
   GNUNET_free(q);
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_revoke()

struct GNUNET_REVOCATION_Handle* GNUNET_REVOCATION_revoke	(	const struct GNUNET_CONFIGURATION_Handle *	cfg,
		const struct GNUNET_CRYPTO_EcdsaPublicKey *	key,
		const struct GNUNET_CRYPTO_EcdsaSignature *	sig,
		uint64_t	pow,
		GNUNET_REVOCATION_Callback	func,
		void *	func_cls
	)

Perform key revocation.

Parameters

cfg	the configuration to use
key	public key of the key to revoke
sig	signature to use on the revocation (should have been created using GNUNET_REVOCATION_sign_revocation).
pow	proof of work to use (should have been created by iteratively calling GNUNET_REVOCATION_check_pow)
func	funtion to call with the result of the check (called with `is_valid` being GNUNET_NO if the revocation worked).
func_cls	closure to pass to func

Returns: handle to use in GNUNET_REVOCATION_revoke_cancel to stop REVOCATION from invoking the callback

Definition at line 245 of file revocation_api.c.

References env, GNUNET_REVOCATION_Query::func, GNUNET_REVOCATION_Handle::func, GNUNET_REVOCATION_Query::func_cls, GNUNET_REVOCATION_Handle::func_cls, GNUNET_break, GNUNET_CLIENT_connect(), GNUNET_CONFIGURATION_get_value_number(), GNUNET_free, GNUNET_MESSAGE_TYPE_REVOCATION_REVOKE, GNUNET_MESSAGE_TYPE_REVOCATION_REVOKE_RESPONSE, GNUNET_MQ_handler_end, GNUNET_MQ_hd_fixed_size, GNUNET_MQ_msg, GNUNET_MQ_send(), GNUNET_new, GNUNET_OK, GNUNET_REVOCATION_check_pow(), GNUNET_SIGNATURE_PURPOSE_REVOCATION, GNUNET_YES, h, key, matching_bits, GNUNET_REVOCATION_Handle::mq, RevokeMessage::proof_of_work, RevokeMessage::public_key, RevokeMessage::purpose, GNUNET_CRYPTO_EccSignaturePurpose::purpose, RevokeMessage::reserved, revocation_mq_error_handler(), RevokeMessage::signature, and GNUNET_CRYPTO_EccSignaturePurpose::size.

Referenced by perform_revocation().

 {
   struct GNUNET_REVOCATION_Handle *h
     = GNUNET_new(struct GNUNET_REVOCATION_Handle);
   struct GNUNET_MQ_MessageHandler handlers[] = {
     GNUNET_MQ_hd_fixed_size(revocation_response,
                             GNUNET_MESSAGE_TYPE_REVOCATION_REVOKE_RESPONSE,
                             struct RevocationResponseMessage,
                             h),
     GNUNET_MQ_handler_end()
   };
   unsigned long long matching_bits;
   struct RevokeMessage *rm;
   struct GNUNET_MQ_Envelope *env;
 
   if ((GNUNET_OK ==
        GNUNET_CONFIGURATION_get_value_number(cfg,
                                              "REVOCATION",
                                              "WORKBITS",
                                              &matching_bits)) &&
       (GNUNET_YES !=
        GNUNET_REVOCATION_check_pow(key,
                                    pow,
                                    (unsigned int)matching_bits)))
     {
       GNUNET_break(0);
       GNUNET_free(h);
       return NULL;
     }
 
   h->mq = GNUNET_CLIENT_connect(cfg,
                                 "revocation",
                                 handlers,
                                 &revocation_mq_error_handler,
                                 h);
   if (NULL == h->mq)
     {
       GNUNET_free(h);
       return NULL;
     }
   h->func = func;
   h->func_cls = func_cls;
   env = GNUNET_MQ_msg(rm,
                       GNUNET_MESSAGE_TYPE_REVOCATION_REVOKE);
   rm->reserved = htonl(0);
   rm->proof_of_work = pow;
   rm->purpose.purpose = htonl(GNUNET_SIGNATURE_PURPOSE_REVOCATION);
   rm->purpose.size = htonl(sizeof(struct GNUNET_CRYPTO_EccSignaturePurpose) +
                            sizeof(struct GNUNET_CRYPTO_EcdsaPublicKey));
   rm->public_key = *key;
   rm->signature = *sig;
   GNUNET_MQ_send(h->mq,
                  env);
   return h;
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_revoke_cancel()

void GNUNET_REVOCATION_revoke_cancel ( struct GNUNET_REVOCATION_Handle * h )

Cancel key revocation.

Parameters

h	operation to cancel

Definition at line 313 of file revocation_api.c.

References GNUNET_free, GNUNET_MQ_destroy(), and GNUNET_REVOCATION_Handle::mq.

Referenced by do_shutdown(), handle_revocation_response(), and revocation_mq_error_handler().

 {
   if (NULL != h->mq)
     {
       GNUNET_MQ_destroy(h->mq);
       h->mq = NULL;
     }
   GNUNET_free(h);
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_check_pow()

int GNUNET_REVOCATION_check_pow	(	const struct GNUNET_CRYPTO_EcdsaPublicKey *	key,
		uint64_t	pow,
		unsigned int	matching_bits
	)

Check if the given proof-of-work value would be acceptable for revoking the given key.

Parameters

key	key to check for
pow	proof of work value
matching_bits	how many bits must match (configuration)

Returns: GNUNET_YES if the pow is acceptable, GNUNET_NO if not

Definition at line 375 of file revocation_api.c.

References buf, count_leading_zeroes(), GNUNET_memcpy, GNUNET_NO, GNUNET_YES, and pow_hash().

Referenced by block_plugin_revocation_evaluate(), calculate_pow(), ego_callback(), GNUNET_REVOCATION_revoke(), run(), and verify_revoke_message().

 {
   char buf[sizeof(struct GNUNET_CRYPTO_EcdsaPublicKey) +
            sizeof(pow)] GNUNET_ALIGN;
   struct GNUNET_HashCode result;
 
   GNUNET_memcpy(buf, &pow, sizeof(pow));
   GNUNET_memcpy(&buf[sizeof(pow)], key,
                 sizeof(struct GNUNET_CRYPTO_EcdsaPublicKey));
   pow_hash(buf, sizeof(buf), &result);
   return (count_leading_zeroes(&result) >=
           matching_bits) ? GNUNET_YES : GNUNET_NO;
 }

Here is the call graph for this function:

Here is the caller graph for this function:

◆ GNUNET_REVOCATION_sign_revocation()

void GNUNET_REVOCATION_sign_revocation	(	const struct GNUNET_CRYPTO_EcdsaPrivateKey *	key,
		struct GNUNET_CRYPTO_EcdsaSignature *	sig
	)

Create a revocation signature.

Parameters

key	private key of the key to revoke
sig	where to write the revocation signature

Definition at line 399 of file revocation_api.c.

References GNUNET_assert, GNUNET_CRYPTO_ecdsa_key_get_public(), GNUNET_CRYPTO_ecdsa_sign(), GNUNET_OK, GNUNET_SIGNATURE_PURPOSE_REVOCATION, RevokeMessage::public_key, RevokeMessage::purpose, GNUNET_CRYPTO_EccSignaturePurpose::purpose, and GNUNET_CRYPTO_EccSignaturePurpose::size.

Referenced by ego_callback().

 {
   struct RevokeMessage rm;
 
   rm.purpose.purpose = htonl(GNUNET_SIGNATURE_PURPOSE_REVOCATION);
   rm.purpose.size = htonl(sizeof(struct GNUNET_CRYPTO_EccSignaturePurpose) +
                           sizeof(struct GNUNET_CRYPTO_EcdsaPublicKey));
   GNUNET_CRYPTO_ecdsa_key_get_public(key, &rm.public_key);
   GNUNET_assert(GNUNET_OK ==
                 GNUNET_CRYPTO_ecdsa_sign(key,
                                          &rm.purpose,
                                          sig));
 }

Here is the call graph for this function:

Here is the caller graph for this function:

Macros

Typedefs

Functions

Detailed Description

Macro Definition Documentation

◆ GNUNET_REVOCATION_VERSION

Typedef Documentation

◆ GNUNET_REVOCATION_Callback

Function Documentation

◆ GNUNET_REVOCATION_query()

◆ GNUNET_REVOCATION_query_cancel()

◆ GNUNET_REVOCATION_revoke()

◆ GNUNET_REVOCATION_revoke_cancel()

◆ GNUNET_REVOCATION_check_pow()

◆ GNUNET_REVOCATION_sign_revocation()