GNUnet debian-0.24.3-29-g453fda2cf
 
Loading...
Searching...
No Matches
Macros | Functions
crypto_ecc_setup.c File Reference

helper function for easy EdDSA key setup More...

#include "platform.h"
#include <gcrypt.h>
#include "gnunet_util_lib.h"
Include dependency graph for crypto_ecc_setup.c:

Go to the source code of this file.

Macros

#define LOG(kind, ...)   GNUNET_log_from (kind, "util-crypto-ecc", __VA_ARGS__)
 
#define LOG_STRERROR(kind, syscall)    GNUNET_log_from_strerror (kind, "util-crypto-ecc", syscall)
 
#define LOG_STRERROR_FILE(kind, syscall, filename)    GNUNET_log_from_strerror_file (kind, "util-crypto-ecc", syscall, filename)
 
#define LOG_GCRY(level, cmd, rc)
 Log an error message at log-level 'level' that indicates a failure of the command 'cmd' with the message given by gcry_strerror(rc).
 

Functions

static enum GNUNET_GenericReturnValue read_from_file (const char *filename, void *buf, size_t buf_size)
 Read file to buf.
 
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_eddsa_key_from_file (const char *filename, int do_create, struct GNUNET_CRYPTO_EddsaPrivateKey *pkey)
 Create a new private key by reading it from a file.
 
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_ecdsa_key_from_file (const char *filename, int do_create, struct GNUNET_CRYPTO_EcdsaPrivateKey *pkey)
 Create a new private key by reading it from a file.
 
struct GNUNET_CRYPTO_EddsaPrivateKeyGNUNET_CRYPTO_eddsa_key_create_from_configuration (const struct GNUNET_CONFIGURATION_Handle *cfg)
 Create a new private key by reading our peer's key from the file specified in the configuration.
 
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_get_peer_identity (const struct GNUNET_CONFIGURATION_Handle *cfg, struct GNUNET_PeerIdentity *dst)
 Retrieve the identity of the host's peer.
 
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_sign_by_peer_identity (const struct GNUNET_CONFIGURATION_Handle *cfg, const struct GNUNET_CRYPTO_EccSignaturePurpose *purpose, struct GNUNET_CRYPTO_EddsaSignature *sig)
 Sign a given block with a specific purpose using the host's peer identity.
 
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_verify_peer_identity (uint32_t purpose, const struct GNUNET_CRYPTO_EccSignaturePurpose *validate, const struct GNUNET_CRYPTO_EddsaSignature *sig, const struct GNUNET_PeerIdentity *identity)
 Verify a given signature with a peer's identity.
 

Detailed Description

helper function for easy EdDSA key setup

Author
Christian Grothoff

Definition in file crypto_ecc_setup.c.

Macro Definition Documentation

◆ LOG

#define LOG (   kind,
  ... 
)    GNUNET_log_from (kind, "util-crypto-ecc", __VA_ARGS__)

Definition at line 31 of file crypto_ecc_setup.c.

◆ LOG_STRERROR

#define LOG_STRERROR (   kind,
  syscall 
)     GNUNET_log_from_strerror (kind, "util-crypto-ecc", syscall)

Definition at line 33 of file crypto_ecc_setup.c.

45 { \
46 LOG (level, \
47 _ ("`%s' failed at %s:%d with error: %s\n"), \
48 cmd, \
49 __FILE__, \
50 __LINE__, \
51 gcry_strerror (rc)); \
52 } while (0)
53
54
64static enum GNUNET_GenericReturnValue
65read_from_file (const char *filename,
66 void *buf,
67 size_t buf_size)
68{
69 int fd;
70 struct stat sb;
71
72 fd = open (filename,
73 O_RDONLY);
74 if (-1 == fd)
75 {
76 memset (buf,
77 0,
78 buf_size);
79 return GNUNET_SYSERR;
80 }
81 if (0 != fstat (fd,
82 &sb))
83 {
84 GNUNET_log_strerror_file (GNUNET_ERROR_TYPE_WARNING,
85 "stat",
86 filename);
87 GNUNET_assert (0 == close (fd));
88 memset (buf,
89 0,
90 buf_size);
91 return GNUNET_SYSERR;
92 }
93 if (sb.st_size != buf_size)
94 {
95 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
96 "File `%s' has wrong size (%llu), expected %llu bytes\n",
97 filename,
98 (unsigned long long) sb.st_size,
99 (unsigned long long) buf_size);
100 GNUNET_assert (0 == close (fd));
101 memset (buf,
102 0,
103 buf_size);
104 return GNUNET_SYSERR;
105 }
106 if (buf_size !=
107 read (fd,
108 buf,
109 buf_size))
110 {
111 GNUNET_log_strerror_file (GNUNET_ERROR_TYPE_WARNING,
112 "read",
113 filename);
114 GNUNET_assert (0 == close (fd));
115 memset (buf,
116 0,
117 buf_size);
118 return GNUNET_SYSERR;
119 }
120 GNUNET_assert (0 == close (fd));
121 return GNUNET_OK;
122}
123
124
142enum GNUNET_GenericReturnValue
143GNUNET_CRYPTO_eddsa_key_from_file (const char *filename,
144 int do_create,
145 struct GNUNET_CRYPTO_EddsaPrivateKey *pkey)
146{
147 enum GNUNET_GenericReturnValue ret;
148
149 if (GNUNET_OK ==
150 read_from_file (filename,
151 pkey,
152 sizeof (*pkey)))
153 {
154 /* file existed, report that we didn't create it... */
155 return (do_create) ? GNUNET_NO : GNUNET_OK;
156 }
157 else if (! do_create)
158 {
159 return GNUNET_SYSERR;
160 }
161
162 GNUNET_CRYPTO_eddsa_key_create (pkey);
163 ret = GNUNET_DISK_fn_write (filename,
164 pkey,
165 sizeof (*pkey),
166 GNUNET_DISK_PERM_USER_READ);
167 if ( (GNUNET_OK == ret) ||
168 (GNUNET_SYSERR == ret) )
169 return ret;
170 /* maybe another process succeeded in the meantime, try reading one more time */
171 if (GNUNET_OK ==
172 read_from_file (filename,
173 pkey,
174 sizeof (*pkey)))
175 {
176 /* file existed, report that *we* didn't create it... */
177 return GNUNET_NO;
178 }
179 /* give up */
180 return GNUNET_SYSERR;
181}
182
183
199enum GNUNET_GenericReturnValue
200GNUNET_CRYPTO_ecdsa_key_from_file (const char *filename,
201 int do_create,
202 struct GNUNET_CRYPTO_EcdsaPrivateKey *pkey)
203{
204 if (GNUNET_OK ==
205 read_from_file (filename,
206 pkey,
207 sizeof (*pkey)))
208 {
209 /* file existed, report that we didn't create it... */
210 return (do_create) ? GNUNET_NO : GNUNET_OK;
211 }
212 else if (! do_create)
213 {
214 return GNUNET_SYSERR;
215 }
216 GNUNET_CRYPTO_ecdsa_key_create (pkey);
217 if (GNUNET_OK ==
218 GNUNET_DISK_fn_write (filename,
219 pkey,
220 sizeof (*pkey),
221 GNUNET_DISK_PERM_USER_READ))
222 return GNUNET_OK;
223 /* maybe another process succeeded in the meantime, try reading one more time */
224 if (GNUNET_OK ==
225 read_from_file (filename,
226 pkey,
227 sizeof (*pkey)))
228 {
229 /* file existed, report that *we* didn't create it... */
230 return GNUNET_NO;
231 }
232 /* give up */
233 return GNUNET_SYSERR;
234}
235
236
245struct GNUNET_CRYPTO_EddsaPrivateKey *
246GNUNET_CRYPTO_eddsa_key_create_from_configuration (
247 const struct GNUNET_CONFIGURATION_Handle *cfg)
248{
249 struct GNUNET_CRYPTO_EddsaPrivateKey *priv;
250 char *fn;
251
252 if (GNUNET_OK !=
253 GNUNET_CONFIGURATION_get_value_filename (cfg,
254 "PEER",
255 "PRIVATE_KEY",
256 &fn))
257 return NULL;
258 priv = GNUNET_new (struct GNUNET_CRYPTO_EddsaPrivateKey);
259 if (GNUNET_SYSERR == GNUNET_CRYPTO_eddsa_key_from_file (fn,
260 GNUNET_YES,
261 priv))
262 {
263 GNUNET_free (fn);
264 GNUNET_free (priv);
265 return NULL;
266 }
267 GNUNET_free (fn);
268 return priv;
269}
270
271
272enum GNUNET_GenericReturnValue
273GNUNET_CRYPTO_get_peer_identity (const struct GNUNET_CONFIGURATION_Handle *cfg,
274 struct GNUNET_PeerIdentity *dst)
275{
276 struct GNUNET_CRYPTO_EddsaPrivateKey *priv;
277
278 if (NULL == (priv = GNUNET_CRYPTO_eddsa_key_create_from_configuration (cfg)))
279 {
280 GNUNET_log (GNUNET_ERROR_TYPE_ERROR,
281 _ ("Could not load peer's private key\n"));
282 return GNUNET_SYSERR;
283 }
284 GNUNET_CRYPTO_eddsa_key_get_public (priv,
285 &dst->public_key);
286 GNUNET_free (priv);
287 return GNUNET_OK;
288}
289
290
291enum GNUNET_GenericReturnValue
292GNUNET_CRYPTO_sign_by_peer_identity (const struct
293 GNUNET_CONFIGURATION_Handle *cfg,
294 const struct
295 GNUNET_CRYPTO_EccSignaturePurpose *purpose,
296 struct GNUNET_CRYPTO_EddsaSignature *sig)
297{
298 struct GNUNET_CRYPTO_EddsaPrivateKey *priv;
299 enum GNUNET_GenericReturnValue result;
300
301 if (NULL == (priv = GNUNET_CRYPTO_eddsa_key_create_from_configuration (cfg)))
302 {
303 GNUNET_log (GNUNET_ERROR_TYPE_ERROR,
304 _ ("Could not load peer's private key\n"));
305 return GNUNET_SYSERR;
306 }
307
308 result = GNUNET_CRYPTO_eddsa_sign_ (priv, purpose, sig);
309 GNUNET_CRYPTO_eddsa_key_clear (priv);
310 return result;
311}
312
313
314enum GNUNET_GenericReturnValue
315GNUNET_CRYPTO_verify_peer_identity (uint32_t purpose,
316 const struct
317 GNUNET_CRYPTO_EccSignaturePurpose *validate,
318 const struct
319 GNUNET_CRYPTO_EddsaSignature *sig,
320 const struct GNUNET_PeerIdentity *identity)
321{
322 return GNUNET_CRYPTO_eddsa_verify_ (purpose, validate, sig,
323 &identity->public_key);
324}
325
326
350/* end of crypto_ecc_setup.c */
read_from_file
static enum GNUNET_GenericReturnValue read_from_file(const char *filename, void *buf, size_t buf_size)
Read file to buf.
Definition crypto_ecc_setup.c:66
ret
static int ret
Final status code.
Definition gnunet-arm.c:93
cfg
static struct GNUNET_CONFIGURATION_Handle * cfg
Our configuration.
Definition gnunet-arm.c:108
filename
static char * filename
Definition gnunet-download.c:52
pkey
static char * pkey
Public key of the zone to look in, in ASCII.
Definition gnunet-namecache.c:58
identity
static struct GNUNET_IDENTITY_Handle * identity
Which namespace do we publish to? NULL if we do not publish to a namespace.
Definition gnunet-publish.c:142
result
static int result
Global testing status.
Definition gnunet-regex-profiler.c:240
GNUNET_CONFIGURATION_get_value_filename
enum GNUNET_GenericReturnValue GNUNET_CONFIGURATION_get_value_filename(const struct GNUNET_CONFIGURATION_Handle *cfg, const char *section, const char *option, char **value)
Get a configuration value that should be the name of a file or directory.
Definition configuration.c:2225
GNUNET_CRYPTO_sign_by_peer_identity
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_sign_by_peer_identity(const struct GNUNET_CONFIGURATION_Handle *cfg, const struct GNUNET_CRYPTO_EccSignaturePurpose *purpose, struct GNUNET_CRYPTO_EddsaSignature *sig)
Sign a given block with a specific purpose using the host's peer identity.
Definition crypto_ecc_setup.c:293
GNUNET_CRYPTO_ecdsa_key_from_file
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_ecdsa_key_from_file(const char *filename, int do_create, struct GNUNET_CRYPTO_EcdsaPrivateKey *pkey)
Create a new private key by reading it from a file.
Definition crypto_ecc_setup.c:201
GNUNET_CRYPTO_eddsa_key_from_file
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_eddsa_key_from_file(const char *filename, int do_create, struct GNUNET_CRYPTO_EddsaPrivateKey *pkey)
Create a new private key by reading it from a file.
Definition crypto_ecc_setup.c:144
GNUNET_CRYPTO_eddsa_key_get_public
void GNUNET_CRYPTO_eddsa_key_get_public(const struct GNUNET_CRYPTO_EddsaPrivateKey *priv, struct GNUNET_CRYPTO_EddsaPublicKey *pub)
Extract the public key for the given private key.
Definition crypto_ecc.c:201
GNUNET_CRYPTO_eddsa_key_clear
void GNUNET_CRYPTO_eddsa_key_clear(struct GNUNET_CRYPTO_EddsaPrivateKey *pk)
Clear memory that was used to store a private key.
Definition crypto_ecc.c:447
GNUNET_CRYPTO_eddsa_key_create
void GNUNET_CRYPTO_eddsa_key_create(struct GNUNET_CRYPTO_EddsaPrivateKey *pk)
Create a new private key.
Definition crypto_ecc.c:480
GNUNET_CRYPTO_ecdsa_key_create
void GNUNET_CRYPTO_ecdsa_key_create(struct GNUNET_CRYPTO_EcdsaPrivateKey *pk)
Create a new private key.
Definition crypto_ecc.c:465
GNUNET_CRYPTO_eddsa_sign_
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_eddsa_sign_(const struct GNUNET_CRYPTO_EddsaPrivateKey *priv, const struct GNUNET_CRYPTO_EccSignaturePurpose *purpose, struct GNUNET_CRYPTO_EddsaSignature *sig)
EdDSA sign a given block.
Definition crypto_ecc.c:625
GNUNET_CRYPTO_eddsa_verify_
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_eddsa_verify_(uint32_t purpose, const struct GNUNET_CRYPTO_EccSignaturePurpose *validate, const struct GNUNET_CRYPTO_EddsaSignature *sig, const struct GNUNET_CRYPTO_EddsaPublicKey *pub)
Verify EdDSA signature.
Definition crypto_ecc.c:708
GNUNET_CRYPTO_get_peer_identity
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_get_peer_identity(const struct GNUNET_CONFIGURATION_Handle *cfg, struct GNUNET_PeerIdentity *dst)
Retrieve the identity of the host's peer.
Definition crypto_ecc_setup.c:274
GNUNET_CRYPTO_verify_peer_identity
enum GNUNET_GenericReturnValue GNUNET_CRYPTO_verify_peer_identity(uint32_t purpose, const struct GNUNET_CRYPTO_EccSignaturePurpose *validate, const struct GNUNET_CRYPTO_EddsaSignature *sig, const struct GNUNET_PeerIdentity *identity)
Verify a given signature with a peer's identity.
Definition crypto_ecc_setup.c:316
GNUNET_CRYPTO_eddsa_key_create_from_configuration
struct GNUNET_CRYPTO_EddsaPrivateKey * GNUNET_CRYPTO_eddsa_key_create_from_configuration(const struct GNUNET_CONFIGURATION_Handle *cfg)
Create a new private key by reading our peer's key from the file specified in the configuration.
Definition crypto_ecc_setup.c:247
GNUNET_DISK_fn_write
enum GNUNET_GenericReturnValue GNUNET_DISK_fn_write(const char *fn, const void *buf, size_t buf_size, enum GNUNET_DISK_AccessPermissions mode)
Write a buffer to a file atomically.
Definition disk.c:750
GNUNET_DISK_PERM_USER_READ
@ GNUNET_DISK_PERM_USER_READ
Owner can read.
Definition gnunet_disk_lib.h:174
GNUNET_log
#define GNUNET_log(kind,...)
Definition gnunet_common.h:548
GNUNET_GenericReturnValue
GNUNET_GenericReturnValue
Named constants for return values.
Definition gnunet_common.h:108
GNUNET_OK
@ GNUNET_OK
Definition gnunet_common.h:111
GNUNET_YES
@ GNUNET_YES
Definition gnunet_common.h:113
GNUNET_NO
@ GNUNET_NO
Definition gnunet_common.h:110
GNUNET_SYSERR
@ GNUNET_SYSERR
Definition gnunet_common.h:109
GNUNET_assert
#define GNUNET_assert(cond)
Use this for fatal errors that cannot be handled.
Definition gnunet_common.h:957
GNUNET_log_strerror_file
#define GNUNET_log_strerror_file(level, cmd, filename)
Log an error message at log-level 'level' that indicates a failure of the command 'cmd' with the mess...
Definition gnunet_common.h:1123
GNUNET_ERROR_TYPE_WARNING
@ GNUNET_ERROR_TYPE_WARNING
Definition gnunet_common.h:415
GNUNET_ERROR_TYPE_ERROR
@ GNUNET_ERROR_TYPE_ERROR
Definition gnunet_common.h:414
GNUNET_new
#define GNUNET_new(type)
Allocate a struct or union of the given type.
Definition gnunet_common.h:1237
GNUNET_free
#define GNUNET_free(ptr)
Wrapper around free.
Definition gnunet_common.h:1412
_
#define _(String)
GNU gettext support macro.
Definition platform.h:179
GNUNET_CONFIGURATION_Handle
configuration data
Definition configuration.c:149
GNUNET_CRYPTO_EccSignaturePurpose
header of what an ECC signature signs this must be followed by "size - 8" bytes of the actual signed ...
Definition gnunet_crypto_lib.h:141
GNUNET_CRYPTO_EcdsaPrivateKey
Private ECC key encoded for transmission.
Definition gnunet_crypto_lib.h:266
GNUNET_CRYPTO_EddsaPrivateKey
Private ECC key encoded for transmission.
Definition gnunet_crypto_lib.h:278
GNUNET_CRYPTO_EddsaSignature
an ECC signature using EdDSA.
Definition gnunet_crypto_lib.h:164
GNUNET_PeerIdentity
The identity of the host (wraps the signing key of the peer).
Definition gnunet_crypto_lib.h:229
GNUNET_PeerIdentity::public_key
struct GNUNET_CRYPTO_EddsaPublicKey public_key
Definition gnunet_crypto_lib.h:230

◆ LOG_STRERROR_FILE

#define LOG_STRERROR_FILE (   kind,
  syscall,
  filename 
)     GNUNET_log_from_strerror_file (kind, "util-crypto-ecc", syscall, filename)

Definition at line 36 of file crypto_ecc_setup.c.

◆ LOG_GCRY

#define LOG_GCRY (   level,
  cmd,
  rc 
)
Value:
do \
{ \
LOG (level, \
_ ("`%s' failed at %s:%d with error: %s\n"), \
cmd, \
__FILE__, \
__LINE__, \
gcry_strerror (rc)); \
} while (0)

Log an error message at log-level 'level' that indicates a failure of the command 'cmd' with the message given by gcry_strerror(rc).

Definition at line 44 of file crypto_ecc_setup.c.

46 { \
47 LOG (level, \
48 _ ("`%s' failed at %s:%d with error: %s\n"), \
49 cmd, \
50 __FILE__, \
51 __LINE__, \
52 gcry_strerror (rc)); \
53 } while (0)

Function Documentation

◆ read_from_file()

static enum GNUNET_GenericReturnValue read_from_file ( const char *  filename,
void *  buf,
size_t  buf_size 
)
static

Read file to buf.

Fails if the file does not exist or does not have precisely buf_size bytes.

Parameters
filenamefile to read
[out]bufwhere to write the file contents
buf_sizenumber of bytes in buf
Returns
GNUNET_OK on success

Definition at line 66 of file crypto_ecc_setup.c.

69{
70 int fd;
71 struct stat sb;
72
73 fd = open (filename,
74 O_RDONLY);
75 if (-1 == fd)
76 {
77 memset (buf,
78 0,
79 buf_size);
80 return GNUNET_SYSERR;
81 }
82 if (0 != fstat (fd,
83 &sb))
84 {
85 GNUNET_log_strerror_file (GNUNET_ERROR_TYPE_WARNING,
86 "stat",
87 filename);
88 GNUNET_assert (0 == close (fd));
89 memset (buf,
90 0,
91 buf_size);
92 return GNUNET_SYSERR;
93 }
94 if (sb.st_size != buf_size)
95 {
96 GNUNET_log (GNUNET_ERROR_TYPE_WARNING,
97 "File `%s' has wrong size (%llu), expected %llu bytes\n",
98 filename,
99 (unsigned long long) sb.st_size,
100 (unsigned long long) buf_size);
101 GNUNET_assert (0 == close (fd));
102 memset (buf,
103 0,
104 buf_size);
105 return GNUNET_SYSERR;
106 }
107 if (buf_size !=
108 read (fd,
109 buf,
110 buf_size))
111 {
112 GNUNET_log_strerror_file (GNUNET_ERROR_TYPE_WARNING,
113 "read",
114 filename);
115 GNUNET_assert (0 == close (fd));
116 memset (buf,
117 0,
118 buf_size);
119 return GNUNET_SYSERR;
120 }
121 GNUNET_assert (0 == close (fd));
122 return GNUNET_OK;
123}

References filename, GNUNET_assert, GNUNET_ERROR_TYPE_WARNING, GNUNET_log, GNUNET_log_strerror_file, GNUNET_OK, and GNUNET_SYSERR.

Referenced by GNUNET_CRYPTO_ecdsa_key_from_file(), and GNUNET_CRYPTO_eddsa_key_from_file().

Here is the caller graph for this function: