GNUnet  0.10.x
gnunet-service-scalarproduct-ecc_alice.c
Go to the documentation of this file.
1 /*
2  This file is part of GNUnet.
3  Copyright (C) 2013-2017 GNUnet e.V.
4 
5  GNUnet is free software: you can redistribute it and/or modify it
6  under the terms of the GNU Affero General Public License as published
7  by the Free Software Foundation, either version 3 of the License,
8  or (at your option) any later version.
9 
10  GNUnet is distributed in the hope that it will be useful, but
11  WITHOUT ANY WARRANTY; without even the implied warranty of
12  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13  Affero General Public License for more details.
14 
15  You should have received a copy of the GNU Affero General Public License
16  along with this program. If not, see <http://www.gnu.org/licenses/>.
17 
18  SPDX-License-Identifier: AGPL3.0-or-later
19  */
26 #include "platform.h"
27 #include <limits.h>
28 #include <gcrypt.h>
29 #include "gnunet_util_lib.h"
30 #include "gnunet_core_service.h"
31 #include "gnunet_cadet_service.h"
32 #include "gnunet_applications.h"
33 #include "gnunet_protocols.h"
35 #include "gnunet_set_service.h"
36 #include "scalarproduct.h"
38 
39 #define LOG(kind, ...) \
40  GNUNET_log_from(kind, "scalarproduct-alice", __VA_ARGS__)
41 
47 #define MAX_RESULT (1024 * 1024)
48 
55 #define MAX_RAM (1024)
56 
60 struct MpiElement {
66  const struct GNUNET_HashCode *key;
67 
71  gcry_mpi_t value;
72 };
73 
74 
84 
89 
94 
99 
104 
110 
116 
122 
127 
132 
137 
141  gcry_mpi_t product;
142 
147  uint32_t total;
148 
155 
161 
169 
175 };
176 
177 
181 static const struct GNUNET_CONFIGURATION_Handle *cfg;
182 
187 
191 static gcry_mpi_t my_privkey;
192 
196 static gcry_mpi_t my_privkey_inv;
197 
202 
203 
212 static int
213 free_element_cb(void *cls, const struct GNUNET_HashCode *key, void *value)
214 {
216 
217  GNUNET_free(e);
218  return GNUNET_OK;
219 }
220 
221 
227 static void
229 {
230  unsigned int i;
231 
232  if (GNUNET_YES == s->in_destroy)
233  return;
234  s->in_destroy = GNUNET_YES;
235  if (NULL != s->client)
236  {
237  struct GNUNET_SERVICE_Client *c = s->client;
238 
239  s->client = NULL;
241  }
242  if (NULL != s->channel)
243  {
245  s->channel = NULL;
246  }
247  if (NULL != s->intersected_elements)
248  {
251  s);
253  s->intersected_elements = NULL;
254  }
255  if (NULL != s->intersection_listen)
256  {
258  s->intersection_listen = NULL;
259  }
260  if (NULL != s->intersection_op)
261  {
262  LOG(GNUNET_ERROR_TYPE_DEBUG, "Set intersection, op still ongoing!\n");
264  s->intersection_op = NULL;
265  }
266  if (NULL != s->intersection_set)
267  {
269  s->intersection_set = NULL;
270  }
271  if (NULL != s->sorted_elements)
272  {
273  for (i = 0; i < s->used_element_count; i++)
274  gcry_mpi_release(s->sorted_elements[i].value);
276  s->sorted_elements = NULL;
277  }
278  if (NULL != s->product)
279  {
280  gcry_mpi_release(s->product);
281  s->product = NULL;
282  }
283  GNUNET_free(s);
284 }
285 
286 
293 static void
295 {
296  struct ClientResponseMessage *msg;
297  struct GNUNET_MQ_Envelope *e;
298 
299  if (NULL == session->client_mq)
300  return; /* no client left to be notified */
301  GNUNET_log(
303  "Sending session-end notification with status %d to client for session %s\n",
304  session->status,
305  GNUNET_h2s(&session->session_id));
307  msg->product_length = htonl(0);
308  msg->status = htonl(session->status);
309  GNUNET_MQ_send(session->client_mq, e);
310 }
311 
312 
319 static void
321 {
322  struct ClientResponseMessage *msg;
323  struct GNUNET_MQ_Envelope *e;
324  unsigned char *product_exported = NULL;
325  size_t product_length = 0;
326  int32_t range;
327  gcry_error_t rc;
328  int sign;
329  gcry_mpi_t value;
330 
331  if (NULL == s->product)
332  {
333  GNUNET_break(0);
335  return;
336  }
337  value = gcry_mpi_new(0);
338  sign = gcry_mpi_cmp_ui(s->product, 0);
339  if (0 > sign)
340  {
341  range = -1;
342  gcry_mpi_sub(value, value, s->product);
343  }
344  else if (0 < sign)
345  {
346  range = 1;
347  gcry_mpi_add(value, value, s->product);
348  }
349  else
350  {
351  /* result is exactly zero */
352  range = 0;
353  }
354  gcry_mpi_release(s->product);
355  s->product = NULL;
356 
357  if ((0 != range) && (0 != (rc = gcry_mpi_aprint(GCRYMPI_FMT_STD,
358  &product_exported,
359  &product_length,
360  value))))
361  {
362  LOG_GCRY(GNUNET_ERROR_TYPE_ERROR, "gcry_mpi_scan", rc);
364  return;
365  }
366  gcry_mpi_release(value);
367  e = GNUNET_MQ_msg_extra(msg,
368  product_length,
371  msg->range = htonl(range);
372  msg->product_length = htonl(product_length);
373  if (NULL != product_exported)
374  {
375  GNUNET_memcpy(&msg[1], product_exported, product_length);
376  GNUNET_free(product_exported);
377  }
378  GNUNET_MQ_send(s->client_mq, e);
380  "Sent result to client, session %s has ended!\n",
381  GNUNET_h2s(&s->session_id));
382 }
383 
384 
394 static void
395 cb_channel_destruction(void *cls, const struct GNUNET_CADET_Channel *channel)
396 {
397  struct AliceServiceSession *s = cls;
398 
400  "Peer disconnected, terminating session %s with peer %s\n",
401  GNUNET_h2s(&s->session_id),
402  GNUNET_i2s(&s->peer));
403  s->channel = NULL;
405  {
406  /* We didn't get an answer yet, fail with error */
409  }
410 }
411 
412 
421 static gcry_mpi_t
423  gcry_mpi_point_t prod_g_i_b_i,
424  gcry_mpi_point_t prod_h_i_b_i)
425 {
426  gcry_mpi_point_t g_i_b_i_a_inv;
427  gcry_mpi_point_t g_ai_bi;
428  int ai_bi;
429  gcry_mpi_t ret;
430 
431  g_i_b_i_a_inv =
432  GNUNET_CRYPTO_ecc_pmul_mpi(edc, prod_g_i_b_i, my_privkey_inv);
433  g_ai_bi = GNUNET_CRYPTO_ecc_add(edc, g_i_b_i_a_inv, prod_h_i_b_i);
434  gcry_mpi_point_release(g_i_b_i_a_inv);
435  ai_bi = GNUNET_CRYPTO_ecc_dlog(edc, g_ai_bi);
436  gcry_mpi_point_release(g_ai_bi);
437  if (INT_MAX == ai_bi)
438  {
439  /* result too big */
441  "Scalar product result out of range\n");
442  return NULL;
443  }
444  ret = gcry_mpi_new(0);
445  if (ai_bi > 0)
446  {
447  gcry_mpi_set_ui(ret, ai_bi);
448  }
449  else
450  {
451  gcry_mpi_set_ui(ret, -ai_bi);
452  gcry_mpi_neg(ret, ret);
453  }
454  return ret;
455 }
456 
457 
465 static void
467  const struct EccBobCryptodataMessage *msg)
468 {
469  struct AliceServiceSession *s = cls;
470  gcry_mpi_point_t prod_g_i_b_i;
471  gcry_mpi_point_t prod_h_i_b_i;
472  uint32_t contained;
473 
474  contained = ntohl(msg->contained_element_count);
475  if (2 != contained)
476  {
477  GNUNET_break_op(0);
479  return;
480  }
481  if (NULL == s->sorted_elements)
482  {
483  /* we're not ready yet, how can Bob be? */
484  GNUNET_break_op(0);
486  return;
487  }
489  {
490  /* we're not ready yet, how can Bob be? */
491  GNUNET_break_op(0);
493  return;
494  }
495 
497  "Received %u crypto values from Bob\n",
498  (unsigned int)contained);
500  prod_g_i_b_i = GNUNET_CRYPTO_ecc_bin_to_point(edc, &msg->prod_g_i_b_i);
501  prod_h_i_b_i = GNUNET_CRYPTO_ecc_bin_to_point(edc, &msg->prod_h_i_b_i);
502  s->product = compute_scalar_product(s, prod_g_i_b_i, prod_h_i_b_i);
503  gcry_mpi_point_release(prod_g_i_b_i);
504  gcry_mpi_point_release(prod_h_i_b_i);
506 }
507 
508 
517 static int
518 copy_element_cb(void *cls, const struct GNUNET_HashCode *key, void *value)
519 {
520  struct AliceServiceSession *s = cls;
522  gcry_mpi_t mval;
523  int64_t val;
524 
525  mval = gcry_mpi_new(0);
526  val = (int64_t)GNUNET_ntohll(e->value);
527  if (0 > val)
528  gcry_mpi_sub_ui(mval, mval, -val);
529  else
530  gcry_mpi_add_ui(mval, mval, val);
533  s->used_element_count++;
534  return GNUNET_OK;
535 }
536 
537 
545 static int
546 element_cmp(const void *a, const void *b)
547 {
548  const struct MpiElement *ma = a;
549  const struct MpiElement *mb = b;
550 
551  return GNUNET_CRYPTO_hash_cmp(ma->key, mb->key);
552 }
553 
554 
559 #define ELEMENT_CAPACITY \
560  ((GNUNET_CONSTANTS_MAX_CADET_MESSAGE_SIZE - 1 - \
561  sizeof(struct EccAliceCryptodataMessage)) / \
562  sizeof(struct GNUNET_CRYPTO_EccPoint))
563 
564 
571 static void
573 {
575  struct GNUNET_MQ_Envelope *e;
577  gcry_mpi_t r_ia;
578  gcry_mpi_t r_ia_ai;
579  unsigned int i;
580  unsigned int off;
581  unsigned int todo_count;
582 
585  struct MpiElement);
586  s->used_element_count = 0;
589  s);
591  "Finished intersection, %d items remain\n",
592  s->used_element_count);
593  qsort(s->sorted_elements,
595  sizeof(struct MpiElement),
596  &element_cmp);
597  off = 0;
598  while (off < s->used_element_count)
599  {
600  todo_count = s->used_element_count - off;
601  if (todo_count > ELEMENT_CAPACITY)
602  todo_count = ELEMENT_CAPACITY;
604  "Sending %u/%u crypto values to Bob\n",
605  (unsigned int)todo_count,
606  (unsigned int)s->used_element_count);
607 
608  e =
610  todo_count * 2 *
611  sizeof(struct GNUNET_CRYPTO_EccPoint),
613  msg->contained_element_count = htonl(todo_count);
614  payload = (struct GNUNET_CRYPTO_EccPoint *)&msg[1];
615  r_ia = gcry_mpi_new(0);
616  r_ia_ai = gcry_mpi_new(0);
617  for (i = off; i < off + todo_count; i++)
618  {
619  gcry_mpi_t r_i;
620  gcry_mpi_point_t g_i;
621  gcry_mpi_point_t h_i;
622 
624  g_i = GNUNET_CRYPTO_ecc_dexp_mpi(edc, r_i);
625  /* r_ia = r_i * a */
626  gcry_mpi_mul(r_ia, r_i, my_privkey);
627  gcry_mpi_release(r_i);
628  /* r_ia_ai = r_ia + a_i */
629  gcry_mpi_add(r_ia_ai, r_ia, s->sorted_elements[i].value);
630  h_i = GNUNET_CRYPTO_ecc_dexp_mpi(edc, r_ia_ai);
631  GNUNET_CRYPTO_ecc_point_to_bin(edc, g_i, &payload[(i - off) * 2]);
632  GNUNET_CRYPTO_ecc_point_to_bin(edc, h_i, &payload[(i - off) * 2 + 1]);
633  gcry_mpi_point_release(g_i);
634  gcry_mpi_point_release(h_i);
635  }
636  gcry_mpi_release(r_ia);
637  gcry_mpi_release(r_ia_ai);
638  off += todo_count;
639  GNUNET_MQ_send(s->cadet_mq, e);
640  }
641 }
642 
643 
654 static void
656  const struct GNUNET_SET_Element *element,
657  uint64_t current_size,
659 {
660  struct AliceServiceSession *s = cls;
661  struct GNUNET_SCALARPRODUCT_Element *se;
662 
663  switch (status)
664  {
666  /* this element has been removed from the set */
668  element->data);
669  GNUNET_assert(NULL != se);
671  "Intersection removed element with key %s and value %lld\n",
672  GNUNET_h2s(&se->key),
673  (long long)GNUNET_ntohll(se->value));
675  GNUNET_YES ==
677  element->data,
678  se));
679  GNUNET_free(se);
680  return;
681 
683  s->intersection_op = NULL;
684  if (NULL != s->intersection_set)
685  {
687  s->intersection_set = NULL;
688  }
690  return;
691 
693  /* unexpected for intersection */
694  GNUNET_break(0);
695  return;
696 
698  /* unhandled status code */
699  LOG(GNUNET_ERROR_TYPE_DEBUG, "Set intersection failed!\n");
700  if (NULL != s->intersection_listen)
701  {
703  s->intersection_listen = NULL;
704  }
705  s->intersection_op = NULL;
706  if (NULL != s->intersection_set)
707  {
709  s->intersection_set = NULL;
710  }
713  return;
714 
715  default:
716  GNUNET_break(0);
717  return;
718  }
719 }
720 
721 
737 static void
739  const struct GNUNET_PeerIdentity *other_peer,
740  const struct GNUNET_MessageHeader *context_msg,
741  struct GNUNET_SET_Request *request)
742 {
743  struct AliceServiceSession *s = cls;
744 
746  "Received intersection request from %s!\n",
747  GNUNET_i2s(other_peer));
748  if (0 != GNUNET_memcmp(other_peer, &s->peer))
749  {
750  GNUNET_break_op(0);
751  return;
752  }
753  s->intersection_op = GNUNET_SET_accept(request,
755  (struct GNUNET_SET_Option[]){ { 0 } },
757  s);
758  if (NULL == s->intersection_op)
759  {
760  GNUNET_break(0);
763  return;
764  }
766  {
767  GNUNET_break(0);
770  return;
771  }
772 }
773 
774 
780 static void
782 {
783  struct GNUNET_MQ_MessageHandler cadet_handlers[] =
784  { GNUNET_MQ_hd_fixed_size(bobs_cryptodata_message,
787  s),
790  struct GNUNET_MQ_Envelope *e;
791  struct GNUNET_HashCode set_sid;
792 
794  sizeof(struct GNUNET_HashCode),
795  &set_sid);
797  "Creating new channel for session with key %s.\n",
798  GNUNET_h2s(&s->session_id));
799  s->channel = GNUNET_CADET_channel_create(my_cadet,
800  s,
801  &s->peer,
802  &s->session_id,
803  NULL,
805  cadet_handlers);
806  if (NULL == s->channel)
807  {
810  return;
811  }
815  &set_sid,
817  s);
818  if (NULL == s->intersection_listen)
819  {
822  s->channel = NULL;
824  return;
825  }
826 
827  e =
828  GNUNET_MQ_msg(msg,
831  msg->session_id = s->session_id;
832  GNUNET_MQ_send(s->cadet_mq, e);
833 }
834 
835 
844 static int
846  void *cls,
848 {
849  struct AliceServiceSession *s = cls;
850  uint32_t contained_count;
851  uint16_t msize;
852 
853  msize = ntohs(msg->header.size);
854  contained_count = ntohl(msg->element_count_contained);
855  if ((msize !=
857  contained_count * sizeof(struct GNUNET_SCALARPRODUCT_Element))) ||
858  (0 == contained_count) ||
860  (s->total < s->client_received_element_count + contained_count))
861  {
862  GNUNET_break_op(0);
863  return GNUNET_SYSERR;
864  }
865  return GNUNET_OK;
866 }
867 
868 
876 static void
878  void *cls,
880 {
881  struct AliceServiceSession *s = cls;
882  uint32_t contained_count;
883  const struct GNUNET_SCALARPRODUCT_Element *elements;
884  struct GNUNET_SET_Element set_elem;
885  struct GNUNET_SCALARPRODUCT_Element *elem;
886 
887  contained_count = ntohl(msg->element_count_contained);
888  s->client_received_element_count += contained_count;
889  elements = (const struct GNUNET_SCALARPRODUCT_Element *)&msg[1];
890  for (uint32_t i = 0; i < contained_count; i++)
891  {
893  GNUNET_memcpy(elem,
894  &elements[i],
895  sizeof(struct GNUNET_SCALARPRODUCT_Element));
898  &elem->key,
899  elem,
901  {
902  GNUNET_break(0);
903  GNUNET_free(elem);
904  continue;
905  }
906  set_elem.data = &elem->key;
907  set_elem.size = sizeof(elem->key);
908  set_elem.element_type = 0;
909  GNUNET_SET_add_element(s->intersection_set, &set_elem, NULL, NULL);
910  s->used_element_count++;
911  }
914  {
915  /* more to come */
917  "Received client multipart data, waiting for more!\n");
918  return;
919  }
920  GNUNET_log(GNUNET_ERROR_TYPE_DEBUG, "Launching computation\n");
922 }
923 
924 
933 static int
935  const struct AliceComputationMessage *msg)
936 {
937  struct AliceServiceSession *s = cls;
938  uint16_t msize;
939  uint32_t total_count;
940  uint32_t contained_count;
941 
942  if (NULL != s->intersected_elements)
943  {
944  /* only one concurrent session per client connection allowed,
945  simplifies logic a lot... */
946  GNUNET_break(0);
947  return GNUNET_SYSERR;
948  }
949  msize = ntohs(msg->header.size);
950  total_count = ntohl(msg->element_count_total);
951  contained_count = ntohl(msg->element_count_contained);
952  if ((0 == total_count) || (0 == contained_count) ||
953  (msize !=
954  (sizeof(struct AliceComputationMessage) +
955  contained_count * sizeof(struct GNUNET_SCALARPRODUCT_Element))))
956  {
957  GNUNET_break_op(0);
958  return GNUNET_SYSERR;
959  }
960  return GNUNET_OK;
961 }
962 
963 
971 static void
973  const struct AliceComputationMessage *msg)
974 {
975  struct AliceServiceSession *s = cls;
976  uint32_t contained_count;
977  uint32_t total_count;
978  const struct GNUNET_SCALARPRODUCT_Element *elements;
979  struct GNUNET_SET_Element set_elem;
980  struct GNUNET_SCALARPRODUCT_Element *elem;
981 
982  total_count = ntohl(msg->element_count_total);
983  contained_count = ntohl(msg->element_count_contained);
984  s->peer = msg->peer;
986  s->total = total_count;
987  s->client_received_element_count = contained_count;
988  s->session_id = msg->session_key;
989  elements = (const struct GNUNET_SCALARPRODUCT_Element *)&msg[1];
992  s->intersection_set =
994  for (uint32_t i = 0; i < contained_count; i++)
995  {
996  if (0 == GNUNET_ntohll(elements[i].value))
997  continue;
999  GNUNET_memcpy(elem,
1000  &elements[i],
1001  sizeof(struct GNUNET_SCALARPRODUCT_Element));
1004  &elem->key,
1005  elem,
1007  {
1008  /* element with same key encountered twice! */
1009  GNUNET_break(0);
1010  GNUNET_free(elem);
1011  continue;
1012  }
1013  set_elem.data = &elem->key;
1014  set_elem.size = sizeof(elem->key);
1015  set_elem.element_type = 0;
1016  GNUNET_SET_add_element(s->intersection_set, &set_elem, NULL, NULL);
1017  s->used_element_count++;
1018  }
1020  if (s->total != s->client_received_element_count)
1021  {
1022  /* wait for multipart msg */
1024  "Received partial client request, waiting for more!\n");
1025  return;
1026  }
1027  GNUNET_log(GNUNET_ERROR_TYPE_DEBUG, "Launching computation\n");
1029 }
1030 
1031 
1038 static void
1039 shutdown_task(void *cls)
1040 {
1041  GNUNET_log(GNUNET_ERROR_TYPE_DEBUG, "Shutting down, initiating cleanup.\n");
1042  // FIXME: we have to cut our connections to CADET first!
1043  if (NULL != my_cadet)
1044  {
1045  GNUNET_CADET_disconnect(my_cadet);
1046  my_cadet = NULL;
1047  }
1048  if (NULL != edc)
1049  {
1051  edc = NULL;
1052  }
1053 }
1054 
1055 
1066 static void *
1068  struct GNUNET_SERVICE_Client *client,
1069  struct GNUNET_MQ_Handle *mq)
1070 {
1071  struct AliceServiceSession *s;
1072 
1073  s = GNUNET_new(struct AliceServiceSession);
1074  s->client = client;
1075  s->client_mq = mq;
1076  return s;
1077 }
1078 
1079 
1090 static void
1092  struct GNUNET_SERVICE_Client *client,
1093  void *app_cls)
1094 {
1095  struct AliceServiceSession *s = app_cls;
1096 
1098  "Client %p disconnected from us.\n",
1099  client);
1100  s->client = NULL;
1101  s->client_mq = NULL;
1103 }
1104 
1105 
1113 static void
1114 run(void *cls,
1115  const struct GNUNET_CONFIGURATION_Handle *c,
1117 {
1118  cfg = c;
1120  /* Select a random 'a' value for Alice */
1122  my_cadet = GNUNET_CADET_connect(cfg);
1123  if (NULL == my_cadet)
1124  {
1125  GNUNET_log(GNUNET_ERROR_TYPE_ERROR, _("Connect to CADET failed\n"));
1127  return;
1128  }
1130 }
1131 
1132 
1137  "scalarproduct-alice",
1139  &run,
1142  NULL,
1143  GNUNET_MQ_hd_var_size(alice_client_message,
1145  struct AliceComputationMessage,
1146  NULL),
1148  alice_client_message_multipart,
1151  NULL),
1153 
1154 
1155 /* end of gnunet-service-scalarproduct-ecc_alice.c */
uint32_t contained_element_count
How many elements we appended to this message? In NBO.
GNUNET_SERVICE_MAIN("scalarproduct-alice", GNUNET_SERVICE_OPTION_NONE, &run, &client_connect_cb, &client_disconnect_cb, NULL, GNUNET_MQ_hd_var_size(alice_client_message, GNUNET_MESSAGE_TYPE_SCALARPRODUCT_CLIENT_TO_ALICE, struct AliceComputationMessage, NULL), GNUNET_MQ_hd_var_size(alice_client_message_multipart, GNUNET_MESSAGE_TYPE_SCALARPRODUCT_CLIENT_MULTIPART_ALICE, struct ComputationBobCryptodataMultipartMessage, NULL), GNUNET_MQ_handler_end())
Define "main" method using service macro.
A scalarproduct session which tracks a request form the client to our final response.
struct GNUNET_CRYPTO_EccPoint prod_g_i_b_i
The product of the g_i^{b_i} values.
Message type passed from service client to finalize a session as requester or responder.
struct GNUNET_HashCode session_id
The transaction/session key used to identify a session.
int in_destroy
Flag to prevent recursive calls to destroy_service_session() from doing harm.
void GNUNET_CADET_disconnect(struct GNUNET_CADET_Handle *handle)
Disconnect from the cadet service.
Definition: cadet_api.c:838
Vector of ECC-encrypted values sent by Alice to Bob (after set intersection).
struct GNUNET_SET_ListenHandle * GNUNET_SET_listen(const struct GNUNET_CONFIGURATION_Handle *cfg, enum GNUNET_SET_OperationType op_type, const struct GNUNET_HashCode *app_id, GNUNET_SET_ListenCallback listen_cb, void *listen_cls)
Wait for set operation requests for the given application ID.
Definition: set_api.c:1012
static struct GNUNET_SERVICE_Handle * service
Handle to our service instance.
Point on a curve (always for Curve25519) encoded in a format suitable for network transmission (ECDH)...
gcry_mpi_point_t GNUNET_CRYPTO_ecc_bin_to_point(struct GNUNET_CRYPTO_EccDlogContext *edc, const struct GNUNET_CRYPTO_EccPoint *bin)
Convert binary representation of a point to computational representation.
struct GNUNET_MessageHeader * msg
Definition: 005.c:2
void GNUNET_CRYPTO_ecc_rnd_mpi(struct GNUNET_CRYPTO_EccDlogContext *edc, gcry_mpi_t *r, gcry_mpi_t *r_inv)
Obtain a random scalar for point multiplication on the curve and its multiplicative inverse...
static struct GNUNET_VPN_RedirectionRequest * request
Opaque redirection request handle.
Definition: gnunet-vpn.c:41
struct GNUNET_CADET_Channel * channel
channel-handle associated with our cadet handle
#define GNUNET_MESSAGE_TYPE_SCALARPRODUCT_CLIENT_MULTIPART_ALICE
Client -> Alice multipart.
struct GNUNET_MQ_Handle * cadet_mq
The message queue for CADET.
unsigned int GNUNET_CONTAINER_multihashmap_size(const struct GNUNET_CONTAINER_MultiHashMap *map)
Get the number of key-value pairs in the map.
int GNUNET_SET_add_element(struct GNUNET_SET_Handle *set, const struct GNUNET_SET_Element *element, GNUNET_SET_Continuation cont, void *cont_cls)
Add an element to the given set.
Definition: set_api.c:682
Handle for a set operation request from another peer.
Definition: set_api.c:113
static void handle_alice_client_message(void *cls, const struct AliceComputationMessage *msg)
Handler for Alice&#39;s client request message.
Opaque handle to the service.
Definition: cadet_api.c:38
Handle to a service.
Definition: service.c:114
gcry_mpi_t GNUNET_CRYPTO_ecc_random_mod_n(struct GNUNET_CRYPTO_EccDlogContext *edc)
Generate a random value mod n.
scalarproduct service P2P messages
static const struct GNUNET_CONFIGURATION_Handle * cfg
GNUnet configuration handle.
const struct GNUNET_HashCode * key
Key used to identify matching pairs of values to multiply.
Operation is still active (never returned, used internally).
struct GNUNET_SCHEDULER_Task * GNUNET_SCHEDULER_add_shutdown(GNUNET_SCHEDULER_TaskCallback task, void *task_cls)
Schedule a new task to be run on shutdown, that is when a CTRL-C signal is received, or when GNUNET_SCHEDULER_shutdown() is being invoked.
Definition: scheduler.c:1284
struct GNUNET_HashCode key
Key used to identify matching pairs of values to multiply.
Element stored in a set.
static int copy_element_cb(void *cls, const struct GNUNET_HashCode *key, void *value)
Iterator to copy over messages from the hash map into an array for sorting.
struct GNUNET_SET_Handle * GNUNET_SET_create(const struct GNUNET_CONFIGURATION_Handle *cfg, enum GNUNET_SET_OperationType op)
Create an empty set, supporting the specified operation.
Definition: set_api.c:652
#define GNUNET_MESSAGE_TYPE_SCALARPRODUCT_ECC_ALICE_CRYPTODATA
Alice -> Bob ECC crypto data.
#define GNUNET_assert(cond)
Use this for fatal errors that cannot be handled.
int32_t range
Workaround for libgcrypt: -1 if negative, 0 if zero, else 1.
#define LOG_GCRY(level, cmd, rc)
Log an error message at log-level &#39;level&#39; that indicates a failure of the command &#39;cmd&#39; with the mess...
Definition: scalarproduct.h:35
void GNUNET_MQ_env_set_options(struct GNUNET_MQ_Envelope *env, enum GNUNET_MQ_PriorityPreferences pp)
Set application-specific options for this envelope.
Definition: mq.c:1002
struct GNUNET_MessageHeader header
GNUNET message header with type GNUNET_MESSAGE_TYPE_SCALARPRODUCT_CLIENT_TO_ALICE.
Definition: scalarproduct.h:47
static void send_alices_cryptodata_message(struct AliceServiceSession *s)
Send the cryptographic data from Alice to Bob.
#define GNUNET_memcpy(dst, src, n)
Call memcpy() but check for n being 0 first.
#define GNUNET_MQ_hd_fixed_size(name, code, str, ctx)
static struct GNUNET_CADET_Handle * my_cadet
Handle to the CADET service.
#define GNUNET_MQ_msg(mvar, type)
Allocate a GNUNET_MQ_Envelope.
Definition: gnunet_mq_lib.h:67
static struct Experiment * e
static struct GNUNET_HashCode session_id
Opaque handle to a channel.
Definition: cadet_api.c:79
const char * GNUNET_h2s(const struct GNUNET_HashCode *hc)
Convert a hash value to a string (for printing debug messages).
#define GNUNET_OK
Named constants for return values.
Definition: gnunet_common.h:75
static void shutdown_task(void *cls)
Task run during shutdown.
#define GNUNET_new(type)
Allocate a struct or union of the given type.
enum GNUNET_SCALARPRODUCT_ResponseStatus status
State of this session.
struct GNUNET_CRYPTO_EccDlogContext * GNUNET_CRYPTO_ecc_dlog_prepare(unsigned int max, unsigned int mem)
Do pre-calculation for ECC discrete logarithm for small factors.
gcry_mpi_t value
a_i value, not disclosed to Bob.
uint16_t size
The length of the struct (in bytes, including the length field itself), in big-endian format...
void GNUNET_CRYPTO_ecc_point_to_bin(struct GNUNET_CRYPTO_EccDlogContext *edc, gcry_mpi_point_t point, struct GNUNET_CRYPTO_EccPoint *bin)
Convert point value to binary representation.
void GNUNET_SCHEDULER_shutdown(void)
Request the shutdown of a scheduler.
Definition: scheduler.c:517
static int ret
Final status code.
Definition: gnunet-arm.c:89
Success, all elements have been sent (and received).
Internal representation of the hash map.
#define GNUNET_break(cond)
Use this for internal assertion violations that are not fatal (can be handled) but should not occur...
static void handle_bobs_cryptodata_message(void *cls, const struct EccBobCryptodataMessage *msg)
Handle a response we got from another service we wanted to calculate a scalarproduct with...
uint32_t total
How many elements we were supplied with from the client (total count before intersection).
Message type passed from client to service to initiate a request or responder role.
Definition: scalarproduct.h:42
struct GNUNET_HashCode session_key
the transaction/session key used to identify a session
Definition: scalarproduct.h:67
const void * data
Actual data of the element.
struct GNUNET_CADET_Handle * GNUNET_CADET_connect(const struct GNUNET_CONFIGURATION_Handle *cfg)
Connect to the MQ-based cadet service.
Definition: cadet_api.c:973
struct GNUNET_SET_OperationHandle * intersection_op
Set of elements for which will conduction an intersection.
void * GNUNET_CONTAINER_multihashmap_get(const struct GNUNET_CONTAINER_MultiHashMap *map, const struct GNUNET_HashCode *key)
Given a key find a value in the map matching the key.
#define _(String)
GNU gettext support macro.
Definition: platform.h:181
Handle to a client that is connected to a service.
Definition: service.c:246
void GNUNET_SET_destroy(struct GNUNET_SET_Handle *set)
Destroy the set handle, and free all associated resources.
Definition: set_api.c:767
static void transmit_client_response(struct AliceServiceSession *s)
Prepare the final (positive) response we will send to Alice&#39;s client.
#define INT_MAX
uint32_t status
Status information about the outcome of this session, An enum GNUNET_SCALARPRODUCT_ResponseStatus (in...
#define GNUNET_MQ_msg_extra(mvar, esize, type)
Allocate an envelope, with extra space allocated after the space needed by the message struct...
Definition: gnunet_mq_lib.h:52
static struct GNUNET_CRYPTO_EccDlogContext * edc
Context for DLOG operations on a curve.
struct MpiElement * sorted_elements
a(Alice), sorted array by key of length used_element_count.
The other peer refused to to the operation with us, or something went wrong.
Success, all elements have been returned (but the other peer might still be receiving some from us...
struct GNUNET_PeerIdentity peer
the identity of a remote peer we want to communicate with
Definition: scalarproduct.h:72
Scalar Product API Message Types.
#define GNUNET_MQ_hd_var_size(name, code, str, ctx)
#define GNUNET_break_op(cond)
Use this for assertion violations caused by other peers (i.e.
void GNUNET_CRYPTO_hash(const void *block, size_t size, struct GNUNET_HashCode *ret)
Compute hash of a given block.
Definition: crypto_hash.c:44
Everything went ok, we are transmitting an element of the result (in set, or to be removed from set...
void GNUNET_CONTAINER_multihashmap_destroy(struct GNUNET_CONTAINER_MultiHashMap *map)
Destroy a hash map.
GNUNET_SET_Status
Status for the result callback.
uint32_t element_count_total
how many elements the vector in payload contains
Definition: scalarproduct.h:52
uint16_t status
See PRISM_STATUS_*-constants.
gcry_mpi_point_t GNUNET_CRYPTO_ecc_add(struct GNUNET_CRYPTO_EccDlogContext *edc, gcry_mpi_point_t a, gcry_mpi_point_t b)
Add two points on the elliptic curve.
#define GNUNET_new_array(n, type)
Allocate a size n array with structs or unions of the given type.
int GNUNET_CONTAINER_multihashmap_remove(struct GNUNET_CONTAINER_MultiHashMap *map, const struct GNUNET_HashCode *key, const void *value)
Remove the given key-value pair from the map.
struct GNUNET_CRYPTO_EccPoint prod_h_i_b_i
The product of the h_i^{b_i} values.
uint32_t contained_element_count
How many elements this individual message delivers (in NBO), always TWO.
static void run(void *cls, const struct GNUNET_CONFIGURATION_Handle *c, struct GNUNET_SERVICE_Handle *service)
Initialization of the program and message handlers.
static void cb_intersection_request_alice(void *cls, const struct GNUNET_PeerIdentity *other_peer, const struct GNUNET_MessageHeader *context_msg, struct GNUNET_SET_Request *request)
Called when another peer wants to do a set operation with the local peer.
A 512-bit hashcode.
void GNUNET_SERVICE_client_drop(struct GNUNET_SERVICE_Client *c)
Ask the server to disconnect from the given client.
Definition: service.c:2315
Message handler for a specific message type.
static void cb_channel_destruction(void *cls, const struct GNUNET_CADET_Channel *channel)
Function called whenever a channel is destroyed.
Opaque handle to a set.
Definition: set_api.c:48
struct GNUNET_PeerIdentity peer
Alice or Bob&#39;s peerID.
struct GNUNET_HashCode session_id
(hopefully) unique transaction ID
There must only be one value per key; storing a value should fail if a value under the same key alrea...
#define GNUNET_MESSAGE_TYPE_SCALARPRODUCT_CLIENT_TO_ALICE
Client -> Alice.
struct GNUNET_TESTBED_Peer * peer
The peer associated with this model.
Message type passed from responding service Bob to responding service Alice to complete a request and...
#define GNUNET_SYSERR
Definition: gnunet_common.h:76
static void cb_intersection_element_removed(void *cls, const struct GNUNET_SET_Element *element, uint64_t current_size, enum GNUNET_SET_Status status)
Callback for set operation results.
static int free_element_cb(void *cls, const struct GNUNET_HashCode *key, void *value)
Iterator called to free elements.
#define MAX_RESULT
Maximum allowed result value for the scalarproduct computation.
An encrypted element key-value pair.
static int check_alice_client_message_multipart(void *cls, const struct ComputationBobCryptodataMultipartMessage *msg)
We&#39;re receiving additional set data.
void GNUNET_CRYPTO_ecc_dlog_release(struct GNUNET_CRYPTO_EccDlogContext *dlc)
Release precalculated values.
Message type passed from requesting service Alice to responding service Bob to initiate a request and...
static void client_disconnect_cb(void *cls, struct GNUNET_SERVICE_Client *client, void *app_cls)
A client disconnected.
void GNUNET_SET_listen_cancel(struct GNUNET_SET_ListenHandle *lh)
Cancel the given listen operation.
Definition: set_api.c:1046
static gcry_mpi_t my_privkey
Alice&#39;s private key (&#39;a&#39;).
uint32_t product_length
0 if no product attached
#define GNUNET_MESSAGE_TYPE_SCALARPRODUCT_ECC_SESSION_INITIALIZATION
Alice -> Bob ECC session initialization.
Option for set operations.
int64_t value
Value to multiply in scalar product, in NBO.
int GNUNET_CONTAINER_multihashmap_put(struct GNUNET_CONTAINER_MultiHashMap *map, const struct GNUNET_HashCode *key, void *value, enum GNUNET_CONTAINER_MultiHashMapOption opt)
Store a key-value pair in the map.
static unsigned long long payload
How much data are we currently storing in the database?
gcry_mpi_point_t GNUNET_CRYPTO_ecc_dexp_mpi(struct GNUNET_CRYPTO_EccDlogContext *edc, gcry_mpi_t val)
Multiply the generator g of the elliptic curve by val to obtain the point on the curve representing v...
uint32_t used_element_count
How many elements actually are used for the scalar product.
#define GNUNET_memcmp(a, b)
Compare memory in a and b, where both must be of the same pointer type.
struct GNUNET_CONTAINER_MultiHashMap * intersected_elements
all non-0-value&#39;d elements transmitted to us.
gcry_mpi_t product
The computed scalar.
Handle to an operation.
Definition: set_api.c:132
Handle to a message queue.
Definition: mq.c:84
static int check_alice_client_message(void *cls, const struct AliceComputationMessage *msg)
Handler for Alice&#39;s client request message.
The identity of the host (wraps the signing key of the peer).
int GNUNET_SET_commit(struct GNUNET_SET_OperationHandle *oh, struct GNUNET_SET_Handle *set)
Commit a set to be used with a set operation.
Definition: set_api.c:1123
void GNUNET_CADET_receive_done(struct GNUNET_CADET_Channel *channel)
Send an ack on the channel to confirm the processing of a message.
Definition: cadet_api.c:951
struct GNUNET_CADET_Channel * GNUNET_CADET_channel_create(struct GNUNET_CADET_Handle *h, void *channel_cls, const struct GNUNET_PeerIdentity *destination, const struct GNUNET_HashCode *port, GNUNET_CADET_WindowSizeEventHandler window_changes, GNUNET_CADET_DisconnectEventHandler disconnects, const struct GNUNET_MQ_MessageHandler *handlers)
Create a new channel towards a remote peer.
Definition: cadet_api.c:1065
struct GNUNET_MessageHeader header
GNUNET message header.
#define GNUNET_MESSAGE_TYPE_SCALARPRODUCT_ECC_BOB_CRYPTODATA
Bob -> Alice ECC crypto data.
configuration data
Definition: configuration.c:83
int GNUNET_CRYPTO_hash_cmp(const struct GNUNET_HashCode *h1, const struct GNUNET_HashCode *h2)
Compare function for HashCodes, producing a total ordering of all hashcodes.
Definition: crypto_hash.c:278
static gcry_mpi_t compute_scalar_product(struct AliceServiceSession *session, gcry_mpi_point_t prod_g_i_b_i, gcry_mpi_point_t prod_h_i_b_i)
Compute our scalar product, done by Alice.
uint16_t size
Number of bytes in the buffer pointed to by data.
struct GNUNET_MQ_Handle * mq
Definition: 003.c:5
#define GNUNET_log(kind,...)
#define ELEMENT_CAPACITY
Maximum number of elements we can put into a single cryptodata message.
uint32_t element_count_contained
contained elements the vector in payload contains
Definition: scalarproduct.h:57
Opaque handle to a listen operation.
Definition: set_api.c:182
Client gets only elements that have been removed from the set.
struct GNUNET_CONTAINER_MultiHashMap * GNUNET_CONTAINER_multihashmap_create(unsigned int len, int do_not_copy_keys)
Create a multi hash map.
uint32_t element_count_contained
contained elements the vector in payload contains
void GNUNET_SET_operation_cancel(struct GNUNET_SET_OperationHandle *oh)
Cancel the given set operation.
Definition: set_api.c:511
multipart messages following struct ComputationMessage
Header for all communications.
Internal structure used to cache pre-calculated values for DLOG calculation.
#define GNUNET_YES
Definition: gnunet_common.h:77
struct GNUNET_SET_Handle * intersection_set
Set of elements for which will conduction an intersection.
void GNUNET_MQ_send(struct GNUNET_MQ_Handle *mq, struct GNUNET_MQ_Envelope *ev)
Send a message with the given message queue.
Definition: mq.c:351
static gcry_mpi_t my_privkey_inv
Inverse of Alice&#39;s private key (&#39;a_inv&#39;).
struct GNUNET_SERVICE_Client * client
The client this request is related to.
static void client_request_complete_alice(struct AliceServiceSession *s)
Our client has finished sending us its multipart message.
Set intersection, only return elements that are in both sets.
GNUNET_SCALARPRODUCT_ResponseStatus
Result status values for the computation.
static void handle_alice_client_message_multipart(void *cls, const struct ComputationBobCryptodataMultipartMessage *msg)
We&#39;re receiving additional set data.
struct GNUNET_MQ_Handle * client_mq
The message queue for the client.
struct GNUNET_SET_ListenHandle * intersection_listen
Handle to Alice&#39;s Intersection operation listening for Bob.
Highest priority, control traffic (i.e.
#define LOG(kind,...)
int GNUNET_CRYPTO_ecc_dlog(struct GNUNET_CRYPTO_EccDlogContext *edc, gcry_mpi_point_t input)
Calculate ECC discrete logarithm for small factors.
int GNUNET_CONTAINER_multihashmap_iterate(struct GNUNET_CONTAINER_MultiHashMap *map, GNUNET_CONTAINER_MulitHashMapIteratorCallback it, void *it_cls)
Iterate over all entries in the map.
struct GNUNET_CRYPTO_PaillierCiphertext s
Bob&#39;s "s".
#define MAX_RAM
How many values should DLOG store in memory (determines baseline RAM consumption, roughly 100 bytes t...
uint32_t client_received_element_count
Already transferred elements from client to us.
void GNUNET_CADET_channel_destroy(struct GNUNET_CADET_Channel *channel)
Destroy an existing channel.
Definition: cadet_api.c:900
gcry_mpi_point_t GNUNET_CRYPTO_ecc_pmul_mpi(struct GNUNET_CRYPTO_EccDlogContext *edc, gcry_mpi_point_t p, gcry_mpi_t val)
Multiply the point p on the elliptic curve by val.
const char * GNUNET_i2s(const struct GNUNET_PeerIdentity *pid)
Convert a peer identity to a string (for printing debug messages).
void GNUNET_SERVICE_client_continue(struct GNUNET_SERVICE_Client *c)
Continue receiving further messages from the given client.
Definition: service.c:2234
#define GNUNET_MQ_handler_end()
End-marker for the handlers array.
static void destroy_service_session(struct AliceServiceSession *s)
Destroy session state, we are done with it.
static void prepare_client_end_notification(struct AliceServiceSession *session)
Notify the client that the session has failed.
An element key-value pair for scalarproduct.
uint64_t GNUNET_ntohll(uint64_t n)
Convert unsigned 64-bit integer to host byte order.
Definition: common_endian.c:48
static int element_cmp(const void *a, const void *b)
Compare two struct MpiValues by key for sorting.
#define GNUNET_MESSAGE_TYPE_SCALARPRODUCT_RESULT
Alice/Bob -> Client Result.
#define GNUNET_free(ptr)
Wrapper around free.
uint16_t element_type
Application-specific element type.
struct GNUNET_SET_OperationHandle * GNUNET_SET_accept(struct GNUNET_SET_Request *request, enum GNUNET_SET_ResultMode result_mode, struct GNUNET_SET_Option options[], GNUNET_SET_ResultIterator result_cb, void *result_cls)
Accept a request we got via GNUNET_SET_listen().
Definition: set_api.c:1080
struct GNUNET_MQ_Handle * GNUNET_CADET_get_mq(const struct GNUNET_CADET_Channel *channel)
Obtain the message queue for a connected peer.
Definition: cadet_api.c:1116
static void * client_connect_cb(void *cls, struct GNUNET_SERVICE_Client *client, struct GNUNET_MQ_Handle *mq)
A client connected.