2 This file is part of GNUnet.
3 Copyright (C) 2009-2013, 2016 GNUnet e.V.
5 GNUnet is free software; you can redistribute it and/or modify
6 it under the terms of the GNU General Public License as published
7 by the Free Software Foundation; either version 3, or (at your
8 option) any later version.
10 GNUnet is distributed in the hope that it will be useful, but
11 WITHOUT ANY WARRANTY; without even the implied warranty of
12 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13 General Public License for more details.
15 You should have received a copy of the GNU General Public License
16 along with GNUnet; see the file COPYING. If not, write to the
17 Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
18 Boston, MA 02110-1301, USA.
23 * @file credential/credential_mic.c
24 * @brief Misc API for credentials
26 * @author Martin Schanzenbach
29 #include "gnunet_util_lib.h"
30 #include "gnunet_constants.h"
31 #include "gnunet_credential_service.h"
32 #include "gnunet_signatures.h"
33 #include "credential.h"
37 GNUNET_CREDENTIAL_credential_to_string (const struct GNUNET_CREDENTIAL_Credential *cred)
45 subject_pkey = GNUNET_CRYPTO_ecdsa_public_key_to_string (&cred->subject_key);
46 issuer_pkey = GNUNET_CRYPTO_ecdsa_public_key_to_string (&cred->issuer_key);
47 GNUNET_STRINGS_base64_encode ((char*)&cred->signature,
48 sizeof (struct GNUNET_CRYPTO_EcdsaSignature),
50 GNUNET_asprintf (&cred_str,
51 "%s.%s -> %s | %s | %"SCNu64,
53 cred->issuer_attribute,
56 cred->expiration.abs_value_us);
57 GNUNET_free (subject_pkey);
58 GNUNET_free (issuer_pkey);
59 GNUNET_free (signature);
63 struct GNUNET_CREDENTIAL_Credential*
64 GNUNET_CREDENTIAL_credential_from_string (const char* s)
66 struct GNUNET_CREDENTIAL_Credential *cred;
67 size_t enclen = (sizeof (struct GNUNET_CRYPTO_EcdsaPublicKey)) * 8;
69 enclen += 5 - enclen % 5;
70 enclen /= 5; /* 260/5 = 52 */
71 char subject_pkey[enclen + 1];
72 char issuer_pkey[enclen + 1];
74 char signature[256]; //TODO max payload size
76 struct GNUNET_CRYPTO_EcdsaSignature *sig;
77 struct GNUNET_TIME_Absolute etime_abs;
80 "%52s.%253s -> %52s | %s | %"SCNu64,
85 &etime_abs.abs_value_us))
87 GNUNET_log (GNUNET_ERROR_TYPE_ERROR,
88 _("Unable to parse CRED record string `%s'\n"),
92 cred = GNUNET_malloc (sizeof (struct GNUNET_CREDENTIAL_Credential) + strlen (name) + 1);
93 GNUNET_CRYPTO_ecdsa_public_key_from_string (subject_pkey,
94 strlen (subject_pkey),
96 GNUNET_CRYPTO_ecdsa_public_key_from_string (issuer_pkey,
99 GNUNET_assert (sizeof (struct GNUNET_CRYPTO_EcdsaSignature) == GNUNET_STRINGS_base64_decode (signature,
102 cred->signature = *sig;
103 cred->expiration = etime_abs;
105 GNUNET_memcpy (&cred[1],
108 cred->issuer_attribute_len = strlen ((char*)&cred[1]);
109 cred->issuer_attribute = (char*)&cred[1];
114 * Issue an attribute to a subject
116 * @param handle handle to the Credential service
117 * @param issuer the ego that should be used to issue the attribute
118 * @param subject the subject of the attribute
119 * @param attribute the name of the attribute
120 * @return handle to the queued request
122 struct GNUNET_CREDENTIAL_Credential *
123 GNUNET_CREDENTIAL_credential_issue (const struct GNUNET_CRYPTO_EcdsaPrivateKey *issuer,
124 struct GNUNET_CRYPTO_EcdsaPublicKey *subject,
125 const char *attribute,
126 struct GNUNET_TIME_Absolute *expiration)
128 struct CredentialEntry *crd;
129 struct GNUNET_CREDENTIAL_Credential *cred;
132 size = sizeof (struct CredentialEntry) + strlen (attribute) + 1;
133 crd = GNUNET_malloc (size);
134 cred = GNUNET_malloc (sizeof (struct GNUNET_CREDENTIAL_Credential) + strlen (attribute) + 1);
135 crd->purpose.size = htonl (size - sizeof (struct GNUNET_CRYPTO_EcdsaSignature));
137 crd->purpose.purpose = htonl (GNUNET_SIGNATURE_PURPOSE_CREDENTIAL);
138 GNUNET_CRYPTO_ecdsa_key_get_public (issuer,
140 crd->subject_key = *subject;
141 crd->expiration = GNUNET_htonll (expiration->abs_value_us);
142 crd->issuer_attribute_len = htonl (strlen (attribute)+1);
143 GNUNET_memcpy ((char*)&crd[1],
145 strlen (attribute)+1);
147 GNUNET_CRYPTO_ecdsa_sign (issuer,
155 cred->signature = crd->signature;
156 cred->expiration = *expiration;
157 GNUNET_CRYPTO_ecdsa_key_get_public (issuer,
160 cred->subject_key = *subject;
161 GNUNET_memcpy (&cred[1],
163 strlen (attribute)+1);
164 cred->issuer_attribute = (char*)&cred[1];