diff options
| author | Özgür Kesim <oec-taler@kesim.org> | 2023-04-22 17:18:59 +0200 | 
|---|---|---|
| committer | Özgür Kesim <oec-taler@kesim.org> | 2023-04-22 17:18:59 +0200 | 
| commit | 6f492b2a97a8623e18a36c583e320d876753ae8b (patch) | |
| tree | cbdd48bc5ca07be4803a4ac4d356177e687ad5c8 /src | |
| parent | 89a9224c3bb9bfae84c27c1bbf0d9dfd5341ec0a (diff) | |
WiP: age-withdraw, continue with finalize_age_withdraw_and_sign, 9/n
Also:
- added duplicate planchet check for age-withdraw_reveal
- added stubs for (get|insert)_age_withdraw_reveal
Diffstat (limited to 'src')
| -rw-r--r-- | src/exchange/taler-exchange-httpd_age-withdraw_reveal.c | 146 | ||||
| -rw-r--r-- | src/exchangedb/pg_insert_age_withdraw_reveal.c | 106 | ||||
| -rw-r--r-- | src/exchangedb/pg_insert_age_withdraw_reveal.h | 45 | ||||
| -rw-r--r-- | src/include/taler_exchangedb_plugin.h | 31 | 
4 files changed, 298 insertions, 30 deletions
| diff --git a/src/exchange/taler-exchange-httpd_age-withdraw_reveal.c b/src/exchange/taler-exchange-httpd_age-withdraw_reveal.c index 31ff57c6..828877ab 100644 --- a/src/exchange/taler-exchange-httpd_age-withdraw_reveal.c +++ b/src/exchange/taler-exchange-httpd_age-withdraw_reveal.c @@ -74,9 +74,9 @@ struct AgeRevealContext    struct TALER_Amount total_fee;    /** -   * #num_coins hashes of blinded coins. +   * #num_coins hashes of blinded coin planchets.     */ -  struct TALER_BlindedCoinHashP *coin_evs; +  struct TALER_BlindedPlanchet *coin_evs;    /**     * secrets for #num_coins*(kappa - 1) disclosed coins. @@ -90,6 +90,39 @@ struct AgeRevealContext    struct TALER_EXCHANGEDB_AgeWithdrawCommitment commitment;  }; + +/** + * Information per planchet in the batch. + */ +struct PlanchetContext +{ + +  /** +   * Hash of the (blinded) message to be signed by the Exchange. +   */ +  struct TALER_BlindedCoinHashP h_coin_envelope; + +  /** +   * Value of the coin being exchanged (matching the denomination key) +   * plus the transaction fee.  We include this in what is being +   * signed so that we can verify a reserve's remaining total balance +   * without needing to access the respective denomination key +   * information each time. +   */ +  struct TALER_Amount amount_with_fee; + +  /** +   * Blinded planchet. +   */ +  struct TALER_BlindedPlanchet blinded_planchet; + +  /** +   * Set to the resulting signed coin data to be returned to the client. +   */ +  struct TALER_EXCHANGEDB_CollectableBlindcoin collectable; + +}; +  /**   * Helper function to free resources in the context   */ @@ -198,11 +231,11 @@ parse_age_withdraw_reveal_json (      /* Parse blinded envelopes */      actx->coin_evs = GNUNET_new_array (actx->num_coins, -                                       struct TALER_BlindedCoinHashP); +                                       struct TALER_BlindedPlanchet);      json_array_foreach (j_coin_evs, idx, value) {        struct GNUNET_JSON_Specification spec[] = { -        GNUNET_JSON_spec_fixed_auto (NULL, &actx->coin_evs[idx]), +        TALER_JSON_spec_blinded_planchet (NULL, &actx->coin_evs[idx]),          GNUNET_JSON_spec_end ()        }; @@ -220,6 +253,22 @@ parse_age_withdraw_reveal_json (                                                 msg);          goto EXIT;        } + +      /* Check for duplicate planchets */ +      for (unsigned int i = 0; i < idx; i++) +      { +        if (0 == TALER_blinded_planchet_cmp (&actx->coin_evs[idx], +                                             &actx->coin_evs[i])) +        { +          GNUNET_break_op (0); +          *mhd_ret = TALER_MHD_reply_with_error (connection, +                                                 MHD_HTTP_BAD_REQUEST, +                                                 TALER_EC_GENERIC_PARAMETER_MALFORMED, +                                                 "duplicate planchet"); +          goto EXIT; +        } + +      }      };      /* Parse diclosed keys */ @@ -308,7 +357,7 @@ find_original_commitment (    case GNUNET_DB_STATUS_SOFT_ERROR:    /* FIXME oec: Do we queue a result in this case or retry? */    default: -    GNUNET_break (0);       /* should be impossible */ +    GNUNET_break (0);      *result = TALER_MHD_reply_with_error (connection,                                            MHD_HTTP_INTERNAL_SERVER_ERROR,                                            TALER_EC_GENERIC_INTERNAL_INVARIANT_FAILURE, @@ -414,6 +463,7 @@ denomination_is_valid (   * @param connection The HTTP connection to the client   * @param len The lengths of the array @a denoms_h   * @param denoms_h array of hashes of denomination public keys + * @param coin_evs array of blinded coin planchets   * @param[out] dks On success, will be filled with the denomination keys.  Caller must deallocate.   * @param amount_with_fee The committed amount including fees   * @param[out] total_amount On success, will contain the total sum of all denominations @@ -427,6 +477,7 @@ are_denominations_valid (    struct MHD_Connection *connection,    uint32_t len,    const struct TALER_DenominationHashP *denoms_h, +  const struct TALER_BlindedPlanchet *coin_evs,    struct TEH_DenominationKey **dks,    const struct TALER_Amount *amount_with_fee,    struct TALER_Amount *total_amount, @@ -458,7 +509,16 @@ are_denominations_valid (                                   &denoms_h[i],                                   dks[i],                                   result)) +      return GNUNET_SYSERR; + +    /* Ensure the ciphers from the planchets match the denominations' */ +    if (dks[i]->denom_pub.cipher != coin_evs[i].cipher)      { +      GNUNET_break_op (0); +      *result = TALER_MHD_reply_with_error (connection, +                                            MHD_HTTP_BAD_REQUEST, +                                            TALER_EC_EXCHANGE_GENERIC_CIPHER_MISMATCH, +                                            NULL);        return GNUNET_SYSERR;      } @@ -468,9 +528,9 @@ are_denominations_valid (            total_amount,            &dks[i]->meta.value))      { -      GNUNET_break (0); +      GNUNET_break_op (0);        *result = TALER_MHD_reply_with_error (connection, -                                            MHD_HTTP_INTERNAL_SERVER_ERROR, +                                            MHD_HTTP_BAD_REQUEST,                                              TALER_EC_EXCHANGE_AGE_WITHDRAW_AMOUNT_OVERFLOW,                                              "amount");        return GNUNET_SYSERR; @@ -482,9 +542,9 @@ are_denominations_valid (            total_fee,            &dks[i]->meta.fees.withdraw))      { -      GNUNET_break (0); +      GNUNET_break_op (0);        *result = TALER_MHD_reply_with_error (connection, -                                            MHD_HTTP_INTERNAL_SERVER_ERROR, +                                            MHD_HTTP_BAD_REQUEST,                                              TALER_EC_EXCHANGE_AGE_WITHDRAW_AMOUNT_OVERFLOW,                                              "fee");        return GNUNET_SYSERR; @@ -504,9 +564,10 @@ are_denominations_valid (      if (0 != TALER_amount_cmp (&sum, amount_with_fee))      {        GNUNET_break_op (0); -      *result = TALER_MHD_reply_with_ec (connection, -                                         TALER_EC_EXCHANGE_AGE_WITHDRAW_AMOUNT_INCORRECT, -                                         NULL); +      *result = TALER_MHD_reply_with_error (connection, +                                            MHD_HTTP_BAD_REQUEST, +                                            TALER_EC_EXCHANGE_AGE_WITHDRAW_AMOUNT_INCORRECT, +                                            NULL);        return GNUNET_SYSERR;      }    } @@ -537,7 +598,7 @@ are_denominations_valid (   * @param max_age Maximum age allowed for the age restriction   * @param noreveal_idx Index that was given to the client in response to the age-withdraw request   * @param num_coins Number of coins - * @param coin_evs The Hashes of the undisclosed, blinded coins, @a num_coins many + * @param coin_evs The blindet planchets of the undisclosed coins, @a num_coins many   * @param denom_keys The array of denomination keys, @a num_coins. Needed to detect Clause-Schnorr-based denominations   * @param disclosed_coin_secrets The secrets of the disclosed coins, (TALER_CNC_KAPPA - 1)*num_coins many   * @param[out] result On error, a HTTP-response will be queued and result set accordingly @@ -550,7 +611,7 @@ verify_commitment_and_max_age (    const uint32_t max_age,    const uint32_t noreveal_idx,    const uint32_t num_coins, -  const struct TALER_BlindedCoinHashP *coin_evs, +  const struct TALER_BlindedPlanchet *coin_evs,    const struct TEH_DenominationKey *denom_keys,    const struct TALER_PlanchetMasterSecretP *disclosed_coin_secrets,    MHD_RESULT *result) @@ -735,21 +796,47 @@ verify_commitment_and_max_age (   * @return GNUNET_OK on success, GNUNET_SYSERR otherwise   */  static enum GNUNET_GenericReturnValue -sign_and_persist_blinded_coins ( +finalize_age_withdraw_and_sign (    struct MHD_Connection *connection, -  const struct TALER_AgeWithdrawCommitmentHashP *h_commitment_orig, +  const struct TALER_AgeWithdrawCommitmentHashP *h_commitment,    const uint32_t num_coins, -  const struct TALER_BlindedCoinHashP *coin_evs, +  const struct TALER_BlindedPlanchet *coin_evs,    const struct TEH_DenominationKey *denom_keys,    MHD_RESULT *result)  {    enum GNUNET_GenericReturnValue ret = GNUNET_SYSERR; +  struct TEH_CoinSignData csds[num_coins]; +  struct TALER_BlindedDenominationSignature bss[num_coins]; + +  for (uint32_t i = 0; i<num_coins; i++) +  { +    csds[i].h_denom_pub = &denom_keys[i].h_denom_pub; +    csds[i].bp = &coin_evs[i]; +  } + +  /* First, sign the the blinded coins */ +  { +    enum TALER_ErrorCode ec; +    ec = TEH_keys_denomination_batch_sign (csds, +                                           num_coins, +                                           false, +                                           bss); +    if (TALER_EC_NONE != ec) +    { +      GNUNET_break (0); +      *result = TALER_MHD_reply_with_ec (connection, +                                         ec, +                                         NULL); +      return GNUNET_SYSERR; +    } +  }    /* TODO[oec]: -   * - sign the planchets     * - in a transaction: save the coins. +   * - add signature response     */ -  #pragma message "FIXME[oec]: implement sign_and_persist_blinded_coins" + +#pragma message "FIXME[oec]: implement finalize_age_withdraw_and_sign"    return ret;  } @@ -777,15 +864,13 @@ TEH_handler_age_withdraw_reveal (    actx.ach = *ach;    /* Parse JSON body*/ +  ret = TALER_MHD_parse_json_data (rc->connection, +                                   root, +                                   spec); +  if (GNUNET_OK != ret)    { -    ret = TALER_MHD_parse_json_data (rc->connection, -                                     root, -                                     spec); -    if (GNUNET_OK != ret) -    { -      GNUNET_break_op (0); -      return (GNUNET_SYSERR == ret) ? MHD_NO : MHD_YES; -    } +    GNUNET_break_op (0); +    return (GNUNET_SYSERR == ret) ? MHD_NO : MHD_YES;    } @@ -814,6 +899,7 @@ TEH_handler_age_withdraw_reveal (            rc->connection,            actx.num_coins,            actx.denoms_h, +          actx.coin_evs,            &actx.denom_keys,            &actx.commitment.amount_with_fee,            &actx.total_amount, @@ -821,8 +907,8 @@ TEH_handler_age_withdraw_reveal (            &result))        break; -    /* Verify the computed h_commitment equals the committed one and that -     * coins have a maximum age group corresponding max_age (age-mask dependent) */ +    /* Verify the computed h_commitment equals the committed one and that coins +     * have a maximum age group corresponding max_age (age-mask dependent) */      if (GNUNET_OK != verify_commitment_and_max_age (            rc->connection,            &actx.commitment.h_commitment, @@ -836,7 +922,7 @@ TEH_handler_age_withdraw_reveal (        break;      /* Finally, sign and persist the coins */ -    if (GNUNET_OK != sign_and_persist_blinded_coins ( +    if (GNUNET_OK != finalize_age_withdraw_and_sign (            rc->connection,            &actx.commitment.h_commitment,            actx.num_coins, diff --git a/src/exchangedb/pg_insert_age_withdraw_reveal.c b/src/exchangedb/pg_insert_age_withdraw_reveal.c new file mode 100644 index 00000000..336ed384 --- /dev/null +++ b/src/exchangedb/pg_insert_age_withdraw_reveal.c @@ -0,0 +1,106 @@ +/* +   This file is part of TALER +   Copyright (C) 2023 Taler Systems SA + +   TALER is free software; you can redistribute it and/or modify it under the +   terms of the GNU General Public License as published by the Free Software +   Foundation; either version 3, or (at your option) any later version. + +   TALER is distributed in the hope that it will be useful, but WITHOUT ANY +   WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR +   A PARTICULAR PURPOSE.  See the GNU General Public License for more details. + +   You should have received a copy of the GNU General Public License along with +   TALER; see the file COPYING.  If not, see <http://www.gnu.org/licenses/> + */ +/** + * @file exchangedb/pg_insert_age_withdraw_reveal.c + * @brief Implementation of the insert_age_withdraw_reveal function for Postgres + * @author Özgür Kesim + */ +#include "platform.h" +#include "taler_error_codes.h" +#include "taler_dbevents.h" +#include "taler_pq_lib.h" +#include "pg_insert_refresh_reveal.h" +#include "pg_helper.h" + + +enum GNUNET_DB_QueryStatus +TEH_PG_insert_age_withdraw_reveal ( +  void *cls, +  /*TODO:oec*/ +  ) +{ +  struct PostgresClosure *pg = cls; + +  if (TALER_CNC_KAPPA != num_tprivs + 1) +  { +    GNUNET_break (0); +    return GNUNET_DB_STATUS_HARD_ERROR; +  } +  /* TODO */ +#if 0 +  PREPARE (pg, +           "insert_withdraw_age_revealed_coin", +           "INSERT INTO withdraw_age_reveals " +           "(h_commitment " +           ",freshcoin_index " +           ",denominations_serial " +           ",h_coin_ev " +           ",ev_sig" +           ") SELECT $1, $2, $3, " +           "         denominations_serial, $5, $6, $7, $8" +           "    FROM denominations" +           "   WHERE denom_pub_hash=$4" + +           " ON CONFLICT DO NOTHING;"); +  for (uint32_t i = 0; i<num_rrcs; i++) +  { +    const struct TALER_EXCHANGEDB_RefreshRevealedCoin *rrc = &rrcs[i]; +    struct GNUNET_PQ_QueryParam params[] = { +      GNUNET_PQ_query_param_uint64 (&melt_serial_id), +      GNUNET_PQ_query_param_uint32 (&i), +      GNUNET_PQ_query_param_auto_from_type (&rrc->orig_coin_link_sig), +      GNUNET_PQ_query_param_auto_from_type (&rrc->h_denom_pub), +      TALER_PQ_query_param_blinded_planchet (&rrc->blinded_planchet), +      TALER_PQ_query_param_exchange_withdraw_values (&rrc->exchange_vals), +      GNUNET_PQ_query_param_auto_from_type (&rrc->coin_envelope_hash), +      TALER_PQ_query_param_blinded_denom_sig (&rrc->coin_sig), +      GNUNET_PQ_query_param_end +    }; +    enum GNUNET_DB_QueryStatus qs; + +    qs = GNUNET_PQ_eval_prepared_non_select (pg->conn, +                                             "insert_refresh_revealed_coin", +                                             params); +    if (0 > qs) +      return qs; +  } + +  { +    struct GNUNET_PQ_QueryParam params[] = { +      GNUNET_PQ_query_param_uint64 (&melt_serial_id), +      GNUNET_PQ_query_param_auto_from_type (tp), +      GNUNET_PQ_query_param_fixed_size ( +        tprivs, +        num_tprivs * sizeof (struct TALER_TransferPrivateKeyP)), +      GNUNET_PQ_query_param_end +    }; + +    /* Used in #postgres_insert_refresh_reveal() to store the transfer +   keys we learned */ +    PREPARE (pg, +             "insert_refresh_transfer_keys", +             "INSERT INTO refresh_transfer_keys " +             "(melt_serial_id" +             ",transfer_pub" +             ",transfer_privs" +             ") VALUES ($1, $2, $3)" +             " ON CONFLICT DO NOTHING;"); +    return GNUNET_PQ_eval_prepared_non_select (pg->conn, +                                               "insert_refresh_transfer_keys", +                                               params); +  } +#endif +} diff --git a/src/exchangedb/pg_insert_age_withdraw_reveal.h b/src/exchangedb/pg_insert_age_withdraw_reveal.h new file mode 100644 index 00000000..a98ee4ef --- /dev/null +++ b/src/exchangedb/pg_insert_age_withdraw_reveal.h @@ -0,0 +1,45 @@ +/* +   This file is part of TALER +   Copyright (C) 2023 Taler Systems SA + +   TALER is free software; you can redistribute it and/or modify it under the +   terms of the GNU General Public License as published by the Free Software +   Foundation; either version 3, or (at your option) any later version. + +   TALER is distributed in the hope that it will be useful, but WITHOUT ANY +   WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR +   A PARTICULAR PURPOSE.  See the GNU General Public License for more details. + +   You should have received a copy of the GNU General Public License along with +   TALER; see the file COPYING.  If not, see <http://www.gnu.org/licenses/> + */ +/** + * @file exchangedb/pg_insert_age_withdraw_reveal.h + * @brief implementation of the insert_age_withdraw_reveal function for Postgres + * @author Özgür Kesim + */ +#ifndef PG_INSERT_AGE_WITHDRAW_REVEAL_H +#define PG_INSERT_AGE_WITHDRAW_REVEAL_H + +#include "taler_util.h" +#include "taler_json_lib.h" +#include "taler_exchangedb_plugin.h" +/** + * Store in the database which coin(s) the wallet wanted to create + * in a given age-withdraw operation and all of the other information + * we learned or created in the /age-withdraw/reveal step. + * + * @param cls the @e cls of this struct with the plugin-specific state + * @param h_commitment The commitment of the original age-withdraw request + * @param num_coins The number of revealed coins + * @param revealed_coins The coins + * TODO:oec + * @return query status for the transaction + */ +enum GNUNET_DB_QueryStatus +TEH_PG_insert_refresh_reveal ( +  void *cls, +  /* TODO: oec */ +  ); + +#endif diff --git a/src/include/taler_exchangedb_plugin.h b/src/include/taler_exchangedb_plugin.h index 5b724953..43f6b73e 100644 --- a/src/include/taler_exchangedb_plugin.h +++ b/src/include/taler_exchangedb_plugin.h @@ -3805,6 +3805,37 @@ struct TALER_EXCHANGEDB_Plugin      bool *balance_ok,      uint64_t *ruuid); +  /** +   * Store in the database which coin(s) the wallet wanted to withdraw with +   * age restriction enabled in a given age-withdraw operation and the relevant +   * information we learned or created in the reveal steop +   * +   * @param cls the `struct PostgresClosure` with the plugin-specific state +   * @param h_commitment The hash of the original age-withdraw commitment, which is a key into the withdraw_age_commitments table +   * @param num_coins number of coins to generate, size of the @a coin_evs array +   * TODO: oec +   * @return query execution status +   */ +  enum GNUNET_DB_QueryStatus +  (*insert_age_withdraw_reveal)( +    void *cls, +    uint64_t h_commitment, +    uint32_t num_coins +    /* TODO: oec */ +    ); + +  /** +   * Lookup in the database for the fresh coins with age-restriction that +   * we created in the given age-withdraw operation. +   * +   * TODO: oec +   */ +  enum GNUNET_DB_QueryStatus +  (*get_age_withdraw_reveal)( +    void *cls, +    uint64_t h_commitment +    /* TODO: oec */ +    );    /**     * Retrieve the details to a policy given by its hash_code | 
