exchange/src/util/crypto_wire.c

/*
  This file is part of TALER
  Copyright (C) 2018 Taler Systems SA

  TALER is free software; you can redistribute it and/or modify it under the
  terms of the GNU General Public License as published by the Free Software
  Foundation; either version 3, or (at your option) any later version.

  TALER is distributed in the hope that it will be useful, but WITHOUT ANY
  WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
  A PARTICULAR PURPOSE.  See the GNU General Public License for more details.

  You should have received a copy of the GNU General Public License along with
  TALER; see the file COPYING.  If not, see <http://www.gnu.org/licenses/>
*/
/**
 * @file util/crypto_wire.c
 * @brief functions for making and verifying /wire account signatures
 * @author Christian Grothoff <christian@grothoff.org>
 */
#include "platform.h"
#include "taler_util.h"
#include "taler_signatures.h"


enum GNUNET_GenericReturnValue
TALER_exchange_wire_signature_check (
  const char *payto_uri,
  const struct TALER_MasterPublicKeyP *master_pub,
  const struct TALER_MasterSignatureP *master_sig)
{
  struct TALER_MasterWireDetailsPS wd = {
    .purpose.purpose = htonl (TALER_SIGNATURE_MASTER_WIRE_DETAILS),
    .purpose.size = htonl (sizeof (wd))
  };

  TALER_payto_hash (payto_uri,
                    &wd.h_wire_details);
  return GNUNET_CRYPTO_eddsa_verify (TALER_SIGNATURE_MASTER_WIRE_DETAILS,
                                     &wd,
                                     &master_sig->eddsa_signature,
                                     &master_pub->eddsa_pub);
}


void
TALER_exchange_wire_signature_make (
  const char *payto_uri,
  const struct TALER_MasterPrivateKeyP *master_priv,
  struct TALER_MasterSignatureP *master_sig)
{
  struct TALER_MasterWireDetailsPS wd = {
    .purpose.purpose = htonl (TALER_SIGNATURE_MASTER_WIRE_DETAILS),
    .purpose.size = htonl (sizeof (wd))
  };

  TALER_payto_hash (payto_uri,
                    &wd.h_wire_details);
  GNUNET_CRYPTO_eddsa_sign (&master_priv->eddsa_priv,
                            &wd,
                            &master_sig->eddsa_signature);
}


void
TALER_merchant_wire_signature_hash (const char *payto_uri,
                                    const struct TALER_WireSaltP *salt,
                                    struct TALER_MerchantWireHash *hc)
{
  GNUNET_assert (GNUNET_YES ==
                 GNUNET_CRYPTO_kdf (hc,
                                    sizeof (*hc),
                                    salt,
                                    sizeof (*salt),
                                    payto_uri,
                                    strlen (payto_uri) + 1,
                                    "merchant-wire-signature",
                                    strlen ("merchant-wire-signature"),
                                    NULL, 0));
}


enum GNUNET_GenericReturnValue
TALER_merchant_wire_signature_check (
  const char *payto_uri,
  const struct TALER_WireSaltP *salt,
  const struct TALER_MerchantPublicKeyP *merch_pub,
  const struct TALER_MerchantSignatureP *merch_sig)
{
  struct TALER_MerchantWireDetailsPS wd = {
    .purpose.purpose = htonl (TALER_SIGNATURE_MERCHANT_WIRE_DETAILS),
    .purpose.size = htonl (sizeof (wd))
  };

  TALER_merchant_wire_signature_hash (payto_uri,
                                      salt,
                                      &wd.h_wire_details);
  return GNUNET_CRYPTO_eddsa_verify (TALER_SIGNATURE_MERCHANT_WIRE_DETAILS,
                                     &wd,
                                     &merch_sig->eddsa_sig,
                                     &merch_pub->eddsa_pub);
}


void
TALER_merchant_wire_signature_make (
  const char *payto_uri,
  const struct TALER_WireSaltP *salt,
  const struct TALER_MerchantPrivateKeyP *merch_priv,
  struct TALER_MerchantSignatureP *merch_sig)
{
  struct TALER_MerchantWireDetailsPS wd = {
    .purpose.purpose = htonl (TALER_SIGNATURE_MERCHANT_WIRE_DETAILS),
    .purpose.size = htonl (sizeof (wd))
  };

  TALER_merchant_wire_signature_hash (payto_uri,
                                      salt,
                                      &wd.h_wire_details);
  GNUNET_CRYPTO_eddsa_sign (&merch_priv->eddsa_priv,
                            &wd,
                            &merch_sig->eddsa_sig);
}


/* end of crypto_wire.c */
Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00			`/*`
			`This file is part of TALER`
			`Copyright (C) 2018 Taler Systems SA`

			`TALER is free software; you can redistribute it and/or modify it under the`
			`terms of the GNU General Public License as published by the Free Software`
			`Foundation; either version 3, or (at your option) any later version.`

			`TALER is distributed in the hope that it will be useful, but WITHOUT ANY`
			`WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR`
			`A PARTICULAR PURPOSE. See the GNU General Public License for more details.`

			`You should have received a copy of the GNU General Public License along with`
			`TALER; see the file COPYING. If not, see <http://www.gnu.org/licenses/>`
			`*/`
			`/**`
			`* @file util/crypto_wire.c`
			`* @brief functions for making and verifying /wire account signatures`
			`* @author Christian Grothoff <christian@grothoff.org>`
			`*/`
			`#include "platform.h"`
-fix more FTBFS 2021-10-25 18:02:27 +02:00			`#include "taler_util.h"`
Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00			`#include "taler_signatures.h"`

fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00
misc doxygen fixes 2020-12-20 17:10:09 +01:00			`enum GNUNET_GenericReturnValue`
code cleanup (comments, scoping, naming, indentation) 2020-03-07 00:28:07 +01:00			`TALER_exchange_wire_signature_check (`
			`const char *payto_uri,`
			`const struct TALER_MasterPublicKeyP *master_pub,`
			`const struct TALER_MasterSignatureP *master_sig)`
Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00			`{`
adapt to new GNUnet sign API (#6164) 2020-04-08 18:18:20 +02:00			`struct TALER_MasterWireDetailsPS wd = {`
			`.purpose.purpose = htonl (TALER_SIGNATURE_MASTER_WIRE_DETAILS),`
			`.purpose.size = htonl (sizeof (wd))`
			`};`
Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00
-work on FTBFS 2021-10-25 18:37:06 +02:00			`TALER_payto_hash (payto_uri,`
			`&wd.h_wire_details);`
Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00			`return GNUNET_CRYPTO_eddsa_verify (TALER_SIGNATURE_MASTER_WIRE_DETAILS,`
adapt to new GNUnet sign API (#6164) 2020-04-08 18:18:20 +02:00			`&wd,`
Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00			`&master_sig->eddsa_signature,`
			`&master_pub->eddsa_pub);`
			`}`


			`void`
code cleanup (comments, scoping, naming, indentation) 2020-03-07 00:28:07 +01:00			`TALER_exchange_wire_signature_make (`
			`const char *payto_uri,`
			`const struct TALER_MasterPrivateKeyP *master_priv,`
			`struct TALER_MasterSignatureP *master_sig)`
Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00			`{`
adapt to new GNUnet sign API (#6164) 2020-04-08 18:18:20 +02:00			`struct TALER_MasterWireDetailsPS wd = {`
			`.purpose.purpose = htonl (TALER_SIGNATURE_MASTER_WIRE_DETAILS),`
			`.purpose.size = htonl (sizeof (wd))`
			`};`
Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00
-work on FTBFS 2021-10-25 18:37:06 +02:00			`TALER_payto_hash (payto_uri,`
			`&wd.h_wire_details);`
adapt to new GNUnet sign API (#6164) 2020-04-08 18:18:20 +02:00			`GNUNET_CRYPTO_eddsa_sign (&master_priv->eddsa_priv,`
			`&wd,`
			`&master_sig->eddsa_signature);`
Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00			`}`


fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00			`void`
consistently use payto URI instead of URL 2020-01-19 17:03:19 +01:00			`TALER_merchant_wire_signature_hash (const char *payto_uri,`
-rename fest 2022-02-07 12:33:35 +01:00			`const struct TALER_WireSaltP *salt,`
-fixing more FTBFS 2021-10-22 23:15:04 +02:00			`struct TALER_MerchantWireHash *hc)`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00			`{`
			`GNUNET_assert (GNUNET_YES ==`
			`GNUNET_CRYPTO_kdf (hc,`
			`sizeof (*hc),`
			`salt,`
-introduce 'struct TALER_WireSalt' 2021-10-09 16:11:04 +02:00			`sizeof (*salt),`
consistently use payto URI instead of URL 2020-01-19 17:03:19 +01:00			`payto_uri,`
			`strlen (payto_uri) + 1,`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00			`"merchant-wire-signature",`
			`strlen ("merchant-wire-signature"),`
			`NULL, 0));`
			`}`


misc doxygen fixes 2020-12-20 17:10:09 +01:00			`enum GNUNET_GenericReturnValue`
code cleanup (comments, scoping, naming, indentation) 2020-03-07 00:28:07 +01:00			`TALER_merchant_wire_signature_check (`
			`const char *payto_uri,`
-rename fest 2022-02-07 12:33:35 +01:00			`const struct TALER_WireSaltP *salt,`
code cleanup (comments, scoping, naming, indentation) 2020-03-07 00:28:07 +01:00			`const struct TALER_MerchantPublicKeyP *merch_pub,`
			`const struct TALER_MerchantSignatureP *merch_sig)`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00			`{`
-fixing more FTBFS 2021-10-22 23:15:04 +02:00			`struct TALER_MerchantWireDetailsPS wd = {`
adapt to new GNUnet sign API (#6164) 2020-04-08 18:18:20 +02:00			`.purpose.purpose = htonl (TALER_SIGNATURE_MERCHANT_WIRE_DETAILS),`
			`.purpose.size = htonl (sizeof (wd))`
			`};`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00
consistently use payto URI instead of URL 2020-01-19 17:03:19 +01:00			`TALER_merchant_wire_signature_hash (payto_uri,`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00			`salt,`
			`&wd.h_wire_details);`
			`return GNUNET_CRYPTO_eddsa_verify (TALER_SIGNATURE_MERCHANT_WIRE_DETAILS,`
adapt to new GNUnet sign API (#6164) 2020-04-08 18:18:20 +02:00			`&wd,`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00			`&merch_sig->eddsa_sig,`
			`&merch_pub->eddsa_pub);`
			`}`


			`void`
code cleanup (comments, scoping, naming, indentation) 2020-03-07 00:28:07 +01:00			`TALER_merchant_wire_signature_make (`
			`const char *payto_uri,`
-rename fest 2022-02-07 12:33:35 +01:00			`const struct TALER_WireSaltP *salt,`
code cleanup (comments, scoping, naming, indentation) 2020-03-07 00:28:07 +01:00			`const struct TALER_MerchantPrivateKeyP *merch_priv,`
			`struct TALER_MerchantSignatureP *merch_sig)`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00			`{`
-fixing more FTBFS 2021-10-22 23:15:04 +02:00			`struct TALER_MerchantWireDetailsPS wd = {`
adapt to new GNUnet sign API (#6164) 2020-04-08 18:18:20 +02:00			`.purpose.purpose = htonl (TALER_SIGNATURE_MERCHANT_WIRE_DETAILS),`
			`.purpose.size = htonl (sizeof (wd))`
			`};`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00
consistently use payto URI instead of URL 2020-01-19 17:03:19 +01:00			`TALER_merchant_wire_signature_hash (payto_uri,`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00			`salt,`
			`&wd.h_wire_details);`
adapt to new GNUnet sign API (#6164) 2020-04-08 18:18:20 +02:00			`GNUNET_CRYPTO_eddsa_sign (&merch_priv->eddsa_priv,`
			`&wd,`
			`&merch_sig->eddsa_sig);`
fix #5434 (no more salt in exchange wire replies) 2018-10-06 15:05:06 +02:00			`}`


Changing configuration structure to enable multiple accounts. This change enables using multiple wire plugins at the same time. Also, we now distinguish between the wire plugin (i.e. EBICS or taler_bank) and the wire method (i.e. SEPA or x-taler-bank) that the wire plugin is implementing. The "taler-bank" wire method was renamed from "test" to "x-taler-bank". This also changes the format of the /wire response of the exchange, as we now need to return multiple accounts. Note that wire fees are specified per wire method, not per wire account. taler-exchange-keyup now automatically signs all of the /wire responses in the location specified by the configuration. Account identification in wire plugins was changed to use payto://-URLs instead of method-specific JSON fields. Signing and validation of /wire responses was moved from each wire plugin to a generic validation method in libtalerutil (crypto) or libtalerjson (for JSON-formatted inputs). Convenience methods were added to generate JSON for wire accounts (salting, signing). Various section and option names were adjusted to streamline the configuration and make it more consistent overall. Documentation was updated as well. 2018-04-02 14:24:45 +02:00			`/* end of crypto_wire.c */`