Commit Graph

572 Commits

Author SHA1 Message Date
Gian Demarmels
5d2157a8f6
sign_blinded implementation 2022-02-04 15:31:49 +01:00
Gian Demarmels
f1ec1e70a0
implemented planchet_prepare for CS 2022-02-04 15:31:49 +01:00
Gian Demarmels
a02ab8f81b
added CS get R functionality and planchet setup 2022-02-04 15:31:48 +01:00
Gian Demarmels
385eb51e93
CS planchet create and withdraw create 2022-02-04 15:31:48 +01:00
Gian Demarmels
f3fb7c29e6
added CS data structures, implemented CS keypair 2022-02-04 15:31:45 +01:00
8684a9bfea
[age_restriction] progress 13/n
- major refactoring of extensions
  - extensions live now in a separate library, libtalerextensions
  - refactored all components using age_restriction accordingly
  - plumbing for plugin support for extensions roughly layed down
2022-01-23 01:36:21 +01:00
0b56de6c99
[age restriction] progress 12/n
- taler-offline-tool now handles extensions
  - command "extensions" added with subcommands "show" and "sign"
  - parses extensions from taler config
  - shows and signs of extensions and their configurations
  - creates signed set of configurations for upload
  - added test for retrieval of extension config

- simplified signature verification for extensions
  - remove per-extension signatures, also from DB schema
  - adjust prepared statements accordingly
  - adjust DB event handler for extensions
  - allow NULL for config for extension in DB schema
  - handler for /management/extensions adjusted to new datastructures

- changed test for TALER_denom_blind/TALER_denom_sign_blinded with and
  without TALER_AgeHash

- minor updates and various fixes
2022-01-21 15:41:02 +01:00
Jonathan Buchanan
c10b783521
use 'pipe' instead of 'eventfd' on non-Linux systems 2022-01-18 09:15:54 -05:00
Christian Grothoff
e7aeec04f4
The current recoup API is broken. I guess this is another example where "trivial" API changes turn out to have (multiple!) unexpected consequences.
The current "/recoup" API does not have clear idempotency semantics, as we've discussed on the phone.  This is already bad by itself, as it makes it hard to write down what the API does other than "whatever the implementation does".

However, it actually breaks correctness in this (admittedly kinda contrived, but not impossible) case:

Say that we have a coin A obtained via withdrawal and a coin B obtained via refreshing coin A. Now the denominations of A gets revoked..

The wallet does a recoup of A for EUR:1.

Now the denomination of B also gets revoked.  The wallet recoups B (incidentally also for EUR:1) and now A can be recouped again for EUR:1.  But now the exchange is in a state where it will refuse a legitimate recoup request for A because the detection for an idempotent request kicks in.

This is IMHO bad API design, and the exchange should simply always recoup the maximum amount.

Furthermore, we usually follow the principle of "API calls that take up DB space are paid".  With the current recoup API, I can do many tiny recoup requests which the exchange then has to store, right?

I guess it would not be a big change to remove the "amount" value from the recoup/recoup-refresh request bodies, right?

- Florian
2022-01-11 12:47:35 +01:00
e30989c930
[age restriction] progress 11/n
Parse age restriction information from "/keys"
- parse "age_restriction" extension, extract mask for age groups
- parse denominations from "age_restricted_denoms", too, if available
2022-01-10 00:04:23 +01:00
cc7d7707ab
[age restriction] progress 10/n
More work towards support for extensions:
- Prepared statements and DB-plugin-functions for setting and retrieving
  configurations from the database added.
- primitive "registry" of extensions for age restrictions and peer2peer
  (stub)
- TALER_Extensions now with FP for parsing, setting and converting a
  configuration.
- /management/extensions handler now verifies signature of the (opaque)
  json object for all extensions.
- /management/extensions handler calls the FP in the corrensponding
  TALER_Extension for parsing and setting the configuration of a
  particular extension

More work towards age restriction:
- TALER_Extensions interfaces for config-parser, -setter and converter
  implemented for age restriction
- DB event handler now retrieves config from database, parses it and
  sets it (the age mask) in the global extension.
- load_age_mask now loads age mask from the global extension (and not
  from the config file)
- add age_restricted_denoms to /keys response
2022-01-08 14:40:20 +01:00
ef4238874f
[age restriction] progress 9/n
More worke towards support for extensions and age restriction:

- taler-exchange-httpd_management_extensions.c almost completed
  - handling of request implemented
  - stub "set_extensions" for database transaction added

- utility functions added
  - TALER_exchange_offline_extension_agemask_{sign,verify}
  - TALER_agemask_parse_json
2021-12-27 23:24:48 +01:00
Christian Grothoff
f6ecb6c895
-eliminate redundant hash operation on link signatures 2021-12-25 15:39:01 +01:00
Christian Grothoff
84c9adf5a6
v12: also do not sign over merchant_pub in REFUND signature, centralize logic 2021-12-25 14:58:04 +01:00
Christian Grothoff
87376e02eb
protocol v12 changes (/recoup split, signature changes) plus database sharding plus O(n^2)=>O(n) worst-case complexity reduction on coin balance checks 2021-12-25 13:56:40 +01:00
Christian Grothoff
2c14d33870
deduplicate melt signing logic, remove coin_pub from data being signed over 2021-12-25 13:56:40 +01:00
1b23857f2c
[age restriction] progress 8/n
More work towards support for extensions and age restriction

- updated gana
- added handler for DB-Event
- added TEH_extensions_init() and _done()
- added global for age restriction
- added stub for post handler
- added SQL-table for extension metadata
- added enum type for extensions and other data structures

Also:
- fixed some warnings -Wmaybe-unitialized
2021-12-23 15:15:33 +01:00
Christian Grothoff
1acc851deb
-fix recoup ugliness 2021-12-16 20:18:44 +01:00
Christian Grothoff
1a1fafbd43
introducing GNUNET_TIME_Timestamp, recoup now with amounts 2021-12-14 16:04:40 +01:00
a00cebcced
put crypto worker in exchange-tools, re-enable build 2021-12-08 15:54:48 +01:00
Christian Grothoff
98e44f33a7
add missing preflight 2021-12-08 12:42:22 +01:00
Christian Grothoff
67de20d26e
major rework of withdraw transaction to use stored procedure and (presumably) reduce serialization failures by avoiding SELECT before INSERT 2021-12-05 17:16:00 +01:00
Christian Grothoff
ec45eaae18
more logging 2021-12-03 16:16:19 +01:00
Christian Grothoff
dfe245814c
reduce lock contention in RSA secmod 2021-12-02 17:25:57 +01:00
Christian Grothoff
3a5eb9285c
-fix FTBFS 2021-12-02 14:33:22 +01:00
Christian Grothoff
b3e4159c2e
more perf debug messages 2021-12-02 14:11:14 +01:00
Christian Grothoff
170402203a
make check case-insensitive 2021-12-01 17:56:47 +01:00
54c62f3ab9
[age restriction] progress 6/n
lift logic for detection of age restriction of a denomination out from
taler-exchange-secmod-rsa.c to taler-exchange_httpd_keys.c
2021-12-01 15:25:33 +01:00
Christian Grothoff
d3615c708f
-fix typos 2021-11-29 17:48:39 +01:00
4e9a5c8cc7
touch unused variable 2021-11-29 10:22:35 +01:00
93fe40c5a7
fixed signednes issue 2021-11-29 10:14:23 +01:00
a467ba6a54
typo and pointer comparison fixed 2021-11-29 10:12:08 +01:00
97bae4dd65
[age restriction] progress 5/n
- taler-exchange-secmod-rsa
  - extracts AGE_RESTRICTED per denomination from config
  - propagates flag for each denomination to server
- if age restriction is set for a denomination,
  age _mask_ is taken (for now!) from config
2021-11-28 18:51:25 +01:00
6ee13445ce
[age restriction] progress 4/n
- parser for age groups
- stringify age mask
2021-11-27 14:33:07 +01:00
Christian Grothoff
f795e32b01
-fix size check for RSA-8k 2021-11-27 14:21:36 +01:00
Christian Grothoff
f493122033
fix #7105 (for exchange) 2021-11-25 23:24:04 +01:00
Christian Grothoff
98549cdc5a
-fix 2021-11-25 10:00:55 +01:00
Christian Grothoff
414237c335
handle double-revoke gracefully 2021-11-25 09:54:23 +01:00
Christian Grothoff
bab213e794
work on #7099 2021-11-25 09:43:01 +01:00
Christian Grothoff
0ac1b7abad
handle revoke followed immediately by a sign request 2021-11-24 17:44:26 +01:00
Christian Grothoff
7b50c7c012
-fix paths issue 2021-11-21 13:37:23 +01:00
Christian Grothoff
c88363be20
-fix paths issue 2021-11-21 13:33:24 +01:00
Christian Grothoff
9b8abc1b01
-fix use after free 2021-11-21 13:30:07 +01:00
Christian Grothoff
5159badd0e
another fix related to #7099 2021-11-21 12:47:33 +01:00
Christian Grothoff
1caeaec257
fix #7099 2021-11-21 10:01:31 +01:00
Christian Grothoff
303f105985
-code cleanup 2021-11-20 12:41:50 +01:00
Christian Grothoff
2fed889224
-fix offset issue 2021-11-19 21:26:35 +01:00
Christian Grothoff
52fe9d657b
-fix leaks and compiler warnings 2021-11-19 20:56:53 +01:00
Christian Grothoff
7b5eb61370
-fix warnings 2021-11-19 17:00:37 +01:00
Christian Grothoff
68a4d90134
-misc bugfixes 2021-11-19 11:47:52 +01:00
Christian Grothoff
bdaaa0f6cb
-fix misc. compiler warnings 2021-11-19 10:57:27 +01:00
Christian Grothoff
dff5510dd3
-fix dist rule 2021-11-18 14:17:52 +01:00
Christian Grothoff
802ba3790f
-more logging 2021-11-18 13:52:58 +01:00
Christian Grothoff
fa65f8fd7d
migrate test_helper_rsa to latest API 2021-11-17 23:05:14 +01:00
Christian Grothoff
b61f601028
-use different hash for RSA vs. Denomination hashing 2021-11-17 23:02:05 +01:00
Christian Grothoff
193027862d
get util tests to pass 2021-11-17 20:52:39 +01:00
Christian Grothoff
e51e60cfb4
-checkpoint 2021-11-17 20:38:21 +01:00
Christian Grothoff
f76888378c
-fix crypto_helper FTBFS 2021-11-17 20:31:08 +01:00
Christian Grothoff
cc74bf311d
sms merge wip 2021-11-17 13:07:36 +01:00
Christian Grothoff
3da97b291e
-sms wip 2021-11-17 13:03:58 +01:00
Christian Grothoff
6e86a3c43c
-sms wip 2021-11-17 13:03:47 +01:00
Christian Grothoff
0f5fc95ecf
towards merging with master 2021-11-17 11:32:05 +01:00
Christian Grothoff
16a8b2f611
towards merging with master 2021-11-17 11:30:33 +01:00
Christian Grothoff
b7a35e0daa
towards merging with master 2021-11-17 11:26:43 +01:00
Christian Grothoff
6b8c757887
towards merging with master 2021-11-17 11:26:19 +01:00
591cefd315
[age restriction] progress 3/n
- remove redundant struct members for age commitment hash
- undo pre-mature implementation in taler-exchange-secmod-rsa.c
- carry through age restriction parameter for TALER_denom_blind
2021-11-16 14:43:54 +01:00
930e31e08f
add CLIENT_DIR to make test_crypto pass 2021-11-16 14:25:33 +01:00
c97979d00a
age restriction (load per denomination). 3/n 2021-11-14 16:39:42 +01:00
7c510388b9
age restriction progress 2/n
Signed-off-by: Özgür Kesim <oec-taler@kesim.org>
2021-11-10 17:27:49 +01:00
Christian Grothoff
98c30bee88
fix payto:// construction routine and move it to libtalerutil 2021-11-07 19:22:12 +01:00
Christian Grothoff
cd8d4bede1
add missing file 2021-11-07 11:41:53 +01:00
Christian Grothoff
9d6e104066
include h_extensions in deposit confirmation 2021-11-06 19:43:47 +01:00
Christian Grothoff
0b370a6814
add extension hashing 2021-11-06 17:26:11 +01:00
Christian Grothoff
8175fdfa0f
introduce TALER_wallet_deposit_verify 2021-11-06 16:52:14 +01:00
Christian Grothoff
938e2ce39c
more RSA cleanup 2021-11-06 16:04:26 +01:00
Christian Grothoff
f01ab79015
RSA-despecialization 2021-11-06 15:29:10 +01:00
Christian Grothoff
c3e244322b
more crypto refactoring 2021-11-05 23:01:21 +01:00
Christian Grothoff
eaf9d728f5
more crypto refactoring 2021-11-05 22:48:11 +01:00
Christian Grothoff
ba627bf84c
-fixes 2021-11-05 22:22:47 +01:00
Christian Grothoff
ebbc250f8b
-brks 2021-11-05 21:37:46 +01:00
Christian Grothoff
2549fb6dc7
more RSA abstraction work 2021-11-05 17:19:47 +01:00
Christian Grothoff
9668e2e4fb
fix typo 2021-11-05 17:07:11 +01:00
Christian Grothoff
c787e28e84
more denom key refactoring 2021-11-05 14:18:13 +01:00
Christian Grothoff
32da809fd6
abstract denomination keys a bit more 2021-11-05 14:00:10 +01:00
Christian Grothoff
1408e1587b
introduce invalid key type 2021-11-01 23:49:13 +01:00
Christian Grothoff
783d07b476
consistently distinguish blinded/unblinded denomination sigs 2021-10-31 18:12:54 +01:00
Christian Grothoff
b1197c16a4
-fix tests 2021-10-31 18:01:19 +01:00
Christian Grothoff
3eae999efc
distinguish between blind and non-blind denomination signatures 2021-10-31 17:56:56 +01:00
Christian Grothoff
5d0c6fa29b
-FTBFS fix 2021-10-27 22:30:04 +02:00
Christian Grothoff
382fb837bd
-work on testing FTBFS 2021-10-27 21:59:04 +02:00
Christian Grothoff
3900531e0d
eliminate HKDF when hashing paytos 2021-10-27 11:40:12 +02:00
Christian Grothoff
fd615f3e33
-fix exchange FTBFS 2021-10-27 09:23:14 +02:00
Christian Grothoff
b6be9dc0c0
-work on FTBFS 2021-10-27 09:23:13 +02:00
Christian Grothoff
74234f75a4
-work on FTBFS 2021-10-27 09:23:13 +02:00
Christian Grothoff
f0951d34dd
-fix more FTBFS 2021-10-27 09:23:13 +02:00
Christian Grothoff
f7d08e8c2b
-work on FTBFS; 2021-10-27 09:23:13 +02:00
Christian Grothoff
58ea04167c
-fix misc FTBFS 2021-10-27 09:23:13 +02:00
Christian Grothoff
868a4ce76d
-resovling more FTBFS issues 2021-10-27 09:23:12 +02:00
Christian Grothoff
57c334fb1f
fix remaining libtalerutil tests FTBFS issues 2021-10-27 09:23:12 +02:00
Christian Grothoff
43223899e7
add missing file 2021-10-27 09:23:12 +02:00
Christian Grothoff
17cf64dfb6
fix remaining libtalerutil FTBFS issues 2021-10-27 09:23:12 +02:00
Christian Grothoff
42bdb5aa6e
-fixing more FTBFS 2021-10-27 09:23:11 +02:00
Christian Grothoff
fc371ea18b
start to work on transformation 2021-10-27 09:23:11 +02:00
Christian Grothoff
55632b1fbf
brutally fixing types in src/include/, creating plenty of FTBFS issues 2021-10-27 09:23:11 +02:00
Christian Grothoff
7d62fa065b
start with KYC support in DB 2021-10-14 14:45:10 +02:00
Christian Grothoff
acbadd5c6e
-modify C API to future-proof it for returning more details as required for KYC implementation 2021-10-13 18:52:59 +02:00
Christian Grothoff
66573865e1
generate 502 on secmod unavailable instead of 200 with bad public key; more logging 2021-10-11 14:32:32 +02:00
Christian Grothoff
d8922f82e5
-introduce 'struct TALER_WireSalt' 2021-10-09 16:11:04 +02:00
Christian Grothoff
8ac8eee350
pow needs libm 2021-09-06 17:02:24 +02:00
Christian Grothoff
303e47e24b
add taler-config C version, useful once we depend on the next GNUnet release to avoid the LD_PRELOAD hack 2021-09-05 18:33:29 +02:00
Christian Grothoff
bf2ce9853e
add long-time overdue convenience function 2021-09-01 11:11:41 +02:00
Christian Grothoff
bbce483ba0
-handle NULL nicely 2021-08-23 08:31:01 +02:00
Christian Grothoff
8590e6b309
-check DE IBAN 2021-08-23 08:25:56 +02:00
Christian Grothoff
01e06eb715
-remove sessions also from auditor 2021-08-23 08:24:59 +02:00
Christian Grothoff
a51f39217e
fix .so search in taler-config 2021-08-19 20:41:25 +02:00
Christian Grothoff
f98c463be2
export TALER_iban_validate() API 2021-08-14 13:54:12 +02:00
Sebastian
617da7485c
check iban lower bound 2021-08-09 13:36:26 -03:00
Christian Grothoff
b58605a79d
introduce TALER_OS_init() to safely handle static linkage 2021-08-08 16:45:32 +02:00
Christian Grothoff
0a0c167567
-require receiver-name in iban payto URIs 2021-08-08 00:01:07 +02:00
Christian Grothoff
1eba4f5e62
reduce retries and timeout 2021-08-07 19:02:54 +02:00
Christian Grothoff
bd7e44720b
-proper fix for endless loop on IPC permission trouble 2021-08-05 20:48:34 +02:00
Christian Grothoff
453d984569
-try to fix Florian's FIXME/endless loop, alas without test as Florian did not provide enough details for that 2021-08-05 11:07:20 +02:00
b83ec3a794
fixme 2021-08-04 21:00:27 +02:00
4baecd4856
call chmod on path, not on whole sock addr 2021-08-04 20:54:45 +02:00
07bcff123f
call chmod on client socket path, not client socket directory 2021-08-04 20:01:28 +02:00
Christian Grothoff
6d099b44fb
fix #6976 2021-08-04 17:13:53 +02:00
Christian Grothoff
06676e72cb
allow ';' in URLs, needed for data URLs 2021-08-03 21:50:54 +02:00
Christian Grothoff
5fc2e72a2a
fix #6969 2021-08-03 14:41:42 +02:00
Christian Grothoff
3a6ae694ec
-work on #6948 2021-08-02 19:48:37 +02:00
Christian Grothoff
c4ae15c1db
-strengthen payto validation logic 2021-08-02 19:38:23 +02:00
5bc3217b78
gitignore 2021-07-30 18:38:48 +02:00
bfebdae838
fix secmod helper config, wait for client directory 2021-07-30 18:37:54 +02:00
2bdc2f61c5
put generated secmod keys in separate dir 2021-07-30 18:12:36 +02:00
Christian Grothoff
0ef7c0a0b7
fix #6960 2021-07-29 23:56:46 +02:00
ce4daddca0
secmod client dir needs group write permissions 2021-07-29 20:34:56 +02:00
a3520d9c11
config 2021-07-29 18:31:48 +02:00
036d4cb71a
secmod: services create their own client dirs with correct permissions 2021-07-29 13:04:55 +02:00
9624d92a65
secmod: use umask, as fchmod is undefined on sockets 2021-07-27 12:04:52 +02:00
32f3391be1
secmod: fchmod socket to ug+rw 2021-07-27 11:26:48 +02:00
Christian Grothoff
306a08a71c
-rename TALER_amount_get_zero to TALER_amount_set_zero 2021-07-23 13:02:04 +02:00
Christian Grothoff
249ba03c36
expose 2^52 amount value limit in header, check that limit in test cases, add TALER_amount_multiply and TALER_amount_divide2 operations 2021-07-10 14:55:35 +02:00
Christian Grothoff
3df47fa6d7
-fix returning full response 2021-05-28 23:08:03 +02:00
Christian Grothoff
3ef39e51f3
more work on hopefully fixing #6862 2021-05-14 18:08:45 +02:00
Christian Grothoff
ab96483e01
disable gettext use in secmod code (#6862) 2021-05-14 15:47:02 +02:00
Christian Grothoff
23f49379bb
remove fault injection 2021-04-24 19:05:55 +02:00
Christian Grothoff
0470ba3692
-inject fault for buildbot test 2021-04-20 21:02:31 +02:00
Christian Grothoff
da25913e61
skip keys in future keys if they already expired (remove logging) 2021-04-16 14:17:55 +02:00
Christian Grothoff
74ea2da2b0
skip keys in future keys if they already expired 2021-04-16 14:17:33 +02:00
Christian Grothoff
084a5f6685
fix rare NPE 2021-04-14 15:24:15 +02:00
Christian Grothoff
57cb2d1ca6
tolerate extreme case where all denominations expired 2021-04-12 21:48:43 +02:00