登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
1 Star 1 Fork 0

Hyperledger Fabric 国密 / fabric

代码 Issues 1 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
克隆/下载
idemix.go 6.57 KB
一键复制 编辑 原始数据 按行查看 历史
Jtyoui 提交于 2021-07-22 15:59 . 国密
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162
/*

Copyright IBM Corp. All Rights Reserved.



SPDX-License-Identifier: Apache-2.0

*/

package handlers



import (

	"crypto/ecdsa"



	"gitee.com/hyperledger-fabric-gm/fabric/bccsp"

)



// IssuerPublicKey is the issuer public key

type IssuerPublicKey interface {



	// Bytes returns the byte representation of this key

	Bytes() ([]byte, error)



	// Hash returns the hash representation of this key.

	// The output is supposed to be collision-resistant

	Hash() []byte

}



// IssuerPublicKey is the issuer secret key

type IssuerSecretKey interface {



	// Bytes returns the byte representation of this key

	Bytes() ([]byte, error)



	// Public returns the corresponding public key

	Public() IssuerPublicKey

}



// Issuer is a local interface to decouple from the idemix implementation

type Issuer interface {

	// NewKey generates a new idemix issuer key w.r.t the passed attribute names.

	NewKey(AttributeNames []string) (IssuerSecretKey, error)



	// NewPublicKeyFromBytes converts the passed bytes to an Issuer public key

	// It makes sure that the so obtained public key has the passed attributes, if specified

	NewPublicKeyFromBytes(raw []byte, attributes []string) (IssuerPublicKey, error)

}



// Big represent a big integer

type Big interface {

	// Bytes returns the byte representation of this key

	Bytes() ([]byte, error)

}



// Ecp represents an elliptic curve point

type Ecp interface {

	// Bytes returns the byte representation of this key

	Bytes() ([]byte, error)

}



// User is a local interface to decouple from the idemix implementation

type User interface {

	// NewKey generates a new User secret key

	NewKey() (Big, error)



	// NewKeyFromBytes converts the passed bytes to a User secret key

	NewKeyFromBytes(raw []byte) (Big, error)



	// MakeNym creates a new unlinkable pseudonym

	MakeNym(sk Big, key IssuerPublicKey) (Ecp, Big, error)



	// NewPublicNymFromBytes converts the passed bytes to a public nym

	NewPublicNymFromBytes(raw []byte) (Ecp, error)

}



// CredRequest is a local interface to decouple from the idemix implementation

// of the issuance of credential requests.

type CredRequest interface {

	// Sign creates a new Credential Request, the first message of the interactive credential issuance protocol

	// (from user to issuer)

	Sign(sk Big, ipk IssuerPublicKey, nonce []byte) ([]byte, error)



	// Verify verifies the credential request

	Verify(credRequest []byte, ipk IssuerPublicKey, nonce []byte) error

}



// CredRequest is a local interface to decouple from the idemix implementation

// of the issuance of credentials.

type Credential interface {



	// Sign issues a new credential, which is the last step of the interactive issuance protocol

	// All attribute values are added by the issuer at this step and then signed together with a commitment to

	// the user's secret key from a credential request

	Sign(key IssuerSecretKey, credentialRequest []byte, attributes []bccsp.IdemixAttribute) ([]byte, error)



	// Verify cryptographically verifies the credential by verifying the signature

	// on the attribute values and user's secret key

	Verify(sk Big, ipk IssuerPublicKey, credential []byte, attributes []bccsp.IdemixAttribute) error

}



// Revocation is a local interface to decouple from the idemix implementation

// the revocation-related operations

type Revocation interface {



	// NewKey generates a long term signing key that will be used for revocation

	NewKey() (*ecdsa.PrivateKey, error)



	// Sign creates the Credential Revocation Information for a certain time period (epoch).

	// Users can use the CRI to prove that they are not revoked.

	// Note that when not using revocation (i.e., alg = ALG_NO_REVOCATION), the entered unrevokedHandles are not used,

	// and the resulting CRI can be used by any signer.

	Sign(key *ecdsa.PrivateKey, unrevokedHandles [][]byte, epoch int, alg bccsp.RevocationAlgorithm) ([]byte, error)



	// Verify verifies that the revocation PK for a certain epoch is valid,

	// by checking that it was signed with the long term revocation key.

	// Note that even if we use no revocation (i.e., alg = ALG_NO_REVOCATION), we need

	// to verify the signature to make sure the issuer indeed signed that no revocation

	// is used in this epoch.

	Verify(pk *ecdsa.PublicKey, cri []byte, epoch int, alg bccsp.RevocationAlgorithm) error

}



// SignatureScheme is a local interface to decouple from the idemix implementation

// the sign-related operations

type SignatureScheme interface {

	// Sign creates a new idemix signature (Schnorr-type signature).

	// The attributes slice steers which attributes are disclosed:

	// If attributes[i].Type == bccsp.IdemixHiddenAttribute then attribute i remains hidden and otherwise it is disclosed.

	// We require the revocation handle to remain undisclosed (i.e., attributes[rhIndex] == bccsp.IdemixHiddenAttribute).

	// Parameters are to be understood as follow:

	// cred: the serialized version of an idemix credential;

	// sk: the user secret key;

	// (Nym, RNym): Nym key-pair;

	// ipk: issuer public key;

	// attributes: as described above;

	// msg: the message to be signed;

	// rhIndex: revocation handle index relative to attributes;

	// cri: the serialized version of the Credential Revocation Information (it contains the epoch this signature

	// is created in reference to).

	Sign(cred []byte, sk Big, Nym Ecp, RNym Big, ipk IssuerPublicKey, attributes []bccsp.IdemixAttribute,

		msg []byte, rhIndex int, cri []byte) ([]byte, error)



	// Verify verifies an idemix signature.

	// The attribute slice steers which attributes it expects to be disclosed

	// If attributes[i].Type == bccsp.IdemixHiddenAttribute then attribute i remains hidden and otherwise

	// attributes[i].Value is expected to contain the disclosed attribute value.

	// In other words, this function will check that if attribute i is disclosed, the i-th attribute equals attributes[i].Value.

	// Parameters are to be understood as follow:

	// ipk: issuer public key;

	// signature: signature to verify;

	// msg: message signed;

	// attributes: as described above;

	// rhIndex: revocation handle index relative to attributes;

	// revocationPublicKey: revocation public key;

	// epoch: revocation epoch.

	Verify(ipk IssuerPublicKey, signature, msg []byte, attributes []bccsp.IdemixAttribute, rhIndex int, revocationPublicKey *ecdsa.PublicKey, epoch int) error

}



// NymSignatureScheme is a local interface to decouple from the idemix implementation

// the nym sign-related operations

type NymSignatureScheme interface {

	// Sign creates a new idemix pseudonym signature

	Sign(sk Big, Nym Ecp, RNym Big, ipk IssuerPublicKey, digest []byte) ([]byte, error)



	// Verify verifies an idemix NymSignature

	Verify(pk IssuerPublicKey, Nym Ecp, signature, digest []byte) error

}
Go
1
https://gitee.com/hyperledger-fabric-gm/fabric.git
git@gitee.com:hyperledger-fabric-gm/fabric.git
hyperledger-fabric-gm
fabric
fabric
v1.4.9
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部