6 Star 46 Fork 28

Hyperledger/fabric

加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
克隆/下载
cred.go 3.43 KB
一键复制 编辑 原始数据 按行查看 历史
/*
Copyright IBM Corp. All Rights Reserved.
SPDX-License-Identifier: Apache-2.0
*/
package handlers
import (
"github.com/hyperledger/fabric/bccsp"
"github.com/pkg/errors"
)
// CredentialRequestSigner produces credential requests
type CredentialRequestSigner struct {
// CredRequest implements the underlying cryptographic algorithms
CredRequest CredRequest
}
func (c *CredentialRequestSigner) Sign(k bccsp.Key, digest []byte, opts bccsp.SignerOpts) ([]byte, error) {
userSecretKey, ok := k.(*userSecretKey)
if !ok {
return nil, errors.New("invalid key, expected *userSecretKey")
}
credentialRequestSignerOpts, ok := opts.(*bccsp.IdemixCredentialRequestSignerOpts)
if !ok {
return nil, errors.New("invalid options, expected *IdemixCredentialRequestSignerOpts")
}
if credentialRequestSignerOpts.IssuerPK == nil {
return nil, errors.New("invalid options, missing issuer public key")
}
issuerPK, ok := credentialRequestSignerOpts.IssuerPK.(*issuerPublicKey)
if !ok {
return nil, errors.New("invalid options, expected IssuerPK as *issuerPublicKey")
}
return c.CredRequest.Sign(userSecretKey.sk, issuerPK.pk, credentialRequestSignerOpts.IssuerNonce)
}
// CredentialRequestVerifier verifies credential requests
type CredentialRequestVerifier struct {
// CredRequest implements the underlying cryptographic algorithms
CredRequest CredRequest
}
func (c *CredentialRequestVerifier) Verify(k bccsp.Key, signature, digest []byte, opts bccsp.SignerOpts) (bool, error) {
issuerPublicKey, ok := k.(*issuerPublicKey)
if !ok {
return false, errors.New("invalid key, expected *issuerPublicKey")
}
credentialRequestSignerOpts, ok := opts.(*bccsp.IdemixCredentialRequestSignerOpts)
if !ok {
return false, errors.New("invalid options, expected *IdemixCredentialRequestSignerOpts")
}
err := c.CredRequest.Verify(signature, issuerPublicKey.pk, credentialRequestSignerOpts.IssuerNonce)
if err != nil {
return false, err
}
return true, nil
}
type CredentialSigner struct {
Credential Credential
}
func (s *CredentialSigner) Sign(k bccsp.Key, digest []byte, opts bccsp.SignerOpts) (signature []byte, err error) {
issuerSecretKey, ok := k.(*issuerSecretKey)
if !ok {
return nil, errors.New("invalid key, expected *issuerSecretKey")
}
credOpts, ok := opts.(*bccsp.IdemixCredentialSignerOpts)
if !ok {
return nil, errors.New("invalid options, expected *IdemixCredentialSignerOpts")
}
signature, err = s.Credential.Sign(issuerSecretKey.sk, digest, credOpts.Attributes)
if err != nil {
return nil, err
}
return
}
type CredentialVerifier struct {
Credential Credential
}
func (v *CredentialVerifier) Verify(k bccsp.Key, signature, digest []byte, opts bccsp.SignerOpts) (valid bool, err error) {
userSecretKey, ok := k.(*userSecretKey)
if !ok {
return false, errors.New("invalid key, expected *userSecretKey")
}
credOpts, ok := opts.(*bccsp.IdemixCredentialSignerOpts)
if !ok {
return false, errors.New("invalid options, expected *IdemixCredentialSignerOpts")
}
if credOpts.IssuerPK == nil {
return false, errors.New("invalid options, missing issuer public key")
}
ipk, ok := credOpts.IssuerPK.(*issuerPublicKey)
if !ok {
return false, errors.New("invalid issuer public key, expected *issuerPublicKey")
}
if len(signature) == 0 {
return false, errors.New("invalid signature, it must not be empty")
}
err = v.Credential.Verify(userSecretKey.sk, ipk.pk, signature, credOpts.Attributes)
if err != nil {
return false, err
}
return true, nil
}
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
1
https://gitee.com/hyperledger/fabric.git
git@gitee.com:hyperledger/fabric.git
hyperledger
fabric
fabric
v2.0.0-alpha

搜索帮助