代码拉取完成,页面将自动刷新
/*
Copyright IBM Corp. All Rights Reserved.
SPDX-License-Identifier: Apache-2.0
*/
package handlers
import (
"github.com/hyperledger/fabric/bccsp"
"github.com/pkg/errors"
)
// CredentialRequestSigner produces credential requests
type CredentialRequestSigner struct {
// CredRequest implements the underlying cryptographic algorithms
CredRequest CredRequest
}
func (c *CredentialRequestSigner) Sign(k bccsp.Key, digest []byte, opts bccsp.SignerOpts) ([]byte, error) {
userSecretKey, ok := k.(*userSecretKey)
if !ok {
return nil, errors.New("invalid key, expected *userSecretKey")
}
credentialRequestSignerOpts, ok := opts.(*bccsp.IdemixCredentialRequestSignerOpts)
if !ok {
return nil, errors.New("invalid options, expected *IdemixCredentialRequestSignerOpts")
}
if credentialRequestSignerOpts.IssuerPK == nil {
return nil, errors.New("invalid options, missing issuer public key")
}
issuerPK, ok := credentialRequestSignerOpts.IssuerPK.(*issuerPublicKey)
if !ok {
return nil, errors.New("invalid options, expected IssuerPK as *issuerPublicKey")
}
return c.CredRequest.Sign(userSecretKey.sk, issuerPK.pk, credentialRequestSignerOpts.IssuerNonce)
}
// CredentialRequestVerifier verifies credential requests
type CredentialRequestVerifier struct {
// CredRequest implements the underlying cryptographic algorithms
CredRequest CredRequest
}
func (c *CredentialRequestVerifier) Verify(k bccsp.Key, signature, digest []byte, opts bccsp.SignerOpts) (bool, error) {
issuerPublicKey, ok := k.(*issuerPublicKey)
if !ok {
return false, errors.New("invalid key, expected *issuerPublicKey")
}
credentialRequestSignerOpts, ok := opts.(*bccsp.IdemixCredentialRequestSignerOpts)
if !ok {
return false, errors.New("invalid options, expected *IdemixCredentialRequestSignerOpts")
}
err := c.CredRequest.Verify(signature, issuerPublicKey.pk, credentialRequestSignerOpts.IssuerNonce)
if err != nil {
return false, err
}
return true, nil
}
type CredentialSigner struct {
Credential Credential
}
func (s *CredentialSigner) Sign(k bccsp.Key, digest []byte, opts bccsp.SignerOpts) (signature []byte, err error) {
issuerSecretKey, ok := k.(*issuerSecretKey)
if !ok {
return nil, errors.New("invalid key, expected *issuerSecretKey")
}
credOpts, ok := opts.(*bccsp.IdemixCredentialSignerOpts)
if !ok {
return nil, errors.New("invalid options, expected *IdemixCredentialSignerOpts")
}
signature, err = s.Credential.Sign(issuerSecretKey.sk, digest, credOpts.Attributes)
if err != nil {
return nil, err
}
return
}
type CredentialVerifier struct {
Credential Credential
}
func (v *CredentialVerifier) Verify(k bccsp.Key, signature, digest []byte, opts bccsp.SignerOpts) (valid bool, err error) {
userSecretKey, ok := k.(*userSecretKey)
if !ok {
return false, errors.New("invalid key, expected *userSecretKey")
}
credOpts, ok := opts.(*bccsp.IdemixCredentialSignerOpts)
if !ok {
return false, errors.New("invalid options, expected *IdemixCredentialSignerOpts")
}
if credOpts.IssuerPK == nil {
return false, errors.New("invalid options, missing issuer public key")
}
ipk, ok := credOpts.IssuerPK.(*issuerPublicKey)
if !ok {
return false, errors.New("invalid issuer public key, expected *issuerPublicKey")
}
if len(signature) == 0 {
return false, errors.New("invalid signature, it must not be empty")
}
err = v.Credential.Verify(userSecretKey.sk, ipk.pk, signature, credOpts.Attributes)
if err != nil {
return false, err
}
return true, nil
}
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。