登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
1 Star 0 Fork 0

小庄 / fabric

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
克隆/下载
bccsp.go 6.38 KB
一键复制 编辑 原始数据 按行查看 历史
Angelo De Caro 提交于 2018-12-05 12:40 . [FAB-13139] Discard Idemix Empty Digest
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171
/*

Copyright IBM Corp. All Rights Reserved.



SPDX-License-Identifier: Apache-2.0

*/

package idemix



import (

	"reflect"



	"github.com/hyperledger/fabric/bccsp/idemix/bridge"



	"github.com/hyperledger/fabric/bccsp/idemix/handlers"



	"github.com/hyperledger/fabric/bccsp"

	"github.com/hyperledger/fabric/bccsp/sw"

	"github.com/pkg/errors"

)



type csp struct {

	*sw.CSP

}



func New(keyStore bccsp.KeyStore) (*csp, error) {

	base, err := sw.New(keyStore)

	if err != nil {

		return nil, errors.Wrap(err, "failed instantiating base bccsp")

	}



	csp := &csp{CSP: base}



	// key generators

	base.AddWrapper(reflect.TypeOf(&bccsp.IdemixIssuerKeyGenOpts{}), &handlers.IssuerKeyGen{Issuer: &bridge.Issuer{NewRand: bridge.NewRandOrPanic}})

	base.AddWrapper(reflect.TypeOf(&bccsp.IdemixUserSecretKeyGenOpts{}), &handlers.UserKeyGen{User: &bridge.User{NewRand: bridge.NewRandOrPanic}})

	base.AddWrapper(reflect.TypeOf(&bccsp.IdemixRevocationKeyGenOpts{}), &handlers.RevocationKeyGen{Revocation: &bridge.Revocation{}})



	// key derivers

	base.AddWrapper(reflect.TypeOf(handlers.NewUserSecretKey(nil, false)), &handlers.NymKeyDerivation{

		User: &bridge.User{NewRand: bridge.NewRandOrPanic},

	})



	// signers

	base.AddWrapper(reflect.TypeOf(handlers.NewUserSecretKey(nil, false)), &userSecreKeySignerMultiplexer{

		signer:                  &handlers.Signer{SignatureScheme: &bridge.SignatureScheme{NewRand: bridge.NewRandOrPanic}},

		nymSigner:               &handlers.NymSigner{NymSignatureScheme: &bridge.NymSignatureScheme{NewRand: bridge.NewRandOrPanic}},

		credentialRequestSigner: &handlers.CredentialRequestSigner{CredRequest: &bridge.CredRequest{NewRand: bridge.NewRandOrPanic}},

	})

	base.AddWrapper(reflect.TypeOf(handlers.NewIssuerSecretKey(nil, false)), &handlers.CredentialSigner{

		Credential: &bridge.Credential{NewRand: bridge.NewRandOrPanic},

	})

	base.AddWrapper(reflect.TypeOf(handlers.NewRevocationSecretKey(nil, false)), &handlers.CriSigner{

		Revocation: &bridge.Revocation{},

	})



	// verifiers

	base.AddWrapper(reflect.TypeOf(handlers.NewIssuerPublicKey(nil)), &issuerPublicKeyVerifierMultiplexer{

		verifier:                  &handlers.Verifier{SignatureScheme: &bridge.SignatureScheme{NewRand: bridge.NewRandOrPanic}},

		credentialRequestVerifier: &handlers.CredentialRequestVerifier{CredRequest: &bridge.CredRequest{NewRand: bridge.NewRandOrPanic}},

	})

	base.AddWrapper(reflect.TypeOf(handlers.NewNymPublicKey(nil)), &handlers.NymVerifier{

		NymSignatureScheme: &bridge.NymSignatureScheme{NewRand: bridge.NewRandOrPanic},

	})

	base.AddWrapper(reflect.TypeOf(handlers.NewUserSecretKey(nil, false)), &handlers.CredentialVerifier{

		Credential: &bridge.Credential{NewRand: bridge.NewRandOrPanic},

	})

	base.AddWrapper(reflect.TypeOf(handlers.NewRevocationPublicKey(nil)), &handlers.CriVerifier{

		Revocation: &bridge.Revocation{},

	})



	// importers

	base.AddWrapper(reflect.TypeOf(&bccsp.IdemixUserSecretKeyImportOpts{}), &handlers.UserKeyImporter{

		User: &bridge.User{},

	})

	base.AddWrapper(reflect.TypeOf(&bccsp.IdemixIssuerPublicKeyImportOpts{}), &handlers.IssuerPublicKeyImporter{

		Issuer: &bridge.Issuer{},

	})

	base.AddWrapper(reflect.TypeOf(&bccsp.IdemixNymPublicKeyImportOpts{}), &handlers.NymPublicKeyImporter{

		User: &bridge.User{},

	})

	base.AddWrapper(reflect.TypeOf(&bccsp.IdemixRevocationPublicKeyImportOpts{}), &handlers.RevocationPublicKeyImporter{})



	return csp, nil

}



// Sign signs digest using key k.

// The opts argument should be appropriate for the primitive used.

//

// Note that when a signature of a hash of a larger message is needed,

// the caller is responsible for hashing the larger message and passing

// the hash (as digest).

// Notice that this is overriding the Sign methods of the sw impl. to avoid the digest check.

func (csp *csp) Sign(k bccsp.Key, digest []byte, opts bccsp.SignerOpts) (signature []byte, err error) {

	// Validate arguments

	if k == nil {

		return nil, errors.New("Invalid Key. It must not be nil.")

	}

	// Do not check for digest



	keyType := reflect.TypeOf(k)

	signer, found := csp.Signers[keyType]

	if !found {

		return nil, errors.Errorf("Unsupported 'SignKey' provided [%s]", keyType)

	}



	signature, err = signer.Sign(k, digest, opts)

	if err != nil {

		return nil, errors.Wrapf(err, "Failed signing with opts [%v]", opts)

	}



	return

}



// Verify verifies signature against key k and digest

// Notice that this is overriding the Sign methods of the sw impl. to avoid the digest check.

func (csp *csp) Verify(k bccsp.Key, signature, digest []byte, opts bccsp.SignerOpts) (valid bool, err error) {

	// Validate arguments

	if k == nil {

		return false, errors.New("Invalid Key. It must not be nil.")

	}

	if len(signature) == 0 {

		return false, errors.New("Invalid signature. Cannot be empty.")

	}

	// Do not check for digest



	verifier, found := csp.Verifiers[reflect.TypeOf(k)]

	if !found {

		return false, errors.Errorf("Unsupported 'VerifyKey' provided [%v]", k)

	}



	valid, err = verifier.Verify(k, signature, digest, opts)

	if err != nil {

		return false, errors.Wrapf(err, "Failed verifing with opts [%v]", opts)

	}



	return

}



type userSecreKeySignerMultiplexer struct {

	signer                  *handlers.Signer

	nymSigner               *handlers.NymSigner

	credentialRequestSigner *handlers.CredentialRequestSigner

}



func (s *userSecreKeySignerMultiplexer) Sign(k bccsp.Key, digest []byte, opts bccsp.SignerOpts) (signature []byte, err error) {

	switch opts.(type) {

	case *bccsp.IdemixSignerOpts:

		return s.signer.Sign(k, digest, opts)

	case *bccsp.IdemixNymSignerOpts:

		return s.nymSigner.Sign(k, digest, opts)

	case *bccsp.IdemixCredentialRequestSignerOpts:

		return s.credentialRequestSigner.Sign(k, digest, opts)

	default:

		return nil, errors.New("invalid opts, expected *bccsp.IdemixSignerOpt or *bccsp.IdemixNymSignerOpts or *bccsp.IdemixCredentialRequestSignerOpts")

	}

}



type issuerPublicKeyVerifierMultiplexer struct {

	verifier                  *handlers.Verifier

	credentialRequestVerifier *handlers.CredentialRequestVerifier

}



func (v *issuerPublicKeyVerifierMultiplexer) Verify(k bccsp.Key, signature, digest []byte, opts bccsp.SignerOpts) (valid bool, err error) {

	switch opts.(type) {

	case *bccsp.IdemixSignerOpts:

		return v.verifier.Verify(k, signature, digest, opts)

	case *bccsp.IdemixCredentialRequestSignerOpts:

		return v.credentialRequestVerifier.Verify(k, signature, digest, opts)

	default:

		return false, errors.New("invalid opts, expected *bccsp.IdemixSignerOpts or *bccsp.IdemixCredentialRequestSignerOpts")

	}

}
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
1
https://gitee.com/zhuanglicheng/fabric.git
git@gitee.com:zhuanglicheng/fabric.git
zhuanglicheng
fabric
fabric
v1.4.0
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部
344bd9b3 5694891 D2dac590 5694891