Header for torcert.c. More...

#include "lib/crypt_ops/crypto_ed25519.h"

Data Structures
struct	tor_cert_t

Macros
#define	SIGNED_KEY_TYPE_ED25519 0x01

#define	SIGNED_KEY_TYPE_SHA256_OF_RSA 0x02

#define	SIGNED_KEY_TYPE_SHA256_OF_X509 0x03

#define	CERT_TYPE_ID_SIGNING 0x04

#define	CERT_TYPE_SIGNING_LINK 0x05

#define	CERT_TYPE_SIGNING_AUTH 0x06

#define	CERT_TYPE_SIGNING_HS_DESC 0x08

#define	CERT_TYPE_AUTH_HS_IP_KEY 0x09

#define	CERT_TYPE_ONION_ID 0x0A

#define	CERT_TYPE_CROSS_HS_IP_KEYS 0x0B

#define	CERT_TYPE_FAMILY_V_IDENTITY 0x0C

#define	CERT_FLAG_INCLUDE_SIGNING_KEY 0x1

#define	tor_cert_free(cert) FREE_AND_NULL(tor_cert_t, tor_cert_free_, (cert))

#define	or_handshake_certs_free(certs) FREE_AND_NULL(or_handshake_certs_t, or_handshake_certs_free_, (certs))

Functions
tor_cert_t *	tor_cert_create_ed25519 (const ed25519_keypair_t signing_key, uint8_t cert_type, const ed25519_public_key_t signed_key, time_t now, time_t lifetime, uint32_t flags)

tor_cert_t *	tor_cert_create_raw (const ed25519_keypair_t *signing_key, uint8_t cert_type, uint8_t signed_key_type, const uint8_t signed_key_info[32], time_t now, time_t lifetime, uint32_t flags)

tor_cert_t *	tor_cert_parse (const uint8_t *cert, size_t certlen)

void	tor_cert_free_ (tor_cert_t *cert)

int	tor_cert_get_checkable_sig (ed25519_checkable_t checkable_out, const tor_cert_t out, const ed25519_public_key_t pubkey, time_t expiration_out)

int	tor_cert_checksig (tor_cert_t cert, const ed25519_public_key_t pubkey, time_t now)

const char *	tor_cert_describe_signature_status (const tor_cert_t *cert)

tor_cert_t *	tor_cert_dup (const tor_cert_t *cert)

int	tor_cert_eq (const tor_cert_t cert1, const tor_cert_t cert2)

int	tor_cert_opt_eq (const tor_cert_t cert1, const tor_cert_t cert2)

ssize_t	tor_make_rsa_ed25519_crosscert (const ed25519_public_key_t ed_key, const crypto_pk_t rsa_key, time_t expires, uint8_t **cert)

int	rsa_ed25519_crosscert_check (const uint8_t crosscert, const size_t crosscert_len, const crypto_pk_t rsa_id_key, const ed25519_public_key_t *master_key, const time_t reject_if_expired_before)

or_handshake_certs_t *	or_handshake_certs_new (void)

void	or_handshake_certs_free_ (or_handshake_certs_t *certs)

int	or_handshake_certs_rsa_ok (int severity, or_handshake_certs_t certs, struct tor_tls_t tls, time_t now)

int	or_handshake_certs_ed25519_ok (int severity, or_handshake_certs_t certs, struct tor_tls_t tls, time_t now)

void	or_handshake_certs_check_both (int severity, or_handshake_certs_t certs, struct tor_tls_t tls, time_t now, const ed25519_public_key_t ed_id_out, const common_digests_t rsa_id_out)

int	tor_cert_encode_ed22519 (const tor_cert_t cert, char *cert_str_out)

int	check_tap_onion_key_crosscert (const uint8_t crosscert, int crosscert_len, const crypto_pk_t onion_pkey, const ed25519_public_key_t master_id_pkey, const uint8_t rsa_id_digest)

Detailed Description

Header for torcert.c.

Definition in file torcert.h.

Macro Definition Documentation

◆ CERT_FLAG_INCLUDE_SIGNING_KEY

#define CERT_FLAG_INCLUDE_SIGNING_KEY 0x1

Definition at line 27 of file torcert.h.

◆ CERT_TYPE_AUTH_HS_IP_KEY

#define CERT_TYPE_AUTH_HS_IP_KEY 0x09

Definition at line 22 of file torcert.h.

◆ CERT_TYPE_CROSS_HS_IP_KEYS

#define CERT_TYPE_CROSS_HS_IP_KEYS 0x0B

Definition at line 24 of file torcert.h.

◆ CERT_TYPE_FAMILY_V_IDENTITY

#define CERT_TYPE_FAMILY_V_IDENTITY 0x0C

Definition at line 25 of file torcert.h.

◆ CERT_TYPE_ID_SIGNING

#define CERT_TYPE_ID_SIGNING 0x04

Definition at line 18 of file torcert.h.

◆ CERT_TYPE_ONION_ID

#define CERT_TYPE_ONION_ID 0x0A

Definition at line 23 of file torcert.h.

◆ CERT_TYPE_SIGNING_AUTH

#define CERT_TYPE_SIGNING_AUTH 0x06

Definition at line 20 of file torcert.h.

◆ CERT_TYPE_SIGNING_HS_DESC

#define CERT_TYPE_SIGNING_HS_DESC 0x08

Definition at line 21 of file torcert.h.

◆ CERT_TYPE_SIGNING_LINK

#define CERT_TYPE_SIGNING_LINK 0x05

Definition at line 19 of file torcert.h.

◆ or_handshake_certs_free

#define or_handshake_certs_free ( certs ) FREE_AND_NULL(or_handshake_certs_t, or_handshake_certs_free_, (certs))

Definition at line 105 of file torcert.h.

◆ SIGNED_KEY_TYPE_ED25519

#define SIGNED_KEY_TYPE_ED25519 0x01

Definition at line 14 of file torcert.h.

◆ SIGNED_KEY_TYPE_SHA256_OF_RSA

#define SIGNED_KEY_TYPE_SHA256_OF_RSA 0x02

Definition at line 15 of file torcert.h.

◆ SIGNED_KEY_TYPE_SHA256_OF_X509

#define SIGNED_KEY_TYPE_SHA256_OF_X509 0x03

Definition at line 16 of file torcert.h.

◆ tor_cert_free

#define tor_cert_free ( cert ) FREE_AND_NULL(tor_cert_t, tor_cert_free_, (cert))

Definition at line 77 of file torcert.h.

Function Documentation

◆ check_tap_onion_key_crosscert()

int check_tap_onion_key_crosscert	(	const uint8_t *	crosscert,
		int	crosscert_len,
		const crypto_pk_t *	onion_pkey,
		const ed25519_public_key_t *	master_id_pkey,
		const uint8_t *	rsa_id_digest
	)

Check whether an RSA-TAP cross-certification is correct. Return 0 if it is, -1 if it isn't.

Definition at line 649 of file torcert.c.

Referenced by router_parse_entry_from_string().

◆ or_handshake_certs_check_both()

void or_handshake_certs_check_both	(	int	severity,
		or_handshake_certs_t *	certs,
		tor_tls_t *	tls,
		time_t	now,
		const ed25519_public_key_t **	ed_id_out,
		const common_digests_t **	rsa_id_out
	)

Check the Ed certificates and/or the RSA certificates, as appropriate. If we obtained an Ed25519 identity, set *ed_id_out. If we obtained an RSA identity, set *rs_id_out. Otherwise, set them both to NULL.

Definition at line 685 of file torcert.c.

Referenced by channel_tls_process_certs_cell().

◆ or_handshake_certs_ed25519_ok()

int or_handshake_certs_ed25519_ok	(	int	severity,
		or_handshake_certs_t *	certs,
		tor_tls_t *	tls,
		time_t	now
	)

Check all the ed25519 certificates in certs against each other, and against the peer certificate in tls if appropriate. On success, return 0; on failure, return a negative value and warn at level severity

Definition at line 541 of file torcert.c.

Referenced by or_handshake_certs_check_both().

◆ or_handshake_certs_free_()

void or_handshake_certs_free_ ( or_handshake_certs_t * certs )

Release all storage held in certs

Definition at line 478 of file torcert.c.

◆ or_handshake_certs_new()

or_handshake_certs_t * or_handshake_certs_new ( void )

Construct and return a new empty or_handshake_certs object

Definition at line 471 of file torcert.c.

Referenced by connection_init_or_handshake_state().

◆ or_handshake_certs_rsa_ok()

int or_handshake_certs_rsa_ok	(	int	severity,
		or_handshake_certs_t *	certs,
		struct tor_tls_t *	tls,
		time_t	now
	)

Definition at line 506 of file torcert.c.

◆ rsa_ed25519_crosscert_check()

int rsa_ed25519_crosscert_check	(	const uint8_t *	crosscert,
		const size_t	crosscert_len,
		const crypto_pk_t *	rsa_id_key,
		const ed25519_public_key_t *	master_key,
		const time_t	reject_if_expired_before
	)

Check whether the crosscert_len byte certificate in crosscert is in fact a correct cross-certification of master_key using the RSA key rsa_id_key.

Also reject the certificate if it expired before reject_if_expired_before.

Return 0 on success, negative on failure.

Definition at line 395 of file torcert.c.

Referenced by decode_intro_legacy_key(), and or_handshake_certs_ed25519_ok().

◆ tor_cert_checksig()

int tor_cert_checksig	(	tor_cert_t *	cert,
		const ed25519_public_key_t *	pubkey,
		time_t	now
	)

Validates the signature on cert with pubkey relative to the current time now. (If now is 0, do not check the expiration time.) Return 0 on success, -1 on failure. Sets flags in cert as appropriate.

Definition at line 244 of file torcert.c.

Referenced by cert_is_valid(), check_one_family_cert(), decode_introduction_point(), ed_key_init_from_file(), hs_client_decode_descriptor(), load_ed_keys(), and tor_cert_create_raw().

◆ tor_cert_create_ed25519()

tor_cert_t * tor_cert_create_ed25519	(	const ed25519_keypair_t *	signing_key,
		uint8_t	cert_type,
		const ed25519_public_key_t *	signed_key,
		time_t	now,
		time_t	lifetime,
		uint32_t	flags
	)

Create and return a new new certificate of type cert_type to authenticate signed_key using the key signing_key. The certificate should remain valid for at least lifetime seconds after now.

If CERT_FLAG_INCLUDE_SIGNING_KEY is set in flags, embed the public part of signing_key in the certificate.

Definition at line 131 of file torcert.c.

Referenced by build_desc_signing_key_cert(), ed_key_init_from_file(), ed_key_new(), make_ntor_onion_key_crosscert(), router_dump_router_to_string(), and setup_desc_intro_point().

◆ tor_cert_create_raw()

tor_cert_t * tor_cert_create_raw	(	const ed25519_keypair_t *	signing_key,
		uint8_t	cert_type,
		uint8_t	signed_key_type,
		const uint8_t	signed_key_info[32],
		time_t	now,
		time_t	lifetime,
		uint32_t	flags
	)

As tor_cert_create(), but accept an arbitrary signed_key_type as the subject key – not just an ed25519 key.

Definition at line 44 of file torcert.c.

Referenced by generate_ed_link_cert(), and tor_cert_create_ed25519().

◆ tor_cert_describe_signature_status()

const char * tor_cert_describe_signature_status ( const tor_cert_t * cert )

Return a string describing the status of the signature on cert

Will always be "unchecked" unless tor_cert_checksig has been called.

Definition at line 279 of file torcert.c.

Referenced by cert_is_valid(), decode_introduction_point(), ed_key_init_from_file(), hs_client_decode_descriptor(), load_ed_keys(), and tor_cert_create_raw().

◆ tor_cert_dup()

tor_cert_t * tor_cert_dup ( const tor_cert_t * cert )

Return a new copy of cert

Definition at line 294 of file torcert.c.

Referenced by connection_init_or_handshake_state(), router_build_fresh_unsigned_extrainfo(), and router_build_fresh_unsigned_routerinfo().

◆ tor_cert_encode_ed22519()

int tor_cert_encode_ed22519	(	const tor_cert_t *	cert,
		char **	cert_str_out
	)

Definition at line 728 of file torcert.c.

◆ tor_cert_eq()

int tor_cert_eq	(	const tor_cert_t *	cert1,
		const tor_cert_t *	cert2
	)

Return true iff cert1 and cert2 are the same cert.

Definition at line 304 of file torcert.c.

Referenced by tor_cert_opt_eq().

◆ tor_cert_free_()

void tor_cert_free_ ( tor_cert_t * cert )

Release all storage held for cert.

Definition at line 144 of file torcert.c.

◆ tor_cert_get_checkable_sig()

int tor_cert_get_checkable_sig	(	ed25519_checkable_t *	checkable_out,
		const tor_cert_t *	cert,
		const ed25519_public_key_t *	pubkey,
		time_t *	expiration_out
	)

Fill in checkable_out with the information needed to check the signature on cert with pubkey.

On success, if expiration_out is provided, and it is some time after the expiration time of this certificate, set it to the expiration time of this certificate.

Definition at line 211 of file torcert.c.

Referenced by extrainfo_parse_entry_from_string(), router_parse_entry_from_string(), and tor_cert_checksig().

◆ tor_cert_opt_eq()

int tor_cert_opt_eq	(	const tor_cert_t *	cert1,
		const tor_cert_t *	cert2
	)

Return true iff cert1 and cert2 are the same cert, or if they are both NULL.

Definition at line 315 of file torcert.c.

Referenced by routerinfo_incompatible_with_extrainfo().

◆ tor_cert_parse()

tor_cert_t * tor_cert_parse	(	const uint8_t *	encoded,
		const size_t	len
	)

Parse a certificate encoded with len bytes in encoded.

Definition at line 159 of file torcert.c.

Referenced by cert_parse_and_validate(), channel_tls_process_certs_cell(), check_one_family_cert(), ed_key_init_from_file(), extrainfo_parse_entry_from_string(), router_parse_entry_from_string(), and tor_cert_create_raw().

◆ tor_make_rsa_ed25519_crosscert()

ssize_t tor_make_rsa_ed25519_crosscert	(	const ed25519_public_key_t *	ed_key,
		const crypto_pk_t *	rsa_key,
		time_t	expires,
		uint8_t **	cert
	)

Create new cross-certification object to certify ed_key as the master ed25519 identity key for the RSA identity key rsa_key. Allocates and stores the encoded certificate in *cert, and returns the number of bytes stored. Returns negative on error.

Definition at line 331 of file torcert.c.

Referenced by load_ed_keys(), and setup_desc_intro_point().

Data Structures

Macros

Functions