main/doxygen/ledger__secret_8h_source.html

// Copyright (c) Microsoft Corporation. All rights reserved.

// Licensed under the Apache 2.0 License.

#pragma once


#include "ccf/crypto/entropy.h"

#include "ccf/crypto/hmac.h"

#include "ccf/crypto/symmetric_key.h"

#include "kv/kv_types.h"

#include "service/tables/secrets.h"

#include "service/tables/shares.h"


#include <openssl/crypto.h>


namespace ccf

{

  // Unique label for deriving commit secrets from ledger secrets.

  // See logic in get_commit_secret() below for derivation implementation.

  // It is important that this label is _not_ re-used for other purposes,

  // nor changed during the lifetime of a ledger, to preserve the semantics of

  // commit evidence (i.e. their reveal implies an entry is committed).

  static constexpr uint8_t commit_secret_label_[] = {

    'C', 'o', 'm', 'm', 'i', 't', ' ', 'S'};

  static std::span<const uint8_t> commit_secret_label{

    commit_secret_label_, sizeof(commit_secret_label_)};


  struct LedgerSecret

  {

    std::vector<uint8_t> raw_key;

    std::shared_ptr<ccf::crypto::KeyAesGcm> key;

    std::optional<ccf::kv::Version> previous_secret_stored_version =

      std::nullopt;

    std::optional<ccf::crypto::HashBytes> commit_secret = std::nullopt;


    const ccf::crypto::HashBytes& get_commit_secret()

    {

      if (!commit_secret.has_value())

      {

        commit_secret = ccf::crypto::hmac(

          ccf::crypto::MDType::SHA256, raw_key, commit_secret_label);

      }

      return commit_secret.value();

    }


    bool operator==(const LedgerSecret& other) const

    {

      return raw_key == other.raw_key &&

        previous_secret_stored_version == other.previous_secret_stored_version;

    }


    LedgerSecret() = default;


    ~LedgerSecret()

    {

      OPENSSL_cleanse(raw_key.data(), raw_key.size());

    }


    // The copy constructor is used for serialising a LedgerSecret. However,

    // only the raw_key is serialised and other.key is nullptr so use raw_key to

    // seed key.


    LedgerSecret(const LedgerSecret& other) :

      raw_key(other.raw_key),

      key(ccf::crypto::make_key_aes_gcm(other.raw_key)),

      previous_secret_stored_version(other.previous_secret_stored_version)

    {}


    LedgerSecret(

      std::vector<uint8_t>&& raw_key_,

      std::optional<ccf::kv::Version> previous_secret_stored_version_ =

        std::nullopt) :

      raw_key(raw_key_),

      key(ccf::crypto::make_key_aes_gcm(std::move(raw_key_))),

      previous_secret_stored_version(previous_secret_stored_version_)

    {}


  };


  DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS(LedgerSecret)

  DECLARE_JSON_REQUIRED_FIELDS(LedgerSecret, raw_key)

  DECLARE_JSON_OPTIONAL_FIELDS(LedgerSecret, previous_secret_stored_version)


  using LedgerSecretPtr = std::shared_ptr<LedgerSecret>;


  inline LedgerSecretPtr make_ledger_secret()

  {

    return std::make_shared<LedgerSecret>(

      ccf::crypto::get_entropy()->random(ccf::crypto::GCM_DEFAULT_KEY_SIZE));

  }


  inline std::vector<uint8_t> decrypt_previous_ledger_secret_raw(

    const LedgerSecretPtr& ledger_secret,

    const std::vector<uint8_t>& encrypted_previous_secret_raw)

  {

    ccf::crypto::GcmCipher encrypted_ls;

    encrypted_ls.deserialise(encrypted_previous_secret_raw);

    std::vector<uint8_t> decrypted_ls_raw;


    if (!ledger_secret->key->decrypt(

          encrypted_ls.hdr.get_iv(),

          encrypted_ls.hdr.tag,

          encrypted_ls.cipher,

          {},

          decrypted_ls_raw))

    {

      throw std::logic_error("Decryption of previous ledger secret failed");

    }


    return decrypted_ls_raw;

  }


}


namespace nlohmann

{

  template <>


  struct adl_serializer<ccf::LedgerSecretPtr>

  {


    static void to_json(json& j, const ccf::LedgerSecretPtr& s)

    {

      if (s.get() != nullptr)

      {

        j = *s;

      }

      else

      {

        j = nullptr;

      }

    }


    static void from_json(const json& j, ccf::LedgerSecretPtr& s)

    {

      if (j.is_null())

      {

        s = nullptr;

      }

      else

      {

        ccf::LedgerSecret ls = j;

        s = std::make_shared<ccf::LedgerSecret>(ls);

      }

    }


  };


}


hmac.h

entropy.h

symmetric_key.h

DECLARE_JSON_REQUIRED_FIELDS
#define DECLARE_JSON_REQUIRED_FIELDS(TYPE,...)
Definition json.h:718

DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS
#define DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS(TYPE)
Definition json.h:694

DECLARE_JSON_OPTIONAL_FIELDS
#define DECLARE_JSON_OPTIONAL_FIELDS(TYPE,...)
Definition json.h:790

kv_types.h

ccf::crypto::hmac
HashBytes hmac(MDType type, const std::span< const uint8_t > &key, const std::span< const uint8_t > &data)
Definition hmac.cpp:43

ccf::crypto::MDType::SHA256
@ SHA256

ccf::crypto::HashBytes
std::vector< uint8_t > HashBytes
Definition hash_bytes.h:10

ccf::crypto::get_entropy
EntropyPtr get_entropy()
Definition entropy.cpp:10

ccf::crypto::GCM_DEFAULT_KEY_SIZE
constexpr size_t GCM_DEFAULT_KEY_SIZE
Definition symmetric_key.h:12

ccf
Definition app_interface.h:14

ccf::make_ledger_secret
LedgerSecretPtr make_ledger_secret()
Definition ledger_secret.h:81

ccf::LedgerSecretPtr
std::shared_ptr< LedgerSecret > LedgerSecretPtr
Definition ledger_secret.h:79

ccf::decrypt_previous_ledger_secret_raw
std::vector< uint8_t > decrypt_previous_ledger_secret_raw(const LedgerSecretPtr &ledger_secret, const std::vector< uint8_t > &encrypted_previous_secret_raw)
Definition ledger_secret.h:87

json
Definition json_schema.h:15

nlohmann
Definition ledger_secret.h:110

std
STL namespace.

secrets.h

shares.h

ccf::LedgerSecret
Definition ledger_secret.h:26

ccf::LedgerSecret::LedgerSecret
LedgerSecret(const LedgerSecret &other)
Definition ledger_secret.h:59

ccf::LedgerSecret::LedgerSecret
LedgerSecret(std::vector< uint8_t > &&raw_key_, std::optional< ccf::kv::Version > previous_secret_stored_version_=std::nullopt)
Definition ledger_secret.h:65

ccf::LedgerSecret::LedgerSecret
LedgerSecret()=default

ccf::LedgerSecret::commit_secret
std::optional< ccf::crypto::HashBytes > commit_secret
Definition ledger_secret.h:31

ccf::LedgerSecret::get_commit_secret
const ccf::crypto::HashBytes & get_commit_secret()
Definition ledger_secret.h:33

ccf::LedgerSecret::previous_secret_stored_version
std::optional< ccf::kv::Version > previous_secret_stored_version
Definition ledger_secret.h:29

ccf::LedgerSecret::key
std::shared_ptr< ccf::crypto::KeyAesGcm > key
Definition ledger_secret.h:28

ccf::LedgerSecret::~LedgerSecret
~LedgerSecret()
Definition ledger_secret.h:51

ccf::LedgerSecret::operator==
bool operator==(const LedgerSecret &other) const
Definition ledger_secret.h:43

ccf::LedgerSecret::raw_key
std::vector< uint8_t > raw_key
Definition ledger_secret.h:27

ccf::crypto::GcmCipher
Definition symmetric_key.h:58

ccf::crypto::GcmCipher::deserialise
void deserialise(const std::vector< uint8_t > &serial)
Definition symmetric_key.cpp:93

ccf::crypto::GcmCipher::hdr
StandardGcmHeader hdr
Definition symmetric_key.h:59

ccf::crypto::GcmCipher::cipher
std::vector< uint8_t > cipher
Definition symmetric_key.h:60

ccf::crypto::GcmHeader::tag
uint8_t tag[GCM_SIZE_TAG]
Definition symmetric_key.h:18

ccf::crypto::GcmHeader::get_iv
std::span< const uint8_t > get_iv() const
Definition symmetric_key.cpp:34

nlohmann::adl_serializer< ccf::LedgerSecretPtr >::to_json
static void to_json(json &j, const ccf::LedgerSecretPtr &s)
Definition ledger_secret.h:114

nlohmann::adl_serializer< ccf::LedgerSecretPtr >::from_json
static void from_json(const json &j, ccf::LedgerSecretPtr &s)
Definition ledger_secret.h:126