crypto

package

v0.0.0-...-cd85d4b Latest Latest Go to latest Published: Dec 27, 2019 License: Apache-2.0 Imports: 6 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/yahoo/bftkv

Links

Open Source Insights

Documentation ¶

Constants ¶

This section is empty.

Variables ¶

View Source

var (
	ErrCertificateNotFound                     = bftkv.NewError("crypto: certifiate not found")
	ErrKeyNotFound                             = bftkv.NewError("crypto: key not found")
	ErrInvalidTransportSecurityData            = bftkv.NewError("crypto: invalid transport security data")
	ErrInsufficientNumberOfSignatures          = bftkv.NewError("crypto: insufficient number of signatures")
	ErrInvalidSignature                        = bftkv.NewError("crypto: invalid signature")
	ErrSigningFailed                           = bftkv.NewError("crypto: failed to sign")
	ErrEncryptionFailed                        = bftkv.NewError("crypto: failed to encrypt")
	ErrDecryptionFailed                        = bftkv.NewError("crypto: failed to decrypt")
	ErrInsufficientNumberOfSecrets             = bftkv.NewError("crypto: insufficient number of secrets")
	ErrInvalidInput                            = bftkv.NewError("crypto: invalid input")
	ErrNoAuthenticationData                    = bftkv.NewError("crypto: no authentication data")
	ErrAuthTooManyAttempts                     = bftkv.NewError("crypto: too many attempts")
	ErrUnsupported                             = bftkv.NewError("crypto: unsupported algorithm")
	ErrInsufficientNumberOfThresholdSignatures = bftkv.NewError("crypto: insufficient number of threshold signatures")
	ErrShareNotFound                           = bftkv.NewError("crypto: share not found")
	ErrContinue                                = bftkv.NewError("crypto: continue") // not an error but to tell the client the threshold process continues
)

Functions ¶

This section is empty.

Types ¶

type Certificate ¶

type Certificate interface {
	Parse(pkt []byte) ([]node.Node, error)
	ParseStream(r io.Reader) ([]node.Node, error)
	Signers(signee node.Node) []node.Node
	Sign(signee node.Node) error
	Merge(cert node.Node, sub node.Node) error
}

type CollectiveSignature ¶

type CollectiveSignature interface {
	Verify(tbs []byte, ss *packet.SignaturePacket, q quorum.Quorum) error
	Sign(tbs []byte) (partialSignature *packet.SignaturePacket, err error)
	Combine(ss *packet.SignaturePacket, s *packet.SignaturePacket, q quorum.Quorum) bool
	Signers(ss *packet.SignaturePacket) []node.Node
}

type Crypto ¶

type Crypto struct {
	Keyring             Keyring
	Certificate         Certificate
	Signature           Signature
	Message             Message
	CollectiveSignature CollectiveSignature
	DataEncryption      DataEncryption
	RNG                 RNG
}

type DataEncryption ¶

type DataEncryption interface {
	Encrypt(key []byte, plain []byte) ([]byte, error)
	Decrypt(key []byte, cipher []byte) ([]byte, error)
}

type Keyring ¶

type Keyring interface {
	Register(nodes []node.Node, priv bool, self bool) error
	Remove(node []node.Node)
	GetCertById(id uint64) node.Node
	GetKeyring() []node.Node
}

type Message ¶

type Message interface {
	Encrypt(peers []node.Node, plain []byte, nonce []byte) (cipher []byte, err error)
	EncryptStream(out io.Writer, peerId uint64, nonce []byte) (in io.WriteCloser, err error)
	Decrypt(body io.Reader) (plain []byte, nonce []byte, peer node.Node, err error)
}

type RNG ¶

type RNG interface {
	Initialize(seed []byte)
	Generate(n int) []byte
}

type Signature ¶

type Signature interface {
	// signature includes the signers (IDs or certificates)
	Verify(tbs []byte, sig *packet.SignaturePacket) error
	VerifyWithCertificate(tbs []byte, sig *packet.SignaturePacket, cert node.Node) error
	Sign(tbs []byte) (*packet.SignaturePacket, error)
	Signers(sig *packet.SignaturePacket) []node.Node // return only nodes that have been verified
	Issuer(sig *packet.SignaturePacket) node.Node
	Certs(sig *packet.SignaturePacket) ([]node.Node, error)
}

type Threshold ¶

type Threshold interface {
	Distribute(key interface{}, nodes []node.Node, k int) ([][]byte, ThresholdAlgo, error)
	Sign(sec []byte, req []byte, peerId, selfId uint64) ([]byte, error)
	NewProcess(tbs []byte, algo ThresholdAlgo, hash gocrypto.Hash) (ThresholdProcess, error)
}

type ThresholdAlgo ¶

type ThresholdAlgo byte

const (
	TH_UNKNOWN ThresholdAlgo = iota
	TH_RSA
	TH_DSA
	TH_ECDSA
)

type ThresholdProcess ¶

type ThresholdProcess interface {
	MakeRequest() ([]node.Node, []byte, error)
	ProcessResponse(res []byte, peer node.Node) ([]byte, error)
}

Source Files ¶

View all Source files

crypto.go

Directories ¶

Path	Synopsis
auth
gen
cert
pgp
sss
threshold
dsa
dsa/test_utils
ecdsa
rsa

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL