include/pcp/ed.h

/*
    This file is part of Pretty Curved Privacy (pcp1).

    Copyright (C) 2013 T.Linden.

    This program is free software: you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
    the Free Software Foundation, either version 3 of the License, or
    (at your option) any later version.

    This program is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    GNU General Public License for more details.

    You should have received a copy of the GNU General Public License
    along with this program.  If not, see <http://www.gnu.org/licenses/>.

    You can contact me by mail: <tlinden AT cpan DOT org>.
*/

/*
 ED25519 signatures. Currently unbuffered
*/

#ifndef _HAVE_PCP_ED_H
#define _HAVE_PCP_ED_H

#include <sodium.h>
#include <string.h>
#include <stdio.h>
#include <time.h>

#include "defines.h"
#include "platform.h"
#include "mem.h"
#include "key.h"
#include "keyhash.h"
#include "util.h"
#include "pcpstream.h"

/* sign a message of messagesize using s->edsecret, if it works
   return message+signature (size: messagesize + crypto_sign_BYTES),
   returns NULL otherwise */
unsigned char *pcp_ed_sign(unsigned char *message, size_t messagesize, pcp_key_t *s);

/* the same, but use the mastersecret instead, usually for keysigning */
unsigned char *pcp_ed_sign_key(unsigned char *message, size_t messagesize, pcp_key_t *s);

/* verify a signature of siglen size using p->edpub, if the signature verifies
   return the raw message with the signature removed (size: siglen - crypto_sign_BYTES),
   returns NULL otherwise */
unsigned char *pcp_ed_verify(unsigned char *signature, size_t siglen, pcp_pubkey_t *p);

/* the same, but use the mastersecret instead, usually for keysigning */
unsigned char *pcp_ed_verify_key(unsigned char *signature, size_t siglen, pcp_pubkey_t *p);

/* same as pcp_ed_sign() but work on i/o directly, we're making a hash
   of the input 32k-wise, copy in=>out, sign the hash and append the
   sig only to the output */
size_t pcp_ed_sign_buffered(Pcpstream *in, Pcpstream *out, pcp_key_t *s, int z85);

pcp_pubkey_t *pcp_ed_verify_buffered(Pcpstream *in, pcp_pubkey_t *p);

size_t pcp_ed_detachsign_buffered(Pcpstream *in, Pcpstream *out, pcp_key_t *s);
pcp_pubkey_t *pcp_ed_detachverify_buffered(Pcpstream *in, Pcpstream *sigfd, pcp_pubkey_t *p);

#endif /*  _HAVE_PCP_ED_H */
added signature support (doesn't work yet) 2013-11-08 09:40:51 +01:00			`/*`
			`This file is part of Pretty Curved Privacy (pcp1).`

			`Copyright (C) 2013 T.Linden.`

			`This program is free software: you can redistribute it and/or modify`
			`it under the terms of the GNU General Public License as published by`
			`the Free Software Foundation, either version 3 of the License, or`
			`(at your option) any later version.`

			`This program is distributed in the hope that it will be useful,`
			`but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`GNU General Public License for more details.`

			`You should have received a copy of the GNU General Public License`
			`along with this program. If not, see <http://www.gnu.org/licenses/>.`

			`You can contact me by mail: <tlinden AT cpan DOT org>.`
			`*/`

re-implemented signature system to match the standard (orinal input, including sig for full sig; or 32k blockwise hash of input and sig from hash attached to original input without the hash), verify_buffered currently not implemented, armored sig only for output. 2014-01-23 15:40:06 +01:00			`/*`
			`ED25519 signatures. Currently unbuffered`
			`*/`

added signature support (doesn't work yet) 2013-11-08 09:40:51 +01:00			`#ifndef _HAVE_PCP_ED_H`
			`#define _HAVE_PCP_ED_H`

			`#include <sodium.h>`
			`#include <string.h>`
			`#include <stdio.h>`
			`#include <time.h>`

			`#include "defines.h"`
			`#include "platform.h"`
			`#include "mem.h"`
			`#include "key.h"`
added pcp_ed_verify_buffered() [doesnt work yet, needs debugging] 2014-01-23 23:36:57 +01:00			`#include "keyhash.h"`
			`#include "util.h"`
added pcpstream usage to signature lib code as well 2014-02-15 17:39:16 +01:00			`#include "pcpstream.h"`
added signature support (doesn't work yet) 2013-11-08 09:40:51 +01:00
re-implemented signature system to match the standard (orinal input, including sig for full sig; or 32k blockwise hash of input and sig from hash attached to original input without the hash), verify_buffered currently not implemented, armored sig only for output. 2014-01-23 15:40:06 +01:00			`/* sign a message of messagesize using s->edsecret, if it works`
			`return message+signature (size: messagesize + crypto_sign_BYTES),`
			`returns NULL otherwise */`
			`unsigned char pcp_ed_sign(unsigned char message, size_t messagesize, pcp_key_t *s);`
added signature support (doesn't work yet) 2013-11-08 09:40:51 +01:00
changed internal key format again, now we've got a master-key-signing keypair as well, used for exports. also, fixed a security hole in pcp_keynew(): the actual key material, unencrypted, have been stored on heap and not zeroed after exit. 2014-02-10 11:34:05 +01:00			`/* the same, but use the mastersecret instead, usually for keysigning */`
			`unsigned char pcp_ed_sign_key(unsigned char message, size_t messagesize, pcp_key_t *s);`

re-implemented signature system to match the standard (orinal input, including sig for full sig; or 32k blockwise hash of input and sig from hash attached to original input without the hash), verify_buffered currently not implemented, armored sig only for output. 2014-01-23 15:40:06 +01:00			`/* verify a signature of siglen size using p->edpub, if the signature verifies`
			`return the raw message with the signature removed (size: siglen - crypto_sign_BYTES),`
			`returns NULL otherwise */`
changed public key export format to (slightly modified) RFC4880 style (openpgp format). Current state is totally unstable, it's not yet ready. 2014-02-12 00:37:41 +01:00			`unsigned char pcp_ed_verify(unsigned char signature, size_t siglen, pcp_pubkey_t *p);`

			`/* the same, but use the mastersecret instead, usually for keysigning */`
			`unsigned char pcp_ed_verify_key(unsigned char signature, size_t siglen, pcp_pubkey_t *p);`
added signature support (doesn't work yet) 2013-11-08 09:40:51 +01:00
re-implemented signature system to match the standard (orinal input, including sig for full sig; or 32k blockwise hash of input and sig from hash attached to original input without the hash), verify_buffered currently not implemented, armored sig only for output. 2014-01-23 15:40:06 +01:00			`/* same as pcp_ed_sign() but work on i/o directly, we're making a hash`
			`of the input 32k-wise, copy in=>out, sign the hash and append the`
			`sig only to the output */`
added pcpstream usage to signature lib code as well 2014-02-15 17:39:16 +01:00			`size_t pcp_ed_sign_buffered(Pcpstream in, Pcpstream out, pcp_key_t *s, int z85);`
added signature support (doesn't work yet) 2013-11-08 09:40:51 +01:00
added pcpstream usage to signature lib code as well 2014-02-15 17:39:16 +01:00			`pcp_pubkey_t pcp_ed_verify_buffered(Pcpstream in, pcp_pubkey_t *p);`
(re-)added detached signature support, now with 32k-blockwise reading of files, enabled with -a. 2014-01-26 16:02:47 +01:00
added pcpstream usage to signature lib code as well 2014-02-15 17:39:16 +01:00			`size_t pcp_ed_detachsign_buffered(Pcpstream in, Pcpstream out, pcp_key_t *s);`
			`pcp_pubkey_t pcp_ed_detachverify_buffered(Pcpstream in, Pcpstream sigfd, pcp_pubkey_t p);`
added pcp_ed_verify_buffered() [doesnt work yet, needs debugging] 2014-01-23 23:36:57 +01:00
changed invalid // c++ comments to valid /* .. */ C comments 2014-02-05 20:41:16 +01:00			`#endif /* _HAVE_PCP_ED_H */`