main/doxygen/ledger__secret_8h_source.html

// Copyright (c) Microsoft Corporation. All rights reserved.

// Licensed under the Apache 2.0 License.

#pragma once


#include "ccf/crypto/entropy.h"

#include "ccf/crypto/hmac.h"

#include "ccf/crypto/symmetric_key.h"

#include "kv/kv_types.h"

#include "service/tables/secrets.h"

#include "service/tables/shares.h"


#include <openssl/crypto.h>


namespace ccf

{

  // Unique label for deriving commit secrets from ledger secrets.

  // See logic in get_commit_secret() below for derivation implementation.

  // It is important that this label is _not_ re-used for other purposes,

  // nor changed during the lifetime of a ledger, to preserve the semantics of

  // commit evidence (i.e. their reveal implies an entry is committed).

  static constexpr uint8_t commit_secret_label_[] = {

    'C', 'o', 'm', 'm', 'i', 't', ' ', 'S'};

  static std::span<const uint8_t> commit_secret_label{

    commit_secret_label_, sizeof(commit_secret_label_)};


  struct LedgerSecret

  {

    std::vector<uint8_t> raw_key;

    std::shared_ptr<ccf::crypto::KeyAesGcm> key;

    std::optional<ccf::kv::Version> previous_secret_stored_version =

      std::nullopt;

    ccf::crypto::HashBytes commit_secret;


    static ccf::crypto::HashBytes derive_commit_secret(

      std::span<const uint8_t> raw_key)

    {

      return ccf::crypto::hmac(

        ccf::crypto::MDType::SHA256, raw_key, commit_secret_label);

    }


    [[nodiscard]] const ccf::crypto::HashBytes& get_commit_secret() const

    {

      return commit_secret;

    }


    bool operator==(const LedgerSecret& other) const

    {

      return raw_key == other.raw_key &&

        previous_secret_stored_version == other.previous_secret_stored_version;

    }


    LedgerSecret() : commit_secret(derive_commit_secret(raw_key)) {}


    ~LedgerSecret()

    {

      OPENSSL_cleanse(raw_key.data(), raw_key.size());

      OPENSSL_cleanse(commit_secret.data(), commit_secret.size());

    }


    // The copy constructor is used for serialising a LedgerSecret. However,

    // only the raw_key is serialised and other.key is nullptr so use raw_key to

    // seed key.


    LedgerSecret(const LedgerSecret& other) :

      raw_key(other.raw_key),

      key(ccf::crypto::make_key_aes_gcm(other.raw_key)),

      previous_secret_stored_version(other.previous_secret_stored_version),

      commit_secret(derive_commit_secret(raw_key))

    {}


    LedgerSecret(

      std::vector<uint8_t>&& raw_key_,

      std::optional<ccf::kv::Version> previous_secret_stored_version_ =

        std::nullopt) :

      raw_key(raw_key_),

      key(ccf::crypto::make_key_aes_gcm(std::move(raw_key_))),

      previous_secret_stored_version(previous_secret_stored_version_),

      commit_secret(derive_commit_secret(raw_key))

    {}


  };


  DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS(LedgerSecret);

  DECLARE_JSON_REQUIRED_FIELDS(LedgerSecret, raw_key);

  DECLARE_JSON_OPTIONAL_FIELDS(LedgerSecret, previous_secret_stored_version);


  using LedgerSecretPtr = std::shared_ptr<LedgerSecret>;


  inline LedgerSecretPtr make_ledger_secret()

  {

    return std::make_shared<LedgerSecret>(

      ccf::crypto::get_entropy()->random(ccf::crypto::GCM_DEFAULT_KEY_SIZE));

  }


  inline std::vector<uint8_t> decrypt_previous_ledger_secret_raw(

    const LedgerSecretPtr& ledger_secret,

    const std::vector<uint8_t>& encrypted_previous_secret_raw)

  {

    ccf::crypto::GcmCipher encrypted_ls;

    encrypted_ls.deserialise(encrypted_previous_secret_raw);

    std::vector<uint8_t> decrypted_ls_raw;


    if (!ledger_secret->key->decrypt(

          encrypted_ls.hdr.get_iv(),

          encrypted_ls.hdr.tag,

          encrypted_ls.cipher,

          {},

          decrypted_ls_raw))

    {

      throw std::logic_error("Decryption of previous ledger secret failed");

    }


    return decrypted_ls_raw;

  }


}


namespace nlohmann

{

  template <>


  struct adl_serializer<ccf::LedgerSecretPtr>

  {


    static void to_json(json& j, const ccf::LedgerSecretPtr& s)

    {

      if (s.get() != nullptr)

      {

        j = *s;

      }

      else

      {

        j = nullptr;

      }

    }


    static void from_json(const json& j, ccf::LedgerSecretPtr& s)

    {

      if (j.is_null())

      {

        s = nullptr;

      }

      else

      {

        ccf::LedgerSecret ls = j;

        s = std::make_shared<ccf::LedgerSecret>(ls);

      }

    }


  };


}


hmac.h

entropy.h

symmetric_key.h

DECLARE_JSON_REQUIRED_FIELDS
#define DECLARE_JSON_REQUIRED_FIELDS(TYPE,...)
Definition json.h:736

DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS
#define DECLARE_JSON_TYPE_WITH_OPTIONAL_FIELDS(TYPE)
Definition json.h:712

DECLARE_JSON_OPTIONAL_FIELDS
#define DECLARE_JSON_OPTIONAL_FIELDS(TYPE,...)
Definition json.h:811

kv_types.h

ccf::crypto::hmac
HashBytes hmac(MDType type, const std::span< const uint8_t > &key, const std::span< const uint8_t > &data)
Definition hmac.cpp:43

ccf::crypto::MDType::SHA256
@ SHA256

ccf::crypto::HashBytes
std::vector< uint8_t > HashBytes
Definition hash_bytes.h:10

ccf::crypto::get_entropy
EntropyPtr get_entropy()
Definition entropy.cpp:10

ccf::crypto::GCM_DEFAULT_KEY_SIZE
constexpr size_t GCM_DEFAULT_KEY_SIZE
Definition symmetric_key.h:12

ccf
Definition app_interface.h:13

ccf::make_ledger_secret
LedgerSecretPtr make_ledger_secret()
Definition ledger_secret.h:86

ccf::LedgerSecretPtr
std::shared_ptr< LedgerSecret > LedgerSecretPtr
Definition ledger_secret.h:84

ccf::decrypt_previous_ledger_secret_raw
std::vector< uint8_t > decrypt_previous_ledger_secret_raw(const LedgerSecretPtr &ledger_secret, const std::vector< uint8_t > &encrypted_previous_secret_raw)
Definition ledger_secret.h:92

json
Definition json_schema.h:15

nlohmann
Definition ledger_secret.h:115

std
STL namespace.

secrets.h

shares.h

ccf::LedgerSecret
Definition ledger_secret.h:26

ccf::LedgerSecret::LedgerSecret
LedgerSecret(const LedgerSecret &other)
Definition ledger_secret.h:62

ccf::LedgerSecret::LedgerSecret
LedgerSecret(std::vector< uint8_t > &&raw_key_, std::optional< ccf::kv::Version > previous_secret_stored_version_=std::nullopt)
Definition ledger_secret.h:69

ccf::LedgerSecret::previous_secret_stored_version
std::optional< ccf::kv::Version > previous_secret_stored_version
Definition ledger_secret.h:29

ccf::LedgerSecret::get_commit_secret
const ccf::crypto::HashBytes & get_commit_secret() const
Definition ledger_secret.h:40

ccf::LedgerSecret::key
std::shared_ptr< ccf::crypto::KeyAesGcm > key
Definition ledger_secret.h:28

ccf::LedgerSecret::LedgerSecret
LedgerSecret()
Definition ledger_secret.h:51

ccf::LedgerSecret::~LedgerSecret
~LedgerSecret()
Definition ledger_secret.h:53

ccf::LedgerSecret::operator==
bool operator==(const LedgerSecret &other) const
Definition ledger_secret.h:45

ccf::LedgerSecret::raw_key
std::vector< uint8_t > raw_key
Definition ledger_secret.h:27

ccf::LedgerSecret::commit_secret
ccf::crypto::HashBytes commit_secret
Definition ledger_secret.h:31

ccf::LedgerSecret::derive_commit_secret
static ccf::crypto::HashBytes derive_commit_secret(std::span< const uint8_t > raw_key)
Definition ledger_secret.h:33

ccf::crypto::GcmCipher
Definition symmetric_key.h:58

ccf::crypto::GcmCipher::deserialise
void deserialise(const std::vector< uint8_t > &serial)
Definition symmetric_key.cpp:91

ccf::crypto::GcmCipher::hdr
StandardGcmHeader hdr
Definition symmetric_key.h:59

ccf::crypto::GcmCipher::cipher
std::vector< uint8_t > cipher
Definition symmetric_key.h:60

ccf::crypto::GcmHeader::tag
uint8_t tag[GCM_SIZE_TAG]
Definition symmetric_key.h:18

ccf::crypto::GcmHeader::get_iv
std::span< const uint8_t > get_iv() const
Definition symmetric_key.cpp:32

nlohmann::adl_serializer< ccf::LedgerSecretPtr >::to_json
static void to_json(json &j, const ccf::LedgerSecretPtr &s)
Definition ledger_secret.h:119

nlohmann::adl_serializer< ccf::LedgerSecretPtr >::from_json
static void from_json(const json &j, ccf::LedgerSecretPtr &s)
Definition ledger_secret.h:131