-draft implementation of /purses//merge endpoint

author: Christian Grothoff <grothoff@gnunet.org> 2022-04-11 13:52:06 +0200
committer: Christian Grothoff <grothoff@gnunet.org> 2022-04-11 13:52:06 +0200
commit: 72dd9514aac1b59b81fc695b734de518cef1845b (patch)
tree: 61c8dbb78bc0b979d6331924f60f504a34c6200d /src/lib
parent: f9971faa7a6fa5e5e7aa5ee6acdad3d45cfeea1b (diff)
1 files changed, 408 insertions, 0 deletions
diff --git a/src/lib/exchange_api_purse_merge.c b/src/lib/exchange_api_purse_merge.c
new file mode 100644
index 000000000..8f6723ee6
--- /dev/null
+++ b/src/lib/exchange_api_purse_merge.c
@@ -0,0 +1,408 @@
+/*
+   This file is part of TALER
+   Copyright (C) 2022 Taler Systems SA
+
+   TALER is free software; you can redistribute it and/or modify it under the
+   terms of the GNU General Public License as published by the Free Software
+   Foundation; either version 3, or (at your option) any later version.
+
+   TALER is distributed in the hope that it will be useful, but WITHOUT ANY
+   WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
+   A PARTICULAR PURPOSE.  See the GNU General Public License for more details.
+
+   You should have received a copy of the GNU General Public License along with
+   TALER; see the file COPYING.  If not, see
+   <http://www.gnu.org/licenses/>
+ */
+/**
+ * @file lib/exchange_api_purse_merge.c
+ * @brief Implementation of the client to merge a purse
+ *        into an account
+ * @author Christian Grothoff
+ */
+#include "platform.h"
+#include <jansson.h>
+#include <microhttpd.h> /* just for HTTP status codes */
+#include <gnunet/gnunet_util_lib.h>
+#include <gnunet/gnunet_json_lib.h>
+#include <gnunet/gnunet_curl_lib.h>
+#include "taler_json_lib.h"
+#include "taler_exchange_service.h"
+#include "exchange_api_handle.h"
+#include "taler_signatures.h"
+#include "exchange_api_curl_defaults.h"
+
+
+/**
+ * @brief A purse merge with deposit handle
+ */
+struct TALER_EXCHANGE_AccountMergeHandle
+{
+
+  /**
+   * The connection to exchange this request handle will use
+   */
+  struct TALER_EXCHANGE_Handle *exchange;
+
+  /**
+   * The url for this request.
+   */
+  char *url;
+
+  /**
+   * Context for #TEH_curl_easy_post(). Keeps the data that must
+   * persist for Curl to make the upload.
+   */
+  struct TALER_CURL_PostContext ctx;
+
+  /**
+   * Handle for the request.
+   */
+  struct GNUNET_CURL_Job *job;
+
+  /**
+   * Function to call with the result.
+   */
+  TALER_EXCHANGE_AccountMergeCallback cb;
+
+  /**
+   * Closure for @a cb.
+   */
+  void *cb_cls;
+
+  /**
+   * Expected value in the purse after fees.
+   */
+  struct TALER_Amount purse_value_after_fees;
+
+  /**
+   * Public key of the merge capability.
+   */
+  struct TALER_AccountMergePublicKeyP merge_pub;
+
+  /**
+   * Public key of the purse.
+   */
+  struct TALER_PurseContractPublicKeyP purse_pub;
+
+  /**
+   * Hash over the purse's contrac terms.
+   */
+  struct TALER_PrivateContractHashP h_contract_terms;
+
+  /**
+   * When does the purse expire.
+   */
+  struct GNUNET_TIME_Timestamp purse_expiration;
+};
+
+
+/**
+ * Function called when we're done processing the
+ * HTTP /purse/$PID/merge request.
+ *
+ * @param cls the `struct TALER_EXCHANGE_AccountMergeHandle`
+ * @param response_code HTTP response code, 0 on error
+ * @param response parsed JSON result, NULL on error
+ */
+static void
+handle_purse_merge_finished (void *cls,
+                             long response_code,
+                             const void *response)
+{
+  struct TALER_EXCHANGE_AccountMergeHandle *pch = cls;
+  const json_t *j = response;
+  struct TALER_EXCHANGE_AccountMergeResponse dr = {
+    .hr.reply = j,
+    .hr.http_status = (unsigned int) response_code
+  };
+
+  pch->job = NULL;
+  switch (response_code)
+  {
+  case 0:
+    dr.hr.ec = TALER_EC_GENERIC_INVALID_RESPONSE;
+    break;
+  case MHD_HTTP_OK:
+    {
+      const struct TALER_EXCHANGE_Keys *key_state;
+      struct GNUNET_TIME_Timestamp etime;
+      struct TALER_Amount total_deposited;
+      struct TALER_ExchangeSignatureP exchange_sig;
+      struct TALER_ExchangePublicKeyP exchange_pub;
+      struct GNUNET_JSON_Specification spec[] = {
+        GNUNET_JSON_spec_fixed_auto ("exchange_sig",
+                                     &exchange_sig),
+        GNUNET_JSON_spec_fixed_auto ("exchange_pub",
+                                     &exchange_pub),
+        GNUNET_JSON_spec_timestamp ("exchange_timestamp",
+                                    &etime),
+        TALER_JSON_spec_amount ("total_deposited",
+                                pch->purse_value_after_fees.currency,
+                                &total_deposited),
+        GNUNET_JSON_spec_end ()
+      };
+
+      if (GNUNET_OK !=
+          GNUNET_JSON_parse (j,
+                             spec,
+                             NULL, NULL))
+      {
+        GNUNET_break_op (0);
+        dr.hr.http_status = 0;
+        dr.hr.ec = TALER_EC_GENERIC_REPLY_MALFORMED;
+        break;
+      }
+      key_state = TALER_EXCHANGE_get_keys (pch->exchange);
+      if (GNUNET_OK !=
+          TALER_EXCHANGE_test_signing_key (key_state,
+                                           &exchange_pub))
+      {
+        GNUNET_break_op (0);
+        dr.hr.http_status = 0;
+        dr.hr.ec = TALER_EC_EXCHANGE_PURSE_MERGE_EXCHANGE_SIGNATURE_INVALID;
+        break;
+      }
+      if (GNUNET_OK !=
+          TALER_exchange_online_purse_merged_verify (
+            etime,
+            pch->purse_expiration,
+            &pch->purse_value_after_fees,
+            &total_deposited,
+            &pch->purse_pub,
+            &pch->merge_pub,
+            &pch->h_contract_terms,
+            &exchange_pub,
+            &exchange_sig))
+      {
+        GNUNET_break_op (0);
+        dr.hr.http_status = 0;
+        dr.hr.ec = TALER_EC_EXCHANGE_PURSE_MERGE_EXCHANGE_SIGNATURE_INVALID;
+        break;
+      }
+    }
+    break;
+  case MHD_HTTP_BAD_REQUEST:
+    /* This should never happen, either us or the exchange is buggy
+       (or API version conflict); just pass JSON reply to the application */
+    dr.hr.ec = TALER_JSON_get_error_code (j);
+    dr.hr.hint = TALER_JSON_get_error_hint (j);
+    break;
+  case MHD_HTTP_FORBIDDEN:
+    dr.hr.ec = TALER_JSON_get_error_code (j);
+    dr.hr.hint = TALER_JSON_get_error_hint (j);
+    /* Nothing really to verify, exchange says one of the signatures is
+       invalid; as we checked them, this should never happen, we
+       should pass the JSON reply to the application */
+    break;
+  case MHD_HTTP_NOT_FOUND:
+    dr.hr.ec = TALER_JSON_get_error_code (j);
+    dr.hr.hint = TALER_JSON_get_error_hint (j);
+    /* Nothing really to verify, this should never
+       happen, we should pass the JSON reply to the application */
+    break;
+  case MHD_HTTP_CONFLICT:
+    // FIXME: check reply!
+    break;
+  case MHD_HTTP_GONE:
+    /* could happen if denomination was revoked */
+    /* Note: one might want to check /keys for revocation
+       signature here, alas tricky in case our /keys
+       is outdated => left to clients */
+    dr.hr.ec = TALER_JSON_get_error_code (j);
+    dr.hr.hint = TALER_JSON_get_error_hint (j);
+    break;
+  case MHD_HTTP_INTERNAL_SERVER_ERROR:
+    dr.hr.ec = TALER_JSON_get_error_code (j);
+    dr.hr.hint = TALER_JSON_get_error_hint (j);
+    /* Server had an internal issue; we should retry, but this API
+       leaves this to the application */
+    break;
+  default:
+    /* unexpected response code */
+    dr.hr.ec = TALER_JSON_get_error_code (j);
+    dr.hr.hint = TALER_JSON_get_error_hint (j);
+    GNUNET_log (GNUNET_ERROR_TYPE_ERROR,
+                "Unexpected response code %u/%d for exchange deposit\n",
+                (unsigned int) response_code,
+                dr.hr.ec);
+    GNUNET_break_op (0);
+    break;
+  }
+  pch->cb (pch->cb_cls,
+           &dr);
+  TALER_EXCHANGE_purse_merge_with_deposit_cancel (pch);
+}
+
+
+struct TALER_EXCHANGE_AccountMergeHandle *
+TALER_EXCHANGE_account_merge (
+  struct TALER_EXCHANGE_Handle *exchange,
+  const char *reserve_exchange_url,
+  const struct TALER_ReservePrivateKeyP *reserve_priv,
+  const struct TALER_PurseContractPublicKeyP *purse_pub,
+  const struct TALER_PurseMergePrivateKeyP *merge_priv,
+  const struct TALER_PrivateContractHashP *h_contract_terms,
+  uint8_t min_age,
+  const struct TALER_Amount *purse_value_after_fees,
+  struct GNUNET_TIME_Timestamp purse_expiration,
+  struct GNUNET_TIME_Timestamp merge_timestamp,
+  TALER_EXCHANGE_AccountMergeCallback cb,
+  void *cb_cls)
+{
+  struct TALER_EXCHANGE_AccountMergeHandle *pch;
+  struct GNUNET_CURL_Context *ctx;
+  json_t *merge_obj;
+  CURL *eh;
+  struct TALER_PurseMergeSignatureP merge_sig;
+  struct TALER_ReserveSignatureP account_sig;
+  char arg_str[sizeof (pch->purse_pub) * 2 + 32];
+  char *url;
+  char *reserve_url;
+
+  pch = GNUNET_new (struct TALER_EXCHANGE_AccountMergeHandle);
+  pch->exchange = exchange;
+  pch->cb = cb;
+  pch->cb_cls = cb_cls;
+  pch->merge_timestamp = merge_timestamp;
+  pch->purse_pub = *purse_pub;
+  pch->h_contract_terms = *h_contract_terms;
+  pch->purse_expiration = purse_expiration;
+  pch->purse_value_after_fees = *purse_value_after_fees;
+  GNUNET_assert (GNUNET_YES ==
+                 TEAH_handle_is_ready (exchange));
+  {
+    char pub_str[sizeof (*purse_pub) * 2];
+    char *end;
+
+    end = GNUNET_STRINGS_data_to_string (
+      purse_pub,
+      sizeof (*purse_pub),
+      pub_str,
+      sizeof (pub_str));
+    *end = '\0';
+    GNUNET_snprintf (arg_str,
+                     sizeof (arg_str),
+                     "/purses/%s/merge",
+                     pub_str);
+  }
+  {
+    struct TALER_ReservePublicKeyP reserve_pub;
+    char pub_str[sizeof (reserve_pub) * 2];
+    char *end;
+    const char *exchange_url;
+    bool is_http;
+
+    GNUNET_CRYPTO_eddsa_key_get_public (&reserve_priv->eddsa_priv,
+                                        &reserve_pub.eddsa_pub);
+
+    end = GNUNET_STRINGS_data_to_string (
+      &reserve_pub,
+      sizeof (reserve_pub),
+      pub_str,
+      sizeof (pub_str));
+    *end = '\0';
+    if (0 == strncmp (reserve_exchange_url,
+                      "http://",
+                      strlen ("http://")))
+    {
+      is_http = true;
+      exchange_url = &reserve_exchange_url[strlen ("http://")];
+    }
+    else if (0 == strncmp (reserve_exchange_url,
+                           "https://",
+                           strlen ("https://")))
+    {
+      is_http = false;
+      exchange_url = &reserve_exchange_url[strlen ("https://")];
+    }
+    else
+    {
+      GNUNET_break (0);
+      GNUNET_free (pch);
+      return NULL;
+    }
+    GNUNET_asprintf (&reserve_url,
+                     "payto://%s/%s/%s",
+                     is_http ? "taler+http" : "taler",
+                     pub_str,
+                     exchange_url);
+  }
+  pch->url = TEAH_path_to_url (exchange,
+                               arg_str);
+  if (NULL == pch->url)
+  {
+    GNUNET_break (0);
+    GNUNET_free (pch);
+    return NULL;
+  }
+  GNUNET_CRYPTO_eddsa_key_get_public (&merge_priv->eddsa_priv,
+                                      &pch->merge_pub.eddsa_pub);
+  TALER_wallet_purse_merge_sign (reserve_url,
+                                 merge_timestamp,
+                                 purse_pub,
+                                 merge_priv,
+                                 &merge_sig);
+  TALER_wallet_account_merge_sign (merge_timestamp,
+                                   purse_pub,
+                                   purse_expiration,
+                                   h_contract_terms,
+                                   purse_value_after_fees,
+                                   min_age,
+                                   reserve_priv,
+                                   &reserve_sig);
+  merge_obj = GNUNET_JSON_PACK (
+    GNUNET_JSON_pack_string ("payto_uri",
+                             reserve_url),
+    GNUNET_JSON_pack_data_auto ("merge_sig",
+                                &merge_sig),
+    GNUNET_JSON_pack_data_auto ("reserve_sig",
+                                &reserve_sig),
+    GNUNET_JSON_pack_timestamp ("merge_timestamp",
+                                merge_timestamp));
+  GNUNET_assert (NULL != merge_obj);
+  eh = TALER_EXCHANGE_curl_easy_get_ (pch->url);
+  if ( (NULL == eh) ||
+       (GNUNET_OK !=
+        TALER_curl_easy_post (&pch->ctx,
+                              eh,
+                              merge_obj)) )
+  {
+    GNUNET_break (0);
+    if (NULL != eh)
+      curl_easy_cleanup (eh);
+    json_decref (merge_obj);
+    GNUNET_free (pch->url);
+    GNUNET_free (pch);
+    return NULL;
+  }
+  json_decref (merge_obj);
+  GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
+              "URL for purse merge with deposit: `%s'\n",
+              pch->url);
+  ctx = TEAH_handle_to_context (exchange);
+  pch->job = GNUNET_CURL_job_add2 (ctx,
+                                   eh,
+                                   pch->ctx.headers,
+                                   &handle_purse_merge_deposit_finished,
+                                   pch);
+  return pch;
+}
+
+
+void
+TALER_EXCHANGE_account_merge_cancel (
+  struct TALER_EXCHANGE_AccountMergeHandle *pch)
+{
+  if (NULL != pch->job)
+  {
+    GNUNET_CURL_job_cancel (pch->job);
+    pch->job = NULL;
+  }
+  GNUNET_free (pch->url);
+  TALER_curl_easy_post_finished (&pch->ctx);
+  GNUNET_free (pch);
+}
+
+
+/* end of exchange_api_purse_merge.c */
author	Christian Grothoff <grothoff@gnunet.org>	2022-04-11 13:52:06 +0200
committer	Christian Grothoff <grothoff@gnunet.org>	2022-04-11 13:52:06 +0200
commit	72dd9514aac1b59b81fc695b734de518cef1845b (patch)
tree	61c8dbb78bc0b979d6331924f60f504a34c6200d /src/lib
parent	f9971faa7a6fa5e5e7aa5ee6acdad3d45cfeea1b (diff)