Add trivial signature validation dsl via protobuf

This changeset attempts to make a first pass at having a generic enough to be useful, but not so generic as to be impossible to understand domain specific language (via protobuf) to express cryptographic validation schemes. In particular, the two primitives which comprise a policy are: NOutOf(n, []policies) SignedBy(id) Please note that this DSL is relying on the structure imposed by protobuf, and therefore defines the entire grammar of the DSL in 10 lines. There is an additional envelope message to allow the specification to be versioned. This was developed especially for aiding in specifying bootstrap configuration for signature policies, however, its applicability for other areas such as endorsement seems likely. https://jira.hyperledger.org/browse/FAB-704 Change-Id: I330b0660caf90b09034e5a1c167c08a5c2078e8f Signed-off-by: Jason Yellick <jyellick@us.ibm.com>
hyperledger · Oct 24, 2016 · f1a3675 · f1a3675
1 parent db22cdc
commit f1a3675
Show file tree

Hide file tree

Showing 5 changed files with 507 additions and 44 deletions.
diff --git a/orderer/atomicbroadcast/ab.pb.go b/orderer/atomicbroadcast/ab.pb.go
diff --git a/orderer/atomicbroadcast/ab.proto b/orderer/atomicbroadcast/ab.proto
@@ -35,6 +35,32 @@ message BroadcastMessage {
     bytes Data = 1;
 }
 
+
+// SignaturePolicyEnvelope wraps a SignaturePolicy and includes a version for future enhancements
+message SignaturePolicyEnvelope {
+    int32 Version = 1;
+    SignaturePolicy Policy = 2;
+    repeated bytes Identities = 3;
+}
+
+// SignaturePolicy is a recursive message structure which defines a featherweight DSL for describing
+// policies which are more complicated than 'exactly this signature'.  The NOutOf operator is sufficent
+// to express AND as well as OR, as well as of course N out of the following M policies
+// SignedBy implies that the signature is from a valid certificate which is signed by the trusted
+// authority specified in the bytes.  This will be the certificate itself for a self-signed certificate
+// and will be the CA for more traditional certificates
+message SignaturePolicy {
+    message NOutOf {
+        int32 N = 1;
+        repeated SignaturePolicy Policies = 2;
+    }
+    oneof Type {
+        int32 SignedBy = 1;
+        NOutOf From = 2;
+    }
+}
+
+
 message SeekInfo {
     // Start may be specified to a specific block number, or may be request from the newest or oldest available
     // The start location is always inclusive, so the first reply from NEWEST will contain the newest block at the time
@@ -89,4 +115,3 @@ service AtomicBroadcast {
     // To avoid latency, clients will likely acknowledge before the WindowSize has been exhausted, preventing the server from stopping and waiting for an Acknowledgement
     rpc Deliver(stream DeliverUpdate) returns (stream DeliverResponse) {}
 }
-