skeep_probe_match.c

Example of retrieving information from the secret and verifying the parties using the Safe Keeping module.

See Note on examples.

/* skeep_probe_match.c
*
* Example demonstrating the use of the DSKeepMatchSecret and
* DSKeepProbeSecret.
*/
 
#include <stdio.h>
#include <string.h>
#include <stdlib.h>
 
#include "dinamo.h" /* header of Dinamo */
 
#define HOST_ADDR "127.0.0.1"
#define USER_ID "master"
#define USER_PWD "12345678"
 
static int OpenSession(HSESSIONCTX *hSession, const char *cszIp, const char *cszUser,
                       const char *cszPassword)
{
    struct AUTH_PWD authPwd;
 
    /* Initializes the structure for connecting to the HSM */
    strncpy(authPwd. szAddr, HOST_ADDR, sizeof(authPwd.szAddr));
    authPwd. nPort = DEFAULT_PORT;
    strncpy(authPwd. szUserId, USER_ID, sizeof(authPwd.szUserId));
    strncpy(authPwd. szPassword, USER_PWD, sizeof(authPwd.szPassword));
 
    return DOpenSession(hSession, SS_USER_PWD,(BYTE *)&authPwd, sizeof(authPwd), ENCRYPTED_CONN);
}
 
static void PrintError(const char *cszFunction, int nRet)
{
    printf("Function failure: %s \nError code: %d\n", cszFunction, nRet);
}
 
int main()
{
    int nRet = 0;
    HSESSIONCTX hSession = NULL;
 
    #define M (2) /* Minimum number of shares to retrieve the secret */
    #define N (3) /* Total number of shares */
 
    const char *szId = "secret";
    BYTE bSecLevel = DN_SKEEP_SEC_LEVEL_160b; /* Secret security level */
    WORD wAuthType = DN_SKEEP_TYPE_NMIND; /* Type of authentication for the secret. In this test, it is not the default user and password. */
 
    SKeepShare shares[N] = {0}; /* Vetor de partes */
    SKeepRecoverInfo stRecoverInfo = {0}; /* Estrutura para recuperar o segredo */
    SKeepProbeInfo stProbeInfo = {0}; /* Estrutura para recuperar informações do segredo */
 
    /* Initializes the libraries of Dinamo */
    nRet =  DInitialize(0);
    if (nRet)
    {
        PrintError("DInitialize", nRet);
        goto clean;
    }
 
    printf("Libraries initialized.\n");
 
    /* Open session with HSM */
    nRet = OpenSession(&hSession, HOST_ADDR, USER_ID, USER_PWD);
    if (nRet)
    {
        PrintError("DOpenSession", nRet);
        goto clean;
    }
 
    printf("Session with Dinamo established.\n");
 
    /* Creates the secret */
    nRet = DSKeepNewSecret(hSession, szId, bSecLevel, wAuthType, 0);
    if(nRet)
    {
        PrintError("DSKeepNewSecret", nRet);
        goto clean;
    }
 
    printf("Secret successfully created.\n");
 
    /*
        Retrieves information from the secret.
    */
 
    nRet = DSKeepProbeSecret(hSession, szId, &stProbeInfo, 0);
    if (nRet)
    {
        PrintError("DSKeepProbeSecret", nRet);
        goto clean;
    }
 
    printf("Secret information successfully retrieved.\n");
 
    /* Splits the secret into N parts */
    nRet = DSKeepSplitSecret(hSession, szId, bSecLevel, wAuthType, M, N, shares, 0);
    if (nRet)
    {
        PrintError("DSKeepSplitSecret", nRet);
        goto clean;
    }
 
    printf("Secret split successfully.\n");
 
    /*
        Check the validity of the parties.
    */
 
    nRet = DSKeepMatchSecret(hSession, szId, shares, M, 0);
    if (nRet)
    {
        PrintError("DSKeepMatchSecret", nRet);
        goto clean;
    }
 
    printf("Parts successfully verified.\n");
 
    /* Remove the secret */
    nRet = DSKeepRemoveSecret(hSession, szId, bSecLevel, wAuthType, 0);
    if (nRet)
    {
        PrintError("DSKeepRemoveSecret", nRet);
        goto clean;
    }
 
    printf("Secret successfully removed.\n");
 
    clean:
 
    DCloseSession(&hSession, 0);
    printf("Session closed.\n");
 
    DFinalize();
    printf("Libraries finished.\n");
 
    return nRet;
}