#include <stdbool.h>
#include <stdint.h>
-/* Useful for testing. */
-#ifndef shachain_index_t
-#define shachain_index_t uint64_t
+#ifndef SHACHAIN_BITS
+#define SHACHAIN_BITS (sizeof(uint64_t) * 8)
#endif
-void shachain_from_seed(const struct sha256 *seed, shachain_index_t index,
+/**
+ * shachain_from_seed - Generate an unpredictable SHA from a seed value.
+ * @seed: (secret) seed value to use
+ * @index: index of value to generate (0 == seed)
+ * @hash: value generated
+ *
+ * There will be no way to derive the result from that generated for
+ * any *greater* index.
+ *
+ * Example:
+ * #include <time.h>
+ *
+ * static void next_hash(struct sha256 *hash)
+ * {
+ * static uint64_t index = 0xFFFFFFFFFFFFFFFFULL;
+ * static struct sha256 seed;
+ *
+ * // First time, initialize seed.
+ * if (index == 0xFFFFFFFFFFFFFFFFULL) {
+ * // DO NOT DO THIS! Very predictable!
+ * time_t now = time(NULL);
+ * memcpy(&seed, &now, sizeof(now));
+ * }
+ *
+ * shachain_from_seed(&seed, index--, hash);
+ * }
+ */
+void shachain_from_seed(const struct sha256 *seed, uint64_t index,
struct sha256 *hash);
+/**
+ * shachain - structure for recording/deriving decrementing chain members
+ * @min_index: minimum index value successfully shachain_add_hash()ed.
+ * @num_valid: number of known[] array valid. If non-zero, @min_index valid.
+ * @known: known values to allow us to derive those >= @min_index.
+ *
+ * This is sufficient storage to derive any shachain hash value previously
+ * added.
+ */
struct shachain {
- shachain_index_t max_index;
+ uint64_t min_index;
unsigned int num_valid;
struct {
- shachain_index_t index;
+ uint64_t index;
struct sha256 hash;
- } known[sizeof(shachain_index_t) * 8];
+ } known[SHACHAIN_BITS + 1];
};
-void shachain_init(struct shachain *shachain);
+/**
+ * shachain_init - initialize an shachain
+ * @chain: the chain to initialize
+ *
+ * Alternately, ensure that it's all zero.
+ */
+void shachain_init(struct shachain *chain);
-bool shachain_add_hash(struct shachain *shachain,
- shachain_index_t index, const struct sha256 *hash);
+/**
+ * shachain_next_index - what's the next index I can add to the shachain?
+ * @chain: the chain
+ *
+ * This returns 0xFFFFFFFFFFFFFFFF (for a freshly
+ * initialized chain), or one less than the previously successfully
+ * added value.
+ */
+uint64_t shachain_next_index(const struct shachain *chain);
-bool shachain_get_hash(const struct shachain *shachain,
- shachain_index_t index, struct sha256 *hash);
+/**
+ * shachain_add_hash - record the hash for the next index.
+ * @chain: the chain to add to
+ * @index: the index of the hash
+ * @hash: the hash value.
+ *
+ * You can only add shachain_next_index(@chain).
+ *
+ * This can fail (return false without altering @chain) if the hash
+ * for this index isn't consistent with previous hashes (ie. wasn't
+ * generated from the same seed), though it can't always detect that.
+ * If the hash is inconsistent yet undetected, a future addition will
+ * fail.
+ *
+ * Example:
+ * static void next_hash(const struct sha256 *hash)
+ * {
+ * static uint64_t index = 0xFFFFFFFFFFFFFFFFULL;
+ * static struct shachain chain;
+ *
+ * if (!shachain_add_hash(&chain, index--, hash))
+ * errx(1, "Corrupted hash value?");
+ * }
+ */
+bool shachain_add_hash(struct shachain *chain,
+ uint64_t index, const struct sha256 *hash);
+
+/**
+ * shachain_get_hash - get the hash for a given index.
+ * @chain: the chain query
+ * @index: the index of the hash to get
+ * @hash: the hash value.
+ *
+ * This will return true and set @hash to that given in the successful
+ * shachain_get_hash() call for that index. If there was no
+ * successful shachain_get_hash() for that index, it will return
+ * false.
+ *
+ * Example:
+ * #include <ccan/structeq/structeq.h>
+ * // Defines sha256_eq
+ * STRUCTEQ_DEF(sha256, 0, u);
+ *
+ * static void next_hash(const struct sha256 *hash)
+ * {
+ * static uint64_t index = 0xFFFFFFFFFFFFFFFFULL;
+ * static struct shachain chain;
+ *
+ * if (!shachain_add_hash(&chain, index--, hash))
+ * errx(1, "Corrupted hash value?");
+ * else {
+ * struct sha256 check;
+ * assert(shachain_get_hash(&chain, index+1, &check));
+ * assert(sha256_eq(&check, hash));
+ * }
+ * }
+ */
+bool shachain_get_hash(const struct shachain *chain,
+ uint64_t index, struct sha256 *hash);
#endif /* CCAN_CRYPTO_SHACHAIN_H */