While it's not the problem with our codebase, I want to raise awareness to address possible failure when installing dependency.

I tried on multiple Ubuntu instances and it seems that Ubuntu 18.04 does not have the root CA that Github is using.

I added the --no-check-certificate in my forked version, but maybe we can consider downloading gtest from somewhere else?

Hello,

Is it possible to install and use this library in a Raspberry with raspbian? I am trying to install it but the make command is giving me errors related to relic.

Thanks you

~/Desktop/openabe-master/cli$ ./oabe_enc -s CP -p org4 -e "((Doctor or Nurse) and (Floor in (2-5)))" \ -i input.txt -o input.cpabe

Could not open file : iostream error

zscanner.cpp: In member function ‘int OpenABEFlexLexer::yy_get_next_buffer()’:
zscanner.cpp:1308:44: warning: comparison between signed and unsigned integer expressions [-Wsign-compare]
if ((int) ((yy_n_chars) + number_to_move) > YY_CURRENT_BUFFER_LVALUE->yy_buf_size) {
^
g++ -I/home/xanarry/Desktop/openabe-master/deps/root/include -I/home/xanarry/Desktop/openabe-master/src -I/home/xanarry/Desktop/openabe-master/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c zml/zgroup.cpp
g++ -I/home/xanarry/Desktop/openabe-master/deps/root/include -I/home/xanarry/Desktop/openabe-master/src -I/home/xanarry/Desktop/openabe-master/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c zml/zpairing.cpp
g++ -I/home/xanarry/Desktop/openabe-master/deps/root/include -I/home/xanarry/Desktop/openabe-master/src -I/home/xanarry/Desktop/openabe-master/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c zml/zelliptic.cpp
gcc -I/home/xanarry/Desktop/openabe-master/deps/root/include -I/home/xanarry/Desktop/openabe-master/root/include -fPIC -g -O2 -DSSL_LIB_INIT -Wno-implicit-function-declaration -c zml/zelement.c -o zelement.o
g++ -I/home/xanarry/Desktop/openabe-master/deps/root/include -I/home/xanarry/Desktop/openabe-master/src -I/home/xanarry/Desktop/openabe-master/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c zml/zelement_ec.cpp
g++ -I/home/xanarry/Desktop/openabe-master/deps/root/include -I/home/xanarry/Desktop/openabe-master/src -I/home/xanarry/Desktop/openabe-master/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c zml/zelement_bp.cpp
g++ -I/home/xanarry/Desktop/openabe-master/deps/root/include -I/home/xanarry/Desktop/openabe-master/src -I/home/xanarry/Desktop/openabe-master/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c keys/zkdf.cpp
g++ -I/home/xanarry/Desktop/openabe-master/deps/root/include -I/home/xanarry/Desktop/openabe-master/src -I/home/xanarry/Desktop/openabe-master/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c keys/zkey.cpp
g++ -I/home/xanarry/Desktop/openabe-master/deps/root/include -I/home/xanarry/Desktop/openabe-master/src -I/home/xanarry/Desktop/openabe-master/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c keys/zpkey.cpp
In file included from /home/xanarry/Desktop/openabe-master/deps/root/include/openssl/pem.h:22:0,
from /home/xanarry/Desktop/openabe-master/root/include/openabe/keys/zpkey.h:38,
from /home/xanarry/Desktop/openabe-master/root/include/openabe/openabe.h:135,
from keys/zpkey.cpp:39:
keys/zpkey.cpp: In constructor ‘oabe::OpenABEPKey::OpenABEPKey(const EC_KEY*, bool, EC_GROUP*)’:
/home/xanarry/Desktop/openabe-master/deps/root/include/openssl/evp.h:444:48: error: invalid conversion from ‘const void*’ to ‘void*’ [-fpermissive]
(eckey))
^
keys/zpkey.cpp:72:5: note: in expansion of macro ‘EVP_PKEY_assign_EC_KEY’
EVP_PKEY_assign_EC_KEY(this->pkey, ec_key);
^
/home/xanarry/Desktop/openabe-master/deps/root/include/openssl/evp.h:1111:5: note: initializing argument 3 of ‘int EVP_PKEY_assign(EVP_PKEY*, int, void*)’
int EVP_PKEY_assign(EVP_PKEY *pkey, int type, void *key);
^
Makefile:137: recipe for target 'keys/zpkey.o' failed
make[1]: *** [keys/zpkey.o] Error 1
make[1]: Leaving directory '/home/xanarry/Desktop/openabe-master/src'
Makefile:19: recipe for target 'src' failed
make: *** [src] Error 2

MacOS Catalina 10.15.6, Xcode-12.0.

Two problems.

1. openabe ignores OpenSSL-1.1.1g that's installed in /opt/local, and tries to download and install another copy. I need to be able to tell it to use the existing build.

2. openabe build tries to use system-provided sed, which on macOS is old and bad. I have GNU sed gsed installed - but found no way of telling openabe to use it instead.

hello，that's another problem:
the directory ./deps/root/bin is not created, so I have to create it by myself to avoid this error when execute make install :

cp: cannot stat '/home/won/GitHub/openabe/deps/root/bin': No such file or directory Makefile:32: recipe for target 'install-deps' failed make: *** [install-deps] Error 1

It should be

source ./env

Instead of

../env

At least on Ubuntu 18.04 LTS.

By the way, when installing gtest, wget may fail if ca-certficate not installed but it still proceed with a empty .zip file, and ./bin will not be created, which results in an error when executing unzip during compilation. However make clean ignore those corrupted or empty files, which makes reinstall even harder in those cases.

Hello,
When I try to install openabe-master on Mac, after the /make steps, it pops out the error:
CMake Error at cmake_install.cmake:36 (file):
file cannot create directory: /deps/root/include/relic_ec. Maybe need
administrative privileges.

make[2]: *** [install] Error 1
make[1]: *** [relic-toolkit-0.4.1h/.built] Error 2

And finally:
CMake Error at cmake_install.cmake:36 (file):
file cannot create directory: /deps/root/lib. Maybe need administrative
privileges.

make[2]: *** [install] Error 1
make[1]: *** [googletest-release-1.8.0/.built] Error 2
make: *** [all] Error 2

Any idea about this?

I would like to know there is it possible to check if a key can decrypt ciphertext without trying to decrypt it.

I know that, trying to decrypt a ciphertext with unauthorized key generates an error. So we can assume that the policy is not satisfied. But I need more proper way to do it.

The following centos dependencies should be updated as there are not packages with the current name.

python3 => python36
python3-setuptools => python36-setuptools
python3-devel => python36-devel
python3-pip => python36-pip

I need to use Revocable ABE.How can I realize it on openabe?

MacOS, current master.

1. Building with at least one dependency (e.g., relic) enabled - make test fails if said dependency isn't already installed.
2. make clean does not remove test and debug artifacts, does not remove built library and header files from $ZROOT/root/.
3. Everything is linked with shared libraries for dependencies (static and shared vars both point at "shared").

All of the above is fixed in PR #49 .

Hello.

We are a group of students attempting to use OpenABE for a team project, requiring us to build the project for Linux as well as Android.

Following your build instructions, we were able to build the project for Linux without too many problems, the test examples appear to work properly. 2 small issues we encountered:

• Makefile.common has cc=g++, causing an error, fixed by setting it to gcc.
• download_gtest.sh occasionally fails downloading, fixed by adding --no-check-certificate to the wgets call.

Building it for android proved to be much more difficult, we ran into various issues with the android.sh script, many of which we were able to fix (we think), by changing the script or the environment variables. Details below.

Currently, the script appears to install the requirements properly, but when making the project via make src, many required header files seem to be missing or in incorrect locations. This might very well be caused by our modifications.
Error message:
"/(home)/openabe/root/include/openabe/zml/zelement.h:47:11: fatal error: relic/relic.h: No such file or directory
#include <relic/relic.h>
"
Adding an include for the correct location of the relic.h or copying it to an already included location causes hundreds of similar error messages for all kinds of header files.

We are unsure what causes this issue and how to fix it. The requirements might not be installed properly, maybe caused by our modifications. The linker might not properly link the libraries. Or maybe we're just missing some includes. Any insight you could provide would be helpful.

If we instead first attempt to build the project for Linux within the same folder, the headers do exist at the correct locations. If we now perform the build process for android again in the same folder, make src builds the project, and the tests work. However, we are not sure if we did build the project for android at that point, or some sort of bastardized Linux version. Or are you supposed to build the project for Linux first, before you even start to build it for android? This would fix some of the issues with the build process for android we encountered. We did not test this version on an actual android system.

Specifications:
Ubuntu 18.04.2
Android NDK r10e
GMP 6.0.0
Relic toolkit 0.5.0
OpenSSL 1.1.1
gtest 1.8.0
target arch: armv7-a

Modifications to the android.sh and the build process in general:

• android.sh doesn't automatically download OpenSSL, Relic or gtest, so perform their download scripts first.
• android.sh uses environment variables setup in your env file, so we setup the environment before starting android.sh
• we run android.sh using clang. gcc produced various issues, especially with relic. However clang didn't work with OpenSSL, so:

OpenSSL:

• we build OpenSSL by itself before running the android.sh script using gcc. We were unable to build it with clang.
• Run Configure android-arm instead of just android. android by itself doesn't seem to be a valid option.
• additional flags for OpenSSL Configure: -latomic -march=armv7-a -mthumb -Dchar16_t=uint16_t -Dchar32_t=uint32_t
  we were getting compiler errors about atomic library calls, requiring thumb2 instructions, and some custom variable types to not exist. Running configure with these flags fixed the issues.

android.sh:

• changed lib versions as instructed
• skip OpenSSL building, since we did that seperately
• line 116: RANLIB="/bin/true" to RANLIB="$TOOLCHAIN_ARCH-ranlib"
• line 197 and 207: -DWORD to -DWSIZE (Relic replaced WORD with WSIZE)
• gtest: modified generated Android.mk file, it didn't seem to use the correct folder structure and includes
  starting line 269:
  echo "
  LOCAL_PATH := $(call my-dir)
  include $(CLEAR_VARS)
  LOCAL_CPP_EXTENSION := .cc
  LOCAL_MODULE := libgtest
  LOCAL_C_INCLUDES := $(LOCAL_PATH)/../googletest/include . $(LOCAL_PATH)/../googletest/ .
  LOCAL_SRC_FILES := ../googletest/src/gtest-all.cc
  include $(BUILD_SHARED_LIBRARY)
  " > ./jni/Android.mk

Any help would be greatly appreciated.

I see the header file includes a definition of these two functions but the version i pulled did not have an implementation of it. I would have expected to find it in zcrypto_box.cpp.

OpenSSL-1.1.1 and 3.0 (and 1.0.2 - I checked) do not have bp.h header file.

src/include/openabe/zml/zelement.h tries to include bp.h. which fails:

/Applications/Xcode.app/Contents/Developer/usr/bin/make -C src
CXX11FLAGS: -std=c++11 -I/Users/ur20980/src/openabe-mouse/deps/root/include -I/Users/ur20980/src/openabe-mouse/src -I/Users/ur20980/src/openabe-mouse/root/include -std=c++11 -I/opt/local/include -stdlib=libc++ -DGTEST_USE_OWN_TR1_TUPLE=1 -Wno-deprecated -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2  -DSSL_LIB_INIT -DBP_WITH_OPENSSL 
mkdir -p /Users/ur20980/src/openabe-mouse/root/include/openabe
cp -r include/openabe/* /Users/ur20980/src/openabe-mouse/root/include/openabe
clang++ -I/Users/ur20980/src/openabe-mouse/deps/root/include -I/Users/ur20980/src/openabe-mouse/src -I/Users/ur20980/src/openabe-mouse/root/include -std=c++11 -I/opt/local/include -stdlib=libc++ -DGTEST_USE_OWN_TR1_TUPLE=1 -Wno-deprecated -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2  -DSSL_LIB_INIT -DBP_WITH_OPENSSL -c zobject.cpp
In file included from zobject.cpp:39:
In file included from /Users/ur20980/src/openabe-mouse/root/include/openabe/openabe.h:120:
/Users/ur20980/src/openabe-mouse/root/include/openabe/zml/zelement.h:43:10: fatal error: 'openssl/bp.h' file not found
#include <openssl/bp.h>
         ^~~~~~~~~~~~~~
1 error generated.
make[1]: *** [zobject.o] Error 1

How to trigger this bug:

$ . ./env
$ export ZML_LIB="with_openssl"
$ make
. . . . .
[ observe the above error message ]

Seems the same as #15, only with more details. ;-)

@jakinyele any help here? Is ZML_LIB="with_openssl" deprecated? Because I don't see how this can even compile, and OpenSSL stopped providing openssl/bp.h header file (and the rest of support) way before v1.0.2. So, this must be a really old relict.

The link to download googletest is not correct. In the script ./deps/gtest/download_gtest.sh, the downloading link is https://github.com/google/googletest/archive/release-${VERSION}.zip, but the actual link seems to be "https://github.com/google/googletest/releases/tag/releases.1.8.0.zip", for version 1.8.0.

I have to download the gtest manually and comments out the downloading command in the script.

The Zeutro web site used to mention supporting multi-authority with a ZerotroSDK. It wasn't open source but I don't see it there anymore. Is it just gone? Is it going to be rolled into OpenABE?

I'll put in a PR for this shortly

Can I use any ide to debug this openabe?

Hi, I am trying to install the package on Ubuntu 18.04. I caught the error when running the make command. The following is the error info.

mkdir -p /home/ubuntu/openabe/root/include/openabe cp -r include/openabe/* /home/ubuntu/openabe/root/include/openabe g++ -I/home/ubuntu/openabe/deps/root/include -I/home/ubuntu/openabe/src -I/home/ubuntu/openabe/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c zobject.cpp g++ -I/home/ubuntu/openabe/deps/root/include -I/home/ubuntu/openabe/src -I/home/ubuntu/openabe/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c openabe.cpp g++ -I/home/ubuntu/openabe/deps/root/include -I/home/ubuntu/openabe/src -I/home/ubuntu/openabe/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c zcontext.cpp g++ -I/home/ubuntu/openabe/deps/root/include -I/home/ubuntu/openabe/src -I/home/ubuntu/openabe/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c zcrypto_box.cpp g++ -I/home/ubuntu/openabe/deps/root/include -I/home/ubuntu/openabe/src -I/home/ubuntu/openabe/root/include -std=c++11 -fPIC -DGTEST_USE_OWN_TR1_TUPLE=0 -pthread -Wall -fstrict-overflow -Wsign-compare -g -O2 -DSSL_LIB_INIT -c zsymcrypto.cpp bison -d -v zparser.yy zparser.yy: warning: 3 shift/reduce conflicts [-Wconflicts-sr] zparser.yy:42.9-24: error: %define variable 'api.parser.class' is not used %define api.parser.class {Parser} ^^^^^^^^^^^^^^^^ Makefile:58: recipe for target 'zparser.o' failed

Homebrew does not support the option --with-default-names any more.

As a result, the install_pkgs.sh script does not work as intended any more.

Possible fix: Add gnu_sed to $PATH.

Pyopenabe throws the unwrapped exception UnicodeDecodeError: 'ascii' codec can't decode byte 0x80 in position 0 when trying to encrypt the ciphertext '\x80'.

Here is the simplest case I can find to reproduce the error:

import pyopenabe

print("Testing Python bindings for PyOpenABE...")
openabe = pyopenabe.PyOpenABE()
cpabe = openabe.CreateABEContext("CP-ABE")
pt1 = b"\x80"
ct = cpabe.encrypt("((one or two) and three)", pt1)

And here is the traceback:

Traceback (most recent call last):
  File "test.py", line 10, in <module>
    ct = cpabe.encrypt("one", pt1)
  File "pyopenabe.pyx", line 162, in pyopenabe.PyABEContext.encrypt
  File "pyopenabe.pyx", line 90, in pyopenabe.to_bytes
UnicodeDecodeError: 'ascii' codec can't decode byte 0x80 in position 0: ordinal not in range(128)

Python version: sys.version_info(major=2, minor=7, micro=12, releaselevel='final', serial=0)
OpenABE version: 1.0.0

Multiple problems. Mainly, the build scripts fail to pick a usable compiler (from the three installed and working!).

Compilers:

$ g++ -v
Using built-in specs.
COLLECT_GCC=g++
COLLECT_LTO_WRAPPER=/opt/local/libexec/gcc/x86_64-apple-darwin19/10.2.0/lto-wrapper
Target: x86_64-apple-darwin19
Configured with: /opt/local/var/macports/build/_opt_bblocal_var_buildworker_ports_build_ports_lang_gcc10/gcc10/work/gcc-10.2.0/configure --prefix=/opt/local --build=x86_64-apple-darwin19 --enable-languages=c,c++,objc,obj-c++,lto,fortran,jit --libdir=/opt/local/lib/gcc10 --includedir=/opt/local/include/gcc10 --infodir=/opt/local/share/info --mandir=/opt/local/share/man --datarootdir=/opt/local/share/gcc-10 --with-local-prefix=/opt/local --with-system-zlib --disable-nls --program-suffix=-mp-10 --with-gxx-include-dir=/opt/local/include/gcc10/c++/ --with-gmp=/opt/local --with-mpfr=/opt/local --with-mpc=/opt/local --with-isl=/opt/local --enable-stage1-checking --disable-multilib --enable-lto --enable-libstdcxx-time --with-build-config=bootstrap-debug --with-as=/opt/local/bin/as --with-ld=/opt/local/bin/ld --with-ar=/opt/local/bin/ar --with-bugurl=https://trac.macports.org/newticket --enable-host-shared --disable-tls --with-pkgversion='MacPorts gcc10 10.2.0_1' --with-sysroot=/Library/Developer/CommandLineTools/SDKs/MacOSX10.15.sdk
Thread model: posix
Supported LTO compression algorithms: zlib
gcc version 10.2.0 (MacPorts gcc10 10.2.0_1) 
$ clang++ -v
Apple clang version 12.0.0 (clang-1200.0.32.2)
Target: x86_64-apple-darwin19.6.0
Thread model: posix
InstalledDir: /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin
$ clang -v
Apple clang version 12.0.0 (clang-1200.0.32.2)
Target: x86_64-apple-darwin19.6.0
Thread model: posix
InstalledDir: /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin

Error attempting to build the relic dependency:

$ make
./download_relic.sh relic-toolkit-0.5.0
Clone github repo @ https://github.com/relic-toolkit/relic
fatal: destination path 'relic-toolkit-0.5.0.git' already exists and is not an empty directory.
HEAD is now at b984e901 Update LABEL with recent changes.
Create archive of source (without git files)
Create final tarball: relic-toolkit-0.5.0.tar.gz
mkdir: relic-toolkit-0.5.0: File exists
Fix symbols...
tar xf relic-toolkit-0.5.0.tar.gz
cd tmpbp-gMIo; \
	 COMP="-O2 -funroll-loops -fomit-frame-pointer -Wno-incompatible-pointer-types -Wno-unused-function -Wno-implicit-function-declaration -Wno-incompatible-pointer-types-discards-qualifiers" cmake  -DCMAKE_INSTALL_PREFIX:PATH=/Users/ur20980/src/openabe/deps/root -DOPSYS=MACOSX -DARCH="X64" \
	-DWITH="BN;DV;FP;FPX;EP;EPX;PP;PC;MD" -DCHECK=off -DVERBS=off -DDEBUG=off -DMULTI=PTHREAD -DBENCH=0 -DTESTS=10 -DARITH=x64-asm-254 -DFP_PRIME=254 -DBN_PRECI=254 \
	-DFP_QNRES=on -DEP_METHD="PROJC;LWNAF;COMBS;INTER" -DFP_METHD="BASIC;COMBA;COMBA;MONTY;LOWER;SLIDE" -DFPX_METHD="INTEG;INTEG;LAZYR" -DPP_METHD="LAZYR;OATEP" \
	-DSEED="ZERO" -DRAND="CALL" ../relic-toolkit-0.5.0; \
	make && \
	make install && \
	cd ../tmpec-mVH9; \
	 COMP="-O2 -funroll-loops -fomit-frame-pointer -Wno-unused-function -Wno-implicit-function-declaration -Wno-incompatible-pointer-types-discards-qualifiers" cmake  -DCMAKE_INSTALL_PREFIX:PATH=/Users/ur20980/src/openabe/deps/root -DOPSYS=MACOSX -DARCH="X64" \
	-DWITH="BN;DV;FP;EP;MD" -DCHECK=off -DVERBS=off -DDEBUG=off -DMULTI=PTHREAD -DBENCH=0 -DTESTS=0 -DARITH=gmp -DFP_PRIME=256 \
	-DFP_QNRES=off -DEP_METHD="PROJC;LWNAF;COMBS;INTER" -DFP_METHD="BASIC;COMBA;COMBA;MONTY;LOWER;SLIDE" -DFPX_METHD="INTEG;INTEG;LAZYR" -DPP_METHD="LAZYR;OATEP" \
	-DSEED="ZERO" -DRAND="CALL" -DLABEL="ec" ../relic-toolkit-0.5.0; \
	make && \
	make install && \
	sed -i -e '/^#define VERSION/d' /Users/ur20980/src/openabe/deps/root/include/relic/relic_conf.h && \
	sed -i -e '/^#define ep2_mul/i \
//#define ep2_mul' /Users/ur20980/src/openabe/deps/root/include/relic/relic_label.h && \
	sed -i -e '/^#define VERSION/d' /Users/ur20980/src/openabe/deps/root/include/relic_ec/relic_conf.h && \
	../run_install_clean.sh && \
	touch ../relic-toolkit-0.5.0/.built
-- The C compiler identification is unknown
-- The CXX compiler identification is GNU 10.2.0
-- Detecting C compiler ABI info
-- Detecting C compiler ABI info - failed
-- Check for working C compiler: /opt/local/bin/g++
-- Check for working C compiler: /opt/local/bin/g++ - broken
CMake Error at /opt/local/share/cmake-3.18/Modules/CMakeTestCCompiler.cmake:66 (message):
  The C compiler

    "/opt/local/bin/g++"

  is not able to compile a simple test program.

  It fails with the following output:

    Change Dir: /Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp
    
    Run Build Command(s):/opt/local/bin/gmake cmTC_3cb7e/fast && gmake[1]: Entering directory '/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp'
    /opt/local/bin/gmake  -f CMakeFiles/cmTC_3cb7e.dir/build.make CMakeFiles/cmTC_3cb7e.dir/build
    gmake[2]: Entering directory '/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp'
    Building C object CMakeFiles/cmTC_3cb7e.dir/testCCompiler.c.o
    /opt/local/bin/g++   -O3 -std=gnu18 -march=native -isysroot /Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk  -o CMakeFiles/cmTC_3cb7e.dir/testCCompiler.c.o -c /Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp/testCCompiler.c
    cc1plus: warning: command-line option '-std=gnu17' is valid for C/ObjC but not for C++
    /Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp/testCCompiler.c:2:3: error: #error "The CMAKE_C_COMPILER is set to a C++ compiler"
        2 | # error "The CMAKE_C_COMPILER is set to a C++ compiler"
          |   ^~~~~
    gmake[2]: *** [CMakeFiles/cmTC_3cb7e.dir/build.make:85: CMakeFiles/cmTC_3cb7e.dir/testCCompiler.c.o] Error 1
    gmake[2]: Leaving directory '/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp'
    gmake[1]: *** [Makefile:140: cmTC_3cb7e/fast] Error 2
    gmake[1]: Leaving directory '/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp'
    
    

  

  CMake will not be able to correctly generate this project.
Call Stack (most recent call first):
  CMakeLists.txt:6 (project)


-- Configuring incomplete, errors occurred!
See also "/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeOutput.log".
See also "/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeError.log".
make[1]: *** No targets specified and no makefile found.  Stop.
-- The C compiler identification is unknown
-- The CXX compiler identification is GNU 10.2.0
-- Detecting C compiler ABI info
-- Detecting C compiler ABI info - failed
-- Check for working C compiler: /opt/local/bin/g++
-- Check for working C compiler: /opt/local/bin/g++ - broken
CMake Error at /opt/local/share/cmake-3.18/Modules/CMakeTestCCompiler.cmake:66 (message):
  The C compiler

    "/opt/local/bin/g++"

  is not able to compile a simple test program.

  It fails with the following output:

    Change Dir: /Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp
    
    Run Build Command(s):/opt/local/bin/gmake cmTC_a54df/fast && gmake[1]: Entering directory '/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp'
    /opt/local/bin/gmake  -f CMakeFiles/cmTC_a54df.dir/build.make CMakeFiles/cmTC_a54df.dir/build
    gmake[2]: Entering directory '/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp'
    Building C object CMakeFiles/cmTC_a54df.dir/testCCompiler.c.o
    /opt/local/bin/g++   -O3 -std=gnu18 -march=native -isysroot /Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk  -o CMakeFiles/cmTC_a54df.dir/testCCompiler.c.o -c /Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp/testCCompiler.c
    cc1plus: warning: command-line option '-std=gnu17' is valid for C/ObjC but not for C++
    /Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp/testCCompiler.c:2:3: error: #error "The CMAKE_C_COMPILER is set to a C++ compiler"
        2 | # error "The CMAKE_C_COMPILER is set to a C++ compiler"
          |   ^~~~~
    gmake[2]: *** [CMakeFiles/cmTC_a54df.dir/build.make:85: CMakeFiles/cmTC_a54df.dir/testCCompiler.c.o] Error 1
    gmake[2]: Leaving directory '/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp'
    gmake[1]: *** [Makefile:140: cmTC_a54df/fast] Error 2
    gmake[1]: Leaving directory '/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeTmp'
    
    

  

  CMake will not be able to correctly generate this project.
Call Stack (most recent call first):
  CMakeLists.txt:6 (project)


-- Configuring incomplete, errors occurred!
See also "/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeOutput.log".
See also "/Users/ur20980/src/openabe/deps/relic/tmpbp-gMIo/CMakeFiles/CMakeError.log".
make[1]: *** No targets specified and no makefile found.  Stop.
make: *** [relic-toolkit-0.5.0/.built] Error 2

sudo -EH make install INSTALL_PREFIX=/your/path works, but export INSTALL_PREFIX=/your/path; sudo -EH make install doesn't.

PR #53 fixes this problem.

Thanks for your project, it is very easy to use for someone who is not a encryption expert like me. And I found a small question：

The option '-k' of the command oabe_dec for PKE is wrong, it should be '-r'.

won@ubuntu:~/GitHub/openabe_test_pke$ oabe_dec 
OpenABE command-line: decryption utility, v1.7
usage: [ -s scheme ] [ -p prefix ] [ -k key ] [ -i ciphertext ] [ -o output ] -v

	-v : turn on verbosity
	-s : scheme types are 'PK', 'CP' or 'KP'
	-k : recipient key Id for 'PK' and secret key file for 'CP'/'KP'
	-e : sender key Id for 'PK'
	-i : ciphertext file 
	-o : output file for plaintext
	-p : prefix for generated authority public and secret parameter files (optional)

won@ubuntu:~/GitHub/openabe_test_pke$ 
won@ubuntu:~/GitHub/openabe_test_pke$ oabe_dec -s PK -k Bob -e Alice -i test.pkenc -o test_Bob.txt
ciphertext: test.pkenc
missing sender ID (-e option) and/or recipient ID (-r option)
won@ubuntu:~/GitHub/openabe_test_pke$ 
won@ubuntu:~/GitHub/openabe_test_pke$ oabe_dec -s PK -r Bob -e Alice -i test.pkenc -o test_Bob.txt
ciphertext: test.pkenc

hi
i am installing the library using your guide on github
it throws error when i try to make the library
after the MAKE command is issued, the following error display on screen

On systems where header files of dependencies are in LOCAL_INCLUDE, compilation of zelement.c fails.

Submitting PR to fix it.

When encrypt and decrypt large files using AES of openABE, it costs a lot of time than normal AES. Here is the performance I debugeed:
decrypt: EVP_DecryptInit_ex0.002 ms
decrypt: EVP_DecryptUpdate 1 0 ms
decrypt: EVP_DecryptUpdate 2 50.797 ms
decrypt: pt_buf.appendArray 89.899 ms
decrypt: EVP_CIPHER_CTX_ctrl0.002 ms
decrypt: pt_buf.toString() 2006.45 ms
decrypt: 2212.04 ms

This is because openABE use its own string type "OpenABEByteString". Its toString API and appendArray cost a lot of time.

So I have a question: in the following API

OpenABE_ERROR
OpenABESymKeyAuthEnc::encrypt(const string& plaintext, OpenABEByteString *iv, OpenABEByteString *ciphertext, OpenABEByteString *tag)
{

bool
OpenABESymKeyAuthEnc::decrypt(string& plaintext, OpenABEByteString* iv, OpenABEByteString* ciphertext, OpenABEByteString* tag)
{

Why not use standard string instead of OpenABEByteString?

Thanks in advance

This is more a question than an issue. I was looking at the dependency on RELIC and was a little concerned about this statement on their github page.

"RELIC is at most alpha-quality software. Implementations may not be correct or secure and may include patented algorithms. There are many configuration options which make the library horribly insecure. Backward API compatibility with early versions may not necessarily be maintained. Use at your own risk."

Would there be any problem bumping the dependency to the latest commit or is there something special about that particular commit? It as almost a year ago and there appear to be quite a few commits since then.

Can you comment on its use withing OpenABE?

I tried to install openabe-master on Ubuntu machine, everything is OK at the beginning (make / make test steps). However, after the /sudo make install, there is the error: Makefile:7 *** ZROOT is undefined. Need to source env file: . ./env. And after trying . ./env there is no difference.
Any hints?

Creating the symlink for cmake fails on centos

ln: failed to create symbolic link ‘/usr/bin/cmake’: File exists

make distclean and make clean does not do what's expected. They leave *.dSYM files, openssl-${VERSION} files, etc.

Submitting PR to fix it.

Hi,

I'm using OpenABE for a project on access control for web/cloud APIs.

From the OpenABE manual (CLI), I've noted the sentence: "Attributes also includes printable symbols/characters such as $, &, #, % and so on." This seems not the case, however, for sign "+".

For example, I've an attribute representing an email address (yes, I know it is a particular one:) and I'm trying to generate a KP ABE key:

oabe_keygen -s KP -p test -o key -i email:[email protected]

which results in the following CLI error:

Driver::error string stream:1.53: syntax error, unexpected $undefined, expecting end of file
./keygen.cpp:runAbeKeygen:119: 'Invalid function input'

Same result using quotes to delimit the value, i.e.

oabe_keygen -s KP -p test -o key -i email:"[email protected]"

EDIT: this happens with other signs which are operators such as ">", "<", "=", space, single and double quotes.

Is there a way to tell the underlying parser that the value of an attribute should be interpreted as a plain string?

Thanks,
Giovanni

Attribute negation in policies seem possible in literature.
e.g. (attr1 AND NOT attr2)

As far as I have seen, this does not seem to be implemented in OpenABE.
Is it planned at some point ?

There's a repo containing a Makefile that has been updated to build for ARM. It was not forked so you might not have known about it.

https://github.com/IBM/openabe

Running Centos 7.

Makefile:137: recipe for target 'zobject.o' failed
make[1]: *** [zobject.o] Error 1
make[1]: Leaving directory '/home/james/桌面/openabe-master/src'
Makefile:19: recipe for target 'src' failed
make: *** [src] Error 2

hi, I want to build openabe on windows and I get the errors as follow:

"glob" is not exported by the File::Glob module
Can't continue after import errors at ./Configure line 18.
BEGIN failed--compilation aborted at ./Configure line 18.
make[2]: *** [Makefile:14：openssl-1.1.1-dev-bp/.built] 错误 255
make[2]: 离开目录“/f/project/libopenabe-1.0.0/deps/openssl”
make[1]: *** [Makefile:9：all] 错误 2
make[1]: 离开目录“/f/project/libopenabe-1.0.0/deps”
make: *** [Makefile:16：deps] 错误 2

any ideas?? thanks

"make" seems to progress well with a number of warning.

g++ -o test_km -std=c++11 -pthread -Wall -g -O2 -DSSL_LIB_INIT -I//Library/ABE/openabe/deps/root/include -I//Library/ABE/openabe/root/include -L//Library/ABE/openabe/deps/root/lib -L//Library/ABE/openabe/root/lib test_km.cpp -lcrypto -lrelic -lrelic_ec -lopenabe

libraries seem in place but
make test
(cd src && ./test_libopenabe) || exit 1
dyld: Library not loaded: @rpath/librelic_ec.dylib
Referenced from: //Library/ABE/openabe/src/./test_libopenabe
Reason: image not found
/bin/sh: line 1: 7442 Abort trap: 6 ./test_libopenabe
make: *** [test] Error 1

The install_pkgs.sh script, for centos and fedora, does a full system upgrade without confirmation by running yum -y upgrade.

I can understand the desire to have the latest code but it might be a bit much when you're just expecting it to install the required dependencies. I found myself seeing a ton of rpm package upgrades and saying, "whooooooh no way. I'm not prepared for that right now"

I would suggest removing it and only including required packages.

Build fails with the following error.

zparser.yy:42.9-24: error: %define variable 'api.parser.class' is not used
%define api.parser.class {Parser}
^^^^^^^^^^^^^^^^
make[1]: *** [zparser.o] Error 1
make[1]: Leaving directory `/home/centos/git/openabe/src'
make: *** [src] Error 2

I have bison 3.0.4 installed.

Changing api.parser.class to parser_class_name seems to fix the problem.

Hello,
I tried the CP-ABE example in OpenABE Command-line utilities documentation, and the oabe_setup, oabe_kegen part is OK. But the encryption command has error as below.

./oabe_enc -s CP -p org1 -e "((Doctor or Nurse) and (Floor in (2-5)))" \ -i input.txt -o input.cpabe
Could not open file : iostream error

Hi,

Which is the smallest resulting ciphertext size that can be obtained when ciphering a 1-digit number with a very simple policy?

Thank you!

After manually downloading the gtest release-1.8.0.zip, I use sudo -E make build the library. However, When I run with the "make test", some error happened, the first error is as follows:

VirtualBox:~/ABE/openabe/openabe-master$ make test
(cd src && ./test_libopenabe) || exit 1
libopenabe v1.7 test utility.

[==========] Running 46 tests from 1 test case.
[----------] Global test environment set-up.
[----------] 46 tests from libopenabe
[ RUN ] libopenabe.PolicyTreeAndAttributeListParser
Driver::error string stream:1.12-13: syntax error, unexpected OR, expecting end of file
Check if isEqual throws an error correctly

There are a number of other errors in the testing output.

I want to use openabe for a project of mine.
Unfortunately I'm not able to get it running when following the instructions in the README.md.

Output:

bison -d -v zparser.yy
zparser.yy:39.1-19: warning: deprecated directive, use ‘%define api.prefix {oabe}’ [-Wdeprecated]
   39 | %name-prefix "oabe"
      | ^~~~~~~~~~~~~~~~~~~
zparser.yy:42.9-27: error: syntax error, unexpected string, expecting identifier
   42 | %define "parser_class_name" {Parser}
      |         ^~~~~~~~~~~~~~~~~~~
zparser.yy:58.1-14: warning: deprecated directive, use ‘%define parse.error verbose’ [-Wdeprecated]
   58 | %error-verbose
      | ^~~~~~~~~~~~~~
zparser.yy: warning: fix-its can be applied.  Rerun with option '--update'. [-Wother]
make[1]: *** [zparser.o] Error 1
make: *** [src] Error 2

What am I doing wrong here?

When the script try to upgrade bison, There is no defination for $ZROOT in Ubuntu 18.04, at least in my system I can not find this variable. So I had to use $dpkg -L bison to find where bison is installed. To the end, I had to run the rest of the script manually statement by statement. I think It will be better if you fix it. :)

What is BP suport? I can see that it refers to the Zeutro fork but wasn't sure what it was. I can't see where the build would ever pass the "with-bp" option to build it though.

We need a way to suppress the cerr when encryption fails. This is a normal occurance and if it is not thrown as an error but just goes to cerr, it causes issues.

abe/zcontextcca.cpp:decrypt:613: 'Error occurred during decryption'

I cannot run statement . ./env on the windown