Gitiles
Code Review Sign In
gerrit.named-data.net / ChronoChat / 0b0a736317e88a5c84c18d8628e488657d14507a / . / src / endorse-certificate.cpp
blob: 8fc8dec27ca515d451198837a2a0508191de562a [file] [log] [blame]
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil -*- */
2/*
3 * Copyright (c) 2013, Regents of the University of California
4 * Yingdi Yu
5 *
6 * BSD license, See the LICENSE file for more information
7 *
8 * Author: Yingdi Yu <yingdi@cs.ucla.edu>
9 */
10
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]11#include "endorse-certificate.hpp"
Yingdi Yu76dd8002013-12-24 11:16:32 +0800[diff] [blame]12#include "endorse-extension.pb.h"
Yingdi Yu76dd8002013-12-24 11:16:32 +0800[diff] [blame]13#include <boost/iostreams/stream.hpp>
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]14#include <ndn-cxx/encoding/buffer-stream.hpp>
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]15
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]16namespace chronos {
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]17
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]18using std::vector;
19using std::string;
20
21using ndn::PublicKey;
22using ndn::IdentityCertificate;
23using ndn::CertificateSubjectDescription;
24using ndn::CertificateExtension;
25using ndn::OID;
26using ndn::OBufferStream;
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]27
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]28const OID EndorseCertificate::PROFILE_EXT_OID("1.3.6.1.5.32.2.1");
29const OID EndorseCertificate::ENDORSE_EXT_OID("1.3.6.1.5.32.2.2");
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]30
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]31const vector<string> EndorseCertificate::DEFAULT_ENDORSE_LIST;
Yingdi Yu348f5ea2014-03-01 14:47:25 -0800[diff] [blame]32
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]33Chronos::EndorseExtensionMsg&
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]34operator<<(Chronos::EndorseExtensionMsg& endorseExtension, const vector<string>& endorseList)
Yingdi Yufa0b6a02014-04-30 14:26:42 -0700[diff] [blame]35{
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]36 for (vector<string>::const_iterator it = endorseList.begin(); it != endorseList.end(); it++)
Yingdi Yu76dd8002013-12-24 11:16:32 +0800[diff] [blame]37 endorseExtension.add_endorseentry()->set_name(*it);
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]38
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]39 return endorseExtension;
40}
41
42Chronos::EndorseExtensionMsg&
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]43operator>>(Chronos::EndorseExtensionMsg& endorseExtension, vector<string>& endorseList)
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]44{
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]45 for (int i = 0; i < endorseExtension.endorseentry_size(); i ++)
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]46 endorseList.push_back(endorseExtension.endorseentry(i).name());
47
48 return endorseExtension;
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]49}
50
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]51EndorseCertificate::EndorseCertificate(const IdentityCertificate& kskCertificate,
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]52 const Profile& profile,
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]53 const vector<string>& endorseList)
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]54 : Certificate()
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]55 , m_profile(profile)
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]56 , m_endorseList(endorseList)
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]57{
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]58 m_keyName = IdentityCertificate::certificateNameToPublicKeyName(kskCertificate.getName());
59 m_signer = m_keyName;
60
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]61 Name dataName = m_keyName;
Yingdi Yub6fb0302014-01-21 11:05:11 -0800[diff] [blame]62 dataName.append("PROFILE-CERT").append(m_signer.wireEncode()).appendVersion();
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]63 setName(dataName);
64
Yingdi Yub2e747d2013-11-05 23:06:43 -0800[diff] [blame]65 setNotBefore(kskCertificate.getNotBefore());
66 setNotAfter(kskCertificate.getNotAfter());
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]67 addSubjectDescription(CertificateSubjectDescription(OID("2.5.4.41"), m_keyName.toUri()));
Yingdi Yufa0b6a02014-04-30 14:26:42 -0700[diff] [blame]68 setPublicKeyInfo(kskCertificate.getPublicKeyInfo());
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]69
70 OBufferStream profileStream;
71 m_profile.encode(profileStream);
72 addExtension(CertificateExtension(PROFILE_EXT_OID, true, *profileStream.buf()));
73
74 OBufferStream endorseStream;
75 Chronos::EndorseExtensionMsg endorseExtension;
76 endorseExtension << m_endorseList;
77 endorseExtension.SerializeToOstream(&endorseStream);
78 addExtension(CertificateExtension(ENDORSE_EXT_OID, true, *endorseStream.buf()));
Yingdi Yufa0b6a02014-04-30 14:26:42 -0700[diff] [blame]79
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]80 encode();
81}
82
83EndorseCertificate::EndorseCertificate(const EndorseCertificate& endorseCertificate,
84 const Name& signer,
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]85 const vector<string>& endorseList)
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]86 : Certificate()
87 , m_keyName(endorseCertificate.m_keyName)
88 , m_signer(signer)
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]89 , m_profile(endorseCertificate.m_profile)
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]90 , m_endorseList(endorseList)
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]91{
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]92 Name dataName = m_keyName;
Yingdi Yub6fb0302014-01-21 11:05:11 -0800[diff] [blame]93 dataName.append("PROFILE-CERT").append(m_signer.wireEncode()).appendVersion();
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]94 setName(dataName);
Yingdi Yufa0b6a02014-04-30 14:26:42 -0700[diff] [blame]95
Yingdi Yub2e747d2013-11-05 23:06:43 -0800[diff] [blame]96 setNotBefore(endorseCertificate.getNotBefore());
97 setNotAfter(endorseCertificate.getNotAfter());
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]98 addSubjectDescription(CertificateSubjectDescription(OID("2.5.4.41"), m_keyName.toUri()));
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]99 setPublicKeyInfo(endorseCertificate.getPublicKeyInfo());
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]100
101 OBufferStream profileStream;
102 m_profile.encode(profileStream);
103 addExtension(CertificateExtension(PROFILE_EXT_OID, true, *profileStream.buf()));
104
105 OBufferStream endorseStream;
106 Chronos::EndorseExtensionMsg endorseExtension;
107 endorseExtension << m_endorseList;
108 endorseExtension.SerializeToOstream(&endorseStream);
109 addExtension(CertificateExtension(ENDORSE_EXT_OID, true, *endorseStream.buf()));
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]110
111 encode();
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]112}
113
Yingdi Yu348f5ea2014-03-01 14:47:25 -0800[diff] [blame]114EndorseCertificate::EndorseCertificate(const Name& keyName,
115 const PublicKey& key,
Yingdi Yua7876722014-03-25 14:46:55 -0700[diff] [blame]116 const time::system_clock::TimePoint& notBefore,
117 const time::system_clock::TimePoint& notAfter,
Yingdi Yu348f5ea2014-03-01 14:47:25 -0800[diff] [blame]118 const Name& signer,
119 const Profile& profile,
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]120 const vector<string>& endorseList)
Yingdi Yu348f5ea2014-03-01 14:47:25 -0800[diff] [blame]121 : Certificate()
122 , m_keyName(keyName)
123 , m_signer(signer)
124 , m_profile(profile)
125 , m_endorseList(endorseList)
126{
127 Name dataName = m_keyName;
128 dataName.append("PROFILE-CERT").append(m_signer.wireEncode()).appendVersion();
129 setName(dataName);
Yingdi Yufa0b6a02014-04-30 14:26:42 -0700[diff] [blame]130
Yingdi Yu348f5ea2014-03-01 14:47:25 -0800[diff] [blame]131 setNotBefore(notBefore);
132 setNotAfter(notAfter);
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]133 addSubjectDescription(CertificateSubjectDescription(OID("2.5.4.41"), m_keyName.toUri()));
Yingdi Yu348f5ea2014-03-01 14:47:25 -0800[diff] [blame]134 setPublicKeyInfo(key);
135
136 OBufferStream profileStream;
137 m_profile.encode(profileStream);
138 addExtension(CertificateExtension(PROFILE_EXT_OID, true, *profileStream.buf()));
139
140 OBufferStream endorseStream;
141 Chronos::EndorseExtensionMsg endorseExtension;
142 endorseExtension << m_endorseList;
143 endorseExtension.SerializeToOstream(&endorseStream);
144 addExtension(CertificateExtension(ENDORSE_EXT_OID, true, *endorseStream.buf()));
145
Yingdi Yufa0b6a02014-04-30 14:26:42 -0700[diff] [blame]146 encode();
Yingdi Yu348f5ea2014-03-01 14:47:25 -0800[diff] [blame]147}
148
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]149EndorseCertificate::EndorseCertificate(const EndorseCertificate& endorseCertificate)
150 : Certificate(endorseCertificate)
151 , m_keyName(endorseCertificate.m_keyName)
152 , m_signer(endorseCertificate.m_signer)
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]153 , m_profile(endorseCertificate.m_profile)
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]154 , m_endorseList(endorseCertificate.m_endorseList)
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]155{
156}
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]157
158EndorseCertificate::EndorseCertificate(const Data& data)
159 : Certificate(data)
160{
161 const Name& dataName = data.getName();
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]162
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]163 if(dataName.size() < 3 || dataName.get(-3).toUri() != "PROFILE-CERT")
Yingdi Yufa0b6a02014-04-30 14:26:42 -0700[diff] [blame]164 throw Error("No PROFILE-CERT component in data name!");
Yingdi Yub6fb0302014-01-21 11:05:11 -0800[diff] [blame]165
166 m_keyName = dataName.getPrefix(-3);
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]167 m_signer.wireDecode(dataName.get(-2).blockFromValue());
Yingdi Yub4be64a2013-10-13 17:24:50 -0700[diff] [blame]168
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]169
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]170 for (ExtensionList::iterator it = m_extensionList.begin() ; it != m_extensionList.end(); it++) {
171 if (PROFILE_EXT_OID == it->getOid()) {
172 boost::iostreams::stream<boost::iostreams::array_source> is
173 (reinterpret_cast<const char*>(it->getValue().buf()), it->getValue().size());
174 m_profile.decode(is);
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]175 }
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]176 if (ENDORSE_EXT_OID == it->getOid()) {
177 Chronos::EndorseExtensionMsg endorseExtension;
178
179 boost::iostreams::stream<boost::iostreams::array_source> is
180 (reinterpret_cast<const char*>(it->getValue().buf()), it->getValue().size());
181 endorseExtension.ParseFromIstream(&is);
182
183 endorseExtension >> m_endorseList;
184 }
185 }
Yingdi Yuc972c452013-10-11 11:02:09 -0700[diff] [blame]186}
Yingdi Yufa4ce792014-02-06 18:09:22 -0800[diff] [blame]187
Yingdi Yu0b0a7362014-08-05 16:31:30 -0700[diff] [blame^]188} // namespace chronos