src/security/nlsr_cert_store.cpp

#include <ndn-cpp-dev/security/signature-sha256-with-rsa.hpp> 
#include <ndn-cpp-dev/security/key-chain.hpp>
#include "nlsr_cert_store.hpp"
#include "nlsr_wle.hpp"
#include "nlsr_km.hpp"

namespace nlsr
{
  static bool
  nlsrCertificateStoreEntryCompare(NlsrCertificateStoreEntry& ncse1,
                                   NlsrCertificateStoreEntry& ncse2)

  {    
    int sizeDiff=ncse1.getCert()->getName().size()-
                                              ncse2.getCert()->getName().size();
    return (ncse2.getCert()->getName().isPrefixOf(ncse1.getCert()->getName()) &&
                                               (sizeDiff <= 1 && sizeDiff>= 0));
  
    
  }

  static bool
  nlsrCertificateStoreEntryCompareByName(NlsrCertificateStoreEntry& ncse1,
                                         std::string compCertName)

  {
    ndn::Name ccn(compCertName);
    int sizeDiff= ncse1.getCert()->getName().size() -ccn.size();
    return ( ccn.isPrefixOf(ncse1.getCert()->getName()) &&
                                               (sizeDiff <= 1 && sizeDiff>= 0));
  }
  
  void 
  NlsrCertificateStore::updateWaitingList(std::string respCertName)
  {
    ndn::Name tmpName(respCertName);
    respCertName=tmpName.getPrefix(-1).toUri();
    std::pair<WaitingListEntry, bool> chkWle=
                              waitingList.getWaitingListEntry(respCertName);
    if( chkWle.second )
    {
      std::pair<ndn::shared_ptr<ndn::IdentityCertificate>, bool> sc=
                                          getCertificateFromStore(respCertName);
      std::list<std::string> waitees=(chkWle.first).getWaitingCerts();
      for(std::list<std::string>::iterator it = waitees.begin();
                                                       it != waitees.end();++it)
      {
        KeyManager km;
        std::pair<ndn::shared_ptr<ndn::IdentityCertificate>, bool> wc=
                                                 getCertificateFromStore(*(it));
        if( wc.second && sc.second )
        {
          if(km.verifySignature(*(wc.first),sc.first->getPublicKeyInfo()))
          {
            //1. Update Certificate Store
            setCertificateIsVerified(*(it),true);
            //2. Call updateWaitingList for waitee ( *(it) )
            updateWaitingList(*(it));
          }
        }
      }
    }
    
    //remove that entry from waiting list
    waitingList.removeFromWaitingList(respCertName);
  }
  
  void
  NlsrCertificateStore::updateWaitingList(NlsrCertificateStoreEntry& ncse)
  {
    if( ncse.getIsSignerVerified())
    {
      updateWaitingList(ncse.getCert()->getName().toUri());
    }
    else
    {
      ndn::SignatureSha256WithRsa signature(ncse.getCert()->getSignature());
      waitingList.addtoWaitingList(signature.getKeyLocator().getName().toUri(), 
                                             ncse.getCert()->getName().toUri());
    }
  }

  bool
  NlsrCertificateStore::addCertificate(NlsrCertificateStoreEntry & ncse)
  {
    std::list<NlsrCertificateStoreEntry>::iterator it =
      std::find_if( certTable.begin(), certTable.end(),
                    bind(&nlsrCertificateStoreEntryCompare, _1, ncse));
    if(it == certTable.end())
    {
      certTable.push_back(ncse);
      updateWaitingList(ncse);
      return true;
    }
    else if( it !=  certTable.end() )
    {
      if ( (*it).getCertSeqNum() < ncse.getCertSeqNum() )
      {
        certTable.erase(it);
        certTable.push_back(ncse);
        updateWaitingList(ncse);
        return true;
      }
    }
    return false;
  }

  bool
  NlsrCertificateStore::addCertificate(
    ndn::shared_ptr<ndn::IdentityCertificate> pcert, uint32_t csn, bool isv)
  {
    NlsrCertificateStoreEntry ncse(pcert, csn, isv);
    return addCertificate(ncse);
  }

  std::pair<uint32_t, bool>
  NlsrCertificateStore::getCertificateSeqNum(std::string certName)
  {
    std::list<NlsrCertificateStoreEntry>::iterator it =
      std::find_if( certTable.begin(), certTable.end(),
                    bind(&nlsrCertificateStoreEntryCompareByName, _1, certName));
    if(it == certTable.end())
    {
      return std::make_pair(0,false);
    }
    return std::make_pair((*it).getCertSeqNum(),true);
  }
  
 
  
  void 
  NlsrCertificateStore::setCertificateIsVerified(std::string certName, 
                                                                bool isVerified)
  {
    std::list<NlsrCertificateStoreEntry>::iterator it =
      std::find_if( certTable.begin(), certTable.end(),
                    bind(&nlsrCertificateStoreEntryCompareByName, _1, certName));
    if(it != certTable.end())
    {
      it->setIsSignerVerified(true);
    }
  }
  
  bool
  NlsrCertificateStore::getCertificateIsVerified( std::string certName )
  {
    std::list<NlsrCertificateStoreEntry>::iterator it =
      std::find_if( certTable.begin(), certTable.end(),
                    bind(&nlsrCertificateStoreEntryCompareByName, _1, certName));
    if(it != certTable.end())
    {
      return it->getIsSignerVerified();
    }
    
    return false;
  }

  std::pair<ndn::shared_ptr<ndn::IdentityCertificate>, bool>
  NlsrCertificateStore::getCertificateFromStore(const std::string certName)
  {
    std::list<NlsrCertificateStoreEntry>::iterator it =
      std::find_if( certTable.begin(), certTable.end(),
                    bind(&nlsrCertificateStoreEntryCompareByName, _1, certName));
    if(it == certTable.end())
    {
      ndn::shared_ptr<ndn::IdentityCertificate> cert=
                                    ndn::make_shared<ndn::IdentityCertificate>();
      return std::make_pair(cert,false);
    }
    return std::make_pair((*it).getCert(),true);
  }

  std::pair<ndn::shared_ptr<ndn::IdentityCertificate>, bool>
  NlsrCertificateStore::getCertificateFromStore(
    const std::string certName, int checkSeqNum)
  {
    std::list<NlsrCertificateStoreEntry>::iterator it =
      std::find_if( certTable.begin(), certTable.end(),
                    bind(&nlsrCertificateStoreEntryCompareByName, _1, certName));
    if(it == certTable.end())
    {
      ndn::shared_ptr<ndn::IdentityCertificate> cert=
        ndn::make_shared<ndn::IdentityCertificate>();
      return std::make_pair(cert,false);
    }
    else
    {
      if( (*it).getCertSeqNum() == checkSeqNum )
      {
        return std::make_pair((*it).getCert(),true);
      }
    }
    return std::make_pair((*it).getCert(),false);
  }

  bool
  NlsrCertificateStore::isCertificateNewInStore(const std::string certName,
      int checkSeqNo)
  {
    std::list<NlsrCertificateStoreEntry>::iterator it =
      std::find_if( certTable.begin(), certTable.end(),
                    bind(&nlsrCertificateStoreEntryCompareByName, _1, certName));
    if(it != certTable.end())
    {
      return (*it).getCertSeqNum() < checkSeqNo ;
    }
    return true;
  }

  bool
  NlsrCertificateStore::removeCertificateFromStroe(const std::string certName)
  {
    std::list<NlsrCertificateStoreEntry>::iterator it =
      std::find_if( certTable.begin(), certTable.end(),
                    bind(&nlsrCertificateStoreEntryCompareByName, _1, certName));
    if(it != certTable.end())
    {
      certTable.erase(it);
      return true;
    }
    return false;
  }

  void
  NlsrCertificateStore::printCertStore()
  {
    std::list<NlsrCertificateStoreEntry>::iterator it;
    for(it=certTable.begin(); it!=certTable.end(); ++it)
    {
      std::cout<<(*it)<<std::endl;
    }
    std::cout<<waitingList<<std::endl;
  }
}