blob: 29a75b8a772e85f9fa02ca4cd43a8fe105a383a4 [file] [log] [blame]
Davide Pesaventoba3f6892020-12-08 22:18:35 -05001/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
2/*
3 * Copyright (c) 2014-2020, Regents of the University of California
4 *
5 * NAC library is free software: you can redistribute it and/or modify it under the
6 * terms of the GNU Lesser General Public License as published by the Free Software
7 * Foundation, either version 3 of the License, or (at your option) any later version.
8 *
9 * NAC library is distributed in the hope that it will be useful, but WITHOUT ANY
10 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
11 * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
12 *
13 * You should have received copies of the GNU General Public License and GNU Lesser
14 * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
15 * <http://www.gnu.org/licenses/>.
16 *
17 * See AUTHORS.md for complete list of NAC library authors and contributors.
18 */
19
20#include "tests/key-chain-fixture.hpp"
21
22#include <ndn-cxx/util/io.hpp>
23
24#include <boost/filesystem.hpp>
25
26namespace ndn {
27namespace nac {
28namespace tests {
29
30using namespace ndn::security;
31
32KeyChainFixture::KeyChainFixture()
33 : m_keyChain("pib-memory:", "tpm-memory:")
34{
35}
36
37KeyChainFixture::~KeyChainFixture()
38{
39 boost::system::error_code ec;
40 for (const auto& certFile : m_certFiles) {
41 boost::filesystem::remove(certFile, ec); // ignore error
42 }
43}
44
45Certificate
46KeyChainFixture::makeCert(const Key& key, const std::string& issuer, const Key& signingKey)
47{
48 Certificate cert;
49 cert.setName(Name(key.getName())
50 .append(issuer)
51 .appendVersion());
52
53 // set metainfo
54 cert.setContentType(tlv::ContentType_Key);
55 cert.setFreshnessPeriod(1_h);
56
57 // set content
58 cert.setContent(key.getPublicKey().data(), key.getPublicKey().size());
59
60 // set signature info
61 ndn::SignatureInfo info;
62 auto now = time::system_clock::now();
63 info.setValidityPeriod(ValidityPeriod(now - 30_days, now + 30_days));
64
65 m_keyChain.sign(cert, signingByKey(signingKey ? signingKey : key).setSignatureInfo(info));
66 return cert;
67}
68
69bool
70KeyChainFixture::saveCert(const Data& cert, const std::string& filename)
71{
72 m_certFiles.push_back(filename);
73 try {
74 ndn::io::save(cert, filename);
75 return true;
76 }
77 catch (const ndn::io::Error&) {
78 return false;
79 }
80}
81
82bool
83KeyChainFixture::saveIdentityCert(const Identity& identity, const std::string& filename)
84{
85 Certificate cert;
86 try {
87 cert = identity.getDefaultKey().getDefaultCertificate();
88 }
89 catch (const Pib::Error&) {
90 return false;
91 }
92
93 return saveCert(cert, filename);
94}
95
96bool
97KeyChainFixture::saveIdentityCert(const Name& identityName, const std::string& filename,
98 bool allowCreate)
99{
100 Identity id;
101 try {
102 id = m_keyChain.getPib().getIdentity(identityName);
103 }
104 catch (const Pib::Error&) {
105 if (allowCreate) {
106 id = m_keyChain.createIdentity(identityName);
107 }
108 }
109
110 if (!id) {
111 return false;
112 }
113
114 return saveIdentityCert(id, filename);
115}
116
117} // namespace tests
118} // namespace nac
119} // namespace ndn