security: define new abstraction for identity, key, and certificate
Refs: #2451
Change-Id: I85dc7e0508bf10e2b73b0e9793dfc8e909e1a6e3
diff --git a/tests/unit-tests/security/certificate-container.t.cpp b/tests/unit-tests/security/certificate-container.t.cpp
new file mode 100644
index 0000000..496d950
--- /dev/null
+++ b/tests/unit-tests/security/certificate-container.t.cpp
@@ -0,0 +1,78 @@
+/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
+/**
+ * Copyright (c) 2013-2015 Regents of the University of California.
+ *
+ * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
+ *
+ * ndn-cxx library is free software: you can redistribute it and/or modify it under the
+ * terms of the GNU Lesser General Public License as published by the Free Software
+ * Foundation, either version 3 of the License, or (at your option) any later version.
+ *
+ * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
+ * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
+ * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
+ *
+ * You should have received copies of the GNU General Public License and GNU Lesser
+ * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
+ * <http://www.gnu.org/licenses/>.
+ *
+ * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
+ */
+
+#include "security/certificate-container.hpp"
+#include "security/pib.hpp"
+#include "security/in-memory-pib-impl.hpp"
+#include "pib-data-fixture.hpp"
+
+#include "boost-test.hpp"
+
+namespace ndn {
+namespace security {
+namespace tests {
+
+BOOST_AUTO_TEST_SUITE(SecurityCertificateContainer)
+
+BOOST_FIXTURE_TEST_CASE(TestCertificateContainer, PibDataFixture)
+{
+ auto pibImpl = make_shared<InMemoryPibImpl>();
+ Pib pib("pib-memory", "", pibImpl);
+
+ Identity identity1 = pib.addIdentity(id1);
+ Key key11 = identity1.addKey(id1Key1, id1Key1Name.get(-1));
+ key11.addCertificate(id1Key1Cert1);
+ key11.addCertificate(id1Key1Cert2);
+
+ CertificateContainer container = key11.getCertificates();
+ BOOST_CHECK_EQUAL(container.size(), 2);
+ BOOST_CHECK(container.find(id1Key1Cert1.getName()) != container.end());
+ BOOST_CHECK(container.find(id1Key1Cert2.getName()) != container.end());
+
+ std::set<Name> certNames;
+ certNames.insert(id1Key1Cert1.getName());
+ certNames.insert(id1Key1Cert2.getName());
+
+ CertificateContainer::const_iterator it = container.begin();
+ std::set<Name>::const_iterator testIt = certNames.begin();
+ BOOST_CHECK_EQUAL((*it).getName(), *testIt);
+ it++;
+ testIt++;
+ BOOST_CHECK_EQUAL((*it).getName(), *testIt);
+ ++it;
+ testIt++;
+ BOOST_CHECK(it == container.end());
+
+ size_t count = 0;
+ testIt = certNames.begin();
+ for (const auto& cert : container) {
+ BOOST_CHECK_EQUAL(cert.getName(), *testIt);
+ testIt++;
+ count++;
+ }
+ BOOST_CHECK_EQUAL(count, 2);
+}
+
+BOOST_AUTO_TEST_SUITE_END()
+
+} // namespace tests
+} // namespace security
+} // namespace ndn
diff --git a/tests/unit-tests/security/identity-container.t.cpp b/tests/unit-tests/security/identity-container.t.cpp
new file mode 100644
index 0000000..cdcc024
--- /dev/null
+++ b/tests/unit-tests/security/identity-container.t.cpp
@@ -0,0 +1,76 @@
+/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
+/**
+ * Copyright (c) 2013-2015 Regents of the University of California.
+ *
+ * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
+ *
+ * ndn-cxx library is free software: you can redistribute it and/or modify it under the
+ * terms of the GNU Lesser General Public License as published by the Free Software
+ * Foundation, either version 3 of the License, or (at your option) any later version.
+ *
+ * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
+ * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
+ * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
+ *
+ * You should have received copies of the GNU General Public License and GNU Lesser
+ * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
+ * <http://www.gnu.org/licenses/>.
+ *
+ * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
+ */
+
+#include "security/identity-container.hpp"
+#include "security/pib.hpp"
+#include "security/in-memory-pib-impl.hpp"
+#include "pib-data-fixture.hpp"
+
+#include "boost-test.hpp"
+
+namespace ndn {
+namespace security {
+namespace tests {
+
+BOOST_AUTO_TEST_SUITE(SecurityIdentityContainer)
+
+BOOST_FIXTURE_TEST_CASE(TestIdentityContainer, PibDataFixture)
+{
+ auto pibImpl = make_shared<InMemoryPibImpl>();
+ Pib pib("pib-memory", "", pibImpl);
+
+ Identity identity1 = pib.addIdentity(id1);
+ Identity identity2 = pib.addIdentity(id2);
+
+ IdentityContainer container = pib.getIdentities();
+ BOOST_CHECK_EQUAL(container.size(), 2);
+ BOOST_CHECK(container.find(id1) != container.end());
+ BOOST_CHECK(container.find(id2) != container.end());
+
+ std::set<Name> idNames;
+ idNames.insert(id1);
+ idNames.insert(id2);
+
+ IdentityContainer::const_iterator it = container.begin();
+ std::set<Name>::const_iterator testIt = idNames.begin();
+ BOOST_CHECK_EQUAL((*it).getName(), *testIt);
+ it++;
+ testIt++;
+ BOOST_CHECK_EQUAL((*it).getName(), *testIt);
+ ++it;
+ testIt++;
+ BOOST_CHECK(it == container.end());
+
+ size_t count = 0;
+ testIt = idNames.begin();
+ for (const auto& identity : container) {
+ BOOST_CHECK_EQUAL(identity.getName(), *testIt);
+ testIt++;
+ count++;
+ }
+ BOOST_CHECK_EQUAL(count, 2);
+}
+
+BOOST_AUTO_TEST_SUITE_END()
+
+} // namespace tests
+} // namespace security
+} // namespace ndn
diff --git a/tests/unit-tests/security/identity.t.cpp b/tests/unit-tests/security/identity.t.cpp
new file mode 100644
index 0000000..c55c00f
--- /dev/null
+++ b/tests/unit-tests/security/identity.t.cpp
@@ -0,0 +1,86 @@
+/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
+/**
+ * Copyright (c) 2013-2015 Regents of the University of California.
+ *
+ * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
+ *
+ * ndn-cxx library is free software: you can redistribute it and/or modify it under the
+ * terms of the GNU Lesser General Public License as published by the Free Software
+ * Foundation, either version 3 of the License, or (at your option) any later version.
+ *
+ * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
+ * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
+ * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
+ *
+ * You should have received copies of the GNU General Public License and GNU Lesser
+ * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
+ * <http://www.gnu.org/licenses/>.
+ *
+ * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
+ */
+
+#include "security/identity.hpp"
+#include "security/pib.hpp"
+#include "security/in-memory-pib-impl.hpp"
+#include "pib-data-fixture.hpp"
+
+#include "boost-test.hpp"
+
+namespace ndn {
+namespace security {
+namespace tests {
+
+BOOST_AUTO_TEST_SUITE(SecurityIdentity)
+
+BOOST_FIXTURE_TEST_CASE(ValidityChecking, PibDataFixture)
+{
+ // identity
+ Identity id;
+
+ BOOST_CHECK_EQUAL(static_cast<bool>(id), false);
+ BOOST_CHECK_EQUAL(!id, true);
+
+ if (id)
+ BOOST_CHECK(false);
+ else
+ BOOST_CHECK(true);
+
+ auto pibImpl = make_shared<InMemoryPibImpl>();
+ id = Identity(id1, pibImpl, true);
+
+ BOOST_CHECK_EQUAL(static_cast<bool>(id), true);
+ BOOST_CHECK_EQUAL(!id, false);
+
+ if (id)
+ BOOST_CHECK(true);
+ else
+ BOOST_CHECK(false);
+}
+
+BOOST_FIXTURE_TEST_CASE(TestKeyOperation, PibDataFixture)
+{
+ auto pibImpl = make_shared<InMemoryPibImpl>();
+
+ Identity identity1(id1, pibImpl, true);
+
+ BOOST_CHECK_THROW(identity1.getKey(id1Key1Name.get(-1)), Pib::Error);
+ Key key11 = identity1.addKey(id1Key1, id1Key1Name.get(-1));
+ BOOST_CHECK_NO_THROW(identity1.getKey(id1Key1Name.get(-1)));
+ identity1.removeKey(id1Key1Name.get(-1));
+ BOOST_CHECK_THROW(identity1.getKey(id1Key1Name.get(-1)), Pib::Error);
+
+ BOOST_CHECK_THROW(identity1.getDefaultKey(), Pib::Error);
+ BOOST_REQUIRE_THROW(identity1.setDefaultKey(id1Key1Name.get(-1)), Pib::Error);
+ BOOST_REQUIRE_NO_THROW(identity1.setDefaultKey(id1Key1, id1Key1Name.get(-1)));
+ BOOST_REQUIRE_NO_THROW(identity1.getDefaultKey());
+ BOOST_CHECK_EQUAL(identity1.getDefaultKey().getKeyId(), id1Key1Name.get(-1));
+ identity1.removeKey(id1Key1Name.get(-1));
+ BOOST_CHECK_THROW(identity1.getKey(id1Key1Name.get(-1)), Pib::Error);
+ BOOST_CHECK_THROW(identity1.getDefaultKey(), Pib::Error);
+}
+
+BOOST_AUTO_TEST_SUITE_END()
+
+} // namespace tests
+} // namespace security
+} // namespace ndn
diff --git a/tests/unit-tests/security/key-container.t.cpp b/tests/unit-tests/security/key-container.t.cpp
new file mode 100644
index 0000000..99f6285
--- /dev/null
+++ b/tests/unit-tests/security/key-container.t.cpp
@@ -0,0 +1,79 @@
+/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
+/**
+ * Copyright (c) 2013-2015 Regents of the University of California.
+ *
+ * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
+ *
+ * ndn-cxx library is free software: you can redistribute it and/or modify it under the
+ * terms of the GNU Lesser General Public License as published by the Free Software
+ * Foundation, either version 3 of the License, or (at your option) any later version.
+ *
+ * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
+ * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
+ * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
+ *
+ * You should have received copies of the GNU General Public License and GNU Lesser
+ * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
+ * <http://www.gnu.org/licenses/>.
+ *
+ * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
+ */
+
+#include "security/key-container.hpp"
+#include "security/pib.hpp"
+#include "security/in-memory-pib-impl.hpp"
+#include "pib-data-fixture.hpp"
+
+#include "boost-test.hpp"
+
+namespace ndn {
+namespace security {
+namespace tests {
+
+BOOST_AUTO_TEST_SUITE(SecurityKeyContainer)
+
+BOOST_FIXTURE_TEST_CASE(TestKeyContainer, PibDataFixture)
+{
+ auto pibImpl = make_shared<InMemoryPibImpl>();
+ Pib pib("pib-memory", "", pibImpl);
+
+ Identity identity1 = pib.addIdentity(id1);
+
+ Key key11 = identity1.addKey(id1Key1, id1Key1Name.get(-1));
+ Key key12 = identity1.addKey(id1Key2, id1Key2Name.get(-1));
+
+ KeyContainer container = identity1.getKeys();
+ BOOST_CHECK_EQUAL(container.size(), 2);
+ BOOST_CHECK(container.find(id1Key1Name.get(-1)) != container.end());
+ BOOST_CHECK(container.find(id1Key2Name.get(-1)) != container.end());
+
+ std::set<name::Component> keyNames;
+ keyNames.insert(id1Key1Name.get(-1));
+ keyNames.insert(id1Key2Name.get(-1));
+
+ KeyContainer::const_iterator it = container.begin();
+ std::set<name::Component>::const_iterator testIt = keyNames.begin();
+ BOOST_CHECK_EQUAL((*it).getKeyId(), *testIt);
+ it++;
+ testIt++;
+ BOOST_CHECK_EQUAL((*it).getKeyId(), *testIt);
+ ++it;
+ testIt++;
+ BOOST_CHECK(it == container.end());
+
+ size_t count = 0;
+ testIt = keyNames.begin();
+ for (const auto& key : container) {
+ BOOST_CHECK_EQUAL(key.getIdentity(), id1);
+ BOOST_CHECK_EQUAL(key.getKeyId(), *testIt);
+ testIt++;
+ count++;
+ }
+ BOOST_CHECK_EQUAL(count, 2);
+}
+
+BOOST_AUTO_TEST_SUITE_END()
+
+} // namespace tests
+} // namespace security
+} // namespace ndn
diff --git a/tests/unit-tests/security/key.t.cpp b/tests/unit-tests/security/key.t.cpp
new file mode 100644
index 0000000..3d3c4e3
--- /dev/null
+++ b/tests/unit-tests/security/key.t.cpp
@@ -0,0 +1,93 @@
+/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
+/**
+ * Copyright (c) 2013-2015 Regents of the University of California.
+ *
+ * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
+ *
+ * ndn-cxx library is free software: you can redistribute it and/or modify it under the
+ * terms of the GNU Lesser General Public License as published by the Free Software
+ * Foundation, either version 3 of the License, or (at your option) any later version.
+ *
+ * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
+ * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
+ * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
+ *
+ * You should have received copies of the GNU General Public License and GNU Lesser
+ * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
+ * <http://www.gnu.org/licenses/>.
+ *
+ * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
+ */
+
+#include "security/key.hpp"
+#include "security/pib.hpp"
+#include "security/in-memory-pib-impl.hpp"
+#include "pib-data-fixture.hpp"
+
+#include "boost-test.hpp"
+
+namespace ndn {
+namespace security {
+namespace tests {
+
+BOOST_AUTO_TEST_SUITE(SecurityKey)
+
+BOOST_FIXTURE_TEST_CASE(ValidityChecking, PibDataFixture)
+{
+ // key
+ Key key;
+
+ BOOST_CHECK_EQUAL(static_cast<bool>(key), false);
+ BOOST_CHECK_EQUAL(!key, true);
+
+ if (key)
+ BOOST_CHECK(false);
+ else
+ BOOST_CHECK(true);
+
+ auto pibImpl = make_shared<InMemoryPibImpl>();
+ key = Key(id1, id1Key1Name.get(-1), id1Key1, pibImpl);
+
+ BOOST_CHECK_EQUAL(static_cast<bool>(key), true);
+ BOOST_CHECK_EQUAL(!key, false);
+
+ if (key)
+ BOOST_CHECK(true);
+ else
+ BOOST_CHECK(false);
+}
+
+BOOST_FIXTURE_TEST_CASE(TestCertificateOperation, PibDataFixture)
+{
+ auto pibImpl = make_shared<InMemoryPibImpl>();
+
+ Key key11(id1, id1Key1Name.get(-1), id1Key1, pibImpl);
+
+ BOOST_CHECK_THROW(key11.getCertificate(id1Key1Cert1.getName()), Pib::Error);
+ key11.addCertificate(id1Key1Cert1);
+ BOOST_CHECK_NO_THROW(key11.getCertificate(id1Key1Cert1.getName()));
+ key11.removeCertificate(id1Key1Cert1.getName());
+ BOOST_CHECK_THROW(key11.getCertificate(id1Key1Cert1.getName()), Pib::Error);
+
+ BOOST_CHECK_THROW(key11.getDefaultCertificate(), Pib::Error);
+ BOOST_REQUIRE_THROW(key11.setDefaultCertificate(id1Key1Cert1.getName()), Pib::Error);
+ BOOST_REQUIRE_NO_THROW(key11.setDefaultCertificate(id1Key1Cert1));
+ BOOST_REQUIRE_NO_THROW(key11.getDefaultCertificate());
+
+ const IdentityCertificate& defaultCert = key11.getDefaultCertificate();
+ BOOST_CHECK_EQUAL_COLLECTIONS(defaultCert.wireEncode().wire(),
+ defaultCert.wireEncode().wire() + defaultCert.wireEncode().size(),
+ id1Key1Cert1.wireEncode().wire(),
+ id1Key1Cert1.wireEncode().wire() + id1Key1Cert1.wireEncode().size());
+
+ key11.removeCertificate(id1Key1Cert1.getName());
+ BOOST_CHECK_THROW(key11.getCertificate(id1Key1Cert1.getName()), Pib::Error);
+ BOOST_CHECK_THROW(key11.getDefaultCertificate(), Pib::Error);
+}
+
+
+BOOST_AUTO_TEST_SUITE_END()
+
+} // namespace tests
+} // namespace security
+} // namespace ndn
diff --git a/tests/unit-tests/security/pib.t.cpp b/tests/unit-tests/security/pib.t.cpp
new file mode 100644
index 0000000..5210df6
--- /dev/null
+++ b/tests/unit-tests/security/pib.t.cpp
@@ -0,0 +1,85 @@
+/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
+/**
+ * Copyright (c) 2013-2015 Regents of the University of California.
+ *
+ * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
+ *
+ * ndn-cxx library is free software: you can redistribute it and/or modify it under the
+ * terms of the GNU Lesser General Public License as published by the Free Software
+ * Foundation, either version 3 of the License, or (at your option) any later version.
+ *
+ * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
+ * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
+ * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
+ *
+ * You should have received copies of the GNU General Public License and GNU Lesser
+ * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
+ * <http://www.gnu.org/licenses/>.
+ *
+ * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
+ */
+
+#include "security/pib.hpp"
+#include "security/in-memory-pib-impl.hpp"
+#include "pib-data-fixture.hpp"
+
+#include "boost-test.hpp"
+
+namespace ndn {
+namespace security {
+namespace tests {
+
+BOOST_AUTO_TEST_SUITE(SecurityPib)
+
+BOOST_FIXTURE_TEST_CASE(ValidityChecking, PibDataFixture)
+{
+ auto pibImpl = make_shared<InMemoryPibImpl>();
+ Pib pib("pib-memory", "", pibImpl);
+
+ Identity id = pib.addIdentity(id1);
+
+ BOOST_CHECK_EQUAL(bool(id), true);
+ BOOST_CHECK_EQUAL(!id, false);
+
+ if (id)
+ BOOST_CHECK(true);
+ else
+ BOOST_CHECK(false);
+
+ // key
+ Key key = id.addKey(id1Key1, id1Key1Name.get(-1));
+
+ BOOST_CHECK_EQUAL(bool(key), true);
+ BOOST_CHECK_EQUAL(!key, false);
+
+ if (key)
+ BOOST_CHECK(true);
+ else
+ BOOST_CHECK(false);
+}
+
+BOOST_FIXTURE_TEST_CASE(TestIdentityOperation, PibDataFixture)
+{
+ auto pibImpl = make_shared<InMemoryPibImpl>();
+ Pib pib("pib-memory", "", pibImpl);
+
+ BOOST_CHECK_THROW(pib.getIdentity(id1), Pib::Error);
+ Identity identity1 = pib.addIdentity(id1);
+ BOOST_CHECK_NO_THROW(pib.getIdentity(id1));
+ pib.removeIdentity(id1);
+ BOOST_CHECK_THROW(pib.getIdentity(id1), Pib::Error);
+
+ BOOST_CHECK_THROW(pib.getDefaultIdentity(), Pib::Error);
+ BOOST_REQUIRE_NO_THROW(pib.setDefaultIdentity(id1));
+ BOOST_REQUIRE_NO_THROW(pib.getDefaultIdentity());
+ BOOST_CHECK_EQUAL(pib.getDefaultIdentity().getName(), id1);
+ pib.removeIdentity(id1);
+ BOOST_CHECK_THROW(pib.getIdentity(id1), Pib::Error);
+ BOOST_CHECK_THROW(pib.getDefaultIdentity(), Pib::Error);
+}
+
+BOOST_AUTO_TEST_SUITE_END()
+
+} // namespace tests
+} // namespace security
+} // namespace ndn