Gitiles
Code Review Sign In
gerrit.named-data.net / ndn-cxx / 4b8c6a20bbc8207e7044da000c4af1ffeea07717 / . / src / security / sec-public-info.hpp
blob: 99b4f5713b9bd0f38864ee834fb4a459f479a888 [file] [log] [blame]
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil -*- */
2/**
3 * Copyright (C) 2013 Regents of the University of California.
4 * @author: Yingdi Yu <yingdi@cs.ucla.edu>
5 * @author: Jeff Thompson <jefft0@remap.ucla.edu>
6 * See COPYING for copyright and distribution information.
7 */
8
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]9#ifndef NDN_SECURITY_SEC_PUBLIC_INFO_HPP
10#define NDN_SECURITY_SEC_PUBLIC_INFO_HPP
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]11
Yingdi Yu4f324632014-01-15 18:10:03 -0800[diff] [blame]12#include "../name.hpp"
13#include "security-common.hpp"
14#include "public-key.hpp"
15#include "identity-certificate.hpp"
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]16
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]17
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]18namespace ndn {
19
20/**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]21 * @brief SecPublicInfo is a base class for the storage of public information.
22 *
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame^]23 * It specify interfaces related to public information, such as identity, public keys and
24 * certificates.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]25 */
26class SecPublicInfo {
27public:
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]28 class Error : public std::runtime_error
29 {
30 public:
31 explicit
32 Error(const std::string& what)
33 : std::runtime_error(what)
34 {
35 }
36 };
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]37
38 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]39 * @brief The virtual Destructor.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]40 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]41 virtual
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]42 ~SecPublicInfo() {}
43
44 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]45 * @brief Check if the specified identity already exists.
46 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]47 * @param identityName The identity name.
48 * @return true if the identity exists, otherwise false.
49 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]50 virtual bool
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]51 doesIdentityExist(const Name& identityName) = 0;
52
53 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]54 * @brief Add a new identity.
55 *
56 * if identity already exist, do not add it again.
57 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]58 * @param identityName The identity name to be added.
59 */
60 virtual void
61 addIdentity(const Name& identityName) = 0;
62
63 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]64 * @brief Revoke the identity.
65 *
66 * @return true if the identity was revoked, otherwise false.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]67 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]68 virtual bool
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]69 revokeIdentity() = 0;
70
71 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]72 * @brief Check if the specified key already exists.
73 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]74 * @param keyName The name of the key.
75 * @return true if the key exists, otherwise false.
76 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]77 virtual bool
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]78 doesPublicKeyExist(const Name& keyName) = 0;
79
80 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]81 * @brief Add a public key to the identity storage.
82 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]83 * @param keyName The name of the public key to be added.
84 * @param keyType Type of the public key to be added.
85 * @param publicKeyDer A blob of the public key DER to be added.
86 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]87 virtual void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]88 addPublicKey(const Name& keyName, KeyType keyType, const PublicKey& publicKeyDer) = 0;
89
90 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]91 * @brief Get the public key DER blob from the identity storage.
92 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]93 * @param keyName The name of the requested public key.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]94 * @return The DER Blob.
95 * @throws SecPublicInfo::Error if public key does not exist.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]96 */
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]97 virtual shared_ptr<PublicKey>
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]98 getPublicKey(const Name& keyName) = 0;
99
100 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]101 * @brief Check if the specified certificate already exists.
102 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]103 * @param certificateName The name of the certificate.
104 * @return true if the certificate exists, otherwise false.
105 */
106 virtual bool
107 doesCertificateExist(const Name& certificateName) = 0;
108
109 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]110 * @brief Add a certificate to the identity storage.
111 *
112 * It will add the corresponding public key and identity if they do not exist.
113 *
114 * @param certificate The certificate to be added.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]115 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]116 virtual void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]117 addCertificate(const IdentityCertificate& certificate) = 0;
118
119 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]120 * @brief Get a certificate from the identity storage.
121 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]122 * @param certificateName The name of the requested certificate.
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]123 * @return The requested certificate.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]124 * @throws SecPublicInfo::Error if the certificate does not exist.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]125 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]126 virtual shared_ptr<IdentityCertificate>
127 getCertificate(const Name& certificateName) = 0;
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]128
129
130 /*****************************************
131 * Default Getter *
132 *****************************************/
133
134 /**
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]135 * @brief Get the default identity.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]136 *
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]137 * @param return The name of default identity,
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]138 * @throws SecPublicInfo::Error if there is no default.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]139 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]140 virtual Name
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]141 getDefaultIdentity() = 0;
142
143 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]144 * @brief Get the default key name for the specified identity.
145 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]146 * @param identityName The identity name.
147 * @return The default key name.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]148 * @throws SecPublicInfo::Error if there is no default.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]149 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]150 virtual Name
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]151 getDefaultKeyNameForIdentity(const Name& identityName) = 0;
152
153 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]154 * @brief Get the default certificate name for the specified key.
155 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]156 * @param keyName The key name.
157 * @return The default certificate name.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]158 * @throws SecPublicInfo::Error if there is no default.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]159 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]160 virtual Name
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]161 getDefaultCertificateNameForKey(const Name& keyName) = 0;
162
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]163 /**
164 * @brief Get all the identities in public info.
165 *
166 * @param nameList On return, the identity list.
167 * @param isDefault If specified, only the default identity is returned.
168 */
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]169 virtual void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]170 getAllIdentities(std::vector<Name>& nameList, bool isDefault) = 0;
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]171
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]172 /**
173 * @brief Get all the key name in public info.
174 *
175 * @param nameList On return, the key name list.
176 * @param isDefault If specified, only the default keys are returned.
177 */
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]178 virtual void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]179 getAllKeyNames(std::vector<Name>& nameList, bool isDefault) = 0;
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]180
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]181 /**
182 * @brief Get all the key name of a particular identity.
183 *
184 * @param identity The specified identity name.
185 * @param nameList On return, the key name list.
186 * @param isDefault If specified, only the default key is returned.
187 */
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]188 virtual void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]189 getAllKeyNamesOfIdentity(const Name& identity, std::vector<Name>& nameList, bool isDefault) = 0;
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]190
191 /**
192 * @brief Get all the certificate name in public info.
193 *
194 * @param nameList On return, the certificate name list.
195 * @param isDefault If specified, only the default certificates are returned.
196 */
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]197 virtual void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]198 getAllCertificateNames(std::vector<Name>& nameList, bool isDefault) = 0;
199
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]200 /**
201 * @brief Get all the certificate name of a particular key.
202 *
203 * @param identity The specified key name.
204 * @param nameList On return, the certificate name list.
205 * @param isDefault If specified, only the default certificate is returned.
206 */
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]207 virtual void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]208 getAllCertificateNamesOfKey(const Name& keyName, std::vector<Name>& nameList, bool isDefault) = 0;
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]209
210protected:
211
212 /*****************************************
213 * Default Setter *
214 *****************************************/
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]215
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]216 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]217 * @brief Set the default identity.
218 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]219 * @param identityName The default identity name.
220 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]221 virtual void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]222 setDefaultIdentityInternal(const Name& identityName) = 0;
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]223
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]224 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]225 * @brief Set the default key name for the corresponding identity.
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]226 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]227 * @param keyName The key name.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]228 * @throws SecPublicInfo::Error if the key does not exist.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]229 */
230 virtual void
231 setDefaultKeyNameForIdentityInternal(const Name& keyName) = 0;
232
233 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]234 * @brief Set the default certificate name for the corresponding key.
235 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]236 * @param certificateName The certificate name.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]237 * @throws SecPublicInfo::Error if the certificatedoes not exist.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]238 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]239 virtual void
240 setDefaultCertificateNameForKeyInternal(const Name& certificateName) = 0;
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]241
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]242 /*****************************************
243 * Delete Methods *
244 *****************************************/
245
246 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]247 * @brief Delete a certificate.
248 *
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]249 * @param certificateName The certificate name.
250 */
251 virtual void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]252 deleteCertificateInfo(const Name& certificateName) = 0;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]253
254 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]255 * @brief Delete a public key and related certificates.
256 *
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]257 * @param keyName The key name.
258 */
259 virtual void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]260 deletePublicKeyInfo(const Name& keyName) = 0;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]261
262 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]263 * @brief Delete an identity and related public keys and certificates.
264 *
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]265 * @param identity The identity name.
266 */
267 virtual void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]268 deleteIdentityInfo(const Name& identity) = 0;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]269
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]270public:
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]271
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]272 /*****************************************
273 * Helper Methods *
274 *****************************************/
275
276 /**
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]277 * @brief Set the default identity.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]278 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]279 * @param identityName The default identity name.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]280 * @throws SecPublicInfo::Error if the identity does not exist.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]281 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]282 inline void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]283 setDefaultIdentity(const Name& identityName);
284
285 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]286 * @brief Set the default key name for the corresponding identity.
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]287 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]288 * @param keyName The key name.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]289 * @throws SecPublicInfo::Error if either the identity or key does not exist.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]290 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]291 inline void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]292 setDefaultKeyNameForIdentity(const Name& keyName);
293
294 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]295 * @brief Set the default certificate name for the corresponding key.
296 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]297 * @param certificateName The certificate name.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]298 * @throws SecPublicInfo::Error if either the certificate or key does not exist.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]299 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]300 inline void
301 setDefaultCertificateNameForKey(const Name& certificateName);
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]302
303 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]304 * @brief Generate a key name for the identity.
305 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]306 * @param identityName The identity name.
307 * @param useKsk If true, generate a KSK name, otherwise a DSK name.
308 * @return The generated key name.
309 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]310 inline Name
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]311 getNewKeyName(const Name& identityName, bool useKsk);
312
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]313 /**
314 * @brief Get the default certificate name for the specified identity.
315 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]316 * @param identityName The identity name.
317 * @return The default certificate name.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]318 * @throws SecPublicInfo::Error if no certificate is found.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]319 */
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]320 inline Name
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]321 getDefaultCertificateNameForIdentity(const Name& identityName);
322
323 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]324 * @brief Get the default certificate name of the default identity
325 *
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]326 * @return The requested certificate name.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]327 * @throws SecPublicInfo::Error if no certificate is found.
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]328 */
329 inline Name
330 getDefaultCertificateName();
331
332 /**
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]333 * @brief Add a certificate and set the certificate as the default one of its corresponding key.
334 *
335 * @param certificate The certificate to be added.
336 * @throws SecPublicInfo::Error if the certificate cannot be added (though it is really rare)
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]337 */
338 inline void
339 addCertificateAsKeyDefault(const IdentityCertificate& certificate);
340
341 /**
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame^]342 * @brief Add a certificate into the public key identity storage and set the certificate as the
343 * default one of its corresponding identity.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]344 *
345 * @param certificate The certificate to be added.
346 * @throws SecPublicInfo::Error if the certificate cannot be added (though it is really rare)
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]347 */
348 inline void
349 addCertificateAsIdentityDefault(const IdentityCertificate& certificate);
350
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]351 /**
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame^]352 * @brief Add a certificate into the public key identity storage and set the certificate as the
353 * default one of the default identity.
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]354 *
355 * @param certificate The certificate to be added.
356 * @throws SecPublicInfo::Error if the certificate cannot be added (though it is really rare)
357 */
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]358 inline void
359 addCertificateAsSystemDefault(const IdentityCertificate& certificate);
360
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]361 /**
362 * @brief get cached default certificate of the default identity.
363 *
364 * @return The certificate which might be a NULL pointer.
365 */
366 inline shared_ptr<IdentityCertificate>
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]367 defaultCertificate();
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]368
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]369 /**
370 * @brief try to get the default certificate of the default identity from the public info.
371 */
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]372 inline void
373 refreshDefaultCertificate();
374
375protected:
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]376 shared_ptr<IdentityCertificate> m_defaultCertificate;
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]377};
378
Yingdi Yuf8fc8de2014-02-25 15:45:39 -0800[diff] [blame]379inline void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]380SecPublicInfo::setDefaultIdentity(const Name& identityName)
381{
382 setDefaultIdentityInternal(identityName);
383 refreshDefaultCertificate();
384}
385
Yingdi Yuf8fc8de2014-02-25 15:45:39 -0800[diff] [blame]386inline void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]387SecPublicInfo::setDefaultKeyNameForIdentity(const Name& keyName)
388{
389 setDefaultKeyNameForIdentityInternal(keyName);
390 refreshDefaultCertificate();
391}
392
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]393inline void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]394SecPublicInfo::setDefaultCertificateNameForKey(const Name& certificateName)
395{
396 setDefaultCertificateNameForKeyInternal(certificateName);
397 refreshDefaultCertificate();
398}
399
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]400inline Name
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]401SecPublicInfo::getDefaultCertificateNameForIdentity(const Name& identityName)
402{
403 return getDefaultCertificateNameForKey(getDefaultKeyNameForIdentity(identityName));
404}
405
Yingdi Yuf8fc8de2014-02-25 15:45:39 -0800[diff] [blame]406inline Name
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]407SecPublicInfo::getNewKeyName (const Name& identityName, bool useKsk)
408{
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]409 std::ostringstream oss;
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]410
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]411 if (useKsk)
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]412 oss << "ksk-";
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]413 else
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]414 oss << "dsk-";
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]415
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]416 oss << time::toUnixTimestamp(time::system_clock::now()).count();
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]417
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]418 Name keyName = Name(identityName).append(oss.str());
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]419
420 if (doesPublicKeyExist(keyName))
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]421 throw Error("Key name already exists: " + keyName.toUri());
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]422
423 return keyName;
424}
425
Yingdi Yuf8fc8de2014-02-25 15:45:39 -0800[diff] [blame]426inline Name
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]427SecPublicInfo::getDefaultCertificateName()
428{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]429 if (!static_cast<bool>(m_defaultCertificate))
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]430 refreshDefaultCertificate();
431
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]432 if (!static_cast<bool>(m_defaultCertificate))
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]433 throw Error("No default certificate is set");
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]434
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]435 return m_defaultCertificate->getName();
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]436}
437
Yingdi Yuf8fc8de2014-02-25 15:45:39 -0800[diff] [blame]438inline void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]439SecPublicInfo::addCertificateAsKeyDefault(const IdentityCertificate& certificate)
440{
441 addCertificate(certificate);
442 setDefaultCertificateNameForKeyInternal(certificate.getName());
443 refreshDefaultCertificate();
444}
445
Yingdi Yuf8fc8de2014-02-25 15:45:39 -0800[diff] [blame]446inline void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]447SecPublicInfo::addCertificateAsIdentityDefault(const IdentityCertificate& certificate)
448{
449 addCertificate(certificate);
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]450 Name certName = certificate.getName();
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame^]451 Name keyName = IdentityCertificate::certificateNameToPublicKeyName(certName);
452 setDefaultKeyNameForIdentityInternal(keyName);
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]453 setDefaultCertificateNameForKeyInternal(certName);
454 refreshDefaultCertificate();
455}
456
Yingdi Yuf8fc8de2014-02-25 15:45:39 -0800[diff] [blame]457inline void
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]458SecPublicInfo::addCertificateAsSystemDefault(const IdentityCertificate& certificate)
459{
460 addCertificate(certificate);
461 Name certName = certificate.getName();
462 Name keyName = IdentityCertificate::certificateNameToPublicKeyName(certName);
463 setDefaultIdentityInternal(keyName.getPrefix(-1));
464 setDefaultKeyNameForIdentityInternal(keyName);
465 setDefaultCertificateNameForKeyInternal(certName);
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]466 refreshDefaultCertificate();
467}
468
Yingdi Yuf8fc8de2014-02-25 15:45:39 -0800[diff] [blame]469inline shared_ptr<IdentityCertificate>
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]470SecPublicInfo::defaultCertificate()
471{
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]472 return m_defaultCertificate;
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]473}
474
Yingdi Yuf8fc8de2014-02-25 15:45:39 -0800[diff] [blame]475inline void
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]476SecPublicInfo::refreshDefaultCertificate()
477{
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]478 try
479 {
480 Name certName = getDefaultCertificateNameForIdentity(getDefaultIdentity());
481 m_defaultCertificate = getCertificate(certName);
482 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]483 catch (SecPublicInfo::Error& e)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]484 {
485 m_defaultCertificate.reset();
486 }
487
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]488}
489
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]490} // namespace ndn
Yingdi Yu31b4af22014-01-14 14:13:00 -0800[diff] [blame]491
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]492#endif //NDN_SECURITY_SEC_PUBLIC_INFO_HPP