Gitiles
Code Review Sign In
gerrit.named-data.net / ndn-cxx / 5e96e00d242d9e0828fd982e73b99f0c350e34ee / . / src / security / sec-public-info-sqlite3.cpp
blob: 4df238cf5e04b3135530b535e80ca0a527409f5d [file] [log] [blame]
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil -*- */
2/**
3 * Copyright (C) 2013 Regents of the University of California.
4 * @author: Yingdi Yu <yingdi@cs.ucla.edu>
Jeff Thompson22285ec2013-10-22 17:43:02 -0700[diff] [blame]5 * @author: Jeff Thompson <jefft0@remap.ucla.edu>
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]6 * See COPYING for copyright and distribution information.
7 */
8
Alexander Afanasyeve2dcdfd2014-02-07 15:53:28 -0800[diff] [blame]9#include "common.hpp"
10
11#include "sec-public-info-sqlite3.hpp"
12#include "identity-certificate.hpp"
13#include "signature-sha256-with-rsa.hpp"
Alexander Afanasyeve2dcdfd2014-02-07 15:53:28 -0800[diff] [blame]14#include "../data.hpp"
15
Yingdi Yu874678f2014-01-22 19:30:34 -0800[diff] [blame]16#include <sqlite3.h>
Jeff Thompson351ac302013-10-19 18:45:00 -0700[diff] [blame]17#include <stdio.h>
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]18#include <stdlib.h>
19#include <sstream>
20#include <fstream>
Yingdi Yu0b9c3152014-01-26 16:31:18 -0800[diff] [blame]21#include <boost/filesystem.hpp>
Alexander Afanasyevd409d592014-01-28 18:36:38 -0800[diff] [blame]22
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]23using namespace std;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]24
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]25namespace ndn {
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]26
27static const string INIT_ID_TABLE = "\
28CREATE TABLE IF NOT EXISTS \n \
29 Identity( \n \
30 identity_name BLOB NOT NULL, \n \
31 default_identity INTEGER DEFAULT 0, \n \
32 \
33 PRIMARY KEY (identity_name) \n \
34 ); \n \
35 \
36CREATE INDEX identity_index ON Identity(identity_name); \n \
37";
38
39static const string INIT_KEY_TABLE = "\
40CREATE TABLE IF NOT EXISTS \n \
41 Key( \n \
42 identity_name BLOB NOT NULL, \n \
43 key_identifier BLOB NOT NULL, \n \
44 key_type INTEGER, \n \
45 public_key BLOB, \n \
46 default_key INTEGER DEFAULT 0, \n \
47 active INTEGER DEFAULT 0, \n \
48 \
49 PRIMARY KEY (identity_name, key_identifier) \n \
50 ); \n \
51 \
52CREATE INDEX key_index ON Key(identity_name); \n \
53";
54
55static const string INIT_CERT_TABLE = "\
56CREATE TABLE IF NOT EXISTS \n \
57 Certificate( \n \
58 cert_name BLOB NOT NULL, \n \
59 cert_issuer BLOB NOT NULL, \n \
60 identity_name BLOB NOT NULL, \n \
61 key_identifier BLOB NOT NULL, \n \
62 not_before TIMESTAMP, \n \
63 not_after TIMESTAMP, \n \
64 certificate_data BLOB NOT NULL, \n \
Jeff Thompson22285ec2013-10-22 17:43:02 -0700[diff] [blame]65 valid_flag INTEGER DEFAULT 1, \n \
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]66 default_cert INTEGER DEFAULT 0, \n \
67 \
68 PRIMARY KEY (cert_name) \n \
69 ); \n \
70 \
71CREATE INDEX cert_index ON Certificate(cert_name); \n \
72CREATE INDEX subject ON Certificate(identity_name); \n \
73";
74
75/**
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]76 * A utility function to call the normal sqlite3_bind_text where the value and length are
77 * value.c_str() and value.size().
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]78 */
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]79static int sqlite3_bind_text(sqlite3_stmt* statement,
80 int index,
81 const string& value,
82 void(*destructor)(void*))
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]83{
84 return sqlite3_bind_text(statement, index, value.c_str(), value.size(), destructor);
85}
86
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]87SecPublicInfoSqlite3::SecPublicInfoSqlite3()
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]88{
Yingdi Yu37e317f2014-03-19 12:16:23 -0700[diff] [blame]89 boost::filesystem::path identityDir = boost::filesystem::path(getenv("HOME")) / ".ndn";
Yingdi Yu0b9c3152014-01-26 16:31:18 -0800[diff] [blame]90 boost::filesystem::create_directories (identityDir);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]91
Alexander Afanasyev5b60f702014-02-07 12:55:24 -0800[diff] [blame]92 /// @todo Add define for windows/unix in wscript. The following may completely fail on windows
93 int res = sqlite3_open_v2((identityDir / "ndnsec-public-info.db").c_str(), &m_database,
94 SQLITE_OPEN_READWRITE | SQLITE_OPEN_CREATE,
Alexander Afanasyev44471462014-02-12 11:21:51 -0800[diff] [blame]95#ifdef NDN_CPP_DISABLE_SQLITE3_FS_LOCKING
96 "unix-dotfile"
Alexander Afanasyev5b60f702014-02-07 12:55:24 -0800[diff] [blame]97#else
98 0
99#endif
100 );
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]101 if (res != SQLITE_OK)
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]102 throw Error("identity DB cannot be opened/created");
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]103
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]104 //Check if Key table exists;
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]105 sqlite3_stmt* statement;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]106 sqlite3_prepare_v2(m_database,
107 "SELECT name FROM sqlite_master WHERE type='table' And name='Identity'",
108 -1, &statement, 0);
Jeff Thompson351ac302013-10-19 18:45:00 -0700[diff] [blame]109 res = sqlite3_step(statement);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]110
111 bool idTableExists = false;
112 if (res == SQLITE_ROW)
113 idTableExists = true;
114
115 sqlite3_finalize(statement);
116
117 if (!idTableExists) {
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]118 char* errorMessage = 0;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]119 res = sqlite3_exec(m_database, INIT_ID_TABLE.c_str(), NULL, NULL, &errorMessage);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]120
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]121 if (res != SQLITE_OK && errorMessage != 0) {
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]122 sqlite3_free(errorMessage);
123 }
124 }
125
126 //Check if Key table exists;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]127 sqlite3_prepare_v2(m_database,
128 "SELECT name FROM sqlite_master WHERE type='table' And name='Key'",
129 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]130 res = sqlite3_step(statement);
131
132 bool keyTableExists = false;
133 if (res == SQLITE_ROW)
134 keyTableExists = true;
135
136 sqlite3_finalize(statement);
137
138 if (!keyTableExists) {
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]139 char* errorMessage = 0;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]140 res = sqlite3_exec(m_database, INIT_KEY_TABLE.c_str(), NULL, NULL, &errorMessage);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]141
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]142 if (res != SQLITE_OK && errorMessage != 0) {
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]143 sqlite3_free(errorMessage);
144 }
145 }
146
147 //Check if Certificate table exists;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]148 sqlite3_prepare_v2(m_database,
149 "SELECT name FROM sqlite_master WHERE type='table' And name='Certificate'",
150 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]151 res = sqlite3_step(statement);
152
153 bool idCertificateTableExists = false;
154 if (res == SQLITE_ROW)
155 idCertificateTableExists = true;
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]156
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]157 sqlite3_finalize(statement);
158
159 if (!idCertificateTableExists) {
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]160 char* errorMessage = 0;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]161 res = sqlite3_exec(m_database, INIT_CERT_TABLE.c_str(), NULL, NULL, &errorMessage);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]162
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]163 if (res != SQLITE_OK && errorMessage != 0) {
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]164 sqlite3_free(errorMessage);
165 }
166 }
167}
168
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]169SecPublicInfoSqlite3::~SecPublicInfoSqlite3()
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]170{
171}
172
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]173bool
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]174SecPublicInfoSqlite3::doesIdentityExist(const Name& identityName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]175{
176 bool result = false;
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]177
178 sqlite3_stmt* statement;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]179 sqlite3_prepare_v2(m_database,
180 "SELECT count(*) FROM Identity WHERE identity_name=?",
181 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]182
183 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
184 int res = sqlite3_step(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]185
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]186 if (res == SQLITE_ROW) {
187 int countAll = sqlite3_column_int(statement, 0);
188 if (countAll > 0)
189 result = true;
190 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]191
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]192 sqlite3_finalize(statement);
193
194 return result;
195}
196
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]197void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]198SecPublicInfoSqlite3::addIdentity(const Name& identityName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]199{
Yingdi Yu05842f22014-04-15 19:21:56 -0700[diff] [blame]200 if (doesIdentityExist(identityName))
201 return;
202
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]203 sqlite3_stmt* statement;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]204
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]205 sqlite3_prepare_v2(m_database,
206 "INSERT OR REPLACE INTO Identity (identity_name) values (?)",
207 -1, &statement, 0);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]208
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]209 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]210
Alexander Afanasyev736708b2014-01-06 14:45:34 -0800[diff] [blame]211 sqlite3_step(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]212
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]213 sqlite3_finalize(statement);
214}
215
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]216bool
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]217SecPublicInfoSqlite3::revokeIdentity()
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]218{
219 //TODO:
220 return false;
221}
222
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]223bool
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]224SecPublicInfoSqlite3::doesPublicKeyExist(const Name& keyName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]225{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]226 if (keyName.empty())
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]227 throw Error("Incorrect key name " + keyName.toUri());
228
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]229 string keyId = keyName.get(-1).toEscapedString();
230 Name identityName = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]231
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]232 sqlite3_stmt* statement;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]233 sqlite3_prepare_v2(m_database,
234 "SELECT count(*) FROM Key WHERE identity_name=? AND key_identifier=?",
235 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]236
237 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
238 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
239
240 int res = sqlite3_step(statement);
241
242 bool keyIdExist = false;
243 if (res == SQLITE_ROW) {
244 int countAll = sqlite3_column_int(statement, 0);
245 if (countAll > 0)
246 keyIdExist = true;
247 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]248
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]249 sqlite3_finalize(statement);
250
251 return keyIdExist;
252}
253
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]254void
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]255SecPublicInfoSqlite3::addPublicKey(const Name& keyName,
256 KeyType keyType,
257 const PublicKey& publicKeyDer)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]258{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]259 if (keyName.empty())
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]260 return;
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]261
Yingdi Yu05842f22014-04-15 19:21:56 -0700[diff] [blame]262 if (doesPublicKeyExist(keyName))
263 return;
264
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]265 string keyId = keyName.get(-1).toEscapedString();
266 Name identityName = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]267
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]268 addIdentity(identityName);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]269
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]270 sqlite3_stmt* statement;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]271 sqlite3_prepare_v2(m_database,
272 "INSERT OR REPLACE INTO Key \
273 (identity_name, key_identifier, key_type, public_key) \
274 values (?, ?, ?, ?)",
275 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]276
277 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
278 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
279 sqlite3_bind_int(statement, 3, (int)keyType);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]280 sqlite3_bind_blob(statement, 4,
281 publicKeyDer.get().buf(),
282 publicKeyDer.get().size(),
283 SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]284
Alexander Afanasyev736708b2014-01-06 14:45:34 -0800[diff] [blame]285 sqlite3_step(statement);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]286
287 sqlite3_finalize(statement);
288}
289
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]290shared_ptr<PublicKey>
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]291SecPublicInfoSqlite3::getPublicKey(const Name& keyName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]292{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]293 if (keyName.empty())
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]294 {
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]295 throw Error("SecPublicInfoSqlite3::getPublicKey Empty keyName");
296 }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]297
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]298 string keyId = keyName.get(-1).toEscapedString();
299 Name identityName = keyName.getPrefix(-1);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]300
301 sqlite3_stmt* statement;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]302 sqlite3_prepare_v2(m_database,
303 "SELECT public_key FROM Key WHERE identity_name=? AND key_identifier=?",
304 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]305
306 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
307 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
308
309 int res = sqlite3_step(statement);
310
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]311 shared_ptr<PublicKey> result;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]312 if (res == SQLITE_ROW)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]313 {
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]314 result =
315 make_shared<PublicKey>(static_cast<const uint8_t*>(sqlite3_column_blob(statement, 0)),
316 sqlite3_column_bytes(statement, 0));
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]317 sqlite3_finalize(statement);
318 return result;
319 }
320 else
321 {
322 sqlite3_finalize(statement);
323 throw Error("SecPublicInfoSqlite3::getPublicKey public key does not exist");
324 }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]325}
326
327bool
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]328SecPublicInfoSqlite3::doesCertificateExist(const Name& certificateName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]329{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]330 sqlite3_stmt* statement;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]331 sqlite3_prepare_v2(m_database,
332 "SELECT count(*) FROM Certificate WHERE cert_name=?",
333 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]334
335 sqlite3_bind_text(statement, 1, certificateName.toUri(), SQLITE_TRANSIENT);
336
337 int res = sqlite3_step(statement);
338
339 bool certExist = false;
340 if (res == SQLITE_ROW) {
341 int countAll = sqlite3_column_int(statement, 0);
342 if (countAll > 0)
343 certExist = true;
344 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]345
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]346 sqlite3_finalize(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]347
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]348 return certExist;
349}
350
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]351// void
352// SecPublicInfoSqlite3::addAnyCertificate(const IdentityCertificate& certificate)
353// {
354// std::string certificateName = certificate.getName().toUri();
355// Name keyName = IdentityCertificate::certificateNameToPublicKeyName(certificate.getName());
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]356
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]357// if (keyName.empty())
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]358// return;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]359
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]360// std::string keyId = keyName.get(-1).toEscapedString();
361// std::string identityName = keyName.getPrefix(-1).toUri();
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]362
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]363// sqlite3_stmt* statement;
364// sqlite3_prepare_v2(m_database,
Alexander Afanasyev1dd95c52014-03-22 19:11:36 -0700[diff] [blame]365// "INSERT OR REPLACE INTO Certificate (cert_name, cert_issuer, identity_name, key_identifier, not_before, not_after, certificate_data) "
366// "VALUES (?, ?, ?, ?, datetime(?, 'unixepoch'), datetime(?, 'unixepoch'), ?)",
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]367// -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]368
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]369// sqlite3_bind_text(statement, 1, certificateName, SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]370
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]371// try
372// {
373// SignatureSha256WithRsa signature(certificate.getSignature());
374// std::string signerName = signature.getKeyLocator().getName().toUri();
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]375
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]376// sqlite3_bind_text(statement, 2, signerName, SQLITE_STATIC);
377// }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]378// catch (KeyLocator::Error& e)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]379// {
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]380// return;
381// }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]382// catch (SignatureSha256WithRsa::Error& e)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]383// {
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]384// return;
385// }
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]386
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]387// sqlite3_bind_text(statement, 3, identityName, SQLITE_STATIC);
388// sqlite3_bind_text(statement, 4, keyId, SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]389
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]390// // Convert from time::milliseconds to time::seconds since 1/1/1970.
391// sqlite3_bind_int64(statement, 5, static_cast<sqlite3_int64>(
392// time::toUnixTimestamp(certificate.getNotBefore()).count()));
393// sqlite3_bind_int64(statement, 6, static_cast<sqlite3_int64>(
394// time::toUnixTimestamp(certificate.getNotAfter()).count()));
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]395
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]396// sqlite3_bind_blob(statement, 7, certificate.wireEncode().wire(), certificate.wireEncode().size(), SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]397
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]398// sqlite3_step(statement);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]399
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]400// sqlite3_finalize(statement);
401// }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]402
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]403void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]404SecPublicInfoSqlite3::addCertificate(const IdentityCertificate& certificate)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]405{
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]406 const Name& certificateName = certificate.getName();
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]407 // KeyName is from IdentityCertificate name, so should be qualified.
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]408 Name keyName =
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]409 IdentityCertificate::certificateNameToPublicKeyName(certificate.getName());
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]410
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]411 //HACK!!! Assume the key type is RSA, we should check more.
412 addPublicKey(keyName, KEY_TYPE_RSA, certificate.getPublicKeyInfo());
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]413
Yingdi Yu05842f22014-04-15 19:21:56 -0700[diff] [blame]414 if (doesCertificateExist(certificateName))
415 return;
416
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]417 string keyId = keyName.get(-1).toEscapedString();
418 Name identity = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]419
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]420 // Insert the certificate
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]421 sqlite3_stmt* statement;
422 sqlite3_prepare_v2(m_database,
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]423 "INSERT OR REPLACE INTO Certificate \
424 (cert_name, cert_issuer, identity_name, key_identifier, \
425 not_before, not_after, certificate_data) \
426 values (?, ?, ?, ?, datetime(?, 'unixepoch'), datetime(?, 'unixepoch'), ?)",
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]427 -1, &statement, 0);
428
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]429 sqlite3_bind_text(statement, 1, certificateName.toUri(), SQLITE_TRANSIENT);
430
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]431 try
432 {
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]433 // this will throw an exception if the signature is not the standard one
434 // or there is no key locator present
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]435 SignatureSha256WithRsa signature(certificate.getSignature());
436 std::string signerName = signature.getKeyLocator().getName().toUri();
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]437
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]438 sqlite3_bind_text(statement, 2, signerName, SQLITE_STATIC);
439 }
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]440 catch (std::runtime_error& e)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]441 {
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]442 return;
443 }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]444
445 sqlite3_bind_text(statement, 3, identity.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]446 sqlite3_bind_text(statement, 4, keyId, SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]447
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]448 sqlite3_bind_int64(statement, 5,
449 static_cast<sqlite3_int64>(
450 time::toUnixTimestamp(certificate.getNotBefore()).count()));
451 sqlite3_bind_int64(statement, 6,
452 static_cast<sqlite3_int64>(
453 time::toUnixTimestamp(certificate.getNotAfter()).count()));
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]454
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]455 sqlite3_bind_blob(statement, 7,
456 certificate.wireEncode().wire(),
457 certificate.wireEncode().size(),
458 SQLITE_TRANSIENT);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]459
Alexander Afanasyev736708b2014-01-06 14:45:34 -0800[diff] [blame]460 sqlite3_step(statement);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]461
462 sqlite3_finalize(statement);
463}
464
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]465shared_ptr<IdentityCertificate>
466SecPublicInfoSqlite3::getCertificate(const Name& certificateName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]467{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]468 sqlite3_stmt* statement;
469
470 sqlite3_prepare_v2(m_database,
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]471 "SELECT certificate_data FROM Certificate WHERE cert_name=?",
472 -1, &statement, 0);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]473
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]474 sqlite3_bind_text(statement, 1, certificateName.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]475
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]476 int res = sqlite3_step(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]477
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]478 if (res == SQLITE_ROW)
479 {
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]480 shared_ptr<IdentityCertificate> certificate = make_shared<IdentityCertificate>();
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]481 certificate->wireDecode(Block(static_cast<const uint8_t*>(sqlite3_column_blob(statement, 0)),
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]482 sqlite3_column_bytes(statement, 0)));
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]483 sqlite3_finalize(statement);
484 return certificate;
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]485 }
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]486 else
487 {
488 sqlite3_finalize(statement);
489 throw Error("SecPublicInfoSqlite3::getCertificate certificate does not exist");
490 }
Jeff Thompson1975def2013-10-09 17:06:43 -0700[diff] [blame]491}
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]492
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]493
494Name
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]495SecPublicInfoSqlite3::getDefaultIdentity()
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]496{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]497 sqlite3_stmt* statement;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]498 sqlite3_prepare_v2(m_database,
499 "SELECT identity_name FROM Identity WHERE default_identity=1",
500 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]501
502 int res = sqlite3_step(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]503
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]504 if (res == SQLITE_ROW)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]505 {
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]506 Name identity(string(reinterpret_cast<const char *>(sqlite3_column_text(statement, 0)),
507 sqlite3_column_bytes(statement, 0)));
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]508 sqlite3_finalize(statement);
509 return identity;
510 }
511 else
512 {
513 sqlite3_finalize(statement);
514 throw Error("SecPublicInfoSqlite3::getDefaultIdentity no default identity");
515 }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]516}
517
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]518void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]519SecPublicInfoSqlite3::setDefaultIdentityInternal(const Name& identityName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]520{
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]521 addIdentity(identityName);
522
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]523 sqlite3_stmt* statement;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]524
525 //Reset previous default identity
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]526 sqlite3_prepare_v2(m_database,
527 "UPDATE Identity SET default_identity=0 WHERE default_identity=1",
528 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]529
530 while (sqlite3_step(statement) == SQLITE_ROW)
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]531 {
532 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]533
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]534 sqlite3_finalize(statement);
535
536 //Set current default identity
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]537 sqlite3_prepare_v2(m_database,
538 "UPDATE Identity SET default_identity=1 WHERE identity_name=?",
539 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]540
541 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]542
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]543 sqlite3_step(statement);
544
545 sqlite3_finalize(statement);
546}
547
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]548Name
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]549SecPublicInfoSqlite3::getDefaultKeyNameForIdentity(const Name& identityName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]550{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]551 sqlite3_stmt* statement;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]552 sqlite3_prepare_v2(m_database,
553 "SELECT key_identifier FROM Key WHERE identity_name=? AND default_key=1",
554 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]555
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]556 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
557
558 int res = sqlite3_step(statement);
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]559
560 if (res == SQLITE_ROW)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]561 {
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]562 Name keyName = identityName;
563 keyName.append(string(reinterpret_cast<const char *>(sqlite3_column_text(statement, 0)),
564 sqlite3_column_bytes(statement, 0)));
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]565 sqlite3_finalize(statement);
566 return keyName;
567 }
568 else
569 {
570 sqlite3_finalize(statement);
571 throw Error("SecPublicInfoSqlite3::getDefaultKeyNameForIdentity key not found");
572 }
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]573}
574
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]575void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]576SecPublicInfoSqlite3::setDefaultKeyNameForIdentityInternal(const Name& keyName)
577{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]578 if (!doesPublicKeyExist(keyName))
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]579 throw Error("Key does not exist:" + keyName.toUri());
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]580
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]581 string keyId = keyName.get(-1).toEscapedString();
582 Name identityName = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]583
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]584 sqlite3_stmt* statement;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]585
586 //Reset previous default Key
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]587 sqlite3_prepare_v2(m_database,
588 "UPDATE Key SET default_key=0 WHERE default_key=1 and identity_name=?",
589 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]590
591 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
592
593 while (sqlite3_step(statement) == SQLITE_ROW)
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]594 {
595 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]596
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]597 sqlite3_finalize(statement);
598
599 //Set current default Key
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]600 sqlite3_prepare_v2(m_database,
601 "UPDATE Key SET default_key=1 WHERE identity_name=? AND key_identifier=?",
602 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]603
604 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
605 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]606
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]607 sqlite3_step(statement);
608
609 sqlite3_finalize(statement);
610}
611
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]612Name
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]613SecPublicInfoSqlite3::getDefaultCertificateNameForKey(const Name& keyName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]614{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]615 if (keyName.empty())
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]616 throw Error("SecPublicInfoSqlite3::getDefaultCertificateNameForKey wrong key");
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]617
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]618 string keyId = keyName.get(-1).toEscapedString();
619 Name identityName = keyName.getPrefix(-1);
620
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]621 sqlite3_stmt* statement;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]622 sqlite3_prepare_v2(m_database,
623 "SELECT cert_name FROM Certificate \
624 WHERE identity_name=? AND key_identifier=? AND default_cert=1",
625 -1, &statement, 0);
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]626
627 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
628 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
629
630 int res = sqlite3_step(statement);
631
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]632 if (res == SQLITE_ROW)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]633 {
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]634 Name certName(string(reinterpret_cast<const char *>(sqlite3_column_text(statement, 0)),
635 sqlite3_column_bytes(statement, 0)));
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]636 sqlite3_finalize(statement);
637 return certName;
638 }
639 else
640 {
641 sqlite3_finalize(statement);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]642 throw Error("certificate not found");
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]643 }
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]644}
645
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]646void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]647SecPublicInfoSqlite3::setDefaultCertificateNameForKeyInternal(const Name& certificateName)
648{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]649 if (!doesCertificateExist(certificateName))
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]650 throw Error("certificate does not exist:" + certificateName.toUri());
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]651
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]652 Name keyName = IdentityCertificate::certificateNameToPublicKeyName(certificateName);
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]653 string keyId = keyName.get(-1).toEscapedString();
654 Name identityName = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]655
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]656 sqlite3_stmt* statement;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]657
658 //Reset previous default Key
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]659 sqlite3_prepare_v2(m_database,
660 "UPDATE Certificate SET default_cert=0 \
661 WHERE default_cert=1 AND identity_name=? AND key_identifier=?",
662 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]663
664 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
665 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
666
667 while (sqlite3_step(statement) == SQLITE_ROW)
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]668 {
669 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]670
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]671 sqlite3_finalize(statement);
672
673 //Set current default Key
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]674 sqlite3_prepare_v2(m_database,
675 "UPDATE Certificate SET default_cert=1 \
676 WHERE identity_name=? AND key_identifier=? AND cert_name=?",
677 -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]678
679 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
680 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
681 sqlite3_bind_text(statement, 3, certificateName.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]682
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]683 sqlite3_step(statement);
684
685 sqlite3_finalize(statement);
686}
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]687
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]688void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]689SecPublicInfoSqlite3::getAllIdentities(vector<Name>& nameList, bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]690{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]691 sqlite3_stmt* stmt;
692 if (isDefault)
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]693 sqlite3_prepare_v2(m_database,
694 "SELECT identity_name FROM Identity WHERE default_identity=1",
695 -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]696 else
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]697 sqlite3_prepare_v2(m_database,
698 "SELECT identity_name FROM Identity WHERE default_identity=0",
699 -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]700
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]701 while (sqlite3_step(stmt) == SQLITE_ROW)
702 nameList.push_back(Name(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)),
703 sqlite3_column_bytes(stmt, 0))));
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]704
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]705 sqlite3_finalize(stmt);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]706}
707
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]708void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]709SecPublicInfoSqlite3::getAllKeyNames(vector<Name>& nameList, bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]710{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]711 sqlite3_stmt* stmt;
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]712
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]713 if (isDefault)
714 sqlite3_prepare_v2(m_database,
715 "SELECT identity_name, key_identifier FROM Key WHERE default_key=1",
716 -1, &stmt, 0);
717 else
718 sqlite3_prepare_v2(m_database,
719 "SELECT identity_name, key_identifier FROM Key WHERE default_key=0",
720 -1, &stmt, 0);
721
722 while (sqlite3_step(stmt) == SQLITE_ROW)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]723 {
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]724 Name keyName(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)),
725 sqlite3_column_bytes(stmt, 0)));
726 keyName.append(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 1)),
727 sqlite3_column_bytes(stmt, 1)));
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]728 nameList.push_back(keyName);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]729 }
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]730 sqlite3_finalize(stmt);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]731}
732
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]733void
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]734SecPublicInfoSqlite3::getAllKeyNamesOfIdentity(const Name& identity,
735 vector<Name>& nameList,
736 bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]737{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]738 sqlite3_stmt* stmt;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]739
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]740 if (isDefault)
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]741 sqlite3_prepare_v2(m_database,
742 "SELECT key_identifier FROM Key WHERE default_key=1 and identity_name=?",
743 -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]744 else
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]745 sqlite3_prepare_v2(m_database,
746 "SELECT key_identifier FROM Key WHERE default_key=0 and identity_name=?",
747 -1, &stmt, 0);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]748
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]749 sqlite3_bind_text(stmt, 1,
750 identity.toUri().c_str(),
751 identity.toUri().size(),
752 SQLITE_TRANSIENT);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]753
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]754 while (sqlite3_step(stmt) == SQLITE_ROW)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]755 {
756 Name keyName(identity);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]757 keyName.append(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)),
758 sqlite3_column_bytes(stmt, 0)));
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]759 nameList.push_back(keyName);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]760 }
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]761 sqlite3_finalize(stmt);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]762}
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]763
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]764void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]765SecPublicInfoSqlite3::getAllCertificateNames(vector<Name>& nameList, bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]766{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]767 sqlite3_stmt* stmt;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]768
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]769 if (isDefault)
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]770 sqlite3_prepare_v2(m_database,
771 "SELECT cert_name FROM Certificate WHERE default_cert=1",
772 -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]773 else
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]774 sqlite3_prepare_v2(m_database,
775 "SELECT cert_name FROM Certificate WHERE default_cert=0",
776 -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]777
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]778 while (sqlite3_step(stmt) == SQLITE_ROW)
779 nameList.push_back(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)),
780 sqlite3_column_bytes(stmt, 0)));
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]781
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]782 sqlite3_finalize(stmt);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]783}
784
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]785void
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]786SecPublicInfoSqlite3::getAllCertificateNamesOfKey(const Name& keyName,
787 vector<Name>& nameList,
788 bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]789{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]790 if (keyName.empty())
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]791 return;
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]792
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]793 sqlite3_stmt* stmt;
794 if (isDefault)
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]795 sqlite3_prepare_v2(m_database,
796 "SELECT cert_name FROM Certificate \
797 WHERE default_cert=1 and identity_name=? and key_identifier=?",
798 -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]799 else
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]800 sqlite3_prepare_v2(m_database,
801 "SELECT cert_name FROM Certificate \
802 WHERE default_cert=0 and identity_name=? and key_identifier=?",
803 -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]804
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]805 Name identity = keyName.getPrefix(-1);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]806 sqlite3_bind_text(stmt, 1, identity.toUri().c_str(), identity.toUri().size (), SQLITE_TRANSIENT);
807
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]808 std::string baseKeyName = keyName.get(-1).toEscapedString();
809 sqlite3_bind_text(stmt, 2, baseKeyName.c_str(), baseKeyName.size(), SQLITE_TRANSIENT);
810
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]811 while (sqlite3_step(stmt) == SQLITE_ROW)
812 nameList.push_back(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)),
813 sqlite3_column_bytes(stmt, 0)));
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]814
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]815 sqlite3_finalize(stmt);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]816}
817
818void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]819SecPublicInfoSqlite3::deleteCertificateInfo(const Name& certName)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]820{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]821 if (certName.empty())
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]822 return;
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]823
824 sqlite3_stmt* stmt;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]825 sqlite3_prepare_v2(m_database, "DELETE FROM Certificate WHERE cert_name=?", -1, &stmt, 0);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]826 sqlite3_bind_text(stmt, 1, certName.toUri().c_str(), certName.toUri().size (), SQLITE_TRANSIENT);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]827 sqlite3_step(stmt);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]828 sqlite3_finalize(stmt);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]829}
830
831void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]832SecPublicInfoSqlite3::deletePublicKeyInfo(const Name& keyName)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]833{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]834 if (keyName.empty())
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]835 return;
836
837 string identity = keyName.getPrefix(-1).toUri();
838 string keyId = keyName.get(-1).toEscapedString();
839
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]840 sqlite3_stmt* stmt;
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]841 sqlite3_prepare_v2(m_database,
842 "DELETE FROM Certificate WHERE identity_name=? and key_identifier=?",
843 -1, &stmt, 0);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]844 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
845 sqlite3_bind_text(stmt, 2, keyId.c_str(), keyId.size(), SQLITE_TRANSIENT);
846 sqlite3_step(stmt);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]847 sqlite3_finalize(stmt);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]848
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]849 sqlite3_prepare_v2(m_database,
850 "DELETE FROM Key WHERE identity_name=? and key_identifier=?",
851 -1, &stmt, 0);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]852 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
853 sqlite3_bind_text(stmt, 2, keyId.c_str(), keyId.size(), SQLITE_TRANSIENT);
854 sqlite3_step(stmt);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]855 sqlite3_finalize(stmt);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]856}
857
858void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]859SecPublicInfoSqlite3::deleteIdentityInfo(const Name& identityName)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]860{
861 string identity = identityName.toUri();
862
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]863 sqlite3_stmt* stmt;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]864 sqlite3_prepare_v2(m_database, "DELETE FROM Certificate WHERE identity_name=?", -1, &stmt, 0);
865 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
866 sqlite3_step(stmt);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]867 sqlite3_finalize(stmt);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]868
869 sqlite3_prepare_v2(m_database, "DELETE FROM Key WHERE identity_name=?", -1, &stmt, 0);
870 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
871 sqlite3_step(stmt);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]872 sqlite3_finalize(stmt);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]873
874 sqlite3_prepare_v2(m_database, "DELETE FROM Identity WHERE identity_name=?", -1, &stmt, 0);
875 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
876 sqlite3_step(stmt);
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]877 sqlite3_finalize(stmt);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]878}
879
880} // namespace ndn