Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 1 | /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */ |
| 2 | /** |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 3 | * Copyright (c) 2013-2017 Regents of the University of California. |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 4 | * |
| 5 | * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions). |
| 6 | * |
| 7 | * ndn-cxx library is free software: you can redistribute it and/or modify it under the |
| 8 | * terms of the GNU Lesser General Public License as published by the Free Software |
| 9 | * Foundation, either version 3 of the License, or (at your option) any later version. |
| 10 | * |
| 11 | * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY |
| 12 | * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A |
| 13 | * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. |
| 14 | * |
| 15 | * You should have received copies of the GNU General Public License and GNU Lesser |
| 16 | * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see |
| 17 | * <http://www.gnu.org/licenses/>. |
| 18 | * |
| 19 | * See AUTHORS.md for complete list of ndn-cxx authors and contributors. |
| 20 | */ |
| 21 | |
| 22 | #include "pib-memory.hpp" |
| 23 | #include "pib.hpp" |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 24 | #include "../security-common.hpp" |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 25 | |
| 26 | namespace ndn { |
| 27 | namespace security { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 28 | namespace pib { |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 29 | |
| 30 | PibMemory::PibMemory() |
| 31 | : m_hasDefaultIdentity(false) |
| 32 | { |
| 33 | } |
| 34 | |
| 35 | void |
| 36 | PibMemory::setTpmLocator(const std::string& tpmLocator) |
| 37 | { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 38 | // The locator of PibMemory is always 'tpm-memory:' |
Spyridon Mastorakis | 0d2ed2e | 2015-07-27 19:09:12 -0700 | [diff] [blame] | 39 | BOOST_THROW_EXCEPTION(Error("PibMemory does not need a locator")); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 40 | } |
| 41 | |
| 42 | std::string |
| 43 | PibMemory::getTpmLocator() const |
| 44 | { |
| 45 | return "tpm-memory:"; |
| 46 | } |
| 47 | |
| 48 | bool |
| 49 | PibMemory::hasIdentity(const Name& identity) const |
| 50 | { |
| 51 | return (m_identities.count(identity) > 0); |
| 52 | } |
| 53 | |
| 54 | void |
| 55 | PibMemory::addIdentity(const Name& identity) |
| 56 | { |
| 57 | m_identities.insert(identity); |
| 58 | |
| 59 | if (!m_hasDefaultIdentity) { |
| 60 | m_defaultIdentity = identity; |
| 61 | m_hasDefaultIdentity = true; |
| 62 | } |
| 63 | } |
| 64 | |
| 65 | void |
| 66 | PibMemory::removeIdentity(const Name& identity) |
| 67 | { |
| 68 | m_identities.erase(identity); |
| 69 | if (identity == m_defaultIdentity) |
| 70 | m_hasDefaultIdentity = false; |
| 71 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 72 | auto keyNames = this->getKeysOfIdentity(identity); |
| 73 | for (const Name& keyName : keyNames) { |
| 74 | this->removeKey(keyName); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 75 | } |
| 76 | } |
| 77 | |
| 78 | std::set<Name> |
| 79 | PibMemory::getIdentities() const |
| 80 | { |
| 81 | return m_identities; |
| 82 | } |
| 83 | |
| 84 | void |
| 85 | PibMemory::setDefaultIdentity(const Name& identityName) |
| 86 | { |
| 87 | addIdentity(identityName); |
| 88 | m_defaultIdentity = identityName; |
| 89 | m_hasDefaultIdentity = true; |
| 90 | } |
| 91 | |
| 92 | Name |
| 93 | PibMemory::getDefaultIdentity() const |
| 94 | { |
| 95 | if (m_hasDefaultIdentity) |
| 96 | return m_defaultIdentity; |
| 97 | |
Spyridon Mastorakis | 0d2ed2e | 2015-07-27 19:09:12 -0700 | [diff] [blame] | 98 | BOOST_THROW_EXCEPTION(Pib::Error("No default identity")); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 99 | } |
| 100 | |
| 101 | bool |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 102 | PibMemory::hasKey(const Name& keyName) const |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 103 | { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 104 | return (m_keys.count(keyName) > 0); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 105 | } |
| 106 | |
| 107 | void |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 108 | PibMemory::addKey(const Name& identity, const Name& keyName, |
| 109 | const uint8_t* key, size_t keyLen) |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 110 | { |
| 111 | this->addIdentity(identity); |
| 112 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 113 | m_keys[keyName] = Buffer(key, keyLen); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 114 | |
| 115 | if (m_defaultKey.find(identity) == m_defaultKey.end()) |
| 116 | m_defaultKey[identity] = keyName; |
| 117 | } |
| 118 | |
| 119 | void |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 120 | PibMemory::removeKey(const Name& keyName) |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 121 | { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 122 | Name identity = v2::extractIdentityFromKeyName(keyName); |
| 123 | |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 124 | m_keys.erase(keyName); |
| 125 | m_defaultKey.erase(identity); |
| 126 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 127 | auto certNames = this->getCertificatesOfKey(keyName); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 128 | for (const auto& certName : certNames) { |
| 129 | this->removeCertificate(certName); |
| 130 | } |
| 131 | } |
| 132 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 133 | Buffer |
| 134 | PibMemory::getKeyBits(const Name& keyName) const |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 135 | { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 136 | if (!hasKey(keyName)) |
| 137 | BOOST_THROW_EXCEPTION(Pib::Error("Key `" + keyName.toUri() + "` not found")); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 138 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 139 | auto it = m_keys.find(keyName); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 140 | return it->second; |
| 141 | } |
| 142 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 143 | std::set<Name> |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 144 | PibMemory::getKeysOfIdentity(const Name& identity) const |
| 145 | { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 146 | std::set<Name> ids; |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 147 | for (const auto& it : m_keys) { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 148 | if (identity == v2::extractIdentityFromKeyName(it.first)) |
| 149 | ids.insert(it.first); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 150 | } |
| 151 | return ids; |
| 152 | } |
| 153 | |
| 154 | void |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 155 | PibMemory::setDefaultKeyOfIdentity(const Name& identity, const Name& keyName) |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 156 | { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 157 | if (!hasKey(keyName)) |
| 158 | BOOST_THROW_EXCEPTION(Pib::Error("Key `" + keyName.toUri() + "` not found")); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 159 | |
| 160 | m_defaultKey[identity] = keyName; |
| 161 | } |
| 162 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 163 | Name |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 164 | PibMemory::getDefaultKeyOfIdentity(const Name& identity) const |
| 165 | { |
| 166 | auto it = m_defaultKey.find(identity); |
| 167 | if (it == m_defaultKey.end()) |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 168 | BOOST_THROW_EXCEPTION(Pib::Error("No default key for identity `" + identity.toUri() + "`")); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 169 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 170 | return it->second; |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 171 | } |
| 172 | |
| 173 | bool |
| 174 | PibMemory::hasCertificate(const Name& certName) const |
| 175 | { |
| 176 | return (m_certs.count(certName) > 0); |
| 177 | } |
| 178 | |
| 179 | void |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 180 | PibMemory::addCertificate(const v2::Certificate& certificate) |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 181 | { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 182 | Name certName = certificate.getName(); |
| 183 | Name keyName = certificate.getKeyName(); |
| 184 | Name identity = certificate.getIdentity(); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 185 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 186 | this->addKey(identity, keyName, certificate.getContent().value(), certificate.getContent().value_size()); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 187 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 188 | m_certs[certName] = certificate; |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 189 | if (m_defaultCert.find(keyName) == m_defaultCert.end()) |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 190 | m_defaultCert[keyName] = certName; |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 191 | } |
| 192 | |
| 193 | void |
| 194 | PibMemory::removeCertificate(const Name& certName) |
| 195 | { |
| 196 | m_certs.erase(certName); |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 197 | m_defaultCert.erase(v2::extractKeyNameFromCertName(certName)); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 198 | } |
| 199 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 200 | v2::Certificate |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 201 | PibMemory::getCertificate(const Name& certName) const |
| 202 | { |
| 203 | if (!hasCertificate(certName)) |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 204 | BOOST_THROW_EXCEPTION(Pib::Error("Certificate `" + certName.toUri() + "` does not exist")); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 205 | |
| 206 | auto it = m_certs.find(certName); |
| 207 | return it->second; |
| 208 | } |
| 209 | |
| 210 | std::set<Name> |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 211 | PibMemory::getCertificatesOfKey(const Name& keyName) const |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 212 | { |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 213 | std::set<Name> certNames; |
| 214 | for (const auto& it : m_certs) { |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 215 | if (v2::extractKeyNameFromCertName(it.second.getName()) == keyName) |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 216 | certNames.insert(it.first); |
| 217 | } |
| 218 | return certNames; |
| 219 | } |
| 220 | |
| 221 | void |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 222 | PibMemory::setDefaultCertificateOfKey(const Name& keyName, const Name& certName) |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 223 | { |
| 224 | if (!hasCertificate(certName)) |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 225 | BOOST_THROW_EXCEPTION(Pib::Error("Certificate `" + certName.toUri() + "` does not exist")); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 226 | |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 227 | m_defaultCert[keyName] = certName; |
| 228 | } |
| 229 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 230 | v2::Certificate |
| 231 | PibMemory::getDefaultCertificateOfKey(const Name& keyName) const |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 232 | { |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 233 | auto it = m_defaultCert.find(keyName); |
| 234 | if (it == m_defaultCert.end()) |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 235 | BOOST_THROW_EXCEPTION(Pib::Error("No default certificate for key `" + keyName.toUri() + "`")); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 236 | |
| 237 | auto certIt = m_certs.find(it->second); |
| 238 | if (certIt == m_certs.end()) |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 239 | BOOST_THROW_EXCEPTION(Pib::Error("No default certificate for key `" + keyName.toUri() + "`")); |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 240 | else |
| 241 | return certIt->second; |
| 242 | } |
| 243 | |
Yingdi Yu | 6ee2d36 | 2015-07-16 21:48:05 -0700 | [diff] [blame^] | 244 | } // namespace pib |
Yingdi Yu | 3bf91f5 | 2015-06-12 19:39:40 -0700 | [diff] [blame] | 245 | } // namespace security |
| 246 | } // namespace ndn |