Gitiles
Code Review Sign In
gerrit.named-data.net / ndn-cxx / 7682ccbed444da1967f203aaa03959f4a3545979 / . / src / security / sec-tpm-osx.hpp
blob: e18d3bc5d6f41bb2cae06ec684f8068c4fd2cb04 [file] [log] [blame]
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil -*- */
2/**
3 * Copyright (C) 2013 Regents of the University of California.
4 * @author: Yingdi Yu <yingdi@cs.ucla.edu>
5 * See COPYING for copyright and distribution information.
6 */
7
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]8#ifndef NDN_SECURITY_SEC_TPM_OSX_HPP
9#define NDN_SECURITY_SEC_TPM_OSX_HPP
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]10
Yingdi Yu4f324632014-01-15 18:10:03 -0800[diff] [blame]11#include "../common.hpp"
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]12#include "sec-tpm.hpp"
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]13
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]14namespace ndn {
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]15
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]16class SecTpmOsx : public SecTpm {
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]17public:
Yingdi Yu2b2b4792014-02-04 16:27:07 -0800[diff] [blame]18 struct Error : public SecTpm::Error { Error(const std::string& what) : SecTpm::Error(what) {} };
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]19
Yingdi Yu2b2b4792014-02-04 16:27:07 -0800[diff] [blame]20 SecTpmOsx();
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]21
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]22 virtual
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]23 ~SecTpmOsx();
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]24
Alexander Afanasyev04b22a92014-01-05 22:40:17 -0800[diff] [blame]25
Yingdi Yube4150e2014-02-18 13:02:46 -0800[diff] [blame]26 /******************************
27 * From TrustedPlatformModule *
28 ******************************/
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]29
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]30 virtual void
Yingdi Yube4150e2014-02-18 13:02:46 -0800[diff] [blame]31 setTpmPassword(const uint8_t* password, size_t passwordLength);
32
33 virtual void
34 resetTpmPassword();
35
36 virtual void
37 setInTerminal(bool inTerminal);
38
39 virtual bool
40 getInTerminal();
41
42 virtual bool
43 locked();
44
45 virtual void
46 unlockTpm(const char* password, size_t passwordLength, bool usePassword);
47
48 virtual void
49 generateKeyPairInTpm(const Name& keyName, KeyType keyType, int keySize)
50 {
51 generateKeyPairInTpmInternal(keyName, keyType, keySize, false);
52 }
53
54 virtual void
55 deleteKeyPairInTpm(const Name& keyName)
56 {
57 deleteKeyPairInTpmInternal(keyName, false);
58 }
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]59
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]60 virtual ptr_lib::shared_ptr<PublicKey>
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]61 getPublicKeyFromTpm(const Name& keyName);
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]62
Alexander Afanasyev04b22a92014-01-05 22:40:17 -0800[diff] [blame]63 virtual Block
Yingdi Yube4150e2014-02-18 13:02:46 -0800[diff] [blame]64 signInTpm(const uint8_t* data, size_t dataLength, const Name& keyName, DigestAlgorithm digestAlgorithm)
65 {
66 return signInTpmInternal(data, dataLength, keyName, digestAlgorithm, false);
67 }
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]68
Alexander Afanasyev04b22a92014-01-05 22:40:17 -0800[diff] [blame]69 virtual ConstBufferPtr
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]70 decryptInTpm(const uint8_t* data, size_t dataLength, const Name& keyName, bool isSymmetric);
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]71
Alexander Afanasyev04b22a92014-01-05 22:40:17 -0800[diff] [blame]72 virtual ConstBufferPtr
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]73 encryptInTpm(const uint8_t* data, size_t dataLength, const Name& keyName, bool isSymmetric);
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]74
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]75 virtual void
Yingdi Yub4bb85a2014-01-16 10:11:04 -0800[diff] [blame]76 generateSymmetricKeyInTpm(const Name& keyName, KeyType keyType, int keySize);
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]77
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]78 virtual bool
Yingdi Yu4b752752014-02-18 12:24:03 -0800[diff] [blame]79 doesKeyExistInTpm(const Name& keyName, KeyClass keyClass);
80
81 virtual bool
82 generateRandomBlock(uint8_t* res, size_t size);
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]83
Alexander Afanasyev04b22a92014-01-05 22:40:17 -0800[diff] [blame]84
85 ////////////////////////////////////////////////////////////////////////////////////
86 // OSX-specifics
87 ////////////////////////////////////////////////////////////////////////////////////
88
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]89 /**
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]90 * @brief Configure ACL of a particular key.
91 *
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]92 * @param keyName the name of key
93 * @param keyClass the class of key, e.g. Private Key
94 * @param acl the new acl of the key
95 * @param appPath the absolute path to the application
96 * @returns true if setting succeeds
97 */
98 bool
Yingdi Yu2b2b4792014-02-04 16:27:07 -0800[diff] [blame]99 setACL(const Name& keyName, KeyClass keyClass, int acl, const std::string& appPath);
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]100
Yingdi Yu8dceb1d2014-02-18 12:45:10 -0800[diff] [blame]101protected:
102 /******************************
103 * From TrustedPlatformModule *
104 ******************************/
105 virtual ConstBufferPtr
Yingdi Yube4150e2014-02-18 13:02:46 -0800[diff] [blame]106 exportPrivateKeyPkcs1FromTpm(const Name& keyName)
107 {
108 return exportPrivateKeyPkcs1FromTpmInternal(keyName, false);
109 }
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]110
Yingdi Yu8dceb1d2014-02-18 12:45:10 -0800[diff] [blame]111 virtual bool
Yingdi Yube4150e2014-02-18 13:02:46 -0800[diff] [blame]112 importPrivateKeyPkcs1IntoTpm(const Name& keyName, const uint8_t* buf, size_t size)
113 {
114 return importPrivateKeyPkcs1IntoTpmInternal(keyName, buf, size, false);
115 }
Yingdi Yu8dceb1d2014-02-18 12:45:10 -0800[diff] [blame]116
117 virtual bool
118 importPublicKeyPkcs1IntoTpm(const Name& keyName, const uint8_t* buf, size_t size);
Yingdi Yube4150e2014-02-18 13:02:46 -0800[diff] [blame]119
120 /******************************
121 * OSX-specifics *
122 ******************************/
123 void
124 generateKeyPairInTpmInternal(const Name & keyName, KeyType keyType, int keySize, bool retry);
125
126 void
127 deleteKeyPairInTpmInternal(const Name &keyName, bool retry);
128
129 ConstBufferPtr
130 exportPrivateKeyPkcs1FromTpmInternal(const Name& keyName, bool retry);
131
132 bool
133 importPrivateKeyPkcs1IntoTpmInternal(const Name& keyName, const uint8_t* buf, size_t size, bool retry);
134
135 Block
136 signInTpmInternal(const uint8_t *data, size_t dataLength, const Name& keyName, DigestAlgorithm digestAlgorithm, bool retry);
Yingdi Yu8dceb1d2014-02-18 12:45:10 -0800[diff] [blame]137
138private:
Alexander Afanasyev04b22a92014-01-05 22:40:17 -0800[diff] [blame]139 class Impl;
Yingdi Yu4b752752014-02-18 12:24:03 -0800[diff] [blame]140 shared_ptr<Impl> m_impl;
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]141};
142
Alexander Afanasyev19508852014-01-29 01:01:51 -0800[diff] [blame]143} // namespace ndn
Jeff Thompson2747dc02013-10-04 19:11:34 -0700[diff] [blame]144
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]145#endif // NDN_SECURITY_SEC_TPM_OSX_HPP