Gitiles
Code Review Sign In
gerrit.named-data.net / ndn-cxx / 80979bacc4cf933ef8867fc3ef6bec335aba7771 / . / src / security / certificate.hpp
blob: c0fe8e0398e5f1d83bef1e1f258f8a4d79729acf [file] [log] [blame]
Alexander Afanasyevc169a812014-05-20 20:37:29 -0400[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
Jeff Thompsone7e069b2013-09-27 15:48:48 -0700[diff] [blame]2/**
Alexander Afanasyevc169a812014-05-20 20:37:29 -0400[diff] [blame]3 * Copyright (c) 2013-2014 Regents of the University of California.
Alexander Afanasyevdfa52c42014-04-24 21:10:11 -0700[diff] [blame]4 *
5 * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
Alexander Afanasyevdfa52c42014-04-24 21:10:11 -0700[diff] [blame]6 *
Alexander Afanasyevc169a812014-05-20 20:37:29 -0400[diff] [blame]7 * ndn-cxx library is free software: you can redistribute it and/or modify it under the
8 * terms of the GNU Lesser General Public License as published by the Free Software
9 * Foundation, either version 3 of the License, or (at your option) any later version.
10 *
11 * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License and GNU Lesser
16 * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
17 * <http://www.gnu.org/licenses/>.
18 *
19 * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
Alexander Afanasyevdfa52c42014-04-24 21:10:11 -0700[diff] [blame]20 *
21 * @author Yingdi Yu <http://irl.cs.ucla.edu/~yingdi/>
22 * @author Jeff Thompson <jefft0@remap.ucla.edu>
23 * @author Alexander Afanasyev <http://lasr.cs.ucla.edu/afanasyev/index.html>
Jeff Thompsone7e069b2013-09-27 15:48:48 -0700[diff] [blame]24 */
25
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]26#ifndef NDN_SECURITY_CERTIFICATE_HPP
27#define NDN_SECURITY_CERTIFICATE_HPP
Jeff Thompsone7e069b2013-09-27 15:48:48 -0700[diff] [blame]28
Yingdi Yu4f324632014-01-15 18:10:03 -0800[diff] [blame]29#include "../common.hpp"
Alexander Afanasyeve2dcdfd2014-02-07 15:53:28 -0800[diff] [blame]30#include "../data.hpp"
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]31#include "certificate-subject-description.hpp"
32#include "certificate-extension.hpp"
33#include "public-key.hpp"
Jeff Thompsone7e069b2013-09-27 15:48:48 -0700[diff] [blame]34
35namespace ndn {
36
Alexander Afanasyev2a7f7202014-04-23 14:25:29 -0700[diff] [blame]37class Certificate : public Data
38{
Jeff Thompsonc69163b2013-10-12 13:49:50 -0700[diff] [blame]39public:
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]40 class Error : public Data::Error
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]41 {
42 public:
43 explicit
44 Error(const std::string& what)
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]45 : Data::Error(what)
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]46 {
47 }
48 };
Alexander Afanasyevbf1a67a2014-01-05 23:36:13 -0800[diff] [blame]49
50 typedef std::vector<CertificateSubjectDescription> SubjectDescriptionList;
51 typedef std::vector<CertificateExtension> ExtensionList;
52
Jeff Thompsonc69163b2013-10-12 13:49:50 -0700[diff] [blame]53 /**
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]54 * @brief The default constructor.
Jeff Thompsonc69163b2013-10-12 13:49:50 -0700[diff] [blame]55 */
56 Certificate();
57
58 /**
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]59 * @brief Create a Certificate from the content in the data packet.
Jeff Thompsonc69163b2013-10-12 13:49:50 -0700[diff] [blame]60 * @param data The data packet with the content to decode.
61 */
Alexander Afanasyeva4297a62014-06-19 13:29:34 -0700[diff] [blame]62 explicit
Jeff Thompsonc69163b2013-10-12 13:49:50 -0700[diff] [blame]63 Certificate(const Data& data);
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]64
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]65 /**
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]66 * @brief Create a Certificate from the a block
67 * @param block The raw block of the certificate
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]68 */
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]69 explicit
70 Certificate(const Block& block);
71
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]72 virtual
Jeff Thompsona5dc3512013-10-17 10:26:19 -0700[diff] [blame]73 ~Certificate();
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]74
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]75 void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]76 wireDecode(const Block& wire);
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]77
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]78 /**
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]79 * @brief encode certificate info into content
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]80 */
81 void
82 encode();
83
84 /**
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]85 * @brief Add a subject description.
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]86 * @param description The description to be added.
87 */
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]88 void
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]89 addSubjectDescription(const CertificateSubjectDescription& description)
90 {
91 m_subjectDescriptionList.push_back(description);
92 }
Jeff Thompson6ef69b22013-12-18 16:24:45 -0800[diff] [blame]93
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]94 const SubjectDescriptionList&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]95 getSubjectDescriptionList() const
96 {
97 return m_subjectDescriptionList;
98 }
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]99
100 SubjectDescriptionList&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]101 getSubjectDescriptionList()
102 {
103 return m_subjectDescriptionList;
104 }
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]105
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]106 /**
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]107 * @brief Add a certificate extension.
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]108 * @param extension the extension to be added
109 */
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]110 void
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]111 addExtension(const CertificateExtension& extension)
112 {
113 m_extensionList.push_back(extension);
114 }
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]115
Jeff Thompson6ef69b22013-12-18 16:24:45 -0800[diff] [blame]116 const ExtensionList&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]117 getExtensionList() const
118 {
119 return m_extensionList;
120 }
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]121
Jeff Thompson6ef69b22013-12-18 16:24:45 -0800[diff] [blame]122 ExtensionList&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]123 getExtensionList()
124 {
125 return m_extensionList;
126 }
Jeff Thompson6ef69b22013-12-18 16:24:45 -0800[diff] [blame]127
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]128 void
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]129 setNotBefore(const time::system_clock::TimePoint& notBefore)
130 {
131 m_notBefore = notBefore;
132 }
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]133
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]134 time::system_clock::TimePoint&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]135 getNotBefore()
136 {
137 return m_notBefore;
138 }
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]139
140 const time::system_clock::TimePoint&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]141 getNotBefore() const
142 {
143 return m_notBefore;
144 }
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]145
146 void
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]147 setNotAfter(const time::system_clock::TimePoint& notAfter)
148 {
149 m_notAfter = notAfter;
150 }
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]151
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]152 time::system_clock::TimePoint&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]153 getNotAfter()
154 {
155 return m_notAfter;
156 }
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]157
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]158 const time::system_clock::TimePoint&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]159 getNotAfter() const
160 {
161 return m_notAfter;
162 }
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]163
164 void
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]165 setPublicKeyInfo(const PublicKey& key)
166 {
167 m_key = key;
168 }
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]169
170 PublicKey&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]171 getPublicKeyInfo()
172 {
173 return m_key;
174 }
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]175
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]176 const PublicKey&
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]177 getPublicKeyInfo() const
178 {
179 return m_key;
180 }
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]181
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]182 /**
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]183 * @brief Check if the certificate is valid.
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]184 * @return True if the current time is earlier than notBefore.
185 */
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]186 bool
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]187 isTooEarly();
188
189 /**
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]190 * @brief Check if the certificate is valid.
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]191 * @return True if the current time is later than notAfter.
192 */
193 bool
194 isTooLate();
195
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]196 void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]197 printCertificate(std::ostream& os) const;
Jeff Thompson965569b2013-10-12 17:52:52 -0700[diff] [blame]198
199protected:
200 void
201 decode();
202
203protected:
Yingdi Yu4b8c6a22014-04-15 23:00:54 -0700[diff] [blame]204 SubjectDescriptionList m_subjectDescriptionList;
205 time::system_clock::TimePoint m_notBefore;
206 time::system_clock::TimePoint m_notAfter;
207 PublicKey m_key;
208 ExtensionList m_extensionList;
Jeff Thompsone7e069b2013-09-27 15:48:48 -0700[diff] [blame]209};
210
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]211std::ostream&
212operator<<(std::ostream& os, const Certificate& cert);
Alexander Afanasyevbf1a67a2014-01-05 23:36:13 -0800[diff] [blame]213} // namespace ndn
214
Yingdi Yu80979ba2014-11-25 14:38:36 -0800[diff] [blame^]215#endif // NDN_SECURITY_CERTIFICATE_HPP