Gitiles
Code Review Sign In
gerrit.named-data.net / ndn-cxx / 818422760c4a2897c88558c6d902fe0913213703 / . / ndn-cpp / security / identity / identity-manager.cpp
blob: a5adfc3af69cb5c6c7cab63f39062503643dc9ab [file] [log] [blame]
Jeff Thompson41471912013-09-12 16:21:50 -0700[diff] [blame]1/**
Jeff Thompson7687dc02013-09-13 11:54:07 -0700[diff] [blame]2 * Copyright (C) 2013 Regents of the University of California.
Jeff Thompson06e787d2013-09-12 19:00:55 -0700[diff] [blame]3 * @author: Yingdi Yu <yingdi@cs.ucla.edu>
Jeff Thompson7687dc02013-09-13 11:54:07 -0700[diff] [blame]4 * @author: Jeff Thompson <jefft0@remap.ucla.edu>
Jeff Thompson41471912013-09-12 16:21:50 -0700[diff] [blame]5 * See COPYING for copyright and distribution information.
6 */
7
Jeff Thompson86e1d752013-09-17 17:22:38 -0700[diff] [blame]8#include "../../sha256-with-rsa-signature.hpp"
Jeff Thompson41471912013-09-12 16:21:50 -0700[diff] [blame]9#include "identity-manager.hpp"
10
Jeff Thompson9296f0c2013-09-23 18:10:27 -0700[diff] [blame]11using namespace std;
12using namespace ndn::ptr_lib;
Jeff Thompson41471912013-09-12 16:21:50 -0700[diff] [blame]13
Jeff Thompson9296f0c2013-09-23 18:10:27 -0700[diff] [blame]14namespace ndn {
Jeff Thompson86e1d752013-09-17 17:22:38 -0700[diff] [blame]15
Jeff Thompson0050abe2013-09-17 12:50:25 -0700[diff] [blame]16void
Jeff Thompson86e1d752013-09-17 17:22:38 -0700[diff] [blame]17IdentityManager::signByCertificate(Data &data, const Name &certificateName, WireFormat& wireFormat)
Jeff Thompson41471912013-09-12 16:21:50 -0700[diff] [blame]18{
Jeff Thompson9296f0c2013-09-23 18:10:27 -0700[diff] [blame]19 Name keyName = identityStorage_->getKeyNameForCertificate(certificateName);
20
21 shared_ptr<PublicKey> publicKey = privateKeyStorage_->getPublicKey(keyName);
Jeff Thompson86e1d752013-09-17 17:22:38 -0700[diff] [blame]22
23 // For temporary usage, we support RSA + SHA256 only, but will support more.
24 data.setSignature(Sha256WithRsaSignature());
25 // Get a pointer to the clone which Data made.
26 Sha256WithRsaSignature *signature = dynamic_cast<Sha256WithRsaSignature*>(data.getSignature());
27 DigestAlgorithm digestAlgorithm = DIGEST_ALGORITHM_SHA256;
28
29 signature->getKeyLocator().setType(ndn_KeyLocatorType_KEYNAME);
30 signature->getKeyLocator().setKeyName(certificateName);
Jeff Thompson9296f0c2013-09-23 18:10:27 -0700[diff] [blame]31 // Omit the certificate digest.
32 signature->getKeyLocator().setKeyNameType((ndn_KeyNameType)-1);
Jeff Thompson86e1d752013-09-17 17:22:38 -0700[diff] [blame]33 // Ignore witness and leave the digestAlgorithm as the default.
Jeff Thompson9296f0c2013-09-23 18:10:27 -0700[diff] [blame]34 signature->getPublisherPublicKeyDigest().setPublisherPublicKeyDigest(publicKey->getDigest());
Jeff Thompson41471912013-09-12 16:21:50 -0700[diff] [blame]35
Jeff Thompson86e1d752013-09-17 17:22:38 -0700[diff] [blame]36 // Encode once to get the signed portion.
37 SignedBlob encoding = data.wireEncode(wireFormat);
38
39 signature->setSignature
Jeff Thompson9296f0c2013-09-23 18:10:27 -0700[diff] [blame]40 (privateKeyStorage_->sign(encoding.signedBuf(), encoding.signedSize(), keyName, digestAlgorithm));
Jeff Thompson86e1d752013-09-17 17:22:38 -0700[diff] [blame]41
42 // Encode again to include the signature.
43 data.wireEncode(wireFormat);
Jeff Thompson41471912013-09-12 16:21:50 -0700[diff] [blame]44}
45
46}