Gitiles
Code Review Sign In
gerrit.named-data.net / ndn-cxx / a3c8bd1772c5e4211f372658459200107b05efa1 / . / tools / ndnsec / util.cpp
blob: cb35b52aea642ea7a283c9782df7afecd8221118 [file] [log] [blame]
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
Alexander Afanasyev22ee0892017-09-02 12:29:16 -0400[diff] [blame]2/*
Davide Pesavento25d4f1c2020-04-29 23:31:04 -0400[diff] [blame]3 * Copyright (c) 2013-2020 Regents of the University of California.
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]4 *
5 * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
6 *
7 * ndn-cxx library is free software: you can redistribute it and/or modify it under the
8 * terms of the GNU Lesser General Public License as published by the Free Software
9 * Foundation, either version 3 of the License, or (at your option) any later version.
10 *
11 * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License and GNU Lesser
16 * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
17 * <http://www.gnu.org/licenses/>.
18 *
19 * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
20 */
21
22#include "util.hpp"
23
Junxiao Shi24c5a002018-12-12 04:47:15 +0000[diff] [blame]24#include "ndn-cxx/security/impl/openssl.hpp"
Davide Pesavento25d4f1c2020-04-29 23:31:04 -0400[diff] [blame]25#include "ndn-cxx/util/io.hpp"
Alexander Afanasyev22ee0892017-09-02 12:29:16 -0400[diff] [blame]26
Davide Pesaventofa995ac2019-03-27 23:44:46 -0400[diff] [blame]27#include <unistd.h>
28
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]29namespace ndn {
30namespace ndnsec {
31
32bool
Alexander Afanasyev35109a12017-01-04 15:39:06 -0800[diff] [blame]33getPassword(std::string& password, const std::string& prompt, bool shouldConfirm)
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]34{
35#ifdef NDN_CXX_HAVE_GETPASS
Alexander Afanasyev22ee0892017-09-02 12:29:16 -0400[diff] [blame]36 char* pw0 = getpass(prompt.c_str());
37 if (!pw0 || strlen(pw0) == 0) {
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]38 return false;
Alexander Afanasyev22ee0892017-09-02 12:29:16 -0400[diff] [blame]39 }
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]40 std::string password1 = pw0;
Alexander Afanasyev22ee0892017-09-02 12:29:16 -0400[diff] [blame]41 OPENSSL_cleanse(pw0, strlen(pw0));
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]42
Alexander Afanasyev35109a12017-01-04 15:39:06 -0800[diff] [blame]43 if (!shouldConfirm) {
Alexander Afanasyev22ee0892017-09-02 12:29:16 -0400[diff] [blame]44 password.swap(password1);
Alexander Afanasyev35109a12017-01-04 15:39:06 -0800[diff] [blame]45 return true;
46 }
47
Davide Pesaventofa995ac2019-03-27 23:44:46 -0400[diff] [blame]48 pw0 = getpass("Confirm: ");
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]49 if (!pw0) {
Alexander Afanasyev22ee0892017-09-02 12:29:16 -0400[diff] [blame]50 OPENSSL_cleanse(&password1.front(), password1.size());
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]51 return false;
52 }
53
Alexander Afanasyev35109a12017-01-04 15:39:06 -0800[diff] [blame]54 bool isReady = false;
Alexander Afanasyev22ee0892017-09-02 12:29:16 -0400[diff] [blame]55 if (password1.size() == strlen(pw0) &&
56 CRYPTO_memcmp(password1.data(), pw0, password1.size()) == 0) {
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]57 isReady = true;
58 password.swap(password1);
59 }
Alexander Afanasyev22ee0892017-09-02 12:29:16 -0400[diff] [blame]60 else {
61 OPENSSL_cleanse(&password1.front(), password1.size());
62 }
63 OPENSSL_cleanse(pw0, strlen(pw0));
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]64
65 return isReady;
66#else
67 return false;
68#endif // NDN_CXX_HAVE_GETPASS
69}
70
Alexander Afanasyev35109a12017-01-04 15:39:06 -0800[diff] [blame]71security::v2::Certificate
72loadCertificate(const std::string& fileName)
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]73{
Alexander Afanasyev35109a12017-01-04 15:39:06 -0800[diff] [blame]74 shared_ptr<security::v2::Certificate> cert;
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]75 if (fileName == "-")
Alexander Afanasyev35109a12017-01-04 15:39:06 -0800[diff] [blame]76 cert = io::load<security::v2::Certificate>(std::cin);
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]77 else
Alexander Afanasyev35109a12017-01-04 15:39:06 -0800[diff] [blame]78 cert = io::load<security::v2::Certificate>(fileName);
79
80 if (cert == nullptr) {
Davide Pesavento923ba442019-02-12 22:00:38 -0500[diff] [blame]81 NDN_THROW(CannotLoadCertificate(fileName));
Alexander Afanasyev35109a12017-01-04 15:39:06 -0800[diff] [blame]82 }
83 return *cert;
Alexander Afanasyev82c359c2017-01-04 14:48:07 -0800[diff] [blame]84}
85
86} // namespace ndnsec
87} // namespace ndn