Gitiles
Code Review Sign In
gerrit.named-data.net / ndnSIM / ndn-cxx / 05842f2e0cf1deb716a7da905bd8781b2a5b8377 / . / src / security / sec-public-info-sqlite3.cpp
blob: 8d7ccb2856bacfb7bc15d647ce1dfc0a537b97c8 [file] [log] [blame]
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil -*- */
2/**
3 * Copyright (C) 2013 Regents of the University of California.
4 * @author: Yingdi Yu <yingdi@cs.ucla.edu>
Jeff Thompson22285ec2013-10-22 17:43:02 -0700[diff] [blame]5 * @author: Jeff Thompson <jefft0@remap.ucla.edu>
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]6 * See COPYING for copyright and distribution information.
7 */
8
Alexander Afanasyeve2dcdfd2014-02-07 15:53:28 -0800[diff] [blame]9#include "common.hpp"
10
11#include "sec-public-info-sqlite3.hpp"
12#include "identity-certificate.hpp"
13#include "signature-sha256-with-rsa.hpp"
14
15#include "../util/logging.hpp"
16#include "../util/time.hpp"
17
18#include "../data.hpp"
19
Yingdi Yu874678f2014-01-22 19:30:34 -0800[diff] [blame]20#include <sqlite3.h>
Jeff Thompson351ac302013-10-19 18:45:00 -0700[diff] [blame]21#include <stdio.h>
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]22#include <stdlib.h>
23#include <sstream>
24#include <fstream>
Yingdi Yu0b9c3152014-01-26 16:31:18 -0800[diff] [blame]25#include <boost/filesystem.hpp>
Alexander Afanasyevd409d592014-01-28 18:36:38 -0800[diff] [blame]26
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]27
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]28
Yingdi Yu21157162014-02-28 13:02:34 -0800[diff] [blame]29INIT_LOGGER("ndn.SecPublicInfoSqlite3");
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]30
31using namespace std;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]32
Yingdi Yufc40d872014-02-18 12:56:04 -0800[diff] [blame]33namespace ndn {
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]34
35static const string INIT_ID_TABLE = "\
36CREATE TABLE IF NOT EXISTS \n \
37 Identity( \n \
38 identity_name BLOB NOT NULL, \n \
39 default_identity INTEGER DEFAULT 0, \n \
40 \
41 PRIMARY KEY (identity_name) \n \
42 ); \n \
43 \
44CREATE INDEX identity_index ON Identity(identity_name); \n \
45";
46
47static const string INIT_KEY_TABLE = "\
48CREATE TABLE IF NOT EXISTS \n \
49 Key( \n \
50 identity_name BLOB NOT NULL, \n \
51 key_identifier BLOB NOT NULL, \n \
52 key_type INTEGER, \n \
53 public_key BLOB, \n \
54 default_key INTEGER DEFAULT 0, \n \
55 active INTEGER DEFAULT 0, \n \
56 \
57 PRIMARY KEY (identity_name, key_identifier) \n \
58 ); \n \
59 \
60CREATE INDEX key_index ON Key(identity_name); \n \
61";
62
63static const string INIT_CERT_TABLE = "\
64CREATE TABLE IF NOT EXISTS \n \
65 Certificate( \n \
66 cert_name BLOB NOT NULL, \n \
67 cert_issuer BLOB NOT NULL, \n \
68 identity_name BLOB NOT NULL, \n \
69 key_identifier BLOB NOT NULL, \n \
70 not_before TIMESTAMP, \n \
71 not_after TIMESTAMP, \n \
72 certificate_data BLOB NOT NULL, \n \
Jeff Thompson22285ec2013-10-22 17:43:02 -0700[diff] [blame]73 valid_flag INTEGER DEFAULT 1, \n \
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]74 default_cert INTEGER DEFAULT 0, \n \
75 \
76 PRIMARY KEY (cert_name) \n \
77 ); \n \
78 \
79CREATE INDEX cert_index ON Certificate(cert_name); \n \
80CREATE INDEX subject ON Certificate(identity_name); \n \
81";
82
83/**
84 * A utility function to call the normal sqlite3_bind_text where the value and length are value.c_str() and value.size().
85 */
86static int sqlite3_bind_text(sqlite3_stmt* statement, int index, const string& value, void(*destructor)(void*))
87{
88 return sqlite3_bind_text(statement, index, value.c_str(), value.size(), destructor);
89}
90
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]91SecPublicInfoSqlite3::SecPublicInfoSqlite3()
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]92{
Yingdi Yu37e317f2014-03-19 12:16:23 -0700[diff] [blame]93 boost::filesystem::path identityDir = boost::filesystem::path(getenv("HOME")) / ".ndn";
Yingdi Yu0b9c3152014-01-26 16:31:18 -0800[diff] [blame]94 boost::filesystem::create_directories (identityDir);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]95
Alexander Afanasyev5b60f702014-02-07 12:55:24 -0800[diff] [blame]96 /// @todo Add define for windows/unix in wscript. The following may completely fail on windows
97 int res = sqlite3_open_v2((identityDir / "ndnsec-public-info.db").c_str(), &m_database,
98 SQLITE_OPEN_READWRITE | SQLITE_OPEN_CREATE,
Alexander Afanasyev44471462014-02-12 11:21:51 -0800[diff] [blame]99#ifdef NDN_CPP_DISABLE_SQLITE3_FS_LOCKING
100 "unix-dotfile"
Alexander Afanasyev5b60f702014-02-07 12:55:24 -0800[diff] [blame]101#else
102 0
103#endif
104 );
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]105 if (res != SQLITE_OK)
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]106 throw Error("identity DB cannot be opened/created");
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]107
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]108 //Check if Key table exists;
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]109 sqlite3_stmt* statement;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]110 sqlite3_prepare_v2(m_database, "SELECT name FROM sqlite_master WHERE type='table' And name='Identity'", -1, &statement, 0);
Jeff Thompson351ac302013-10-19 18:45:00 -0700[diff] [blame]111 res = sqlite3_step(statement);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]112
113 bool idTableExists = false;
114 if (res == SQLITE_ROW)
115 idTableExists = true;
116
117 sqlite3_finalize(statement);
118
119 if (!idTableExists) {
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]120 char* errorMessage = 0;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]121 res = sqlite3_exec(m_database, INIT_ID_TABLE.c_str(), NULL, NULL, &errorMessage);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]122
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]123 if (res != SQLITE_OK && errorMessage != 0) {
124 _LOG_TRACE("Init \"error\" in Identity: " << errorMessage);
125 sqlite3_free(errorMessage);
126 }
127 }
128
129 //Check if Key table exists;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]130 sqlite3_prepare_v2(m_database, "SELECT name FROM sqlite_master WHERE type='table' And name='Key'", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]131 res = sqlite3_step(statement);
132
133 bool keyTableExists = false;
134 if (res == SQLITE_ROW)
135 keyTableExists = true;
136
137 sqlite3_finalize(statement);
138
139 if (!keyTableExists) {
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]140 char* errorMessage = 0;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]141 res = sqlite3_exec(m_database, INIT_KEY_TABLE.c_str(), NULL, NULL, &errorMessage);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]142
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]143 if (res != SQLITE_OK && errorMessage != 0) {
144 _LOG_TRACE("Init \"error\" in KEY: " << errorMessage);
145 sqlite3_free(errorMessage);
146 }
147 }
148
149 //Check if Certificate table exists;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]150 sqlite3_prepare_v2(m_database, "SELECT name FROM sqlite_master WHERE type='table' And name='Certificate'", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]151 res = sqlite3_step(statement);
152
153 bool idCertificateTableExists = false;
154 if (res == SQLITE_ROW)
155 idCertificateTableExists = true;
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]156
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]157 sqlite3_finalize(statement);
158
159 if (!idCertificateTableExists) {
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]160 char* errorMessage = 0;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]161 res = sqlite3_exec(m_database, INIT_CERT_TABLE.c_str(), NULL, NULL, &errorMessage);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]162
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]163 if (res != SQLITE_OK && errorMessage != 0) {
164 _LOG_TRACE("Init \"error\" in ID-CERT: " << errorMessage);
165 sqlite3_free(errorMessage);
166 }
167 }
168}
169
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]170SecPublicInfoSqlite3::~SecPublicInfoSqlite3()
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]171{
172}
173
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]174bool
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]175SecPublicInfoSqlite3::doesIdentityExist(const Name& identityName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]176{
177 bool result = false;
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]178
179 sqlite3_stmt* statement;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]180 sqlite3_prepare_v2(m_database, "SELECT count(*) FROM Identity WHERE identity_name=?", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]181
182 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
183 int res = sqlite3_step(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]184
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]185 if (res == SQLITE_ROW) {
186 int countAll = sqlite3_column_int(statement, 0);
187 if (countAll > 0)
188 result = true;
189 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]190
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]191 sqlite3_finalize(statement);
192
193 return result;
194}
195
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]196void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]197SecPublicInfoSqlite3::addIdentity(const Name& identityName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]198{
Yingdi Yu05842f22014-04-15 19:21:56 -0700[diff] [blame^]199 if (doesIdentityExist(identityName))
200 return;
201
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]202 sqlite3_stmt* statement;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]203
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]204 sqlite3_prepare_v2(m_database, "INSERT OR REPLACE INTO Identity (identity_name) values (?)", -1, &statement, 0);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]205
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]206 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]207
Alexander Afanasyev736708b2014-01-06 14:45:34 -0800[diff] [blame]208 sqlite3_step(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]209
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]210 sqlite3_finalize(statement);
211}
212
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]213bool
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]214SecPublicInfoSqlite3::revokeIdentity()
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]215{
216 //TODO:
217 return false;
218}
219
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]220bool
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]221SecPublicInfoSqlite3::doesPublicKeyExist(const Name& keyName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]222{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]223 if (keyName.empty())
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]224 throw Error("Incorrect key name " + keyName.toUri());
225
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]226 string keyId = keyName.get(-1).toEscapedString();
227 Name identityName = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]228
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]229 sqlite3_stmt* statement;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]230 sqlite3_prepare_v2(m_database, "SELECT count(*) FROM Key WHERE identity_name=? AND key_identifier=?", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]231
232 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
233 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
234
235 int res = sqlite3_step(statement);
236
237 bool keyIdExist = false;
238 if (res == SQLITE_ROW) {
239 int countAll = sqlite3_column_int(statement, 0);
240 if (countAll > 0)
241 keyIdExist = true;
242 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]243
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]244 sqlite3_finalize(statement);
245
246 return keyIdExist;
247}
248
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]249void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]250SecPublicInfoSqlite3::addPublicKey(const Name& keyName, KeyType keyType, const PublicKey& publicKeyDer)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]251{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]252 if (keyName.empty())
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]253 return;
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]254
Yingdi Yu05842f22014-04-15 19:21:56 -0700[diff] [blame^]255 if (doesPublicKeyExist(keyName))
256 return;
257
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]258 string keyId = keyName.get(-1).toEscapedString();
259 Name identityName = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]260
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]261 addIdentity(identityName);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]262
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]263 sqlite3_stmt* statement;
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]264 sqlite3_prepare_v2(m_database, "INSERT OR REPLACE INTO Key (identity_name, key_identifier, key_type, public_key) values (?, ?, ?, ?)", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]265
266 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
267 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
268 sqlite3_bind_int(statement, 3, (int)keyType);
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]269 sqlite3_bind_blob(statement, 4, publicKeyDer.get().buf(), publicKeyDer.get().size(), SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]270
Alexander Afanasyev736708b2014-01-06 14:45:34 -0800[diff] [blame]271 sqlite3_step(statement);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]272
273 sqlite3_finalize(statement);
274}
275
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]276shared_ptr<PublicKey>
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]277SecPublicInfoSqlite3::getPublicKey(const Name& keyName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]278{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]279 if (keyName.empty())
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]280 {
281 _LOG_DEBUG("SecPublicInfoSqlite3::getPublicKey Empty keyName");
282 throw Error("SecPublicInfoSqlite3::getPublicKey Empty keyName");
283 }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]284
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]285 string keyId = keyName.get(-1).toEscapedString();
286 Name identityName = keyName.getPrefix(-1);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]287
288 sqlite3_stmt* statement;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]289 sqlite3_prepare_v2(m_database, "SELECT public_key FROM Key WHERE identity_name=? AND key_identifier=?", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]290
291 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
292 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
293
294 int res = sqlite3_step(statement);
295
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]296 shared_ptr<PublicKey> result;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]297 if (res == SQLITE_ROW)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]298 {
299 result = make_shared<PublicKey>(static_cast<const uint8_t*>(sqlite3_column_blob(statement, 0)), sqlite3_column_bytes(statement, 0));
300 sqlite3_finalize(statement);
301 return result;
302 }
303 else
304 {
305 sqlite3_finalize(statement);
306 throw Error("SecPublicInfoSqlite3::getPublicKey public key does not exist");
307 }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]308}
309
310bool
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]311SecPublicInfoSqlite3::doesCertificateExist(const Name& certificateName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]312{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]313 sqlite3_stmt* statement;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]314 sqlite3_prepare_v2(m_database, "SELECT count(*) FROM Certificate WHERE cert_name=?", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]315
316 sqlite3_bind_text(statement, 1, certificateName.toUri(), SQLITE_TRANSIENT);
317
318 int res = sqlite3_step(statement);
319
320 bool certExist = false;
321 if (res == SQLITE_ROW) {
322 int countAll = sqlite3_column_int(statement, 0);
323 if (countAll > 0)
324 certExist = true;
325 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]326
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]327 sqlite3_finalize(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]328
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]329 return certExist;
330}
331
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]332// void
333// SecPublicInfoSqlite3::addAnyCertificate(const IdentityCertificate& certificate)
334// {
335// std::string certificateName = certificate.getName().toUri();
336// Name keyName = IdentityCertificate::certificateNameToPublicKeyName(certificate.getName());
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]337
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]338// if (keyName.empty())
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]339// return;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]340
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]341// std::string keyId = keyName.get(-1).toEscapedString();
342// std::string identityName = keyName.getPrefix(-1).toUri();
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]343
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]344// sqlite3_stmt* statement;
345// sqlite3_prepare_v2(m_database,
Alexander Afanasyev1dd95c52014-03-22 19:11:36 -0700[diff] [blame]346// "INSERT OR REPLACE INTO Certificate (cert_name, cert_issuer, identity_name, key_identifier, not_before, not_after, certificate_data) "
347// "VALUES (?, ?, ?, ?, datetime(?, 'unixepoch'), datetime(?, 'unixepoch'), ?)",
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]348// -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]349
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]350// _LOG_DEBUG("certName: " << certificateName);
351// sqlite3_bind_text(statement, 1, certificateName, SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]352
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]353// try
354// {
355// SignatureSha256WithRsa signature(certificate.getSignature());
356// std::string signerName = signature.getKeyLocator().getName().toUri();
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]357
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]358// sqlite3_bind_text(statement, 2, signerName, SQLITE_STATIC);
359// }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]360// catch (KeyLocator::Error& e)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]361// {
362// _LOG_DEBUG("SecPublicInfoSqlite3::addAnyCertificate unsupported keylocator type");
363// return;
364// }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]365// catch (SignatureSha256WithRsa::Error& e)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]366// {
367// _LOG_DEBUG("SecPublicInfoSqlite3::addAnyCertificate unsupported signature type");
368// return;
369// }
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]370
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]371// sqlite3_bind_text(statement, 3, identityName, SQLITE_STATIC);
372// sqlite3_bind_text(statement, 4, keyId, SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]373
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]374// // Convert from time::milliseconds to time::seconds since 1/1/1970.
375// sqlite3_bind_int64(statement, 5, static_cast<sqlite3_int64>(
376// time::toUnixTimestamp(certificate.getNotBefore()).count()));
377// sqlite3_bind_int64(statement, 6, static_cast<sqlite3_int64>(
378// time::toUnixTimestamp(certificate.getNotAfter()).count()));
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]379
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]380// sqlite3_bind_blob(statement, 7, certificate.wireEncode().wire(), certificate.wireEncode().size(), SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]381
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]382// sqlite3_step(statement);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]383
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]384// sqlite3_finalize(statement);
385// }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]386
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]387void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]388SecPublicInfoSqlite3::addCertificate(const IdentityCertificate& certificate)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]389{
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]390 const Name& certificateName = certificate.getName();
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]391 Name keyName =
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]392 IdentityCertificate::certificateNameToPublicKeyName(certificate.getName()); // KeyName is from IdentityCertificate name, so should be qualified.
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]393
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]394 addPublicKey(keyName, KEY_TYPE_RSA, certificate.getPublicKeyInfo()); //HACK!!! Assume the key type is RSA, we should check more.
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]395
Yingdi Yu05842f22014-04-15 19:21:56 -0700[diff] [blame^]396 if (doesCertificateExist(certificateName))
397 return;
398
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]399 string keyId = keyName.get(-1).toEscapedString();
400 Name identity = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]401
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]402 // Insert the certificate
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]403 sqlite3_stmt* statement;
404 sqlite3_prepare_v2(m_database,
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]405 "INSERT OR REPLACE INTO Certificate (cert_name, cert_issuer, identity_name, key_identifier, not_before, not_after, certificate_data)\
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]406 values (?, ?, ?, ?, datetime(?, 'unixepoch'), datetime(?, 'unixepoch'), ?)",
407 -1, &statement, 0);
408
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]409 _LOG_DEBUG("certName: " << certificateName.toUri());
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]410 sqlite3_bind_text(statement, 1, certificateName.toUri(), SQLITE_TRANSIENT);
411
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]412 try
413 {
414 // this will throw an exception if the signature is not the standard one or there is no key locator present
415 SignatureSha256WithRsa signature(certificate.getSignature());
416 std::string signerName = signature.getKeyLocator().getName().toUri();
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]417
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]418 sqlite3_bind_text(statement, 2, signerName, SQLITE_STATIC);
419 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]420 catch (KeyLocator::Error& e)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]421 {
422 _LOG_DEBUG("SecPublicInfoSqlite3::addAnyCertificate unsupported keylocator type");
423 return;
424 }
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]425 catch (SignatureSha256WithRsa::Error& e)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]426 {
427 _LOG_DEBUG("SecPublicInfoSqlite3::addAnyCertificate unsupported signature type");
428 return;
429 }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]430
431 sqlite3_bind_text(statement, 3, identity.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]432 sqlite3_bind_text(statement, 4, keyId, SQLITE_STATIC);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]433
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]434 sqlite3_bind_int64(statement, 5, static_cast<sqlite3_int64>(
435 time::toUnixTimestamp(certificate.getNotBefore()).count()));
436 sqlite3_bind_int64(statement, 6, static_cast<sqlite3_int64>(
437 time::toUnixTimestamp(certificate.getNotAfter()).count()));
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]438
Alexander Afanasyevfab95ed2014-01-05 23:26:30 -0800[diff] [blame]439 sqlite3_bind_blob(statement, 7, certificate.wireEncode().wire(), certificate.wireEncode().size(), SQLITE_TRANSIENT);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]440
Alexander Afanasyev736708b2014-01-06 14:45:34 -0800[diff] [blame]441 sqlite3_step(statement);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]442
443 sqlite3_finalize(statement);
444}
445
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]446shared_ptr<IdentityCertificate>
447SecPublicInfoSqlite3::getCertificate(const Name& certificateName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]448{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]449 sqlite3_stmt* statement;
450
451 sqlite3_prepare_v2(m_database,
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]452 "SELECT certificate_data FROM Certificate WHERE cert_name=?",
453 -1, &statement, 0);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]454
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]455 sqlite3_bind_text(statement, 1, certificateName.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]456
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]457 int res = sqlite3_step(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]458
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]459 if (res == SQLITE_ROW)
460 {
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]461 shared_ptr<IdentityCertificate> certificate = make_shared<IdentityCertificate>();
Alexander Afanasyevaa0e7da2014-03-17 14:37:33 -0700[diff] [blame]462 certificate->wireDecode(Block((const uint8_t*)sqlite3_column_blob(statement, 0),
463 sqlite3_column_bytes(statement, 0)));
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]464 sqlite3_finalize(statement);
465 return certificate;
Yingdi Yu4270f202014-01-28 14:19:16 -0800[diff] [blame]466 }
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]467 else
468 {
469 sqlite3_finalize(statement);
470 throw Error("SecPublicInfoSqlite3::getCertificate certificate does not exist");
471 }
Jeff Thompson1975def2013-10-09 17:06:43 -0700[diff] [blame]472}
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]473
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]474
475Name
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]476SecPublicInfoSqlite3::getDefaultIdentity()
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]477{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]478 sqlite3_stmt* statement;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]479 sqlite3_prepare_v2(m_database, "SELECT identity_name FROM Identity WHERE default_identity=1", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]480
481 int res = sqlite3_step(statement);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]482
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]483 if (res == SQLITE_ROW)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]484 {
485 Name identity = Name(string(reinterpret_cast<const char *>(sqlite3_column_text(statement, 0)), sqlite3_column_bytes(statement, 0)));
486 sqlite3_finalize(statement);
487 return identity;
488 }
489 else
490 {
491 sqlite3_finalize(statement);
492 throw Error("SecPublicInfoSqlite3::getDefaultIdentity no default identity");
493 }
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]494}
495
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]496void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]497SecPublicInfoSqlite3::setDefaultIdentityInternal(const Name& identityName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]498{
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]499 addIdentity(identityName);
500
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]501 sqlite3_stmt* statement;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]502
503 //Reset previous default identity
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]504 sqlite3_prepare_v2(m_database, "UPDATE Identity SET default_identity=0 WHERE default_identity=1", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]505
506 while (sqlite3_step(statement) == SQLITE_ROW)
507 {}
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]508
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]509 sqlite3_finalize(statement);
510
511 //Set current default identity
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]512 sqlite3_prepare_v2(m_database, "UPDATE Identity SET default_identity=1 WHERE identity_name=?", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]513
514 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]515
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]516 sqlite3_step(statement);
517
518 sqlite3_finalize(statement);
519}
520
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]521Name
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]522SecPublicInfoSqlite3::getDefaultKeyNameForIdentity(const Name& identityName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]523{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]524 sqlite3_stmt* statement;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]525 sqlite3_prepare_v2(m_database, "SELECT key_identifier FROM Key WHERE identity_name=? AND default_key=1", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]526
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]527 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
528
529 int res = sqlite3_step(statement);
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]530
531 if (res == SQLITE_ROW)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]532 {
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]533 Name keyName = Name(identityName).append(string(reinterpret_cast<const char *>(sqlite3_column_text(statement, 0)),
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]534 sqlite3_column_bytes(statement, 0)));
535 sqlite3_finalize(statement);
536 return keyName;
537 }
538 else
539 {
540 sqlite3_finalize(statement);
541 throw Error("SecPublicInfoSqlite3::getDefaultKeyNameForIdentity key not found");
542 }
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]543}
544
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]545void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]546SecPublicInfoSqlite3::setDefaultKeyNameForIdentityInternal(const Name& keyName)
547{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]548 if (!doesPublicKeyExist(keyName))
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]549 throw Error("SecPublicInfoSqlite3::setDefaultKeyNameForIdentityInternal Key does not exist:" + keyName.toUri());
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]550
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]551 string keyId = keyName.get(-1).toEscapedString();
552 Name identityName = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]553
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]554 sqlite3_stmt* statement;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]555
556 //Reset previous default Key
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]557 sqlite3_prepare_v2(m_database, "UPDATE Key SET default_key=0 WHERE default_key=1 and identity_name=?", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]558
559 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
560
561 while (sqlite3_step(statement) == SQLITE_ROW)
562 {}
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]563
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]564 sqlite3_finalize(statement);
565
566 //Set current default Key
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]567 sqlite3_prepare_v2(m_database, "UPDATE Key SET default_key=1 WHERE identity_name=? AND key_identifier=?", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]568
569 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
570 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]571
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]572 sqlite3_step(statement);
573
574 sqlite3_finalize(statement);
575}
576
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]577Name
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]578SecPublicInfoSqlite3::getDefaultCertificateNameForKey(const Name& keyName)
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]579{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]580 if (keyName.empty())
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]581 throw Error("SecPublicInfoSqlite3::getDefaultCertificateNameForKey wrong key");
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]582
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]583 string keyId = keyName.get(-1).toEscapedString();
584 Name identityName = keyName.getPrefix(-1);
585
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]586 sqlite3_stmt* statement;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]587 sqlite3_prepare_v2(m_database, "SELECT cert_name FROM Certificate WHERE identity_name=? AND key_identifier=? AND default_cert=1", -1, &statement, 0);
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]588
589 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
590 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
591
592 int res = sqlite3_step(statement);
593
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]594 if (res == SQLITE_ROW)
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]595 {
596 Name certName = Name(string(reinterpret_cast<const char *>(sqlite3_column_text(statement, 0)), sqlite3_column_bytes(statement, 0)));
597 sqlite3_finalize(statement);
598 return certName;
599 }
600 else
601 {
602 sqlite3_finalize(statement);
603 throw Error("SecPublicInfoSqlite3::getDefaultCertificateNameForKey certificate not found");
604 }
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]605}
606
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]607void
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]608SecPublicInfoSqlite3::setDefaultCertificateNameForKeyInternal(const Name& certificateName)
609{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]610 if (!doesCertificateExist(certificateName))
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]611 throw Error("SecPublicInfoSqlite3::setDefaultCertificateNameForKeyInternal certificate does not exist:" + certificateName.toUri());
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]612
Yingdi Yu2e57a582014-02-20 23:34:43 -0800[diff] [blame]613 Name keyName = IdentityCertificate::certificateNameToPublicKeyName(certificateName);
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]614 string keyId = keyName.get(-1).toEscapedString();
615 Name identityName = keyName.getPrefix(-1);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]616
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]617 sqlite3_stmt* statement;
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]618
619 //Reset previous default Key
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]620 sqlite3_prepare_v2(m_database, "UPDATE Certificate SET default_cert=0 WHERE default_cert=1 AND identity_name=? AND key_identifier=?", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]621
622 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
623 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
624
625 while (sqlite3_step(statement) == SQLITE_ROW)
626 {}
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]627
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]628 sqlite3_finalize(statement);
629
630 //Set current default Key
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]631 sqlite3_prepare_v2(m_database, "UPDATE Certificate SET default_cert=1 WHERE identity_name=? AND key_identifier=? AND cert_name=?", -1, &statement, 0);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]632
633 sqlite3_bind_text(statement, 1, identityName.toUri(), SQLITE_TRANSIENT);
634 sqlite3_bind_text(statement, 2, keyId, SQLITE_TRANSIENT);
635 sqlite3_bind_text(statement, 3, certificateName.toUri(), SQLITE_TRANSIENT);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]636
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]637 sqlite3_step(statement);
638
639 sqlite3_finalize(statement);
640}
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]641
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]642void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]643SecPublicInfoSqlite3::getAllIdentities(vector<Name>& nameList, bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]644{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]645 sqlite3_stmt* stmt;
646 if (isDefault)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]647 sqlite3_prepare_v2 (m_database, "SELECT identity_name FROM Identity WHERE default_identity=1", -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]648 else
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]649 sqlite3_prepare_v2 (m_database, "SELECT identity_name FROM Identity WHERE default_identity=0", -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]650
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]651 while(sqlite3_step (stmt) == SQLITE_ROW)
652 nameList.push_back(Name(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)), sqlite3_column_bytes (stmt, 0))));
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]653
654 sqlite3_finalize (stmt);
Jeff Thompson7ca11f22013-10-04 19:01:30 -0700[diff] [blame]655}
656
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]657void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]658SecPublicInfoSqlite3::getAllKeyNames(vector<Name>& nameList, bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]659{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]660 sqlite3_stmt* stmt;
661 if (isDefault)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]662 sqlite3_prepare_v2 (m_database, "SELECT identity_name, key_identifier FROM Key WHERE default_key=1", -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]663 else
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]664 sqlite3_prepare_v2 (m_database, "SELECT identity_name, key_identifier FROM Key WHERE default_key=0", -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]665
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]666 while(sqlite3_step (stmt) == SQLITE_ROW)
667 {
668 Name keyName(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)), sqlite3_column_bytes (stmt, 0)));
669 keyName.append(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 1)), sqlite3_column_bytes (stmt, 1)));
670 nameList.push_back(keyName);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]671 }
672 sqlite3_finalize (stmt);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]673}
674
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]675void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]676SecPublicInfoSqlite3::getAllKeyNamesOfIdentity(const Name& identity, vector<Name>& nameList, bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]677{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]678 sqlite3_stmt* stmt;
679 if (isDefault)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]680 sqlite3_prepare_v2 (m_database, "SELECT key_identifier FROM Key WHERE default_key=1 and identity_name=?", -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]681 else
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]682 sqlite3_prepare_v2 (m_database, "SELECT key_identifier FROM Key WHERE default_key=0 and identity_name=?", -1, &stmt, 0);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]683
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]684 sqlite3_bind_text(stmt, 1, identity.toUri().c_str(), identity.toUri().size (), SQLITE_TRANSIENT);
685
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]686 while(sqlite3_step (stmt) == SQLITE_ROW)
687 {
688 Name keyName(identity);
689 keyName.append(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)), sqlite3_column_bytes (stmt, 0)));
690 nameList.push_back(keyName);
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]691 }
692 sqlite3_finalize (stmt);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]693}
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]694
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]695void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]696SecPublicInfoSqlite3::getAllCertificateNames(vector<Name>& nameList, bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]697{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]698 sqlite3_stmt* stmt;
699 if (isDefault)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]700 sqlite3_prepare_v2 (m_database, "SELECT cert_name FROM Certificate WHERE default_cert=1", -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]701 else
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]702 sqlite3_prepare_v2 (m_database, "SELECT cert_name FROM Certificate WHERE default_cert=0", -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]703
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]704 while(sqlite3_step (stmt) == SQLITE_ROW)
705 nameList.push_back(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)), sqlite3_column_bytes (stmt, 0)));
706
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]707 sqlite3_finalize (stmt);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]708}
709
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]710void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]711SecPublicInfoSqlite3::getAllCertificateNamesOfKey(const Name& keyName, vector<Name>& nameList, bool isDefault)
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]712{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]713 if (keyName.empty())
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]714 return;
Yingdi Yu88663af2014-01-15 15:21:38 -0800[diff] [blame]715
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]716 sqlite3_stmt* stmt;
717 if (isDefault)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]718 sqlite3_prepare_v2 (m_database, "SELECT cert_name FROM Certificate WHERE default_cert=1 and identity_name=? and key_identifier=?", -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]719 else
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]720 sqlite3_prepare_v2 (m_database, "SELECT cert_name FROM Certificate WHERE default_cert=0 and identity_name=? and key_identifier=?", -1, &stmt, 0);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]721
Yingdi Yu87581582014-01-14 14:28:39 -0800[diff] [blame]722 Name identity = keyName.getPrefix(-1);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]723 sqlite3_bind_text(stmt, 1, identity.toUri().c_str(), identity.toUri().size (), SQLITE_TRANSIENT);
724 std::string baseKeyName = keyName.get(-1).toEscapedString();
725 sqlite3_bind_text(stmt, 2, baseKeyName.c_str(), baseKeyName.size(), SQLITE_TRANSIENT);
726
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]727 while(sqlite3_step (stmt) == SQLITE_ROW)
728 nameList.push_back(string(reinterpret_cast<const char *>(sqlite3_column_text(stmt, 0)), sqlite3_column_bytes (stmt, 0)));
729
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]730 sqlite3_finalize (stmt);
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]731}
732
733void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]734SecPublicInfoSqlite3::deleteCertificateInfo(const Name& certName)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]735{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]736 if (certName.empty())
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]737 return;
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]738
739 sqlite3_stmt* stmt;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]740 sqlite3_prepare_v2(m_database, "DELETE FROM Certificate WHERE cert_name=?", -1, &stmt, 0);
741 sqlite3_bind_text(stmt, 1, certName.toUri().c_str(), certName.toUri().size (), SQLITE_TRANSIENT);
742 sqlite3_step(stmt);
743 sqlite3_finalize (stmt);
744}
745
746void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]747SecPublicInfoSqlite3::deletePublicKeyInfo(const Name& keyName)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]748{
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]749 if (keyName.empty())
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]750 return;
751
752 string identity = keyName.getPrefix(-1).toUri();
753 string keyId = keyName.get(-1).toEscapedString();
754
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]755 sqlite3_stmt* stmt;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]756 sqlite3_prepare_v2(m_database, "DELETE FROM Certificate WHERE identity_name=? and key_identifier=?", -1, &stmt, 0);
757 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
758 sqlite3_bind_text(stmt, 2, keyId.c_str(), keyId.size(), SQLITE_TRANSIENT);
759 sqlite3_step(stmt);
760 sqlite3_finalize (stmt);
761
762 sqlite3_prepare_v2(m_database, "DELETE FROM Key WHERE identity_name=? and key_identifier=?", -1, &stmt, 0);
763 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
764 sqlite3_bind_text(stmt, 2, keyId.c_str(), keyId.size(), SQLITE_TRANSIENT);
765 sqlite3_step(stmt);
766 sqlite3_finalize (stmt);
767}
768
769void
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]770SecPublicInfoSqlite3::deleteIdentityInfo(const Name& identityName)
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]771{
772 string identity = identityName.toUri();
773
Alexander Afanasyevfdbfc6d2014-04-14 15:12:11 -0700[diff] [blame]774 sqlite3_stmt* stmt;
Yingdi Yu28fd32f2014-01-28 19:03:03 -0800[diff] [blame]775 sqlite3_prepare_v2(m_database, "DELETE FROM Certificate WHERE identity_name=?", -1, &stmt, 0);
776 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
777 sqlite3_step(stmt);
778 sqlite3_finalize (stmt);
779
780 sqlite3_prepare_v2(m_database, "DELETE FROM Key WHERE identity_name=?", -1, &stmt, 0);
781 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
782 sqlite3_step(stmt);
783 sqlite3_finalize (stmt);
784
785 sqlite3_prepare_v2(m_database, "DELETE FROM Identity WHERE identity_name=?", -1, &stmt, 0);
786 sqlite3_bind_text(stmt, 1, identity.c_str(), identity.size (), SQLITE_TRANSIENT);
787 sqlite3_step(stmt);
788 sqlite3_finalize (stmt);
Alexander Afanasyev0c632112013-12-30 15:59:31 -0800[diff] [blame]789}
790
791} // namespace ndn