Gitiles
Code Review Sign In
gerrit.named-data.net / ndncert / 74f837db33afc72f37fe5174afed452b56267e72 / . / src / requester-request.cpp
blob: 0e8565e6cf4c979a924caa1993a19179da122ce3 [file] [log] [blame]
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]2/*
Davide Pesavento9510c912024-02-25 17:50:05 -0500[diff] [blame]3 * Copyright (c) 2017-2024, Regents of the University of California.
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]4 *
5 * This file is part of ndncert, a certificate management system based on NDN.
6 *
7 * ndncert is free software: you can redistribute it and/or modify it under the terms
8 * of the GNU General Public License as published by the Free Software Foundation, either
9 * version 3 of the License, or (at your option) any later version.
10 *
11 * ndncert is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License along with
16 * ndncert, e.g., in COPYING.md file. If not, see <http://www.gnu.org/licenses/>.
17 *
18 * See AUTHORS.md for complete list of ndncert authors and contributors.
19 */
20
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]21#include "requester-request.hpp"
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]22
Zhiyi Zhang84e11842020-11-19 20:03:23 -0800[diff] [blame]23#include "challenge/challenge-module.hpp"
Zhiyi Zhangdc25ddf2020-10-20 14:28:55 -0700[diff] [blame]24#include "detail/crypto-helpers.hpp"
Zhiyi Zhang062be6d2020-10-14 17:13:43 -0700[diff] [blame]25#include "detail/challenge-encoder.hpp"
26#include "detail/error-encoder.hpp"
27#include "detail/info-encoder.hpp"
Zhiyi Zhang7cca76a2021-02-17 14:57:42 -0800[diff] [blame]28#include "detail/request-encoder.hpp"
Zhiyi Zhang062be6d2020-10-14 17:13:43 -0700[diff] [blame]29#include "detail/probe-encoder.hpp"
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]30
31#include <ndn-cxx/metadata-object.hpp>
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]32#include <ndn-cxx/security/signing-helpers.hpp>
33#include <ndn-cxx/security/transform/base64-encode.hpp>
34#include <ndn-cxx/security/transform/buffer-source.hpp>
35#include <ndn-cxx/security/transform/stream-sink.hpp>
36#include <ndn-cxx/security/verification-helpers.hpp>
37#include <ndn-cxx/util/io.hpp>
Davide Pesavento9510c912024-02-25 17:50:05 -0500[diff] [blame]38#include <ndn-cxx/util/logger.hpp>
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]39#include <ndn-cxx/util/random.hpp>
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]40
tylerliu96a67e82020-10-15 13:37:12 -0700[diff] [blame]41#include <boost/lexical_cast.hpp>
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]42
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame]43namespace ndncert::requester {
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]44
Zhiyi Zhangd61b4a82020-10-10 15:18:43 -0700[diff] [blame]45NDN_LOG_INIT(ndncert.client);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]46
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]47std::shared_ptr<Interest>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]48Request::genCaProfileDiscoveryInterest(const Name& caName)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]49{
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]50 Name contentName = caName;
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]51 if (readString(caName.at(-1)) != "CA")
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]52 contentName.append("CA");
53 contentName.append("INFO");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]54 return std::make_shared<Interest>(ndn::MetadataObject::makeDiscoveryInterest(contentName));
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]55}
56
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]57std::shared_ptr<Interest>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]58Request::genCaProfileInterestFromDiscoveryResponse(const Data& reply)
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]59{
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]60 auto metaData = ndn::MetadataObject(reply);
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]61 auto interestName = metaData.getVersionedName();
Zhiyi Zhangfbcab842020-10-07 15:17:13 -0700[diff] [blame]62 interestName.appendSegment(0);
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]63 return std::make_shared<Interest>(interestName);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]64}
65
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame]66std::optional<CaProfile>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]67Request::onCaProfileResponse(const Data& reply)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]68{
Zhiyi Zhangf22ae242020-11-17 10:51:15 -0800[diff] [blame]69 auto caItem = infotlv::decodeDataContent(reply.getContent());
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]70 if (!ndn::security::verifySignature(reply, *caItem.cert)) {
Zhiyi Zhangd61b4a82020-10-10 15:18:43 -0700[diff] [blame]71 NDN_LOG_ERROR("Cannot verify replied Data packet signature.");
tylerliu41c11532020-10-10 16:14:45 -0700[diff] [blame]72 NDN_THROW(std::runtime_error("Cannot verify replied Data packet signature."));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]73 }
74 return caItem;
75}
76
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame]77std::optional<CaProfile>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]78Request::onCaProfileResponseAfterRedirection(const Data& reply, const Name& caCertFullName)
Zhiyi Zhang837406d2020-10-05 22:01:31 -0700[diff] [blame]79{
Zhiyi Zhangf22ae242020-11-17 10:51:15 -0800[diff] [blame]80 auto caItem = infotlv::decodeDataContent(reply.getContent());
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]81 auto certBlock = caItem.cert->wireEncode();
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]82 caItem.cert = std::make_shared<Certificate>(certBlock);
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]83 if (caItem.cert->getFullName() != caCertFullName) {
Zhiyi Zhangd61b4a82020-10-10 15:18:43 -0700[diff] [blame]84 NDN_LOG_ERROR("Ca profile does not match the certificate information offered by the original CA.");
tylerliu41c11532020-10-10 16:14:45 -0700[diff] [blame]85 NDN_THROW(std::runtime_error("Cannot verify replied Data packet signature."));
Zhiyi Zhang837406d2020-10-05 22:01:31 -0700[diff] [blame]86 }
87 return onCaProfileResponse(reply);
88}
89
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]90std::shared_ptr<Interest>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]91Request::genProbeInterest(const CaProfile& ca, std::multimap<std::string, std::string>&& probeInfo)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]92{
Zhiyi Zhang44c6a352020-12-14 10:57:17 -0800[diff] [blame]93 Name interestName = ca.caPrefix;
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]94 interestName.append("CA").append("PROBE");
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]95 auto interest = std::make_shared<Interest>(interestName);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]96 interest->setMustBeFresh(true);
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame]97 interest->setApplicationParameters(probetlv::encodeApplicationParameters(probeInfo));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]98 return interest;
99}
100
101void
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]102Request::onProbeResponse(const Data& reply, const CaProfile& ca,
103 std::vector<std::pair<Name, int>>& identityNames, std::vector<Name>& otherCas)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]104{
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]105 if (!ndn::security::verifySignature(reply, *ca.cert)) {
Zhiyi Zhangd61b4a82020-10-10 15:18:43 -0700[diff] [blame]106 NDN_LOG_ERROR("Cannot verify replied Data packet signature.");
tylerliu41c11532020-10-10 16:14:45 -0700[diff] [blame]107 NDN_THROW(std::runtime_error("Cannot verify replied Data packet signature."));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]108 }
109 processIfError(reply);
Zhiyi Zhangf22ae242020-11-17 10:51:15 -0800[diff] [blame]110 probetlv::decodeDataContent(reply.getContent(), identityNames, otherCas);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]111}
112
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]113Request::Request(ndn::KeyChain& keyChain, const CaProfile& profile, RequestType requestType)
114 : m_caProfile(profile)
115 , m_type(requestType)
116 , m_keyChain(keyChain)
117{
118}
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]119
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]120std::shared_ptr<Interest>
Tianyuan Yuca23bb02022-03-09 14:09:14 -0800[diff] [blame]121Request::genNewInterest(const Name& keyName,
Davide Pesavento76304d82023-08-10 23:38:06 -0400[diff] [blame]122 const time::system_clock::time_point& notBefore,
123 const time::system_clock::time_point& notAfter)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]124{
Davide Pesavento6481e1e2024-12-22 17:44:15 -0500[diff] [blame]125 if (keyName.empty() || !m_caProfile.caPrefix.isPrefixOf(keyName)) {
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]126 return nullptr;
127 }
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]128
Davide Pesavento6481e1e2024-12-22 17:44:15 -0500[diff] [blame]129 m_identityName = ndn::security::extractIdentityFromKeyName(keyName);
130 auto identity = m_keyChain.getPib().getIdentity(m_identityName);
131 m_keyPair = identity.getKey(keyName);
132
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]133 // generate certificate request
Davide Pesavento6481e1e2024-12-22 17:44:15 -0500[diff] [blame]134 ndn::security::MakeCertificateOptions opts;
135 opts.issuerId = Name::Component("cert-request");
136 opts.validity.emplace(notBefore, notAfter);
137 auto certRequest = m_keyChain.makeCertificate(m_keyPair, signingByKey(keyName), opts);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]138
139 // generate Interest packet
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]140 Name interestName = m_caProfile.caPrefix;
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]141 interestName.append("CA").append("NEW");
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]142 auto interest = std::make_shared<Interest>(interestName);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]143 interest->setMustBeFresh(true);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]144 interest->setApplicationParameters(
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]145 requesttlv::encodeApplicationParameters(RequestType::NEW, m_ecdh.getSelfPubKey(), certRequest));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]146
147 // sign the Interest packet
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]148 m_keyChain.sign(*interest, signingByKey(keyName));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]149 return interest;
150}
151
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]152std::shared_ptr<Interest>
153Request::genRevokeInterest(const Certificate& certificate)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]154{
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]155 if (!m_caProfile.caPrefix.isPrefixOf(certificate.getName())) {
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]156 return nullptr;
157 }
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]158
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]159 // generate Interest packet
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]160 Name interestName = m_caProfile.caPrefix;
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]161 interestName.append("CA").append("REVOKE");
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]162 auto interest = std::make_shared<Interest>(interestName);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]163 interest->setMustBeFresh(true);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]164 interest->setApplicationParameters(
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]165 requesttlv::encodeApplicationParameters(RequestType::REVOKE, m_ecdh.getSelfPubKey(), certificate));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]166 return interest;
167}
168
169std::list<std::string>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]170Request::onNewRenewRevokeResponse(const Data& reply)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]171{
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]172 if (!ndn::security::verifySignature(reply, *m_caProfile.cert)) {
Zhiyi Zhangd61b4a82020-10-10 15:18:43 -0700[diff] [blame]173 NDN_LOG_ERROR("Cannot verify replied Data packet signature.");
tylerliu41c11532020-10-10 16:14:45 -0700[diff] [blame]174 NDN_THROW(std::runtime_error("Cannot verify replied Data packet signature."));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]175 }
176 processIfError(reply);
177
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]178 const auto& contentTLV = reply.getContent();
Zhiyi Zhangbed854c2020-10-20 18:25:35 -0700[diff] [blame]179 std::vector<uint8_t> ecdhKey;
180 std::array<uint8_t, 32> salt;
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]181 auto challenges = requesttlv::decodeDataContent(contentTLV, ecdhKey, salt, m_requestId);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]182
Zhiyi Zhang91f86ab2020-10-05 15:36:35 -0700[diff] [blame]183 // ECDH and HKDF
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]184 auto sharedSecret = m_ecdh.deriveSecret(ecdhKey);
Zhiyi Zhangbed854c2020-10-20 18:25:35 -0700[diff] [blame]185 hkdf(sharedSecret.data(), sharedSecret.size(),
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]186 salt.data(), salt.size(), m_aesKey.data(), m_aesKey.size(),
187 m_requestId.data(), m_requestId.size());
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]188
189 // update state
Zhiyi Zhangbed854c2020-10-20 18:25:35 -0700[diff] [blame]190 return challenges;
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]191}
192
tylerliu40226332020-11-11 15:37:16 -0800[diff] [blame]193std::multimap<std::string, std::string>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]194Request::selectOrContinueChallenge(const std::string& challengeSelected)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]195{
196 auto challenge = ChallengeModule::createChallengeModule(challengeSelected);
197 if (challenge == nullptr) {
tylerliu41c11532020-10-10 16:14:45 -0700[diff] [blame]198 NDN_THROW(std::runtime_error("The challenge selected is not supported by your current version of NDNCERT."));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]199 }
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]200 m_challengeType = challengeSelected;
201 return challenge->getRequestedParameterList(m_status, m_challengeStatus);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]202}
203
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]204std::shared_ptr<Interest>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]205Request::genChallengeInterest(std::multimap<std::string, std::string>&& parameters)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]206{
Davide Pesavento6f1a2ab2022-03-17 03:57:21 -0400[diff] [blame]207 if (m_challengeType.empty()) {
tylerliu41c11532020-10-10 16:14:45 -0700[diff] [blame]208 NDN_THROW(std::runtime_error("The challenge has not been selected."));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]209 }
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]210 auto challenge = ChallengeModule::createChallengeModule(m_challengeType);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]211 if (challenge == nullptr) {
tylerliu41c11532020-10-10 16:14:45 -0700[diff] [blame]212 NDN_THROW(std::runtime_error("The challenge selected is not supported by your current version of NDNCERT."));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]213 }
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame]214 auto challengeParams = challenge->genChallengeRequestTLV(m_status, m_challengeStatus, parameters);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]215
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]216 Name interestName = m_caProfile.caPrefix;
Davide Pesavento6f1a2ab2022-03-17 03:57:21 -0400[diff] [blame]217 interestName.append("CA").append("CHALLENGE").append(Name::Component(m_requestId));
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]218 auto interest = std::make_shared<Interest>(interestName);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]219 interest->setMustBeFresh(true);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]220
221 // encrypt the Interest parameters
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]222 auto paramBlock = encodeBlockWithAesGcm128(ndn::tlv::ApplicationParameters, m_aesKey.data(),
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]223 challengeParams.value(), challengeParams.value_size(),
Zhiyi Zhang6499edd2021-02-17 22:37:21 -0800[diff] [blame]224 m_requestId.data(), m_requestId.size(),
225 m_encryptionIv);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]226 interest->setApplicationParameters(paramBlock);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]227 m_keyChain.sign(*interest, signingByKey(m_keyPair.getName()));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]228 return interest;
229}
230
231void
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]232Request::onChallengeResponse(const Data& reply)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]233{
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]234 if (!ndn::security::verifySignature(reply, *m_caProfile.cert)) {
Zhiyi Zhangd61b4a82020-10-10 15:18:43 -0700[diff] [blame]235 NDN_LOG_ERROR("Cannot verify replied Data packet signature.");
tylerliu41c11532020-10-10 16:14:45 -0700[diff] [blame]236 NDN_THROW(std::runtime_error("Cannot verify replied Data packet signature."));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]237 }
238 processIfError(reply);
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]239 challengetlv::decodeDataContent(reply.getContent(), *this);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]240}
241
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]242std::shared_ptr<Interest>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]243Request::genCertFetchInterest() const
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]244{
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]245 auto interest = std::make_shared<Interest>(m_issuedCertName);
Tianyuan Yu60775552022-03-07 17:10:10 -0800[diff] [blame]246 if (!m_forwardingHint.empty()) {
247 interest->setForwardingHint({m_forwardingHint});
248 }
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]249 return interest;
250}
251
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]252std::shared_ptr<Certificate>
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]253Request::onCertFetchResponse(const Data& reply)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]254{
255 try {
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]256 return std::make_shared<Certificate>(reply);
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]257 }
Davide Pesavento0dc02012021-11-23 22:55:03 -0500[diff] [blame]258 catch (const std::exception&) {
Davide Pesavento64d5c8f2022-03-07 22:06:22 -0500[diff] [blame]259 NDN_LOG_ERROR("Cannot parse replied certificate");
260 NDN_THROW(std::runtime_error("Cannot parse replied certificate"));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]261 }
262}
263
264void
tylerliu4140fe82021-01-27 15:45:44 -0800[diff] [blame]265Request::processIfError(const Data& data)
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]266{
Zhiyi Zhangf22ae242020-11-17 10:51:15 -0800[diff] [blame]267 auto errorInfo = errortlv::decodefromDataContent(data.getContent());
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]268 if (std::get<0>(errorInfo) == ErrorCode::NO_ERROR) {
269 return;
270 }
Zhiyi Zhang1a222692020-10-16 11:35:49 -0700[diff] [blame]271 NDN_LOG_ERROR("Error info replied from the CA with Error code: " << std::get<0>(errorInfo) <<
272 " and Error Info: " << std::get<1>(errorInfo));
tylerliu41c11532020-10-10 16:14:45 -0700[diff] [blame]273 NDN_THROW(std::runtime_error("Error info replied from the CA with Error code: " +
Zhiyi Zhang1a222692020-10-16 11:35:49 -0700[diff] [blame]274 boost::lexical_cast<std::string>(std::get<0>(errorInfo)) +
275 " and Error Info: " + std::get<1>(errorInfo)));
Zhiyi Zhang1d3dcd22020-10-01 22:25:43 -0700[diff] [blame]276}
277
Davide Pesavento0d1d11c2022-04-11 22:11:34 -0400[diff] [blame]278} // namespace ndncert::requester