d5/d4b/signing-info_8cpp_source.html

 /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
 /*
  * Copyright (c) 2013-2019 Regents of the University of California.
  *
  * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
  *
  * ndn-cxx library is free software: you can redistribute it and/or modify it under the
  * terms of the GNU Lesser General Public License as published by the Free Software
  * Foundation, either version 3 of the License, or (at your option) any later version.
  *
  * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
  * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
  * PARTICULAR PURPOSE.  See the GNU Lesser General Public License for more details.
  *
  * You should have received copies of the GNU General Public License and GNU Lesser
  * General Public License along with ndn-cxx, e.g., in COPYING.md file.  If not, see
  * <http://www.gnu.org/licenses/>.
  *
  * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
  */

 #include "ndn-cxx/security/signing-info.hpp"

 #include "ndn-cxx/encoding/buffer-stream.hpp"
 #include "ndn-cxx/security/transform/base64-decode.hpp"
 #include "ndn-cxx/security/transform/buffer-source.hpp"
 #include "ndn-cxx/security/transform/digest-filter.hpp"
 #include "ndn-cxx/security/transform/stream-sink.hpp"

 namespace ndn {
 namespace security {

 const Name&
 SigningInfo::getEmptyName()
 {
   static Name emptyName;
   return emptyName;
 }

 const SignatureInfo&
 SigningInfo::getEmptySignatureInfo()
 {
   static SignatureInfo emptySignatureInfo;
   return emptySignatureInfo;
 }

 const Name&
 SigningInfo::getDigestSha256Identity()
 {
   static Name digestSha256Identity("/localhost/identity/digest-sha256");
   return digestSha256Identity;
 }

 const Name&
 SigningInfo::getHmacIdentity()
 {
   static Name hmacIdentity("/localhost/identity/hmac");
   return hmacIdentity;
 }

 SigningInfo::SigningInfo(SignerType signerType,
                          const Name& signerName,
                          const SignatureInfo& signatureInfo)
   : m_type(signerType)
   , m_name(signerName)
   , m_digestAlgorithm(DigestAlgorithm::SHA256)
   , m_info(signatureInfo)
 {
   BOOST_ASSERT(signerType >= SIGNER_TYPE_NULL && signerType <= SIGNER_TYPE_HMAC);
 }

 SigningInfo::SigningInfo(const Identity& identity)
   : SigningInfo(SIGNER_TYPE_NULL)
 {
   this->setPibIdentity(identity);
 }

 SigningInfo::SigningInfo(const Key& key)
   : SigningInfo(SIGNER_TYPE_NULL)
 {
   this->setPibKey(key);
 }

 SigningInfo::SigningInfo(const std::string& signingStr)
   : SigningInfo(SIGNER_TYPE_NULL)
 {
   if (signingStr.empty()) {
     return;
   }

   size_t pos = signingStr.find(':');
   if (pos == std::string::npos) {
     NDN_THROW(std::invalid_argument("Invalid signing string cannot represent SigningInfo"));
   }

   std::string scheme = signingStr.substr(0, pos);
   std::string nameArg = signingStr.substr(pos + 1);

   if (scheme == "id") {
     if (nameArg == getDigestSha256Identity().toUri()) {
       setSha256Signing();
     }
     else {
       setSigningIdentity(nameArg);
     }
   }
   else if (scheme == "key") {
     setSigningKeyName(nameArg);
   }
   else if (scheme == "cert") {
     setSigningCertName(nameArg);
   }
   else if (scheme == "hmac-sha256") {
     setSigningHmacKey(nameArg);
     setDigestAlgorithm(DigestAlgorithm::SHA256);
   }
   else {
     NDN_THROW(std::invalid_argument("Invalid signing string scheme"));
   }
 }

 SigningInfo&
 SigningInfo::setSigningIdentity(const Name& identity)
 {
   m_type = SIGNER_TYPE_ID;
   m_name = identity;
   m_identity = Identity();
   return *this;
 }

 SigningInfo&
 SigningInfo::setSigningKeyName(const Name& keyName)
 {
   m_type = SIGNER_TYPE_KEY;
   m_name = keyName;
   m_key = Key();
   return *this;
 }

 SigningInfo&
 SigningInfo::setSigningCertName(const Name& certificateName)
 {
   m_type = SIGNER_TYPE_CERT;
   m_name = certificateName;
   return *this;
 }

 SigningInfo&
 SigningInfo::setSigningHmacKey(const std::string& hmacKey)
 {
   m_type = SIGNER_TYPE_HMAC;

   OBufferStream os;
   transform::bufferSource(hmacKey) >>
     transform::base64Decode(false) >>
     transform::streamSink(os);
   m_hmacKey = make_shared<transform::PrivateKey>();
   m_hmacKey->loadRaw(KeyType::HMAC, os.buf()->data(), os.buf()->size());

   // generate key name
   m_name = getHmacIdentity();
   m_name.append(name::Component(m_hmacKey->getKeyDigest(DigestAlgorithm::SHA256)));

   return *this;
 }

 SigningInfo&
 SigningInfo::setSha256Signing()
 {
   m_type = SIGNER_TYPE_SHA256;
   m_name.clear();
   return *this;
 }

 SigningInfo&
 SigningInfo::setPibIdentity(const Identity& identity)
 {
   m_type = SIGNER_TYPE_ID;
   m_name = identity ? identity.getName() : Name();
   m_identity = identity;
   return *this;
 }

 SigningInfo&
 SigningInfo::setPibKey(const Key& key)
 {
   m_type = SIGNER_TYPE_KEY;
   m_name = key ? key.getName() : Name();
   m_key = key;
   return *this;
 }

 SigningInfo&
 SigningInfo::setSignatureInfo(const SignatureInfo& signatureInfo)
 {
   m_info = signatureInfo;
   return *this;
 }

 std::ostream&
 operator<<(std::ostream& os, const SigningInfo& si)
 {
   switch (si.getSignerType()) {
     case SigningInfo::SIGNER_TYPE_NULL:
       return os;
     case SigningInfo::SIGNER_TYPE_ID:
       return os << "id:" << si.getSignerName();
     case SigningInfo::SIGNER_TYPE_KEY:
       return os << "key:" << si.getSignerName();
     case SigningInfo::SIGNER_TYPE_CERT:
       return os << "cert:" << si.getSignerName();
     case SigningInfo::SIGNER_TYPE_SHA256:
       return os << "id:" << SigningInfo::getDigestSha256Identity();
     case SigningInfo::SIGNER_TYPE_HMAC:
       return os << "id:" << si.getSignerName();
   }
   NDN_THROW(std::invalid_argument("Unknown signer type"));
   return os;
 }

 } // namespace security
 } // namespace ndn
ndn::security::SigningInfo::setPibIdentity
SigningInfo & setPibIdentity(const Identity &identity)
Set signer as a PIB identity handler identity.
Definition: signing-info.cpp:176

ndn
Definition: data.cpp:26

ndn::SignatureInfo
Represents a SignatureInfo TLV element.
Definition: signature-info.hpp:34

ndn::security::transform::base64Decode
unique_ptr< Transform > base64Decode(bool expectNewlineEvery64Bytes)
Definition: base64-decode.cpp:129

ndn::security::SigningInfo::SigningInfo
SigningInfo(SignerType signerType=SIGNER_TYPE_NULL, const Name &signerName=getEmptyName(), const SignatureInfo &signatureInfo=getEmptySignatureInfo())
Constructor.
Definition: signing-info.cpp:61

ndn::security::SigningInfo::setDigestAlgorithm
SigningInfo & setDigestAlgorithm(const DigestAlgorithm &algorithm)
Set the digest algorithm for signing operations.
Definition: signing-info.hpp:209

ndn::security::SigningInfo::SIGNER_TYPE_SHA256
Use a SHA-256 digest only, no signer needs to be specified.
Definition: signing-info.hpp:60

digest-filter.hpp

ndn::Name::append
Name & append(const Component &component)
Append a component.
Definition: name.hpp:277

ndn::security::SigningInfo
Signing parameters passed to KeyChain.
Definition: signing-info.hpp:41

NDN_THROW
#define NDN_THROW(e)
Definition: exception.hpp:61

ndn::KeyType::HMAC
HMAC key, supports sign/verify operations.

ndn::security::SigningInfo::getSignerName
const Name & getSignerName() const
Definition: signing-info.hpp:170

stream-sink.hpp

buffer-source.hpp

ndn::security::pib::Key
A frontend handle of a key instance.
Definition: key.hpp:49

ndn::security::SigningInfo::setSha256Signing
SigningInfo & setSha256Signing()
Set SHA-256 as the signing method.
Definition: signing-info.cpp:168

ndn::security::SigningInfo::SIGNER_TYPE_HMAC
Signer is a HMAC key.
Definition: signing-info.hpp:62

ndn::security::SigningInfo::SIGNER_TYPE_NULL
No signer is specified, use default setting or follow the trust schema.
Definition: signing-info.hpp:52

ndn::security::transform::streamSink
unique_ptr< Sink > streamSink(std::ostream &os)
Definition: stream-sink.cpp:53

ndn::security::transform::bufferSource
BufferSource bufferSource
Definition: buffer-source.hpp:73

ndn::security::SigningInfo::getDigestSha256Identity
static const Name & getDigestSha256Identity()
A localhost identity to indicate that the signature is generated using SHA-256.
Definition: signing-info.cpp:48

ndn::KeyIdType::SHA256
Use the SHA256 hash of the public key as key id.

ndn::Name
Represents an absolute name.
Definition: name.hpp:43

ndn::security::pib::Key::getName
const Name & getName() const
Get key name.
Definition: key.cpp:38

ndn::security::SigningInfo::SIGNER_TYPE_CERT
Signer is a certificate, use it directly.
Definition: signing-info.hpp:58

ndn::security::SigningInfo::getEmptySignatureInfo
static const SignatureInfo & getEmptySignatureInfo()
Definition: signing-info.cpp:41

signing-info.hpp

ndn::security::SigningInfo::setSigningCertName
SigningInfo & setSigningCertName(const Name &certificateName)
Set signer as a certificate with name certificateName.
Definition: signing-info.cpp:141

ndn::security::SigningInfo::SignerType
SignerType
Definition: signing-info.hpp:50

ndn::tlv::Name
Definition: tlv.hpp:67

ndn::security::SigningInfo::SIGNER_TYPE_KEY
Signer is a key, use its default certificate.
Definition: signing-info.hpp:56

ndn::security::SigningInfo::setSignatureInfo
SigningInfo & setSignatureInfo(const SignatureInfo &signatureInfo)
Set a semi-prepared SignatureInfo;.
Definition: signing-info.cpp:194

ndn::name::Component
Represents a name component.
Definition: name-component.hpp:93

ndn::security::SigningInfo::getEmptyName
static const Name & getEmptyName()
Definition: signing-info.cpp:34

ndn::OBufferStream::buf
shared_ptr< Buffer > buf()
Flush written data to the stream and return shared pointer to the underlying buffer.
Definition: buffer-stream.cpp:54

ndn::security::pib::Identity::getName
const Name & getName() const
Get the name of the identity.
Definition: identity.cpp:37

ndn::security::SigningInfo::setSigningIdentity
SigningInfo & setSigningIdentity(const Name &identity)
Set signer as an identity with name identity.
Definition: signing-info.cpp:123

ndn::security::SigningInfo::SIGNER_TYPE_ID
Signer is an identity, use its default key and default certificate.
Definition: signing-info.hpp:54

ndn::security::pib::Identity
A frontend handle of an Identity.
Definition: identity.hpp:42

ndn::OBufferStream
implements an output stream that constructs ndn::Buffer
Definition: buffer-stream.hpp:70

ndn::security::SigningInfo::setPibKey
SigningInfo & setPibKey(const Key &key)
Set signer as a PIB key handler key.
Definition: signing-info.cpp:185

buffer-stream.hpp

ndn::Name::clear
void clear()
Remove all components.
Definition: name.cpp:280

ndn::security::operator<<
std::ostream & operator<<(std::ostream &os, const SigningInfo &si)
Definition: signing-info.cpp:201

ndn::DigestAlgorithm
DigestAlgorithm
Definition: security-common.hpp:96

ndn::security::SigningInfo::getHmacIdentity
static const Name & getHmacIdentity()
A localhost identity to indicate that the signature is generated using an HMAC key.
Definition: signing-info.cpp:55

ndn::security::SigningInfo::setSigningHmacKey
SigningInfo & setSigningHmacKey(const std::string &hmacKey)
Set signer to a base64-encoded HMAC key.
Definition: signing-info.cpp:149

base64-decode.hpp

ndn::security::SigningInfo::setSigningKeyName
SigningInfo & setSigningKeyName(const Name &keyName)
Set signer as a key with name keyName.
Definition: signing-info.cpp:132

ndn::security::SigningInfo::getSignerType
SignerType getSignerType() const
Definition: signing-info.hpp:161