2.4/doxygen/back-end-file_8cpp_source.html

 /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
 #include "back-end-file.hpp"
 #include "key-handle-mem.hpp"
 #include "../transform.hpp"
 #include "../transform/private-key.hpp"
 #include "../../encoding/buffer-stream.hpp"
 #include <unordered_map>
 #include <fstream>
 #include <cstdlib>
 #include <boost/filesystem.hpp>

 namespace ndn {
 namespace security {
 namespace tpm {

 using transform::PrivateKey;

 class BackEndFile::Impl
 {
 public:
   explicit
   Impl(const std::string& dir)
   {
     if (!dir.empty()) {
       keystorePath = boost::filesystem::path(dir);
     }
 #ifdef NDN_CXX_HAVE_TESTS
     else if (getenv("TEST_HOME") != nullptr) {
       keystorePath = boost::filesystem::path(getenv("TEST_HOME")) / ".ndn";
     }
 #endif // NDN_CXX_HAVE_TESTS
     else if (getenv("HOME") != nullptr) {
       keystorePath = boost::filesystem::path(getenv("HOME")) / ".ndn";
     }
     else {
       keystorePath = boost::filesystem::current_path() / ".ndn";
     }

     keystorePath /= "ndnsec-key-file";
     boost::filesystem::create_directories(keystorePath);
   }

   boost::filesystem::path
   toFileName(const Name& keyName)
   {
     std::stringstream os;
     {
       using namespace transform;
       bufferSource(keyName.wireEncode().wire(), keyName.wireEncode().size()) >>
         digestFilter(DigestAlgorithm::SHA256) >> hexEncode() >> streamSink(os);
     }
     return keystorePath / (os.str() + ".privkey");
   }

 public:
   boost::filesystem::path keystorePath;
 };

 BackEndFile::BackEndFile(const std::string& location)
   : m_impl(new Impl(location))
 {
 }

 BackEndFile::~BackEndFile() = default;

 const std::string&
 BackEndFile::getScheme()
 {
   static std::string scheme = "tpm-file";
   return scheme;
 }

 bool
 BackEndFile::doHasKey(const Name& keyName) const
 {
   if (!boost::filesystem::exists(m_impl->toFileName(keyName)))
     return false;

   try {
     loadKey(keyName);
     return true;
   }
   catch (const std::runtime_error&) {
     return false;
   }
 }

 unique_ptr<KeyHandle>
 BackEndFile::doGetKeyHandle(const Name& keyName) const
 {
   if (!doHasKey(keyName))
     return nullptr;

   return make_unique<KeyHandleMem>(loadKey(keyName));
 }

 unique_ptr<KeyHandle>
 BackEndFile::doCreateKey(const Name& identityName, const KeyParams& params)
 {
   shared_ptr<PrivateKey> key(transform::generatePrivateKey(params).release());
   unique_ptr<KeyHandle> keyHandle = make_unique<KeyHandleMem>(key);

   setKeyName(*keyHandle, identityName, params);

   try {
     saveKey(keyHandle->getKeyName(), key);
     return keyHandle;
   }
   catch (const std::runtime_error& e) {
     BOOST_THROW_EXCEPTION(Error(std::string("Cannot write key to disk: ") + e.what()));
   }
 }

 void
 BackEndFile::doDeleteKey(const Name& keyName)
 {
   boost::filesystem::path keyPath(m_impl->toFileName(keyName));

   if (boost::filesystem::exists(keyPath)) {
     try {
       boost::filesystem::remove(keyPath);
     }
     catch (const boost::filesystem::filesystem_error&) {
       BOOST_THROW_EXCEPTION(Error("Cannot delete key"));
     }
   }
 }

 ConstBufferPtr
 BackEndFile::doExportKey(const Name& keyName, const char* pw, size_t pwLen)
 {
   shared_ptr<PrivateKey> key;
   try {
     key = loadKey(keyName);
   }
   catch (const PrivateKey::Error&) {
     BOOST_THROW_EXCEPTION(Error("Cannot export private key"));
   }
   OBufferStream os;
   key->savePkcs8(os, pw, pwLen);
   return os.buf();
 }

 void
 BackEndFile::doImportKey(const Name& keyName, const uint8_t* buf, size_t size, const char* pw, size_t pwLen)
 {
   try {
     auto key = make_shared<PrivateKey>();
     key->loadPkcs8(buf, size, pw, pwLen);
     saveKey(keyName, key);
   }
   catch (const PrivateKey::Error&) {
     BOOST_THROW_EXCEPTION(Error("Cannot import private key"));
   }
 }

 shared_ptr<PrivateKey>
 BackEndFile::loadKey(const Name& keyName) const
 {
   auto key = make_shared<PrivateKey>();
   std::fstream is(m_impl->toFileName(keyName).string(), std::ios_base::in);
   key->loadPkcs1Base64(is);
   return key;
 }

 void
 BackEndFile::saveKey(const Name& keyName, shared_ptr<PrivateKey> key)
 {
   std::string fileName = m_impl->toFileName(keyName).string();
   std::fstream os(fileName, std::ios_base::out);
   key->savePkcs1Base64(os);

   // set file permission
   chmod(fileName.c_str(), 0000400);
 }

 } // namespace tpm
 } // namespace security
 } // namespace ndn
ndn
Copyright (c) 2011-2015 Regents of the University of California.
Definition: ndn-strategy-choice-helper.hpp:34

ndn::security::transform::hexEncode
unique_ptr< Transform > hexEncode(bool useUpperCase)
Definition: hex-encode.cpp:69

ndn::Name::wireEncode
size_t wireEncode(EncodingImpl< TAG > &encoder) const
Fast encoding or block size estimation.
Definition: name.cpp:131

key-handle-mem.hpp

ndn::security::tpm::BackEndFile::Impl::keystorePath
boost::filesystem::path keystorePath
Definition: back-end-file.cpp:76

ndn::security::transform::generatePrivateKey
unique_ptr< PrivateKey > generatePrivateKey(const KeyParams &keyParams)
Generate a private key according to keyParams.
Definition: private-key.cpp:432

websocketpp::transport::asio::socket::error::security
Catch-all error for security policy errors that don&#39;t fit in other categories.
Definition: base.hpp:79

ndn::security::tpm::BackEndFile::Impl
Definition: back-end-file.cpp:38

ndn::security::tpm::BackEndFile::getScheme
static const std::string & getScheme()
Definition: back-end-file.cpp:87

ndn::security::transform::streamSink
unique_ptr< Sink > streamSink(std::ostream &os)
Definition: stream-sink.cpp:53

ndn::security::tpm::BackEndFile::BackEndFile
BackEndFile(const std::string &location="")
Create file-based TPM backend.
Definition: back-end-file.cpp:79

ndn::security::transform::bufferSource
BufferSource bufferSource
Definition: buffer-source.hpp:73

transform::PrivateKey

ndn::security::transform::digestFilter
unique_ptr< Transform > digestFilter(DigestAlgorithm algo)
Definition: digest-filter.cpp:78

ndn::KeyIdType::SHA256
Use the SHA256 hash of the public key as the key id.

ndn::Name
Represents an absolute name.
Definition: name.hpp:42

transform

ndn::security::tpm::BackEnd::setKeyName
static void setKeyName(KeyHandle &keyHandle, const Name &identity, const KeyParams &params)
Set the key name in keyHandle according to identity and params.
Definition: back-end.cpp:110

ndn::security::tpm::BackEndFile::Impl::toFileName
boost::filesystem::path toFileName(const Name &keyName)
Definition: back-end-file.cpp:64

ndn::security::tpm::BackEndFile::~BackEndFile
~BackEndFile() override

ndn::security::tpm::BackEndFile::Error
Definition: back-end-file.hpp:44

ndn::OBufferStream::buf
shared_ptr< Buffer > buf()
Flush written data to the stream and return shared pointer to the underlying buffer.
Definition: buffer-stream.cpp:54

ndn::KeyParams
Base class of key parameters.
Definition: key-params.hpp:35

ndn::OBufferStream
implements an output stream that constructs ndn::Buffer
Definition: buffer-stream.hpp:70

ndn::security::tpm::BackEndFile::Impl::Impl
Impl(const std::string &dir)
Definition: back-end-file.cpp:42

back-end-file.hpp

ndn::ConstBufferPtr
shared_ptr< const Buffer > ConstBufferPtr
Definition: buffer.hpp:89