#include <sec-tpm-osx.hpp>

Inheritance diagram for ndn::SecTpmOsx:

Collaboration diagram for ndn::SecTpmOsx:

Classes
class	Error

class	Impl

Public Member Functions
	SecTpmOsx (const std::string &location="")

virtual	~SecTpmOsx ()

virtual void	setTpmPassword (const uint8_t *password, size_t passwordLength)
	set password of TPM More...

virtual void	resetTpmPassword ()
	reset password of TPM More...

virtual void	setInTerminal (bool inTerminal)
	Set inTerminal flag to. More...

virtual bool	getInTerminal () const
	Get value of inTerminal flag. More...

virtual bool	isLocked ()
	Check if TPM is locked. More...

virtual bool	unlockTpm (const char *password, size_t passwordLength, bool usePassword)
	Unlock the TPM. More...

virtual void	generateKeyPairInTpm (const Name &keyName, const KeyParams &params)
	Generate a pair of asymmetric keys. More...

virtual void	deleteKeyPairInTpm (const Name &keyName)
	Delete a key pair of asymmetric keys. More...

virtual shared_ptr< PublicKey >	getPublicKeyFromTpm (const Name &keyName)
	Get a public key. More...

virtual Block	signInTpm (const uint8_t *data, size_t dataLength, const Name &keyName, DigestAlgorithm digestAlgorithm)
	Sign data. More...

virtual ConstBufferPtr	decryptInTpm (const uint8_t *data, size_t dataLength, const Name &keyName, bool isSymmetric)
	Decrypt data. More...

virtual ConstBufferPtr	encryptInTpm (const uint8_t *data, size_t dataLength, const Name &keyName, bool isSymmetric)
	Encrypt data. More...

virtual void	generateSymmetricKeyInTpm (const Name &keyName, const KeyParams &params)
	Generate a symmetric key. More...

virtual bool	doesKeyExistInTpm (const Name &keyName, KeyClass keyClass)
	Check if a particular key exists. More...

virtual bool	generateRandomBlock (uint8_t *res, size_t size)
	Generate a random block. More...

virtual void	addAppToAcl (const Name &keyName, KeyClass keyClass, const std::string &appPath, AclType acl)
	Add the application into the ACL of a particular key. More...

Public Member Functions inherited from ndn::SecTpm
	SecTpm (const std::string &location)

virtual	~SecTpm ()

std::string	getTpmLocator ()

ConstBufferPtr	exportPrivateKeyPkcs5FromTpm (const Name &keyName, const std::string &password)
	Export a private key in PKCS#5 format. More...

bool	importPrivateKeyPkcs5IntoTpm (const Name &keyName, const uint8_t *buffer, size_t bufferSize, const std::string &password)
	Import a private key in PKCS#5 formatted. More...

Static Public Attributes
static const std::string	SCHEME

Protected Member Functions
virtual std::string	getScheme ()

virtual ConstBufferPtr	exportPrivateKeyPkcs8FromTpm (const Name &keyName)
	Export a private key in PKCS#8 format. More...

virtual bool	importPrivateKeyPkcs8IntoTpm (const Name &keyName, const uint8_t *buf, size_t size)
	Import a private key from PKCS#8 formatted. More...

virtual bool	importPublicKeyPkcs1IntoTpm (const Name &keyName, const uint8_t *buf, size_t size)
	Import a public key in PKCS#1 formatted. More...

void	generateKeyPairInTpmInternal (const Name &keyName, const KeyParams &params, bool needRetry)

void	deleteKeyPairInTpmInternal (const Name &keyName, bool needRetry)

ConstBufferPtr	exportPrivateKeyPkcs8FromTpmInternal (const Name &keyName, bool needRetry)

bool	importPrivateKeyPkcs8IntoTpmInternal (const Name &keyName, const uint8_t *buf, size_t size, bool needRetry)

Block	signInTpmInternal (const uint8_t *data, size_t dataLength, const Name &keyName, DigestAlgorithm digestAlgorithm, bool needRetry)

Protected Member Functions inherited from ndn::SecTpm
virtual bool	getImpExpPassWord (std::string &password, const std::string &prompt)
	Get import/export password. More...

Additional Inherited Members
Protected Attributes inherited from ndn::SecTpm
std::string	m_location

Detailed Description

Definition at line 37 of file sec-tpm-osx.hpp.

Constructor & Destructor Documentation

ndn::SecTpmOsx::SecTpmOsx ( const std::string & location = "" )

explicit

Definition at line 240 of file sec-tpm-osx.cpp.

Referenced by ndn::SecTpmOsx::Error::Error().

ndn::SecTpmOsx::~SecTpmOsx ( )

virtual

Definition at line 256 of file sec-tpm-osx.cpp.

Referenced by ndn::SecTpmOsx::Error::Error().

Member Function Documentation

void ndn::SecTpmOsx::setTpmPassword	(	const uint8_t *	password,
		size_t	passwordLength
	)

virtual

set password of TPM

Password is used to unlock TPM when it is locked. You should be cautious when using this method, because remembering password is kind of dangerous.

Parameters

password	The password
passwordLength	The length of password

Implements ndn::SecTpm.

Definition at line 261 of file sec-tpm-osx.cpp.

Referenced by ndn::SecTpmOsx::Error::Error().

void ndn::SecTpmOsx::resetTpmPassword ( )

virtual

reset password of TPM

Implements ndn::SecTpm.

Definition at line 270 of file sec-tpm-osx.cpp.

Referenced by ndn::SecTpmOsx::Error::Error().

void ndn::SecTpmOsx::setInTerminal ( bool inTerminal )

virtual

Set inTerminal flag to.

Parameters

inTerminal If the inTerminal flag is set, and password is not set, TPM may ask for password via terminal. inTerminal flag is set by default.

Implements ndn::SecTpm.

Definition at line 278 of file sec-tpm-osx.cpp.

Referenced by ndn::SecTpmOsx::Error::Error().

bool ndn::SecTpmOsx::getInTerminal ( ) const

virtual

Get value of inTerminal flag.

Implements ndn::SecTpm.

Definition at line 288 of file sec-tpm-osx.cpp.

Referenced by ndn::SecTpmOsx::Error::Error().

bool ndn::SecTpmOsx::isLocked ( )

virtual

Check if TPM is locked.

Implements ndn::SecTpm.

Definition at line 294 of file sec-tpm-osx.cpp.

Referenced by ndn::SecTpmOsx::Error::Error(), and unlockTpm().

bool ndn::SecTpmOsx::unlockTpm	(	const char *	password,
		size_t	passwordLength,
		bool	usePassword
	)

virtual

Unlock the TPM.

Parameters

password	The password.
passwordLength	The password size. 0 indicates no password.
usePassword	True if we want to use the supplied password to unlock the TPM.

Returns: true if TPM is unlocked, otherwise false.

Implements ndn::SecTpm.

Definition at line 306 of file sec-tpm-osx.cpp.

References isLocked().

Referenced by deleteKeyPairInTpmInternal(), ndn::SecTpmOsx::Error::Error(), exportPrivateKeyPkcs8FromTpmInternal(), generateKeyPairInTpmInternal(), importPrivateKeyPkcs8IntoTpmInternal(), and signInTpmInternal().

virtual void ndn::SecTpmOsx::generateKeyPairInTpm	(	const Name &	keyName,
		const KeyParams &	params
	)

inlinevirtual

Generate a pair of asymmetric keys.

Parameters

keyName	The name of the key pair.
params	The parameters of key.

Exceptions

SecTpm::Error if fails.

Implements ndn::SecTpm.

Definition at line 76 of file sec-tpm-osx.hpp.

References generateKeyPairInTpmInternal().

virtual void ndn::SecTpmOsx::deleteKeyPairInTpm ( const Name & keyName )

inlinevirtual

Delete a key pair of asymmetric keys.

Parameters

keyName The name of the key pair.

Implements ndn::SecTpm.

Definition at line 82 of file sec-tpm-osx.hpp.

References deleteKeyPairInTpmInternal(), and getPublicKeyFromTpm().

shared_ptr< PublicKey > ndn::SecTpmOsx::getPublicKeyFromTpm ( const Name & keyName )

virtual

Get a public key.

Parameters

keyName The public key name.

Returns: The public key.

Exceptions

SecTpm::Error if public key does not exist in TPM.

Implements ndn::SecTpm.

Definition at line 509 of file sec-tpm-osx.cpp.

References ndn::CFReleaser< T >::get(), ndn::KEY_CLASS_PUBLIC, and ndn::Name::toUri().

Referenced by deleteKeyPairInTpm(), and exportPrivateKeyPkcs8FromTpmInternal().

virtual Block ndn::SecTpmOsx::signInTpm	(	const uint8_t *	data,
		size_t	dataLength,
		const Name &	keyName,
		DigestAlgorithm	digestAlgorithm
	)

inlinevirtual

Sign data.

Parameters

data	Pointer to the byte array to be signed.
dataLength	The length of data.
keyName	The name of the signing key.
digestAlgorithm	the digest algorithm.

Returns: The signature block.

Exceptions

SecTpm::Error if signing fails.

Implements ndn::SecTpm.

Definition at line 91 of file sec-tpm-osx.hpp.

References addAppToAcl(), decryptInTpm(), doesKeyExistInTpm(), encryptInTpm(), generateRandomBlock(), generateSymmetricKeyInTpm(), getScheme(), and signInTpmInternal().

ConstBufferPtr ndn::SecTpmOsx::decryptInTpm	(	const uint8_t *	data,
		size_t	dataLength,
		const Name &	keyName,
		bool	isSymmetric
	)

virtual

Decrypt data.

Parameters

data	Pointer to the byte arry to be decrypted.
dataLength	The length of data.
keyName	The name of the decrypting key.
isSymmetric	If true symmetric encryption is used, otherwise asymmetric encryption.

Returns: The decrypted data.

Exceptions

SecTpm::Error if decryption fails.

Implements ndn::SecTpm.

Definition at line 891 of file sec-tpm-osx.cpp.

Referenced by signInTpm().

ConstBufferPtr ndn::SecTpmOsx::encryptInTpm	(	const uint8_t *	data,
		size_t	dataLength,
		const Name &	keyName,
		bool	isSymmetric
	)

virtual

Encrypt data.

Parameters

data	Pointer to the byte arry to be decrypted.
dataLength	The length of data.
keyName	The name of the encrypting key.
isSymmetric	If true symmetric encryption is used, otherwise asymmetric encryption.

Returns: The encrypted data.

Exceptions

SecTpm::Error if encryption fails.

Implements ndn::SecTpm.

Definition at line 983 of file sec-tpm-osx.cpp.

Referenced by signInTpm().

void ndn::SecTpmOsx::generateSymmetricKeyInTpm	(	const Name &	keyName,
		const KeyParams &	params
	)

virtual

Generate a symmetric key.

Parameters

keyName	The name of the key.
params	The parameter of the key.

Exceptions

SecTpm::Error if key generating fails.

Implements ndn::SecTpm.

Definition at line 474 of file sec-tpm-osx.cpp.

Referenced by signInTpm().

bool ndn::SecTpmOsx::doesKeyExistInTpm	(	const Name &	keyName,
		KeyClass	keyClass
	)

virtual

Check if a particular key exists.

Parameters

keyName	The name of the key.
keyClass	The class of the key, e.g. KEY_CLASS_PUBLIC, KEY_CLASS_PRIVATE.

Returns: True if the key exists, otherwise false.

Implements ndn::SecTpm.

Definition at line 1023 of file sec-tpm-osx.cpp.

References ndn::CFReleaser< T >::get().

Referenced by generateKeyPairInTpmInternal(), and signInTpm().

bool ndn::SecTpmOsx::generateRandomBlock	(	uint8_t *	res,
		size_t	size
	)

virtual

Generate a random block.

Parameters

res	The pointer to the generated block
size	The random block size

Returns: true for success, otherwise false

Implements ndn::SecTpm.

Definition at line 1054 of file sec-tpm-osx.cpp.

Referenced by signInTpm().

void ndn::SecTpmOsx::addAppToAcl	(	const Name &	keyName,
		KeyClass	keyClass,
		const std::string &	appPath,
		AclType	acl
	)

virtual

Add the application into the ACL of a particular key.

Parameters

keyName	the name of key
keyClass	the class of key, e.g. Private Key
appPath	the absolute path to the application
acl	the new acl of the key

Implements ndn::SecTpm.

Definition at line 935 of file sec-tpm-osx.cpp.

References ndn::ACL_TYPE_PRIVATE, ndn::CFReleaser< T >::get(), ndn::KEY_CLASS_PRIVATE, and ndn::Name::toUri().

Referenced by signInTpm().

std::string ndn::SecTpmOsx::getScheme ( )

protectedvirtual

Implements ndn::SecTpm.

Definition at line 535 of file sec-tpm-osx.cpp.

References SCHEME.

Referenced by signInTpm().

virtual ConstBufferPtr ndn::SecTpmOsx::exportPrivateKeyPkcs8FromTpm ( const Name & keyName )

inlineprotectedvirtual

Export a private key in PKCS#8 format.

Parameters

keyName The private key name.

Returns: The private key info (in PKCS#8 format) if exist, otherwise a NULL pointer.

Implements ndn::SecTpm.

Definition at line 121 of file sec-tpm-osx.hpp.

References exportPrivateKeyPkcs8FromTpmInternal().

virtual bool ndn::SecTpmOsx::importPrivateKeyPkcs8IntoTpm	(	const Name &	keyName,
		const uint8_t *	buffer,
		size_t	bufferSize
	)

inlineprotectedvirtual

Import a private key from PKCS#8 formatted.

Parameters

buffer	of size
bufferSize
keyName	The private key name.
buffer	Pointer to the first byte of the buffer containing PKCS#8-encoded private key info
bufferSize	Size of the buffer

Returns: false if import fails

Implements ndn::SecTpm.

Definition at line 127 of file sec-tpm-osx.hpp.

References deleteKeyPairInTpmInternal(), exportPrivateKeyPkcs8FromTpmInternal(), generateKeyPairInTpmInternal(), importPrivateKeyPkcs8IntoTpmInternal(), importPublicKeyPkcs1IntoTpm(), and signInTpmInternal().

bool ndn::SecTpmOsx::importPublicKeyPkcs1IntoTpm	(	const Name &	keyName,
		const uint8_t *	buffer,
		size_t	bufferSize
	)

protectedvirtual

Import a public key in PKCS#1 formatted.

Parameters

buffer	of size
bufferSize
keyName	The public key name
buffer	Pointer to the first byte of the buffer containing PKCS#1-encoded private key info
bufferSize	Size of the buffer

Returns: false if import fails

Implements ndn::SecTpm.

Definition at line 760 of file sec-tpm-osx.cpp.

References ndn::CFReleaser< T >::get(), and ndn::Name::toUri().

Referenced by importPrivateKeyPkcs8IntoTpm().

void ndn::SecTpmOsx::generateKeyPairInTpmInternal	(	const Name &	keyName,
		const KeyParams &	params,
		bool	needRetry
	)

protected

Definition at line 373 of file sec-tpm-osx.cpp.

References doesKeyExistInTpm(), ndn::CFReleaser< T >::get(), ndn::SimplePublicKeyParams< KeyParamsInfo >::getKeySize(), ndn::KeyParams::getKeyType(), ndn::KEY_CLASS_PUBLIC, ndn::KEY_TYPE_ECDSA, ndn::KEY_TYPE_RSA, and unlockTpm().

Referenced by generateKeyPairInTpm(), and importPrivateKeyPkcs8IntoTpm().

void ndn::SecTpmOsx::deleteKeyPairInTpmInternal	(	const Name &	keyName,
		bool	needRetry
	)

protected

Definition at line 446 of file sec-tpm-osx.cpp.

References ndn::CFReleaser< T >::get(), ndn::Name::toUri(), and unlockTpm().

Referenced by deleteKeyPairInTpm(), and importPrivateKeyPkcs8IntoTpm().

ConstBufferPtr ndn::SecTpmOsx::exportPrivateKeyPkcs8FromTpmInternal	(	const Name &	keyName,
		bool	needRetry
	)

protected

Definition at line 541 of file sec-tpm-osx.cpp.

References ndn::OID::decode(), ndn::OID::encode(), ndn::CFReleaser< T >::get(), getPublicKeyFromTpm(), ndn::KEY_CLASS_PRIVATE, ndn::KEY_TYPE_ECDSA, ndn::KEY_TYPE_RSA, ndn::oid::RSA, ndn::Name::toUri(), and unlockTpm().

Referenced by exportPrivateKeyPkcs8FromTpm(), and importPrivateKeyPkcs8IntoTpm().

bool ndn::SecTpmOsx::importPrivateKeyPkcs8IntoTpmInternal	(	const Name &	keyName,
		const uint8_t *	buf,
		size_t	size,
		bool	needRetry
	)

protected

Definition at line 643 of file sec-tpm-osx.cpp.

References ndn::OID::decode(), ndn::oid::ECDSA, ndn::CFReleaser< T >::get(), ndn::oid::RSA, ndn::Name::toUri(), and unlockTpm().

Referenced by importPrivateKeyPkcs8IntoTpm().

Block ndn::SecTpmOsx::signInTpmInternal	(	const uint8_t *	data,
		size_t	dataLength,
		const Name &	keyName,
		DigestAlgorithm	digestAlgorithm,
		bool	needRetry
	)

protected

Definition at line 807 of file sec-tpm-osx.cpp.

References ndn::CFReleaser< T >::get(), ndn::KEY_CLASS_PRIVATE, ndn::tlv::SignatureValue, ndn::Name::toUri(), and unlockTpm().

Referenced by importPrivateKeyPkcs8IntoTpm(), and signInTpm().

Member Data Documentation

const std::string ndn::SecTpmOsx::SCHEME

static

Definition at line 156 of file sec-tpm-osx.hpp.

Referenced by getScheme().

The documentation for this class was generated from the following files:

ndnSIM/ndn-cxx/src/security/sec-tpm-osx.hpp
ndnSIM/ndn-cxx/src/security/sec-tpm-osx.cpp

Classes

Public Member Functions

Static Public Attributes

Protected Member Functions

Additional Inherited Members

Detailed Description

Constructor & Destructor Documentation

Member Function Documentation

Member Data Documentation