d9/d34/naive__certificate__provider_8hpp_source.html

#ifndef NAIVE_CERTIFICATE_PROVIDER_HPP_MTULFLKX

#define NAIVE_CERTIFICATE_PROVIDER_HPP_MTULFLKX


#include <string>

#include <vanetza/common/runtime.hpp>

#include <vanetza/security/backend_cryptopp.hpp>

#include <vanetza/security/v2/certificate.hpp>

#include <vanetza/security/v2/certificate_provider.hpp>


namespace vanetza

{

namespace security

{

namespace v2

{


/**

 * \brief A very simplistic certificate provider

 *

 * This certificate provider signs its certificates with a randomly generated root certificate. This means the

 * signatures produced based on this certificate provider can't be verified by other parties.

 *

 * It's intended for experimenting with secured messages without validating signatures.

 */

class NaiveCertificateProvider : public CertificateProvider

{

public:

    NaiveCertificateProvider(const Runtime&);


    /**

     * \brief get own certificate for signing

     * \return own certificate

     */

    const Certificate& own_certificate() override;


    /**

     * Get own certificate chain, excluding the leaf certificate and root CA

     * \return own certificate chain

     */

    std::list<Certificate> own_chain() override;


    /**

     * \brief get own private key

     * \return private key

     */

    const ecdsa256::PrivateKey& own_private_key() override;


    /**

     * \brief get ticket signer certificate (same for all instances)

     * \return signing authorization authority certificate

     */

    const Certificate& aa_certificate();


    /**

     * \brief get root certificate (same for all instances)

     * \return signing root certificate

     */

    const Certificate& root_certificate();


    /**

     * \brief generate an authorization ticket

     * \return generated certificate

     */

    Certificate generate_authorization_ticket();


    /**

     * \brief sign an authorization ticket

     * \param certificate certificate to sign

     */

    void sign_authorization_ticket(Certificate& certificate);


private:

    /**

     * \brief get root key (same for all instances)

     * \return root key

     */

    const ecdsa256::KeyPair& aa_key_pair();


    /**

     * \brief get root key (same for all instances)

     * \return root key

     */

    const ecdsa256::KeyPair& root_key_pair();


    /**

     * \brief generate a authorization authority certificate

     *

     * \return generated certificate

     */

    Certificate generate_aa_certificate(const std::string& subject_name);


    /**

     * \brief generate a root certificate

     *

     * \return generated certificate

     */

    Certificate generate_root_certificate(const std::string& subject_name);


    BackendCryptoPP m_crypto_backend; /*< key generation is not a generic backend feature */

    const Runtime& m_runtime;

    const ecdsa256::KeyPair m_own_key_pair;

    Certificate m_own_certificate;

};


} // namespace v2

} // namespace security

} // namespace vanetza


#endif /* NAIVE_CERTIFICATE_PROVIDER_HPP_MTULFLKX */

vanetza::Runtime
Definition: runtime.hpp:16

vanetza::security::BackendCryptoPP
Definition: backend_cryptopp.hpp:16

vanetza::security::v2::CertificateProvider
Definition: certificate_provider.hpp:16

vanetza::security::v2::NaiveCertificateProvider
A very simplistic certificate provider.
Definition: naive_certificate_provider.hpp:26

vanetza::security::v2::NaiveCertificateProvider::own_certificate
const Certificate & own_certificate() override
get own certificate for signing
Definition: naive_certificate_provider.cpp:21

vanetza::security::v2::NaiveCertificateProvider::generate_authorization_ticket
Certificate generate_authorization_ticket()
generate an authorization ticket
Definition: naive_certificate_provider.cpp:78

vanetza::security::v2::NaiveCertificateProvider::aa_key_pair
const ecdsa256::KeyPair & aa_key_pair()
get root key (same for all instances)
Definition: naive_certificate_provider.cpp:48

vanetza::security::v2::NaiveCertificateProvider::sign_authorization_ticket
void sign_authorization_ticket(Certificate &certificate)
sign an authorization ticket
Definition: naive_certificate_provider.cpp:123

vanetza::security::v2::NaiveCertificateProvider::own_chain
std::list< Certificate > own_chain() override
Definition: naive_certificate_provider.cpp:36

vanetza::security::v2::NaiveCertificateProvider::root_key_pair
const ecdsa256::KeyPair & root_key_pair()
get root key (same for all instances)
Definition: naive_certificate_provider.cpp:55

vanetza::security::v2::NaiveCertificateProvider::generate_aa_certificate
Certificate generate_aa_certificate(const std::string &subject_name)
generate a authorization authority certificate
Definition: naive_certificate_provider.cpp:131

vanetza::security::v2::NaiveCertificateProvider::own_private_key
const ecdsa256::PrivateKey & own_private_key() override
get own private key
Definition: naive_certificate_provider.cpp:43

vanetza::security::v2::NaiveCertificateProvider::aa_certificate
const Certificate & aa_certificate()
get ticket signer certificate (same for all instances)
Definition: naive_certificate_provider.cpp:62

vanetza::security::v2::NaiveCertificateProvider::root_certificate
const Certificate & root_certificate()
get root certificate (same for all instances)
Definition: naive_certificate_provider.cpp:70

vanetza::security::v2::NaiveCertificateProvider::generate_root_certificate
Certificate generate_root_certificate(const std::string &subject_name)
generate a root certificate
Definition: naive_certificate_provider.cpp:183

vanetza::security::ecdsa256::KeyPair
Definition: ecdsa256.hpp:41

vanetza::security::ecdsa256::PrivateKey
Definition: ecdsa256.hpp:32

vanetza::security::v2::Certificate
described in TS 103 097 v1.2.1 (2015-06), section 6.1
Definition: certificate.hpp:28