2 * Copyright (c) 2000 - 2014 Samsung Electronics Co., Ltd All Rights Reserved
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License
17 * @file ckm-service.cpp
18 * @author Bartlomiej Grzelewski (b.grzelewski@samsung.com)
20 * @brief CKM service implementation.
22 #include <service-thread.h>
23 #include <generic-socket-manager.h>
24 #include <connection-info.h>
25 #include <message-buffer.h>
26 #include <protocols.h>
28 #include <dpl/serialization.h>
29 #include <dpl/log/log.h>
31 #include <ckm-service.h>
32 #include <ckm-logic.h>
35 const CKM::InterfaceID SOCKET_ID_CONTROL = 0;
36 const CKM::InterfaceID SOCKET_ID_STORAGE = 1;
37 } // namespace anonymous
41 CKMService::CKMService()
42 : m_logic(new CKMLogic)
45 CKMService::~CKMService() {
49 GenericSocketService::ServiceDescriptionVector CKMService::GetServiceDescription()
51 return ServiceDescriptionVector {
52 {SERVICE_SOCKET_CKM_CONTROL, "key-manager::api-control", SOCKET_ID_CONTROL},
53 {SERVICE_SOCKET_CKM_STORAGE, "key-manager::api-storage", SOCKET_ID_STORAGE}
57 void CKMService::accept(const AcceptEvent &event) {
58 LogDebug("Accept event");
59 auto &info = m_connectionInfoMap[event.connectionID.counter];
60 info.interfaceID = event.interfaceID;
61 info.credentials = event.credentials;
64 void CKMService::write(const WriteEvent &event) {
65 LogDebug("Write event (" << event.size << " bytes)");
68 void CKMService::process(const ReadEvent &event) {
69 LogDebug("Read event");
70 auto &info = m_connectionInfoMap[event.connectionID.counter];
71 info.buffer.Push(event.rawBuffer);
72 while(processOne(event.connectionID, info));
75 bool CKMService::processOne(
76 const ConnectionID &conn,
79 LogDebug ("process One");
83 if (!info.buffer.Ready())
86 if (info.interfaceID == SOCKET_ID_CONTROL)
87 response = processControl(info.buffer);
89 response = processStorage(info.credentials, info.buffer);
91 m_serviceManager->Write(conn, response);
94 } Catch (MessageBuffer::Exception::Base) {
95 LogError("Broken protocol. Closing socket.");
96 } catch (const std::string &e) {
97 LogError("String exception(" << e << "). Closing socket");
99 LogError("Unknown exception. Closing socket.");
102 m_serviceManager->Close(conn);
106 SafeBuffer CKMService::processControl(MessageBuffer &buffer) {
110 std::string newPass, oldPass;
112 Deserialization::Deserialize(buffer, command);
113 Deserialization::Deserialize(buffer, user);
115 LogDebug("Process control. Command: " << command);
117 cc = static_cast<ControlCommand>(command);
120 case ControlCommand::UNLOCK_USER_KEY:
121 Deserialization::Deserialize(buffer, newPass);
122 return m_logic->unlockUserKey(user, newPass);
123 case ControlCommand::LOCK_USER_KEY:
124 return m_logic->lockUserKey(user);
125 case ControlCommand::REMOVE_USER_DATA:
126 return m_logic->removeUserData(user);
127 case ControlCommand::CHANGE_USER_PASSWORD:
128 Deserialization::Deserialize(buffer, oldPass);
129 Deserialization::Deserialize(buffer, newPass);
130 return m_logic->changeUserPassword(user, oldPass, newPass);
131 case ControlCommand::RESET_USER_PASSWORD:
132 Deserialization::Deserialize(buffer, newPass);
133 return m_logic->resetUserPassword(user, newPass);
136 throw 1; // broken protocol
140 SafeBuffer CKMService::processStorage(Credentials &cred, MessageBuffer &buffer){
147 Deserialization::Deserialize(buffer, command);
148 Deserialization::Deserialize(buffer, commandId);
150 LogDebug("Process storage. Command: " << command);
152 switch(static_cast<LogicCommand>(command)) {
153 case LogicCommand::SAVE:
156 PolicySerializable policy;
157 Deserialization::Deserialize(buffer, tmpDataType);
158 Deserialization::Deserialize(buffer, alias);
159 Deserialization::Deserialize(buffer, rawData);
160 Deserialization::Deserialize(buffer, policy);
161 return m_logic->saveData(
164 static_cast<DBDataType>(tmpDataType),
169 case LogicCommand::REMOVE:
171 Deserialization::Deserialize(buffer, tmpDataType);
172 Deserialization::Deserialize(buffer, alias);
173 return m_logic->removeData(
176 static_cast<DBDataType>(tmpDataType),
179 case LogicCommand::GET:
181 std::string password;
182 Deserialization::Deserialize(buffer, tmpDataType);
183 Deserialization::Deserialize(buffer, alias);
184 Deserialization::Deserialize(buffer, password);
185 return m_logic->getData(
188 static_cast<DBDataType>(tmpDataType),
192 case LogicCommand::GET_LIST:
194 Deserialization::Deserialize(buffer, tmpDataType);
195 return m_logic->getDataList(
198 static_cast<DBDataType>(tmpDataType));
200 case LogicCommand::CREATE_KEY_PAIR_RSA:
203 Alias privateKeyAlias;
204 Alias publicKeyAlias;
205 PolicySerializable policyPrivateKey;
206 PolicySerializable policyPublicKey;
207 Deserialization::Deserialize(buffer, size);
208 Deserialization::Deserialize(buffer, policyPrivateKey);
209 Deserialization::Deserialize(buffer, policyPublicKey);
210 Deserialization::Deserialize(buffer, privateKeyAlias);
211 Deserialization::Deserialize(buffer, publicKeyAlias);
212 return m_logic->createKeyPairRSA(
221 case LogicCommand::CREATE_KEY_PAIR_ECDSA:
224 Alias privateKeyAlias;
225 Alias publicKeyAlias;
226 PolicySerializable policyPrivateKey;
227 PolicySerializable policyPublicKey;
228 Deserialization::Deserialize(buffer, type);
229 Deserialization::Deserialize(buffer, policyPrivateKey);
230 Deserialization::Deserialize(buffer, policyPublicKey);
231 Deserialization::Deserialize(buffer, privateKeyAlias);
232 Deserialization::Deserialize(buffer, publicKeyAlias);
233 return m_logic->createKeyPairECDSA(
242 case LogicCommand::GET_CHAIN_CERT:
244 SafeBuffer certificate;
245 SafeBufferVector rawBufferVector;
246 Deserialization::Deserialize(buffer, certificate);
247 Deserialization::Deserialize(buffer, rawBufferVector);
248 return m_logic->getCertificateChain(
254 case LogicCommand::GET_CHAIN_ALIAS:
256 SafeBuffer certificate;
257 AliasVector aliasVector;
258 Deserialization::Deserialize(buffer, certificate);
259 Deserialization::Deserialize(buffer, aliasVector);
260 return m_logic->getCertificateChain(
266 case LogicCommand::CREATE_SIGNATURE:
268 Alias privateKeyAlias;
269 std::string password; // password for private_key
272 Deserialization::Deserialize(buffer, privateKeyAlias);
273 Deserialization::Deserialize(buffer, password);
274 Deserialization::Deserialize(buffer, message);
275 Deserialization::Deserialize(buffer, hash);
276 Deserialization::Deserialize(buffer, padding);
278 return m_logic->createSignature(
282 password, // password for private_key
284 static_cast<HashAlgorithm>(hash),
285 static_cast<RSAPaddingAlgorithm>(padding));
287 case LogicCommand::VERIFY_SIGNATURE:
289 Alias publicKeyOrCertAlias;
290 std::string password; // password for public_key (optional)
292 SafeBuffer signature;
293 //HashAlgorithm hash;
294 //RSAPaddingAlgorithm padding;
296 Deserialization::Deserialize(buffer, publicKeyOrCertAlias);
297 Deserialization::Deserialize(buffer, password);
298 Deserialization::Deserialize(buffer, message);
299 Deserialization::Deserialize(buffer, signature);
300 Deserialization::Deserialize(buffer, hash);
301 Deserialization::Deserialize(buffer, padding);
302 return m_logic->verifySignature(
305 publicKeyOrCertAlias,
306 password, // password for public_key (optional)
309 static_cast<const HashAlgorithm>(hash),
310 static_cast<const RSAPaddingAlgorithm>(padding));
314 throw 1; // broken protocol
319 void CKMService::close(const CloseEvent &event) {
320 LogDebug("Close event");
321 m_connectionInfoMap.erase(event.connectionID.counter);
projects / platform / core / security / key-manager.git / blob