* Remove unnecessary DataType methods.
* Remove unnecessary Type enumeration scope.
* Make DataType serializable to avoid static casts.
* Use DataType checker methods instead of explicit DataType::Type comparison.
Change-Id: I01dc355050326ad1e40c34c869acbc07613c57db
AliasSupport helper(alias);
sendToStorage(observer, static_cast<int>(LogicCommand::SAVE), m_counter,
- static_cast<int>(dataType), helper.getName(), helper.getOwner(), rawData,
+ dataType, helper.getName(), helper.getOwner(), rawData,
PolicySerializable(policy));
}, [&observer](int error) {
observer->ReceivedError(error);
AliasSupport helper(alias);
sendToStorage(observer, static_cast<int>(LogicCommand::GET), m_counter,
- static_cast<int>(sendDataType), helper.getName(), helper.getOwner(), password);
+ sendDataType, helper.getName(), helper.getOwner(), password);
}, [&observer](int error) {
observer->ReceivedError(error);
});
{
observerCheck(observer);
try_catch_async([&]() {
- sendToStorage(observer, static_cast<int>(LogicCommand::GET_LIST), m_counter,
- static_cast<int>(dataType));
+ sendToStorage(observer, static_cast<int>(LogicCommand::GET_LIST), m_counter, dataType);
}, [&observer](int error) {
observer->ReceivedError(error);
});
void StorageReceiver::parseGetCommand()
{
RawBuffer rawData;
- int dataType = 0, retCode = 0;
+ DataType dataType;
+ int retCode = 0;
m_buffer.Deserialize(retCode, dataType, rawData);
// check error code
return;
}
- DataType type(dataType);
- if (type.isSKey())
+ if (dataType.isSKey())
m_observer->ReceivedKey(KeyAESImpl(rawData));
- else if (type.isKey())
+ else if (dataType.isKey())
m_observer->ReceivedKey(KeyImpl(rawData));
- else if (type.isCertificate())
+ else if (dataType.isCertificate())
m_observer->ReceivedCertificate(CertificateImpl(rawData, DataFormat::FORM_DER));
- else if (type.isBinaryData())
+ else if (dataType.isBinaryData())
m_observer->ReceivedData(std::move(rawData));
else
m_observer->ReceivedError(CKM_API_ERROR_BAD_RESPONSE);
void StorageReceiver::parseGetListCommand()
{
- int dataType = 0, retCode = 0;
+ DataType dataType;
+ int retCode = 0;
OwnerNameVector ownerNameVector;
m_buffer.Deserialize(retCode, dataType, ownerNameVector);
for (const auto &it : ownerNameVector)
aliasVector.push_back(AliasSupport::merge(it.first, it.second));
- DataType type(dataType);
-
- if (type.isKey())
+ if (dataType.isKey())
m_observer->ReceivedKeyAliasVector(std::move(aliasVector));
- else if (type.isCertificate())
+ else if (dataType.isCertificate())
m_observer->ReceivedCertificateAliasVector(std::move(aliasVector));
- else if (type.isBinaryData())
+ else if (dataType.isBinaryData())
m_observer->ReceivedDataAliasVector(std::move(aliasVector));
else
m_observer->ReceivedError(CKM_API_ERROR_BAD_RESPONSE);
void StorageReceiver::parseSaveCommand()
{
- int dataType = 0, retCode = 0;
+ DataType dataType;
+ int retCode = 0;
m_buffer.Deserialize(retCode, dataType);
// check error code
return;
}
- DataType type(dataType);
-
- if (type.isKey())
+ if (dataType.isKey())
m_observer->ReceivedSaveKey();
- else if (type.isCertificate())
+ else if (dataType.isCertificate())
m_observer->ReceivedSaveCertificate();
- else if (type.isBinaryData())
+ else if (dataType.isBinaryData())
m_observer->ReceivedSaveData();
else
m_observer->ReceivedError(CKM_API_ERROR_BAD_RESPONSE);
AliasSupport helper(alias);
auto send = MessageBuffer::Serialize(static_cast<int>(LogicCommand::SAVE),
msgId,
- static_cast<int>(dataType),
+ dataType,
helper.getName(),
helper.getOwner(),
rawData,
AliasSupport helper(alias);
auto send = MessageBuffer::Serialize(static_cast<int>(LogicCommand::GET),
msgId,
- static_cast<int>(sendDataType),
+ sendDataType,
helper.getName(),
helper.getOwner(),
password);
return retCode;
int retMsgId;
- int tmpDataType;
- recv.Deserialize(retMsgId, retCode, tmpDataType, rawData);
- recvDataType = DataType(tmpDataType);
+ recv.Deserialize(retMsgId, retCode, recvDataType, rawData);
if (retMsgId != msgId)
return CKM_API_ERROR_UNKNOWN;
AliasSupport helper(alias);
auto send = MessageBuffer::Serialize(static_cast<int>(LogicCommand::GET_PROTECTION_STATUS),
msgId,
- static_cast<int>(sendDataType),
+ sendDataType,
helper.getName(),
helper.getOwner());
return retCode;
int retMsgId;
- int tmpDataType;
+ DataType tmpDataType;
bool passwordProtectionStatus;
recv.Deserialize(retMsgId, retCode, tmpDataType, passwordProtectionStatus);
KeyShPtr keyParsed;
- if (DataType::KEY_AES == recvDataType)
+ if (recvDataType.isSKey())
keyParsed = KeyShPtr(new KeyAESImpl(rawData));
else
keyParsed = KeyShPtr(new KeyImpl(rawData));
if (retCode != CKM_API_SUCCESS)
return retCode;
- if (recvDataType != DataType::CERTIFICATE)
+ if (!recvDataType.isCertificate())
return CKM_API_ERROR_BAD_RESPONSE;
CertificateShPtr certParsed(new CertificateImpl(rawData, DataFormat::FORM_DER));
if (retCode != CKM_API_SUCCESS)
return retCode;
- if (recvDataType != DataType::BINARY_DATA)
+ if (!recvDataType.isBinaryData())
return CKM_API_ERROR_BAD_RESPONSE;
return CKM_API_SUCCESS;
MessageBuffer recv;
auto send = MessageBuffer::Serialize(static_cast<int>(LogicCommand::GET_LIST),
msgId,
- static_cast<int>(dataType));
+ dataType);
int retCode = m_storageConnection.processRequest(send.Pop(), recv);
return retCode;
int retMsgId;
- int tmpDataType;
+ DataType tmpDataType;
recv.Deserialize(retMsgId, retCode, tmpDataType, ownerNameVector);
if (retMsgId != msgId)
/*
- * Copyright (c) 2000 - 2019 Samsung Electronics Co., Ltd All Rights Reserved
+ * Copyright (c) 2015 - 2020 Samsung Electronics Co., Ltd All Rights Reserved
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
namespace CKM {
-DataType::DataType() :
- m_dataType(BINARY_DATA)
+void DataType::checkRange() const
{
+ if (m_dataType >= DB_FIRST && m_dataType <= DB_LAST)
+ return;
+
+ ThrowErr(Exc::InputParam, "Invalid data type value=", m_dataType);
}
-DataType::DataType(Type data)
- : m_dataType(data)
+DataType::DataType() :
+ m_dataType(BINARY_DATA)
{
- if (!isInRange(data))
- ThrowErr(Exc::InputParam,
- "Invalid conversion from DataType=", static_cast<int>(data),
- " to DBDataType");
}
DataType::DataType(KeyType key)
{
switch (key) {
case KeyType::KEY_RSA_PUBLIC:
- m_dataType = DataType::KEY_RSA_PUBLIC;
+ m_dataType = KEY_RSA_PUBLIC;
break;
case KeyType::KEY_RSA_PRIVATE:
- m_dataType = DataType::KEY_RSA_PRIVATE;
+ m_dataType = KEY_RSA_PRIVATE;
break;
case KeyType::KEY_DSA_PUBLIC:
- m_dataType = DataType::KEY_DSA_PUBLIC;
+ m_dataType = KEY_DSA_PUBLIC;
break;
case KeyType::KEY_DSA_PRIVATE:
- m_dataType = DataType::KEY_DSA_PRIVATE;
+ m_dataType = KEY_DSA_PRIVATE;
break;
case KeyType::KEY_ECDSA_PUBLIC:
- m_dataType = DataType::KEY_ECDSA_PUBLIC;
+ m_dataType = KEY_ECDSA_PUBLIC;
break;
case KeyType::KEY_ECDSA_PRIVATE:
- m_dataType = DataType::KEY_ECDSA_PRIVATE;
+ m_dataType = KEY_ECDSA_PRIVATE;
break;
case KeyType::KEY_AES:
- m_dataType = DataType::KEY_AES;
+ m_dataType = KEY_AES;
break;
default:
}
}
-DataType::DataType(int data) :
- m_dataType(static_cast<Type>(data))
+DataType::DataType(Type data) :
+ m_dataType(data)
{
- if (!isInRange(data))
- ThrowErr(Exc::InputParam, "Invalid conversion from int=", data, " to DBDataType");
+ checkRange();
}
-DataType::operator int () const
+DataType::DataType(IStream &stream)
{
- return static_cast<int>(m_dataType);
+ stream.Read(sizeof(m_dataType), &m_dataType);
+
+ checkRange();
}
-DataType::operator KeyType() const
+void DataType::Serialize(IStream &stream) const
{
- switch (m_dataType) {
- case DataType::KEY_RSA_PUBLIC:
- return KeyType::KEY_RSA_PUBLIC;
-
- case DataType::KEY_RSA_PRIVATE:
- return KeyType::KEY_RSA_PRIVATE;
-
- case DataType::KEY_DSA_PUBLIC:
- return KeyType::KEY_DSA_PUBLIC;
-
- case DataType::KEY_DSA_PRIVATE:
- return KeyType::KEY_DSA_PRIVATE;
-
- case DataType::KEY_ECDSA_PRIVATE:
- return KeyType::KEY_ECDSA_PRIVATE;
-
- case DataType::KEY_ECDSA_PUBLIC:
- return KeyType::KEY_ECDSA_PUBLIC;
-
- case DataType::KEY_AES:
- return KeyType::KEY_AES;
-
- default:
- ThrowErr(Exc::InputParam,
- "Invalid conversion from DBDataType=", static_cast<int>(m_dataType),
- " to KeyType");
- }
+ stream.Write(sizeof(m_dataType), &m_dataType);
}
-bool DataType::operator==(const DataType &second) const
+DataType::operator int() const
{
- return m_dataType == second.m_dataType;
+ return static_cast<int>(m_dataType);
}
bool DataType::isKey() const
return (m_dataType == KEY_ECDSA_PRIVATE) || (m_dataType == KEY_ECDSA_PUBLIC);
}
-bool DataType::isInRange(int data)
-{
- if (data < static_cast<int>(DB_FIRST))
- return false;
-
- if (data > static_cast<int>(DB_LAST))
- return false;
-
- return true;
-}
-
DataType DataType::getChainDatatype(unsigned int index)
{
- DataType result(static_cast<int>(index) + DB_CHAIN_FIRST);
+ DataType result(static_cast<Type>(DB_CHAIN_FIRST + index));
if (!result.isChainCert())
ThrowErr(Exc::InputParam, "Certificate number is out of range");
/*
- * Copyright (c) 2000 - 2019 Samsung Electronics Co., Ltd All Rights Reserved
+ * Copyright (c) 2015 - 2020 Samsung Electronics Co., Ltd All Rights Reserved
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
#include <ckm/ckm-type.h>
#include <exception.h>
#include <symbol-visibility.h>
+#include <dpl/serialization.h>
namespace CKM {
-class COMMON_API DataType {
+class COMMON_API DataType final : public ISerializable {
public:
-
enum Type {
KEY_RSA_PUBLIC,
KEY_RSA_PRIVATE,
DataType();
DataType(Type data);
- explicit DataType(int data);
+
+ explicit DataType(IStream &stream);
+ void Serialize(IStream &stream) const override;
+
explicit DataType(KeyType key);
DataType(const DataType &) = default;
DataType &operator=(const DataType &) = default;
- operator int () const;
- operator KeyType() const;
- bool operator==(const DataType &second) const;
+ operator int() const;
bool isKey() const;
bool isSKey() const;
bool isBinaryData() const;
bool isEllipticCurve() const;
- static bool isInRange(int data);
static DataType getChainDatatype(unsigned int index);
- // it's not virtual for a reason!
- ~DataType() {}
-
private:
+ void checkRange() const;
+
Type m_dataType;
};
/*
- * Copyright (c) 2000 - 2019 Samsung Electronics Co., Ltd All Rights Reserved
+ * Copyright (c) 2015 - 2020 Samsung Electronics Co., Ltd All Rights Reserved
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
AlgoType key2algo(DataType type)
{
- switch (static_cast<int>(type)) {
- case DataType::Type::KEY_RSA_PRIVATE:
- case DataType::Type::KEY_RSA_PUBLIC:
+ switch (type) {
+ case DataType::KEY_RSA_PRIVATE:
+ case DataType::KEY_RSA_PUBLIC:
return AlgoType::RSA_SV;
- case DataType::Type::KEY_DSA_PRIVATE:
- case DataType::Type::KEY_DSA_PUBLIC:
+ case DataType::KEY_DSA_PRIVATE:
+ case DataType::KEY_DSA_PUBLIC:
return AlgoType::DSA_SV;
- case DataType::Type::KEY_ECDSA_PRIVATE:
- case DataType::Type::KEY_ECDSA_PUBLIC:
+ case DataType::KEY_ECDSA_PRIVATE:
+ case DataType::KEY_ECDSA_PUBLIC:
return AlgoType::ECDSA_SV;
default:
/*
- * Copyright (c) 2015 - 2018 Samsung Electronics Co., Ltd All Rights Reserved
+ * Copyright (c) 2015 - 2020 Samsung Electronics Co., Ltd All Rights Reserved
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
if (token.dataType.isKeyPrivate() || token.dataType.isKeyPublic())
return std::make_unique<AKey>(data, token.dataType);
- if (token.dataType == DataType(DataType::KEY_AES))
+ if (token.dataType.isSKey())
return std::make_unique<SKey>(data, token.dataType);
if (token.dataType.isCertificate() || token.dataType.isChainCert())
return std::make_unique<BData>(data, token.dataType);
ThrowErr(Exc::Crypto::DataTypeNotSupported,
- "This type of data is not supported by openssl backend: ", (int)token.dataType);
+ "This type of data is not supported by openssl backend: ", token.dataType);
}
TokenPair Store::generateAKey(const CryptoAlgorithm &algorithm,
}
tz_data_type toTzDataType(const CKM::DataType dataType) {
- switch (int(dataType)) {
- case CKM::DataType::Type::BINARY_DATA: return TYPE_GENERIC_SECRET;
- case CKM::DataType::Type::KEY_AES: return TYPE_SKEY;
- case CKM::DataType::Type::KEY_DSA_PRIVATE: return TYPE_AKEY_PRIVATE_DSA;
- case CKM::DataType::Type::KEY_RSA_PRIVATE: return TYPE_AKEY_PRIVATE_RSA;
- case CKM::DataType::Type::KEY_DSA_PUBLIC: return TYPE_AKEY_PUBLIC_DSA;
- case CKM::DataType::Type::KEY_RSA_PUBLIC: return TYPE_AKEY_PUBLIC_RSA;
+ switch (dataType) {
+ case CKM::DataType::BINARY_DATA: return TYPE_GENERIC_SECRET;
+ case CKM::DataType::KEY_AES: return TYPE_SKEY;
+ case CKM::DataType::KEY_DSA_PRIVATE: return TYPE_AKEY_PRIVATE_DSA;
+ case CKM::DataType::KEY_RSA_PRIVATE: return TYPE_AKEY_PRIVATE_RSA;
+ case CKM::DataType::KEY_DSA_PUBLIC: return TYPE_AKEY_PUBLIC_DSA;
+ case CKM::DataType::KEY_RSA_PUBLIC: return TYPE_AKEY_PUBLIC_RSA;
default:
ThrowErr(CKM::Exc::Crypto::DataTypeNotSupported,
"Data type could not be imported by tz-backend");
/*
- * Copyright (c) 2015-2017 Samsung Electronics Co., Ltd All Rights Reserved
+ * Copyright (c) 2015 - 2020 Samsung Electronics Co., Ltd All Rights Reserved
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
namespace {
AlgoType key2algo(DataType type)
{
- switch (static_cast<int>(type)) {
- case DataType::Type::KEY_RSA_PRIVATE:
- case DataType::Type::KEY_RSA_PUBLIC:
+ switch (type) {
+ case DataType::KEY_RSA_PRIVATE:
+ case DataType::KEY_RSA_PUBLIC:
return AlgoType::RSA_SV;
- case DataType::Type::KEY_DSA_PRIVATE:
- case DataType::Type::KEY_DSA_PUBLIC:
+ case DataType::KEY_DSA_PRIVATE:
+ case DataType::KEY_DSA_PUBLIC:
return AlgoType::DSA_SV;
- case DataType::Type::KEY_ECDSA_PRIVATE:
- case DataType::Type::KEY_ECDSA_PUBLIC:
+ case DataType::KEY_ECDSA_PRIVATE:
+ case DataType::KEY_ECDSA_PUBLIC:
return AlgoType::ECDSA_SV;
default:
}
ThrowErr(Exc::Crypto::DataTypeNotSupported,
- "This type of data is not supported by trustzone backend: ", (int)token.dataType);
+ "This type of data is not supported by trustzone backend: ", token.dataType);
}
TokenPair Store::generateAKey(const CryptoAlgorithm &alg, const Password &privPass,
const PolicySerializable &policy)
{
int retCode = verifyAndSaveDataHelper(cred, name, explicitOwner, data, policy);
- auto response = MessageBuffer::Serialize(msgId, retCode, static_cast<int>(data.type));
+ auto response = MessageBuffer::Serialize(msgId, retCode, data.type);
return response.Pop();
}
rowData.clear();
auto response = MessageBuffer::Serialize(msgId,
- retCode,
- static_cast<int>(objDataType),
- rowData);
+ retCode,
+ objDataType,
+ rowData);
return response.Pop();
}
}
auto response = MessageBuffer::Serialize(msgId,
- retCode,
- static_cast<int>(objDataType),
- status);
+ retCode,
+ objDataType,
+ status);
return response.Pop();
}
}
auto response = MessageBuffer::Serialize(msgId,
- retCode,
- static_cast<int>(dataType),
- ownerNameVector);
+ retCode,
+ dataType,
+ ownerNameVector);
return response.Pop();
}
{
int command = 0;
int msgId = 0;
- int tmpDataType = 0;
+ DataType tmpDataType;
Name name;
ClientId explicitOwner, accessor;
msgId,
name,
explicitOwner,
- Crypto::Data(DataType(tmpDataType), std::move(rawData)),
+ Crypto::Data(tmpDataType, std::move(rawData)),
policy);
}
return m_logic->getData(
cred,
msgId,
- DataType(tmpDataType),
+ tmpDataType,
name,
explicitOwner,
password);
return m_logic->getDataProtectionStatus(
cred,
msgId,
- DataType(tmpDataType),
+ tmpDataType,
name,
explicitOwner);
}
return m_logic->getDataList(
cred,
msgId,
- DataType(tmpDataType));
+ tmpDataType);
}
case LogicCommand::CREATE_KEY_AES: {
row.name = selectCommand->GetColumnString(0);
row.owner = selectCommand->GetColumnString(1);
row.exportable = selectCommand->GetColumnInteger(2);
- row.dataType = DataType(selectCommand->GetColumnInteger(3));
+ row.dataType = static_cast<DataType::Type>(selectCommand->GetColumnInteger(3));
row.algorithmType =
static_cast<DBCMAlgType>(selectCommand->GetColumnInteger(4));
row.encryptionScheme = selectCommand->GetColumnInteger(5);
Transaction transaction(this);
SqlConnection::DataCommandUniquePtr selectCommand =
m_connection->PrepareDataCommand(DB_CMD_NAME_SELECT_BY_TYPE_AND_PERMISSION);
- selectCommand->BindInteger(1, static_cast<int>(typeRangeStart));
- selectCommand->BindInteger(2, static_cast<int>(typeRangeStop));
+ selectCommand->BindInteger(1, typeRangeStart);
+ selectCommand->BindInteger(2, typeRangeStop);
selectCommand->BindString(104, owner.c_str());
selectCommand->BindInteger(4,
static_cast<int>(Permission::READ | Permission::REMOVE));
ThrowErr(Exc::DatabaseFailed,
"Couldn't list names of type <",
- static_cast<int>(typeRangeStart), ",",
- static_cast<int>(typeRangeStop), ">",
+ typeRangeStart, ",",
+ typeRangeStop, ">",
" accessible to client ", owner);
}
SqlConnection::DataCommandUniquePtr insertObjectCommand =
m_connection->PrepareDataCommand(DB_CMD_OBJECT_INSERT);
insertObjectCommand->BindInteger(1, row.exportable);
- insertObjectCommand->BindInteger(2, static_cast<int>(row.dataType));
+ insertObjectCommand->BindInteger(2, row.dataType);
insertObjectCommand->BindInteger(3, static_cast<int>(row.algorithmType));
insertObjectCommand->BindInteger(4, row.encryptionScheme);
insertObjectCommand->BindBlob(5, row.iv);
{
SqlConnection::DataCommandUniquePtr updateObjectCommand =
m_connection->PrepareDataCommand(DB_CMD_OBJECT_UPDATE);
- updateObjectCommand->BindInteger(2, static_cast<int>(row.dataType));
+ updateObjectCommand->BindInteger(2, row.dataType);
updateObjectCommand->BindInteger(3, static_cast<int>(row.algorithmType));
updateObjectCommand->BindInteger(4, row.encryptionScheme);
updateObjectCommand->BindBlob(5, row.iv);
} // CKM
struct Item {
- Item() : type(CKM::DataType::Type::DB_LAST)
+ Item() : type(CKM::DataType::DB_LAST)
{
}
POSITIVE_TEST_CASE(row_encryption)
{
Policy policy("", true);
- Crypto::Data data(DataType(DataType::Type::BINARY_DATA), TEST_DATA);
+ Crypto::Data data(DataType::BINARY_DATA, TEST_DATA);
Crypto::Decider decider;
Crypto::GStore &store = decider.getStore(data.type, policy);
Token token = store.import(data, policy.password, Crypto::EncryptionParams());
NEGATIVE_TEST_CASE(row_encryption)
{
const Policy policy("", true);
- Crypto::Data data(DataType(DataType::Type::BINARY_DATA), TEST_DATA);
+ Crypto::Data data(DataType::BINARY_DATA, TEST_DATA);
Crypto::Decider decider;
Crypto::GStore &store = decider.getStore(data.type, policy);
Token token = store.import(data, policy.password, Crypto::EncryptionParams());
pairs.emplace_back(DataType::KEY_AES, KeyType::KEY_AES);
for (auto &p : pairs)
- BOOST_REQUIRE(p.second == DataType(static_cast<KeyType>(p.first)));
+ BOOST_REQUIRE(p.first == DataType(p.second));
}
POSITIVE_TEST_CASE(UNARY_OPERATIONS)
projects / platform / core / security / key-manager.git / commitdiff