Function to read Trust certificate chain from SVR

author Ashwini Kumar <k.ashwini@samsung.com>

Fri, 4 Nov 2016 12:23:05 +0000 (17:53 +0530)

committer Randeep Singh <randeep.s@samsung.com>

Fri, 4 Nov 2016 13:05:34 +0000 (13:05 +0000)
author Ashwini Kumar <k.ashwini@samsung.com>
Fri, 4 Nov 2016 12:23:05 +0000 (17:53 +0530)
committer Randeep Singh <randeep.s@samsung.com>
Fri, 4 Nov 2016 13:05:34 +0000 (13:05 +0000)
diff --git a/resource/csdk/security/provisioning/include/internal/secureresourceprovider.h b/resource/csdk/security/provisioning/include/internal/secureresourceprovider.h

index 5e621bf..876dfd9 100644 (file)
--- a/resource/csdk/security/provisioning/include/internal/secureresourceprovider.h
+++ b/resource/csdk/security/provisioning/include/internal/secureresourceprovider.h
@@ -236,6 +236,16 @@ OCStackResult SRPSyncDevice(void* ctx, unsigned short waitTimeForOwnedDeviceDisc
  OCStackResult SRPResetDevice(const OCProvisionDev_t* pTargetDev,
          OCProvisionResultCB resultCallback);
  
+/*
+ * Function to read Trust certificate chain from SVR.
+ * Caller must free when done using the returned trust certificate
+ * @param[in] credId CredId of trust certificate chain in SVR.
+ * @param[out] trustCertChain Trust certificate chain.
+ * @param[out] chainSize Size of trust certificate chain
+ * @return  OC_STACK_OK in case of success and other value otherwise.
+ */
+OCStackResult SRPReadTrustCertChain(uint16_t credId, uint8_t **trustCertChain,
+                                     size_t *chainSize);
  #ifdef __cplusplus
  }
  #endif
diff --git a/resource/csdk/security/provisioning/include/ocprovisioningmanager.h b/resource/csdk/security/provisioning/include/ocprovisioningmanager.h

old mode 100755 (executable)

new mode 100644 (file)

index 9bba19a..5153963
--- a/resource/csdk/security/provisioning/include/ocprovisioningmanager.h
+++ b/resource/csdk/security/provisioning/include/ocprovisioningmanager.h
@@ -452,6 +452,17 @@ OCStackResult OCProvisionTrustCertChain(void *ctx, OicSecCredType_t type, uint16
  OCStackResult OCSaveTrustCertChain(uint8_t *trustCertChain, size_t chainSize,\r
                                          OicEncodingType_t encodingType, uint16_t *credId);\r
  \r
+/*\r
+ * Function to read Trust certificate chain from SVR.\r
+ * Caller must free when done using the returned trust certificate\r
+ * @param[in] credId CredId of trust certificate chain in SVR.\r
+ * @param[out] trustCertChain Trust certificate chain.\r
+ * @param[out] chainSize Size of trust certificate chain\r
+ * @return  OC_STACK_OK in case of success and other value otherwise.\r
+ */\r
+OCStackResult OCReadTrustCertChain(uint16_t credId, uint8_t **trustCertChain,\r
+                                     size_t *chainSize);\r
+\r
  #endif // __WITH_DTLS__ || __WITH_TLS__\r
  \r
  \r
diff --git a/resource/csdk/security/provisioning/src/ocprovisioningmanager.c b/resource/csdk/security/provisioning/src/ocprovisioningmanager.c

old mode 100755 (executable)

new mode 100644 (file)

index 0c49fbd..1ac5d42
--- a/resource/csdk/security/provisioning/src/ocprovisioningmanager.c
+++ b/resource/csdk/security/provisioning/src/ocprovisioningmanager.c
@@ -313,6 +313,12 @@ OCStackResult OCGetACLResource(void* ctx, const OCProvisionDev_t *selectedDevice
      return SRPGetACLResource(ctx, selectedDeviceInfo, resultCallback);
  }
  
+
+OCStackResult OCReadTrustCertChain(uint16_t credId, uint8_t **trustCertChain,
+                                     size_t *chainSize)
+{
+    return SRPReadTrustCertChain(credId, trustCertChain, chainSize);
+}
  /**
   * function to provision credential to devices.
   *
diff --git a/resource/csdk/security/provisioning/src/secureresourceprovider.c b/resource/csdk/security/provisioning/src/secureresourceprovider.c

index 44e3eb4..9208420 100644 (file)
--- a/resource/csdk/security/provisioning/src/secureresourceprovider.c
+++ b/resource/csdk/security/provisioning/src/secureresourceprovider.c
@@ -2670,3 +2670,24 @@ OCStackResult SRPGetACLResource(void *ctx, const OCProvisionDev_t *selectedDevic
  
      return OC_STACK_OK;
  }
+
+OCStackResult SRPReadTrustCertChain(uint16_t credId, uint8_t **trustCertChain,
+                                     size_t *chainSize)
+{
+    OIC_LOG(DEBUG, TAG, "IN SRPReadTrustCertChain");
+
+    OCStackResult res = OC_STACK_ERROR;
+    int secureFlag = 0;
+    OicSecCred_t* credData = GetCredEntryByCredId(credId);
+    if(credData)
+    {
+        res = CredToCBORPayload((const OicSecCred_t*) credData, trustCertChain,
+                                chainSize, secureFlag);
+        if(OC_STACK_OK != res)
+        {
+            OIC_LOG(INFO, TAG, "CredToCBORPayload failed");
+        }
+    }
+    DeleteCredList(credData);
+    return res;
+}
diff --git a/resource/include/OCProvisioningManager.h b/resource/include/OCProvisioningManager.h

old mode 100755 (executable)

new mode 100644 (file)

index 5fe59fe..93f6b2c
--- a/resource/include/OCProvisioningManager.h
+++ b/resource/include/OCProvisioningManager.h
@@ -228,6 +228,18 @@ namespace OC
               */
              static OCStackResult saveTrustCertChain(uint8_t *trustCertChain, size_t chainSize,
                                          OicEncodingType_t encodingType, uint16_t *credId);
+
+
+            /*
+            * API to read Trust certificate chain from SVR.
+            * Caller must free when done using the returned trust certificate
+            * @param[in] credId CredId of trust certificate chain in SVR.
+            * @param[out] trustCertChain Trust certificate chain.
+            * @param[out] chainSize Size of trust certificate chain
+            * @return  OC_STACK_OK in case of success and other value otherwise.
+            */
+            static OCStackResult readTrustCertChain(uint16_t credId, uint8_t **trustCertChain,
+                                     size_t *chainSize);
  #endif // __WITH_DTLS__ || __WITH_TLS__
  
      };
diff --git a/resource/provisioning/examples/provisioningclient.cpp b/resource/provisioning/examples/provisioningclient.cpp

index ea3fed9..9f78e89 100644 (file)
--- a/resource/provisioning/examples/provisioningclient.cpp
+++ b/resource/provisioning/examples/provisioningclient.cpp
@@ -94,6 +94,7 @@ void printMenu()
  #if defined(__WITH_DTLS__) || defined(__WITH_TLS__)
      std::cout << "  13. Save the Trust Cert. Chain into Cred of SVR"<<std::endl;
      std::cout << "  14. Provision the Trust Cert. Chain"<<std::endl;
+    std::cout << "  15. Read trust cert chain"<<std::endl;
  #endif // __WITH_DTLS__ || __WITH_TLS__
      std::cout << "  99. Exit loop"<<std::endl;
  }
@@ -1311,6 +1312,27 @@ int main(void)
                          }
                          break;
                      }
+                case 15:
+                    {
+                        if (0==g_credId)
+                        {
+                            std::cout<<"please save cert using option 13.";
+                        }
+                        else
+                        {
+                            uint8_t *trustCertChain = NULL;
+                            size_t chainSize = 0;
+                            if (OC_STACK_OK != OCSecure::readTrustCertChain(g_credId, &trustCertChain,&chainSize))
+                            {
+                                std::cout <<"issue in read trust chain"<< std::endl;
+                            }
+                            else
+                            {
+                                std::cout<<"size of cert : "<<chainSize<<std::endl;
+                            }
+                        }
+                        break;
+                    }
  #endif //__WITH_DTLS__ || __WITH_TLS__
                  case 99:
                  default:
diff --git a/resource/provisioning/src/OCProvisioningManager.cpp b/resource/provisioning/src/OCProvisioningManager.cpp

old mode 100755 (executable)

new mode 100644 (file)

index 02f305a..931f0ec
--- a/resource/provisioning/src/OCProvisioningManager.cpp
+++ b/resource/provisioning/src/OCProvisioningManager.cpp
@@ -362,6 +362,25 @@ namespace OC
          }
          return result;
      }
+
+    OCStackResult OCSecure::readTrustCertChain(uint16_t credId, uint8_t **trustCertChain,
+                                                 size_t *chainSize)
+    {
+        OCStackResult result;
+        auto cLock = OCPlatform_impl::Instance().csdkLock().lock();
+
+        if (cLock)
+        {
+            std::lock_guard<std::recursive_mutex> lock(*cLock);
+            result = OCReadTrustCertChain(credId, trustCertChain, chainSize);
+        }
+        else
+        {
+            oclog() <<"Mutex not found";
+            result = OC_STACK_ERROR;
+        }
+        return result;
+    }
  #endif // __WITH_DTLS__ || __WITH_TLS__
  
      void OCSecureResource::callbackWrapper(void* ctx, int nOfRes, OCProvisionResult_t *arr, bool hasError)
author	Ashwini Kumar <k.ashwini@samsung.com>
	Fri, 4 Nov 2016 12:23:05 +0000 (17:53 +0530)
committer	Randeep Singh <randeep.s@samsung.com>
	Fri, 4 Nov 2016 13:05:34 +0000 (13:05 +0000)
resource/csdk/security/provisioning/include/internal/secureresourceprovider.h		patch \| blob \| history
resource/csdk/security/provisioning/include/ocprovisioningmanager.h	[changed mode: 0755->0644]	patch \| blob \| history
resource/csdk/security/provisioning/src/ocprovisioningmanager.c	[changed mode: 0755->0644]	patch \| blob \| history
resource/csdk/security/provisioning/src/secureresourceprovider.c		patch \| blob \| history
resource/include/OCProvisioningManager.h	[changed mode: 0755->0644]	patch \| blob \| history
resource/provisioning/examples/provisioningclient.cpp		patch \| blob \| history
resource/provisioning/src/OCProvisioningManager.cpp	[changed mode: 0755->0644]	patch \| blob \| history