TPM front-end class. More...

#include <ndn-cxx/security/tpm/tpm.hpp>

Inheritance diagram for ndn::security::tpm::Tpm:

Collaboration diagram for ndn::security::tpm::Tpm:

Classes
class	Error

Public Member Functions
	~Tpm ()

ConstBufferPtr	decrypt (const uint8_t *buf, size_t size, const Name &keyName) const
	Decrypt blob using the key with name `keyName`. More...

ConstBufferPtr	decrypt (span< const uint8_t > buf, const Name &keyName) const
	Decrypt blob using the key with name `keyName`. More...

ConstBufferPtr	getPublicKey (const Name &keyName) const

std::string	getTpmLocator () const

bool	hasKey (const Name &keyName) const
	Check if a private key exists. More...

bool	isTerminalMode () const
	Check if the TPM is in terminal mode. More...

bool	isTpmLocked () const

void	setTerminalMode (bool isTerminal) const
	Set the terminal mode of the TPM. More...

ConstBufferPtr	sign (const InputBuffers &bufs, const Name &keyName, DigestAlgorithm digestAlgorithm) const
	Sign discontiguous ranges using the key with name `keyName` and using the digest `digestAlgorithm`. More...

ConstBufferPtr	sign (const uint8_t *buf, size_t size, const Name &keyName, DigestAlgorithm digestAlgorithm) const
	Sign blob using the key with name `keyName` and using the digest `digestAlgorithm`. More...

bool	unlockTpm (const char *password, size_t passwordLength) const
	Unlock the TPM. More...

boost::logic::tribool	verify (const InputBuffers &bufs, span< const uint8_t > sig, const Name &keyName, DigestAlgorithm digestAlgorithm) const
	Verify discontiguous ranges using the key with name `keyName` and using the digest `digestAlgorithm`. More...

boost::logic::tribool	verify (const uint8_t buf, size_t bufLen, const uint8_t sig, size_t sigLen, const Name &keyName, DigestAlgorithm digestAlgorithm) const
	Verify blob using the key with name `keyName` and using the digest `digestAlgorithm`. More...

Detailed Description

TPM front-end class.

The TPM (Trusted Platform Module) stores the private portion of a user's cryptography keys. The format and location of stored information is indicated by the TpmLocator. The TPM is designed to work with a PIB (Public Information Base) which stores public keys and related information such as certificate.

The TPM also provides functionalities of crypto transformation, such as signing and decryption.

A TPM consists of a unified front-end interface and a back-end implementation. The front-end cache the handles of private keys which is provided by the back-end implementation.

Note: Tpm instance is created and managed only by KeyChain. KeyChain::getTpm() returns a const reference to the managed Tpm instance, through which it is possible to check the existence of private keys, get the public key corresponding to a private key, sign, and decrypt the supplied buffers using managed private keys.

Definition at line 65 of file tpm.hpp.

Constructor & Destructor Documentation

◆ ~Tpm()

ndn::security::tpm::Tpm::~Tpm ( )

default

Member Function Documentation

◆ decrypt() [1/2]

ConstBufferPtr ndn::security::tpm::Tpm::decrypt	(	const uint8_t *	buf,
		size_t	size,
		const Name &	keyName
	)		const

inline

Decrypt blob using the key with name keyName.

Deprecated:

Returns: The decrypted data, or nullptr if the key does not exist.

Definition at line 160 of file tpm.hpp.

◆ decrypt() [2/2]

ConstBufferPtr ndn::security::tpm::Tpm::decrypt	(	span< const uint8_t >	buf,
		const Name &	keyName
	)		const

Decrypt blob using the key with name keyName.

Returns: The decrypted data, or nullptr if the key does not exist.

Definition at line 98 of file tpm.cpp.

◆ getPublicKey()

ConstBufferPtr ndn::security::tpm::Tpm::getPublicKey ( const Name & keyName ) const

Returns: The public portion of an asymmetric key with name keyName, or nullptr if the key does not exist,

The public key is in PKCS#8 format.

Definition at line 73 of file tpm.cpp.

◆ getTpmLocator()

std::string ndn::security::tpm::Tpm::getTpmLocator ( ) const

Definition at line 42 of file tpm.cpp.

◆ hasKey()

bool ndn::security::tpm::Tpm::hasKey ( const Name & keyName ) const

Check if a private key exists.

Parameters

keyName The key name

Returns: true if the key exists

Definition at line 48 of file tpm.cpp.

◆ isTerminalMode()

bool ndn::security::tpm::Tpm::isTerminalMode ( ) const

Check if the TPM is in terminal mode.

Definition at line 105 of file tpm.cpp.

◆ isTpmLocked()

bool ndn::security::tpm::Tpm::isTpmLocked ( ) const

Returns: true if the TPM is locked, otherwise false.

Definition at line 117 of file tpm.cpp.

◆ setTerminalMode()

void ndn::security::tpm::Tpm::setTerminalMode ( bool isTerminal ) const

Set the terminal mode of the TPM.

When in terminal mode, the TPM will not ask user permission from GUI.

Definition at line 111 of file tpm.cpp.

◆ sign() [1/2]

ConstBufferPtr ndn::security::tpm::Tpm::sign	(	const InputBuffers &	bufs,
		const Name &	keyName,
		DigestAlgorithm	digestAlgorithm
	)		const

Sign discontiguous ranges using the key with name keyName and using the digest digestAlgorithm.

Returns: The signature, or nullptr if the key does not exist.

Definition at line 80 of file tpm.cpp.

◆ sign() [2/2]

ConstBufferPtr ndn::security::tpm::Tpm::sign	(	const uint8_t *	buf,
		size_t	size,
		const Name &	keyName,
		DigestAlgorithm	digestAlgorithm
	)		const

inline

Sign blob using the key with name keyName and using the digest digestAlgorithm.

Deprecated:

Returns: The signature, or nullptr if the key does not exist.

Definition at line 113 of file tpm.hpp.

◆ unlockTpm()

bool ndn::security::tpm::Tpm::unlockTpm	(	const char *	password,
		size_t	passwordLength
	)		const

Unlock the TPM.

Parameters

password	The password to unlock the TPM.
passwordLength	The password size.

Definition at line 123 of file tpm.cpp.

◆ verify() [1/2]

boost::logic::tribool ndn::security::tpm::Tpm::verify	(	const InputBuffers &	bufs,
		span< const uint8_t >	sig,
		const Name &	keyName,
		DigestAlgorithm	digestAlgorithm
	)		const

Verify discontiguous ranges using the key with name keyName and using the digest digestAlgorithm.

Return values

true	the signature is valid
false	the signature is not valid
indeterminate	the key does not exist

Definition at line 87 of file tpm.cpp.

◆ verify() [2/2]

boost::logic::tribool ndn::security::tpm::Tpm::verify	(	const uint8_t *	buf,
		size_t	bufLen,
		const uint8_t *	sig,
		size_t	sigLen,
		const Name &	keyName,
		DigestAlgorithm	digestAlgorithm
	)		const

inline

Verify blob using the key with name keyName and using the digest digestAlgorithm.

Deprecated:

Return values

true	the signature is valid
false	the signature is not valid
indeterminate	the key does not exist

Definition at line 139 of file tpm.hpp.

ndn-cxx: NDN C++ library with eXperimental eXtensions 0.8.0 documentation

Classes

Public Member Functions

Detailed Description

Constructor & Destructor Documentation

◆ ~Tpm()

Member Function Documentation

◆ decrypt() [1/2]

◆ decrypt() [2/2]

◆ getPublicKey()

◆ getTpmLocator()

◆ hasKey()

◆ isTerminalMode()

◆ isTpmLocked()

◆ setTerminalMode()

◆ sign() [1/2]

◆ sign() [2/2]

◆ unlockTpm()

◆ verify() [1/2]

◆ verify() [2/2]