d3/dfa/v3_2certificate__cache_8hpp_source.html

#pragma once

#include <vanetza/security/hashed_id.hpp>

#include <vanetza/security/v3/certificate.hpp>

#include <unordered_map>

#include <unordered_set>


namespace vanetza

{

namespace security

{

namespace v3

{


/**

 * CertificateCache stores validated v1.3.1 certificates for later lookup.

 * Required for checking messages' signatures containing only a certificate digest.

 */


class CertificateCache

{

public:

    /**

     * Lookup certificate based on given digest

     * \param digest certificate digest

     * \return certificate matching digest

     */

    const Certificate* lookup(const HashedId8& digest) const;

    const Certificate* lookup(const HashedId3& digest) const;


    /**

     * Store a (pre-validated) certificate in cache

     * \param cert certificate

     */

    void store(Certificate cert);


    size_t size() const { return m_storage.size(); }


    /**

     * Announce a station with a given certificate digest.

     * \param digest certificate digest

     * \return true if digest was not known before

     */

    bool announce(const HashedId8& digest);


    /**

     * Test if a certificate digest is already known, i.e. either

     * its certificate is stored or at least the digest has been announced.

     * \param digest certificate digest

     * \return true if digest is known

     */

    bool is_known(const HashedId8& digest) const;


private:

    using CertificateMap = std::unordered_map<HashedId8, Certificate>;

    using ShortDigestMap = std::unordered_map<HashedId3, CertificateMap::iterator>;


    // TODO add bounded capacity and automatic removal of expired certificates

    CertificateMap m_storage;

    ShortDigestMap m_short_digests;

    std::unordered_set<HashedId8> m_digests;

};


} // namespace v3

} // namespace security

} // namespace vanetza

vanetza::Clock
Definition clock.hpp:16

vanetza::PositionProvider
Definition position_provider.hpp:16

vanetza::PositionProvider::position_fix
virtual const PositionFix & position_fix()=0

vanetza::Runtime
Definition runtime.hpp:16

vanetza::Runtime::now
virtual Clock::time_point now() const =0

vanetza::security::Backend
Definition backend.hpp:25

vanetza::security::CertificateValidity
Definition certificate_validity.hpp:28

vanetza::security::CertificateValidity::valid
static CertificateValidity valid()
Create CertificateValidity signalling a valid certificate This method is equivalent to default constr...
Definition certificate_validity.hpp:43

vanetza::security::CertificateValidity::reason
CertificateInvalidReason reason() const
Get reason for certificate invalidity This call is only safe if reason is available,...
Definition certificate_validity.hpp:57

vanetza::security::StraightVerifyService
Definition straight_verify_service.hpp:43

vanetza::security::VerifyService
Definition verify_service.hpp:62

vanetza::security::v2::CertificateCache
Definition certificate_cache.hpp:23

vanetza::security::v2::CertificateCache::size
std::size_t size() const
Definition certificate_cache.hpp:47

vanetza::security::v2::CertificateCache::insert
void insert(const Certificate &certificate)
Definition certificate_cache.cpp:15

vanetza::security::v2::CertificateCache::lookup
std::list< Certificate > lookup(const HashedId8 &id, SubjectType type)
Definition certificate_cache.cpp:55

vanetza::security::v2::CertificateProvider
Definition certificate_provider.hpp:16

vanetza::security::v2::CertificateProvider::own_private_key
virtual const ecdsa256::PrivateKey & own_private_key()=0

vanetza::security::v2::CertificateProvider::own_certificate
virtual const Certificate & own_certificate()=0

vanetza::security::v2::CertificateProvider::own_chain
virtual std::list< Certificate > own_chain()=0

vanetza::security::v2::CertificateValidator
Definition certificate_validator.hpp:17

vanetza::security::v2::CertificateValidator::check_certificate
virtual CertificateValidity check_certificate(const Certificate &certificate)=0

vanetza::security::v2::DefaultSignHeaderPolicy
Definition sign_header_policy.hpp:67

vanetza::security::v2::DefaultSignHeaderPolicy::request_unrecognized_certificate
void request_unrecognized_certificate(HashedId8 id) override
Definition sign_header_policy.cpp:82

vanetza::security::v2::DefaultSignHeaderPolicy::request_certificate_chain
void request_certificate_chain() override
Definition sign_header_policy.cpp:92

vanetza::security::v2::DefaultSignHeaderPolicy::prepare_header
std::list< HeaderField > prepare_header(const SignRequest &request, CertificateProvider &certificate_provider) override
Definition sign_header_policy.cpp:21

vanetza::security::v2::DefaultSignHeaderPolicy::request_certificate
void request_certificate() override
Definition sign_header_policy.cpp:87

vanetza::security::v2::IntX
IntX specified in TS 103 097 v1.2.1, section 4.2.1.
Definition int_x.hpp:21

vanetza::security::v2::SignHeaderPolicy
Definition sign_header_policy.hpp:33

vanetza::security::v2::SignHeaderPolicy::request_unrecognized_certificate
virtual void request_unrecognized_certificate(HashedId8 id)=0

vanetza::security::v2::SignHeaderPolicy::request_certificate
virtual void request_certificate()=0

vanetza::security::v2::SignHeaderPolicy::request_certificate_chain
virtual void request_certificate_chain()=0

vanetza::security::v2::SignHeaderPolicy::prepare_header
virtual std::list< HeaderField > prepare_header(const SignRequest &req, CertificateProvider &certprvd)=0

vanetza::security::v3::CertificateCache
Definition certificate_cache.hpp:19

vanetza::security::v3::CertificateCache::is_known
bool is_known(const HashedId8 &digest) const
Definition certificate_cache.cpp:52

vanetza::security::v3::CertificateCache::announce
bool announce(const HashedId8 &digest)
Definition certificate_cache.cpp:45

vanetza::security::v3::CertificateCache::lookup
const Certificate * lookup(const HashedId8 &digest) const
Definition certificate_cache.cpp:11

vanetza::security::v3::CertificateCache::store
void store(Certificate cert)
Definition certificate_cache.cpp:31

vanetza::security::v3::CertificateProvider
Definition certificate_provider.hpp:14

vanetza::security::v3::CertificateProvider::cache
virtual CertificateCache & cache()=0

vanetza::security::v3::CertificateValidator
Definition certificate_validator.hpp:23

vanetza::security::v3::CertificateValidator::valid_for_signing
virtual Verdict valid_for_signing(const CertificateView &certificate, ItsAid app)=0

vanetza::security::v3::CertificateView
Definition certificate.hpp:35

vanetza::security::v3::SignHeaderPolicy
Definition sign_header_policy.hpp:32

vanetza::security::v3::SignHeaderPolicy::discard_p2p_request
virtual void discard_p2p_request(HashedId3 id)=0

vanetza::security::v3::SignHeaderPolicy::request_certificate
virtual void request_certificate()=0

vanetza::security::v3::SignHeaderPolicy::enqueue_p2p_request
virtual void enqueue_p2p_request(HashedId3 id)=0

vanetza::security::v3::SignHeaderPolicy::request_unrecognized_certificate
virtual void request_unrecognized_certificate(HashedId8 id)=0

vanetza::PositionFix
Definition position_fix.hpp:16

vanetza::security::SignRequest
Definition sign_service.hpp:26

vanetza::security::VerifyConfirm
Definition verify_service.hpp:50

vanetza::security::VerifyRequest
Definition verify_service.hpp:43

vanetza::security::ecdsa256::PrivateKey
Definition ecdsa256.hpp:32

vanetza::security::v2::CertificateCache::CachedCertificate
Definition certificate_cache.hpp:62

vanetza::security::v2::CertificateCache::Expiry
Definition certificate_cache.hpp:54

vanetza::security::v2::Certificate
described in TS 103 097 v1.2.1 (2015-06), section 6.1
Definition certificate.hpp:28

vanetza::security::v2::SecuredMessage
SecuredMessage as specified in TS 103 097 v1.2.1, section 5.1.
Definition secured_message.hpp:20

vanetza::security::v2::SecuredMessage::trailer_field
const TrailerField * trailer_field(TrailerFieldType type) const
Definition secured_message.cpp:51

vanetza::security::v2::Signature
Definition signature.hpp:18

vanetza::security::v3::Certificate
Definition certificate.hpp:134

vanetza::security::v3::SecuredMessage
Definition secured_message.hpp:29