lvs: Add an example

Author: zjkmxy

docs/src/app.rst

@@ -67,11 +67,16 @@ If there is a conflict, the earlier an argument is listed the higher priority it
   All other related parameters will be ignored. The Keychain will not be used.
 + **no_signature** (*bool*) - not signed. Not recommended.
 + **digest_sha256** (*bool*) - using SHA-256 digest to protect integrity only. ``False`` by default.
++ **cert** (:any:`NonStrictName`) - using the speficied Certificate to sign this packet.
+  The Key name will be derived from the certificate name.
 + **key** - using the specified Key to sign this packet.
   Either a Key object or the :any:`NonStrictName` of a Key is acceptable.
+  KeyLocator will be set to the default Certificate name of this Key unless specified.
 + **identity** - using the default Key of the specified Identity to sign this packet.
   Either an Identity object or the :any:`NonStrictName` of an Identity is acceptable.
   The default Identity will be used if all of the above arguments are omitted.
++ **key_locator** (:any:`NonStrictName`) - using the specified KeyLocator Name regardless of which
+  Key is used.
 
 Reference
 ---------

examples/lvs/consumer.py

@@ -0,0 +1,69 @@
+import os
+import sys
+import logging
+from ndn.utils import timestamp
+from ndn.encoding import Name, Component, InterestParam
+from ndn.security import TpmFile, KeychainSqlite3
+from ndn.app import NDNApp, InterestNack, InterestTimeout, InterestCanceled, ValidationFailure
+from ndn.app_support.light_versec import compile_lvs, Checker, DEFAULT_USER_FNS, lvs_validator
+
+
+logging.basicConfig(format='[{asctime}]{levelname}:{message}',
+                    datefmt='%Y-%m-%d %H:%M:%S',
+                    level=logging.INFO,
+                    style='{')
+
+lvs_text = r'''
+#KEY: "KEY"/_/_/_
+#site: "lvs-test"
+#article: #site/"article"/author/post/_version & {_version: $eq_type("v=0")} <= #author
+#author: #site/"author"/author/"KEY"/_/admin/_ <= #admin
+#admin: #site/"admin"/admin/#KEY <= #root
+#root: #site/#KEY
+'''
+
+
+def main():
+    basedir = os.path.dirname(os.path.abspath(sys.argv[0]))
+    tpm_path = os.path.join(basedir, 'privKeys')
+    pib_path = os.path.join(basedir, 'pib.db')
+    keychain = KeychainSqlite3(pib_path, TpmFile(tpm_path))
+
+    trust_anchor = keychain['/lvs-test'].default_key().default_cert()
+    print(f'Trust anchor name: {Name.to_str(trust_anchor.name)}')
+
+    lvs_model = compile_lvs(lvs_text)
+    checker = Checker(lvs_model, DEFAULT_USER_FNS)
+    app = NDNApp(keychain=keychain)
+    validator = lvs_validator(checker, app, trust_anchor.data)
+    app.data_validator = validator
+
+    async def fetch_interest(article: str):
+        try:
+            name = Name.from_str(f'/lvs-test/article/xinyu/{article}')
+            print(f'Sending Interest {Name.to_str(name)}')
+            data_name, meta_info, content = await app.express_interest(
+                name, must_be_fresh=True, can_be_prefix=True, lifetime=6000)
+            print(f'Received Data Name: {Name.to_str(data_name)}')
+            print(meta_info)
+            print(bytes(content).decode() if content else None)
+        except InterestNack as e:
+            print(f'Nacked with reason={e.reason}')
+        except InterestTimeout:
+            print(f'Timeout')
+        except InterestCanceled:
+            print(f'Canceled')
+        except ValidationFailure:
+            print(f'Data failed to validate')
+
+    async def ndn_main():
+        await fetch_interest('hello')
+        await fetch_interest('world')
+
+        app.shutdown()
+
+    app.run_forever(ndn_main())
+
+
+if __name__ == '__main__':
+    main()

examples/lvs/ls-certificates.sh

@@ -0,0 +1 @@
+pyndnsec --path . --tpm tpm-file --tpm-path privKeys ls -vvv

examples/lvs/pib.db

@@ -0,0 +1,3 @@
+MHcCAQEEIF7ZR5mKgKfnBQ6XMPDijYNH0UKNjLPnBbqBBXi1jb+xoAoGCCqGSM49
+AwEHoUQDQgAENFhT28Rsqhfaej7PcfHIy5Sf9oU5JzRuhp/NuyURonOx0I9ely8g
+XbaLqeYq6asyPBaqIp+US8Z1FPIbGTKTxA==

examples/lvs/privKeys/97cc0c81777e988284f8030c4dfaef1f828daf64971ef1bcaa8a4ca3b1f50cbf.privkey

@@ -0,0 +1,3 @@
+MHcCAQEEIPyFI6RdO9vhZeFAKJbovhMYht7Ex7gGxsrFfWNZJofYoAoGCCqGSM49
+AwEHoUQDQgAEALGvaZ7m2uRLAYA/J0PFIUkDoyuRyW+kGmL8yY2b2xO6+0RhiF4S
+iuY1pv980c0c3lVccdIP++pk02xt9KIcTQ==

examples/lvs/privKeys/a3e2e001a71e797847dab7f406fd450b4ceb18ab3261a8cf2c498958bf35f17f.privkey

@@ -0,0 +1,3 @@
+MHcCAQEEIPzqwLIknTXhBbVUTPFtLIpUrpqL0+qPDswmWLR/beLgoAoGCCqGSM49
+AwEHoUQDQgAE6OHeZi1CDis43xtih2zU/fv7KfFsa4l/k74NyIBSTXm/cYfmQIzF
+nPK8IHqPfm43/PzaQltgN7LU1GI/hTPSSg==

examples/lvs/privKeys/af3b726c4c32c9de141e6a35865bbbc3a8b2b12d85e27910d8f908e05c47d201.privkey

@@ -0,0 +1,99 @@
+import os
+import sys
+import logging
+from ndn.utils import timestamp
+from ndn.encoding import Name, Component
+from ndn.security import TpmFile, KeychainSqlite3
+from ndn.app import NDNApp
+from ndn.app_support.light_versec import compile_lvs, Checker, DEFAULT_USER_FNS
+
+
+logging.basicConfig(format='[{asctime}]{levelname}:{message}',
+                    datefmt='%Y-%m-%d %H:%M:%S',
+                    level=logging.INFO,
+                    style='{')
+
+lvs_text = r'''
+#KEY: "KEY"/_/_/_
+#site: "lvs-test"
+#article: #site/"article"/author/post/_version & {_version: $eq_type("v=0")} <= #author
+#author: #site/"author"/author/"KEY"/_/admin/_ <= #admin
+#admin: #site/"admin"/admin/#KEY <= #root
+#root: #site/#KEY
+'''
+
+
+def main():
+    basedir = os.path.dirname(os.path.abspath(sys.argv[0]))
+    tpm_path = os.path.join(basedir, 'privKeys')
+    pib_path = os.path.join(basedir, 'pib.db')
+    keychain = KeychainSqlite3(pib_path, TpmFile(tpm_path))
+
+    trust_anchor = keychain['/lvs-test'].default_key().default_cert()
+    admin_cert = keychain['/lvs-test/admin/ndn'].default_key().default_cert()
+    author_cert = keychain['/lvs-test/author/xinyu'].default_key().default_cert()
+    print(f'Trust anchor name: {Name.to_str(trust_anchor.name)}')
+    print(f'Admin name: {Name.to_str(admin_cert.name)}')
+    print(f'Author name: {Name.to_str(author_cert.name)}')
+
+    lvs_model = compile_lvs(lvs_text)
+    checker = Checker(lvs_model, DEFAULT_USER_FNS)
+    # The following manual checks are listed for demonstration only.
+    # In real implementation they are automatically done
+    root_of_trust = checker.root_of_trust()
+    print(f'LVS model root of trust: {root_of_trust}')
+    print(f'LVS model user functions provided: {checker.validate_user_fns()}')
+    ta_matches = sum((m[0] for m in checker.match(trust_anchor.name)), start=[])
+    assert len(ta_matches) > 0
+    assert root_of_trust.issubset(ta_matches)
+    print(f'Trust anchor matches the root of trust: OK')
+
+    app = NDNApp(keychain=keychain)
+
+    @app.route('/lvs-test/article/xinyu/hello')
+    def on_interest(name, param, _app_param):
+        print(f'>> I: {Name.to_str(name)}, {param}')
+        content = "Hello,".encode()
+        data_name = name + [Component.from_version(timestamp())]
+        app.put_data(data_name, content=content, freshness_period=10000)
+        print(f'<< D: {Name.to_str(data_name)}')
+        print(f'Content: {content.decode()}')
+        print('')
+
+    @app.route('/lvs-test/article/xinyu/world')
+    def on_interest(name, param, _app_param):
+        print(f'>> I: {Name.to_str(name)}, {param}')
+        content = "world!".encode()
+        data_name = name + [Component.from_version(timestamp())]
+        app.put_data(data_name, content=content, freshness_period=10000)
+        print(f'<< D: {Name.to_str(data_name)}')
+        print(f'Content: {content.decode()}')
+        print('')
+
+    @app.route(trust_anchor.name)
+    def on_interest(name, param, _app_param):
+        print(f'>> I: {Name.to_str(name)}, {param}')
+        app.put_raw_packet(trust_anchor.data)
+        print(f'<< D: {Name.to_str(trust_anchor.name)}')
+        print('')
+
+    @app.route(admin_cert.name)
+    def on_interest(name, param, _app_param):
+        print(f'>> I: {Name.to_str(name)}, {param}')
+        app.put_raw_packet(admin_cert.data)
+        print(f'<< D: {Name.to_str(admin_cert.name)}')
+        print('')
+
+    @app.route(author_cert.name)
+    def on_interest(name, param, _app_param):
+        print(f'>> I: {Name.to_str(name)}, {param}')
+        app.put_raw_packet(author_cert.data)
+        print(f'<< D: {Name.to_str(author_cert.name)}')
+        print('')
+
+    print('Start serving ...')
+    app.run_forever()
+
+
+if __name__ == '__main__':
+    main()

examples/lvs/producer.py

@@ -0,0 +1,56 @@
+# -----------------------------------------------------------------------------
+# This piece of work is inspired by Pollere' VerSec:
+# https://github.com/pollere/DCT
+# But this code is implemented independently without using any line of the
+# original one, and released under Apache License.
+#
+# Copyright (C) 2019-2022 The python-ndn authors
+#
+# This file is part of python-ndn.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+# -----------------------------------------------------------------------------
+import logging
+from ...encoding import BinaryStr, SignaturePtrs, FormalName, parse_data, Name
+from ...app import NDNApp, Validator
+from ...security import union_checker
+from ...security.validator.cascade_validator import CascadeChecker, PublicKeyStorage, MemoryKeyStorage
+from .checker import Checker
+
+__all__ = ['lvs_validator']
+
+
+def lvs_validator(checker: Checker, app: NDNApp, trust_anchor: BinaryStr,
+                  storage: PublicKeyStorage = MemoryKeyStorage()) -> Validator:
+    async def validate_name(name: FormalName, sig_ptrs: SignaturePtrs) -> bool:
+        if (not sig_ptrs.signature_info or not sig_ptrs.signature_info.key_locator
+                or not sig_ptrs.signature_info.key_locator.name):
+            return False
+        cert_name = sig_ptrs.signature_info.key_locator.name
+        logging.debug(f'LVS Checking {Name.to_str(name)} <- {Name.to_str(cert_name)} ...')
+        return checker.check(name, cert_name)
+
+    def sanity_check():
+        root_of_trust = checker.root_of_trust()
+        if not checker.validate_user_fns():
+            raise ValueError('Missing user functions for LVS validator')
+        cert_name, _, _, _ = parse_data(trust_anchor)
+        ta_matches = sum((m[0] for m in checker.match(cert_name)), start=[])
+        if not ta_matches or not root_of_trust.issubset(ta_matches):
+            raise ValueError('Trust anchor does not match all roots of trust of LVS model')
+
+    sanity_check()
+    cas_checker = CascadeChecker(app, trust_anchor, storage)
+    ret = union_checker(validate_name, cas_checker)
+    cas_checker.next_level = ret
+    return ret

src/ndn/app_support/light_versec/validator.py

@@ -60,18 +60,22 @@ def execute(args: argparse.Namespace):
         return -1
     # Note: Do we need to check the validity of sign_req?
 
-    key_loc = args.key_locator
-    v, id_name, key_name, _ = infer_obj_name(key_loc)
+    key_loc = Name.normalize(args.key_locator)
+    v, id_name, key_name, cert_name = infer_obj_name(key_loc)
     try:
         if v == 0:
             signer = kc.get_signer({'identity': id_name})
-        else:
+        elif v == 1:
             signer = kc.get_signer({'key': key_name})
+        else:
+            signer = kc.get_signer({'cert': cert_name})
     except KeyError:
         if v == 0:
             print(f'Specified identity does not exist: {Name.to_str(id_name)}')
-        else:
+        elif v == 1:
             print(f'Specified key does not exist: {Name.to_str(key_name)}')
+        else:
+            print(f'Specified certificate does not exist: {Name.to_str(cert_name)}')
         return -2
     # Currently python-ndn does not support putting a certificate name into KeyLocator