2.3/doxygen/validator-config_8hpp_source.html

 /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
 #ifndef NDN_SECURITY_VALIDATOR_CONFIG_HPP
 #define NDN_SECURITY_VALIDATOR_CONFIG_HPP

 #include "validator.hpp"
 #include "certificate-cache.hpp"
 #include "conf/rule.hpp"
 #include "conf/common.hpp"

 namespace ndn {
 namespace security {

 class ValidatorConfig : public Validator
 {
 public:
   class Error : public Validator::Error
   {
   public:
     explicit
     Error(const std::string& what)
       : Validator::Error(what)
     {
     }
   };

   explicit
   ValidatorConfig(Face* face = nullptr,
                   const shared_ptr<CertificateCache>& certificateCache = DEFAULT_CERTIFICATE_CACHE,
                   const time::milliseconds& graceInterval = DEFAULT_GRACE_INTERVAL,
                   const size_t stepLimit = 10,
                   const size_t maxTrackedKeys = 1000,
                   const time::system_clock::Duration& keyTimestampTtl = DEFAULT_KEY_TIMESTAMP_TTL);

   explicit
   ValidatorConfig(Face& face,
                   const shared_ptr<CertificateCache>& certificateCache = DEFAULT_CERTIFICATE_CACHE,
                   const time::milliseconds& graceInterval = DEFAULT_GRACE_INTERVAL,
                   const size_t stepLimit = 10,
                   const size_t maxTrackedKeys = 1000,
                   const time::system_clock::Duration& keyTimestampTtl = DEFAULT_KEY_TIMESTAMP_TTL);

   void
   load(const std::string& filename);

   void
   load(const std::string& input, const std::string& filename);

   void
   load(std::istream& input, const std::string& filename);

   void
   load(const security::conf::ConfigSection& configSection,
        const std::string& filename);

   void
   reset();

   bool
   isEmpty();

 protected:
   virtual void
   checkPolicy(const Data& data,
               int nSteps,
               const OnDataValidated& onValidated,
               const OnDataValidationFailed& onValidationFailed,
               std::vector<shared_ptr<ValidationRequest>>& nextSteps) override;

   virtual void
   checkPolicy(const Interest& interest,
               int nSteps,
               const OnInterestValidated& onValidated,
               const OnInterestValidationFailed& onValidationFailed,
               std::vector<shared_ptr<ValidationRequest>>& nextSteps) override;

 private:
   template<class Packet, class OnValidated, class OnFailed>
   void
   checkSignature(const Packet& packet,
                  const Signature& signature,
                  size_t nSteps,
                  const OnValidated& onValidated,
                  const OnFailed& onValidationFailed,
                  std::vector<shared_ptr<ValidationRequest>>& nextSteps);

   void
   checkTimestamp(const shared_ptr<const Interest>& interest,
                  const Name& keyName,
                  const OnInterestValidated& onValidated,
                  const OnInterestValidationFailed& onValidationFailed);

   template<class Packet, class OnValidated, class OnFailed>
   void
   onCertValidated(const shared_ptr<const Data>& signCertificate,
                   const shared_ptr<const Packet>& packet,
                   const OnValidated& onValidated,
                   const OnFailed& onValidationFailed);

   template<class Packet, class OnFailed>
   void
   onCertFailed(const shared_ptr<const Data>& signCertificate,
                const std::string& failureInfo,
                const shared_ptr<const Packet>& packet,
                const OnFailed& onValidationFailed);

   void
   onConfigRule(const security::conf::ConfigSection& section,
                const std::string& filename);

   void
   onConfigTrustAnchor(const security::conf::ConfigSection& section,
                       const std::string& filename);

   time::nanoseconds
   getRefreshPeriod(std::string refreshString);

   time::nanoseconds
   getDefaultRefreshPeriod();

   void
   refreshAnchors();

   void
   cleanOldKeys();

   class TrustAnchorContainer
   {
   public:
     const std::list<shared_ptr<v1::IdentityCertificate>>&
     getAll() const
     {
       return m_certificates;
     }

     void
     add(shared_ptr<v1::IdentityCertificate> certificate)
     {
       m_certificates.push_back(certificate);
     }

   protected:
     std::list<shared_ptr<v1::IdentityCertificate>> m_certificates;
   };

   class DynamicTrustAnchorContainer : public TrustAnchorContainer
   {
   public:
     DynamicTrustAnchorContainer(const boost::filesystem::path& path, bool isDir,
                                 time::nanoseconds refreshPeriod)
       : m_path(path)
       , m_isDir(isDir)
       , m_refreshPeriod(refreshPeriod)
     {
     }

     void
     setLastRefresh(const time::system_clock::TimePoint& lastRefresh)
     {
       m_lastRefresh = lastRefresh;
     }

     const time::system_clock::TimePoint&
     getLastRefresh() const
     {
       return m_lastRefresh;
     }

     const time::nanoseconds&
     getRefreshPeriod() const
     {
       return m_refreshPeriod;
     }

     void
     refresh();

   private:
     boost::filesystem::path m_path;
     bool m_isDir;

     time::system_clock::TimePoint m_lastRefresh;
     time::nanoseconds m_refreshPeriod;
   };

   static inline bool
   compareDynamicContainer(const DynamicTrustAnchorContainer& containerA,
                           const DynamicTrustAnchorContainer& containerB)
   {
     return (containerA.getLastRefresh() < containerB.getLastRefresh());
   }

 public:
   static const shared_ptr<CertificateCache> DEFAULT_CERTIFICATE_CACHE;
   static const time::milliseconds DEFAULT_GRACE_INTERVAL;
   static const time::system_clock::Duration DEFAULT_KEY_TIMESTAMP_TTL;

 NDN_CXX_PUBLIC_WITH_TESTS_ELSE_PRIVATE:
   typedef security::conf::Rule<Interest> InterestRule;
   typedef security::conf::Rule<Data>     DataRule;
   typedef std::vector<shared_ptr<InterestRule>> InterestRuleList;
   typedef std::vector<shared_ptr<DataRule>>     DataRuleList;
   typedef std::map<Name, shared_ptr<v1::IdentityCertificate>> AnchorList;
   typedef std::list<DynamicTrustAnchorContainer> DynamicContainers; // sorted by m_lastRefresh
   typedef std::list<shared_ptr<v1::IdentityCertificate>> CertificateList;

   bool m_shouldValidate;

   size_t m_stepLimit;
   shared_ptr<CertificateCache> m_certificateCache;

   InterestRuleList m_interestRules;
   DataRuleList m_dataRules;

   AnchorList m_anchors;
   TrustAnchorContainer m_staticContainer;
   DynamicContainers m_dynamicContainers;

   time::milliseconds m_graceInterval;
   size_t m_maxTrackedKeys;
   typedef std::map<Name, time::system_clock::TimePoint> LastTimestampMap;
   LastTimestampMap m_lastTimestamp;
   const time::system_clock::Duration& m_keyTimestampTtl;
 };

 } // namespace security

 using security::ValidatorConfig;

 } // namespace ndn

 #endif // NDN_SECURITY_VALIDATOR_CONFIG_HPP
ndn::security::ValidatorConfig::InterestRuleList
std::vector< shared_ptr< InterestRule > > InterestRuleList
Definition: validator-config.hpp:231

ndn::security::OnInterestValidationFailed
function< void(const shared_ptr< const Interest > &, const std::string &)> OnInterestValidationFailed
Callback to report a failed Interest validation.
Definition: validation-request.hpp:37

ndn
Copyright (c) 2011-2015 Regents of the University of California.
Definition: ndn-strategy-choice-helper.hpp:34

ndn::security::ValidatorConfig::m_interestRules
InterestRuleList m_interestRules
Definition: validator-config.hpp:247

ndn::security::ValidatorConfig::load
void load(const std::string &filename)
Definition: validator-config.cpp:79

ndn::time::system_clock::Duration
duration Duration
Definition: time.hpp:91

NDN_CXX_PUBLIC_WITH_TESTS_ELSE_PRIVATE
#define NDN_CXX_PUBLIC_WITH_TESTS_ELSE_PRIVATE
Definition: common.hpp:43

ndn::security::ValidatorConfig::m_graceInterval
time::milliseconds m_graceInterval
Definition: validator-config.hpp:254

certificate-cache.hpp

ndn::security::ValidatorConfig::m_anchors
AnchorList m_anchors
Definition: validator-config.hpp:250

ndn::security::ValidatorConfig
The validator which can be set up via a configuration file.
Definition: validator-config.hpp:39

ndn::security::ValidatorConfig::Error::Error
Error(const std::string &what)
Definition: validator-config.hpp:46

validator.hpp

ndn::Interest
represents an Interest packet
Definition: interest.hpp:42

ndn::security::ValidatorConfig::m_stepLimit
size_t m_stepLimit
Definition: validator-config.hpp:244

ndn::security::ValidatorConfig::ValidatorConfig
ValidatorConfig(Face *face=nullptr, const shared_ptr< CertificateCache > &certificateCache=DEFAULT_CERTIFICATE_CACHE, const time::milliseconds &graceInterval=DEFAULT_GRACE_INTERVAL, const size_t stepLimit=10, const size_t maxTrackedKeys=1000, const time::system_clock::Duration &keyTimestampTtl=DEFAULT_KEY_TIMESTAMP_TTL)
Definition: validator-config.cpp:40

ndn::security::OnDataValidationFailed
function< void(const shared_ptr< const Data > &, const std::string &)> OnDataValidationFailed
Callback to report a failed Data validation.
Definition: validation-request.hpp:44

ndn::security::ValidatorConfig::DEFAULT_GRACE_INTERVAL
static const time::milliseconds DEFAULT_GRACE_INTERVAL
Definition: validator-config.hpp:225

ndn::security::ValidatorConfig::DataRuleList
std::vector< shared_ptr< DataRule > > DataRuleList
Definition: validator-config.hpp:232

ndn::security::ValidatorConfig::DataRule
security::conf::Rule< Data > DataRule
Definition: validator-config.hpp:230

ndn::security::OnDataValidated
function< void(const shared_ptr< const Data > &)> OnDataValidated
Callback to report a successful Data validation.
Definition: validation-request.hpp:40

ndn::security::ValidatorConfig::m_staticContainer
TrustAnchorContainer m_staticContainer
Definition: validator-config.hpp:251

ndn::security::OnInterestValidated
function< void(const shared_ptr< const Interest > &)> OnInterestValidated
Callback to report a successful Interest validation.
Definition: validation-request.hpp:33

rule.hpp

ndn::security::ValidatorConfig::m_dynamicContainers
DynamicContainers m_dynamicContainers
Definition: validator-config.hpp:252

ndn::security::conf::Rule
Definition: rule.hpp:37

ndn::security::Validator::Error
Definition: validator.hpp:45

ndn::security::ValidatorConfig::DEFAULT_CERTIFICATE_CACHE
static const shared_ptr< CertificateCache > DEFAULT_CERTIFICATE_CACHE
Definition: validator-config.hpp:224

ndn::security::ValidatorConfig::m_certificateCache
shared_ptr< CertificateCache > m_certificateCache
Definition: validator-config.hpp:245

ndn::security::ValidatorConfig::reset
void reset()
Definition: validator-config.cpp:354

ndn::security::ValidatorConfig::CertificateList
std::list< shared_ptr< v1::IdentityCertificate > > CertificateList
Definition: validator-config.hpp:235

ndn::security::Validator
provides the interfaces for packet validation.
Definition: validator.hpp:42

ndn::Face
Provide a communication channel with local or remote NDN forwarder.
Definition: face.hpp:125

ndn::security::ValidatorConfig::isEmpty
bool isEmpty()
Definition: validator-config.cpp:369

ndn::security::ValidatorConfig::m_dataRules
DataRuleList m_dataRules
Definition: validator-config.hpp:248

ndn::security::ValidatorConfig::Error
Definition: validator-config.hpp:42

face

ndn::Name
Name abstraction to represent an absolute name.
Definition: name.hpp:46

ndn::security::ValidatorConfig::checkPolicy
virtual void checkPolicy(const Data &data, int nSteps, const OnDataValidated &onValidated, const OnDataValidationFailed &onValidationFailed, std::vector< shared_ptr< ValidationRequest >> &nextSteps) override
Check the Data against policy and return the next validation step if necessary.
Definition: validator-config.cpp:445

ndn::security::ValidatorConfig::LastTimestampMap
std::map< Name, time::system_clock::TimePoint > LastTimestampMap
Definition: validator-config.hpp:256

ndn::security::ValidatorConfig::m_keyTimestampTtl
const time::system_clock::Duration & m_keyTimestampTtl
Definition: validator-config.hpp:258

ndn::time::system_clock::TimePoint
time_point TimePoint
Definition: time.hpp:90

ndn::security::conf::ConfigSection
boost::property_tree::ptree ConfigSection
Definition: common.hpp:35

ndn::security::ValidatorConfig::DEFAULT_KEY_TIMESTAMP_TTL
static const time::system_clock::Duration DEFAULT_KEY_TIMESTAMP_TTL
Definition: validator-config.hpp:226

ndn::security::ValidatorConfig::DynamicContainers
std::list< DynamicTrustAnchorContainer > DynamicContainers
Definition: validator-config.hpp:234

ndn::security::ValidatorConfig::m_shouldValidate
bool m_shouldValidate
gives whether validation should be preformed
Definition: validator-config.hpp:242

ndn::Data
represents a Data packet
Definition: data.hpp:37

ndn::security::ValidatorConfig::AnchorList
std::map< Name, shared_ptr< v1::IdentityCertificate > > AnchorList
Definition: validator-config.hpp:233

ndn::security::ValidatorConfig::m_lastTimestamp
LastTimestampMap m_lastTimestamp
Definition: validator-config.hpp:257

common.hpp

security

ndn::Signature
A Signature is storage for the signature-related information (info and value) in a Data packet...
Definition: signature.hpp:33

ndn::security::ValidatorConfig::m_maxTrackedKeys
size_t m_maxTrackedKeys
Definition: validator-config.hpp:255