NS-3 based Named Data Networking (NDN) simulator
ndnSIM 2.3: NDN, CCN, CCNx, content centric networks 		API Documentation
validation-policy.cpp
Go to the documentation of this file.
1 /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
22 #include "validation-policy.hpp"
23 
24 namespace ndn {
25 namespace security {
26 namespace v2 {
27 
28 void
29 ValidationPolicy::setInnerPolicy(unique_ptr<ValidationPolicy> innerPolicy)
30 {
31  if (innerPolicy == nullptr) {
32  BOOST_THROW_EXCEPTION(std::invalid_argument("Inner policy argument cannot be nullptr"));
33  }
34 
35  if (m_validator != nullptr) {
36  innerPolicy->setValidator(*m_validator);
37  }
38 
39  if (m_innerPolicy == nullptr) {
40  m_innerPolicy = std::move(innerPolicy);
41  }
42  else {
43  m_innerPolicy->setInnerPolicy(std::move(innerPolicy));
44  }
45 }
46 
47 ValidationPolicy&
48 ValidationPolicy::getInnerPolicy()
49 {
50  return *m_innerPolicy;
51 }
52 
53 void
54 ValidationPolicy::setValidator(Validator& validator)
55 {
56  m_validator = &validator;
57  if (m_innerPolicy != nullptr) {
58  m_innerPolicy->setValidator(validator);
59  }
60 }
61 
62 static Name
63 getKeyLocatorName(const SignatureInfo& si, ValidationState& state)
64 {
65  if (!si.hasKeyLocator()) {
66  state.fail({ValidationError::Code::INVALID_KEY_LOCATOR, "KeyLocator is missing"});
67  return Name();
68  }
69 
70  const KeyLocator& kl = si.getKeyLocator();
71  if (kl.getType() != KeyLocator::KeyLocator_Name) {
72  state.fail({ValidationError::Code::INVALID_KEY_LOCATOR, "KeyLocator type is not Name"});
73  return Name();
74  }
75 
76  return kl.getName();
77 }
78 
79 Name
80 getKeyLocatorName(const Data& data, ValidationState& state)
81 {
82  return getKeyLocatorName(data.getSignature().getSignatureInfo(), state);
83 }
84 
85 Name
86 getKeyLocatorName(const Interest& interest, ValidationState& state)
87 {
88  const Name& name = interest.getName();
89  if (name.size() < signed_interest::MIN_SIZE) {
90  state.fail({ValidationError::INVALID_KEY_LOCATOR,
91  "Invalid signed Interest: name too short"});
92  return Name();
93  }
94 
95  SignatureInfo si;
96  try {
97  si.wireDecode(name.at(signed_interest::POS_SIG_INFO).blockFromValue());
98  }
99  catch (const tlv::Error& e) {
100  state.fail({ValidationError::Code::INVALID_KEY_LOCATOR,
101  "Invalid signed Interest: " + std::string(e.what())});
102  return Name();
103  }
104 
105  return getKeyLocatorName(si, state);
106 }
107 
108 } // namespace v2
109 } // namespace security
110 } // namespace ndn
ndn::security::v2::ValidationPolicy::setInnerPolicy
void setInnerPolicy(unique_ptr< ValidationPolicy > innerPolicy)
Set inner policy.
Definition: validation-policy.cpp:29
ndn::Interest::getName
const Name & getName() const
Definition: interest.hpp:139
ndn
Copyright (c) 2011-2015 Regents of the University of California.
Definition: ndn-strategy-choice-helper.hpp:34
ndn::SignatureInfo
Represents a SignatureInfo TLV element.
Definition: signature-info.hpp:33
ndn::security::v2::ValidationPolicy::setValidator
void setValidator(Validator &validator)
Set validator to which the policy is associated.
Definition: validation-policy.cpp:54
ndn::Data::getSignature
const Signature & getSignature() const
Get Signature.
Definition: data.hpp:182
ndn::signed_interest::MIN_SIZE
const size_t MIN_SIZE
minimal number of components for Signed Interest
Definition: security-common.hpp:37
ndn::Interest
represents an Interest packet
Definition: interest.hpp:42
ndn::security::v2::ValidationPolicy::getInnerPolicy
ValidationPolicy & getInnerPolicy()
Return the inner policy.
Definition: validation-policy.cpp:48
ndn::KeyLocator::KeyLocator_Name
indicates KeyLocator contains a Name
Definition: key-locator.hpp:49
ndn::security::v2::ValidationPolicy
Abstraction that implements validation policy for Data and Interest packets.
Definition: validation-policy.hpp:37
ndn::SignatureInfo::getKeyLocator
const KeyLocator & getKeyLocator() const
Get KeyLocator.
Definition: signature-info.cpp:151
ndn::security::v2::ValidationPolicy::m_innerPolicy
unique_ptr< ValidationPolicy > m_innerPolicy
Definition: validation-policy.hpp:152
websocketpp::transport::asio::socket::error::security
Catch-all error for security policy errors that don&#39;t fit in other categories.
Definition: base.hpp:79
ndn::Signature::getSignatureInfo
const SignatureInfo & getSignatureInfo() const
Get SignatureInfo.
Definition: signature.hpp:69
ndn::KeyLocator::getName
const Name & getName() const
get Name element
Definition: key-locator.cpp:135
ndn::security::v2::getKeyLocatorName
static Name getKeyLocatorName(const SignatureInfo &si, ValidationState &state)
Definition: validation-policy.cpp:63
ndn::Block::blockFromValue
Block blockFromValue() const
Definition: block.cpp:323
ndn::KeyLocator::getType
Type getType() const
Definition: key-locator.hpp:101
ndn::Name::size
size_t size() const
Get number of components.
Definition: name.hpp:154
ndn::Name
Represents an absolute name.
Definition: name.hpp:42
ndn::Name::at
const Component & at(ssize_t i) const
Get the component at the given index.
Definition: name.cpp:185
ndn::SignatureInfo::wireDecode
void wireDecode(const Block &wire)
Decode from wire format.
Definition: signature-info.cpp:108
ndn::signed_interest::POS_SIG_INFO
const ssize_t POS_SIG_INFO
Definition: security-common.hpp:32
ndn::SignatureInfo::hasKeyLocator
bool hasKeyLocator() const
Check if KeyLocator exists.
Definition: signature-info.hpp:101
ndn::security::v2::ValidationState::fail
virtual void fail(const ValidationError &error)=0
Call the failure callback.
ndn::Data
Represents a Data packet.
Definition: data.hpp:35
ndn::tlv::Error
represents an error in TLV encoding or decoding
Definition: tlv.hpp:50
ndn::security::v2::Validator
Interface for validating data and interest packets.
Definition: validator.hpp:61