Alexander Afanasyev | 7e72141 | 2017-01-11 13:36:08 -0800 | [diff] [blame] | 1 | /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */ |
Davide Pesavento | 74daf74 | 2018-11-23 18:14:13 -0500 | [diff] [blame] | 2 | /* |
Alexander Afanasyev | 09236c2 | 2020-06-03 13:42:38 -0400 | [diff] [blame] | 3 | * Copyright (c) 2013-2020 Regents of the University of California. |
Alexander Afanasyev | 7e72141 | 2017-01-11 13:36:08 -0800 | [diff] [blame] | 4 | * |
| 5 | * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions). |
| 6 | * |
| 7 | * ndn-cxx library is free software: you can redistribute it and/or modify it under the |
| 8 | * terms of the GNU Lesser General Public License as published by the Free Software |
| 9 | * Foundation, either version 3 of the License, or (at your option) any later version. |
| 10 | * |
| 11 | * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY |
| 12 | * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A |
| 13 | * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. |
| 14 | * |
| 15 | * You should have received copies of the GNU General Public License and GNU Lesser |
| 16 | * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see |
| 17 | * <http://www.gnu.org/licenses/>. |
| 18 | * |
| 19 | * See AUTHORS.md for complete list of ndn-cxx authors and contributors. |
| 20 | */ |
| 21 | |
Alexander Afanasyev | 09236c2 | 2020-06-03 13:42:38 -0400 | [diff] [blame] | 22 | #include "ndn-cxx/security/validation-policy-simple-hierarchy.hpp" |
Alexander Afanasyev | 7e72141 | 2017-01-11 13:36:08 -0800 | [diff] [blame] | 23 | |
Davide Pesavento | 7e78064 | 2018-11-24 15:51:34 -0500 | [diff] [blame] | 24 | #include "tests/boost-test.hpp" |
Alexander Afanasyev | 09236c2 | 2020-06-03 13:42:38 -0400 | [diff] [blame] | 25 | #include "tests/unit/security/validator-fixture.hpp" |
Alexander Afanasyev | 7e72141 | 2017-01-11 13:36:08 -0800 | [diff] [blame] | 26 | |
| 27 | #include <boost/mpl/vector.hpp> |
| 28 | |
| 29 | namespace ndn { |
| 30 | namespace security { |
Alexander Afanasyev | 09236c2 | 2020-06-03 13:42:38 -0400 | [diff] [blame] | 31 | inline namespace v2 { |
Alexander Afanasyev | 7e72141 | 2017-01-11 13:36:08 -0800 | [diff] [blame] | 32 | namespace tests { |
| 33 | |
| 34 | using namespace ndn::tests; |
| 35 | |
| 36 | BOOST_AUTO_TEST_SUITE(Security) |
Alexander Afanasyev | 7e72141 | 2017-01-11 13:36:08 -0800 | [diff] [blame] | 37 | BOOST_FIXTURE_TEST_SUITE(TestValidationPolicySimpleHierarchy, |
| 38 | HierarchicalValidatorFixture<ValidationPolicySimpleHierarchy>) |
| 39 | |
| 40 | typedef boost::mpl::vector<Interest, Data> Packets; |
| 41 | |
| 42 | BOOST_AUTO_TEST_CASE_TEMPLATE(Validate, Packet, Packets) |
| 43 | { |
Alexander Afanasyev | 09236c2 | 2020-06-03 13:42:38 -0400 | [diff] [blame] | 44 | Packet unsignedPacket("/Security/ValidatorFixture/Sub1/Sub2/Packet"); |
Alexander Afanasyev | 7e72141 | 2017-01-11 13:36:08 -0800 | [diff] [blame] | 45 | |
| 46 | Packet packet = unsignedPacket; |
| 47 | VALIDATE_FAILURE(packet, "Unsigned"); |
| 48 | |
| 49 | packet = unsignedPacket; |
| 50 | m_keyChain.sign(packet, signingWithSha256()); |
| 51 | VALIDATE_FAILURE(packet, "Policy doesn't accept Sha256Digest signature"); |
| 52 | |
| 53 | packet = unsignedPacket; |
| 54 | m_keyChain.sign(packet, signingByIdentity(identity)); |
| 55 | VALIDATE_SUCCESS(packet, "Should get accepted, as signed by the anchor"); |
| 56 | |
| 57 | packet = unsignedPacket; |
| 58 | m_keyChain.sign(packet, signingByIdentity(subIdentity)); |
| 59 | VALIDATE_SUCCESS(packet, "Should get accepted, as signed by the policy-compliant cert"); |
| 60 | |
| 61 | packet = unsignedPacket; |
| 62 | m_keyChain.sign(packet, signingByIdentity(otherIdentity)); |
| 63 | VALIDATE_FAILURE(packet, "Should fail, as signed by the policy-violating cert"); |
| 64 | |
| 65 | packet = unsignedPacket; |
| 66 | m_keyChain.sign(packet, signingByIdentity(subSelfSignedIdentity)); |
| 67 | VALIDATE_FAILURE(packet, "Should fail, because subSelfSignedIdentity is not a trust anchor"); |
| 68 | |
| 69 | // TODO add checks with malformed packets |
| 70 | } |
| 71 | |
| 72 | BOOST_AUTO_TEST_SUITE_END() // TestValidator |
Alexander Afanasyev | 7e72141 | 2017-01-11 13:36:08 -0800 | [diff] [blame] | 73 | BOOST_AUTO_TEST_SUITE_END() // Security |
| 74 | |
| 75 | } // namespace tests |
Alexander Afanasyev | 09236c2 | 2020-06-03 13:42:38 -0400 | [diff] [blame] | 76 | } // inline namespace v2 |
Alexander Afanasyev | 7e72141 | 2017-01-11 13:36:08 -0800 | [diff] [blame] | 77 | } // namespace security |
| 78 | } // namespace ndn |