Gitiles
Code Review Sign In
gerrit.named-data.net / ndn-cxx / 3e3a989096055bcf8134c5578941edbd443ae94d / . / src / security / v2 / validation-policy-simple-hierarchy.cpp
blob: e83c9bcade16faa398302ffbdcc0892b609697b9 [file] [log] [blame]
Alexander Afanasyev7e721412017-01-11 13:36:08 -0800[diff] [blame]1/* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */
Junxiao Shib55e5d32018-07-18 13:32:00 -0600[diff] [blame]2/*
3 * Copyright (c) 2013-2018 Regents of the University of California.
Alexander Afanasyev7e721412017-01-11 13:36:08 -0800[diff] [blame]4 *
5 * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).
6 *
7 * ndn-cxx library is free software: you can redistribute it and/or modify it under the
8 * terms of the GNU Lesser General Public License as published by the Free Software
9 * Foundation, either version 3 of the License, or (at your option) any later version.
10 *
11 * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY
12 * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
13 * PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
14 *
15 * You should have received copies of the GNU General Public License and GNU Lesser
16 * General Public License along with ndn-cxx, e.g., in COPYING.md file. If not, see
17 * <http://www.gnu.org/licenses/>.
18 *
19 * See AUTHORS.md for complete list of ndn-cxx authors and contributors.
20 */
21
22#include "validation-policy-simple-hierarchy.hpp"
23
24namespace ndn {
25namespace security {
26namespace v2 {
27
28void
29ValidationPolicySimpleHierarchy::checkPolicy(const Data& data, const shared_ptr<ValidationState>& state,
30 const ValidationContinuation& continueValidation)
31{
Junxiao Shi830ba972017-06-23 22:44:41 +0000[diff] [blame]32 Name klName = getKeyLocatorName(data, *state);
33 if (!state->getOutcome()) { // already failed
34 return;
Alexander Afanasyev7e721412017-01-11 13:36:08 -0800[diff] [blame]35 }
Junxiao Shi830ba972017-06-23 22:44:41 +0000[diff] [blame]36
37 if (klName.getPrefix(-2).isPrefixOf(data.getName())) {
Junxiao Shib55e5d32018-07-18 13:32:00 -0600[diff] [blame]38 continueValidation(make_shared<CertificateRequest>(klName), state);
Alexander Afanasyev7e721412017-01-11 13:36:08 -0800[diff] [blame]39 }
40 else {
41 state->fail({ValidationError::Code::INVALID_KEY_LOCATOR, "Data signing policy violation for " +
Junxiao Shi830ba972017-06-23 22:44:41 +0000[diff] [blame]42 data.getName().toUri() + " by " + klName.toUri()});
Alexander Afanasyev7e721412017-01-11 13:36:08 -0800[diff] [blame]43 }
44}
45
46void
47ValidationPolicySimpleHierarchy::checkPolicy(const Interest& interest, const shared_ptr<ValidationState>& state,
48 const ValidationContinuation& continueValidation)
49{
Junxiao Shi830ba972017-06-23 22:44:41 +0000[diff] [blame]50 Name klName = getKeyLocatorName(interest, *state);
51 if (!state->getOutcome()) { // already failed
52 return;
Alexander Afanasyev7e721412017-01-11 13:36:08 -0800[diff] [blame]53 }
Junxiao Shi830ba972017-06-23 22:44:41 +0000[diff] [blame]54
55 if (klName.getPrefix(-2).isPrefixOf(interest.getName())) {
Junxiao Shib55e5d32018-07-18 13:32:00 -0600[diff] [blame]56 continueValidation(make_shared<CertificateRequest>(klName), state);
Alexander Afanasyev7e721412017-01-11 13:36:08 -0800[diff] [blame]57 }
58 else {
59 state->fail({ValidationError::Code::INVALID_KEY_LOCATOR, "Interest signing policy violation for " +
Junxiao Shi830ba972017-06-23 22:44:41 +0000[diff] [blame]60 interest.getName().toUri() + " by " + klName.toUri()});
Alexander Afanasyev7e721412017-01-11 13:36:08 -0800[diff] [blame]61 }
62}
63
64} // namespace v2
65} // namespace security
66} // namespace ndn