Class: SelfVerifyPolicyManager

SelfVerifyPolicyManager(storage)

new SelfVerifyPolicyManager(storage)

A SelfVerifyPolicyManager implements a PolicyManager to look up the public key in the given storage. If the public key can't be found, the verification fails.
Parameters:
Name Type Description
storage IdentityStorage | PibImpl (optional) The IdentityStorage or PibImpl for looking up the public key. This object must remain valid during the life of this SelfVerifyPolicyManager. If omitted, then don't look for a public key with the name in the KeyLocator and rely on the KeyLocator having the full public key DER.
Source:

Methods

checkSigningPolicy(dataName, certificateName) → {boolean}

Override to always indicate that the signing certificate name and data name satisfy the signing policy.
Parameters:
Name Type Description
dataName Name The name of data to be signed.
certificateName Name The name of signing certificate.
Source:
Returns:
True to indicate that the signing certificate can be used to sign the data.
Type
boolean

checkVerificationPolicy(dataOrInterest, stepCount, onVerified, onValidationFailed, wireFormat) → {ValidationRequest}

Look in the storage for the public key with the name in the KeyLocator (if available) and use it to verify the data packet. If the public key can't be found, call onValidationFailed.
Parameters:
Name Type Description
dataOrInterest Data | Interest The Data object or interest with the signature to check.
stepCount number The number of verification steps that have been done, used to track the verification progress.
onVerified function If the signature is verified, this calls onVerified(dataOrInterest). NOTE: The library will log any exceptions thrown by this callback, but for better error handling the callback should catch and properly handle any exceptions.
onValidationFailed function If the signature check fails, this calls onValidationFailed(dataOrInterest, reason). NOTE: The library will log any exceptions thrown by this callback, but for better error handling the callback should catch and properly handle any exceptions.
wireFormat WireFormat
Source:
Returns:
null for no further step for looking up a certificate chain.
Type
ValidationRequest

getPublicKeyDer(keyLocator, onComplete)

Look in the storage for the public key with the name in the KeyLocator (if available). If the public key can't be found, return and empty Blob.
Parameters:
Name Type Description
keyLocator KeyLocator The KeyLocator.
onComplete function This calls onComplete(publicKeyDer, reason) where publicKeyDer is the public key DER Blob or an isNull Blob if not found and reason is the reason string if not found.
Source:

inferSigningIdentity(dataName) → {Name}

Override to indicate that the signing identity cannot be inferred.
Parameters:
Name Type Description
dataName Name The name of data to be signed.
Source:
Returns:
An empty name because cannot infer.
Type
Name

requireVerify(dataOrInterest) → {boolean}

Always return true to use the self-verification rule for the received data.
Parameters:
Name Type Description
dataOrInterest Data | Interest The received data packet or interest.
Source:
Returns:
True.
Type
boolean

skipVerifyAndTrust(dataOrInterest) → {boolean}

Never skip verification.
Parameters:
Name Type Description
dataOrInterest Data | Interest The received data packet or interest.
Source:
Returns:
False.
Type
boolean

verify(signatureInfo, signedBlob, onComplete)

Check the type of signatureInfo to get the KeyLocator. Look in the storage for the public key with the name in the KeyLocator (if available) and use it to verify the signedBlob. If the public key can't be found, return false. (This is a generalized method which can verify both a Data packet and an Interest.)
Parameters:
Name Type Description
signatureInfo Signature An object of a subclass of Signature, e.g. Sha256WithRsaSignature.
signedBlob SignedBlob the SignedBlob with the signed portion to verify.
onComplete function This calls onComplete(true, undefined) if the signature verifies, otherwise onComplete(false, reason).
Source: