Validator with "accept-all" policy and offline certificate fetcher.
More...
#include <ndn-cxx/security/validator-null.hpp>
Validator with "accept-all" policy and offline certificate fetcher.
Definition at line 34 of file validator-null.hpp.
◆ ValidatorNull()
ndn::security::v2::ValidatorNull::ValidatorNull |
( |
| ) |
|
◆ cacheUnverifiedCert()
void ndn::security::v2::CertificateStorage::cacheUnverifiedCert |
( |
Certificate && |
cert | ) |
|
|
inherited |
Cache unverified certificate for a period of time (5 minutes).
- Parameters
-
cert | The certificate packet |
- Todo:
- Add ability to customize time period
Definition at line 86 of file certificate-storage.cpp.
◆ cacheVerifiedCert()
void ndn::security::v2::CertificateStorage::cacheVerifiedCert |
( |
Certificate && |
cert | ) |
|
|
protectedinherited |
Cache verified certificate a period of time (1 hour).
- Parameters
-
cert | The certificate packet |
- Todo:
- Add ability to customize time period
Definition at line 74 of file certificate-storage.cpp.
◆ cacheVerifiedCertificate()
void Validator::cacheVerifiedCertificate |
( |
Certificate && |
cert | ) |
|
|
inherited |
Cache verified cert
a period of time (1 hour).
- Todo:
- Add ability to customize time period
Definition at line 190 of file validator.cpp.
◆ findTrustedCert()
const Certificate * ndn::security::v2::CertificateStorage::findTrustedCert |
( |
const Interest & |
interestForCert | ) |
const |
|
inherited |
Find a trusted certificate in trust anchor container or in verified cache.
- Parameters
-
- Returns
- Found certificate, nullptr if not found.
- Note
- The returned pointer may get invalidated after next findTrustedCert() or findCert() calls.
Definition at line 35 of file certificate-storage.cpp.
◆ getFetcher()
◆ getMaxDepth()
size_t ndn::security::v2::Validator::getMaxDepth |
( |
| ) |
const |
|
inlinenoexceptinherited |
Return the maximum depth of the certificate chain.
Definition at line 90 of file validator.hpp.
◆ getPolicy()
◆ getTrustAnchors()
◆ getUnverifiedCertCache()
const CertificateCache & ndn::security::v2::CertificateStorage::getUnverifiedCertCache |
( |
| ) |
const |
|
inherited |
◆ getVerifiedCertCache()
const CertificateCache & ndn::security::v2::CertificateStorage::getVerifiedCertCache |
( |
| ) |
const |
|
inherited |
◆ isCertKnown()
bool ndn::security::v2::CertificateStorage::isCertKnown |
( |
const Name & |
certPrefix | ) |
const |
|
inherited |
Check if certificate exists in the verified/unverified cache or in the set of trust anchors.
Definition at line 47 of file certificate-storage.cpp.
◆ loadAnchor() [1/2]
void Validator::loadAnchor |
( |
const std::string & |
groupId, |
|
|
Certificate && |
cert |
|
) |
| |
|
inherited |
Load static trust anchor.
Static trust anchors are permanently associated with the validator and never expire.
- Parameters
-
Definition at line 171 of file validator.cpp.
◆ loadAnchor() [2/2]
void Validator::loadAnchor |
( |
const std::string & |
groupId, |
|
|
const std::string & |
certfilePath, |
|
|
time::nanoseconds |
refreshPeriod, |
|
|
bool |
isDir = false |
|
) |
| |
|
inherited |
Load dynamic trust anchors.
Dynamic trust anchors are associated with the validator for as long as the underlying trust anchor file (set of files) exist(s).
- Parameters
-
groupId | Certificate group id, must not be empty. |
certfilePath | Specifies the path to load the trust anchors. |
refreshPeriod | Refresh period for the trust anchors, must be positive. |
isDir | Tells whether the path is a directory or a single file. |
Definition at line 177 of file validator.cpp.
◆ resetAnchors()
void Validator::resetAnchors |
( |
| ) |
|
|
inherited |
Remove any previously loaded static or dynamic trust anchor.
Definition at line 184 of file validator.cpp.
◆ resetVerifiedCertificates()
void Validator::resetVerifiedCertificates |
( |
| ) |
|
|
inherited |
Remove any cached verified certificates.
Definition at line 196 of file validator.cpp.
◆ resetVerifiedCerts()
void ndn::security::v2::CertificateStorage::resetVerifiedCerts |
( |
| ) |
|
|
protectedinherited |
◆ setMaxDepth()
void ndn::security::v2::Validator::setMaxDepth |
( |
size_t |
depth | ) |
|
|
inlinenoexceptinherited |
Set the maximum depth of the certificate chain.
Definition at line 99 of file validator.hpp.
◆ validate() [1/2]
Asynchronously validate data
.
- Note
successCb
and failureCb
must not be nullptr
Definition at line 49 of file validator.cpp.
◆ validate() [2/2]
Asynchronously validate interest
.
- Note
successCb
and failureCb
must not be nullptr
Definition at line 62 of file validator.cpp.
◆ m_trustAnchors
◆ m_unverifiedCertCache
◆ m_verifiedCertCache