0.8.1/doxygen/trust-anchor-group_8cpp_source.html

 /* -*- Mode:C++; c-file-style:"gnu"; indent-tabs-mode:nil; -*- */

 /*

  * Copyright (c) 2013-2021 Regents of the University of California.

  *

  * This file is part of ndn-cxx library (NDN C++ library with eXperimental eXtensions).

  *

  * ndn-cxx library is free software: you can redistribute it and/or modify it under the

  * terms of the GNU Lesser General Public License as published by the Free Software

  * Foundation, either version 3 of the License, or (at your option) any later version.

  *

  * ndn-cxx library is distributed in the hope that it will be useful, but WITHOUT ANY

  * WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A

  * PARTICULAR PURPOSE.  See the GNU Lesser General Public License for more details.

  *

  * You should have received copies of the GNU General Public License and GNU Lesser

  * General Public License along with ndn-cxx, e.g., in COPYING.md file.  If not, see

  * <http://www.gnu.org/licenses/>.

  *

  * See AUTHORS.md for complete list of ndn-cxx authors and contributors.

  */


 #include "ndn-cxx/security/trust-anchor-group.hpp"

 #include "ndn-cxx/util/io.hpp"

 #include "ndn-cxx/util/logger.hpp"


 #if BOOST_VERSION >= 107200

 #include <boost/filesystem/directory.hpp>

 #endif

 #include <boost/filesystem/operations.hpp>

 #include <boost/range/adaptor/map.hpp>

 #include <boost/range/algorithm/copy.hpp>

 #include <boost/range/iterator_range.hpp>


 namespace ndn {

 namespace security {

 inline namespace v2 {


 NDN_LOG_INIT(ndn.security.TrustAnchorGroup);


 namespace fs = boost::filesystem;


 TrustAnchorGroup::TrustAnchorGroup(CertContainerInterface& certContainer, const std::string& id)

   : m_certs(certContainer)

   , m_id(id)

 {

 }


 TrustAnchorGroup::~TrustAnchorGroup() = default;


 size_t

 TrustAnchorGroup::size() const

 {

   return m_anchorNames.size();

 }


 void

 TrustAnchorGroup::refresh()

 {

   // base method does nothing

 }


 StaticTrustAnchorGroup::StaticTrustAnchorGroup(CertContainerInterface& certContainer, const std::string& id)

   : TrustAnchorGroup(certContainer, id)

 {

 }


 void

 StaticTrustAnchorGroup::add(Certificate&& cert)

 {

   if (m_anchorNames.count(cert.getName()) != 0) {

     return;

   }


   m_anchorNames.insert(cert.getName());

   m_certs.add(std::move(cert));

 }


 void

 StaticTrustAnchorGroup::remove(const Name& certName)

 {

   m_anchorNames.erase(certName);

   m_certs.remove(certName);

 }


 DynamicTrustAnchorGroup::DynamicTrustAnchorGroup(CertContainerInterface& certContainer, const std::string& id,

                                                  const boost::filesystem::path& path,

                                                  time::nanoseconds refreshPeriod, bool isDir)

   : TrustAnchorGroup(certContainer, id)

   , m_isDir(isDir)

   , m_path(path)

   , m_refreshPeriod(refreshPeriod)

 {

   if (refreshPeriod <= time::nanoseconds::zero()) {

     NDN_THROW(std::runtime_error("Refresh period for the dynamic group must be positive"));

   }


   NDN_LOG_TRACE("Create dynamic trust anchor group " << id << " for file/dir " << path

                 << " with refresh time " << refreshPeriod);

   refresh();

 }


 void

 DynamicTrustAnchorGroup::refresh()

 {

   if (m_expireTime > time::steady_clock::now()) {

     return;

   }

   m_expireTime = time::steady_clock::now() + m_refreshPeriod;

   NDN_LOG_TRACE("Reloading dynamic trust anchor group");


   std::set<Name> oldAnchorNames = m_anchorNames;


   auto loadCert = [this, &oldAnchorNames] (const fs::path& file) {

     auto cert = io::load<Certificate>(file.string());

     if (cert != nullptr) {

       if (m_anchorNames.count(cert->getName()) == 0) {

         m_anchorNames.insert(cert->getName());

         m_certs.add(std::move(*cert));

       }

       else {

         oldAnchorNames.erase(cert->getName());

       }

     }

   };


   if (!m_isDir) {

     loadCert(m_path);

   }

   else if (fs::exists(m_path)) {

     std::for_each(fs::directory_iterator(m_path), fs::directory_iterator(), loadCert);

   }


   // remove old certs

   for (const auto& oldAnchorName : oldAnchorNames) {

     m_anchorNames.erase(oldAnchorName);

     m_certs.remove(oldAnchorName);

   }

 }


 } // inline namespace v2

 } // namespace security

 } // namespace ndn

ndn::Name
Represents an absolute name.
Definition: name.hpp:44

ndn::security::v2::CertContainerInterface
Definition: trust-anchor-group.hpp:36

ndn::security::v2::CertContainerInterface::remove
virtual void remove(const Name &certName)=0

ndn::security::v2::CertContainerInterface::add
virtual void add(Certificate &&cert)=0

ndn::security::v2::Certificate
Represents an NDN certificate.
Definition: certificate.hpp:60

ndn::security::v2::DynamicTrustAnchorGroup::refresh
void refresh() override
Request certificate refresh.
Definition: trust-anchor-group.cpp:107

ndn::security::v2::DynamicTrustAnchorGroup::DynamicTrustAnchorGroup
DynamicTrustAnchorGroup(CertContainerInterface &certContainer, const std::string &id, const boost::filesystem::path &path, time::nanoseconds refreshPeriod, bool isDir=false)
Create a dynamic trust anchor group.
Definition: trust-anchor-group.cpp:89

ndn::security::v2::StaticTrustAnchorGroup::add
void add(Certificate &&cert)
Load static anchor cert.
Definition: trust-anchor-group.cpp:70

ndn::security::v2::StaticTrustAnchorGroup::StaticTrustAnchorGroup
StaticTrustAnchorGroup(CertContainerInterface &certContainer, const std::string &id)
Create a static trust anchor group.
Definition: trust-anchor-group.cpp:64

ndn::security::v2::StaticTrustAnchorGroup::remove
void remove(const Name &certName)
Remove static anchor certName.
Definition: trust-anchor-group.cpp:81

ndn::security::TrustAnchorGroup
A group of trust anchors.
Definition: trust-anchor-group.hpp:52

ndn::security::v2::TrustAnchorGroup::m_anchorNames
std::set< Name > m_anchorNames
Definition: trust-anchor-group.hpp:85

ndn::security::v2::TrustAnchorGroup::TrustAnchorGroup
TrustAnchorGroup(CertContainerInterface &certContainer, const std::string &id)
Create an anchor group.
Definition: trust-anchor-group.cpp:42

ndn::security::v2::TrustAnchorGroup::m_certs
CertContainerInterface & m_certs
Definition: trust-anchor-group.hpp:84

ndn::security::v2::TrustAnchorGroup::~TrustAnchorGroup
virtual ~TrustAnchorGroup()

ndn::security::v2::TrustAnchorGroup::size
size_t size() const
Definition: trust-anchor-group.cpp:51

ndn::security::v2::TrustAnchorGroup::refresh
virtual void refresh()
Request certificate refresh.
Definition: trust-anchor-group.cpp:57

ndn::time::steady_clock::now
static time_point now() noexcept
Definition: time.cpp:80

NDN_THROW
#define NDN_THROW(e)
Definition: exception.hpp:61

io.hpp

logger.hpp

NDN_LOG_TRACE
#define NDN_LOG_TRACE(expression)
Log at TRACE level.
Definition: logger.hpp:249

NDN_LOG_INIT
#define NDN_LOG_INIT(name)
Define a non-member log module.
Definition: logger.hpp:163

ndn::security
Definition: additional-description.cpp:28

ndn::time::nanoseconds
boost::chrono::nanoseconds nanoseconds
Definition: time.hpp:50

ndn
Definition: data.cpp:25

trust-anchor-group.hpp