1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #ifndef CRYPTO_SIGNATURE_VERIFIER_H_
6 #define CRYPTO_SIGNATURE_VERIFIER_H_
10 #include "build/build_config.h"
11 #include "base/basictypes.h"
12 #include "crypto/crypto_export.h"
14 #if defined(USE_OPENSSL)
15 typedef struct env_md_st EVP_MD
;
16 typedef struct evp_pkey_ctx_st EVP_PKEY_CTX
;
18 typedef struct HASHContextStr HASHContext
;
19 typedef struct SECKEYPublicKeyStr SECKEYPublicKey
;
20 typedef struct VFYContextStr VFYContext
;
25 // The SignatureVerifier class verifies a signature using a bare public key
26 // (as opposed to a certificate).
27 class CRYPTO_EXPORT SignatureVerifier
{
29 // The set of supported hash functions. Extend as required.
38 // Streaming interface:
40 // Initiates a signature verification operation. This should be followed
41 // by one or more VerifyUpdate calls and a VerifyFinal call.
42 // NOTE: for RSA-PSS signatures, use VerifyInitRSAPSS instead.
44 // The signature algorithm is specified as a DER encoded ASN.1
45 // AlgorithmIdentifier structure:
46 // AlgorithmIdentifier ::= SEQUENCE {
47 // algorithm OBJECT IDENTIFIER,
48 // parameters ANY DEFINED BY algorithm OPTIONAL }
50 // The signature is encoded according to the signature algorithm, but it
51 // must not be further encoded in an ASN.1 BIT STRING.
52 // Note: An RSA signature is actually a big integer. It must be in
53 // big-endian byte order.
55 // The public key is specified as a DER encoded ASN.1 SubjectPublicKeyInfo
56 // structure, which contains not only the public key but also its type
58 // SubjectPublicKeyInfo ::= SEQUENCE {
59 // algorithm AlgorithmIdentifier,
60 // subjectPublicKey BIT STRING }
61 bool VerifyInit(const uint8
* signature_algorithm
,
62 int signature_algorithm_len
,
63 const uint8
* signature
,
65 const uint8
* public_key_info
,
66 int public_key_info_len
);
68 // Initiates a RSA-PSS signature verification operation. This should be
69 // followed by one or more VerifyUpdate calls and a VerifyFinal call.
71 // The RSA-PSS signature algorithm parameters are specified with the
72 // |hash_alg|, |mask_hash_alg|, and |salt_len| arguments.
74 // An RSA-PSS signature is a nonnegative integer encoded as a byte string
75 // (of the same length as the RSA modulus) in big-endian byte order. It
76 // must not be further encoded in an ASN.1 BIT STRING.
78 // The public key is specified as a DER encoded ASN.1 SubjectPublicKeyInfo
79 // structure, which contains not only the public key but also its type
81 // SubjectPublicKeyInfo ::= SEQUENCE {
82 // algorithm AlgorithmIdentifier,
83 // subjectPublicKey BIT STRING }
84 bool VerifyInitRSAPSS(HashAlgorithm hash_alg
,
85 HashAlgorithm mask_hash_alg
,
87 const uint8
* signature
,
89 const uint8
* public_key_info
,
90 int public_key_info_len
);
92 // Feeds a piece of the data to the signature verifier.
93 void VerifyUpdate(const uint8
* data_part
, int data_part_len
);
95 // Concludes a signature verification operation. Returns true if the
96 // signature is valid. Returns false if the signature is invalid or an
100 // Note: we can provide a one-shot interface if there is interest:
101 // bool Verify(const uint8* data,
103 // const uint8* signature_algorithm,
104 // int signature_algorithm_len,
105 // const uint8* signature,
106 // int signature_len,
107 // const uint8* public_key_info,
108 // int public_key_info_len);
111 #if defined(USE_OPENSSL)
112 bool CommonInit(const EVP_MD
* digest
,
113 const uint8
* signature
,
115 const uint8
* public_key_info
,
116 int public_key_info_len
,
117 EVP_PKEY_CTX
** pkey_ctx
);
119 static SECKEYPublicKey
* DecodePublicKeyInfo(const uint8
* public_key_info
,
120 int public_key_info_len
);
125 std::vector
<uint8
> signature_
;
127 #if defined(USE_OPENSSL)
128 struct VerifyContext
;
129 VerifyContext
* verify_context_
;
131 // Used for all signature types except RSA-PSS.
132 VFYContext
* vfy_context_
;
134 // Used for RSA-PSS signatures.
135 HashAlgorithm hash_alg_
;
136 HashAlgorithm mask_hash_alg_
;
137 unsigned int salt_len_
;
138 SECKEYPublicKey
* public_key_
;
139 HASHContext
* hash_context_
;
143 } // namespace crypto
145 #endif // CRYPTO_SIGNATURE_VERIFIER_H_