blob: 3b1a830f0c96be2b40187edf7b4d41d30a917efd [file] [log] [blame]
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <stdint.h>
#include <memory>
#include <vector>
#include "build/build_config.h"
#include "crypto/crypto_export.h"
namespace crypto {
// The SignatureVerifier class verifies a signature using a bare public key
// (as opposed to a certificate).
class CRYPTO_EXPORT SignatureVerifier {
// The set of supported signature algorithms. Extend as required.
enum SignatureAlgorithm {
// This is RSA-PSS with SHA-256 as both signing hash and MGF-1 hash, and the
// salt length matching the hash length.
// Streaming interface:
// Initiates a signature verification operation. This should be followed
// by one or more VerifyUpdate calls and a VerifyFinal call.
// The signature is encoded according to the signature algorithm.
// The public key is specified as a DER encoded ASN.1 SubjectPublicKeyInfo
// structure, which contains not only the public key but also its type
// (algorithm):
// SubjectPublicKeyInfo ::= SEQUENCE {
// algorithm AlgorithmIdentifier,
// subjectPublicKey BIT STRING }
bool VerifyInit(SignatureAlgorithm signature_algorithm,
const uint8_t* signature,
size_t signature_len,
const uint8_t* public_key_info,
size_t public_key_info_len);
// Feeds a piece of the data to the signature verifier.
void VerifyUpdate(const uint8_t* data_part, size_t data_part_len);
// Concludes a signature verification operation. Returns true if the
// signature is valid. Returns false if the signature is invalid or an
// error occurred.
bool VerifyFinal();
void Reset();
std::vector<uint8_t> signature_;
struct VerifyContext;
std::unique_ptr<VerifyContext> verify_context_;
} // namespace crypto