de/d3f/verifiers_8hpp_source.html

#pragma once


/// @file userver/crypto/verifiers.hpp

/// @brief Digital signature verifiers

/// @ingroup userver_universal


#include <initializer_list>

#include <memory>

#include <string>

#include <string_view>


#include <userver/crypto/basic_types.hpp>

#include <userver/crypto/certificate.hpp>

#include <userver/crypto/exception.hpp>

#include <userver/crypto/public_key.hpp>

#include <userver/utils/flags.hpp>


USERVER_NAMESPACE_BEGIN


namespace crypto {


/// Base verifier class

class Verifier : public NamedAlgo {

public:

    explicit Verifier(const std::string& name);

    ~Verifier() override;


    /// Verifies a signature against the message

    virtual void Verify(std::initializer_list<std::string_view> data, std::string_view raw_signature) const = 0;

};


/// "none" algorithm verifier

class VerifierNone final : public Verifier {

public:

    VerifierNone();


    /// Verifies a signature against the message

    void Verify(std::initializer_list<std::string_view> data, std::string_view raw_signature) const override;

};


/// HMAC-SHA verifier

template <DigestSize bits>

class HmacShaVerifier final : public Verifier {

public:

    /// Constructor from a shared secret

    explicit HmacShaVerifier(std::string secret);

    ~HmacShaVerifier() override;


    /// Verifies a signature against the message

    void Verify(std::initializer_list<std::string_view> data, std::string_view raw_signature) const override;


private:

    std::string secret_;

};


/// @name Verifies HMAC SHA MAC.

/// @{

using VerifierHs1 = HmacShaVerifier<DigestSize::k160>;

using VerifierHs256 = HmacShaVerifier<DigestSize::k256>;

using VerifierHs384 = HmacShaVerifier<DigestSize::k384>;

using VerifierHs512 = HmacShaVerifier<DigestSize::k512>;

/// @}


/// Generic verifier for asymmetric cryptography

template <DsaType type, DigestSize bits>

class DsaVerifier final : public Verifier {

public:

    /// Constructor from public key

    explicit DsaVerifier(PublicKey pubkey);


    /// Constructor from a PEM-encoded public key or a X509 certificate

    explicit DsaVerifier(std::string_view pubkey);


    /// Verifies a signature against the message

    void Verify(std::initializer_list<std::string_view> data, std::string_view raw_signature) const override;


    /// Verifies a signature against the message digest.

    ///

    /// Not available for RSASSA-PSS.

    /// @warning Do not use this function when the raw message is available!

    void VerifyDigest(std::string_view digest, std::string_view raw_signature) const;


private:

    PublicKey pkey_;

};


/// @name Verifies RSASSA signature using SHA-2 and PKCS1 padding.

/// @{

using VerifierRs256 = DsaVerifier<DsaType::kRsa, DigestSize::k256>;

using VerifierRs384 = DsaVerifier<DsaType::kRsa, DigestSize::k384>;

using VerifierRs512 = DsaVerifier<DsaType::kRsa, DigestSize::k512>;

/// @}


/// @name Verifies ECDSA as per RFC7518.

///

/// OpenSSL generates ECDSA signatures in ASN.1/DER format, RFC7518 specifies

/// signature as a concatenation of zero-padded big-endian `(R, S)` values.

/// @{

using VerifierEs256 = DsaVerifier<DsaType::kEc, DigestSize::k256>;

using VerifierEs384 = DsaVerifier<DsaType::kEc, DigestSize::k384>;

using VerifierEs512 = DsaVerifier<DsaType::kEc, DigestSize::k512>;

/// @}


/// @name Verifies RSASSA signature using SHA-2 and PSS padding as per RFC7518.

///

/// JWA specifications require using MGF1 function with the same hash function

/// as for the digest and salt length to be the same size as the hash output.

/// @{

using VerifierPs256 = DsaVerifier<DsaType::kRsaPss, DigestSize::k256>;

using VerifierPs384 = DsaVerifier<DsaType::kRsaPss, DigestSize::k384>;

using VerifierPs512 = DsaVerifier<DsaType::kRsaPss, DigestSize::k512>;

/// @}


/// @name CMS verifier per RFC 5652

class CmsVerifier final : public NamedAlgo {

public:

    /// Verifier flags

    enum class Flags {

        kNone = 0x0,

        /// If set the signing certificate is not verified.

        kNoSignerCertVerify = 0x20,

    };


    /// Input encoding

    enum class InForm { kDer, kPem, kSMime };


    /// Constructor from certificate

    CmsVerifier(Certificate certificate);


    ~CmsVerifier() override;


    /// Verifies a CMS signed message as specified by flags

    void Verify(std::initializer_list<std::string_view> data, utils::Flags<Flags> flags, InForm in_form) const;


private:

    Certificate cert_;

};


namespace weak {


/// Verifies RSASSA signature using SHA-1 and PKCS1 padding.

using VerifierRs1 = DsaVerifier<DsaType::kRsa, DigestSize::k160>;


/// Verifies RSASSA signature using SHA-1 and PSS padding.

///

/// JWA specifications require using MGF1 function with the same hash function

/// as for the digest and salt length to be the same size as the hash output.

using VerifierPs1 = DsaVerifier<DsaType::kRsaPss, DigestSize::k160>;


}  // namespace weak

}  // namespace crypto


USERVER_NAMESPACE_END