net/cert/internal/verify_signed_data.h - Issue 1209283004: Implement VerifySignedData() for ECDSA, RSA PKCS#1 and RSA PSS.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/cert/internal/verify_signed_data.h

Issue 1209283004: Implement VerifySignedData() for ECDSA, RSA PKCS#1 and RSA PSS. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@parse_pss

Patch Set: clarify that signature_value is NOT the BIT STRING itself, but the byte contents Created 5 years, 6 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/cert/internal/verify_signed_data.h

diff --git a/net/cert/internal/verify_signed_data.h b/net/cert/internal/verify_signed_data.h

new file mode 100644

index 0000000000000000000000000000000000000000..b2278c5b89a3d364518df71195d44293d91817c5

--- /dev/null

+++ b/net/cert/internal/verify_signed_data.h

@@ -0,0 +1,40 @@

+// Use of this source code is governed by a BSD-style license that can be

+// found in the LICENSE file.

+#ifndef NET_CERT_INTERNAL_VERIFY_SIGNED_DATA_H_

+#define NET_CERT_INTERNAL_VERIFY_SIGNED_DATA_H_

+#include "base/compiler_specific.h"

+#include "net/base/net_export.h"

+namespace net {

+namespace der {

+class Input;

Ryan Sleevi 2015/07/07 14:07:31 nit: } // namespace der

eroman 2015/07/07 18:07:00 Done.

+class SignatureAlgorithm;

+// Verifies that |signature_value| is a valid signature of |signed_data| using

+// the algorithm |signature_algorithm| and the public key |public_key|.

+//

+// |signature_algorithm| - The parsed AlgorithmIdentifier

+// |signed_data| - The blob of data to verify

+// |signature_value| - The bytes for the signature's value, to be interpreted

+// according to the signature algorithm.

+// IMPORTANT: In RFC 5280, signatureValue is a BIT STRING. The expected

+// input to this function is the byte contents of that bit string, and

+// not the BIT STRING's DER itself.

+// |public_key| - A DER encoded SubjectPublicKeyInfo.

Ryan Sleevi 2015/07/07 14:07:31 nit: DER-encoded

eroman 2015/07/07 18:07:00 Done.

+//

+// Returns true if verification was successful.

+NET_EXPORT bool VerifySignedData(const SignatureAlgorithm& signature_algorithm,

+ const der::Input& signed_data,

+ const der::Input& signature_value,

+ const der::Input& public_key)

+ WARN_UNUSED_RESULT;

+} // namespace net

+#endif // NET_CERT_INTERNAL_VERIFY_SIGNED_DATA_H_

« no previous file with comments | « no previous file | net/cert/internal/verify_signed_data.cc » ('j') | net/cert/internal/verify_signed_data.cc » ('J')