Public Member Functions
	verify_implementation (EVP_PKEY *pkey)

	~verify_implementation ()

int	operator() (const DDS::OctetSeq &src, const std::vector< const DDS::OctetSeq *> &expected_contents)

Private Attributes
EVP_PKEY *	public_key

EVP_MD_CTX *	md_ctx

EVP_PKEY_CTX *	pkey_ctx

Detailed Description

Definition at line 171 of file Certificate.cpp.

Constructor & Destructor Documentation

◆ verify_implementation()

OpenDDS::Security::SSL::verify_implementation::verify_implementation ( EVP_PKEY * pkey )

inlineexplicit

Definition at line 174 of file Certificate.cpp.

     : public_key(pkey), md_ctx(0), pkey_ctx(0)
   {
   }

◆ ~verify_implementation()

OpenDDS::Security::SSL::verify_implementation::~verify_implementation ( )

inline

Definition at line 179 of file Certificate.cpp.

References EVP_MD_CTX_free.

179 { EVP_MD_CTX_free(md_ctx); }

EVP_MD_CTX_free

#define EVP_MD_CTX_free

Definition: OpenSSL_legacy.h:19

OpenDDS::Security::SSL::verify_implementation::md_ctx

EVP_MD_CTX * md_ctx

Definition: Certificate.cpp:250

Member Function Documentation

◆ operator()()

int OpenDDS::Security::SSL::verify_implementation::operator()	(	const DDS::OctetSeq &	src,
		const std::vector< const DDS::OctetSeq *> &	expected_contents
	)

inline

Definition at line 181 of file Certificate.cpp.

References EVP_MD_CTX_new, and OPENDDS_SSL_LOG_ERR.

   {
     if (!public_key) return 1;
 
     int pk_id = 0;
     std::vector<const DDS::OctetSeq*>::const_iterator i, n;
 
     md_ctx = EVP_MD_CTX_new();
     if (!md_ctx) {
       OPENDDS_SSL_LOG_ERR("EVP_MD_CTX_new failed");
       return 1;
     }
 
     EVP_MD_CTX_init(md_ctx);
 
     if (1 != EVP_DigestVerifyInit(md_ctx, &pkey_ctx, EVP_sha256(), 0,
                                   public_key)) {
       OPENDDS_SSL_LOG_ERR("EVP_DigestVerifyInit failed");
       return 1;
     }
 
     // Determine which signature type is being verified
     pk_id = EVP_PKEY_id(public_key);
 
     if (pk_id == EVP_PKEY_RSA) {
       if (1 !=
           EVP_PKEY_CTX_set_rsa_padding(pkey_ctx, RSA_PKCS1_PSS_PADDING)) {
         OPENDDS_SSL_LOG_ERR("EVP_PKEY_CTX_set_rsa_padding failed");
         return 1;
       }
 
       if (1 != EVP_PKEY_CTX_set_rsa_mgf1_md(pkey_ctx, EVP_sha256())) {
         OPENDDS_SSL_LOG_ERR("EVP_PKEY_CTX_set_rsa_mgf1_md failed");
         return 1;
       }
     }
 
     n = expected_contents.end();
     for (i = expected_contents.begin(); i != n; ++i) {
       if ((*i)->length() > 0) {
         if (1 != EVP_DigestVerifyUpdate(md_ctx, (*i)->get_buffer(),
                                         (*i)->length())) {
           OPENDDS_SSL_LOG_ERR("EVP_DigestVerifyUpdate failed");
           return 1;
         }
       }
     }
 
 #ifdef OPENSSL_V_1_0
     // some versions of OpenSSL take a pointer to non-const
     unsigned char* buffer = const_cast<unsigned char*>(src.get_buffer());
 #else
     const unsigned char* buffer = src.get_buffer();
 #endif
     const int err = EVP_DigestVerifyFinal(md_ctx, buffer, src.length());
     if (0 == err) {
       return 1;  // Verification failed, but no error occurred
 
     } else if (1 != err) {
       OPENDDS_SSL_LOG_ERR("EVP_DigestVerifyFinal failed");
       return 1;
     }
 
     return 0;
   }

Member Data Documentation

◆ md_ctx

EVP_MD_CTX* OpenDDS::Security::SSL::verify_implementation::md_ctx

private

Definition at line 250 of file Certificate.cpp.

◆ pkey_ctx

EVP_PKEY_CTX* OpenDDS::Security::SSL::verify_implementation::pkey_ctx

private

Definition at line 251 of file Certificate.cpp.

◆ public_key

EVP_PKEY* OpenDDS::Security::SSL::verify_implementation::public_key

private

Definition at line 249 of file Certificate.cpp.

The documentation for this class was generated from the following file:

Certificate.cpp

Public Member Functions

Private Attributes

Detailed Description

Constructor & Destructor Documentation

◆ verify_implementation()

◆ ~verify_implementation()

Member Function Documentation

◆ operator()()

Member Data Documentation

◆ md_ctx

◆ pkey_ctx

◆ public_key