#include <verifier.h>

Inherits ccf::crypto::Verifier.

Public Member Functions
	Verifier_OpenSSL (const std::vector< uint8_t > &c)

	Verifier_OpenSSL (Verifier_OpenSSL &&v)=default

	Verifier_OpenSSL (const Verifier_OpenSSL &)=delete

	~Verifier_OpenSSL () override

std::vector< uint8_t >	cert_der () override

Pem	cert_pem () override

bool	verify_certificate (const std::vector< const Pem * > &trusted_certs, const std::vector< const Pem * > &chain={}, bool ignore_time=false) override

bool	is_self_signed () const override

std::string	serial_number () const override

std::pair< std::string, std::string >	validity_period () const override

size_t	remaining_seconds (const std::chrono::system_clock::time_point &now) const override

double	remaining_percentage (const std::chrono::system_clock::time_point &now) const override

std::string	subject () const override

Public Member Functions inherited from ccf::crypto::Verifier
	Verifier ()=default

virtual	~Verifier ()=default

virtual bool	verify (const uint8_t contents, size_t contents_size, const uint8_t sig, size_t sig_size, MDType md_type=MDType::NONE) const

virtual bool	verify (std::span< const uint8_t > contents, std::span< const uint8_t > sig, MDType md_type=MDType::NONE) const

virtual bool	verify (const std::vector< uint8_t > &contents, const std::vector< uint8_t > &signature, MDType md_type=MDType::NONE) const

virtual bool	verify_hash (const uint8_t hash, size_t hash_size, const uint8_t sig, size_t sig_size, MDType md_type=MDType::NONE)

virtual bool	verify_hash (const std::vector< uint8_t > &hash, const std::vector< uint8_t > &signature, MDType md_type=MDType::NONE)

template<size_t SIZE>
bool	verify_hash (const std::array< uint8_t, SIZE > &hash, const std::vector< uint8_t > &signature, MDType md_type=MDType::NONE)

virtual Pem	public_key_pem () const

virtual std::vector< uint8_t >	public_key_der () const

Static Protected Member Functions
static MDType	get_md_type (int mdt)

Protected Attributes
OpenSSL::Unique_X509	cert

Protected Attributes inherited from ccf::crypto::Verifier
std::variant< ccf::crypto::RSAPublicKeyPtr, ccf::crypto::ECPublicKeyPtr >	public_key

Constructor & Destructor Documentation

◆ Verifier_OpenSSL() [1/3]

ccf::crypto::Verifier_OpenSSL::Verifier_OpenSSL ( const std::vector< uint8_t > & c )

◆ Verifier_OpenSSL() [2/3]

ccf::crypto::Verifier_OpenSSL::Verifier_OpenSSL ( Verifier_OpenSSL && v )

default

◆ Verifier_OpenSSL() [3/3]

ccf::crypto::Verifier_OpenSSL::Verifier_OpenSSL ( const Verifier_OpenSSL & )

delete

◆ ~Verifier_OpenSSL()

ccf::crypto::Verifier_OpenSSL::~Verifier_OpenSSL ( )

overridedefault

Member Function Documentation

◆ cert_der()

std::vector< uint8_t > ccf::crypto::Verifier_OpenSSL::cert_der ( )

overridevirtual

Implements ccf::crypto::Verifier.

◆ cert_pem()

Pem ccf::crypto::Verifier_OpenSSL::cert_pem ( )

overridevirtual

Implements ccf::crypto::Verifier.

◆ get_md_type()

MDType ccf::crypto::Verifier_OpenSSL::get_md_type ( int mdt )

staticprotected

◆ is_self_signed()

bool ccf::crypto::Verifier_OpenSSL::is_self_signed ( ) const

overridevirtual

Indicates whether the certificate (held intenally) is self-signed

Implements ccf::crypto::Verifier.

◆ remaining_percentage()

double ccf::crypto::Verifier_OpenSSL::remaining_percentage ( const std::chrono::system_clock::time_point & now ) const

overridevirtual

The percentage of the validity period of the certificate remaining

Implements ccf::crypto::Verifier.

◆ remaining_seconds()

size_t ccf::crypto::Verifier_OpenSSL::remaining_seconds ( const std::chrono::system_clock::time_point & now ) const

overridevirtual

The number of seconds of the validity period of the certificate remaining

Implements ccf::crypto::Verifier.

◆ serial_number()

std::string ccf::crypto::Verifier_OpenSSL::serial_number ( ) const

overridevirtual

The serial number of the certificate

Implements ccf::crypto::Verifier.

◆ subject()

std::string ccf::crypto::Verifier_OpenSSL::subject ( ) const

overridevirtual

The subject name of the certificate

Implements ccf::crypto::Verifier.

◆ validity_period()

std::pair< std::string, std::string > ccf::crypto::Verifier_OpenSSL::validity_period ( ) const

overridevirtual

The validity period of the certificate

Implements ccf::crypto::Verifier.

◆ verify_certificate()

bool ccf::crypto::Verifier_OpenSSL::verify_certificate	(	const std::vector< const Pem * > &	trusted_certs,
		const std::vector< const Pem * > &	chain = `{}`,
		bool	ignore_time = `false`
	)

overridevirtual

Verify the certificate (held internally)

Parameters

trusted_certs	Vector of trusted certificates
chain	Vector of ordered untrusted certificates used to build a chain to trusted certificates
ignore_time	Flag to disable certificate expiry checks

Returns: true if the verification is successful

Implements ccf::crypto::Verifier.

Member Data Documentation

◆ cert

OpenSSL::Unique_X509 ccf::crypto::Verifier_OpenSSL::cert

mutableprotected

The documentation for this class was generated from the following files:

src/crypto/openssl/verifier.h
src/crypto/openssl/verifier.cpp

Public Member Functions

Static Protected Member Functions

Protected Attributes

Constructor & Destructor Documentation

◆ Verifier_OpenSSL() [1/3]

◆ Verifier_OpenSSL() [2/3]

◆ Verifier_OpenSSL() [3/3]

◆ ~Verifier_OpenSSL()

Member Function Documentation

◆ cert_der()

◆ cert_pem()

◆ get_md_type()

◆ is_self_signed()

◆ remaining_percentage()

◆ remaining_seconds()

◆ serial_number()

◆ subject()

◆ validity_period()

◆ verify_certificate()

Member Data Documentation

◆ cert