missive/encryption/verification.h - mirrors/cros/chromiumos/platform2 - Git at Google

 // Copyright 2021 The Chromium OS Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef MISSIVE_ENCRYPTION_VERIFICATION_H_
 #define MISSIVE_ENCRYPTION_VERIFICATION_H_

 #include <string>

 #include <base/strings/string_piece.h>

 #include "missive/util/status.h"

 namespace reporting {

 // Helper class that verifies an Ed25519 signed message received from
 // the server. It uses boringssl implementation available on the client.
 class SignatureVerifier {
  public:
   // Well-known public signature verification keys that is used to verify
   // that signed data is indeed originating from reporting server.
   // Exists in two flavors: PROD and DEV.
   static base::StringPiece VerificationKey();
   static base::StringPiece VerificationKeyDev();

   // Ed25519 |verification_public_key| must consist of kKeySize bytes.
   explicit SignatureVerifier(base::StringPiece verification_public_key);

   // Actual verification - returns error status if provided |signature| does not
   // match |message|. Signature must be kSignatureSize bytes.
   Status Verify(base::StringPiece message, base::StringPiece signature);

  private:
   std::string verification_public_key_;
 };
 }  // namespace reporting

 #endif  // MISSIVE_ENCRYPTION_VERIFICATION_H_
	// Copyright 2021 The Chromium OS Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef MISSIVE_ENCRYPTION_VERIFICATION_H_
	#define MISSIVE_ENCRYPTION_VERIFICATION_H_

	#include <string>

	#include <base/strings/string_piece.h>

	#include "missive/util/status.h"

	namespace reporting {

	// Helper class that verifies an Ed25519 signed message received from
	// the server. It uses boringssl implementation available on the client.
	class SignatureVerifier {
	public:
	// Well-known public signature verification keys that is used to verify
	// that signed data is indeed originating from reporting server.
	// Exists in two flavors: PROD and DEV.
	static base::StringPiece VerificationKey();
	static base::StringPiece VerificationKeyDev();

	// Ed25519 \|verification_public_key\| must consist of kKeySize bytes.
	explicit SignatureVerifier(base::StringPiece verification_public_key);

	// Actual verification - returns error status if provided \|signature\| does not
	// match \|message\|. Signature must be kSignatureSize bytes.
	Status Verify(base::StringPiece message, base::StringPiece signature);

	private:
	std::string verification_public_key_;
	};
	} // namespace reporting

	#endif // MISSIVE_ENCRYPTION_VERIFICATION_H_