// Copyright 2014 Google Inc. All rights reserved. // // Use of this source code is governed by a BSD-style // license that can be found in the LICENSE file or at // https://developers.google.com/open-source/licenses/bsd // // Declaration of classes representing RSA private and public keys used // for message signing, signature verification, encryption and decryption. #ifndef MEDIA_BASE_RSA_KEY_H_ #define MEDIA_BASE_RSA_KEY_H_ #include #include "packager/base/macros.h" struct rsa_st; typedef struct rsa_st RSA; namespace edash_packager { namespace media { /// Rsa private key, used for message signing and decryption. class RsaPrivateKey { public: ~RsaPrivateKey(); /// Create an RsaPrivateKey object using a DER encoded PKCS#1 RSAPrivateKey. /// @return The created RsaPrivateKey object on success, NULL otherwise. static RsaPrivateKey* Create(const std::string& serialized_key); /// Decrypt a message using RSA-OAEP. /// @param decrypted_message must not be NULL. /// @return true if successful, false otherwise. bool Decrypt(const std::string& encrypted_message, std::string* decrypted_message); /// Generate RSASSA-PSS signature. /// @param signature must not be NULL. /// @return true if successful, false otherwise. bool GenerateSignature(const std::string& message, std::string* signature); private: // RsaPrivateKey takes owership of |rsa_key|. explicit RsaPrivateKey(RSA* rsa_key); RSA* rsa_key_; // owned DISALLOW_COPY_AND_ASSIGN(RsaPrivateKey); }; /// Rsa public key, used for signature verification and encryption. class RsaPublicKey { public: ~RsaPublicKey(); /// Create an RsaPublicKey object using a DER encoded PKCS#1 RSAPublicKey. /// @return The created RsaPrivateKey object on success, NULL otherwise. static RsaPublicKey* Create(const std::string& serialized_key); /// Encrypt a message using RSA-OAEP. /// @param encrypted_message must not be NULL. /// @return true if successful, false otherwise. bool Encrypt(const std::string& clear_message, std::string* encrypted_message); /// Verify RSASSA-PSS signature. /// @return true if verification succeeds, false otherwise. bool VerifySignature(const std::string& message, const std::string& signature); private: // RsaPublicKey takes owership of |rsa_key|. explicit RsaPublicKey(RSA* rsa_key); RSA* rsa_key_; // owned DISALLOW_COPY_AND_ASSIGN(RsaPublicKey); }; } // namespace media } // namespace edash_packager #endif // MEDIA_BASE_RSA_KEY_H_