Move OpenSSL-based verification from qtutilities to c++utilities

Martchus · Martchus · commit 7f0ed0611b3b · 2025-07-02T23:34:38.000+02:00
This doesn't depend on Qt (with the use of QByteArray removed) and is thus
better added here.
diff --git a/CMakeLists.txt b/CMakeLists.txt
@@ -33,6 +33,7 @@ set(HEADER_FILES
     misc/parseerror.h
     misc/traits.h
     misc/levenshtein.h
+    misc/verification.h
     tests/testutils.h
     tests/cppunit.h
     tests/outputcheck.h)
@@ -117,8 +118,8 @@ set(META_APP_AUTHOR "Martchus")
 set(META_APP_URL "https://github.com/${META_APP_AUTHOR}/${META_PROJECT_NAME}")
 set(META_APP_DESCRIPTION "Useful C++ classes and routines such as argument parser, IO and conversion utilities")
 set(META_VERSION_MAJOR 5)
-set(META_VERSION_MINOR 28)
-set(META_VERSION_PATCH 2)
+set(META_VERSION_MINOR 29)
+set(META_VERSION_PATCH 0)
 
 # find required 3rd party libraries
 include(3rdParty)
@@ -257,6 +258,17 @@ if (USE_PLATFORM_SPECIFIC_API_FOR_OPTIMIZING_COPY_HELPER)
     list(APPEND META_PUBLIC_COMPILE_DEFINITIONS ${META_PROJECT_VARNAME}_USE_PLATFORM_SPECIFIC_API_FOR_OPTIMIZING_COPY_HELPER)
 endif ()
 
+# configure tests for verification helpers which require OpenSSL
+use_crypto(LIBRARIES_VARIABLE "TEST_LIBRARIES" PACKAGES_VARIABLE "TEST_PACKAGES" OPTIONAL)
+if ("OpenSSL::Crypto" IN_LIST "TEST_LIBRARIES")
+    set_property(
+        SOURCE tests/misctests.cpp
+        APPEND
+        PROPERTY COMPILE_DEFINITIONS ${META_PROJECT_VARNAME}_HAS_OPENSSL_CRYPTO)
+else ()
+    message(WARNING "Unable to test verification helper of setup tools because OpenSSL crypto library is not available.")
+endif ()
+
 # apply basic configuration
 include(BasicConfig)
 
diff --git a/conversion/stringconversion.cpp b/conversion/stringconversion.cpp
@@ -421,7 +421,7 @@ string encodeBase64(const std::uint8_t *data, std::uint32_t dataSize)
  * \throw Throws a ConversionException if the specified string is no valid Base64.
  * \sa [RFC 4648](http://www.ietf.org/rfc/rfc4648.txt)
  */
-std::pair<unique_ptr<std::uint8_t[]>, std::uint32_t> decodeBase64(const char *encodedStr, const std::uint32_t strSize)
+std::pair<std::unique_ptr<std::uint8_t[]>, std::uint32_t> decodeBase64(const char *encodedStr, const std::uint32_t strSize)
 {
     if (!strSize) {
         return std::make_pair(std::make_unique<std::uint8_t[]>(0), 0); // early return to prevent clazy warning
diff --git a/misc/verification.h b/misc/verification.h
@@ -0,0 +1,160 @@
+#ifndef CPP_UTILITIES_MISC_VERIFICATION_H
+#define CPP_UTILITIES_MISC_VERIFICATION_H
+
+#include "../conversion/stringconversion.h"
+
+#include <openssl/ec.h>
+#include <openssl/err.h>
+#include <openssl/evp.h>
+#include <openssl/pem.h>
+
+#include <algorithm>
+#include <array>
+#include <cctype>
+#include <string>
+#include <string_view>
+
+namespace CppUtilities {
+
+namespace Detail {
+/// \brief Initializes OpenSSL.
+/// \remarks This function is an implementation detail and must not be called by users this library.
+inline void initOpenSsl()
+{
+    ERR_load_crypto_strings();
+    OpenSSL_add_all_algorithms();
+}
+
+/// \brief Returns the current OpenSSL error.
+/// \remarks This function is an implementation detail and must not be called by users this library.
+inline std::string getOpenSslError()
+{
+    const auto errCode = ERR_get_error();
+    if (errCode == 0) {
+        return "unknown OpenSSL error";
+    }
+    auto buffer = std::array<char, 256>();
+    ERR_error_string_n(errCode, buffer.data(), buffer.size());
+    return std::string(buffer.data());
+}
+
+/// \brief Extracts the base64-encoded body from a PEM block.
+/// \remarks This function is an implementation detail and must not be called by users of this library.
+inline std::string extractPemBody(std::string_view pem, std::string_view header)
+{
+    auto body = std::string();
+    auto begin = pem.find(header);
+    if (begin == std::string_view::npos) {
+        return body;
+    }
+    begin += header.size();
+
+    auto end = pem.find("-----END", begin);
+    if (end == std::string_view::npos) {
+        return body;
+    }
+
+    body = std::string(pem.data() + begin, end - begin);
+    body.erase(std::remove_if(body.begin(), body.end(), ::isspace), body.end());
+    return body;
+}
+
+/// \brief Converts PEM-encoded signature into DER-encoded signature.
+/// \remarks This function is an implementation detail and must not be called by users of this library.
+inline std::string parsePemSignature(std::string_view pemSignature, std::pair<std::unique_ptr<std::uint8_t[]>, std::uint32_t> &decodedSignature)
+{
+    const auto pemSignatureBody = extractPemBody(pemSignature, "-----BEGIN SIGNATURE-----");
+    if (pemSignatureBody.empty()) {
+        return "invalid or missing PEM signature block";
+    }
+    try {
+        decodedSignature = decodeBase64(pemSignatureBody.data(), static_cast<std::uint32_t>(pemSignatureBody.size()));
+        return std::string();
+    } catch (const ConversionException &e) {
+        return "unable to decode PEM signature block";
+    }
+}
+
+} // namespace Detail
+
+/*!
+ * \brief Verifies \a data with the specified public key \a publicKeyPem and signature \a signaturePem.
+ * \returns Returns an empty string if \a data and \a signature are correct and an error message otherwise.
+ * \remarks
+ * - The digest algorithm is assumed to be SHA256.
+ * - The key and signature must both be provided in PEM format.
+ * - This function requires linking with the OpenSSL crypto library and will initialize OpenSSL.
+ * - This function is experimental and might be changed in incompatible ways (API and ABI wise) or be completely removed
+ *   in further minor/patch releases.
+ *
+ * A key pair for signing can be created with the following commands:
+ * ```
+ * openssl ecparam -name secp521r1 -genkey -noout -out release-signing-private-openssl-secp521r1.pem
+ * openssl ec -in release-signing-private-openssl-secp521r1.pem -pubout > release-signing-public-openssl-secp521r1.pem
+ * ```
+ *
+ * A signature can be created an verified using the following commands:
+ * ```
+ * openssl dgst -sha256 -sign release-signing-private-openssl-secp521r1.pem test_msg.txt > test_msg-secp521r1.txt.sig
+ * openssl dgst -sha256 -verify release-signing-public-openssl-secp521r1.pem -signature test_msg-secp521r1.txt.sig test_msg.txt
+ * ```
+ *
+ * The signature can be converted to the PEM format using the following commands:
+ * ```
+ * echo "-----BEGIN SIGNATURE-----" > test_msg-secp521r1.txt.sig.pem
+ * cat test_msg-secp521r1.txt.sig | base64 -w 64 >> test_msg-secp521r1.txt.sig.pem
+ * echo "-----END SIGNATURE-----" >> test_msg-secp521r1.txt.sig.pem
+ * ```
+ */
+inline std::string verifySignature(std::string_view publicKeyPem, std::string_view signaturePem, std::string_view data)
+{
+    auto error = std::string();
+    Detail::initOpenSsl();
+
+    auto derSignature = std::pair<std::unique_ptr<std::uint8_t[]>, std::uint32_t>();
+    if (error = Detail::parsePemSignature(signaturePem, derSignature); !error.empty()) {
+        return error;
+    }
+
+    BIO *const keyBio = BIO_new_mem_buf(publicKeyPem.data(), static_cast<int>(publicKeyPem.size()));
+    if (!keyBio) {
+        return error = "BIO_new_mem_buf failed: " + Detail::getOpenSslError();
+    }
+
+    EVP_PKEY *const publicKey = PEM_read_bio_PUBKEY(keyBio, nullptr, nullptr, nullptr);
+    BIO_free(keyBio);
+    if (!publicKey) {
+        return error = "PEM_read_bio_PUBKEY failed: " + Detail::getOpenSslError();
+    }
+
+    EVP_MD_CTX *const mdCtx = EVP_MD_CTX_new();
+    if (!mdCtx) {
+        EVP_PKEY_free(publicKey);
+        return error = "EVP_MD_CTX_new failed: " + Detail::getOpenSslError();
+    }
+
+    if (EVP_DigestVerifyInit(mdCtx, nullptr, EVP_sha256(), nullptr, publicKey) != 1) {
+        error = "EVP_DigestVerifyInit failed: " + Detail::getOpenSslError();
+    } else if (EVP_DigestVerifyUpdate(mdCtx, data.data(), data.size()) != 1) {
+        error = "EVP_DigestVerifyUpdate failed: " + Detail::getOpenSslError();
+    } else {
+        switch (EVP_DigestVerifyFinal(mdCtx, derSignature.first.get(), derSignature.second)) {
+        case 0:
+            error = "incorrect signature";
+            break;
+        case 1:
+            break; // signature is correct
+        default:
+            error = "EVP_DigestVerifyFinal failed: " + Detail::getOpenSslError();
+            break;
+        }
+    }
+
+    EVP_MD_CTX_free(mdCtx);
+    EVP_PKEY_free(publicKey);
+    return error;
+}
+
+} // namespace CppUtilities
+
+#endif // CPP_UTILITIES_MISC_VERIFICATION_H
diff --git a/tests/misctests.cpp b/tests/misctests.cpp
@@ -2,6 +2,10 @@
 #include "../misc/levenshtein.h"
 #include "../misc/multiarray.h"
 
+#ifdef CPP_UTILITIES_HAS_OPENSSL_CRYPTO
+#include "../misc/verification.h"
+#endif
+
 #include "../conversion/stringbuilder.h"
 #include "../conversion/stringconversion.h"
 
@@ -43,6 +47,9 @@ class MiscTests : public TestFixture {
     CPPUNIT_TEST(testMultiArray);
     CPPUNIT_TEST(testLevenshtein);
     CPPUNIT_TEST(testTestUtilities);
+#ifdef CPP_UTILITIES_HAS_OPENSSL_CRYPTO
+    CPPUNIT_TEST(testVerification);
+#endif
     CPPUNIT_TEST_SUITE_END();
 
 public:
@@ -56,6 +63,9 @@ class MiscTests : public TestFixture {
     void testMultiArray();
     void testLevenshtein();
     void testTestUtilities();
+#ifdef CPP_UTILITIES_HAS_OPENSSL_CRYPTO
+    void testVerification();
+#endif
 };
 
 CPPUNIT_TEST_SUITE_REGISTRATION(MiscTests);
@@ -173,6 +183,31 @@ void MiscTests::testTestUtilities()
     TESTUTILS_ASSERT_LIKE("assert like works", ".*foo.*", "   foo   ");
 }
 
+#ifdef CPP_UTILITIES_HAS_OPENSSL_CRYPTO
+void MiscTests::testVerification()
+{
+    const auto key = std::string_view(
+        R"(-----BEGIN PUBLIC KEY-----
+MIGbMBAGByqGSM49AgEGBSuBBAAjA4GGAAQAWJAn1E7ZE5Q6H69oaV5sqCIppJdg
+4bXDan9dJv6GOg70/t7q2CvwcwUXhV4FvCZxCHo25+rWYINfqKU2Utul8koAx8tK
+59ohfOzI63I+CC76GfX41uRGU0P5i6hS7o/hgBLiVXqT0FgS2BMfmnLMUvUjqnI2
+YQM7C55/5BM5Vrblkow=
+-----END PUBLIC KEY-----)");
+    const auto signature = std::string_view(
+        R"(-----BEGIN SIGNATURE-----
+MIGIAkIB+LB01DduBFMVs7Ea2McD7/kXpP0XktDNR7WpVgkOn4+/ilR8b8lpO9dd
+FGmxKj5UVr2GpcWX6I216PjaVL9tr5oCQgFMpvNjSgFQ/KFaE+0d+QCegr3V7Uz6
+sWB0iGdPa+oXbRish7HoNCU/k0lD3ffXaf8ueC78Zme9NFO18Ol+NWXJDA==
+-----END SIGNATURE-----)");
+
+    auto message = std::string("test message");
+    CPPUNIT_ASSERT_EQUAL_MESSAGE("valid message", std::string(), verifySignature(key, signature, message));
+
+    message[5] = '?';
+    CPPUNIT_ASSERT_EQUAL_MESSAGE("manipulate message", "incorrect signature"s, verifySignature(key, signature, message));
+}
+#endif
+
 // test flagenumclass.h
 
 namespace FlagEnumTests {

Original file line number	Diff line number	Diff line change
`@@ -421,7 +421,7 @@ string encodeBase64(const std::uint8_t *data, std::uint32_t dataSize)`
`421`	`421`	`* \throw Throws a ConversionException if the specified string is no valid Base64.`
`422`	`422`	`* \sa [RFC 4648](http://www.ietf.org/rfc/rfc4648.txt)`
`423`	`423`	`*/`
`424`		`-std::pair<unique_ptr<std::uint8_t[]>, std::uint32_t> decodeBase64(const char *encodedStr, const std::uint32_t strSize)`
	`424`	`+std::pair<std::unique_ptr<std::uint8_t[]>, std::uint32_t> decodeBase64(const char *encodedStr, const std::uint32_t strSize)`
`425`	`425`	`{`
`426`	`426`	`if (!strSize) {`
`427`	`427`	`return std::make_pair(std::make_unique<std::uint8_t[]>(0), 0); // early return to prevent clazy warning`