blob: 294a14da4618a7cb443feff8cbe2e64bcdbbb5e9 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
|
using System;
using System.IO;
namespace Org.BouncyCastle.Tls.Crypto.Impl
{
public sealed class LegacyTls13Verifier
: TlsVerifier
{
private readonly int m_signatureScheme;
private readonly Tls13Verifier m_tls13Verifier;
public LegacyTls13Verifier(int signatureScheme, Tls13Verifier tls13Verifier)
{
if (!TlsUtilities.IsValidUint16(signatureScheme))
throw new ArgumentException("signatureScheme");
if (tls13Verifier == null)
throw new ArgumentNullException("tls13Verifier");
this.m_signatureScheme = signatureScheme;
this.m_tls13Verifier = tls13Verifier;
}
public TlsStreamVerifier GetStreamVerifier(DigitallySigned digitallySigned)
{
SignatureAndHashAlgorithm algorithm = digitallySigned.Algorithm;
if (algorithm == null || SignatureScheme.From(algorithm) != m_signatureScheme)
throw new InvalidOperationException("Invalid algorithm: " + algorithm);
return new TlsStreamVerifierImpl(m_tls13Verifier, digitallySigned.Signature);
}
public bool VerifyRawSignature(DigitallySigned digitallySigned, byte[] hash)
{
throw new NotSupportedException();
}
private class TlsStreamVerifierImpl
: TlsStreamVerifier
{
private readonly Tls13Verifier m_tls13Verifier;
private readonly byte[] m_signature;
internal TlsStreamVerifierImpl(Tls13Verifier tls13Verifier, byte[] signature)
{
this.m_tls13Verifier = tls13Verifier;
this.m_signature = signature;
}
public Stream Stream
{
get { return m_tls13Verifier.Stream; }
}
public bool IsVerified()
{
return m_tls13Verifier.VerifySignature(m_signature);
}
}
}
}
|