Skip to content
/ simpleopenssl Public

single-file set of cryptographic and security utils using OpenSSL underneath. Common crypto tasks like encrypting, signing, verifying, X.509 manipulations made easy.

License

MIT license
5 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

pdy/simpleopenssl

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

517 Commits
devtools
devtools
 
 
examples
examples
 
 
include/simpleopenssl
include/simpleopenssl
 
 
test
test
 
 
.gitignore
.gitignore
 
 
.ycm_extra_conf.py
.ycm_extra_conf.py
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Features

  • Simple API - no fancy abstractions, no templates in interface, just simple set of functions.
  • No custom crypto processing added over OpenSSL - if you got error, it came from OpenSSL. Even IO is done by OpenSSL itself.
  • Clear, unified error handling without exceptions.
  • All heap allocated OpenSSL types encapsulated with unique pointers with stateless deleters.

Examples

Check examples folder for sample applications.

  • Hash file using sha256
using namespace so;

if(const auto hash = hash::fileSHA256(filePath))
{
    LOG_DBG << "File " << filePath << " hash: " << binToHexStr(hash.value);
}
else
{
    LOG_ERR << hash.msg();
}
  • Generate RSA key and convert it to PEM format
using namespace so;

auto key = rsa::create(rsa::KeyBits::_3072_)
if(!key)
{
    LOG_ERR << key.msg();
    return;
}

const auto pemKey = rsa::convertPrivKeyToPem(*key.value);
if(!pemKey)
{
    LOG_ERR <<  pemKey.msg();
    return;
}

const auto pemPubKey = rsa::convertPubKeyToPem(*key.value);
if(!pemPubKey)
{
    LOG_ERR << pemPubKey.msg();
    return;
}

LOG_INF << "New priv key pem: " << pemKey.value;
LOG_INF << "New pub key pem: " << pemPubKey.value;
  • Check certificate validity period
using namespace so;
std::string timetPrettyString(std::time_t time);

so::X509_uptr cert = so::make_unique(SSL_get_peer_certificate(ssl));
if(!cert)
{
    LOG_ERR << "Get peer cert error: " << so::getLastErrString();
    return;
}
  
const auto validity = x509::getValidity(*cert);
if(!validity)
{
    LOG_ERR << "Getting validity failed: " << validity.msg();
    return;
}

LOG_INF << "Cert not before: " << timetPrettyString(validity->notBefore);
LOG_INF << "Cert not after: " << timetPrettyString(validity->notAfter);

// ...............................

std::string timetPrettyString(std::time_t time)
{
  std::tm *ptm = std::gmtime(&time);

  char buffer[32];
  std::strftime(buffer, 32, "%a, %d.%m.%Y %H:%M:%S", ptm);

  return buffer;
}

Usage

  1. Copy simpleopenssl.hpp to your build tree.

  2. Add #define SO_IMPLEMENTATION in exacly one place just before the include to specify where implementation should be placed for the linker:

    #define SO_IMPLEMENTATION
#include "simpleopenssl.hpp"

  3. Use plain #include "simpleopenssl.hpp" in every other place.

Dependencies

  • OpenSSL version 1.1.1
  • C++11 or higher
  • STL

About

single-file set of cryptographic and security utils using OpenSSL underneath. Common crypto tasks like encrypting, signing, verifying, X.509 manipulations made easy.

Topics

c-plus-plus cryptography openssl simpleopenssl

Resources

Readme

License

MIT license
Activity

Stars

5 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages