<?php
/*
 * This file is part of the ManageWP Worker plugin.
 *
 * (c) ManageWP LLC <[email protected]>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

class MWP_Signer_OpenSslSigner implements MWP_Signer_Interface
{
    public function verify($data, $signature, $publicKey, $algorithm = null)
    {
        if ($algorithm == 'SHA256') {
            /** @handled function */
            $verify = @openssl_verify($data, $signature, $publicKey, OPENSSL_ALGO_SHA256);
        } else {
            /** @handled function */
            $verify = @openssl_verify($data, $signature, $publicKey);
        }

        if ($verify === -1) {
            $error     = $errorRow = '';
            $lastError = error_get_last();

            /** @handled function */
            while (($errorRow = openssl_error_string()) !== false) {
                $error = $errorRow."\n".$error;
            }

            throw new MWP_Worker_Exception(MWP_Worker_Exception::OPENSSL_VERIFY_ERROR, "There was an error while trying to use OpenSSL to verify a message.", array(
                'openSslError' => $error,
                'error'        => isset($lastError['message']) ? $lastError['message'] : null,
            ));
        }

        return (bool) $verify;
    }
}