blob: 6543e63186b777c4bc2745215ad2ae6c84600285 [file] [log] [blame]
[email protected]5ee44d42012-02-08 00:14:541// Copyright (c) 2012 The Chromium Authors. All rights reserved.
[email protected]70372d42010-10-22 13:12:342// Use of this source code is governed by a BSD-style license that can be
3// found in the LICENSE file.
4
[email protected]4b559b4d2011-04-14 17:37:145#include "crypto/signature_creator.h"
[email protected]70372d42010-10-22 13:12:346
[email protected]be796bb2010-11-18 15:43:437#include <openssl/evp.h>
[email protected]ed31834b2013-07-09 08:32:408#include <openssl/rsa.h>
avidd373b8b2015-12-21 21:34:439#include <stddef.h>
10#include <stdint.h>
[email protected]be796bb2010-11-18 15:43:4311
thakisd1a18472016-04-08 22:30:4112#include <memory>
13
[email protected]70372d42010-10-22 13:12:3414#include "base/logging.h"
[email protected]4b559b4d2011-04-14 17:37:1415#include "crypto/openssl_util.h"
[email protected]5ee44d42012-02-08 00:14:5416#include "crypto/rsa_private_key.h"
[email protected]27410402014-07-14 21:01:5217#include "crypto/scoped_openssl_types.h"
[email protected]70372d42010-10-22 13:12:3418
[email protected]4b559b4d2011-04-14 17:37:1419namespace crypto {
[email protected]70372d42010-10-22 13:12:3420
dougsteed0cf460ec2014-09-19 18:46:0921namespace {
22
23const EVP_MD* ToOpenSSLDigest(SignatureCreator::HashAlgorithm hash_alg) {
24 switch (hash_alg) {
25 case SignatureCreator::SHA1:
26 return EVP_sha1();
27 case SignatureCreator::SHA256:
28 return EVP_sha256();
29 }
30 return NULL;
31}
32
33int ToOpenSSLDigestType(SignatureCreator::HashAlgorithm hash_alg) {
34 switch (hash_alg) {
35 case SignatureCreator::SHA1:
36 return NID_sha1;
37 case SignatureCreator::SHA256:
38 return NID_sha256;
39 }
40 return NID_undef;
41}
42
43} // namespace
44
[email protected]70372d42010-10-22 13:12:3445// static
dougsteed0cf460ec2014-09-19 18:46:0946SignatureCreator* SignatureCreator::Create(RSAPrivateKey* key,
47 HashAlgorithm hash_alg) {
[email protected]be796bb2010-11-18 15:43:4348 OpenSSLErrStackTracer err_tracer(FROM_HERE);
thakisd1a18472016-04-08 22:30:4149 std::unique_ptr<SignatureCreator> result(new SignatureCreator);
dougsteed0cf460ec2014-09-19 18:46:0950 const EVP_MD* const digest = ToOpenSSLDigest(hash_alg);
51 DCHECK(digest);
52 if (!digest) {
53 return NULL;
54 }
davidben183ce632015-01-21 14:21:3655 if (!EVP_DigestSignInit(result->sign_context_, NULL, digest, NULL,
56 key->key())) {
[email protected]be796bb2010-11-18 15:43:4357 return NULL;
davidben183ce632015-01-21 14:21:3658 }
[email protected]be796bb2010-11-18 15:43:4359 return result.release();
[email protected]70372d42010-10-22 13:12:3460}
61
[email protected]ed31834b2013-07-09 08:32:4062// static
63bool SignatureCreator::Sign(RSAPrivateKey* key,
dougsteed0cf460ec2014-09-19 18:46:0964 HashAlgorithm hash_alg,
avidd373b8b2015-12-21 21:34:4365 const uint8_t* data,
[email protected]ed31834b2013-07-09 08:32:4066 int data_len,
avidd373b8b2015-12-21 21:34:4367 std::vector<uint8_t>* signature) {
[email protected]27410402014-07-14 21:01:5268 ScopedRSA rsa_key(EVP_PKEY_get1_RSA(key->key()));
[email protected]ed31834b2013-07-09 08:32:4069 if (!rsa_key)
70 return false;
[email protected]27410402014-07-14 21:01:5271 signature->resize(RSA_size(rsa_key.get()));
[email protected]ed31834b2013-07-09 08:32:4072
73 unsigned int len = 0;
davidben50a133b52014-10-02 02:20:4374 if (!RSA_sign(ToOpenSSLDigestType(hash_alg), data, data_len,
davidben4507eaa2015-11-19 19:07:0675 signature->data(), &len, rsa_key.get())) {
[email protected]ed31834b2013-07-09 08:32:4076 signature->clear();
77 return false;
78 }
79 signature->resize(len);
80 return true;
81}
82
[email protected]be796bb2010-11-18 15:43:4383SignatureCreator::SignatureCreator()
84 : sign_context_(EVP_MD_CTX_create()) {
[email protected]70372d42010-10-22 13:12:3485}
86
87SignatureCreator::~SignatureCreator() {
[email protected]be796bb2010-11-18 15:43:4388 EVP_MD_CTX_destroy(sign_context_);
[email protected]70372d42010-10-22 13:12:3489}
90
avidd373b8b2015-12-21 21:34:4391bool SignatureCreator::Update(const uint8_t* data_part, int data_part_len) {
[email protected]be796bb2010-11-18 15:43:4392 OpenSSLErrStackTracer err_tracer(FROM_HERE);
davidben183ce632015-01-21 14:21:3693 return !!EVP_DigestSignUpdate(sign_context_, data_part, data_part_len);
[email protected]70372d42010-10-22 13:12:3494}
95
avidd373b8b2015-12-21 21:34:4396bool SignatureCreator::Final(std::vector<uint8_t>* signature) {
[email protected]be796bb2010-11-18 15:43:4397 OpenSSLErrStackTracer err_tracer(FROM_HERE);
[email protected]be796bb2010-11-18 15:43:4398
davidben183ce632015-01-21 14:21:3699 // Determine the maximum length of the signature.
100 size_t len = 0;
101 if (!EVP_DigestSignFinal(sign_context_, NULL, &len)) {
102 signature->clear();
103 return false;
104 }
105 signature->resize(len);
106
107 // Sign it.
davidben4507eaa2015-11-19 19:07:06108 if (!EVP_DigestSignFinal(sign_context_, signature->data(), &len)) {
[email protected]be796bb2010-11-18 15:43:43109 signature->clear();
110 return false;
111 }
112 signature->resize(len);
113 return true;
[email protected]70372d42010-10-22 13:12:34114}
115
[email protected]4b559b4d2011-04-14 17:37:14116} // namespace crypto