Google Git
Sign in
chromium / chromium / src / d19d0f0fed7546f9edddd3d338ff9d842d327e03 / . / crypto / signature_creator.cc
blob: c440fda031ce149adfba5fae8b15a6ebd17a1cd5 [file] [log] [blame]
[email protected]5ee44d42012-02-08 00:14:54[diff] [blame]1// Copyright (c) 2012 The Chromium Authors. All rights reserved.
[email protected]70372d42010-10-22 13:12:34[diff] [blame]2// Use of this source code is governed by a BSD-style license that can be
3// found in the LICENSE file.
4
[email protected]4b559b4d2011-04-14 17:37:14[diff] [blame]5#include "crypto/signature_creator.h"
[email protected]70372d42010-10-22 13:12:34[diff] [blame]6
avidd373b8b2015-12-21 21:34:43[diff] [blame]7#include <stddef.h>
8#include <stdint.h>
[email protected]be796bb2010-11-18 15:43:43[diff] [blame]9
[email protected]70372d42010-10-22 13:12:34[diff] [blame]10#include "base/logging.h"
[email protected]4b559b4d2011-04-14 17:37:14[diff] [blame]11#include "crypto/openssl_util.h"
[email protected]5ee44d42012-02-08 00:14:54[diff] [blame]12#include "crypto/rsa_private_key.h"
tfarina29a3a1742016-10-28 18:47:33[diff] [blame]13#include "third_party/boringssl/src/include/openssl/evp.h"
14#include "third_party/boringssl/src/include/openssl/rsa.h"
[email protected]70372d42010-10-22 13:12:34[diff] [blame]15
[email protected]4b559b4d2011-04-14 17:37:14[diff] [blame]16namespace crypto {
[email protected]70372d42010-10-22 13:12:34[diff] [blame]17
dougsteed0cf460ec2014-09-19 18:46:09[diff] [blame]18namespace {
19
20const EVP_MD* ToOpenSSLDigest(SignatureCreator::HashAlgorithm hash_alg) {
21 switch (hash_alg) {
22 case SignatureCreator::SHA1:
23 return EVP_sha1();
24 case SignatureCreator::SHA256:
25 return EVP_sha256();
26 }
rsleeviffe5a132016-06-28 01:51:52[diff] [blame]27 return nullptr;
dougsteed0cf460ec2014-09-19 18:46:09[diff] [blame]28}
29
30int ToOpenSSLDigestType(SignatureCreator::HashAlgorithm hash_alg) {
31 switch (hash_alg) {
32 case SignatureCreator::SHA1:
33 return NID_sha1;
34 case SignatureCreator::SHA256:
35 return NID_sha256;
36 }
37 return NID_undef;
38}
39
40} // namespace
41
rsleeviffe5a132016-06-28 01:51:52[diff] [blame]42SignatureCreator::~SignatureCreator() {
43 EVP_MD_CTX_destroy(sign_context_);
44}
45
[email protected]70372d42010-10-22 13:12:34[diff] [blame]46// static
rsleeviffe5a132016-06-28 01:51:52[diff] [blame]47std::unique_ptr<SignatureCreator> SignatureCreator::Create(
48 RSAPrivateKey* key,
49 HashAlgorithm hash_alg) {
[email protected]be796bb2010-11-18 15:43:43[diff] [blame]50 OpenSSLErrStackTracer err_tracer(FROM_HERE);
thakisd1a18472016-04-08 22:30:41[diff] [blame]51 std::unique_ptr<SignatureCreator> result(new SignatureCreator);
dougsteed0cf460ec2014-09-19 18:46:09[diff] [blame]52 const EVP_MD* const digest = ToOpenSSLDigest(hash_alg);
53 DCHECK(digest);
54 if (!digest) {
rsleeviffe5a132016-06-28 01:51:52[diff] [blame]55 return nullptr;
dougsteed0cf460ec2014-09-19 18:46:09[diff] [blame]56 }
rsleeviffe5a132016-06-28 01:51:52[diff] [blame]57 if (!EVP_DigestSignInit(result->sign_context_, nullptr, digest, nullptr,
davidben183ce632015-01-21 14:21:36[diff] [blame]58 key->key())) {
rsleeviffe5a132016-06-28 01:51:52[diff] [blame]59 return nullptr;
davidben183ce632015-01-21 14:21:36[diff] [blame]60 }
rsleeviffe5a132016-06-28 01:51:52[diff] [blame]61 return result;
[email protected]70372d42010-10-22 13:12:34[diff] [blame]62}
63
[email protected]ed31834b2013-07-09 08:32:40[diff] [blame]64// static
65bool SignatureCreator::Sign(RSAPrivateKey* key,
dougsteed0cf460ec2014-09-19 18:46:09[diff] [blame]66 HashAlgorithm hash_alg,
avidd373b8b2015-12-21 21:34:43[diff] [blame]67 const uint8_t* data,
[email protected]ed31834b2013-07-09 08:32:40[diff] [blame]68 int data_len,
avidd373b8b2015-12-21 21:34:43[diff] [blame]69 std::vector<uint8_t>* signature) {
davidben74f67442016-10-01 01:45:22[diff] [blame]70 bssl::UniquePtr<RSA> rsa_key(EVP_PKEY_get1_RSA(key->key()));
[email protected]ed31834b2013-07-09 08:32:40[diff] [blame]71 if (!rsa_key)
72 return false;
[email protected]27410402014-07-14 21:01:52[diff] [blame]73 signature->resize(RSA_size(rsa_key.get()));
[email protected]ed31834b2013-07-09 08:32:40[diff] [blame]74
75 unsigned int len = 0;
davidben50a133b52014-10-02 02:20:43[diff] [blame]76 if (!RSA_sign(ToOpenSSLDigestType(hash_alg), data, data_len,
davidben4507eaa2015-11-19 19:07:06[diff] [blame]77 signature->data(), &len, rsa_key.get())) {
[email protected]ed31834b2013-07-09 08:32:40[diff] [blame]78 signature->clear();
79 return false;
80 }
81 signature->resize(len);
82 return true;
83}
84
avidd373b8b2015-12-21 21:34:43[diff] [blame]85bool SignatureCreator::Update(const uint8_t* data_part, int data_part_len) {
[email protected]be796bb2010-11-18 15:43:43[diff] [blame]86 OpenSSLErrStackTracer err_tracer(FROM_HERE);
davidben183ce632015-01-21 14:21:36[diff] [blame]87 return !!EVP_DigestSignUpdate(sign_context_, data_part, data_part_len);
[email protected]70372d42010-10-22 13:12:34[diff] [blame]88}
89
avidd373b8b2015-12-21 21:34:43[diff] [blame]90bool SignatureCreator::Final(std::vector<uint8_t>* signature) {
[email protected]be796bb2010-11-18 15:43:43[diff] [blame]91 OpenSSLErrStackTracer err_tracer(FROM_HERE);
[email protected]be796bb2010-11-18 15:43:43[diff] [blame]92
davidben183ce632015-01-21 14:21:36[diff] [blame]93 // Determine the maximum length of the signature.
94 size_t len = 0;
rsleeviffe5a132016-06-28 01:51:52[diff] [blame]95 if (!EVP_DigestSignFinal(sign_context_, nullptr, &len)) {
davidben183ce632015-01-21 14:21:36[diff] [blame]96 signature->clear();
97 return false;
98 }
99 signature->resize(len);
100
101 // Sign it.
davidben4507eaa2015-11-19 19:07:06[diff] [blame]102 if (!EVP_DigestSignFinal(sign_context_, signature->data(), &len)) {
[email protected]be796bb2010-11-18 15:43:43[diff] [blame]103 signature->clear();
104 return false;
105 }
106 signature->resize(len);
107 return true;
[email protected]70372d42010-10-22 13:12:34[diff] [blame]108}
109
rsleeviffe5a132016-06-28 01:51:52[diff] [blame]110SignatureCreator::SignatureCreator() : sign_context_(EVP_MD_CTX_create()) {}
111
[email protected]4b559b4d2011-04-14 17:37:14[diff] [blame]112} // namespace crypto