1 /* This Source Code Form is subject to the terms of the Mozilla Public
2 * License, v. 2.0. If a copy of the MPL was not distributed with this
3 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
4
5 /*
6 * CMS digestedData methods.
7 */
8
9 #include "cmslocal.h"
10
11 #include "secitem.h"
12 #include "secasn1.h"
13 #include "secoid.h"
14 #include "secerr.h"
15
16 /*
17 * NSS_CMSDigestedData_Create - create a digestedData object (presumably for encoding)
18 *
19 * version will be set by NSS_CMSDigestedData_Encode_BeforeStart
20 * digestAlg is passed as parameter
21 * contentInfo must be filled by the user
22 * digest will be calculated while encoding
23 */
24 NSSCMSDigestedData *
NSS_CMSDigestedData_Create(NSSCMSMessage * cmsg,SECAlgorithmID * digestalg)25 NSS_CMSDigestedData_Create(NSSCMSMessage *cmsg, SECAlgorithmID *digestalg)
26 {
27 void *mark;
28 NSSCMSDigestedData *digd;
29 PLArenaPool *poolp;
30
31 poolp = cmsg->poolp;
32
33 mark = PORT_ArenaMark(poolp);
34
35 digd = (NSSCMSDigestedData *)PORT_ArenaZAlloc(poolp, sizeof(NSSCMSDigestedData));
36 if (digd == NULL)
37 goto loser;
38
39 digd->cmsg = cmsg;
40
41 if (SECOID_CopyAlgorithmID(poolp, &(digd->digestAlg), digestalg) != SECSuccess)
42 goto loser;
43
44 PORT_ArenaUnmark(poolp, mark);
45 return digd;
46
47 loser:
48 PORT_ArenaRelease(poolp, mark);
49 return NULL;
50 }
51
52 /*
53 * NSS_CMSDigestedData_Destroy - destroy a digestedData object
54 */
55 void
NSS_CMSDigestedData_Destroy(NSSCMSDigestedData * digd)56 NSS_CMSDigestedData_Destroy(NSSCMSDigestedData *digd)
57 {
58 /* everything's in a pool, so don't worry about the storage */
59 if (digd != NULL) {
60 NSS_CMSContentInfo_Destroy(&(digd->contentInfo));
61 }
62 return;
63 }
64
65 /*
66 * NSS_CMSDigestedData_GetContentInfo - return pointer to digestedData object's contentInfo
67 */
68 NSSCMSContentInfo *
NSS_CMSDigestedData_GetContentInfo(NSSCMSDigestedData * digd)69 NSS_CMSDigestedData_GetContentInfo(NSSCMSDigestedData *digd)
70 {
71 return &(digd->contentInfo);
72 }
73
74 /*
75 * NSS_CMSDigestedData_Encode_BeforeStart - do all the necessary things to a DigestedData
76 * before encoding begins.
77 *
78 * In particular:
79 * - set the right version number. The contentInfo's content type must be set up already.
80 */
81 SECStatus
NSS_CMSDigestedData_Encode_BeforeStart(NSSCMSDigestedData * digd)82 NSS_CMSDigestedData_Encode_BeforeStart(NSSCMSDigestedData *digd)
83 {
84 unsigned long version;
85 SECItem *dummy;
86
87 version = NSS_CMS_DIGESTED_DATA_VERSION_DATA;
88 if (!NSS_CMSType_IsData(NSS_CMSContentInfo_GetContentTypeTag(
89 &(digd->contentInfo))))
90 version = NSS_CMS_DIGESTED_DATA_VERSION_ENCAP;
91
92 dummy = SEC_ASN1EncodeInteger(digd->cmsg->poolp, &(digd->version), version);
93 return (dummy == NULL) ? SECFailure : SECSuccess;
94 }
95
96 /*
97 * NSS_CMSDigestedData_Encode_BeforeData - do all the necessary things to a DigestedData
98 * before the encapsulated data is passed through the encoder.
99 *
100 * In detail:
101 * - set up the digests if necessary
102 */
103 SECStatus
NSS_CMSDigestedData_Encode_BeforeData(NSSCMSDigestedData * digd)104 NSS_CMSDigestedData_Encode_BeforeData(NSSCMSDigestedData *digd)
105 {
106 SECStatus rv = NSS_CMSContentInfo_Private_Init(&digd->contentInfo);
107 if (rv != SECSuccess) {
108 return SECFailure;
109 }
110
111 /* set up the digests */
112 if (digd->digestAlg.algorithm.len != 0 && digd->digest.len == 0) {
113 /* if digest is already there, do nothing */
114 digd->contentInfo.privateInfo->digcx = NSS_CMSDigestContext_StartSingle(&(digd->digestAlg));
115 if (digd->contentInfo.privateInfo->digcx == NULL)
116 return SECFailure;
117 }
118 return SECSuccess;
119 }
120
121 /*
122 * NSS_CMSDigestedData_Encode_AfterData - do all the necessary things to a DigestedData
123 * after all the encapsulated data was passed through the encoder.
124 *
125 * In detail:
126 * - finish the digests
127 */
128 SECStatus
NSS_CMSDigestedData_Encode_AfterData(NSSCMSDigestedData * digd)129 NSS_CMSDigestedData_Encode_AfterData(NSSCMSDigestedData *digd)
130 {
131 SECStatus rv = SECSuccess;
132 /* did we have digest calculation going on? */
133 if (digd->contentInfo.privateInfo && digd->contentInfo.privateInfo->digcx) {
134 rv = NSS_CMSDigestContext_FinishSingle(digd->contentInfo.privateInfo->digcx,
135 digd->cmsg->poolp,
136 &(digd->digest));
137 /* error has been set by NSS_CMSDigestContext_FinishSingle */
138 digd->contentInfo.privateInfo->digcx = NULL;
139 }
140
141 return rv;
142 }
143
144 /*
145 * NSS_CMSDigestedData_Decode_BeforeData - do all the necessary things to a DigestedData
146 * before the encapsulated data is passed through the encoder.
147 *
148 * In detail:
149 * - set up the digests if necessary
150 */
151 SECStatus
NSS_CMSDigestedData_Decode_BeforeData(NSSCMSDigestedData * digd)152 NSS_CMSDigestedData_Decode_BeforeData(NSSCMSDigestedData *digd)
153 {
154 SECStatus rv;
155
156 /* is there a digest algorithm yet? */
157 if (digd->digestAlg.algorithm.len == 0)
158 return SECFailure;
159
160 rv = NSS_CMSContentInfo_Private_Init(&digd->contentInfo);
161 if (rv != SECSuccess) {
162 return SECFailure;
163 }
164
165 digd->contentInfo.privateInfo->digcx = NSS_CMSDigestContext_StartSingle(&(digd->digestAlg));
166 if (digd->contentInfo.privateInfo->digcx == NULL)
167 return SECFailure;
168
169 return SECSuccess;
170 }
171
172 /*
173 * NSS_CMSDigestedData_Decode_AfterData - do all the necessary things to a DigestedData
174 * after all the encapsulated data was passed through the encoder.
175 *
176 * In detail:
177 * - finish the digests
178 */
179 SECStatus
NSS_CMSDigestedData_Decode_AfterData(NSSCMSDigestedData * digd)180 NSS_CMSDigestedData_Decode_AfterData(NSSCMSDigestedData *digd)
181 {
182 SECStatus rv = SECSuccess;
183 /* did we have digest calculation going on? */
184 if (digd->contentInfo.privateInfo && digd->contentInfo.privateInfo->digcx) {
185 rv = NSS_CMSDigestContext_FinishSingle(digd->contentInfo.privateInfo->digcx,
186 digd->cmsg->poolp,
187 &(digd->cdigest));
188 /* error has been set by NSS_CMSDigestContext_FinishSingle */
189 digd->contentInfo.privateInfo->digcx = NULL;
190 }
191
192 return rv;
193 }
194
195 /*
196 * NSS_CMSDigestedData_Decode_AfterEnd - finalize a digestedData.
197 *
198 * In detail:
199 * - check the digests for equality
200 */
201 SECStatus
NSS_CMSDigestedData_Decode_AfterEnd(NSSCMSDigestedData * digd)202 NSS_CMSDigestedData_Decode_AfterEnd(NSSCMSDigestedData *digd)
203 {
204 /* did we have digest calculation going on? */
205 if (digd->cdigest.len != 0) {
206 /* XXX comparision btw digest & cdigest */
207 /* XXX set status */
208 /* TODO!!!! */
209 }
210
211 return SECSuccess;
212 }
213