security: Signature interface change and initial fixes for OSX private key store Change-Id: Ic6d074e99346c4bf9d7b2c20c961dd01d770636d

commit: 04b22a9a0ecf9f2046d3a6cd4269250185464e2e [log] [tgz]
author: Alexander Afanasyev <alexander.afanasyev@ucla.edu> Sun Jan 05 22:40:17 2014 -0800
committer: Alexander Afanasyev <alexander.afanasyev@ucla.edu> Thu Jan 09 15:14:16 2014 -0800
tree: 4543a1f298d9bad35b33234d8f7f784da298ba49
parent: ad39b1812e8b6b239bfed3680d9269eb02915a55 [diff] [blame]
diff --git a/src/security/identity/identity-manager.cpp b/src/security/identity/identity-manager.cpp
index 1befdcd..ce6ff21 100644
--- a/src/security/identity/identity-manager.cpp
+++ b/src/security/identity/identity-manager.cpp

@@ -228,9 +228,10 @@
 
   SignatureSha256WithRsa signature;
   signature.setKeyLocator(certificateName.getPrefix(-1)); // implicit conversion should take care
-
+  
   // For temporary usage, we support RSA + SHA256 only, but will support more.
-  signature.setValue(tpm().sign(buffer, bufferLength, signature, cert->getPublicKeyName(), DIGEST_ALGORITHM_SHA256));
+  signature.setValue
+    (tpm().sign(buffer, bufferLength, cert->getPublicKeyName(), DIGEST_ALGORITHM_SHA256));
   return signature;
 }
 
@@ -243,10 +244,10 @@
 
   SignatureSha256WithRsa signature;
   signature.setKeyLocator(certificateName.getPrefix(-1)); // implicit conversion should take care
+  data.setSignature(signature);
 
   // For temporary usage, we support RSA + SHA256 only, but will support more.
-  signature.setValue(tpm().sign(data, signature, cert->getPublicKeyName(), DIGEST_ALGORITHM_SHA256));
-  data.setSignature(signature);
+  tpm().sign(data, cert->getPublicKeyName(), DIGEST_ALGORITHM_SHA256);
 }
 
 void
@@ -254,10 +255,10 @@
 {
   SignatureSha256WithRsa signature;
   signature.setKeyLocator(certificate.getName().getPrefix(-1));
+  data.setSignature(signature);
 
   // For temporary usage, we support RSA + SHA256 only, but will support more.
-  signature.setValue(tpm().sign(data, signature, certificate.getPublicKeyName(), DIGEST_ALGORITHM_SHA256));
-  data.setSignature(signature);
+  tpm().sign(data, certificate.getPublicKeyName(), DIGEST_ALGORITHM_SHA256);
 }
 
 void
@@ -265,10 +266,10 @@
 {
   SignatureSha256WithRsa signature;
   signature.setKeyLocator(cert.getName().getPrefix(cert.getName().size()-1)); // implicit conversion should take care
+  cert.setSignature(signature);
 
   // For temporary usage, we support RSA + SHA256 only, but will support more.
-  signature.setValue(tpm().sign(cert, signature, cert.getPublicKeyName(), DIGEST_ALGORITHM_SHA256));
-  cert.setSignature(signature);
+  tpm().sign(cert, cert.getPublicKeyName(), DIGEST_ALGORITHM_SHA256);
 }
 
 Name
commit	04b22a9a0ecf9f2046d3a6cd4269250185464e2e	[log] [tgz]
author	Alexander Afanasyev <alexander.afanasyev@ucla.edu>	Sun Jan 05 22:40:17 2014 -0800
committer	Alexander Afanasyev <alexander.afanasyev@ucla.edu>	Thu Jan 09 15:14:16 2014 -0800
tree	4543a1f298d9bad35b33234d8f7f784da298ba49
parent	ad39b1812e8b6b239bfed3680d9269eb02915a55 [diff] [blame]