Gitiles
Code Review Sign In
gerrit.named-data.net / ndn-cxx / 47c93cf2ce0d5288f9cf762f1d454549d7739584 / . / ndn-cpp / key-chain.cpp
blob: 003a4a8783ba019a98246dd35ee380ef8502fbf6 [file] [log] [blame]
Jeff Thompson47c93cf2013-08-09 00:38:48 -0700[diff] [blame^]1/**
2 * @author: Jeff Thompson
3 * See COPYING for copyright and distribution information.
4 */
5
6#include <stdexcept>
7#include <openssl/ssl.h>
8#include "c/encoding/binary-xml-data.h"
9#include "encoding/binary-xml-encoder.hpp"
10#include "key-chain.hpp"
11
12using namespace std;
13
14namespace ndn {
15
16static unsigned char DEFAULT_PUBLIC_KEY[] = {
170x30, 0x81, 0x9F, 0x30, 0x0D, 0x06, 0x09, 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x01, 0x01, 0x05, 0x00, 0x03, 0x81,
180x8D, 0x00, 0x30, 0x81, 0x89, 0x02, 0x81, 0x81, 0x00, 0xE1, 0x7D, 0x30, 0xA7, 0xD8, 0x28, 0xAB, 0x1B, 0x84, 0x0B, 0x17,
190x54, 0x2D, 0xCA, 0xF6, 0x20, 0x7A, 0xFD, 0x22, 0x1E, 0x08, 0x6B, 0x2A, 0x60, 0xD1, 0x6C, 0xB7, 0xF5, 0x44, 0x48, 0xBA,
200x9F, 0x3F, 0x08, 0xBC, 0xD0, 0x99, 0xDB, 0x21, 0xDD, 0x16, 0x2A, 0x77, 0x9E, 0x61, 0xAA, 0x89, 0xEE, 0xE5, 0x54, 0xD3,
210xA4, 0x7D, 0xE2, 0x30, 0xBC, 0x7A, 0xC5, 0x90, 0xD5, 0x24, 0x06, 0x7C, 0x38, 0x98, 0xBB, 0xA6, 0xF5, 0xDC, 0x43, 0x60,
220xB8, 0x45, 0xED, 0xA4, 0x8C, 0xBD, 0x9C, 0xF1, 0x26, 0xA7, 0x23, 0x44, 0x5F, 0x0E, 0x19, 0x52, 0xD7, 0x32, 0x5A, 0x75,
230xFA, 0xF5, 0x56, 0x14, 0x4F, 0x9A, 0x98, 0xAF, 0x71, 0x86, 0xB0, 0x27, 0x86, 0x85, 0xB8, 0xE2, 0xC0, 0x8B, 0xEA, 0x87,
240x17, 0x1B, 0x4D, 0xEE, 0x58, 0x5C, 0x18, 0x28, 0x29, 0x5B, 0x53, 0x95, 0xEB, 0x4A, 0x17, 0x77, 0x9F, 0x02, 0x03, 0x01,
250x00, 01
26};
27
28/**
29 * Set digest to the sha-256 digest of data
30 * @param data Pointer to the input byte array.
31 * @param dataLength The length of data.
32 * @param digest Set this to the resulting digest.
33 */
34static void setSha256(unsigned char *data, unsigned int dataLength, vector<unsigned char> &digest)
35{
36 unsigned char digestBuffer[SHA256_DIGEST_LENGTH];
37 SHA256_CTX sha256;
38 SHA256_Init(&sha256);
39 SHA256_Update(&sha256, data, dataLength);
40 SHA256_Final(digestBuffer, &sha256);
41 setVector(digest, digestBuffer, sizeof(digestBuffer));
42}
43
44/**
45 * Encode the fields of the Data object and set digest to the sha-256 digest.
46 * @param data The Data object with the fields to digest.
47 * @param digest Set this to the resulting digest.
48 */
49static void setDataFieldsSha256(const Data &data, vector<unsigned char> &digest)
50{
51 // Imitate BinaryXmlWireFormat::encodeData.
52 struct ndn_NameComponent nameComponents[100];
53 struct ndn_Data dataStruct;
54 ndn_Data_init(&dataStruct, nameComponents, sizeof(nameComponents) / sizeof(nameComponents[0]));
55 data.get(dataStruct);
56
57 BinaryXmlEncoder encoder;
58 unsigned int signedFieldsBeginOffset, signedFieldsEndOffset;
59 ndn_Error error;
60 if ((error = ndn_encodeBinaryXmlData(&dataStruct, &signedFieldsBeginOffset, &signedFieldsEndOffset, &encoder)))
61 throw std::runtime_error(ndn_getErrorString(error));
62
63 setSha256(encoder.output.array + signedFieldsBeginOffset, signedFieldsEndOffset - signedFieldsBeginOffset, digest);
64}
65
66void KeyChain::defaultSign(Data &data)
67{
68 setSha256(DEFAULT_PUBLIC_KEY, sizeof(DEFAULT_PUBLIC_KEY), data.getSignedInfo().getPublisherPublicKeyDigest().getPublisherPublicKeyDigest());
69 // TODO: Get the real current timestamp.
70 data.getSignedInfo().setTimestampMilliseconds(256);
71 data.getSignedInfo().getKeyLocator().setType(ndn_KeyLocatorType_KEY);
72 data.getSignedInfo().getKeyLocator().setKeyOrCertificate(DEFAULT_PUBLIC_KEY, sizeof(DEFAULT_PUBLIC_KEY));
73
74 data.getSignature().getSignature().clear();
75 vector<unsigned char> dataFieldsDigest;
76 setDataFieldsSha256(data, dataFieldsDigest);
77 // TODO: use RSA_size to get the proper size of the signature buffer.
78 unsigned char signature[1000];
79 unsigned int signatureLength;
80 RSA *privateKey;
81 if (!RSA_sign(NID_sha256, &dataFieldsDigest[0], dataFieldsDigest.size(), signature, &signatureLength, privateKey))
82 throw std::runtime_error("Errir in RSA_sign");
83
84 data.getSignature().setSignature(signature, signatureLength);
85}
86
87
88}