| Avi Drissman | 201a9a83 | 2022-09-13 19:39:25 | [diff] [blame] | 1 | // Copyright 2012 The Chromium Authors |
| rch@chromium.org | e4c1847 | 2012-01-25 00:56:43 | [diff] [blame] | 2 | // Use of this source code is governed by a BSD-style license that can be |
| 3 | // found in the LICENSE file. |
| 4 | |
| mattm@chromium.org | 6b2e61f | 2012-02-28 08:06:54 | [diff] [blame] | 5 | #include "crypto/ec_signature_creator_impl.h" |
| rch@chromium.org | e4c1847 | 2012-01-25 00:56:43 | [diff] [blame] | 6 | |
| avi | dd373b8b | 2015-12-21 21:34:43 | [diff] [blame] | 7 | #include <stddef.h> |
| 8 | #include <stdint.h> |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 9 | |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 10 | #include "crypto/ec_private_key.h" |
| 11 | #include "crypto/openssl_util.h" |
| tfarina | 29a3a174 | 2016-10-28 18:47:33 | [diff] [blame] | 12 | #include "third_party/boringssl/src/include/openssl/bn.h" |
| 13 | #include "third_party/boringssl/src/include/openssl/ec.h" |
| 14 | #include "third_party/boringssl/src/include/openssl/ecdsa.h" |
| 15 | #include "third_party/boringssl/src/include/openssl/evp.h" |
| 16 | #include "third_party/boringssl/src/include/openssl/sha.h" |
| rch@chromium.org | e4c1847 | 2012-01-25 00:56:43 | [diff] [blame] | 17 | |
| 18 | namespace crypto { |
| 19 | |
| mattm@chromium.org | 6b2e61f | 2012-02-28 08:06:54 | [diff] [blame] | 20 | ECSignatureCreatorImpl::ECSignatureCreatorImpl(ECPrivateKey* key) |
| mlamouri | ef55346a | 2015-10-21 01:23:09 | [diff] [blame] | 21 | : key_(key) { |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 22 | EnsureOpenSSLInit(); |
| rch@chromium.org | e4c1847 | 2012-01-25 00:56:43 | [diff] [blame] | 23 | } |
| 24 | |
| Chris Watkins | a850a30 | 2017-11-30 03:53:49 | [diff] [blame] | 25 | ECSignatureCreatorImpl::~ECSignatureCreatorImpl() = default; |
| rch@chromium.org | e4c1847 | 2012-01-25 00:56:43 | [diff] [blame] | 26 | |
| Hubert Chao | 7248d583 | 2021-07-21 16:33:26 | [diff] [blame] | 27 | bool ECSignatureCreatorImpl::Sign(base::span<const uint8_t> data, |
| avi | dd373b8b | 2015-12-21 21:34:43 | [diff] [blame] | 28 | std::vector<uint8_t>* signature) { |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 29 | OpenSSLErrStackTracer err_tracer(FROM_HERE); |
| davidben | 74f6744 | 2016-10-01 01:45:22 | [diff] [blame] | 30 | bssl::ScopedEVP_MD_CTX ctx; |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 31 | size_t sig_len = 0; |
| 32 | if (!ctx.get() || |
| rsleevi | ffe5a13 | 2016-06-28 01:51:52 | [diff] [blame] | 33 | !EVP_DigestSignInit(ctx.get(), nullptr, EVP_sha256(), nullptr, |
| 34 | key_->key()) || |
| Hubert Chao | 7248d583 | 2021-07-21 16:33:26 | [diff] [blame] | 35 | !EVP_DigestSignUpdate(ctx.get(), data.data(), data.size()) || |
| rsleevi | ffe5a13 | 2016-06-28 01:51:52 | [diff] [blame] | 36 | !EVP_DigestSignFinal(ctx.get(), nullptr, &sig_len)) { |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 37 | return false; |
| 38 | } |
| 39 | |
| 40 | signature->resize(sig_len); |
| 41 | if (!EVP_DigestSignFinal(ctx.get(), &signature->front(), &sig_len)) |
| 42 | return false; |
| 43 | |
| rsleevi | ffe5a13 | 2016-06-28 01:51:52 | [diff] [blame] | 44 | // NOTE: A call to EVP_DigestSignFinal() with a nullptr second parameter |
| 45 | // returns a maximum allocation size, while the call without a nullptr |
| 46 | // returns the real one, which may be smaller. |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 47 | signature->resize(sig_len); |
| 48 | return true; |
| rch@chromium.org | e4c1847 | 2012-01-25 00:56:43 | [diff] [blame] | 49 | } |
| 50 | |
| avi | dd373b8b | 2015-12-21 21:34:43 | [diff] [blame] | 51 | bool ECSignatureCreatorImpl::DecodeSignature( |
| 52 | const std::vector<uint8_t>& der_sig, |
| 53 | std::vector<uint8_t>* out_raw_sig) { |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 54 | OpenSSLErrStackTracer err_tracer(FROM_HERE); |
| 55 | // Create ECDSA_SIG object from DER-encoded data. |
| davidben | 74f6744 | 2016-10-01 01:45:22 | [diff] [blame] | 56 | bssl::UniquePtr<ECDSA_SIG> ecdsa_sig( |
| davidben | 7dad2a3 | 2016-03-01 23:47:47 | [diff] [blame] | 57 | ECDSA_SIG_from_bytes(der_sig.data(), der_sig.size())); |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 58 | if (!ecdsa_sig.get()) |
| 59 | return false; |
| 60 | |
| 61 | // The result is made of two 32-byte vectors. |
| 62 | const size_t kMaxBytesPerBN = 32; |
| avi | dd373b8b | 2015-12-21 21:34:43 | [diff] [blame] | 63 | std::vector<uint8_t> result(2 * kMaxBytesPerBN); |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 64 | |
| eroman | 0f4b2770 | 2014-11-10 23:43:38 | [diff] [blame] | 65 | if (!BN_bn2bin_padded(&result[0], kMaxBytesPerBN, ecdsa_sig->r) || |
| 66 | !BN_bn2bin_padded(&result[kMaxBytesPerBN], kMaxBytesPerBN, |
| 67 | ecdsa_sig->s)) { |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 68 | return false; |
| 69 | } |
| digit@chromium.org | 012c287 | 2013-10-25 17:26:08 | [diff] [blame] | 70 | out_raw_sig->swap(result); |
| 71 | return true; |
| agl@chromium.org | 7c3090a0 | 2012-09-19 15:11:33 | [diff] [blame] | 72 | } |
| 73 | |
| rch@chromium.org | e4c1847 | 2012-01-25 00:56:43 | [diff] [blame] | 74 | } // namespace crypto |
