OLD | NEW |
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #ifndef CRYPTO_EC_SIGNATURE_CREATOR_H_ | 5 #ifndef CRYPTO_EC_SIGNATURE_CREATOR_H_ |
6 #define CRYPTO_EC_SIGNATURE_CREATOR_H_ | 6 #define CRYPTO_EC_SIGNATURE_CREATOR_H_ |
7 #pragma once | 7 #pragma once |
8 | 8 |
9 #include <vector> | 9 #include <vector> |
10 | 10 |
11 #include "base/basictypes.h" | 11 #include "base/basictypes.h" |
12 #include "crypto/crypto_export.h" | 12 #include "crypto/crypto_export.h" |
13 | 13 |
14 namespace crypto { | 14 namespace crypto { |
15 | 15 |
16 class ECPrivateKey; | 16 class ECPrivateKey; |
| 17 class ECSignatureCreator; |
| 18 |
| 19 class CRYPTO_EXPORT ECSignatureCreatorFactory { |
| 20 public: |
| 21 virtual ~ECSignatureCreatorFactory() {} |
| 22 |
| 23 virtual ECSignatureCreator* Create(ECPrivateKey* key) = 0; |
| 24 }; |
17 | 25 |
18 // Signs data using a bare private key (as opposed to a full certificate). | 26 // Signs data using a bare private key (as opposed to a full certificate). |
19 // We need this class because SignatureCreator is hardcoded to use | 27 // We need this class because SignatureCreator is hardcoded to use |
20 // RSAPrivateKey. | 28 // RSAPrivateKey. |
21 class CRYPTO_EXPORT ECSignatureCreator { | 29 class CRYPTO_EXPORT ECSignatureCreator { |
22 public: | 30 public: |
23 ~ECSignatureCreator(); | 31 virtual ~ECSignatureCreator() {} |
24 | 32 |
25 // Create an instance. The caller must ensure that the provided PrivateKey | 33 // Create an instance. The caller must ensure that the provided PrivateKey |
26 // instance outlives the created ECSignatureCreator. | 34 // instance outlives the created ECSignatureCreator. |
27 // TODO(rch): This is currently hard coded to use SHA1. Ideally, we should | 35 // TODO(rch): This is currently hard coded to use SHA1. Ideally, we should |
28 // pass in the hash algorithm identifier. | 36 // pass in the hash algorithm identifier. |
29 static ECSignatureCreator* Create(ECPrivateKey* key); | 37 static ECSignatureCreator* Create(ECPrivateKey* key); |
30 | 38 |
| 39 // Set a factory to make the Create function return non-standard |
| 40 // ECSignatureCreator objects. Because the ECDSA algorithm involves |
| 41 // randomness, this is useful for higher-level tests that want to have |
| 42 // deterministic mocked output to compare. |
| 43 static void SetFactoryForTesting(ECSignatureCreatorFactory* factory); |
| 44 |
31 // Signs |data_len| bytes from |data| and writes the results into | 45 // Signs |data_len| bytes from |data| and writes the results into |
32 // |signature| as a DER encoded ECDSA-Sig-Value from RFC 3279. | 46 // |signature| as a DER encoded ECDSA-Sig-Value from RFC 3279. |
33 // | 47 // |
34 // ECDSA-Sig-Value ::= SEQUENCE { | 48 // ECDSA-Sig-Value ::= SEQUENCE { |
35 // r INTEGER, | 49 // r INTEGER, |
36 // s INTEGER } | 50 // s INTEGER } |
37 bool Sign(const uint8* data, | 51 virtual bool Sign(const uint8* data, |
38 int data_len, | 52 int data_len, |
39 std::vector<uint8>* signature); | 53 std::vector<uint8>* signature) = 0; |
40 | |
41 private: | |
42 // Private constructor. Use the Create() method instead. | |
43 explicit ECSignatureCreator(ECPrivateKey* key); | |
44 | |
45 ECPrivateKey* key_; | |
46 | |
47 DISALLOW_COPY_AND_ASSIGN(ECSignatureCreator); | |
48 }; | 54 }; |
49 | 55 |
50 } // namespace crypto | 56 } // namespace crypto |
51 | 57 |
52 #endif // CRYPTO_EC_SIGNATURE_CREATOR_H_ | 58 #endif // CRYPTO_EC_SIGNATURE_CREATOR_H_ |
OLD | NEW |