include/svl/cryptosign.hxx

   1 /* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
   2 /*
   3  * This file is part of the LibreOffice project.
   4  *
   5  * This Source Code Form is subject to the terms of the Mozilla Public
   6  * License, v. 2.0. If a copy of the MPL was not distributed with this
   7  * file, You can obtain one at http://mozilla.org/MPL/2.0/.
   8  */
   9
  10 #include <sal/types.h>
  11
  12 #include <vector>
  13
  14 #include <rtl/strbuf.hxx>
  15 #include <rtl/ustring.hxx>
  16
  17 #include <com/sun/star/uno/Reference.hxx>
  18
  19 #include <svl/svldllapi.h>
  20
  21 namespace com {
  22 namespace sun {
  23 namespace star {
  24 namespace security {
  25     class XCertificate; }
  26 }}}
  27
  28 class SvStream;
  29 struct SignatureInformation;
  30
  31 namespace svl {
  32
  33 namespace crypto {
  34
  35 /// Converts a hex-encoded string into a byte array.
  36 SVL_DLLPUBLIC std::vector<unsigned char> DecodeHexString(const OString& rHex);
  37
  38 /// Helper to cryptographically sign and verify
  39 /// arbitrary data blocks.
  40 class SVL_DLLPUBLIC Signing
  41 {
  42 public:
  43
  44     Signing(const css::uno::Reference<css::security::XCertificate>& xCertificate) :
  45         m_xCertificate(xCertificate)
  46     {
  47     }
  48
  49     /// Add a range to sign.
  50     /// Note: for efficiency this takes a naked pointer, which must remain valid
  51     /// until this object is discarded.
  52     void AddDataRange(const void* pData, sal_Int32 size)
  53     {
  54         m_dataBlocks.emplace_back(pData, size);
  55     }
  56
  57     void SetSignTSA(const OUString& tsa) { m_aSignTSA = tsa; }
  58     void SetSignPassword(const OUString& password) { m_aSignPassword = password; }
  59
  60     /// Signs one or more data blocks (as a single, contiguous, array).
  61     /// Returns the signature (in PKCS#7 format) as string (hex).
  62     bool Sign(OStringBuffer& rCMSHexBuffer);
  63
  64     /// Verify and get Signature Information given a byte array.
  65     static bool Verify(const std::vector<unsigned char>& aData,
  66                        const bool bNonDetached,
  67                        const std::vector<unsigned char>& aSignature,
  68                        SignatureInformation& rInformation);
  69
  70     /// Verify and get Signature Information given a signature and stream.
  71     static bool Verify(SvStream& rStream,
  72                        const std::vector<std::pair<size_t, size_t>>& aByteRanges,
  73                        const bool bNonDetached,
  74                        const std::vector<unsigned char>& aSignature,
  75                        SignatureInformation& rInformation);
  76
  77 private:
  78     /// The certificate to use for signing.
  79     const css::uno::Reference<css::security::XCertificate> m_xCertificate;
  80
  81     /// Data blocks (pointer-size pairs).
  82     std::vector<std::pair<const void*, sal_Int32>> m_dataBlocks;
  83     OUString m_aSignTSA;
  84     OUString m_aSignPassword;
  85 };
  86
  87 }
  88 }
  89
  90 /* vim:set shiftwidth=4 softtabstop=4 expandtab: */
  91