GN Windows component build fixes: media
[chromium-blink-merge.git] / crypto / ec_signature_creator_openssl.cc
blobc422cef5f275a2d6cf711d78affc31fb6e00d411
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #include "crypto/ec_signature_creator_impl.h"
7 #include <openssl/bn.h>
8 #include <openssl/ec.h>
9 #include <openssl/ecdsa.h>
10 #include <openssl/evp.h>
11 #include <openssl/sha.h>
13 #include "base/logging.h"
14 #include "crypto/ec_private_key.h"
15 #include "crypto/openssl_util.h"
16 #include "crypto/scoped_openssl_types.h"
18 namespace crypto {
20 ECSignatureCreatorImpl::ECSignatureCreatorImpl(ECPrivateKey* key)
21 : key_(key), signature_len_(0) {
22 EnsureOpenSSLInit();
25 ECSignatureCreatorImpl::~ECSignatureCreatorImpl() {}
27 bool ECSignatureCreatorImpl::Sign(const uint8* data,
28 int data_len,
29 std::vector<uint8>* signature) {
30 OpenSSLErrStackTracer err_tracer(FROM_HERE);
31 ScopedEVP_MD_CTX ctx(EVP_MD_CTX_create());
32 size_t sig_len = 0;
33 if (!ctx.get() ||
34 !EVP_DigestSignInit(ctx.get(), NULL, EVP_sha256(), NULL, key_->key()) ||
35 !EVP_DigestSignUpdate(ctx.get(), data, data_len) ||
36 !EVP_DigestSignFinal(ctx.get(), NULL, &sig_len)) {
37 return false;
40 signature->resize(sig_len);
41 if (!EVP_DigestSignFinal(ctx.get(), &signature->front(), &sig_len))
42 return false;
44 // NOTE: A call to EVP_DigestSignFinal() with a NULL second parameter returns
45 // a maximum allocation size, while the call without a NULL returns the real
46 // one, which may be smaller.
47 signature->resize(sig_len);
48 return true;
51 bool ECSignatureCreatorImpl::DecodeSignature(const std::vector<uint8>& der_sig,
52 std::vector<uint8>* out_raw_sig) {
53 OpenSSLErrStackTracer err_tracer(FROM_HERE);
54 // Create ECDSA_SIG object from DER-encoded data.
55 const unsigned char* der_data = &der_sig.front();
56 ScopedECDSA_SIG ecdsa_sig(
57 d2i_ECDSA_SIG(NULL, &der_data, static_cast<long>(der_sig.size())));
58 if (!ecdsa_sig.get())
59 return false;
61 // The result is made of two 32-byte vectors.
62 const size_t kMaxBytesPerBN = 32;
63 std::vector<uint8> result(2 * kMaxBytesPerBN);
65 if (!BN_bn2bin_padded(&result[0], kMaxBytesPerBN, ecdsa_sig->r) ||
66 !BN_bn2bin_padded(&result[kMaxBytesPerBN], kMaxBytesPerBN,
67 ecdsa_sig->s)) {
68 return false;
70 out_raw_sig->swap(result);
71 return true;
74 } // namespace crypto