1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
|
/*
* Copyright (c) 2017 Cisco and/or its affiliates.
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at:
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
/**
* @file parc_Signature.h
* @ingroup security
* @brief A tuple of (SigningAlgorithm, SignatureBuffer, PublicKeyDigest)
*
* A PARCSignature wraps the tuple { SigningAlgorithm, SignatureBuffer, PublicKeyDigest },
* where PublicKeyDigest is a PARCCryptoHash of the publisher public key digest.
*
*/
#ifndef libparc_parc_Signature_h
#define libparc_parc_Signature_h
#include <parc/security/parc_CryptoHash.h>
#include <parc/security/parc_CryptoHashType.h>
#include <parc/security/parc_SigningAlgorithm.h>
#include <parc/algol/parc_Buffer.h>
struct parc_signature;
typedef struct parc_signature PARCSignature;
/**
* Create a `PARCSignature` instance wrapping all the pieces needed to use it.
*
* @param [in] signingAlgorithm is the algorithm used to produce the signature
* @param [in] hashType The PARCCryptoHashType of cryptographic hash digest computed from the input bits which is ultimately signed.
* @param [in] signatureBits is the actual signature, as an array of bytes
*
* @return A pointer to a `PARCSignature` instance.
*
* Example:
* @code
* {
* PARCBuffer *sigbits = parcBuffer_Flip(parcBuffer_FromString("signature bits"));
*
* PARCSignature *signature = parcSignature_Create(PARCSigningAlgorithm_RSA, PARCCryptoHashType_SHA256, sigbits);
* parcBuffer_Release(&sigbits);
* }
* @endcode
*/
PARCSignature *parcSignature_Create(PARCSigningAlgorithm signingAlgorithm, PARCCryptoHashType hashType, PARCBuffer *signatureBits);
/**
* Increase the number of references to an instance of this object.
*
* Note that new instance is not created,
* only that the given instance's reference count is incremented.
* Discard the reference by invoking `parcSignature_Release`.
*
* @param [in] signature A pointer to the instance of `PARCSignature` to acquire.
* @return The value of the input parameter @p instance.
*
* Example:
* @code
* {
* ...
*
* PARCSignature *signature = parcSignature_Acquire(instance);
*
* parcSignature_Release(&signature);
* }
* @endcode
*
* @see `parcSignature_Release`
*/
PARCSignature *parcSignature_Acquire(const PARCSignature *signature);
/**
* Release a previously acquired reference to the specified instance,
* decrementing the reference count for the instance.
*
* The pointer to the instance is set to NULL as a side-effect of this function.
*
* If the invocation causes the last reference to the instance to be released,
* the instance is deallocated and the instance's implementation will perform
* additional cleanup and release other privately held references.
*
* @param [in,out] signaturePtr A pointer to a pointer to the instance to release.
*
*
* Example:
* @code
* {
* PARCBuffer *sigbits = parcBuffer_Flip(parcBuffer_FromString("signature bits"));
*
* PARCSignature *signature = parcSignature_Create(PARCSigningAlgorithm_RSA, PARCCryptoHashType_SHA256, sigbits);
* parcBuffer_Release(&sigbits);
* parcSignature_Release(&signature);
* }
* @endcode
*
* @see `parcSignature_Acquire`
*/
void parcSignature_Release(PARCSignature **signaturePtr);
/**
* Returns the signing algorithm.
*
* @param [in] signature The `PARCSignature` instance from which the signing algorithm is retrieved.
*
* @return A `PARCSigningAlgorithm` value corresponding to this signature.
*
* Example:
* @code
* {
* PARCBuffer *sigbits = parcBuffer_Flip(parcBuffer_FromString("signature bits"));
*
* PARCSignature *signature = parcSignature_Create(PARCSigningAlgorithm_RSA, PARCCryptoHashType_SHA256, sigbits);
* parcBuffer_Release(&sigbits);
*
* PARCSigningAlgorithm algorithm = parcSignature_GetSigningAlgorithm(signature);
* }
* @endcode
*/
PARCSigningAlgorithm parcSignature_GetSigningAlgorithm(const PARCSignature *signature);
/**
* Returns the digest algorithm used to compute the digest we signed.
*
* @param [in] signature The `PARCSignature` instance from which the hash type is retrieved.
*
* @return A `PARCCryptoHashType` value corresponding to this signature.
*
* Example:
* @code
* {
* PARCBuffer *sigbits = parcBuffer_Flip(parcBuffer_FromString("signature bits"));
*
* PARCSignature *signature = parcSignature_Create(PARCSigningAlgorithm_RSA, PARCCryptoHashType_SHA256, sigbits);
* parcBuffer_Release(&sigbits);
*
* PARCCryptoHashType hashType = parcSignature_GetHashType(signature);
* }
* @endcode
*/
PARCCryptoHashType parcSignature_GetHashType(const PARCSignature *signature);
/**
* Gets the signature as a buffer of bits.
*
* @param [in] signature The `PARCSignature` instance from which the signature payload is retrieved.
*
* @return A `PARCBuffer` instanace containing the raw signature bytes.
*
* Example:
* @code
* {
* PARCBuffer *sigbits = parcBuffer_Flip(parcBuffer_FromString("signature bits"));
*
* PARCSignature *signature = parcSignature_Create(PARCSigningAlgorithm_RSA, PARCCryptoHashType_SHA256, sigbits);
* parcBuffer_Release(&sigbits);
*
* PARCBuffer *payload = parcSignature_GetSignature(signature);
* }
* @endcode
*/
PARCBuffer *parcSignature_GetSignature(const PARCSignature *signature);
/**
* Produce a nul-terminated string representation of the specified instance.
*
* The non-null result must be freed by the caller via `parcMemory_Deallocate()`.
*
* @param [in] signature A pointer to a PARCSignature instance.
*
* @return NULL An error occurred.
* @return non-NULL A pointer to a nul-terminated C-string the must be dellocated via `parcMemory_Deallocate()`
*
* Example:
* @code
* {
* PARCBuffer *sigbits = parcBuffer_Flip(parcBuffer_FromString("signature bits"));
*
* PARCSignature *signature = parcSignature_Create(PARCSigningAlgorithm_RSA, PARCCryptoHashType_SHA256, sigbits);
* parcBuffer_Release(&sigbits);
*
* char *string = parcSignature_ToString(signature);
*
* parcMemory_Deallocate(&signature);
* }
* @endcode
*/
char *parcSignature_ToString(const PARCSignature *signature);
/**
* Determine if two PARCSignature instances are equal.
*
* The following equivalence relations on non-null `PARCSignature` instances are maintained:
*
* * It is reflexive: for any non-null reference value x, `parcSignature_Equals(x, x)`
* must return true.
*
* * It is symmetric: for any non-null reference values x and y,
* `parcSignature_Equals(x, y)` must return true if and only if
* `parcSignature_Equals(y, x)` returns true.
*
* * It is transitive: for any non-null reference values x, y, and z, if
* `parcSignature_Equals(x, y)` returns true and
* `parcSignature_Equals(y, z)` returns true,
* then `parcSignature_Equals(x, z)` must return true.
*
* * It is consistent: for any non-null reference values x and y, multiple
* invocations of `parcSignature_Equals(x, y)` consistently return true or
* consistently return false.
*
* * For any non-null reference value x, `parcSignature_Equals(x, NULL)` must
* return false.
*
* @param [in] a A pointer to a PARCSignature instance.
* @param [in] b A pointer to a PARCSignature instance.
*
* @return true if the two instances are equal
* @return false if the two instancea are no equal.
*
* Example:
* @code
* {
* PARCBuffer *sigbits = parcBuffer_Flip(parcBuffer_FromString("signature bits"));
*
* PARCSignature *signatureA = parcSignature_Create(PARCSigningAlgorithm_RSA, PARCCryptoHashType_SHA256, sigbits);
* PARCSignature *signatureB = parcSignature_Create(PARCSigningAlgorithm_RSA, PARCCryptoHashType_SHA256, sigbits);
* parcBuffer_Release(&sigbits);
*
* if (parcSignature_Equals(signatureA, signatureB)) {
* // true
* } else {
* // false
* }
* parcMemory_Deallocate(&signatureA);
* parcMemory_Deallocate(&signatureB);
* }
* @endcode
*/
bool parcSignature_Equals(const PARCSignature *a, const PARCSignature *b);
#endif // libparc_parc_Signature_h
|
