---

DSIGSignature.hpp

Go to the documentation of this file.

/*
 * The Apache Software License, Version 1.1
 *
 * Copyright (c) 2002 Berin Lautenbach.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in
 *    the documentation and/or other materials provided with the
 *    distribution.
 *
 * 3. The end-user documentation included with the redistribution,
 *    if any, must include the following acknowledgment:
 *       "This product includes software developed by
 *                   Berin Lautenbach"
 *    Alternately, this acknowledgment may appear in the software itself,
 *    if and wherever such third-party acknowledgments normally appear.
 *
 * 4. The names "XSEC", "xml-security-c" and Berin Lautenbach must
 *    not be used to endorse or promote products derived from this
 *    software without prior written permission. For written
 *    permission, please contact berin@users.sourceforge.net.
 *
 * 5. Products derived from this software may not be called "xml-security-c",
 *    nor may "xml-security-c" appear in their name, without prior written
 *    permission of Berin Lautenbach.
 *
 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED
 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
 * DISCLAIMED.  IN NO EVENT SHALL BERIN LAUTENBACH OR OTHER
 * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
 * USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
 * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 * ====================================================================
 */

/*
 * XSEC
 *
 * DSIGSignature := Class for checking and setting up signature nodes in a DSIG signature
 *                   
 *
 */

#ifndef DSIGSIGNATURE_INCLUDE
#define DSIGSIGNATURE_INCLUDE

// XSEC Includes
#include <xsec/utils/XSECSafeBufferFormatter.hpp>
#include <xsec/dsig/DSIGTransform.hpp>
#include <xsec/dsig/DSIGKeyInfoList.hpp>
#include <xsec/dsig/DSIGConstants.hpp>
#include <xsec/dsig/DSIGSignedInfo.hpp>

// Xerces Includes

#include <xercesc/dom/DOM.hpp>

class XSECBinTXFMInputStream;
class XSECURIResolver;
class XSECKeyInfoResolver;
class DSIGKeyInfoValue;
class DSIGKeyInfoX509;
class DSIGKeyInfoName;

/*\@{*/

class DSIG_EXPORT DSIGSignature {

protected:

    
    DSIGSignature(DOMDocument *doc, DOMNode *sigNode);
    ~DSIGSignature();
    
public:


    void load(void);

    void setSigningKey(XSECCryptoKey *k);



    bool verify(void);

    bool verifySignatureOnly(void);

    void sign(void);

    
    void setDSIGNSPrefix(char * prefix);

    DOMElement *createBlankSignature(DOMDocument *doc,
        canonicalizationMethod cm = CANON_C14N_NOC,
        signatureMethod sm = SIGNATURE_DSA,
        hashMethod hm = HASH_SHA1);

    DSIGReference * createReference(char * URI,
        hashMethod hm = HASH_SHA1, char * type = NULL);



    unsigned int calculateSignedInfoHash(unsigned char * hashBuf, 
                                        unsigned int hashBufLen);

    DSIGReferenceList * getReferenceList(void);

    XSECBinTXFMInputStream * makeBinInputStream(void) const;


    safeBuffer &getErrMsgsSB(void);

    const safeBuffer & getDSIGNSPrefix() {return m_prefixNS;}

    DOMDocument * getParentDocument() {return mp_doc;}

    XSECSafeBufferFormatter * getSBFormatter(void) {return mp_formatter;}



    void setURIResolver(XSECURIResolver * resolver);

    XSECURIResolver * getURIResolver(void);

    void setKeyInfoResolver(XSECKeyInfoResolver * resolver);

    XSECKeyInfoResolver * getKeyInfoResolver(void);



    DSIGKeyInfoList * getKeyInfoList() {return &m_keyInfoList;}

    void clearKeyInfo(void);

    DSIGKeyInfoValue * appendDSAKeyValue(const char * P, 
                           const char * Q, 
                           const char * G, 
                           const char * Y);

    DSIGKeyInfoX509 * appendX509Data(void);

    DSIGKeyInfoName * appendKeyName(const char * name);


    friend class XSECProvider;

private:

    // Internal functions
    void createKeyInfoElement(void);

    XSECSafeBufferFormatter     * mp_formatter;
    bool                        m_loaded;               // Have we already loaded?
    DOMDocument                 * mp_doc;
    DOMNode                     * mp_sigNode;
    DSIGSignedInfo              * mp_signedInfo;
    DOMNode                     * mp_signatureValueNode;
    safeBuffer                  m_signatureValueSB;
    DSIGKeyInfoList             m_keyInfoList;
    DOMNode                     * mp_KeyInfoNode;
    safeBuffer                  m_errStr;

    // For creating functions
    safeBuffer                  m_prefixNS;

    // The signing/verifying key
    XSECCryptoKey               * mp_signingKey;

    // Resolvers
    XSECURIResolver             * mp_URIResolver;
    XSECKeyInfoResolver         * mp_KeyInfoResolver;

    // Not implemented constructors

    DSIGSignature();

    /*\@}*/
};

#endif /* DSIGSIGNATURE_INCLUDE */

---