|
|
@ -33,6 +33,123 @@ namespace data |
|
|
|
return DEFAULT_IDENTITY_SIZE; |
|
|
|
return DEFAULT_IDENTITY_SIZE; |
|
|
|
} |
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
IdentityEx::IdentityEx (): |
|
|
|
|
|
|
|
m_Verifier (nullptr), m_ExtendedLen (0), m_ExtendedBuffer (nullptr) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
IdentityEx::IdentityEx (const uint8_t * buf, size_t len): |
|
|
|
|
|
|
|
m_Verifier (nullptr), m_ExtendedLen (0), m_ExtendedBuffer (nullptr) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
FromBuffer (buf, len); |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
IdentityEx::IdentityEx (const IdentityEx& other): |
|
|
|
|
|
|
|
m_Verifier (nullptr), m_ExtendedBuffer (nullptr) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
*this = other; |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
IdentityEx::~IdentityEx () |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
delete m_Verifier; |
|
|
|
|
|
|
|
delete[] m_ExtendedBuffer; |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
IdentityEx& IdentityEx::operator=(const IdentityEx& other) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
memcpy (&m_StandardIdentity, &other.m_StandardIdentity, DEFAULT_IDENTITY_SIZE); |
|
|
|
|
|
|
|
m_IdentHash = other.m_IdentHash; |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
delete m_Verifier; |
|
|
|
|
|
|
|
m_Verifier = nullptr; |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
delete[] m_ExtendedBuffer; |
|
|
|
|
|
|
|
m_ExtendedLen = other.m_ExtendedLen; |
|
|
|
|
|
|
|
if (m_ExtendedLen > 0) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
m_ExtendedBuffer = new uint8_t[m_ExtendedLen]; |
|
|
|
|
|
|
|
memcpy (m_ExtendedBuffer, other.m_ExtendedBuffer, m_ExtendedLen); |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
else |
|
|
|
|
|
|
|
m_ExtendedBuffer = nullptr; |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
return *this; |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
size_t IdentityEx::FromBuffer (const uint8_t * buf, size_t len) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
delete m_Verifier; |
|
|
|
|
|
|
|
m_Verifier = nullptr; |
|
|
|
|
|
|
|
delete[] m_ExtendedBuffer; |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
memcpy (&m_StandardIdentity, buf, DEFAULT_IDENTITY_SIZE); |
|
|
|
|
|
|
|
if (m_StandardIdentity.certificate.length) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
m_ExtendedLen = be16toh (m_StandardIdentity.certificate.length); |
|
|
|
|
|
|
|
m_ExtendedBuffer = new uint8_t[m_ExtendedLen]; |
|
|
|
|
|
|
|
memcpy (m_ExtendedBuffer, buf + DEFAULT_IDENTITY_SIZE, m_ExtendedLen); |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
else |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
m_ExtendedLen = 0; |
|
|
|
|
|
|
|
m_ExtendedBuffer = nullptr; |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
CryptoPP::SHA256().CalculateDigest(m_IdentHash, buf, GetFullLen ()); |
|
|
|
|
|
|
|
return GetFullLen (); |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
size_t IdentityEx::GetSigningPublicKeyLen () |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
if (!m_Verifier) |
|
|
|
|
|
|
|
CreateVerifier (); |
|
|
|
|
|
|
|
if (m_Verifier) |
|
|
|
|
|
|
|
return m_Verifier->GetPublicKeyLen (); |
|
|
|
|
|
|
|
return 128; |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
bool IdentityEx::Verify (const uint8_t * buf, size_t len, const uint8_t * signature) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
if (!m_Verifier) |
|
|
|
|
|
|
|
CreateVerifier (); |
|
|
|
|
|
|
|
if (m_Verifier) |
|
|
|
|
|
|
|
return m_Verifier->Verify (buf, len, signature); |
|
|
|
|
|
|
|
return false; |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
void IdentityEx::CreateVerifier () |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
switch (m_StandardIdentity.certificate.type) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
case CERTIFICATE_TYPE_NULL: |
|
|
|
|
|
|
|
m_Verifier = new i2p::crypto::DSAVerifier (m_StandardIdentity.signingKey); |
|
|
|
|
|
|
|
break; |
|
|
|
|
|
|
|
case CERTIFICATE_TYPE_KEY: |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
if (m_ExtendedBuffer) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
uint16_t keyType = be16toh (*(uint16_t *)m_ExtendedBuffer); // sigining key
|
|
|
|
|
|
|
|
switch (keyType) |
|
|
|
|
|
|
|
{ |
|
|
|
|
|
|
|
case PUBLIC_KEY_TYPE_DSA_SHA1: |
|
|
|
|
|
|
|
m_Verifier = new i2p::crypto::DSAVerifier (m_StandardIdentity.signingKey); |
|
|
|
|
|
|
|
break; |
|
|
|
|
|
|
|
case PUBLIC_KEY_TYPE_ECDSA_SHA256_P256: |
|
|
|
|
|
|
|
m_Verifier = new i2p::crypto::ECDSAP256Verifier (m_StandardIdentity.signingKey); |
|
|
|
|
|
|
|
break; |
|
|
|
|
|
|
|
default: |
|
|
|
|
|
|
|
LogPrint ("Signing key type ", keyType, " is not supported"); |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
else |
|
|
|
|
|
|
|
LogPrint ("Missing certificate payload"); |
|
|
|
|
|
|
|
break; |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
default: |
|
|
|
|
|
|
|
LogPrint ("Certificate type ", m_StandardIdentity.certificate.type, " is not supported"); |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
} |
|
|
|
|
|
|
|
|
|
|
|
IdentHash Identity::Hash() const |
|
|
|
IdentHash Identity::Hash() const |
|
|
|
{ |
|
|
|
{ |
|
|
|
IdentHash hash; |
|
|
|
IdentHash hash; |
|
|
|