Merge "Update GetPackageAppInfoN() API" into tizen_2.1

[platform/framework/native/appfw.git] / src / security / pkcs / FSecPkcs_Pkcs05PbEs2ParametersImpl.cpp

//
// Open Service Platform
// Copyright (c) 2013 Samsung Electronics Co., Ltd.
//
// Licensed under the Apache License, Version 2.0 (the License);
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//

/**
 * @file                FSecPkcs_Pkcs05PbEs2ParametersImpl.cpp
 * @brief               This is the implementation file for _Pkcs05PbEs2ParametersImpl class.
 *
 * This header file contains the implementation of _Pkcs05PbEs2ParametersImpl class.
 *
 */

#include <openssl/evp.h>
#include <openssl/crypto.h>
#include <openssl/x509.h>
#include <openssl/hmac.h>
#include <openssl/bn.h>
#include <openssl/objects.h>
#include <openssl/obj_mac.h>
#include <unique_ptr.h>
#include <FBaseByteBuffer.h>
#include <FBaseResult.h>
#include <FBaseSysLog.h>
#include <new>
#include <FSecPkcsRc2CbcParameters.h>
#include <FSecPkcsInitialVector.h>
#include <FSecPkcsIAlgorithmParameters.h>
#include <FSecPkcsTypes.h>
#include <FSecPkcsAlgorithmIdentifier.h>
#include <FSecPkcsPkcs05PbKdf2Parameters.h>
#include <FSecPkcsPkcs05PbEs2Parameters.h>
#include "FSecPkcs_PkcsUtility.h"
#include "FSecPkcs_Pkcs05PbEs2ParametersImpl.h"

using namespace Tizen::Base;

namespace Tizen { namespace Security { namespace Pkcs
{

_Pkcs05PbEs2ParametersImpl::_Pkcs05PbEs2ParametersImpl(void)
{

}



_Pkcs05PbEs2ParametersImpl::~_Pkcs05PbEs2ParametersImpl(void)
{
        //do nothing
}

result
_Pkcs05PbEs2ParametersImpl::Construct(const Tizen::Base::ByteBuffer& encodedData)
{
        result r = E_SUCCESS;
        ASN1_TYPE* pParam = null;
        PBE2PARAM* pPbes2 = null;
        int nidEncAlgo = 0;
        int bufferLen = 0;
        Tizen::Base::String encOid = null;
        std::unique_ptr< Pkcs05PbKdf2Parameters > pKdf2Parameters;
        std::unique_ptr< IAlgorithmParameters > pEncParam;
        const byte* pBuffer = null;

        SysAssertf(__keyDerivationFunction.GetAlgorithmObjectId().GetLength() <= 0, "Already constructed. Calling Construct() twice or more on a same instance is not allowed for this class.");
        SysAssertf(__encryptionScheme.GetAlgorithmObjectId().GetLength() <= 0, "Already constructed. Calling Construct() twice or more on a same instance is not allowed for this class.");

        pBuffer = encodedData.GetPointer();
        SysTryReturnResult(NID_SEC_CRYPTO, pBuffer != null, E_INVALID_ARG, "The specified input parameter is invalid.");

        bufferLen = encodedData.GetRemaining();
        SysTryReturnResult(NID_SEC_CRYPTO, bufferLen > 0, E_INVALID_ARG, "The specified input parameter is invalid.");

        pPbes2 = d2i_PBE2PARAM(null, reinterpret_cast< const unsigned char** >(&pBuffer), bufferLen);
        SysTryReturnResult(NID_SEC_CRYPTO, pPbes2 != null, E_INVALID_ARG, "The specified input parameter is invalid.");

        SysTryCatch(NID_SEC_CRYPTO, OBJ_obj2nid(pPbes2->keyfunc->algorithm) == NID_id_pbkdf2, r = E_INVALID_ARG, E_INVALID_ARG, "[E_INVALID_ARG] The specified input parameter is invalid.");

        pKdf2Parameters = std::unique_ptr< Pkcs05PbKdf2Parameters >(dynamic_cast< Pkcs05PbKdf2Parameters* >(_PkcsUtility::GernerateParametersFromOidN(OID_PBKDF2, pPbes2->keyfunc)));
        SysTryCatch(NID_SEC_CRYPTO, pKdf2Parameters, r = E_OUT_OF_MEMORY, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        r = __keyDerivationFunction.Construct(OID_PBKDF2, pKdf2Parameters.get());
        SysTryCatch(NID_SEC_CRYPTO, !IsFailed(r), r = E_SYSTEM, E_SYSTEM, "[E_SYSTEM] The method cannot proceed due to a severe system error.");

        pParam = pPbes2->encryption->parameter;
        SysTryCatch(NID_SEC_CRYPTO, pParam != null, r = E_INVALID_ARG, E_INVALID_ARG, "[E_INVALID_ARG] The specified input parameter is invalid.");

        nidEncAlgo = OBJ_obj2nid(pPbes2->encryption->algorithm);
        encOid = _PkcsUtility::ConvertToOid(nidEncAlgo);

        r = GetLastResult();
        SysTryCatch(NID_SEC_CRYPTO, r != E_UNSUPPORTED_ALGORITHM, r = E_UNSUPPORTED_ALGORITHM, E_UNSUPPORTED_ALGORITHM, "[E_UNSUPPORTED_ALGORITHM] The input algorithm is not supported.");

        pEncParam = std::unique_ptr< IAlgorithmParameters >(_PkcsUtility::GernerateParametersFromOidN(encOid, pPbes2->encryption));
        SysTryCatch(NID_SEC_CRYPTO, pEncParam, r = E_OUT_OF_MEMORY, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        r = __encryptionScheme.Construct(encOid, pEncParam.get());
        SysTryCatch(NID_SEC_CRYPTO, !IsFailed(r), , r, "[%s] Failed to construct algorithm identifier.", GetErrorMessage(r));

CATCH:

        PBE2PARAM_free(pPbes2);
        return r;

}

result
_Pkcs05PbEs2ParametersImpl::Construct(const AlgorithmIdentifier& keyDerivationFunction, const AlgorithmIdentifier& encryptionScheme)
{
        result r = E_SUCCESS;

        SysAssertf(__keyDerivationFunction.GetAlgorithmObjectId().GetLength() <= 0, "Already constructed. Calling Construct() twice or more on a same instance is not allowed for this class. ");
        SysAssertf(__encryptionScheme.GetAlgorithmObjectId().GetLength() <= 0, "Already constructed. Calling Construct() twice or more on a same instance is not allowed for this class.");

        std::unique_ptr< IAlgorithmParameters > pkdfParam(keyDerivationFunction.GetParametersN());
        r = GetLastResult();
        SysTryReturn(NID_SEC_CRYPTO, pkdfParam != null, r, r, "[%s] Failed to get the parameters.", GetErrorMessage(r));

        r = __keyDerivationFunction.Construct(keyDerivationFunction.GetAlgorithmObjectId(), pkdfParam.get());
        SysTryReturn(NID_SEC_CRYPTO, !IsFailed(r), r, r, "[%s] Failed to construct the algorithm identifier.", GetErrorMessage(r));

        std::unique_ptr< IAlgorithmParameters > pEncParam(encryptionScheme.GetParametersN());
        r = GetLastResult();
        SysTryReturn(NID_SEC_CRYPTO, pEncParam != null, r, r, "[%s] Failed to get the parameters.", GetErrorMessage(r));

        r = __encryptionScheme.Construct(encryptionScheme.GetAlgorithmObjectId(), pEncParam.get());
        SysTryReturn(NID_SEC_CRYPTO, !IsFailed(r), r, r, "[%s] Failed to construct the algorithm identifier.", GetErrorMessage(r));

        return r;

}

ByteBuffer*
_Pkcs05PbEs2ParametersImpl::GetEncodedDataN(void) const
{
        result r = E_SUCCESS;
        PBE2PARAM* pPbes2 = null;
        std::unique_ptr< ByteBuffer > pEncPbeParam;
        std::unique_ptr< Tizen::Base::ByteBuffer > pSaltBuf;
        Tizen::Base::String prfOid = null;
        byte* pTemp = {0, };
        int value = 0;
        int prfNid = 0;

        ClearLastResult();

        SysAssertf(__keyDerivationFunction.GetAlgorithmObjectId().GetLength() > 0, "Not yet constructed. Construct () should be called before use.");
        SysAssertf(__encryptionScheme.GetAlgorithmObjectId().GetLength() > 0, "Not yet constructed. Construct () should be called before use.");

        Tizen::Base::String objectId = __encryptionScheme.GetAlgorithmObjectId();

        std::unique_ptr< IAlgorithmParameters > pParams(__encryptionScheme.GetParametersN());
        SysTryReturn(NID_SEC_CRYPTO, pParams != null, null, E_SYSTEM, "[E_SYSTEM] The method cannot proceed due to a severe system error.");

        std::unique_ptr< Pkcs05PbKdf2Parameters > pKeyParams(dynamic_cast< Pkcs05PbKdf2Parameters* >(__keyDerivationFunction.GetParametersN()));
        SysTryReturn(NID_SEC_CRYPTO, pKeyParams != null, null, E_SYSTEM, "[E_SYSTEM] The method cannot proceed due to a severe system error.");

        pPbes2 = PBE2PARAM_new();
        SysTryCatch(NID_SEC_CRYPTO, pPbes2 != null, r = E_OUT_OF_MEMORY, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        // set up the keyfunc

        pSaltBuf = std::unique_ptr< Tizen::Base::ByteBuffer >(new (std::nothrow) ByteBuffer());
        SysTryCatch(NID_SEC_CRYPTO, pSaltBuf != null, r = E_OUT_OF_MEMORY, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        r = pSaltBuf->Construct(pKeyParams->GetSaltValue());
        SysTryCatch(NID_SEC_CRYPTO, !IsFailed(r), r = E_OUT_OF_MEMORY, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        prfOid = (pKeyParams->GetPrf()).GetAlgorithmObjectId();
        prfNid = _PkcsUtility::ConvertToNid(prfOid);

        pPbes2->keyfunc = _PkcsUtility::GenerateKdfParametersN(pKeyParams->GetIterationCount(), const_cast< unsigned char* >(pSaltBuf->GetPointer()), pSaltBuf->GetRemaining(), prfNid, pKeyParams->GetDerivedKeyLength());
        SysTryCatch(NID_SEC_CRYPTO, pPbes2->keyfunc != null, r = E_SYSTEM, E_SYSTEM, "[E_SYSTEM] The method cannot proceed due to a severe system error.");

        // set up the pPbes2->encryption
        pPbes2->encryption = X509_ALGOR_new();
        SysTryCatch(NID_SEC_CRYPTO, pPbes2->encryption != null, r = E_OUT_OF_MEMORY, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        pPbes2->encryption = _PkcsUtility::GenerateAlgorithmIdentifierStructureN(objectId, pParams.get());
        SysTryCatch(NID_SEC_CRYPTO, pPbes2->encryption != null, r = E_SYSTEM, E_SYSTEM, "[E_SYSTEM] The method cannot proceed due to a severe system error.");

        // encode the PBE2PARAM structure

        value = i2d_PBE2PARAM(pPbes2, &pTemp);
        SysTryCatch(NID_SEC_CRYPTO, value > 0, r = E_SYSTEM, E_SYSTEM, "[E_SYSTEM] The method cannot proceed due to a severe system error.");

        pEncPbeParam = std::unique_ptr< ByteBuffer >(new (std::nothrow) ByteBuffer());
        SysTryCatch(NID_SEC_CRYPTO, pEncPbeParam, r = E_OUT_OF_MEMORY, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        r = pEncPbeParam->Construct(value);
        SysTryCatch(NID_SEC_CRYPTO, !IsFailed(r), r = E_OUT_OF_MEMORY, E_OUT_OF_MEMORY, "[E_OUT_OF_MEMORY] The memory is insufficient.");

        r = pEncPbeParam->SetArray(pTemp, 0, value);
        SysTryCatch(NID_SEC_CRYPTO, !IsFailed(r), r = E_SYSTEM, E_SYSTEM, "[E_SYSTEM] The method cannot proceed due to a severe system error.");

        pEncPbeParam->Flip();

CATCH:

        if (IsFailed(r))
        {
                PBE2PARAM_free(pPbes2);
                pEncPbeParam.reset(null);
        }

        OPENSSL_free(pTemp);
        SetLastResult(r);
        return pEncPbeParam.release();

}

const AlgorithmIdentifier&
_Pkcs05PbEs2ParametersImpl::GetKeyDerivationAlgorithm(void) const
{
        ClearLastResult();

        SysAssertf(__keyDerivationFunction.GetAlgorithmObjectId().GetLength() > 0, "Not yet constructed. Construct () should be called before use.");
        SysAssertf(__encryptionScheme.GetAlgorithmObjectId().GetLength() > 0, "Not yet constructed. Construct () should be called before use.");

        return __keyDerivationFunction;
}

const AlgorithmIdentifier&
_Pkcs05PbEs2ParametersImpl::GetEncryptionScheme(void) const
{
        ClearLastResult();
        return __encryptionScheme;
}

PkcsAlgorithmParameterType
_Pkcs05PbEs2ParametersImpl::GetType(void) const
{
        ClearLastResult();
        return PKCS_ALGO_PARAM_TYPE_PKCS05_PBES02;
}

bool
_Pkcs05PbEs2ParametersImpl::Equals(const Object& obj) const
{
        bool value = false;

        const _Pkcs05PbEs2ParametersImpl* pOther = dynamic_cast< const _Pkcs05PbEs2ParametersImpl* >(&obj);

        SysTryReturn(NID_SEC_CRYPTO, pOther != null, false, E_INVALID_ARG, "[E_INVALID_ARG] The specified input parameter is invalid.");

        if (pOther == this)
        {
                return true;
        }

        SysTryReturn(NID_SEC_CRYPTO, pOther->GetKeyDerivationAlgorithm().GetAlgorithmObjectId().GetLength() > 0, false, E_INVALID_ARG, "[E_INVALID_ARG] The specified input parameter is invalid.");
        SysTryReturn(NID_SEC_CRYPTO, pOther->GetEncryptionScheme().GetAlgorithmObjectId().GetLength() > 0, false, E_INVALID_ARG, "[E_INVALID_ARG] The specified input parameter is invalid.");

        value = (__keyDerivationFunction.Equals(pOther->GetKeyDerivationAlgorithm())) && (__encryptionScheme.Equals(pOther->GetEncryptionScheme()));

        return value;

}

int
_Pkcs05PbEs2ParametersImpl::GetHashCode(void) const
{
        SysAssertf(__keyDerivationFunction.GetAlgorithmObjectId().GetLength() > 0, "Not yet constructed. Construct () should be called before use.");
        SysAssertf(__encryptionScheme.GetAlgorithmObjectId().GetLength() > 0, "Not yet constructed. Construct () should be called before use.");

        return __keyDerivationFunction.GetHashCode() + __encryptionScheme.GetHashCode();
}

_Pkcs05PbEs2ParametersImpl*
_Pkcs05PbEs2ParametersImpl::GetInstance(Pkcs05PbEs2Parameters& pkcs05PbEs2Parameters)
{
        return pkcs05PbEs2Parameters.__pPkcs05PbEs2ParametersImpl;
}

const _Pkcs05PbEs2ParametersImpl*
_Pkcs05PbEs2ParametersImpl::GetInstance(const Pkcs05PbEs2Parameters& pkcs05PbEs2Parameters)
{
        return pkcs05PbEs2Parameters.__pPkcs05PbEs2ParametersImpl;
}

} } } // end of namespace Pkcs