/** * Initialise with some extra attributes or overrides. * * @param attributeTable initial attribute table to use. */ public DefaultSignedAttributeTableGenerator( AttributeTable attributeTable) { if (attributeTable != null) { table = attributeTable.ToHashtable(); } else { table = new Hashtable(); } }
internal SignerInfo ToSignerInfo( DerObjectIdentifier contentType, CmsProcessable content, SecureRandom random, bool isCounterSignature) { AlgorithmIdentifier digAlgId = DigestAlgorithmID; string digestName = Helper.GetDigestAlgName(digestOID); IDigest dig = Helper.GetDigestInstance(digestName); string signatureName = digestName + "with" + Helper.GetEncryptionAlgName(encOID); //ISigner sig moved there where used // TODO Optimise the case where more than one signer with same digest if (content != null) { content.Write(new DigOutputStream(dig)); } byte[] hash = DigestUtilities.DoFinal(dig); outer._digests.Add(digestOID, hash.Clone()); Asn1Set signedAttr = null; byte[] tmp; if (sAttr != null) { IDictionary parameters = outer.GetBaseParameters(contentType, digAlgId, hash); // Asn1.Cms.AttributeTable signed = sAttr.GetAttributes(Collections.unmodifiableMap(parameters)); Asn1.Cms.AttributeTable signed = sAttr.GetAttributes(parameters); if (isCounterSignature) { Hashtable tmpSigned = signed.ToHashtable(); tmpSigned.Remove(CmsAttributes.ContentType); signed = new Asn1.Cms.AttributeTable(tmpSigned); } // TODO Validate proposed signed attributes signedAttr = outer.GetAttributeSet(signed); // sig must be composed from the DER encoding. tmp = signedAttr.GetEncoded(Asn1Encodable.Der); } else { // TODO Use raw signature of the hash value instead MemoryStream bOut = new MemoryStream(); if (content != null) { content.Write(bOut); } tmp = bOut.ToArray(); } byte[] sigBytes = null; if (krProv != null) { /* * sig.GenerateSignature() supports the following hashes: * MD2 * MD4 * MD5 * SHA1 * SHA224 * SHA256 * SHA384 * SHA512 * RIPEMD128 * RIPEMD160 * RIPEMD256 * * krProv.SignData(tmp, digestName) supports the following digestName: * MD5 * SHA1 * SHA256 * SHA384 * SHA512 */ //sigBytes = krProv.SignData(tmp, digestName); IDigest digProv = Helper.GetDigestInstance(digestName); digProv.BlockUpdate(tmp, 0, tmp.Length); byte[] hashProv = new byte[digProv.GetDigestSize()]; digProv.DoFinal(hashProv, 0); sigBytes = krProv.SignHash(hashProv, digestOID); } else { ISigner sig = Helper.GetSignatureInstance(signatureName);//was moved sig.Init(true, new ParametersWithRandom(key, random)); sig.BlockUpdate(tmp, 0, tmp.Length); sigBytes = sig.GenerateSignature(); } Asn1Set unsignedAttr = null; if (unsAttr != null) { IDictionary baseParameters = outer.GetBaseParameters(contentType, digAlgId, hash); baseParameters[CmsAttributeTableParameter.Signature] = sigBytes.Clone(); // Asn1.Cms.AttributeTable unsigned = unsAttr.GetAttributes(Collections.unmodifiableMap(baseParameters)); Asn1.Cms.AttributeTable unsigned = unsAttr.GetAttributes(baseParameters); // TODO Validate proposed unsigned attributes unsignedAttr = outer.GetAttributeSet(unsigned); } // TODO [RSAPSS] Need the ability to specify non-default parameters Asn1Encodable sigX509Parameters = SignerUtilities.GetDefaultX509Parameters(signatureName); AlgorithmIdentifier encAlgId = CmsSignedGenerator.GetEncAlgorithmIdentifier( new DerObjectIdentifier(encOID), sigX509Parameters); return(new SignerInfo(signerIdentifier, digAlgId, signedAttr, encAlgId, new DerOctetString(sigBytes), unsignedAttr)); }