summary refs log tree commit diff
path: root/crypto/src/cms/DefaultSignedAttributeTableGenerator.cs
blob: dea4de0a36eb724f2643f6a8116102ffa8480a3a (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
using System;
using System.Collections.Generic;

using Org.BouncyCastle.Asn1;
using Org.BouncyCastle.Asn1.Cms;

namespace Org.BouncyCastle.Cms
{
	/**
	 * Default signed attributes generator.
	 */
	public class DefaultSignedAttributeTableGenerator
		: CmsAttributeTableGenerator
	{
		private readonly IDictionary<DerObjectIdentifier, object> m_table;

		/**
		 * Initialise to use all defaults
		 */
		public DefaultSignedAttributeTableGenerator()
		{
			m_table = new Dictionary<DerObjectIdentifier, object>();
		}

		/**
		 * Initialise with some extra attributes or overrides.
		 *
		 * @param attributeTable initial attribute table to use.
		 */
		public DefaultSignedAttributeTableGenerator(AttributeTable attributeTable)
		{
			if (attributeTable != null)
			{
				m_table = attributeTable.ToDictionary();
			}
			else
			{
				m_table = new Dictionary<DerObjectIdentifier, object>();
			}
		}

        /**
		 * Create a standard attribute table from the passed in parameters - this will
		 * normally include contentType, signingTime, and messageDigest. If the constructor
		 * using an AttributeTable was used, entries in it for contentType, signingTime, and
		 * messageDigest will override the generated ones.
		 *
		 * @param parameters source parameters for table generation.
		 *
		 * @return a filled in Dictionary of attributes.
		 */
		protected virtual IDictionary<DerObjectIdentifier, object> CreateStandardAttributeTable(
			IDictionary<CmsAttributeTableParameter, object> parameters)
		{
            var std = new Dictionary<DerObjectIdentifier, object>(m_table);
            DoCreateStandardAttributeTable(parameters, std);
			return std;
		}

        private void DoCreateStandardAttributeTable(IDictionary<CmsAttributeTableParameter, object> parameters,
			IDictionary<DerObjectIdentifier, object> std)
        {
            if (!std.ContainsKey(CmsAttributes.ContentType))
            {
                // contentType will be absent if we're trying to generate a counter signature.
                if (parameters.TryGetValue(CmsAttributeTableParameter.ContentType, out var contentType))
                {
                    Asn1.Cms.Attribute attr = new Asn1.Cms.Attribute(
						CmsAttributes.ContentType,
                        new DerSet((DerObjectIdentifier)contentType));
                    std[attr.AttrType] = attr;
                }
            }

            if (!std.ContainsKey(CmsAttributes.SigningTime))
            {
                Asn1.Cms.Attribute attr = new Asn1.Cms.Attribute(
					CmsAttributes.SigningTime,
                    new DerSet(new Time(DateTime.UtcNow)));
                std[attr.AttrType] = attr;
            }

            if (!std.ContainsKey(CmsAttributes.MessageDigest))
            {
                byte[] messageDigest = (byte[])parameters[CmsAttributeTableParameter.Digest];

                Asn1.Cms.Attribute attr = new Asn1.Cms.Attribute(
					CmsAttributes.MessageDigest,
                    new DerSet(new DerOctetString(messageDigest)));
                std[attr.AttrType] = attr;
            }

			// TODO CmsAlgorithmProtect support (see bc-fips-csharp)
            //if (!std.ContainsKey(CmsAttributes.CmsAlgorithmProtect))
            //{
            //    var digestAlgorithmIdentifier = (Asn1.X509.AlgorithmIdentifier)
            //        parameters[CmsAttributeTableParameter.DigestAlgorithmIdentifier];
            //    var signatureAlgorithmIdentifier = (Asn1.X509.AlgorithmIdentifier)
            //        parameters[CmsAttributeTableParameter.SignatureAlgorithmIdentifier];
            //    var cmsAlgorithmProtection = new CmsAlgorithmProtection(
            //        digestAlgorithmIdentifier, CmsAlgorithmProtection.Signature, signatureAlgorithmIdentifier);

            //    Asn1.Cms.Attribute attr = new Asn1.Cms.Attribute(
            //        CmsAttributes.CmsAlgorithmProtect,
            //        new DerSet(cmsAlgorithmProtection));
            //    std[attr.AttrType] = attr;
            //}
        }

        /**
		 * @param parameters source parameters
		 * @return the populated attribute table
		 */
        public virtual AttributeTable GetAttributes(IDictionary<CmsAttributeTableParameter, object> parameters)
		{
            var table = CreateStandardAttributeTable(parameters);
			return new AttributeTable(table);
		}
	}
}