static int
generate_spc_digest_info(cms_context *cms, SECItem *dip)
{
DigestInfo di;
memset(&di, '\0', sizeof (di));
if (generate_algorithm_id(cms, &di.digestAlgorithm,
digest_get_digest_oid(cms)) < 0)
return -1;
int i = cms->selected_digest;
memcpy(&di.digest, cms->digests[i].pe_digest, sizeof (di.digest));
if (content_is_empty(di.digest.data, di.digest.len)) {
cms->log(cms, LOG_ERR, "got empty digest");
return -1;
}
if (SEC_ASN1EncodeItem(cms->arena, dip, &di,
DigestInfoTemplate) == NULL) {
cms->log(cms, LOG_ERR, "could not encode DigestInfo: %s",
PORT_ErrorToString(PORT_GetError()));
return -1;
}
return 0;
}
static int
generate_algorithm_id_list(cms_context *cms, SECAlgorithmID ***algorithm_list_p)
{
SECAlgorithmID **algorithms = NULL;
int err = 0;
algorithms = PORT_ArenaZAlloc(cms->arena, sizeof (SECAlgorithmID *) *
2);
if (!algorithms)
return -1;
algorithms[0] = PORT_ArenaZAlloc(cms->arena, sizeof(SECAlgorithmID));
if (!algorithms[0]) {
err = PORT_GetError();
goto err_list;
}
if (generate_algorithm_id(cms, algorithms[0],
digest_get_digest_oid(cms)) < 0) {
err = PORT_GetError();
goto err_item;
}
*algorithm_list_p = algorithms;
return 0;
err_item:
PORT_ZFree(algorithms[0], sizeof (SECAlgorithmID));
err_list:
PORT_ZFree(algorithms, sizeof (SECAlgorithmID *) * 2);
PORT_SetError(err);
return -1;
}
static int
generate_spc_digest_info(PRArenaPool *arena, SECItem *dip, cms_context *ctx)
{
DigestInfo di;
memset(&di, '\0', sizeof (di));
if (generate_algorithm_id(ctx, &di.digestAlgorithm,
ctx->digest_oid_tag) < 0)
return -1;
memcpy(&di.digest, ctx->pe_digest, sizeof (di.digest));
if (SEC_ASN1EncodeItem(arena, dip, &di, DigestInfoTemplate) == NULL) {
fprintf(stderr, "Could not encode DigestInfo: %s\n",
PORT_ErrorToString(PORT_GetError()));
return -1;
}
return 0;
}
SECOidTag oid, SECItem *signature)
{
SignedCert cert = {
.data = {.data = data->data,
.len = data->len,
.type = data->type
},
.sig = {.data = calloc(1, signature->len + 1),
.len = signature->len + 1,
.type = signature->type
}
};
memcpy((void *)cert.sig.data + 1, signature->data, signature->len);
int rc = generate_algorithm_id(cms, &cert.keytype, oid);
if (rc < 0)
return -1;
void *ret;
ret = SEC_ASN1EncodeItem(NULL, sigder, &cert, SignedCertTemplate);
if (ret == NULL)
errx(1, "could not encode certificate: %s",
PORT_ErrorToString(PORT_GetError()));
sigder->data[sigder->len - 261] = DER_BIT_STRING;
return 0;
}
static int
