ACSign_Encryptoで、署名内のハッシュをBERエンコードするかどうかを選択できるよう変更。

git-svn-id: file:///Users/lillianskinner/Downloads/platinum/twl/TwlIPL/trunk@1287 b08762b0-b915-fc4b-9d8c-17b2551a87ff
2025-10-31 06:01:12 -04:00 · 2008-05-07 09:19:46 +00:00 · 2008-05-07 09:19:46 +00:00 · 06abc12bae
commit 06abc12bae
parent b9c925a653
2 changed files with 25 additions and 6 deletions
--- a/build/libraries_sysmenu/acsign/ARM9/src/acsign_encrypt.c
+++ b/build/libraries_sysmenu/acsign/ARM9/src/acsign_encrypt.c
@ -84,18 +84,21 @@ static int add_padding(unsigned char *out,
 //
 // RSA
 //
+#define SIGN_DATA_ENCODE_BER_LEN	0x0f
 #define ACS_ENCRYPTED_SIGN_LEN	128
-BOOL ACSign_Encrypto(void *sign, const void *key, const void *data, int length)
+BOOL ACSign_Encrypto(void *sign, const void *key, const void *data, int length, BOOL isEncodeBER )
 {
    BN_CTX          *ctx;
    BIGNUM          src, dst, exp, mod;
    u8              buf[ACS_ENCRYPTED_SIGN_LEN];
-    int             len = length;
+	u8				dataBER[ACS_ENCRYPTED_SIGN_LEN];
    BOOL            result = TRUE;
 	KeyParam		key_mod;
 	KeyParam		key_prvExp;
+	const void		*pData;
+    int             len;
 	
-    if (NULL == sign || NULL == key || NULL == data || 0 > length) {
+    if (NULL == sign || NULL == key || NULL == data || 0 > length || ( ACS_ENCRYPTED_SIGN_LEN - SIGN_DATA_ENCODE_BER_LEN ) < length ) {
        return FALSE;
    }

@ -103,9 +106,24 @@ BOOL ACSign_Encrypto(void *sign, const void *key, const void *data, int length)
 		OS_TPrintf( "RSA PrivKey Param get failed.\n" );
 		return FALSE;
 	}
-
 	
-    if ( add_padding( buf, ACS_ENCRYPTED_SIGN_LEN, data, length ) ) {
+	if( isEncodeBER ) {
+		const u8 *pSignDataEncodeBER = (const u8 *)"\x30\x21\x30\x09\x06\x05\x2b\x0e\x03\x02\x1a\x05\x00\x04\x14";
+		u8 *p = dataBER;
+		int i;
+		for( i = 0; i < SIGN_DATA_ENCODE_BER_LEN; i++ ) {
+			*p++ = pSignDataEncodeBER[ i ];
+		}
+		for( i = 0; i < length; i++ ) {
+			*p++ = ((const u8 *)data)[ i ];
+		}
+		pData = dataBER;
+		length += SIGN_DATA_ENCODE_BER_LEN;
+	}else {
+		pData = data;
+	}
+	
+    if ( add_padding( buf, ACS_ENCRYPTED_SIGN_LEN, pData, length ) ) {
        OS_TPrintf("encode_padding was failed.\n");
        result = FALSE;
        goto end;
--- a/include/sysmenu/acsign/ARM9/acsign.h
+++ b/include/sysmenu/acsign/ARM9/acsign.h
@ -40,7 +40,8 @@ BOOL	ACSign_Encrypto(
 					void *sign,			// 署名出力バッファへのポインタ
 					const void *key,	// DERフォーマット秘密鍵へのポインタ
 					const void *data,	// 署名対象データへのポインタ
-					int length			// 署名対象データ長
+					int length,			// 署名対象データ長
+					BOOL isEncodeBER		// 署名データをDERエンコードするか？
 					);

 //