You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
702 lines
36 KiB
702 lines
36 KiB
#if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR) |
|
#pragma warning disable |
|
using System; |
|
using System.Collections; |
|
using System.IO; |
|
|
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.Bsi; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.CryptoPro; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.Eac; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.EdEC; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.GM; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.Nist; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.Oiw; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.Pkcs; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.TeleTrust; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.X509; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.X9; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Security; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto.Digests; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto.Engines; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto.Signers; |
|
using BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities; |
|
|
|
namespace BestHTTP.SecureProtocol.Org.BouncyCastle.Security |
|
{ |
|
/// <summary> |
|
/// Signer Utility class contains methods that can not be specifically grouped into other classes. |
|
/// </summary> |
|
public sealed class SignerUtilities |
|
{ |
|
private SignerUtilities() |
|
{ |
|
} |
|
|
|
internal static readonly IDictionary algorithms = BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.CreateHashtable(); |
|
internal static readonly IDictionary oids = BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.CreateHashtable(); |
|
|
|
static SignerUtilities() |
|
{ |
|
algorithms["MD2WITHRSA"] = "MD2withRSA"; |
|
algorithms["MD2WITHRSAENCRYPTION"] = "MD2withRSA"; |
|
algorithms[PkcsObjectIdentifiers.MD2WithRsaEncryption.Id] = "MD2withRSA"; |
|
|
|
algorithms["MD4WITHRSA"] = "MD4withRSA"; |
|
algorithms["MD4WITHRSAENCRYPTION"] = "MD4withRSA"; |
|
algorithms[PkcsObjectIdentifiers.MD4WithRsaEncryption.Id] = "MD4withRSA"; |
|
algorithms[OiwObjectIdentifiers.MD4WithRsa.Id] = "MD4withRSA"; |
|
algorithms[OiwObjectIdentifiers.MD4WithRsaEncryption.Id] = "MD4withRSA"; |
|
|
|
algorithms["MD5WITHRSA"] = "MD5withRSA"; |
|
algorithms["MD5WITHRSAENCRYPTION"] = "MD5withRSA"; |
|
algorithms[PkcsObjectIdentifiers.MD5WithRsaEncryption.Id] = "MD5withRSA"; |
|
algorithms[OiwObjectIdentifiers.MD5WithRsa.Id] = "MD5withRSA"; |
|
|
|
algorithms["SHA1WITHRSA"] = "SHA-1withRSA"; |
|
algorithms["SHA-1WITHRSA"] = "SHA-1withRSA"; |
|
algorithms["SHA1WITHRSAENCRYPTION"] = "SHA-1withRSA"; |
|
algorithms["SHA-1WITHRSAENCRYPTION"] = "SHA-1withRSA"; |
|
algorithms[PkcsObjectIdentifiers.Sha1WithRsaEncryption.Id] = "SHA-1withRSA"; |
|
algorithms[OiwObjectIdentifiers.Sha1WithRsa.Id] = "SHA-1withRSA"; |
|
|
|
algorithms["SHA224WITHRSA"] = "SHA-224withRSA"; |
|
algorithms["SHA-224WITHRSA"] = "SHA-224withRSA"; |
|
algorithms["SHA224WITHRSAENCRYPTION"] = "SHA-224withRSA"; |
|
algorithms["SHA-224WITHRSAENCRYPTION"] = "SHA-224withRSA"; |
|
algorithms[PkcsObjectIdentifiers.Sha224WithRsaEncryption.Id] = "SHA-224withRSA"; |
|
|
|
algorithms["SHA256WITHRSA"] = "SHA-256withRSA"; |
|
algorithms["SHA-256WITHRSA"] = "SHA-256withRSA"; |
|
algorithms["SHA256WITHRSAENCRYPTION"] = "SHA-256withRSA"; |
|
algorithms["SHA-256WITHRSAENCRYPTION"] = "SHA-256withRSA"; |
|
algorithms[PkcsObjectIdentifiers.Sha256WithRsaEncryption.Id] = "SHA-256withRSA"; |
|
|
|
algorithms["SHA384WITHRSA"] = "SHA-384withRSA"; |
|
algorithms["SHA-384WITHRSA"] = "SHA-384withRSA"; |
|
algorithms["SHA384WITHRSAENCRYPTION"] = "SHA-384withRSA"; |
|
algorithms["SHA-384WITHRSAENCRYPTION"] = "SHA-384withRSA"; |
|
algorithms[PkcsObjectIdentifiers.Sha384WithRsaEncryption.Id] = "SHA-384withRSA"; |
|
|
|
algorithms["SHA512WITHRSA"] = "SHA-512withRSA"; |
|
algorithms["SHA-512WITHRSA"] = "SHA-512withRSA"; |
|
algorithms["SHA512WITHRSAENCRYPTION"] = "SHA-512withRSA"; |
|
algorithms["SHA-512WITHRSAENCRYPTION"] = "SHA-512withRSA"; |
|
algorithms[PkcsObjectIdentifiers.Sha512WithRsaEncryption.Id] = "SHA-512withRSA"; |
|
|
|
algorithms["SHA512(224)WITHRSA"] = "SHA-512(224)withRSA"; |
|
algorithms["SHA-512(224)WITHRSA"] = "SHA-512(224)withRSA"; |
|
algorithms["SHA512(224)WITHRSAENCRYPTION"] = "SHA-512(224)withRSA"; |
|
algorithms["SHA-512(224)WITHRSAENCRYPTION"] = "SHA-512(224)withRSA"; |
|
algorithms[PkcsObjectIdentifiers.Sha512_224WithRSAEncryption.Id] = "SHA-512(224)withRSA"; |
|
|
|
algorithms["SHA512(256)WITHRSA"] = "SHA-512(256)withRSA"; |
|
algorithms["SHA-512(256)WITHRSA"] = "SHA-512(256)withRSA"; |
|
algorithms["SHA512(256)WITHRSAENCRYPTION"] = "SHA-512(256)withRSA"; |
|
algorithms["SHA-512(256)WITHRSAENCRYPTION"] = "SHA-512(256)withRSA"; |
|
algorithms[PkcsObjectIdentifiers.Sha512_256WithRSAEncryption.Id] = "SHA-512(256)withRSA"; |
|
|
|
algorithms["SHA3-224WITHRSA"] = "SHA3-224withRSA"; |
|
algorithms["SHA3-224WITHRSAENCRYPTION"] = "SHA3-224withRSA"; |
|
algorithms[NistObjectIdentifiers.IdRsassaPkcs1V15WithSha3_224.Id] = "SHA3-224withRSA"; |
|
algorithms["SHA3-256WITHRSA"] = "SHA3-256withRSA"; |
|
algorithms["SHA3-256WITHRSAENCRYPTION"] = "SHA3-256withRSA"; |
|
algorithms[NistObjectIdentifiers.IdRsassaPkcs1V15WithSha3_256.Id] = "SHA3-256withRSA"; |
|
algorithms["SHA3-384WITHRSA"] = "SHA3-384withRSA"; |
|
algorithms["SHA3-384WITHRSAENCRYPTION"] = "SHA3-384withRSA"; |
|
algorithms[NistObjectIdentifiers.IdRsassaPkcs1V15WithSha3_384.Id] = "SHA3-384withRSA"; |
|
algorithms["SHA3-512WITHRSA"] = "SHA3-512withRSA"; |
|
algorithms["SHA3-512WITHRSAENCRYPTION"] = "SHA3-512withRSA"; |
|
algorithms[NistObjectIdentifiers.IdRsassaPkcs1V15WithSha3_512.Id] = "SHA3-512withRSA"; |
|
|
|
algorithms["PSSWITHRSA"] = "PSSwithRSA"; |
|
algorithms["RSASSA-PSS"] = "PSSwithRSA"; |
|
algorithms[PkcsObjectIdentifiers.IdRsassaPss.Id] = "PSSwithRSA"; |
|
algorithms["RSAPSS"] = "PSSwithRSA"; |
|
|
|
algorithms["SHA1WITHRSAANDMGF1"] = "SHA-1withRSAandMGF1"; |
|
algorithms["SHA-1WITHRSAANDMGF1"] = "SHA-1withRSAandMGF1"; |
|
algorithms["SHA1WITHRSA/PSS"] = "SHA-1withRSAandMGF1"; |
|
algorithms["SHA-1WITHRSA/PSS"] = "SHA-1withRSAandMGF1"; |
|
algorithms["SHA1WITHRSASSA-PSS"] = "SHA-1withRSAandMGF1"; |
|
algorithms["SHA-1WITHRSASSA-PSS"] = "SHA-1withRSAandMGF1"; |
|
|
|
algorithms["SHA224WITHRSAANDMGF1"] = "SHA-224withRSAandMGF1"; |
|
algorithms["SHA-224WITHRSAANDMGF1"] = "SHA-224withRSAandMGF1"; |
|
algorithms["SHA224WITHRSA/PSS"] = "SHA-224withRSAandMGF1"; |
|
algorithms["SHA-224WITHRSA/PSS"] = "SHA-224withRSAandMGF1"; |
|
algorithms["SHA224WITHRSASSA-PSS"] = "SHA-224withRSAandMGF1"; |
|
algorithms["SHA-224WITHRSASSA-PSS"] = "SHA-224withRSAandMGF1"; |
|
|
|
algorithms["SHA256WITHRSAANDMGF1"] = "SHA-256withRSAandMGF1"; |
|
algorithms["SHA-256WITHRSAANDMGF1"] = "SHA-256withRSAandMGF1"; |
|
algorithms["SHA256WITHRSA/PSS"] = "SHA-256withRSAandMGF1"; |
|
algorithms["SHA-256WITHRSA/PSS"] = "SHA-256withRSAandMGF1"; |
|
algorithms["SHA256WITHRSASSA-PSS"] = "SHA-256withRSAandMGF1"; |
|
algorithms["SHA-256WITHRSASSA-PSS"] = "SHA-256withRSAandMGF1"; |
|
|
|
algorithms["SHA384WITHRSAANDMGF1"] = "SHA-384withRSAandMGF1"; |
|
algorithms["SHA-384WITHRSAANDMGF1"] = "SHA-384withRSAandMGF1"; |
|
algorithms["SHA384WITHRSA/PSS"] = "SHA-384withRSAandMGF1"; |
|
algorithms["SHA-384WITHRSA/PSS"] = "SHA-384withRSAandMGF1"; |
|
algorithms["SHA384WITHRSASSA-PSS"] = "SHA-384withRSAandMGF1"; |
|
algorithms["SHA-384WITHRSASSA-PSS"] = "SHA-384withRSAandMGF1"; |
|
|
|
algorithms["SHA512WITHRSAANDMGF1"] = "SHA-512withRSAandMGF1"; |
|
algorithms["SHA-512WITHRSAANDMGF1"] = "SHA-512withRSAandMGF1"; |
|
algorithms["SHA512WITHRSA/PSS"] = "SHA-512withRSAandMGF1"; |
|
algorithms["SHA-512WITHRSA/PSS"] = "SHA-512withRSAandMGF1"; |
|
algorithms["SHA512WITHRSASSA-PSS"] = "SHA-512withRSAandMGF1"; |
|
algorithms["SHA-512WITHRSASSA-PSS"] = "SHA-512withRSAandMGF1"; |
|
|
|
algorithms["RIPEMD128WITHRSA"] = "RIPEMD128withRSA"; |
|
algorithms["RIPEMD128WITHRSAENCRYPTION"] = "RIPEMD128withRSA"; |
|
algorithms[TeleTrusTObjectIdentifiers.RsaSignatureWithRipeMD128.Id] = "RIPEMD128withRSA"; |
|
|
|
algorithms["RIPEMD160WITHRSA"] = "RIPEMD160withRSA"; |
|
algorithms["RIPEMD160WITHRSAENCRYPTION"] = "RIPEMD160withRSA"; |
|
algorithms[TeleTrusTObjectIdentifiers.RsaSignatureWithRipeMD160.Id] = "RIPEMD160withRSA"; |
|
|
|
algorithms["RIPEMD256WITHRSA"] = "RIPEMD256withRSA"; |
|
algorithms["RIPEMD256WITHRSAENCRYPTION"] = "RIPEMD256withRSA"; |
|
algorithms[TeleTrusTObjectIdentifiers.RsaSignatureWithRipeMD256.Id] = "RIPEMD256withRSA"; |
|
|
|
algorithms["NONEWITHRSA"] = "RSA"; |
|
algorithms["RSAWITHNONE"] = "RSA"; |
|
algorithms["RAWRSA"] = "RSA"; |
|
|
|
algorithms["RAWRSAPSS"] = "RAWRSASSA-PSS"; |
|
algorithms["NONEWITHRSAPSS"] = "RAWRSASSA-PSS"; |
|
algorithms["NONEWITHRSASSA-PSS"] = "RAWRSASSA-PSS"; |
|
|
|
algorithms["NONEWITHDSA"] = "NONEwithDSA"; |
|
algorithms["DSAWITHNONE"] = "NONEwithDSA"; |
|
algorithms["RAWDSA"] = "NONEwithDSA"; |
|
|
|
algorithms["DSA"] = "SHA-1withDSA"; |
|
algorithms["DSAWITHSHA1"] = "SHA-1withDSA"; |
|
algorithms["DSAWITHSHA-1"] = "SHA-1withDSA"; |
|
algorithms["SHA/DSA"] = "SHA-1withDSA"; |
|
algorithms["SHA1/DSA"] = "SHA-1withDSA"; |
|
algorithms["SHA-1/DSA"] = "SHA-1withDSA"; |
|
algorithms["SHA1WITHDSA"] = "SHA-1withDSA"; |
|
algorithms["SHA-1WITHDSA"] = "SHA-1withDSA"; |
|
algorithms[X9ObjectIdentifiers.IdDsaWithSha1.Id] = "SHA-1withDSA"; |
|
algorithms[OiwObjectIdentifiers.DsaWithSha1.Id] = "SHA-1withDSA"; |
|
|
|
algorithms["DSAWITHSHA224"] = "SHA-224withDSA"; |
|
algorithms["DSAWITHSHA-224"] = "SHA-224withDSA"; |
|
algorithms["SHA224/DSA"] = "SHA-224withDSA"; |
|
algorithms["SHA-224/DSA"] = "SHA-224withDSA"; |
|
algorithms["SHA224WITHDSA"] = "SHA-224withDSA"; |
|
algorithms["SHA-224WITHDSA"] = "SHA-224withDSA"; |
|
algorithms[NistObjectIdentifiers.DsaWithSha224.Id] = "SHA-224withDSA"; |
|
|
|
algorithms["DSAWITHSHA256"] = "SHA-256withDSA"; |
|
algorithms["DSAWITHSHA-256"] = "SHA-256withDSA"; |
|
algorithms["SHA256/DSA"] = "SHA-256withDSA"; |
|
algorithms["SHA-256/DSA"] = "SHA-256withDSA"; |
|
algorithms["SHA256WITHDSA"] = "SHA-256withDSA"; |
|
algorithms["SHA-256WITHDSA"] = "SHA-256withDSA"; |
|
algorithms[NistObjectIdentifiers.DsaWithSha256.Id] = "SHA-256withDSA"; |
|
|
|
algorithms["DSAWITHSHA384"] = "SHA-384withDSA"; |
|
algorithms["DSAWITHSHA-384"] = "SHA-384withDSA"; |
|
algorithms["SHA384/DSA"] = "SHA-384withDSA"; |
|
algorithms["SHA-384/DSA"] = "SHA-384withDSA"; |
|
algorithms["SHA384WITHDSA"] = "SHA-384withDSA"; |
|
algorithms["SHA-384WITHDSA"] = "SHA-384withDSA"; |
|
algorithms[NistObjectIdentifiers.DsaWithSha384.Id] = "SHA-384withDSA"; |
|
|
|
algorithms["DSAWITHSHA512"] = "SHA-512withDSA"; |
|
algorithms["DSAWITHSHA-512"] = "SHA-512withDSA"; |
|
algorithms["SHA512/DSA"] = "SHA-512withDSA"; |
|
algorithms["SHA-512/DSA"] = "SHA-512withDSA"; |
|
algorithms["SHA512WITHDSA"] = "SHA-512withDSA"; |
|
algorithms["SHA-512WITHDSA"] = "SHA-512withDSA"; |
|
algorithms[NistObjectIdentifiers.DsaWithSha512.Id] = "SHA-512withDSA"; |
|
|
|
algorithms["NONEWITHECDSA"] = "NONEwithECDSA"; |
|
algorithms["ECDSAWITHNONE"] = "NONEwithECDSA"; |
|
|
|
algorithms["ECDSA"] = "SHA-1withECDSA"; |
|
algorithms["SHA1/ECDSA"] = "SHA-1withECDSA"; |
|
algorithms["SHA-1/ECDSA"] = "SHA-1withECDSA"; |
|
algorithms["ECDSAWITHSHA1"] = "SHA-1withECDSA"; |
|
algorithms["ECDSAWITHSHA-1"] = "SHA-1withECDSA"; |
|
algorithms["SHA1WITHECDSA"] = "SHA-1withECDSA"; |
|
algorithms["SHA-1WITHECDSA"] = "SHA-1withECDSA"; |
|
algorithms[X9ObjectIdentifiers.ECDsaWithSha1.Id] = "SHA-1withECDSA"; |
|
algorithms[TeleTrusTObjectIdentifiers.ECSignWithSha1.Id] = "SHA-1withECDSA"; |
|
|
|
algorithms["SHA224/ECDSA"] = "SHA-224withECDSA"; |
|
algorithms["SHA-224/ECDSA"] = "SHA-224withECDSA"; |
|
algorithms["ECDSAWITHSHA224"] = "SHA-224withECDSA"; |
|
algorithms["ECDSAWITHSHA-224"] = "SHA-224withECDSA"; |
|
algorithms["SHA224WITHECDSA"] = "SHA-224withECDSA"; |
|
algorithms["SHA-224WITHECDSA"] = "SHA-224withECDSA"; |
|
algorithms[X9ObjectIdentifiers.ECDsaWithSha224.Id] = "SHA-224withECDSA"; |
|
|
|
algorithms["SHA256/ECDSA"] = "SHA-256withECDSA"; |
|
algorithms["SHA-256/ECDSA"] = "SHA-256withECDSA"; |
|
algorithms["ECDSAWITHSHA256"] = "SHA-256withECDSA"; |
|
algorithms["ECDSAWITHSHA-256"] = "SHA-256withECDSA"; |
|
algorithms["SHA256WITHECDSA"] = "SHA-256withECDSA"; |
|
algorithms["SHA-256WITHECDSA"] = "SHA-256withECDSA"; |
|
algorithms[X9ObjectIdentifiers.ECDsaWithSha256.Id] = "SHA-256withECDSA"; |
|
|
|
algorithms["SHA384/ECDSA"] = "SHA-384withECDSA"; |
|
algorithms["SHA-384/ECDSA"] = "SHA-384withECDSA"; |
|
algorithms["ECDSAWITHSHA384"] = "SHA-384withECDSA"; |
|
algorithms["ECDSAWITHSHA-384"] = "SHA-384withECDSA"; |
|
algorithms["SHA384WITHECDSA"] = "SHA-384withECDSA"; |
|
algorithms["SHA-384WITHECDSA"] = "SHA-384withECDSA"; |
|
algorithms[X9ObjectIdentifiers.ECDsaWithSha384.Id] = "SHA-384withECDSA"; |
|
|
|
algorithms["SHA512/ECDSA"] = "SHA-512withECDSA"; |
|
algorithms["SHA-512/ECDSA"] = "SHA-512withECDSA"; |
|
algorithms["ECDSAWITHSHA512"] = "SHA-512withECDSA"; |
|
algorithms["ECDSAWITHSHA-512"] = "SHA-512withECDSA"; |
|
algorithms["SHA512WITHECDSA"] = "SHA-512withECDSA"; |
|
algorithms["SHA-512WITHECDSA"] = "SHA-512withECDSA"; |
|
algorithms[X9ObjectIdentifiers.ECDsaWithSha512.Id] = "SHA-512withECDSA"; |
|
|
|
algorithms["RIPEMD160/ECDSA"] = "RIPEMD160withECDSA"; |
|
algorithms["ECDSAWITHRIPEMD160"] = "RIPEMD160withECDSA"; |
|
algorithms["RIPEMD160WITHECDSA"] = "RIPEMD160withECDSA"; |
|
algorithms[TeleTrusTObjectIdentifiers.ECSignWithRipeMD160.Id] = "RIPEMD160withECDSA"; |
|
|
|
algorithms["NONEWITHCVC-ECDSA"] = "NONEwithCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHNONE"] = "NONEwithCVC-ECDSA"; |
|
|
|
algorithms["SHA1/CVC-ECDSA"] = "SHA-1withCVC-ECDSA"; |
|
algorithms["SHA-1/CVC-ECDSA"] = "SHA-1withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA1"] = "SHA-1withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA-1"] = "SHA-1withCVC-ECDSA"; |
|
algorithms["SHA1WITHCVC-ECDSA"] = "SHA-1withCVC-ECDSA"; |
|
algorithms["SHA-1WITHCVC-ECDSA"] = "SHA-1withCVC-ECDSA"; |
|
algorithms[EacObjectIdentifiers.id_TA_ECDSA_SHA_1.Id] = "SHA-1withCVC-ECDSA"; |
|
|
|
algorithms["SHA224/CVC-ECDSA"] = "SHA-224withCVC-ECDSA"; |
|
algorithms["SHA-224/CVC-ECDSA"] = "SHA-224withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA224"] = "SHA-224withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA-224"] = "SHA-224withCVC-ECDSA"; |
|
algorithms["SHA224WITHCVC-ECDSA"] = "SHA-224withCVC-ECDSA"; |
|
algorithms["SHA-224WITHCVC-ECDSA"] = "SHA-224withCVC-ECDSA"; |
|
algorithms[EacObjectIdentifiers.id_TA_ECDSA_SHA_224.Id] = "SHA-224withCVC-ECDSA"; |
|
|
|
algorithms["SHA256/CVC-ECDSA"] = "SHA-256withCVC-ECDSA"; |
|
algorithms["SHA-256/CVC-ECDSA"] = "SHA-256withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA256"] = "SHA-256withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA-256"] = "SHA-256withCVC-ECDSA"; |
|
algorithms["SHA256WITHCVC-ECDSA"] = "SHA-256withCVC-ECDSA"; |
|
algorithms["SHA-256WITHCVC-ECDSA"] = "SHA-256withCVC-ECDSA"; |
|
algorithms[EacObjectIdentifiers.id_TA_ECDSA_SHA_256.Id] = "SHA-256withCVC-ECDSA"; |
|
|
|
algorithms["SHA384/CVC-ECDSA"] = "SHA-384withCVC-ECDSA"; |
|
algorithms["SHA-384/CVC-ECDSA"] = "SHA-384withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA384"] = "SHA-384withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA-384"] = "SHA-384withCVC-ECDSA"; |
|
algorithms["SHA384WITHCVC-ECDSA"] = "SHA-384withCVC-ECDSA"; |
|
algorithms["SHA-384WITHCVC-ECDSA"] = "SHA-384withCVC-ECDSA"; |
|
algorithms[EacObjectIdentifiers.id_TA_ECDSA_SHA_384.Id] = "SHA-384withCVC-ECDSA"; |
|
|
|
algorithms["SHA512/CVC-ECDSA"] = "SHA-512withCVC-ECDSA"; |
|
algorithms["SHA-512/CVC-ECDSA"] = "SHA-512withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA512"] = "SHA-512withCVC-ECDSA"; |
|
algorithms["CVC-ECDSAWITHSHA-512"] = "SHA-512withCVC-ECDSA"; |
|
algorithms["SHA512WITHCVC-ECDSA"] = "SHA-512withCVC-ECDSA"; |
|
algorithms["SHA-512WITHCVC-ECDSA"] = "SHA-512withCVC-ECDSA"; |
|
algorithms[EacObjectIdentifiers.id_TA_ECDSA_SHA_512.Id] = "SHA-512withCVC-ECDSA"; |
|
|
|
algorithms["NONEWITHPLAIN-ECDSA"] = "NONEwithPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHNONE"] = "NONEwithPLAIN-ECDSA"; |
|
|
|
algorithms["SHA1/PLAIN-ECDSA"] = "SHA-1withPLAIN-ECDSA"; |
|
algorithms["SHA-1/PLAIN-ECDSA"] = "SHA-1withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA1"] = "SHA-1withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA-1"] = "SHA-1withPLAIN-ECDSA"; |
|
algorithms["SHA1WITHPLAIN-ECDSA"] = "SHA-1withPLAIN-ECDSA"; |
|
algorithms["SHA-1WITHPLAIN-ECDSA"] = "SHA-1withPLAIN-ECDSA"; |
|
algorithms[BsiObjectIdentifiers.ecdsa_plain_SHA1.Id] = "SHA-1withPLAIN-ECDSA"; |
|
|
|
algorithms["SHA224/PLAIN-ECDSA"] = "SHA-224withPLAIN-ECDSA"; |
|
algorithms["SHA-224/PLAIN-ECDSA"] = "SHA-224withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA224"] = "SHA-224withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA-224"] = "SHA-224withPLAIN-ECDSA"; |
|
algorithms["SHA224WITHPLAIN-ECDSA"] = "SHA-224withPLAIN-ECDSA"; |
|
algorithms["SHA-224WITHPLAIN-ECDSA"] = "SHA-224withPLAIN-ECDSA"; |
|
algorithms[BsiObjectIdentifiers.ecdsa_plain_SHA224.Id] = "SHA-224withPLAIN-ECDSA"; |
|
|
|
algorithms["SHA256/PLAIN-ECDSA"] = "SHA-256withPLAIN-ECDSA"; |
|
algorithms["SHA-256/PLAIN-ECDSA"] = "SHA-256withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA256"] = "SHA-256withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA-256"] = "SHA-256withPLAIN-ECDSA"; |
|
algorithms["SHA256WITHPLAIN-ECDSA"] = "SHA-256withPLAIN-ECDSA"; |
|
algorithms["SHA-256WITHPLAIN-ECDSA"] = "SHA-256withPLAIN-ECDSA"; |
|
algorithms[BsiObjectIdentifiers.ecdsa_plain_SHA256.Id] = "SHA-256withPLAIN-ECDSA"; |
|
|
|
algorithms["SHA384/PLAIN-ECDSA"] = "SHA-384withPLAIN-ECDSA"; |
|
algorithms["SHA-384/PLAIN-ECDSA"] = "SHA-384withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA384"] = "SHA-384withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA-384"] = "SHA-384withPLAIN-ECDSA"; |
|
algorithms["SHA384WITHPLAIN-ECDSA"] = "SHA-384withPLAIN-ECDSA"; |
|
algorithms["SHA-384WITHPLAIN-ECDSA"] = "SHA-384withPLAIN-ECDSA"; |
|
algorithms[BsiObjectIdentifiers.ecdsa_plain_SHA384.Id] = "SHA-384withPLAIN-ECDSA"; |
|
|
|
algorithms["SHA512/PLAIN-ECDSA"] = "SHA-512withPLAIN-ECDSA"; |
|
algorithms["SHA-512/PLAIN-ECDSA"] = "SHA-512withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA512"] = "SHA-512withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHSHA-512"] = "SHA-512withPLAIN-ECDSA"; |
|
algorithms["SHA512WITHPLAIN-ECDSA"] = "SHA-512withPLAIN-ECDSA"; |
|
algorithms["SHA-512WITHPLAIN-ECDSA"] = "SHA-512withPLAIN-ECDSA"; |
|
algorithms[BsiObjectIdentifiers.ecdsa_plain_SHA512.Id] = "SHA-512withPLAIN-ECDSA"; |
|
|
|
algorithms["RIPEMD160/PLAIN-ECDSA"] = "RIPEMD160withPLAIN-ECDSA"; |
|
algorithms["PLAIN-ECDSAWITHRIPEMD160"] = "RIPEMD160withPLAIN-ECDSA"; |
|
algorithms["RIPEMD160WITHPLAIN-ECDSA"] = "RIPEMD160withPLAIN-ECDSA"; |
|
algorithms[BsiObjectIdentifiers.ecdsa_plain_RIPEMD160.Id] = "RIPEMD160withPLAIN-ECDSA"; |
|
|
|
algorithms["SHA1WITHECNR"] = "SHA-1withECNR"; |
|
algorithms["SHA-1WITHECNR"] = "SHA-1withECNR"; |
|
algorithms["SHA224WITHECNR"] = "SHA-224withECNR"; |
|
algorithms["SHA-224WITHECNR"] = "SHA-224withECNR"; |
|
algorithms["SHA256WITHECNR"] = "SHA-256withECNR"; |
|
algorithms["SHA-256WITHECNR"] = "SHA-256withECNR"; |
|
algorithms["SHA384WITHECNR"] = "SHA-384withECNR"; |
|
algorithms["SHA-384WITHECNR"] = "SHA-384withECNR"; |
|
algorithms["SHA512WITHECNR"] = "SHA-512withECNR"; |
|
algorithms["SHA-512WITHECNR"] = "SHA-512withECNR"; |
|
|
|
algorithms["GOST-3410"] = "GOST3410"; |
|
algorithms["GOST-3410-94"] = "GOST3410"; |
|
algorithms["GOST3411WITHGOST3410"] = "GOST3410"; |
|
algorithms[CryptoProObjectIdentifiers.GostR3411x94WithGostR3410x94.Id] = "GOST3410"; |
|
|
|
algorithms["ECGOST-3410"] = "ECGOST3410"; |
|
algorithms["ECGOST-3410-2001"] = "ECGOST3410"; |
|
algorithms["GOST3411WITHECGOST3410"] = "ECGOST3410"; |
|
algorithms[CryptoProObjectIdentifiers.GostR3411x94WithGostR3410x2001.Id] = "ECGOST3410"; |
|
|
|
algorithms["ED25519"] = "Ed25519"; |
|
algorithms[EdECObjectIdentifiers.id_Ed25519.Id] = "Ed25519"; |
|
algorithms["ED25519CTX"] = "Ed25519ctx"; |
|
algorithms["ED25519PH"] = "Ed25519ph"; |
|
algorithms["ED448"] = "Ed448"; |
|
algorithms[EdECObjectIdentifiers.id_Ed448.Id] = "Ed448"; |
|
algorithms["ED448PH"] = "Ed448ph"; |
|
|
|
algorithms["SHA256WITHSM2"] = "SHA256withSM2"; |
|
algorithms[GMObjectIdentifiers.sm2sign_with_sha256.Id] = "SHA256withSM2"; |
|
algorithms["SM3WITHSM2"] = "SM3withSM2"; |
|
algorithms[GMObjectIdentifiers.sm2sign_with_sm3.Id] = "SM3withSM2"; |
|
|
|
oids["MD2withRSA"] = PkcsObjectIdentifiers.MD2WithRsaEncryption; |
|
oids["MD4withRSA"] = PkcsObjectIdentifiers.MD4WithRsaEncryption; |
|
oids["MD5withRSA"] = PkcsObjectIdentifiers.MD5WithRsaEncryption; |
|
|
|
oids["SHA-1withRSA"] = PkcsObjectIdentifiers.Sha1WithRsaEncryption; |
|
oids["SHA-224withRSA"] = PkcsObjectIdentifiers.Sha224WithRsaEncryption; |
|
oids["SHA-256withRSA"] = PkcsObjectIdentifiers.Sha256WithRsaEncryption; |
|
oids["SHA-384withRSA"] = PkcsObjectIdentifiers.Sha384WithRsaEncryption; |
|
oids["SHA-512withRSA"] = PkcsObjectIdentifiers.Sha512WithRsaEncryption; |
|
oids["SHA-512(224)withRSA"] = PkcsObjectIdentifiers.Sha512_224WithRSAEncryption; |
|
oids["SHA-512(256)withRSA"] = PkcsObjectIdentifiers.Sha512_256WithRSAEncryption; |
|
oids["SHA3-224withRSA"] = NistObjectIdentifiers.IdRsassaPkcs1V15WithSha3_224; |
|
oids["SHA3-256withRSA"] = NistObjectIdentifiers.IdRsassaPkcs1V15WithSha3_256; |
|
oids["SHA3-384withRSA"] = NistObjectIdentifiers.IdRsassaPkcs1V15WithSha3_384; |
|
oids["SHA3-512withRSA"] = NistObjectIdentifiers.IdRsassaPkcs1V15WithSha3_512; |
|
|
|
oids["PSSwithRSA"] = PkcsObjectIdentifiers.IdRsassaPss; |
|
oids["SHA-1withRSAandMGF1"] = PkcsObjectIdentifiers.IdRsassaPss; |
|
oids["SHA-224withRSAandMGF1"] = PkcsObjectIdentifiers.IdRsassaPss; |
|
oids["SHA-256withRSAandMGF1"] = PkcsObjectIdentifiers.IdRsassaPss; |
|
oids["SHA-384withRSAandMGF1"] = PkcsObjectIdentifiers.IdRsassaPss; |
|
oids["SHA-512withRSAandMGF1"] = PkcsObjectIdentifiers.IdRsassaPss; |
|
|
|
oids["RIPEMD128withRSA"] = TeleTrusTObjectIdentifiers.RsaSignatureWithRipeMD128; |
|
oids["RIPEMD160withRSA"] = TeleTrusTObjectIdentifiers.RsaSignatureWithRipeMD160; |
|
oids["RIPEMD256withRSA"] = TeleTrusTObjectIdentifiers.RsaSignatureWithRipeMD256; |
|
|
|
oids["SHA-1withDSA"] = X9ObjectIdentifiers.IdDsaWithSha1; |
|
|
|
oids["SHA-1withECDSA"] = X9ObjectIdentifiers.ECDsaWithSha1; |
|
oids["SHA-224withECDSA"] = X9ObjectIdentifiers.ECDsaWithSha224; |
|
oids["SHA-256withECDSA"] = X9ObjectIdentifiers.ECDsaWithSha256; |
|
oids["SHA-384withECDSA"] = X9ObjectIdentifiers.ECDsaWithSha384; |
|
oids["SHA-512withECDSA"] = X9ObjectIdentifiers.ECDsaWithSha512; |
|
oids["RIPEMD160withECDSA"] = TeleTrusTObjectIdentifiers.ECSignWithRipeMD160; |
|
|
|
oids["SHA-1withCVC-ECDSA"] = EacObjectIdentifiers.id_TA_ECDSA_SHA_1; |
|
oids["SHA-224withCVC-ECDSA"] = EacObjectIdentifiers.id_TA_ECDSA_SHA_224; |
|
oids["SHA-256withCVC-ECDSA"] = EacObjectIdentifiers.id_TA_ECDSA_SHA_256; |
|
oids["SHA-384withCVC-ECDSA"] = EacObjectIdentifiers.id_TA_ECDSA_SHA_384; |
|
oids["SHA-512withCVC-ECDSA"] = EacObjectIdentifiers.id_TA_ECDSA_SHA_512; |
|
|
|
oids["SHA-1withPLAIN-ECDSA"] = BsiObjectIdentifiers.ecdsa_plain_SHA1; |
|
oids["SHA-224withPLAIN-ECDSA"] = BsiObjectIdentifiers.ecdsa_plain_SHA224; |
|
oids["SHA-256withPLAIN-ECDSA"] = BsiObjectIdentifiers.ecdsa_plain_SHA256; |
|
oids["SHA-384withPLAIN-ECDSA"] = BsiObjectIdentifiers.ecdsa_plain_SHA384; |
|
oids["SHA-512withPLAIN-ECDSA"] = BsiObjectIdentifiers.ecdsa_plain_SHA512; |
|
oids["RIPEMD160withPLAIN-ECDSA"] = BsiObjectIdentifiers.ecdsa_plain_RIPEMD160; |
|
|
|
oids["GOST3410"] = CryptoProObjectIdentifiers.GostR3411x94WithGostR3410x94; |
|
oids["ECGOST3410"] = CryptoProObjectIdentifiers.GostR3411x94WithGostR3410x2001; |
|
|
|
oids["Ed25519"] = EdECObjectIdentifiers.id_Ed25519; |
|
oids["Ed448"] = EdECObjectIdentifiers.id_Ed448; |
|
|
|
oids["SHA256withSM2"] = GMObjectIdentifiers.sm2sign_with_sha256; |
|
oids["SM3withSM2"] = GMObjectIdentifiers.sm2sign_with_sm3; |
|
} |
|
|
|
/// <summary> |
|
/// Returns an ObjectIdentifier for a given encoding. |
|
/// </summary> |
|
/// <param name="mechanism">A string representation of the encoding.</param> |
|
/// <returns>A DerObjectIdentifier, null if the OID is not available.</returns> |
|
// TODO Don't really want to support this |
|
public static DerObjectIdentifier GetObjectIdentifier( |
|
string mechanism) |
|
{ |
|
if (mechanism == null) |
|
throw new ArgumentNullException("mechanism"); |
|
|
|
mechanism = BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.ToUpperInvariant(mechanism); |
|
string aliased = (string) algorithms[mechanism]; |
|
|
|
if (aliased != null) |
|
mechanism = aliased; |
|
|
|
return (DerObjectIdentifier) oids[mechanism]; |
|
} |
|
|
|
public static ICollection Algorithms |
|
{ |
|
get { return oids.Keys; } |
|
} |
|
|
|
public static Asn1Encodable GetDefaultX509Parameters( |
|
DerObjectIdentifier id) |
|
{ |
|
return GetDefaultX509Parameters(id.Id); |
|
} |
|
|
|
public static Asn1Encodable GetDefaultX509Parameters( |
|
string algorithm) |
|
{ |
|
if (algorithm == null) |
|
throw new ArgumentNullException("algorithm"); |
|
|
|
algorithm = BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.ToUpperInvariant(algorithm); |
|
|
|
string mechanism = (string) algorithms[algorithm]; |
|
|
|
if (mechanism == null) |
|
mechanism = algorithm; |
|
|
|
if (mechanism == "PSSwithRSA") |
|
{ |
|
// TODO The Sha1Digest here is a default. In JCE version, the actual digest |
|
// to be used can be overridden by subsequent parameter settings. |
|
return GetPssX509Parameters("SHA-1"); |
|
} |
|
|
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "withRSAandMGF1")) |
|
{ |
|
string digestName = mechanism.Substring(0, mechanism.Length - "withRSAandMGF1".Length); |
|
return GetPssX509Parameters(digestName); |
|
} |
|
|
|
return DerNull.Instance; |
|
} |
|
|
|
private static Asn1Encodable GetPssX509Parameters( |
|
string digestName) |
|
{ |
|
AlgorithmIdentifier hashAlgorithm = new AlgorithmIdentifier( |
|
DigestUtilities.GetObjectIdentifier(digestName), DerNull.Instance); |
|
|
|
// TODO Is it possible for the MGF hash alg to be different from the PSS one? |
|
AlgorithmIdentifier maskGenAlgorithm = new AlgorithmIdentifier( |
|
PkcsObjectIdentifiers.IdMgf1, hashAlgorithm); |
|
|
|
int saltLen = DigestUtilities.GetDigest(digestName).GetDigestSize(); |
|
return new RsassaPssParameters(hashAlgorithm, maskGenAlgorithm, |
|
new DerInteger(saltLen), new DerInteger(1)); |
|
} |
|
|
|
public static ISigner GetSigner( |
|
DerObjectIdentifier id) |
|
{ |
|
return GetSigner(id.Id); |
|
} |
|
|
|
public static ISigner GetSigner( |
|
string algorithm) |
|
{ |
|
if (algorithm == null) |
|
throw new ArgumentNullException("algorithm"); |
|
|
|
algorithm = BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.ToUpperInvariant(algorithm); |
|
|
|
string mechanism = (string) algorithms[algorithm]; |
|
|
|
if (mechanism == null) |
|
mechanism = algorithm; |
|
|
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.StartsWith(mechanism, "Ed")) |
|
{ |
|
if (mechanism.Equals("Ed25519")) |
|
{ |
|
return new Ed25519Signer(); |
|
} |
|
if (mechanism.Equals("Ed25519ctx")) |
|
{ |
|
return new Ed25519ctxSigner(Arrays.EmptyBytes); |
|
} |
|
if (mechanism.Equals("Ed25519ph")) |
|
{ |
|
return new Ed25519phSigner(Arrays.EmptyBytes); |
|
} |
|
if (mechanism.Equals("Ed448")) |
|
{ |
|
return new Ed448Signer(Arrays.EmptyBytes); |
|
} |
|
if (mechanism.Equals("Ed448ph")) |
|
{ |
|
return new Ed448phSigner(Arrays.EmptyBytes); |
|
} |
|
} |
|
|
|
if (mechanism.Equals("RSA")) |
|
{ |
|
return (new RsaDigestSigner(new NullDigest(), (AlgorithmIdentifier)null)); |
|
} |
|
if (mechanism.Equals("RAWRSASSA-PSS")) |
|
{ |
|
// TODO Add support for other parameter settings |
|
return PssSigner.CreateRawSigner(new RsaBlindedEngine(), new Sha1Digest()); |
|
} |
|
if (mechanism.Equals("PSSwithRSA")) |
|
{ |
|
// TODO The Sha1Digest here is a default. In JCE version, the actual digest |
|
// to be used can be overridden by subsequent parameter settings. |
|
return new PssSigner(new RsaBlindedEngine(), new Sha1Digest()); |
|
} |
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "withRSA")) |
|
{ |
|
string digestName = mechanism.Substring(0, mechanism.LastIndexOf("with")); |
|
IDigest digest = DigestUtilities.GetDigest(digestName); |
|
return new RsaDigestSigner(digest); |
|
} |
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "withRSAandMGF1")) |
|
{ |
|
string digestName = mechanism.Substring(0, mechanism.LastIndexOf("with")); |
|
IDigest digest = DigestUtilities.GetDigest(digestName); |
|
return new PssSigner(new RsaBlindedEngine(), digest); |
|
} |
|
|
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "withDSA")) |
|
{ |
|
string digestName = mechanism.Substring(0, mechanism.LastIndexOf("with")); |
|
IDigest digest = DigestUtilities.GetDigest(digestName); |
|
return new DsaDigestSigner(new DsaSigner(), digest); |
|
} |
|
|
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "withECDSA")) |
|
{ |
|
string digestName = mechanism.Substring(0, mechanism.LastIndexOf("with")); |
|
IDigest digest = DigestUtilities.GetDigest(digestName); |
|
return new DsaDigestSigner(new ECDsaSigner(), digest); |
|
} |
|
|
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "withCVC-ECDSA") |
|
|| BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "withPLAIN-ECDSA")) |
|
{ |
|
string digestName = mechanism.Substring(0, mechanism.LastIndexOf("with")); |
|
IDigest digest = DigestUtilities.GetDigest(digestName); |
|
return new DsaDigestSigner(new ECDsaSigner(), digest, PlainDsaEncoding.Instance); |
|
} |
|
|
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "withECNR")) |
|
{ |
|
string digestName = mechanism.Substring(0, mechanism.LastIndexOf("with")); |
|
IDigest digest = DigestUtilities.GetDigest(digestName); |
|
return new DsaDigestSigner(new ECNRSigner(), digest); |
|
} |
|
|
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "withSM2")) |
|
{ |
|
string digestName = mechanism.Substring(0, mechanism.LastIndexOf("with")); |
|
IDigest digest = DigestUtilities.GetDigest(digestName); |
|
return new SM2Signer(digest); |
|
} |
|
|
|
if (mechanism.Equals("GOST3410")) |
|
{ |
|
return new Gost3410DigestSigner(new Gost3410Signer(), new Gost3411Digest()); |
|
} |
|
if (mechanism.Equals("ECGOST3410")) |
|
{ |
|
return new Gost3410DigestSigner(new ECGost3410Signer(), new Gost3411Digest()); |
|
} |
|
|
|
if (mechanism.Equals("SHA1WITHRSA/ISO9796-2")) |
|
{ |
|
return new Iso9796d2Signer(new RsaBlindedEngine(), new Sha1Digest(), true); |
|
} |
|
if (mechanism.Equals("MD5WITHRSA/ISO9796-2")) |
|
{ |
|
return new Iso9796d2Signer(new RsaBlindedEngine(), new MD5Digest(), true); |
|
} |
|
if (mechanism.Equals("RIPEMD160WITHRSA/ISO9796-2")) |
|
{ |
|
return new Iso9796d2Signer(new RsaBlindedEngine(), new RipeMD160Digest(), true); |
|
} |
|
|
|
if (BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.EndsWith(mechanism, "/X9.31")) |
|
{ |
|
string x931 = mechanism.Substring(0, mechanism.Length - "/X9.31".Length); |
|
int withPos = BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.Platform.IndexOf(x931, "WITH"); |
|
if (withPos > 0) |
|
{ |
|
int endPos = withPos + "WITH".Length; |
|
|
|
string digestName = x931.Substring(0, withPos); |
|
IDigest digest = DigestUtilities.GetDigest(digestName); |
|
|
|
string cipherName = x931.Substring(endPos, x931.Length - endPos); |
|
if (cipherName.Equals("RSA")) |
|
{ |
|
IAsymmetricBlockCipher cipher = new RsaBlindedEngine(); |
|
return new X931Signer(cipher, digest); |
|
} |
|
} |
|
} |
|
|
|
throw new SecurityUtilityException("Signer " + algorithm + " not recognised."); |
|
} |
|
|
|
public static string GetEncodingName( |
|
DerObjectIdentifier oid) |
|
{ |
|
return (string) algorithms[oid.Id]; |
|
} |
|
|
|
public static ISigner InitSigner(DerObjectIdentifier algorithmOid, bool forSigning, AsymmetricKeyParameter privateKey, SecureRandom random) |
|
{ |
|
return InitSigner(algorithmOid.Id, forSigning, privateKey, random); |
|
} |
|
|
|
public static ISigner InitSigner(string algorithm, bool forSigning, AsymmetricKeyParameter privateKey, SecureRandom random) |
|
{ |
|
ISigner signer = SignerUtilities.GetSigner(algorithm); |
|
signer.Init(forSigning, ParameterUtilities.WithRandom(privateKey, random)); |
|
return signer; |
|
} |
|
} |
|
} |
|
#pragma warning restore |
|
#endif
|
|
|