using Org.BouncyCastle.Crypto; using Org.BouncyCastle.Crypto.Digests; using Org.BouncyCastle.Crypto.Parameters; using Org.BouncyCastle.Crypto.Signers; using System; namespace Org.BouncyCastle.Tls.Crypto.Impl.BC { public abstract class BcTlsDssSigner : BcTlsSigner { protected abstract short SignatureAlgorithm { get; } protected BcTlsDssSigner(BcTlsCrypto crypto, AsymmetricKeyParameter privateKey) : base(crypto, privateKey) { } protected abstract IDsa CreateDsaImpl(int cryptoHashAlgorithm); public override byte[] GenerateRawSignature(SignatureAndHashAlgorithm algorithm, byte[] hash) { if (algorithm == null || algorithm.Signature == SignatureAlgorithm) { int cryptoHashAlgorithm = (algorithm == null) ? 2 : TlsCryptoUtilities.GetHash(algorithm.Hash); ISigner signer = new DsaDigestSigner(CreateDsaImpl(cryptoHashAlgorithm), new NullDigest()); signer.Init(true, new ParametersWithRandom(m_privateKey, m_crypto.SecureRandom)); if (algorithm == null) signer.BlockUpdate(hash, 16, 20); else signer.BlockUpdate(hash, 0, hash.Length); try { return signer.GenerateSignature(); } catch (CryptoException alertCause) { throw new TlsFatalAlert(80, alertCause); } } throw new InvalidOperationException("Invalid algorithm: " + algorithm?.ToString()); } } }