1*3c7ae9deSAndroid Build Coastguard Worker /*
2*3c7ae9deSAndroid Build Coastguard Worker * Copyright 2010-2018 Amazon.com, Inc. or its affiliates. All Rights Reserved.
3*3c7ae9deSAndroid Build Coastguard Worker *
4*3c7ae9deSAndroid Build Coastguard Worker * Licensed under the Apache License, Version 2.0 (the "License").
5*3c7ae9deSAndroid Build Coastguard Worker * You may not use this file except in compliance with the License.
6*3c7ae9deSAndroid Build Coastguard Worker * A copy of the License is located at
7*3c7ae9deSAndroid Build Coastguard Worker *
8*3c7ae9deSAndroid Build Coastguard Worker * http://aws.amazon.com/apache2.0
9*3c7ae9deSAndroid Build Coastguard Worker *
10*3c7ae9deSAndroid Build Coastguard Worker * or in the "license" file accompanying this file. This file is distributed
11*3c7ae9deSAndroid Build Coastguard Worker * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
12*3c7ae9deSAndroid Build Coastguard Worker * express or implied. See the License for the specific language governing
13*3c7ae9deSAndroid Build Coastguard Worker * permissions and limitations under the License.
14*3c7ae9deSAndroid Build Coastguard Worker */
15*3c7ae9deSAndroid Build Coastguard Worker
16*3c7ae9deSAndroid Build Coastguard Worker #include <jni.h>
17*3c7ae9deSAndroid Build Coastguard Worker
18*3c7ae9deSAndroid Build Coastguard Worker #include <aws/auth/credentials.h>
19*3c7ae9deSAndroid Build Coastguard Worker #include <aws/cal/ecc.h>
20*3c7ae9deSAndroid Build Coastguard Worker
21*3c7ae9deSAndroid Build Coastguard Worker #include "credentials.h"
22*3c7ae9deSAndroid Build Coastguard Worker #include "crt.h"
23*3c7ae9deSAndroid Build Coastguard Worker #include "java_class_ids.h"
24*3c7ae9deSAndroid Build Coastguard Worker
25*3c7ae9deSAndroid Build Coastguard Worker /* on 32-bit platforms, casting pointers to longs throws a warning we don't need */
26*3c7ae9deSAndroid Build Coastguard Worker #if UINTPTR_MAX == 0xffffffff
27*3c7ae9deSAndroid Build Coastguard Worker # if defined(_MSC_VER)
28*3c7ae9deSAndroid Build Coastguard Worker # pragma warning(push)
29*3c7ae9deSAndroid Build Coastguard Worker # pragma warning(disable : 4305) /* 'type cast': truncation from 'jlong' to 'jni_tls_ctx_options *' */
30*3c7ae9deSAndroid Build Coastguard Worker # else
31*3c7ae9deSAndroid Build Coastguard Worker # pragma GCC diagnostic push
32*3c7ae9deSAndroid Build Coastguard Worker # pragma GCC diagnostic ignored "-Wpointer-to-int-cast"
33*3c7ae9deSAndroid Build Coastguard Worker # pragma GCC diagnostic ignored "-Wint-to-pointer-cast"
34*3c7ae9deSAndroid Build Coastguard Worker # endif
35*3c7ae9deSAndroid Build Coastguard Worker #endif
36*3c7ae9deSAndroid Build Coastguard Worker
37*3c7ae9deSAndroid Build Coastguard Worker JNIEXPORT
38*3c7ae9deSAndroid Build Coastguard Worker void JNICALL
Java_software_amazon_awssdk_crt_cal_EccKeyPair_eccKeyPairRelease(JNIEnv * env,jclass jni_ekp,jlong ekp_addr)39*3c7ae9deSAndroid Build Coastguard Worker Java_software_amazon_awssdk_crt_cal_EccKeyPair_eccKeyPairRelease(JNIEnv *env, jclass jni_ekp, jlong ekp_addr) {
40*3c7ae9deSAndroid Build Coastguard Worker (void)jni_ekp;
41*3c7ae9deSAndroid Build Coastguard Worker aws_cache_jni_ids(env);
42*3c7ae9deSAndroid Build Coastguard Worker
43*3c7ae9deSAndroid Build Coastguard Worker struct aws_ecc_key_pair *key_pair = (struct aws_ecc_key_pair *)ekp_addr;
44*3c7ae9deSAndroid Build Coastguard Worker
45*3c7ae9deSAndroid Build Coastguard Worker aws_ecc_key_pair_release(key_pair);
46*3c7ae9deSAndroid Build Coastguard Worker }
47*3c7ae9deSAndroid Build Coastguard Worker
48*3c7ae9deSAndroid Build Coastguard Worker JNIEXPORT
Java_software_amazon_awssdk_crt_cal_EccKeyPair_eccKeyPairNewFromCredentials(JNIEnv * env,jclass jni_class,jobject credentials,jint curve)49*3c7ae9deSAndroid Build Coastguard Worker jlong JNICALL Java_software_amazon_awssdk_crt_cal_EccKeyPair_eccKeyPairNewFromCredentials(
50*3c7ae9deSAndroid Build Coastguard Worker JNIEnv *env,
51*3c7ae9deSAndroid Build Coastguard Worker jclass jni_class,
52*3c7ae9deSAndroid Build Coastguard Worker jobject credentials,
53*3c7ae9deSAndroid Build Coastguard Worker jint curve) {
54*3c7ae9deSAndroid Build Coastguard Worker
55*3c7ae9deSAndroid Build Coastguard Worker (void)jni_class;
56*3c7ae9deSAndroid Build Coastguard Worker aws_cache_jni_ids(env);
57*3c7ae9deSAndroid Build Coastguard Worker
58*3c7ae9deSAndroid Build Coastguard Worker struct aws_credentials *native_credentials = aws_credentials_new_from_java_credentials(env, credentials);
59*3c7ae9deSAndroid Build Coastguard Worker if (native_credentials == NULL) {
60*3c7ae9deSAndroid Build Coastguard Worker return (jlong)0;
61*3c7ae9deSAndroid Build Coastguard Worker }
62*3c7ae9deSAndroid Build Coastguard Worker
63*3c7ae9deSAndroid Build Coastguard Worker enum aws_ecc_curve_name curve_name = curve;
64*3c7ae9deSAndroid Build Coastguard Worker
65*3c7ae9deSAndroid Build Coastguard Worker struct aws_ecc_key_pair *key_pair = NULL;
66*3c7ae9deSAndroid Build Coastguard Worker
67*3c7ae9deSAndroid Build Coastguard Worker switch (curve_name) {
68*3c7ae9deSAndroid Build Coastguard Worker case AWS_CAL_ECDSA_P256:
69*3c7ae9deSAndroid Build Coastguard Worker key_pair =
70*3c7ae9deSAndroid Build Coastguard Worker aws_ecc_key_pair_new_ecdsa_p256_key_from_aws_credentials(aws_jni_get_allocator(), native_credentials);
71*3c7ae9deSAndroid Build Coastguard Worker break;
72*3c7ae9deSAndroid Build Coastguard Worker
73*3c7ae9deSAndroid Build Coastguard Worker default:
74*3c7ae9deSAndroid Build Coastguard Worker break;
75*3c7ae9deSAndroid Build Coastguard Worker }
76*3c7ae9deSAndroid Build Coastguard Worker
77*3c7ae9deSAndroid Build Coastguard Worker aws_credentials_release(native_credentials);
78*3c7ae9deSAndroid Build Coastguard Worker
79*3c7ae9deSAndroid Build Coastguard Worker AWS_FATAL_ASSERT(!(*env)->ExceptionCheck(env));
80*3c7ae9deSAndroid Build Coastguard Worker
81*3c7ae9deSAndroid Build Coastguard Worker return (jlong)key_pair;
82*3c7ae9deSAndroid Build Coastguard Worker }
83*3c7ae9deSAndroid Build Coastguard Worker
84*3c7ae9deSAndroid Build Coastguard Worker #define SIGNATURE_SIZE_OVERESTIMATE 128
85*3c7ae9deSAndroid Build Coastguard Worker
86*3c7ae9deSAndroid Build Coastguard Worker JNIEXPORT
Java_software_amazon_awssdk_crt_cal_EccKeyPair_eccKeyPairSignMessage(JNIEnv * env,jclass jni_class,jlong ekp_addr,jbyteArray message)87*3c7ae9deSAndroid Build Coastguard Worker jbyteArray JNICALL Java_software_amazon_awssdk_crt_cal_EccKeyPair_eccKeyPairSignMessage(
88*3c7ae9deSAndroid Build Coastguard Worker JNIEnv *env,
89*3c7ae9deSAndroid Build Coastguard Worker jclass jni_class,
90*3c7ae9deSAndroid Build Coastguard Worker jlong ekp_addr,
91*3c7ae9deSAndroid Build Coastguard Worker jbyteArray message) {
92*3c7ae9deSAndroid Build Coastguard Worker
93*3c7ae9deSAndroid Build Coastguard Worker (void)jni_class;
94*3c7ae9deSAndroid Build Coastguard Worker aws_cache_jni_ids(env);
95*3c7ae9deSAndroid Build Coastguard Worker
96*3c7ae9deSAndroid Build Coastguard Worker struct aws_ecc_key_pair *key_pair = (struct aws_ecc_key_pair *)ekp_addr;
97*3c7ae9deSAndroid Build Coastguard Worker
98*3c7ae9deSAndroid Build Coastguard Worker struct aws_byte_buf signature_buffer;
99*3c7ae9deSAndroid Build Coastguard Worker AWS_ZERO_STRUCT(signature_buffer);
100*3c7ae9deSAndroid Build Coastguard Worker
101*3c7ae9deSAndroid Build Coastguard Worker if (aws_byte_buf_init(&signature_buffer, aws_jni_get_allocator(), SIGNATURE_SIZE_OVERESTIMATE)) {
102*3c7ae9deSAndroid Build Coastguard Worker aws_jni_throw_runtime_exception(env, "EccKeyPair.eccKeyPairSignMessage: failed to initialize signature buffer");
103*3c7ae9deSAndroid Build Coastguard Worker return NULL;
104*3c7ae9deSAndroid Build Coastguard Worker }
105*3c7ae9deSAndroid Build Coastguard Worker
106*3c7ae9deSAndroid Build Coastguard Worker struct aws_byte_cursor message_cursor = aws_jni_byte_cursor_from_jbyteArray_acquire(env, message);
107*3c7ae9deSAndroid Build Coastguard Worker if (message_cursor.ptr == NULL) {
108*3c7ae9deSAndroid Build Coastguard Worker aws_jni_throw_runtime_exception(env, "EccKeyPair.eccKeyPairSignMessage: failed to pin message bytes");
109*3c7ae9deSAndroid Build Coastguard Worker return NULL;
110*3c7ae9deSAndroid Build Coastguard Worker }
111*3c7ae9deSAndroid Build Coastguard Worker
112*3c7ae9deSAndroid Build Coastguard Worker jbyteArray signature = NULL;
113*3c7ae9deSAndroid Build Coastguard Worker if (aws_ecc_key_pair_sign_message(key_pair, &message_cursor, &signature_buffer)) {
114*3c7ae9deSAndroid Build Coastguard Worker aws_jni_throw_runtime_exception(env, "EccKeyPair.eccKeyPairSignMessage: failed to sign message");
115*3c7ae9deSAndroid Build Coastguard Worker } else {
116*3c7ae9deSAndroid Build Coastguard Worker struct aws_byte_cursor signature_cursor = aws_byte_cursor_from_buf(&signature_buffer);
117*3c7ae9deSAndroid Build Coastguard Worker signature = aws_jni_byte_array_from_cursor(env, &signature_cursor);
118*3c7ae9deSAndroid Build Coastguard Worker }
119*3c7ae9deSAndroid Build Coastguard Worker
120*3c7ae9deSAndroid Build Coastguard Worker aws_jni_byte_cursor_from_jbyteArray_release(env, message, message_cursor);
121*3c7ae9deSAndroid Build Coastguard Worker aws_byte_buf_clean_up(&signature_buffer);
122*3c7ae9deSAndroid Build Coastguard Worker
123*3c7ae9deSAndroid Build Coastguard Worker return signature;
124*3c7ae9deSAndroid Build Coastguard Worker }
125*3c7ae9deSAndroid Build Coastguard Worker
126*3c7ae9deSAndroid Build Coastguard Worker #if UINTPTR_MAX == 0xffffffff
127*3c7ae9deSAndroid Build Coastguard Worker # if defined(_MSC_VER)
128*3c7ae9deSAndroid Build Coastguard Worker # pragma warning(pop)
129*3c7ae9deSAndroid Build Coastguard Worker # else
130*3c7ae9deSAndroid Build Coastguard Worker # pragma GCC diagnostic pop
131*3c7ae9deSAndroid Build Coastguard Worker # endif
132*3c7ae9deSAndroid Build Coastguard Worker #endif
133