I compile a sketch in Arduino IDE, the code includes sha256.h library:
... #include "sha256.h"...When the codes are compiled, the error says:
fatal error: sha256.h: No such file or directoryI try to install sha256 library from Sketch > Include Library > Manage Libraries, but the library is not existed.
Where can I get the included library?
I need to compute some data signature, using un-encapsulated pkcs7 with sha256 and RSA.No problem with raw content, using :
public byte[] signRawContent(final byte[] content) throws CMSException, IOException, OperatorCreationException, CertificateEncodingException { // Create generator of pkcs7-signature message CMSSignedDataGenerator generator = new CMSSignedDataGenerator(); ContentSigner signer = new JcaContentSignerBuilder("SHA256WithRSA").setProvider("BC").build(privateKey); generator.addSignerInfoGenerator( new JcaSignerInfoGeneratorBuilder(new JcaDigestCalculatorProviderBuilder().setProvider("BC").build()).build(signer, certificate)); generator.addCertificate(new X509CertificateHolder(certificate.getEncoded())); CMSTypedData cmsTypedData = new CMSProcessableByteArray(content); CMSSignedData cmsSignedData = generator.generate(cmsTypedData, false); return cmsSignedData.getEncoded();}But I have another user cases, where I don't have the raw content, only its hash (sha256)Bouncycastle doesn't support "NONEwithRSA" or "RSA" for pkcs7 signature, so I tried to use a custom ContentSigner, without obtaining the same signature that with the raw content version.
public byte[] signHash(final byte[] sha256) throws IOException, OperatorCreationException, CertificateEncodingException, CMSException { // Create generator of pkcs7-signature message CMSSignedDataGenerator generator = new CMSSignedDataGenerator(); // custom content signer to bypass hash ContentSigner signer = new ContentSigner() { @Override public AlgorithmIdentifier getAlgorithmIdentifier() { return new DefaultSignatureAlgorithmIdentifierFinder().find("SHA256WithRSA"); } @Override public OutputStream getOutputStream() { return new ByteArrayOutputStream(); } @Override public byte[] getSignature() { try { Signature signer = Signature.getInstance("NONEwithRSA"); signer.initSign(privateKey); signer.update(sha256); return signer.sign(); } catch (Exception e){ throw new RuntimeOperatorException("exception obtaining signature: " + e.getMessage(), e); } } }; generator.addSignerInfoGenerator( new JcaSignerInfoGeneratorBuilder(new JcaDigestCalculatorProviderBuilder().setProvider("BC").build()).build(signer, certificate)); generator.addCertificate(new X509CertificateHolder(certificate.getEncoded())); CMSTypedData cmsTypedData = new CMSProcessableByteArray(sha256); CMSSignedData cmsSignedData = generator.generate(cmsTypedData, false); return cmsSignedData.getEncoded();}I even tried to rebuild the content digest, no luck
// build digest MessageDigest messageDigest = MessageDigest.getInstance("SHA-256"); messageDigest.update(sha256); byte[] outputDigest = messageDigest.digest(); AlgorithmIdentifier sha256Aid = new AlgorithmIdentifier(NISTObjectIdentifiers.id_sha256, DERNull.INSTANCE); DigestInfo di = new DigestInfo(sha256Aid, outputDigest); //sign SHA256 with RSA Signature rsaSignature = Signature.getInstance("RSA"); rsaSignature.initSign(privateKey); byte[] encodedDigestInfo = di.toASN1Primitive().getEncoded(); rsaSignature.update(encodedDigestInfo); return rsaSignature.sign();So is there a way to get a pkcs7 form a sha256?Thanks
I'm having trouble understanding the principle/method, on how to "manually" calculate a file's hash (sha256) which consist of certain bytes.
To put into an example:
I have this binary file consisting of these bytes.
2C F2 BA A3 0E 26 5A 3B 2A 1F 01 4A 01 66 60 02How to get following (correct) hash of the file? ea3cbd30dc6c18914d2cdafdd8bec0ff4ce5995c7b484cce3237900336abb574
I am trying to print the simple data text using Angular and Qz-Tray. But everytime I try to Print the error is displayed:
qz-tray.js:35 ReferenceError: Sha256 is not definedat Object.hash (qz-tray.js:408)at WebSocket._qz.websocket.connection.sendData (qz-tray.js:184)at qz-tray.js:280at j (rsvp.min.js:1)at new t (rsvp.min.js:1)at Object.promise (qz-tray.js:395)at Object.dataPromise (qz-tray.js:272)at Object.print (qz-tray.js:805)at PrinterService.push../src/app/shared/services/print.service.ts.PrinterService.printData (print.service.ts:46)at FoddListComponent.push../src/app/layout/foodlist/foddlist.component.ts.FoddListComponent.createPdf (foddlist.component.ts:122)I have included all the 3 .js files in index.html
Here is my index.html:
<head><meta charset="utf-8"><title>ABC</title><base href="/"><meta name="viewport" content="width=device-width, initial-scale=1"><link rel="icon" type="image/x-icon" href="favicon.ico"><script src="https://cdn.jsdelivr.net/npm/rsvp@4/dist/rsvp.min.js"></script><script type="text/javascript" src="https://cdnjs.cloudflare.com/ajax/libs/js-sha256/0.9.0/sha256.js"></script><script type="text/javascript" src="./qz-tray.js"></script>Due to Windows changing their security policies, we are planning to begin code-signing driver files with the SHA-256 algorithm instead of SHA-1. However, we still want to be able to support older OS's that still require SHA-1 signing.
Using Microsoft's signtool.exe we are able to code sign files successfully with both SHA-1 and SHA-256 digest algorithms using the /fd flag. However, if possible, we would like to sign the file with both algorithms simultaneously. Is this even possible? We would like to avoid having multiple sets of drivers that are signed with different algorithms and determining which set to install based on OS -- which would be our alternative approach.
If anyone has had experience with accomplishing this please explain what approach you took. If this isn't possible, an explanation of why it's impossible would be appreciated.
Please note that by viewing our site you agree to our use of cookies (see Pribadi for details). You will only see this message once.