c2pa_crypto::cose

Function sign

Source 
pub fn sign(
    signer: &dyn RawSigner,
    data: &[u8],
    box_size: Option<usize>,
    tss: TimeStampStorage,
) -> Result<Vec<u8>, CoseError>
Expand description

Given an arbitrary block of data and a RawSigner or AsyncRawSigner instance, generate a COSE signature for that block of data.

Returns a byte vector that is a Cose_Sign1 data structure.

From §14.5, X.509 Certificates of the C2PA Technical Specification:

X.509 Certificates are stored as defined by RFC 9360 (CBOR Object Signing and Encryption (COSE): Header Parameters for Carrying and Referencing X.509 Certificates). For convenience, the definition of x5chain is copied below.

x5chain: This header parameter contains an ordered array of X.509 certificates. The certificates are to be ordered starting with the certificate containing the end-entity key followed by the certificate that signed it, and so on. There is no requirement for the entire chain to be present in the element if there is reason to believe that the relying party already has, or can locate, the missing certificates. This means that the relying party is still required to do path building but that a candidate path is proposed in this header parameter.

The trust mechanism MUST process any certificates in this parameter as untrusted input. The presence of a self-signed certificate in the parameter MUST NOT cause the update of the set of trust anchors without some out-of-band confirmation. As the contents of this header parameter are untrusted input, the header parameter can be in either the protected or unprotected header bucket. Sending the header parameter in the unprotected header bucket allows an intermediary to remove or add certificates.

The end-entity certificate MUST be integrity protected by COSE. This can, for example, be done by sending the header parameter in the protected header, sending an x5chain in the unprotected header combined with an x5t in the protected header, or including the end-entity certificate in the external_aad.

This header parameter allows for a single X.509 certificate or a chain of X.509 certificates to be carried in the message.

  • If a single certificate is conveyed, it is placed in a CBOR byte string.
  • If multiple certificates are conveyed, a CBOR array of byte strings is used, with each certificate being in its own byte string.