c2pa-c-ffi 0.84.1

C language FFI base for c2pa crate to create bindings
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144

// Copyright 2023 Adobe. All rights reserved.
// This file is licensed to you under the Apache License,
// Version 2.0 (http://www.apache.org/licenses/LICENSE-2.0)
// or the MIT license (http://opensource.org/licenses/MIT),
// at your option.
// Unless required by applicable law or agreed to in writing,
// this software is distributed on an "AS IS" BASIS, WITHOUT
// WARRANTIES OR REPRESENTATIONS OF ANY KIND, either express or
// implied. See the LICENSE-MIT and LICENSE-APACHE files for the
// specific language governing permissions and limitations under
// each license.

use c2pa::{create_signer, BoxedSigner, SigningAlg};
use serde::Deserialize;

use crate::{Error, Result};

/// SignerInfo provides the information needed to create a signer
/// and sign a manifest.
#[derive(Clone, Debug, Default, Deserialize)]
pub struct SignerInfo {
    /// The alg field is used to determine the signing algorithm.
    pub alg: String,
    /// The public certificate used to sign the manifest in PEM format.
    pub sign_cert: Vec<u8>,
    /// The private key used to sign the manifest in PEM format.
    pub private_key: Vec<u8>,
    /// The ta_url field is an optional URL used to specify a timestamp server.
    pub ta_url: Option<String>,
}

impl SignerInfo {
    /// Create a SignerInfo from a JSON formatted SignerInfo string
    pub fn from_json(json: &str) -> Result<Self> {
        serde_json::from_str(json).map_err(|e| Error::Json(e.to_string()))
    }

    // Returns the signing algorithm converted from string format
    fn alg(&self) -> Result<SigningAlg> {
        self.alg
            .to_lowercase()
            .parse()
            .map_err(|_| Error::Other("Invalid signing algorithm".to_string()))
    }

    /// Create a signer from the SignerInfo
    pub fn signer(&self) -> Result<BoxedSigner> {
        create_signer::from_keys(
            &self.sign_cert,
            &self.private_key,
            self.alg()?,
            self.ta_url.clone(),
        )
        .map_err(Error::from_c2pa_error)
    }
}

#[cfg(test)]
mod tests {
    use serde_json::json;

    use super::*;

    #[test]
    fn test_signer_info_valid() {
        let json = json!({
            "alg": "Es256",
            "sign_cert": b"test_cert".to_vec(), // Convert string to Vec<u8>
            "private_key": b"test_key".to_vec(), // Convert string to Vec<u8>
            "ta_url": "https://timestamp.example.com"
        })
        .to_string();

        let signer_info = SignerInfo::from_json(&json).unwrap();
        assert_eq!(signer_info.alg, "Es256");
        assert_eq!(signer_info.sign_cert, b"test_cert");
        assert_eq!(signer_info.private_key, b"test_key");
        assert_eq!(
            signer_info.ta_url.as_deref(),
            Some("https://timestamp.example.com")
        );
    }

    #[test]
    fn test_signer_info_missing_fields() {
        let json = json!({
            "alg": "Es256",
            "sign_cert": b"test_cert".to_vec() // Convert string to Vec<u8>
        })
        .to_string();

        let result = SignerInfo::from_json(&json);
        assert!(result.is_err());
        let signer_info = result.unwrap_err();
        assert!(signer_info
            .to_string()
            .starts_with("Json: missing field `private_key`"));
    }

    #[test]
    fn test_signer_info_invalid_json() {
        let json = r#"
        {
            "alg": "Es256",
            "sign_cert": [100, 71, 86, 122, 100, 70, 57, 106, 90, 88, 74, 48],
            "private_key": [100, 71, 86, 122, 100, 70, 57, 114, 90, 88, 107, 61],
        }
        "#; // Invalid JSON due to trailing comma
        let result = SignerInfo::from_json(json);
        assert!(result.is_err());
    }

    #[test]
    fn test_signer_info_invalid_algorithm() {
        let json = json!({
            "alg": "invalid_alg",
            "sign_cert": b"test_cert".to_vec(), // Convert string to Vec<u8>
            "private_key": b"test_key".to_vec() // Convert string to Vec<u8>
        })
        .to_string();

        let signer_info = SignerInfo::from_json(&json).unwrap();
        let result = signer_info.alg();
        assert!(result.is_err());
        assert_eq!(
            result.unwrap_err().to_string(),
            "Other: Invalid signing algorithm"
        );
    }

    #[test]
    fn test_signer_creation_fail() {
        let json = json!({
            "alg": "Es256",
            "sign_cert": b"test_cert".to_vec(), // Convert string to Vec<u8>
            "private_key": b"test_key".to_vec() // Convert string to Vec<u8>
        })
        .to_string();

        let signer_info = SignerInfo::from_json(&json).unwrap();
        let signer = signer_info.signer();
        assert!(signer.is_err());
    }
}