svdgraaf
diff --git a/‎src/common/AWSClient4.cpp
Lines changed: 130 additions & 231 deletions b/‎src/common/AWSClient4.cpp
Lines changed: 130 additions & 231 deletions
@@ -2,6 +2,7 @@
  * AWSClient.cpp
  *
  *  See AWSClient.h for description.
+ *  See http://docs.aws.amazon.com/AmazonS3/latest/API/sig-v4-header-based-auth.html
  *
  */
 
@@ -13,7 +14,6 @@
 #include <string.h>
 #include <stdlib.h>
 #include <stdio.h>
-#include <map>
 
 //
 // /* Constants string, formats, and lengths. */
@@ -54,6 +54,8 @@ AWSClient4::AWSClient4() {
     awsKeyID = 0;
     httpClient = 0;
     dateTimeProvider = 0;
+    method = 0;
+    uri = 0;
 }
 
 void AWSClient4::setAWSRegion(const char * awsRegion) {
@@ -92,235 +94,111 @@ void AWSClient4::setHttpClient(IHttpClient* httpClient) {
 void AWSClient4::setDateTimeProvider(IDateTimeProvider* dateTimeProvider) {
     this->dateTimeProvider = dateTimeProvider;
 }
-//
-// AWSClient4::~AWSClient4() {
-//     if (awsRegion != 0)
-//         delete[] awsRegion;
-//     if (awsEndpoint != 0)
-//         delete[] awsEndpoint;
-//     if (awsSecKey != 0)
-//         delete[] awsSecKey;
-//     if (awsKeyID != 0)
-//         delete[] awsKeyID;
-// }
-//
-// void AWSClient4::initSignedHeaders() {
-//     /* For each of the formats for unsigned headers, determine the size of the
-//      * formatted string, allocate that much space in the next available element
-//      * in the headers array, create the string, and add it's length to the
-//      * headerLens array. */
-//
-//     int contentLen = payload.length();
-//     int len = CONTENT_LENGTH_HEADER_LEN + digitCount(contentLen);
-//     headers[headersCreated] = new char[len + 1]();
-//     sprintf(headers[headersCreated], CONTENT_LENGTH_HEADER, contentLen);
-//     headerLens[headersCreated++] = len;
-//
-//     len = CONTENT_TYPE_HEADER_LEN + strlen(contentType);
-//     headers[headersCreated] = new char[len + 1]();
-//     sprintf(headers[headersCreated], CONTENT_TYPE_HEADER, contentType);
-//     headerLens[headersCreated++] = len;
-//
-//     char* host = createHostString();
-//     len = HOST_HEADER_LEN + strlen(host);
-//     headers[headersCreated] = new char[len + 1]();
-//
-//     sprintf(headers[headersCreated], HOST_HEADER, host);
-//     headerLens[headersCreated++] = len;
-//
-//     len = X_AMZ_DATE_HEADER_LEN + AWS_DATE_LEN2 + AWS_TIME_LEN2;
-//     headers[headersCreated] = new char[len + 1]();
-//     sprintf(headers[headersCreated], X_AMZ_DATE_HEADER, awsDate, awsTime);
-//     headerLens[headersCreated++] = len;
-// }
-//
-// char* AWSClient4::createHostString(void) {
-//   if(awsDomain[0] != '\0') {
-//     return awsDomain;
-//   } else {
-//     char* host = new char[200]();
-//     sprintf(host, "%s.%s.%s", awsService, awsRegion, awsEndpoint);
-//     return host;
-//   }
-// }
-//
-// char* AWSClient4::createStringToSign(void) {
-//     SHA256* sha256 = new SHA256();
-//     char* hashed;
-//     /* Calculate length of canonicalForm string. */
-//     int canonicalFormLen = CANONICAL_FORM_POST_LINE_LEN;
-//     for (int i = 0; i < headersCreated; i++) {
-//         /* +1 for newlines */
-//         canonicalFormLen += *(headerLens + i) + 1;
-//     }
-//     /* +2 for newlines. */
-//     canonicalFormLen += SIGNED_HEADERS_LEN + HASH_HEX_LEN2 + 2;
-//
-//     char* canonicalForm = new char[canonicalFormLen + 1]();
-//
-//     /* Write the cannonicalForm string. */
-//     int canonicalFormWritten = 0;
-//     canonicalFormWritten += strlen(
-//             strcpy(canonicalForm + canonicalFormWritten,
-//                     CANONICAL_FORM_POST_LINE));
-//     for (int i = 0; i < headersCreated; i++) {
-//         canonicalFormWritten += sprintf(canonicalForm + canonicalFormWritten,
-//                 "%s\n", *(headers + i));
-//     }
-//     canonicalFormWritten += sprintf(canonicalForm + canonicalFormWritten,
-//             "\n%s\n", SIGNED_HEADERS);
-//     hashed = (*sha256)(payload.getCStr(), payload.length());
-//     strcpy(canonicalForm + canonicalFormWritten, hashed);
-//     delete[] hashed;
-//     canonicalFormWritten += HASH_HEX_LEN2;
-//
-//     /* Hash the canonicalForm string. */
-//     hashed = (*sha256)(canonicalForm, canonicalFormWritten);
-//     delete sha256;
-//
-//     delete[] canonicalForm;
-//
-//     /* Determine the size to the string to sign. */
-//     int toSignLen = TO_SIGN_TEMPLATE_LEN + 2 * AWS_DATE_LEN2 + AWS_TIME_LEN2
-//             + strlen(awsRegion) + strlen(awsService) + HASH_HEX_LEN2;
-//
-//     /* Create and return the string to sign. */
-//     char* toSign = new char[toSignLen + 1]();
-//     sprintf(toSign, TO_SIGN_TEMPLATE, awsDate, awsTime, awsDate, awsRegion,
-//             awsService, hashed);
-//     delete[] hashed;
-//     return toSign;
-//
-// }
-// char* AWSClient4::createSignature(const char* toSign) {
-//
-//     /* Allocate memory for the signature */
-//     char* signature = new char[HASH_HEX_LEN2 + 1]();
-//
-//     /* Create the signature key */
-//     /* + 4 for "AWS4" */
-//     int keyLen = strlen(awsSecKey) + 4;
-//     char* key = new char[keyLen + 1]();
-//     sprintf(key, "AWS4%s", awsSecKey);
-//
-//     /* repeatedly apply hmac with the appropriate values. See
-//      * http://docs.aws.amazon.com/general/latest/gr/sigv4-calculate-signature.html
-//      * for algorithm. */
-//     char* k1 = hmacSha256(key, keyLen, awsDate, strlen(awsDate));
-//     delete[] key;
-//     char* k2 = hmacSha256(k1, SHA256_DEC_HASH_LEN, awsRegion,
-//             strlen(awsRegion));
-//     delete[] k1;
-//     char* k3 = hmacSha256(k2, SHA256_DEC_HASH_LEN, awsService,
-//             strlen(awsService));
-//     delete[] k2;
-//     char* k4 = hmacSha256(k3, SHA256_DEC_HASH_LEN, "aws4_request", 12);
-//     delete[] k3;
-//     char* k5 = hmacSha256(k4, SHA256_DEC_HASH_LEN, toSign, strlen(toSign));
-//     delete[] k4;
-//
-//     /* Convert the chars in hash to hex for signature. */
-//     for (int i = 0; i < SHA256_DEC_HASH_LEN; ++i) {
-//         sprintf(signature + 2 * i, "%02lx", 0xff & (unsigned long) k5[i]);
-//     }
-//     delete[] k5;
-//     return signature;
-// }
-//
-// void AWSClient4::initUnsignedHeaders(const char* signature) {
-//     int len = AUTHORIZATION_HEADER_LEN + strlen(awsKeyID) + AWS_DATE_LEN2
-//             + strlen(awsRegion) + strlen(awsService) + SIGNED_HEADERS_LEN
-//             + HASH_HEX_LEN2;
-//     headers[headersCreated] = new char[len + 1]();
-//     sprintf(headers[headersCreated], AUTHORIZATION_HEADER, awsKeyID, awsDate,
-//             awsRegion, awsService, SIGNED_HEADERS, signature);
-//     headerLens[headersCreated++] = len;
-// /*
-//     len = CONNECTION_HEADER_LEN;
-//     headers[headersCreated] = new char[len + 1]();
-//     strcpy(headers[headersCreated], CONNECTION_HEADER);
-//     headerLens[headersCreated++] = len;
-// */
-// }
-//
-// void AWSClient4::createRequestInit(MinimalString &reqPayload) {
-//     //initialize object-scoped variables
-//     const char* dateTime = dateTimeProvider->getDateTime();
-//
-//     // @TODO: not sure yet why sprintf doesn't work here
-//     strncpy(awsDate, dateTime, 8);
-//     awsDate[9] = '\0';
-//     strncpy(awsTime, dateTime + 8, 6);
-//     awsTime[7] = '\0';
-//
-//     Serial.println(awsDate);
-//     Serial.println(awsTime);
-//
-//     payload = reqPayload;
-//     headersCreated = 0;
-//
-//     //Create signature and headers
-//     initSignedHeaders();
-//     char* toSign = createStringToSign();
-//     char* signature = createSignature(toSign);
-//     delete[] toSign;
-//     initUnsignedHeaders(signature);
-//     delete[] signature;
-// }
-//
-// void AWSClient4::createRequestCleanup() {
-//     /* Free each header */
-//     for (int i = 0; i < headersCreated; i++) {
-//         delete[] headers[i];
-//     }
-// }
-//
-// char* AWSClient4::headersToRequest() {
-//     /* Determine whether to use https or http postLine values. */
-//     int postLineLen =
-//             httpS ? HTTPS_REQUEST_POST_LINE_LEN : HTTP_REQUEST_POST_LINE_LEN;
-//     const char* postLine =
-//             httpS ? HTTPS_REQUEST_POST_LINE : HTTP_REQUEST_POST_LINE;
-//
-//     /* Calculate length of httpRequest string. */
-//     char* host = createHostString();
-//     int httpRequestLen;
-//
-//     // if a path is set, append it to the post header
-//     if(awsPath[0] != '\0') {
-//       httpRequestLen = postLineLen + strlen(host) + strlen(awsPath);
-//     } else {
-//       httpRequestLen = postLineLen + strlen(host);
-//     }
-//
-//     for (int i = 0; i < headersCreated; i++) {
-//         /* +1 for newline. */
-//         httpRequestLen += *(headerLens + i) + 1;
-//     }
-//     /* +1 for newline. */
-//     httpRequestLen += payload.length() + 1;
-//
-//     /* Create and write to the httpRequest string. */
-//     char* httpRequest = new char[httpRequestLen + 1]();
-//     int httpRequestWritten = 0;
-//
-//     // if a path is set, append it to the post header
-//     if(awsPath[0] != '\0') {
-//       httpRequestWritten += sprintf(httpRequest + httpRequestWritten, postLine, host, awsPath);
-//     } else {
-//       httpRequestWritten += sprintf(httpRequest + httpRequestWritten, postLine, host);
-//     }
-//     for (int i = 0; i < headersCreated; i++) {
-//         httpRequestWritten += sprintf(httpRequest + httpRequestWritten, "%s\n",
-//                 *(headers + i));
-//     }
-//     httpRequestWritten += sprintf(httpRequest + httpRequestWritten, "\n%s",
-//             payload.getCStr());
-//
-//     return httpRequest;
-// }
 
+AWSClient4::~AWSClient4() {
+    if (awsRegion != 0)
+        delete[] awsRegion;
+    if (awsEndpoint != 0)
+        delete[] awsEndpoint;
+    if (awsSecKey != 0)
+        delete[] awsSecKey;
+    if (awsKeyID != 0)
+        delete[] awsKeyID;
+}
+
+char* AWSClient4::createHost() {
+    // return "example.com";
+    return awsDomain;
+}
+
+char* AWSClient4::createCanonicalHeaders() {
+  // headers, alphabetically sorted, lowercase, eg: key:value
+  // content-type:x
+  // host:host
+  // x-amz-content-sha256:hash
+  // x-amz-date:date
+  char canonical_headers[500] = "";
+  sprintf(canonical_headers, "%scontent-type:%s\n", canonical_headers, contentType);
+  sprintf(canonical_headers, "%shost:%s\n", canonical_headers, createHost());
+  sprintf(canonical_headers, "%sx-amz-content-sha256:%s\n", canonical_headers, payloadHash);
+  sprintf(canonical_headers, "%sx-amz-date:%sT%sZ\n", canonical_headers, awsDate, awsTime);
+  return canonical_headers;
+}
+
+char* AWSClient4::createRequestHeaders(char* signature) {
+  char headers[1000] = "";
+  sprintf(headers, "%sContent-Type: %s\n", headers, contentType);
+  sprintf(headers, "%sHost: %s\n", headers, createHost());
+  sprintf(headers, "%sx-amz-content-sha256: %s\n", headers, payloadHash);
+  sprintf(headers, "%sx-amz-date: %sT%sZ\n", headers, awsDate, awsTime);
+  sprintf(headers, "%sAuthorization: AWS4-HMAC-SHA256 Credential=%s/%s/%s/%s/aws4_request,SignedHeaders=%s,Signature=%s\n", headers, awsKeyID, awsDate, awsRegion, awsService, signedHeaders, signature);
+  return headers;
+}
+
+char* AWSClient4::createStringToSign(char* canonical_request) {
+  char string_to_sign[700] = "AWS4-HMAC-SHA256\n";
+  sprintf(string_to_sign, "%s%sT%sZ\n", canonical_request, awsDate, awsTime);
+  sprintf(string_to_sign, "%s%s/%s/%s/aws4_request\n", canonical_request, awsDate, awsRegion, awsService);
+
+  SHA256* sha256 = new SHA256();
+  char* hashed = (*sha256)(canonical_request, strlen(canonical_request));
+  delete sha256;
+
+  sprintf(string_to_sign, "%s%s", canonical_request, hashed);
+
+  return string_to_sign;
+}
+
+char* AWSClient4::createCanonicalRequest() {
+  char canonical_request[700] = "";
+  sprintf(canonical_request, "%s%s\n", canonical_request, method); // VERB
+  sprintf(canonical_request, "%s%s\n", canonical_request, uri); // URI
+  sprintf(canonical_request, "%s%s\n", canonical_request, queryString); // queryString
 
+  char* headers = createCanonicalHeaders();
+
+  sprintf(canonical_request, "%s%s", canonical_request, headers); // headers
+  sprintf(canonical_request, "%s%s\n", canonical_request, signedHeaders); // signed_headers
+  sprintf(canonical_request, "%s%s\n", canonical_request, payload.getCStr()); // payload
+
+  return canonical_request;
+}
+
+
+char* AWSClient4::createSignature(const char* toSign) {
+
+    /* Allocate memory for the signature */
+    char* signature = new char[HASH_HEX_LEN4 + 1]();
+
+    /* Create the signature key */
+    /* + 4 for "AWS4" */
+    int keyLen = strlen(awsSecKey) + 4;
+    char* key = new char[keyLen + 1]();
+    sprintf(key, "AWS4%s", awsSecKey);
+
+    /* repeatedly apply hmac with the appropriate values. See
+     * http://docs.aws.amazon.com/general/latest/gr/sigv4-calculate-signature.html
+     * for algorithm. */
+    char* k1 = hmacSha256(key, keyLen, awsDate, strlen(awsDate));
+    delete[] key;
+    char* k2 = hmacSha256(k1, SHA256_DEC_HASH_LEN, awsRegion,
+            strlen(awsRegion));
+    delete[] k1;
+    char* k3 = hmacSha256(k2, SHA256_DEC_HASH_LEN, awsService,
+            strlen(awsService));
+    delete[] k2;
+    char* k4 = hmacSha256(k3, SHA256_DEC_HASH_LEN, "aws4_request", 12);
+    delete[] k3;
+    char* k5 = hmacSha256(k4, SHA256_DEC_HASH_LEN, toSign, strlen(toSign));
+    delete[] k4;
+
+    /* Convert the chars in hash to hex for signature. */
+    for (int i = 0; i < SHA256_DEC_HASH_LEN; ++i) {
+        sprintf(signature + 2 * i, "%02lx", 0xff & (unsigned long) k5[i]);
+    }
+    delete[] k5;
+    return signature;
+}
 
 
 char* AWSClient4::createRequest(MinimalString &reqPayload) {
@@ -329,10 +207,31 @@ char* AWSClient4::createRequest(MinimalString &reqPayload) {
             || httpClient == 0 || dateTimeProvider == 0)
         return 0;
 
-    map<string,string> headers;
-    headers['host'] = "bar";
+    // set date and time
+    // @TODO: find out why sprintf doesn't work
+    const char* dateTime = dateTimeProvider->getDateTime();
+    strncpy(awsDate, dateTime, 8);
+    awsDate[9] = '\0';
+    strncpy(awsTime, dateTime + 8, 6);
+    awsTime[7] = '\0';
+
+    SHA256* sha256 = new SHA256();
+    payloadHash = (*sha256)(reqPayload.getCStr(), reqPayload.length());
+    delete sha256;
+
+    payload = reqPayload;
+
+    char *canonical_request = createCanonicalRequest();
+    char *string_to_sign = createStringToSign(canonical_request);
+    char *signature = createSignature(string_to_sign);
+
+    char *headers = createRequestHeaders(signature);
+
+    char *host = createHost();
+    char* request = new char[strlen(method) + strlen(host) + strlen(awsPath) + strlen(headers) + strlen(reqPayload.getCStr()) + 4]();
+    sprintf(request, "%s %s%s\n%s\n%s", method, createHost(), awsPath, headers, reqPayload.getCStr());
 
-    return headers['host'];
+    return request;
 
     // createRequestInit(reqPayload);
     // char* request = headersToRequest();