PageRenderTime 42ms CodeModel.GetById 22ms RepoModel.GetById 0ms app.codeStats 0ms

/src/main/java/com/google/code/p/keytooliui/ktl/util/jarsigner/KTLShkAbs.java

http://keytool-iui.googlecode.com/
Java | 359 lines | 159 code | 68 blank | 132 comment | 12 complexity | 61cb36f847f17d1cb87e2d538f070461 MD5 | raw file
    

  1. package com.google.code.p.keytooliui.ktl.util.jarsigner;

    2. 

  2. 

    3. 

  3. /**

    4. 

  4. 

    5. 

  5.     "Shk" for "Shared Key" (Secret Key)

    6. 

  6.     

    7. 

  7.     

    8. 

  8.     known subclasses:

    9. 

  9.     . KTLShkSaveAbs: pending

    10. 

  10.     . KTLShkOpenAbs  

    11. 

  11. 

    12. 

  12. **/

    13. 

  13. 

    14. 

  14. 

    15. 

  15. import java.io.DataInputStream;

    16. 

  16. import java.io.File;

    17. 

  17. import java.io.FileInputStream;

    18. 

  18. import java.io.FileOutputStream;

    19. 

  19. import java.io.IOException;

    20. 

  20. import java.io.InputStream;

    21. 

  21. import java.io.OutputStream;

    22. 

  22. import java.security.InvalidKeyException;

    23. 

  23. import java.security.NoSuchAlgorithmException;

    24. 

  24. import java.security.spec.InvalidKeySpecException;

    25. 

  25. import java.security.spec.KeySpec;

    26. 

  26. import javax.crypto.BadPaddingException;

    27. 

  27. import javax.crypto.Cipher;

    28. 

  28. import javax.crypto.CipherOutputStream;

    29. 

  29. import javax.crypto.IllegalBlockSizeException;

    30. 

  30. import javax.crypto.NoSuchPaddingException;

    31. 

  31. import javax.crypto.SecretKey;

    32. 

  32. import javax.crypto.SecretKeyFactory;

    33. 

  33. import javax.crypto.spec.DESKeySpec;

    34. 

  34. import javax.crypto.spec.DESedeKeySpec;

    35. 

  35. import javax.crypto.spec.SecretKeySpec;

    36. 

  36. import com.google.code.p.keytooliui.shared.lang.*;

    37. 

  37. import com.google.code.p.keytooliui.shared.swing.optionpane.*;

    38. 

  38. import com.google.code.p.keytooliui.shared.util.jarsigner.*;

    39. 

  39. 

    40. 

  40. // ----

    41. 

  41. import java.security.KeyStore;

    42. 

  42. import java.security.PublicKey;

    43. 

  43. import java.security.KeyStoreException;

    44. 

  44. import java.security.Provider;

    45. 

  45. // --

    46. 

  46. import java.security.cert.Certificate;

    47. 

  47. import java.security.cert.X509Certificate;

    48. 

  48. // ----

    49. 

  49. 

    50. 

  50. import java.awt.*;

    51. 

  51. import java.util.*;

    52. 

  52. 

    53. 

  53. public abstract class KTLShkAbs extends KTLAbs

    54. 

  54. {

    55. 

  55.     // -------------

    56. 

  56.     // public static

    57. 

  57.     

    58. 

  58.     /* IN PROGRESS, TO BE USED BY keystoreManager 

    59. 

  59.      public static boolean s_createKey(

    60. 

  60.         Frame frmOwner,

    61. 

  61.     

    62. 

  62.         String strPathAbsOpenKst, // existing keystore

    63. 

  63.         char[] chrsPasswdOpenKst,

    64. 

  64.         String strProviderKst, 

    65. 

  65.         String strSignatureAlgo)

    66. 

  66.     {

    67. 

  67.         String strMethod = "s_createKey(...)";

    68. 

  68.         

    69. 

  69.         File fleOpen = null;

    70. 

  70.         

    71. 

  71.         // ---

    72. 

  72.         

    73. 

  73.         if (fleOpen == null)

    74. 

  74.         {

    75. 

  75.             return true; // maybe aborted by user

    76. 

  76.         }

    77. 

  77.         

    78. 

  78.         // ----

    79. 

  79.         

    80. 

  80.         SecretKey sky = KTLShkAbs._s_readKey_(fleOpen, strSignatureAlgo);

    81. 

  81.         

    82. 

  82.         if (sky == null)

    83. 

  83.         {

    84. 

  84.             

    85. 

  85.             return false;

    86. 

  86.         }

    87. 

  87.         

    88. 

  88.         char[] chrsPasswdShk = null;

    89. 

  89.         

    90. 

  90.         // ---

    91. 

  91.         

    92. 

  92.         if (chrsPasswdShk == null)

    93. 

  93.         {

    94. 

  94.             

    95. 

  95.             return true; // maybe aborted by user

    96. 

  96.         }

    97. 

  97.         

    98. 

  98.         // ----

    99. 

  99.         if (! UtilKstAbs.s_setKeyEntry(frmOwner, 

    100. 

  100.             kstOpen, strAliasShk, ShkNew, chrsPasswdShk, null))

    101. 

  101.         {

    102. 

  102.             MySystem.s_printOutError(this, strMethod, "failed");

    103. 

  103.             return false;

    104. 

  104.         }

    105. 

  105.         

    106. 

  106.         

    107. 

  107.         // ending

    108. 

  108.         return true;

    109. 

  109.     }*/

    110. 

  110.     

    111. 

  111.     

    112. 

  112.    

    113. 

  113.     protected static SecretKey _s_readKey_(File fleOpen, String strSignatureAlgoCandidate)

    114. 

  114.         throws IOException, NoSuchAlgorithmException,

    115. 

  115.                InvalidKeyException, InvalidKeySpecException

    116. 

  116.     {

    117. 

  117.         String strMethod = "_s_readKey_(...)";

    118. 

  118.         

    119. 

  119.         String strSignatureAlgo = null;

    120. 

  120.         

    121. 

  121.         for (int i=0; i<KTLAbs.f_s_strsSigAlgoSKJceks.length; i++)

    122. 

  122.         {

    123. 

  123.             if (! strSignatureAlgoCandidate.equalsIgnoreCase(KTLAbs.f_s_strsSigAlgoSKJceks[i]))

    124. 

  124.                 continue;

    125. 

  125.             

    126. 

  126.             strSignatureAlgo = KTLAbs.f_s_strsSigAlgoSKJceks[i];

    127. 

  127.             break;

    128. 

  128.         }

    129. 

  129.         

    130. 

  130.         if (strSignatureAlgo == null)

    131. 

  131.         {

    132. 

  132.             MySystem.s_printOutExit(strMethod, "uncaught strSignatureAlgoCandidate:" + strSignatureAlgoCandidate);

    133. 

  133.         }

    134. 

  134.         

    135. 

  135.         // Read the raw bytes from the keyfile

    136. 

  136.         DataInputStream dis = new DataInputStream(new FileInputStream(fleOpen));

    137. 

  137.         byte[] bytsRawKey = new byte[(int)fleOpen.length( )];

    138. 

  138.         dis.readFully(bytsRawKey);

    139. 

  139.         dis.close( );

    140. 

  140.         

    141. 

  141.         SecretKey sky = null;

    142. 

  142.         

    143. 

  143.         if (strSignatureAlgo.equalsIgnoreCase("DES"))

    144. 

  144.         {

    145. 

  145.             DESKeySpec obj = new DESKeySpec(bytsRawKey);

    146. 

  146.             SecretKeyFactory skf = SecretKeyFactory.getInstance(strSignatureAlgo);

    147. 

  147.             sky = skf.generateSecret(obj);

    148. 

  148.         }

    149. 

  149.         

    150. 

  150.         else if (strSignatureAlgo.equalsIgnoreCase("DESede"))

    151. 

  151.         {

    152. 

  152.             DESedeKeySpec obj = new DESedeKeySpec(bytsRawKey);

    153. 

  153.             SecretKeyFactory skf = SecretKeyFactory.getInstance(strSignatureAlgo);

    154. 

  154.             sky = skf.generateSecret(obj);

    155. 

  155.         }

    156. 

  156.         

    157. 

  157.         else

    158. 

  158.         {

    159. 

  159.             SecretKeySpec obj = new SecretKeySpec(bytsRawKey, strSignatureAlgo);

    160. 

  160.             // BUG !SecretKeyFactory skf = SecretKeyFactory.getInstance(strSignatureAlgo);

    161. 

  161.             sky = (SecretKey) obj;   //skf.generateSecret(obj);

    162. 

  162.         }

    163. 

  163.         

    164. 

  164.         return sky;

    165. 

  165.     }

    166. 

  166.     

    167. 

  167.     

    168. 

  168.     // ----------------

    169. 

  169.     // PROTECTED STATIC

    170. 

  170. 

    171. 

  171.     

    172. 

  172.     /*

    173. 

  173.      *      Memo: SecretKeyFactory for SunJCE, with JRE1.6

    174. 

  174.             DES

    175. 

  175.             DESede

    176. 

  176.             PBEWithMD5AndDES

    177. 

  177.             PBEWithMD5AndTripleDES

    178. 

  178.             PBEWithSHA1AndDESede

    179. 

  179.             PBEWithSHA1AndRC2_40

    180. 

  180.             PBKDF2WithHmacSHA1 

    181. 

  181.     */

    182. 

  182.     protected static void _writeKey_(SecretKey sky, File fleSave)

    183. 

  183.         throws IOException, NoSuchAlgorithmException, InvalidKeySpecException, Exception

    184. 

  184.     {

    185. 

  185.         

    186. 

  186.         String strMethod = "KTLShkAbs._writeKey_(...)";

    187. 

  187. 

    188. 

  188.            

    189. 

  189.         String strAlgoSecretKey = sky.getAlgorithm();

    190. 

  190.         

    191. 

  191.         //KeySpec ksc = null;

    192. 

  192.         byte[] bytsRawKey = null;

    193. 

  193.         

    194. 

  194.         if (strAlgoSecretKey.equalsIgnoreCase("DES"))

    195. 

  195.         {

    196. 

  196.             SecretKeyFactory skf = SecretKeyFactory.getInstance(strAlgoSecretKey);

    197. 

  197.             DESKeySpec spec = (DESKeySpec) skf.getKeySpec(sky, DESKeySpec.class);

    198. 

  198.             bytsRawKey = spec.getKey();

    199. 

  199.         }

    200. 

  200.         

    201. 

  201.         else if (strAlgoSecretKey.equalsIgnoreCase("DESede"))

    202. 

  202.         {

    203. 

  203.             SecretKeyFactory skf = SecretKeyFactory.getInstance(strAlgoSecretKey);

    204. 

  204.             DESedeKeySpec spec = (DESedeKeySpec) skf.getKeySpec(sky, DESedeKeySpec.class);

    205. 

  205.             bytsRawKey = spec.getKey( );

    206. 

  206.         }

    207. 

  207.         

    208. 

  208.         else

    209. 

  209.         {

    210. 

  210.             // beg test

    211. 

  211.             //SecretKeyFactory skf = SecretKeyFactory.getInstance(strAlgoSecretKey/*, "BC"*/);

    212. 

  212.             

    213. 

  213.             //SecretKeySpec spec = (SecretKeySpec) skf.getKeySpec(sky, KeySpec.class);

    214. 

  214.             //SecretKeySpec spec = (SecretKeySpec) sky; // test, suggested by sean mullan

    215. 

  215.             //bytsRawKey = spec.getEncoded();

    216. 

  216.             

    217. 

  217.             

    218. 

  218.             

    219. 

  219.             /*

    220. 

  220.             byte[] raw = sky.getEncoded();

    221. 

  221.             SecretKeySpec skeySpec = new SecretKeySpec(raw, "Blowfish");

    222. 

  222.             */

    223. 

  223.             

    224. 

  224.             

    225. 

  225.             

    226. 

  226.             SecretKeySpec sks = (SecretKeySpec) sky; // test, suggested by sean mullan

    227. 

  227.             bytsRawKey = sks.getEncoded();

    228. 

  228.             

    229. 

  229.             

    230. 

  230.             // end test

    231. 

  231.             

    232. 

  232.             

    233. 

  233.             //String strBody = "DEV ERROR, unsupported algo, strAlgoSecretKey=" + strAlgoSecretKey;

    234. 

  234.             //throw new Exception(strBody);

    235. 

  235.         }

    236. 

  236.                 

    237. 

  237. 

    238. 

  238.         // Write the raw key to the file

    239. 

  239.         FileOutputStream fos = new FileOutputStream(fleSave);

    240. 

  240.         fos.write(bytsRawKey);

    241. 

  241.         fos.close( );

    242. 

  242.     }

    243. 

  243.     

    244. 

  244.     

    245. 

  245.     

    246. 

  246.     /** 

    247. 

  247.      * Use the specified key to decrypt bytes ready from the input 

    248. 

  248.      * stream and write them to the output stream.  This method 

    249. 

  249.      * uses Cipher directly to show how it can be done without 

    250. 

  250.      * CipherInputStream and CipherOutputStream.

    251. 

  251.      **/

    252. 

  252.     protected static void _s_decrypt_(

    253. 

  253.             SecretKey key, 

    254. 

  254.             InputStream in, 

    255. 

  255.             OutputStream out,

    256. 

  256.             String strInstanceCipher)

    257. 

  257.         throws 

    258. 

  258.             NoSuchAlgorithmException, 

    259. 

  259.             InvalidKeyException, 

    260. 

  260.             IOException,

    261. 

  261.             IllegalBlockSizeException, 

    262. 

  262.             NoSuchPaddingException,

    263. 

  263.             BadPaddingException

    264. 

  264.     {

    265. 

  265.         

    266. 

  266.         // Create and initialize the decryption engine

    267. 

  267.         Cipher cipher = Cipher.getInstance(strInstanceCipher);

    268. 

  268.         cipher.init(Cipher.DECRYPT_MODE, key);

    269. 

  269. 

    270. 

  270.         // Read bytes, decrypt, and write them out.

    271. 

  271.         byte[] buffer = new byte[2048];

    272. 

  272.         int bytesRead;

    273. 

  273.         

    274. 

  274.         while((bytesRead = in.read(buffer)) != -1) {

    275. 

  275.             out.write(cipher.update(buffer, 0, bytesRead));

    276. 

  276.         }

    277. 

  277. 

    278. 

  278.         // Write out the final bunch of decrypted bytes

    279. 

  279.         out.write(cipher.doFinal( ));

    280. 

  280.         out.flush( );

    281. 

  281.     }

    282. 

  282.     

    283. 

  283.     /** 

    284. 

  284.      * Use the specified key to encrypt bytes from the input stream

    285. 

  285.      * and write them to the output stream.  This method uses 

    286. 

  286.      * CipherOutputStream to perform the encryption and write bytes at the

    287. 

  287.      * same time.

    288. 

  288.      **/

    289. 

  289.     protected static void _s_encrypt_(

    290. 

  290.             SecretKey sky, 

    291. 

  291.             InputStream ism, 

    292. 

  292.             OutputStream osm,

    293. 

  293.             String strInstanceCipher)

    294. 

  294.         throws 

    295. 

  295.             NoSuchAlgorithmException, 

    296. 

  296.             InvalidKeyException,

    297. 

  297.             NoSuchPaddingException, 

    298. 

  298.             IOException

    299. 

  299.     {

    300. 

  300.         // Create and initialize the encryption engine

    301. 

  301.         Cipher cip = Cipher.getInstance(strInstanceCipher);

    302. 

  302.         cip.init(Cipher.ENCRYPT_MODE, sky);

    303. 

  303. 

    304. 

  304.         // Create a special output stream to do the work for us

    305. 

  305.         CipherOutputStream cos = new CipherOutputStream(osm, cip);

    306. 

  306. 

    307. 

  307.         // Read from the input and write to the encrypting output stream

    308. 

  308.         byte[] bytsBuffer = new byte[2048];

    309. 

  309.         int intBytesRead;

    310. 

  310.         

    311. 

  311.         while((intBytesRead = ism.read(bytsBuffer)) != -1) 

    312. 

  312.         {

    313. 

  313.             cos.write(bytsBuffer, 0, intBytesRead);

    314. 

  314.         }

    315. 

  315.         

    316. 

  316.         cos.close( );

    317. 

  317. 

    318. 

  318.         // For extra security, don't leave any plaintext hanging around memory.

    319. 

  319.         java.util.Arrays.fill(bytsBuffer, (byte) 0);

    320. 

  320.     }

    321. 

  321.     

    322. 

  322.     /*

    323. 

  323.      *public static byte[] encrypt(Key key, String text) throws Exception {

    324. 

  324. Cipher cipher = Cipher.getInstance("RSA");

    325. 

  325. cipher.init(javax.crypto.Cipher.ENCRYPT_MODE, key);

    326. 

  326. byte[] encrypted = cipher.doFinal(text.getBytes());

    327. 

  327. return encrypted;

    328. 

  328. }

    329. 

  329. 

    330. 

  330. public static String decrypt(Key key, byte[] encrypted) throws Exception {

    331. 

  331. Cipher cipher = Cipher.getInstance("RSA");

    332. 

  332. cipher.init(javax.crypto.Cipher.DECRYPT_MODE, key);

    333. 

  333. byte[] decrypted = cipher.doFinal(encrypted);

    334. 

  334. return new String(decrypted);

    335. 

  335. }

    336. 

  336.      */

    337. 

  337.     

    338. 

  338.     

    339. 

  339.    

    340. 

  340.     

    341. 

  341.     // ---------

    342. 

  342.     // PROTECTED

    343. 

  343.     

    344. 

  344. 

    345. 

  345.     protected KTLShkAbs(

    346. 

  346.         Frame frmOwner, 

    347. 

  347.       

    348. 

  348.         // input

    349. 

  349.         String strPathAbsKst, // existing keystore of type [JKS-JCEKS-PKCS12]

    350. 

  350.         char[] chrsPasswdKst,

    351. 

  351.         

    352. 

  352.         String strProviderKst

    353. 

  353.         

    354. 

  354.         )

    355. 

  355.     {

    356. 

  356.         super(frmOwner,  strPathAbsKst, chrsPasswdKst, strProviderKst);

    357. 

  357.     }

    358. 

  358. 

    359. 

  359. }

    360. 

  360.