/extern/spongycastle/pkix/src/main/java/org/spongycastle/pkcs/bc/BcPKCS12PBEOutputEncryptorBuilder.java
https://gitlab.com/vizilo/fdroidclient · Java · 77 lines · 62 code · 15 blank · 0 comment · 2 complexity · 1589e22bdc9012f54756bb892a52a77b MD5 · raw file
- package org.spongycastle.pkcs.bc;
- import java.io.OutputStream;
- import java.security.SecureRandom;
- import org.spongycastle.asn1.ASN1ObjectIdentifier;
- import org.spongycastle.asn1.pkcs.PKCS12PBEParams;
- import org.spongycastle.asn1.x509.AlgorithmIdentifier;
- import org.spongycastle.crypto.BlockCipher;
- import org.spongycastle.crypto.BufferedBlockCipher;
- import org.spongycastle.crypto.CipherParameters;
- import org.spongycastle.crypto.ExtendedDigest;
- import org.spongycastle.crypto.digests.SHA1Digest;
- import org.spongycastle.crypto.generators.PKCS12ParametersGenerator;
- import org.spongycastle.crypto.io.CipherOutputStream;
- import org.spongycastle.crypto.paddings.PKCS7Padding;
- import org.spongycastle.crypto.paddings.PaddedBufferedBlockCipher;
- import org.spongycastle.operator.GenericKey;
- import org.spongycastle.operator.OutputEncryptor;
- public class BcPKCS12PBEOutputEncryptorBuilder
- {
- private ExtendedDigest digest;
- private BufferedBlockCipher engine;
- private ASN1ObjectIdentifier algorithm;
- private SecureRandom random;
- public BcPKCS12PBEOutputEncryptorBuilder(ASN1ObjectIdentifier algorithm, BlockCipher engine)
- {
- this(algorithm, engine, new SHA1Digest());
- }
- public BcPKCS12PBEOutputEncryptorBuilder(ASN1ObjectIdentifier algorithm, BlockCipher engine, ExtendedDigest pbeDigest)
- {
- this.algorithm = algorithm;
- this.engine = new PaddedBufferedBlockCipher(engine, new PKCS7Padding());
- this.digest = pbeDigest;
- }
- public OutputEncryptor build(final char[] password)
- {
- if (random == null)
- {
- random = new SecureRandom();
- }
- final byte[] salt = new byte[20];
- final int iterationCount = 1024;
- random.nextBytes(salt);
- final PKCS12PBEParams pbeParams = new PKCS12PBEParams(salt, iterationCount);
- CipherParameters params = PKCS12PBEUtils.createCipherParameters(algorithm, digest, engine.getBlockSize(), pbeParams, password);
- engine.init(true, params);
- return new OutputEncryptor()
- {
- public AlgorithmIdentifier getAlgorithmIdentifier()
- {
- return new AlgorithmIdentifier(algorithm, pbeParams);
- }
- public OutputStream getOutputStream(OutputStream out)
- {
- return new CipherOutputStream(out, engine);
- }
- public GenericKey getKey()
- {
- return new GenericKey(new AlgorithmIdentifier(algorithm, pbeParams), PKCS12ParametersGenerator.PKCS12PasswordToBytes(password));
- }
- };
- }
- }