PageRenderTime 126ms CodeModel.GetById 16ms RepoModel.GetById 0ms app.codeStats 0ms

/contrib-gestalt/sipbc/jar/src/main/java/com/gestalt/jbi/sip/component/security/CryptoSecurityUtils.java

https://bitbucket.org/pymma/openesb-components
Java | 146 lines | 100 code | 24 blank | 22 comment | 9 complexity | 939451018f3d4ac27e6388e5cf8b7c16 MD5 | raw file
    

  1. /**
    2. 

  2.  *   sip-binding-component - SIP Binding Component
    3. 

  3.  *
    4. 

  4.  *   Copyright (C) 2007 Gestalt, LLC. All Rights Reserved.
    5. 

  5.  *   http://www.gestalt-llc.com/
    6. 

  6.  *
    7. 

  7.  *   This library is free software; you can redistribute it and/or
    8. 

  8.  *   modify it under the terms of the GNU Lesser General Public
    9. 

  9.  *   License version 2.1 as published by the Free Software Foundation.
    10. 

  10.  *
    11. 

  11.  *   This library is distributed in the hope that it will be useful,
    12. 

  12.  *   but WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13.  *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    14. 

  14.  *   Lesser General Public License for more details.
    15. 

  15.  *
    16. 

  16.  *   You should have received a copy of the GNU Lesser General Public
    17. 

  17.  *   License along with this library; if not, write to the Free Software
    18. 

  18.  *   Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301 USA
    19. 

  19.  */
    20. 

  20. package com.gestalt.jbi.sip.component.security;
    21. 

  21. 

  22. import com.sun.org.apache.xerces.internal.impl.dv.util.Base64;
    23. 

  23. import com.sun.jbi.internationalization.Messages;
    24. 

  24. 

  25. import java.io.File;
    26. 

  26. import java.io.FileInputStream;
    27. 

  27. import java.io.FileOutputStream;
    28. 

  28. 

  29. import java.security.GeneralSecurityException;
    30. 

  30. import java.security.KeyStore;
    31. 

  31. import java.util.logging.Logger;
    32. 

  32. import java.util.logging.Level;
    33. 

  33. 

  34. import javax.crypto.Cipher;
    35. 

  35. import javax.crypto.KeyGenerator;
    36. 

  36. import javax.crypto.SecretKey;
    37. 

  37. import javax.crypto.spec.SecretKeySpec;
    38. 

  38. 

  39. 

  40. public class CryptoSecurityUtils implements SecurityUtils {
    41. 

  41.     private static final Logger log = Messages.getLogger(CryptoSecurityUtils.class);
    42. 

  42.     private static Messages messages = Messages.getMessages(CryptoSecurityUtils.class);
    43. 

  43.     private Cipher encipher;
    44. 

  44.     private Cipher decipher;
    45. 

  45.     private String algorithm = "Blowfish";
    46. 

  46.     private File KEY_STORE_FILE = new File("sipbc.jks");
    47. 

  47.     private final String KEYSTORE_TYPE = "JCEKS";
    48. 

  48.     private final char[] STORE_PASSWD = "p4ssw0rd".toCharArray();
    49. 

  49.     private final char[] KEY_PASSWD = "k3yp4ssw0rd".toCharArray();
    50. 

  50.     private final String KEY_ALIAS = "SIPBC";
    51. 

  51. 

  52.     public CryptoSecurityUtils(String algorithm) throws Exception {
    53. 

  53.         this.algorithm = algorithm;
    54. 

  54.         init();
    55. 

  55.     }
    56. 

  56. 

  57.     public CryptoSecurityUtils() throws Exception {
    58. 

  58.         init();
    59. 

  59.     }
    60. 

  60. 

  61.     private void init() throws Exception {
    62. 

  62.         if (log.isLoggable(Level.FINE)) {
    63. 

  63.             log.log(Level.FINE,"Using Algorithm: " + algorithm);
    64. 

  64.         }
    65. 

  65.         encipher = Cipher.getInstance(algorithm);
    66. 

  66.         decipher = Cipher.getInstance(algorithm);
    67. 

  67. 

  68.         SecretKey skey;
    69. 

  69.         KeyStore ks = KeyStore.getInstance(KEYSTORE_TYPE);
    70. 

  70. 

  71.         if (KEY_STORE_FILE.exists()) {
    72. 

  72.             if (log.isLoggable(Level.FINER)) {
    73. 

  73.                 log.log(Level.FINER, "Using the existing key store file.");
    74. 

  74.             }
    75. 

  75.             ks.load(new FileInputStream(KEY_STORE_FILE), STORE_PASSWD);
    76. 

  76.             skey = (SecretKey) ks.getKey(KEY_ALIAS, KEY_PASSWD);
    77. 

  77.         } else {
    78. 

  78.             if (log.isLoggable(Level.FINER)) {
    79. 

  79.                 log.log(Level.FINER, "Unable to locate an existing key store file.  The file will be created.");
    80. 

  80.             }
    81. 

  81.             KeyGenerator kgen = KeyGenerator.getInstance(algorithm);
    82. 

  82.             skey = kgen.generateKey();
    83. 

  83. 

  84.             ks.load(null, STORE_PASSWD);
    85. 

  85. 

  86.             ks.setKeyEntry(KEY_ALIAS, skey, KEY_PASSWD, null);
    87. 

  87. 

  88.             FileOutputStream fos = new FileOutputStream(KEY_STORE_FILE);
    89. 

  89.             ks.store(fos, STORE_PASSWD);
    90. 

  90.             fos.close();
    91. 

  91.         }
    92. 

  92. 

  93.         byte[] raw = skey.getEncoded();
    94. 

  94.         SecretKeySpec skeySpec = new SecretKeySpec(raw, algorithm);
    95. 

  95.         encipher.init(Cipher.ENCRYPT_MODE, skeySpec);
    96. 

  96.         decipher.init(Cipher.DECRYPT_MODE, skeySpec);
    97. 

  97.     }
    98. 

  98. 

  99.     public String decrypt(String password) throws GeneralSecurityException {
    100. 

  100.         byte[] encrypted = decipher.doFinal(Base64.decode(password));
    101. 

  101. 

  102.         return getUTF8String(encrypted);
    103. 

  103.     }
    104. 

  104. 

  105.     public String encrypt(String password) throws GeneralSecurityException {
    106. 

  106.         byte[] encrypted = encipher.doFinal(getUTF8Bytes(password));
    107. 

  107. 

  108.         return Base64.encode(encrypted);
    109. 

  109.     }
    110. 

  110. 

  111.     private byte[] getUTF8Bytes(String data) {
    112. 

  112.         byte[] bytes;
    113. 

  113. 

  114.         if (data == null) {
    115. 

  115.             bytes = new byte[0];
    116. 

  116.         } else {
    117. 

  117.             try {
    118. 

  118.                 bytes = data.getBytes("UTF-8");
    119. 

  119.             } catch (java.io.UnsupportedEncodingException uee) {
    120. 

  120.                 log.log(Level.WARNING,messages.getString("SIPBC-W00500.exceptionPreparingForEncryption"),uee);
    121. 

  121.                 bytes = data.getBytes();
    122. 

  122.             }
    123. 

  123.         }
    124. 

  124. 

  125.         return bytes;
    126. 

  126.     }
    127. 

  127. 

  128.     private String getUTF8String(byte[] data) {
    129. 

  129.         try {
    130. 

  130.             return new String(data, "UTF-8");
    131. 

  131.         } catch (java.io.UnsupportedEncodingException uee) {
    132. 

  132.             log.log(Level.WARNING,messages.getString("SIPBC-W00501.exceptionExtractingAUTF-8StringFromTheBytesProvided"),uee);
    133. 

  133.             return new String(data);
    134. 

  134.         }
    135. 

  135.     }
    136. 

  136. 

  137.     /**
    138. 

  138.      * Deletes keystore file
    139. 

  139.      */
    140. 

  140.     public void cleanup() {
    141. 

  141.         if (log.isLoggable(Level.FINE)) {
    142. 

  142.             log.log(Level.FINE,"Removing Key Store File");
    143. 

  143.         }
    144. 

  144.         KEY_STORE_FILE.delete();
    145. 

  145.     }
    146. 

  146. }
    147. 

  147.