author | darcy |
Thu, 29 Aug 2019 10:52:21 -0700 | |
changeset 57950 | 4612a3cfb927 |
parent 53018 | 8bf9268df0e2 |
permissions | -rw-r--r-- |
2 | 1 |
/* |
57950
4612a3cfb927
8229999: Apply java.io.Serial annotations to security types in java.base
darcy
parents:
53018
diff
changeset
|
2 |
* Copyright (c) 2003, 2019, Oracle and/or its affiliates. All rights reserved. |
2 | 3 |
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. |
4 |
* |
|
5 |
* This code is free software; you can redistribute it and/or modify it |
|
6 |
* under the terms of the GNU General Public License version 2 only, as |
|
5506 | 7 |
* published by the Free Software Foundation. Oracle designates this |
2 | 8 |
* particular file as subject to the "Classpath" exception as provided |
5506 | 9 |
* by Oracle in the LICENSE file that accompanied this code. |
2 | 10 |
* |
11 |
* This code is distributed in the hope that it will be useful, but WITHOUT |
|
12 |
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or |
|
13 |
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License |
|
14 |
* version 2 for more details (a copy is included in the LICENSE file that |
|
15 |
* accompanied this code). |
|
16 |
* |
|
17 |
* You should have received a copy of the GNU General Public License version |
|
18 |
* 2 along with this work; if not, write to the Free Software Foundation, |
|
19 |
* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. |
|
20 |
* |
|
5506 | 21 |
* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA |
22 |
* or visit www.oracle.com if you need additional information or have any |
|
23 |
* questions. |
|
2 | 24 |
*/ |
25 |
||
26 |
package sun.security.jca; |
|
27 |
||
28 |
import java.util.*; |
|
29 |
||
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
30 |
import java.security.AccessController; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
31 |
import java.security.PrivilegedAction; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
32 |
import java.security.Provider; |
2 | 33 |
import java.security.Provider.Service; |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
34 |
import java.security.Security; |
2 | 35 |
|
36 |
/** |
|
37 |
* List of Providers. Used to represent the provider preferences. |
|
38 |
* |
|
36511 | 39 |
* The system starts out with a ProviderList that only has the names |
40 |
* of the Providers. |
|
41 |
* When using ServiceLoader to load the providers, Providers are created |
|
42 |
* semi-eagerly as we iterate through them looking for a match. |
|
2 | 43 |
* |
44 |
* For compatibility reasons, Providers that could not be loaded are ignored |
|
45 |
* and internally presented as the instance EMPTY_PROVIDER. However, those |
|
46 |
* objects cannot be presented to applications. Call the convert() method |
|
47 |
* to force all Providers to be loaded and to obtain a ProviderList with |
|
48 |
* invalid entries removed. All this is handled by the Security class. |
|
49 |
* |
|
50 |
* Note that all indices used by this class are 0-based per general Java |
|
51 |
* convention. These must be converted to the 1-based indices used by the |
|
52 |
* Security class externally when needed. |
|
53 |
* |
|
54 |
* Instances of this class are immutable. This eliminates the need for |
|
55 |
* cloning and synchronization in consumers. The add() and remove() style |
|
56 |
* methods are static in order to avoid confusion about the immutability. |
|
57 |
* |
|
58 |
* @author Andreas Sterbenz |
|
59 |
* @since 1.5 |
|
60 |
*/ |
|
61 |
public final class ProviderList { |
|
62 |
||
32649
2ee9017c7597
8136583: Core libraries should use blessed modifier order
martin
parents:
31270
diff
changeset
|
63 |
static final sun.security.util.Debug debug = |
2 | 64 |
sun.security.util.Debug.getInstance("jca", "ProviderList"); |
65 |
||
32649
2ee9017c7597
8136583: Core libraries should use blessed modifier order
martin
parents:
31270
diff
changeset
|
66 |
private static final ProviderConfig[] PC0 = new ProviderConfig[0]; |
2 | 67 |
|
32649
2ee9017c7597
8136583: Core libraries should use blessed modifier order
martin
parents:
31270
diff
changeset
|
68 |
private static final Provider[] P0 = new Provider[0]; |
2 | 69 |
|
70 |
// constant for an ProviderList with no elements |
|
71 |
static final ProviderList EMPTY = new ProviderList(PC0, true); |
|
72 |
||
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
73 |
// list of all jdk.security.provider.preferred entries |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
74 |
static private PreferredList preferredPropList = null; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
75 |
|
2 | 76 |
// dummy provider object to use during initialization |
77 |
// used to avoid explicit null checks in various places |
|
78 |
private static final Provider EMPTY_PROVIDER = |
|
40416
5d91b2fd668c
8130181: Deprecate java.security.Provider(String, double, String), add Provider(Strin
valeriep
parents:
38435
diff
changeset
|
79 |
new Provider("##Empty##", "1.0", "initialization in progress") { |
57950
4612a3cfb927
8229999: Apply java.io.Serial annotations to security types in java.base
darcy
parents:
53018
diff
changeset
|
80 |
@java.io.Serial |
10336
0bb1999251f8
7064075: Security libraries don't build with javac -Xlint:all,-deprecation -Werror
jjg
parents:
9035
diff
changeset
|
81 |
private static final long serialVersionUID = 1151354171352296389L; |
2 | 82 |
// override getService() to return null slightly faster |
83 |
public Service getService(String type, String algorithm) { |
|
84 |
return null; |
|
85 |
} |
|
86 |
}; |
|
87 |
||
88 |
// construct a ProviderList from the security properties |
|
89 |
// (static provider configuration in the java.security file) |
|
90 |
static ProviderList fromSecurityProperties() { |
|
91 |
// doPrivileged() because of Security.getProperty() |
|
92 |
return AccessController.doPrivileged( |
|
93 |
new PrivilegedAction<ProviderList>() { |
|
94 |
public ProviderList run() { |
|
95 |
return new ProviderList(); |
|
96 |
} |
|
97 |
}); |
|
98 |
} |
|
99 |
||
100 |
public static ProviderList add(ProviderList providerList, Provider p) { |
|
101 |
return insertAt(providerList, p, -1); |
|
102 |
} |
|
103 |
||
104 |
public static ProviderList insertAt(ProviderList providerList, Provider p, |
|
105 |
int position) { |
|
106 |
if (providerList.getProvider(p.getName()) != null) { |
|
107 |
return providerList; |
|
108 |
} |
|
7973
dffe8439eb20
7005608: diamond conversion of JCA and crypto providers
smarks
parents:
5506
diff
changeset
|
109 |
List<ProviderConfig> list = new ArrayList<> |
2 | 110 |
(Arrays.asList(providerList.configs)); |
111 |
int n = list.size(); |
|
112 |
if ((position < 0) || (position > n)) { |
|
113 |
position = n; |
|
114 |
} |
|
115 |
list.add(position, new ProviderConfig(p)); |
|
116 |
return new ProviderList(list.toArray(PC0), true); |
|
117 |
} |
|
118 |
||
119 |
public static ProviderList remove(ProviderList providerList, String name) { |
|
120 |
// make sure provider exists |
|
121 |
if (providerList.getProvider(name) == null) { |
|
122 |
return providerList; |
|
123 |
} |
|
124 |
// copy all except matching to new list |
|
125 |
ProviderConfig[] configs = new ProviderConfig[providerList.size() - 1]; |
|
126 |
int j = 0; |
|
127 |
for (ProviderConfig config : providerList.configs) { |
|
128 |
if (config.getProvider().getName().equals(name) == false) { |
|
129 |
configs[j++] = config; |
|
130 |
} |
|
131 |
} |
|
132 |
return new ProviderList(configs, true); |
|
133 |
} |
|
134 |
||
135 |
// Create a new ProviderList from the specified Providers. |
|
136 |
// This method is for use by SunJSSE. |
|
137 |
public static ProviderList newList(Provider ... providers) { |
|
138 |
ProviderConfig[] configs = new ProviderConfig[providers.length]; |
|
139 |
for (int i = 0; i < providers.length; i++) { |
|
140 |
configs[i] = new ProviderConfig(providers[i]); |
|
141 |
} |
|
142 |
return new ProviderList(configs, true); |
|
143 |
} |
|
144 |
||
145 |
// configuration of the providers |
|
146 |
private final ProviderConfig[] configs; |
|
147 |
||
148 |
// flag indicating whether all configs have been loaded successfully |
|
149 |
private volatile boolean allLoaded; |
|
150 |
||
151 |
// List returned by providers() |
|
152 |
private final List<Provider> userList = new AbstractList<Provider>() { |
|
153 |
public int size() { |
|
154 |
return configs.length; |
|
155 |
} |
|
156 |
public Provider get(int index) { |
|
157 |
return getProvider(index); |
|
158 |
} |
|
159 |
}; |
|
160 |
||
161 |
/** |
|
162 |
* Create a new ProviderList from an array of configs |
|
163 |
*/ |
|
164 |
private ProviderList(ProviderConfig[] configs, boolean allLoaded) { |
|
165 |
this.configs = configs; |
|
166 |
this.allLoaded = allLoaded; |
|
167 |
} |
|
168 |
||
169 |
/** |
|
170 |
* Return a new ProviderList parsed from the java.security Properties. |
|
171 |
*/ |
|
172 |
private ProviderList() { |
|
7973
dffe8439eb20
7005608: diamond conversion of JCA and crypto providers
smarks
parents:
5506
diff
changeset
|
173 |
List<ProviderConfig> configList = new ArrayList<>(); |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
174 |
String entry; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
175 |
int i = 1; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
176 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
177 |
while ((entry = Security.getProperty("security.provider." + i)) != null) { |
2 | 178 |
entry = entry.trim(); |
53018
8bf9268df0e2
8215281: Use String.isEmpty() when applicable in java.base
redestad
parents:
48080
diff
changeset
|
179 |
if (entry.isEmpty()) { |
2 | 180 |
System.err.println("invalid entry for " + |
181 |
"security.provider." + i); |
|
182 |
break; |
|
183 |
} |
|
184 |
int k = entry.indexOf(' '); |
|
185 |
ProviderConfig config; |
|
186 |
if (k == -1) { |
|
187 |
config = new ProviderConfig(entry); |
|
188 |
} else { |
|
31270
e6470b24700d
7191662: JCE providers should be located via ServiceLoader
valeriep
parents:
30374
diff
changeset
|
189 |
String provName = entry.substring(0, k); |
2 | 190 |
String argument = entry.substring(k + 1).trim(); |
31270
e6470b24700d
7191662: JCE providers should be located via ServiceLoader
valeriep
parents:
30374
diff
changeset
|
191 |
config = new ProviderConfig(provName, argument); |
2 | 192 |
} |
193 |
||
194 |
// Get rid of duplicate providers. |
|
195 |
if (configList.contains(config) == false) { |
|
196 |
configList.add(config); |
|
197 |
} |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
198 |
i++; |
2 | 199 |
} |
200 |
configs = configList.toArray(PC0); |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
201 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
202 |
// Load config entries for use when getInstance is called |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
203 |
entry = Security.getProperty("jdk.security.provider.preferred"); |
53018
8bf9268df0e2
8215281: Use String.isEmpty() when applicable in java.base
redestad
parents:
48080
diff
changeset
|
204 |
if (entry != null && !(entry = entry.trim()).isEmpty()) { |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
205 |
String[] entries = entry.split(","); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
206 |
if (ProviderList.preferredPropList == null) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
207 |
ProviderList.preferredPropList = new PreferredList(); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
208 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
209 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
210 |
for (String e : entries) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
211 |
i = e.indexOf(':'); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
212 |
if (i < 0) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
213 |
if (debug != null) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
214 |
debug.println("invalid preferred entry skipped. " + |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
215 |
"Missing colon delimiter \"" + e + "\""); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
216 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
217 |
continue; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
218 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
219 |
ProviderList.preferredPropList.add(new PreferredEntry( |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
220 |
e.substring(0, i).trim(), e.substring(i + 1).trim())); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
221 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
222 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
223 |
|
2 | 224 |
if (debug != null) { |
225 |
debug.println("provider configuration: " + configList); |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
226 |
debug.println("config configuration: " + |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
227 |
ProviderList.preferredPropList); |
2 | 228 |
} |
229 |
} |
|
230 |
||
231 |
/** |
|
232 |
* Construct a special ProviderList for JAR verification. It consists |
|
233 |
* of the providers specified via jarClassNames, which must be on the |
|
234 |
* bootclasspath and cannot be in signed JAR files. This is to avoid |
|
235 |
* possible recursion and deadlock during verification. |
|
236 |
*/ |
|
31270
e6470b24700d
7191662: JCE providers should be located via ServiceLoader
valeriep
parents:
30374
diff
changeset
|
237 |
ProviderList getJarList(String[] jarProvNames) { |
7973
dffe8439eb20
7005608: diamond conversion of JCA and crypto providers
smarks
parents:
5506
diff
changeset
|
238 |
List<ProviderConfig> newConfigs = new ArrayList<>(); |
31270
e6470b24700d
7191662: JCE providers should be located via ServiceLoader
valeriep
parents:
30374
diff
changeset
|
239 |
for (String provName : jarProvNames) { |
e6470b24700d
7191662: JCE providers should be located via ServiceLoader
valeriep
parents:
30374
diff
changeset
|
240 |
ProviderConfig newConfig = new ProviderConfig(provName); |
2 | 241 |
for (ProviderConfig config : configs) { |
242 |
// if the equivalent object is present in this provider list, |
|
243 |
// use the old object rather than the new object. |
|
244 |
// this ensures that when the provider is loaded in the |
|
245 |
// new thread local list, it will also become available |
|
246 |
// in this provider list |
|
247 |
if (config.equals(newConfig)) { |
|
248 |
newConfig = config; |
|
249 |
break; |
|
250 |
} |
|
251 |
} |
|
252 |
newConfigs.add(newConfig); |
|
253 |
} |
|
254 |
ProviderConfig[] configArray = newConfigs.toArray(PC0); |
|
255 |
return new ProviderList(configArray, false); |
|
256 |
} |
|
257 |
||
258 |
public int size() { |
|
259 |
return configs.length; |
|
260 |
} |
|
261 |
||
262 |
/** |
|
263 |
* Return the Provider at the specified index. Returns EMPTY_PROVIDER |
|
264 |
* if the provider could not be loaded at this time. |
|
265 |
*/ |
|
266 |
Provider getProvider(int index) { |
|
267 |
Provider p = configs[index].getProvider(); |
|
268 |
return (p != null) ? p : EMPTY_PROVIDER; |
|
269 |
} |
|
270 |
||
271 |
/** |
|
272 |
* Return an unmodifiable List of all Providers in this List. The |
|
273 |
* individual Providers are loaded on demand. Elements that could not |
|
274 |
* be initialized are replaced with EMPTY_PROVIDER. |
|
275 |
*/ |
|
276 |
public List<Provider> providers() { |
|
277 |
return userList; |
|
278 |
} |
|
279 |
||
280 |
private ProviderConfig getProviderConfig(String name) { |
|
281 |
int index = getIndex(name); |
|
282 |
return (index != -1) ? configs[index] : null; |
|
283 |
} |
|
284 |
||
285 |
// return the Provider with the specified name or null |
|
286 |
public Provider getProvider(String name) { |
|
287 |
ProviderConfig config = getProviderConfig(name); |
|
288 |
return (config == null) ? null : config.getProvider(); |
|
289 |
} |
|
290 |
||
291 |
/** |
|
292 |
* Return the index at which the provider with the specified name is |
|
293 |
* installed or -1 if it is not present in this ProviderList. |
|
294 |
*/ |
|
295 |
public int getIndex(String name) { |
|
296 |
for (int i = 0; i < configs.length; i++) { |
|
297 |
Provider p = getProvider(i); |
|
298 |
if (p.getName().equals(name)) { |
|
299 |
return i; |
|
300 |
} |
|
301 |
} |
|
302 |
return -1; |
|
303 |
} |
|
304 |
||
305 |
// attempt to load all Providers not already loaded |
|
306 |
private int loadAll() { |
|
307 |
if (allLoaded) { |
|
308 |
return configs.length; |
|
309 |
} |
|
310 |
if (debug != null) { |
|
311 |
debug.println("Loading all providers"); |
|
48080
18a4438eb690
8185855: Debug exception stacks should be clearer
coffeys
parents:
47216
diff
changeset
|
312 |
new Exception("Debug Info. Call trace:").printStackTrace(); |
2 | 313 |
} |
314 |
int n = 0; |
|
315 |
for (int i = 0; i < configs.length; i++) { |
|
316 |
Provider p = configs[i].getProvider(); |
|
317 |
if (p != null) { |
|
318 |
n++; |
|
319 |
} |
|
320 |
} |
|
321 |
if (n == configs.length) { |
|
322 |
allLoaded = true; |
|
323 |
} |
|
324 |
return n; |
|
325 |
} |
|
326 |
||
327 |
/** |
|
328 |
* Try to load all Providers and return the ProviderList. If one or |
|
329 |
* more Providers could not be loaded, a new ProviderList with those |
|
330 |
* entries removed is returned. Otherwise, the method returns this. |
|
331 |
*/ |
|
332 |
ProviderList removeInvalid() { |
|
333 |
int n = loadAll(); |
|
334 |
if (n == configs.length) { |
|
335 |
return this; |
|
336 |
} |
|
337 |
ProviderConfig[] newConfigs = new ProviderConfig[n]; |
|
338 |
for (int i = 0, j = 0; i < configs.length; i++) { |
|
339 |
ProviderConfig config = configs[i]; |
|
340 |
if (config.isLoaded()) { |
|
341 |
newConfigs[j++] = config; |
|
342 |
} |
|
343 |
} |
|
344 |
return new ProviderList(newConfigs, true); |
|
345 |
} |
|
346 |
||
347 |
// return the providers as an array |
|
348 |
public Provider[] toArray() { |
|
349 |
return providers().toArray(P0); |
|
350 |
} |
|
351 |
||
352 |
// return a String representation of this ProviderList |
|
353 |
public String toString() { |
|
354 |
return Arrays.asList(configs).toString(); |
|
355 |
} |
|
356 |
||
357 |
/** |
|
358 |
* Return a Service describing an implementation of the specified |
|
359 |
* algorithm from the Provider with the highest precedence that |
|
360 |
* supports that algorithm. Return null if no Provider supports this |
|
361 |
* algorithm. |
|
362 |
*/ |
|
363 |
public Service getService(String type, String name) { |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
364 |
ArrayList<PreferredEntry> pList = null; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
365 |
int i; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
366 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
367 |
// Preferred provider list |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
368 |
if (preferredPropList != null && |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
369 |
(pList = preferredPropList.getAll(type, name)) != null) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
370 |
for (i = 0; i < pList.size(); i++) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
371 |
Provider p = getProvider(pList.get(i).provider); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
372 |
Service s = p.getService(type, name); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
373 |
if (s != null) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
374 |
return s; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
375 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
376 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
377 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
378 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
379 |
for (i = 0; i < configs.length; i++) { |
2 | 380 |
Provider p = getProvider(i); |
381 |
Service s = p.getService(type, name); |
|
382 |
if (s != null) { |
|
383 |
return s; |
|
384 |
} |
|
385 |
} |
|
386 |
return null; |
|
387 |
} |
|
388 |
||
389 |
/** |
|
390 |
* Return a List containing all the Services describing implementations |
|
391 |
* of the specified algorithms in precedence order. If no implementation |
|
392 |
* exists, this method returns an empty List. |
|
393 |
* |
|
394 |
* The elements of this list are determined lazily on demand. |
|
395 |
* |
|
396 |
* The List returned is NOT thread safe. |
|
397 |
*/ |
|
398 |
public List<Service> getServices(String type, String algorithm) { |
|
399 |
return new ServiceList(type, algorithm); |
|
400 |
} |
|
401 |
||
402 |
/** |
|
403 |
* This method exists for compatibility with JCE only. It will be removed |
|
404 |
* once JCE has been changed to use the replacement method. |
|
30374 | 405 |
* @deprecated use {@code getServices(List<ServiceId>)} instead |
2 | 406 |
*/ |
407 |
@Deprecated |
|
408 |
public List<Service> getServices(String type, List<String> algorithms) { |
|
7973
dffe8439eb20
7005608: diamond conversion of JCA and crypto providers
smarks
parents:
5506
diff
changeset
|
409 |
List<ServiceId> ids = new ArrayList<>(); |
2 | 410 |
for (String alg : algorithms) { |
411 |
ids.add(new ServiceId(type, alg)); |
|
412 |
} |
|
413 |
return getServices(ids); |
|
414 |
} |
|
415 |
||
416 |
public List<Service> getServices(List<ServiceId> ids) { |
|
417 |
return new ServiceList(ids); |
|
418 |
} |
|
419 |
||
420 |
/** |
|
421 |
* Inner class for a List of Services. Custom List implementation in |
|
422 |
* order to delay Provider initialization and lookup. |
|
423 |
* Not thread safe. |
|
424 |
*/ |
|
425 |
private final class ServiceList extends AbstractList<Service> { |
|
426 |
||
427 |
// type and algorithm for simple lookup |
|
428 |
// avoid allocating/traversing the ServiceId list for these lookups |
|
429 |
private final String type; |
|
430 |
private final String algorithm; |
|
431 |
||
432 |
// list of ids for parallel lookup |
|
433 |
// if ids is non-null, type and algorithm are null |
|
434 |
private final List<ServiceId> ids; |
|
435 |
||
436 |
// first service we have found |
|
437 |
// it is stored in a separate variable so that we can avoid |
|
438 |
// allocating the services list if we do not need the second service. |
|
439 |
// this is the case if we don't failover (failovers are typically rare) |
|
440 |
private Service firstService; |
|
441 |
||
442 |
// list of the services we have found so far |
|
443 |
private List<Service> services; |
|
444 |
||
445 |
// index into config[] of the next provider we need to query |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
446 |
private int providerIndex = 0; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
447 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
448 |
// Matching preferred provider list for this ServiceList |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
449 |
ArrayList<PreferredEntry> preferredList = null; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
450 |
private int preferredIndex = 0; |
2 | 451 |
|
452 |
ServiceList(String type, String algorithm) { |
|
453 |
this.type = type; |
|
454 |
this.algorithm = algorithm; |
|
455 |
this.ids = null; |
|
456 |
} |
|
457 |
||
458 |
ServiceList(List<ServiceId> ids) { |
|
459 |
this.type = null; |
|
460 |
this.algorithm = null; |
|
461 |
this.ids = ids; |
|
462 |
} |
|
463 |
||
464 |
private void addService(Service s) { |
|
465 |
if (firstService == null) { |
|
466 |
firstService = s; |
|
467 |
} else { |
|
468 |
if (services == null) { |
|
469 |
services = new ArrayList<Service>(4); |
|
470 |
services.add(firstService); |
|
471 |
} |
|
472 |
services.add(s); |
|
473 |
} |
|
474 |
} |
|
475 |
||
476 |
private Service tryGet(int index) { |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
477 |
Provider p; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
478 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
479 |
// If preferred providers are configured, check for matches with |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
480 |
// the requested service. |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
481 |
if (preferredPropList != null && preferredList == null) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
482 |
preferredList = preferredPropList.getAll(this); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
483 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
484 |
|
2 | 485 |
while (true) { |
486 |
if ((index == 0) && (firstService != null)) { |
|
487 |
return firstService; |
|
488 |
} else if ((services != null) && (services.size() > index)) { |
|
489 |
return services.get(index); |
|
490 |
} |
|
491 |
if (providerIndex >= configs.length) { |
|
492 |
return null; |
|
493 |
} |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
494 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
495 |
// If there were matches with a preferred provider, iterate |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
496 |
// through the list first before going through the |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
497 |
// ordered list (java.security.provider.#) |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
498 |
if (preferredList != null && |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
499 |
preferredIndex < preferredList.size()) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
500 |
PreferredEntry entry = preferredList.get(preferredIndex++); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
501 |
// Look for the provider name in the PreferredEntry |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
502 |
p = getProvider(entry.provider); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
503 |
if (p == null) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
504 |
if (debug != null) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
505 |
debug.println("No provider found with name: " + |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
506 |
entry.provider); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
507 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
508 |
continue; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
509 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
510 |
} else { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
511 |
// check all algorithms in this provider before moving on |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
512 |
p = getProvider(providerIndex++); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
513 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
514 |
|
2 | 515 |
if (type != null) { |
516 |
// simple lookup |
|
517 |
Service s = p.getService(type, algorithm); |
|
518 |
if (s != null) { |
|
519 |
addService(s); |
|
520 |
} |
|
521 |
} else { |
|
522 |
// parallel lookup |
|
523 |
for (ServiceId id : ids) { |
|
524 |
Service s = p.getService(id.type, id.algorithm); |
|
525 |
if (s != null) { |
|
526 |
addService(s); |
|
527 |
} |
|
528 |
} |
|
529 |
} |
|
530 |
} |
|
531 |
} |
|
532 |
||
533 |
public Service get(int index) { |
|
534 |
Service s = tryGet(index); |
|
535 |
if (s == null) { |
|
536 |
throw new IndexOutOfBoundsException(); |
|
537 |
} |
|
538 |
return s; |
|
539 |
} |
|
540 |
||
541 |
public int size() { |
|
542 |
int n; |
|
543 |
if (services != null) { |
|
544 |
n = services.size(); |
|
545 |
} else { |
|
546 |
n = (firstService != null) ? 1 : 0; |
|
547 |
} |
|
548 |
while (tryGet(n) != null) { |
|
549 |
n++; |
|
550 |
} |
|
551 |
return n; |
|
552 |
} |
|
553 |
||
554 |
// override isEmpty() and iterator() to not call size() |
|
555 |
// this avoids loading + checking all Providers |
|
556 |
||
557 |
public boolean isEmpty() { |
|
558 |
return (tryGet(0) == null); |
|
559 |
} |
|
560 |
||
561 |
public Iterator<Service> iterator() { |
|
562 |
return new Iterator<Service>() { |
|
563 |
int index; |
|
564 |
||
565 |
public boolean hasNext() { |
|
566 |
return tryGet(index) != null; |
|
567 |
} |
|
568 |
||
569 |
public Service next() { |
|
570 |
Service s = tryGet(index); |
|
571 |
if (s == null) { |
|
572 |
throw new NoSuchElementException(); |
|
573 |
} |
|
574 |
index++; |
|
575 |
return s; |
|
576 |
} |
|
577 |
||
578 |
public void remove() { |
|
579 |
throw new UnsupportedOperationException(); |
|
580 |
} |
|
581 |
}; |
|
582 |
} |
|
583 |
} |
|
584 |
||
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
585 |
// Provider list defined by jdk.security.provider.preferred entry |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
586 |
static final class PreferredList { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
587 |
ArrayList<PreferredEntry> list = new ArrayList<PreferredEntry>(); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
588 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
589 |
/* |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
590 |
* Return a list of all preferred entries that match the passed |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
591 |
* ServiceList. |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
592 |
*/ |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
593 |
ArrayList<PreferredEntry> getAll(ServiceList s) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
594 |
if (s.ids == null) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
595 |
return getAll(s.type, s.algorithm); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
596 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
597 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
598 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
599 |
ArrayList<PreferredEntry> l = new ArrayList<PreferredEntry>(); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
600 |
for (ServiceId id : s.ids) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
601 |
implGetAll(l, id.type, id.algorithm); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
602 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
603 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
604 |
return l; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
605 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
606 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
607 |
/* |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
608 |
* Return a list of all preferred entries that match the passed |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
609 |
* type and algorithm. |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
610 |
*/ |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
611 |
ArrayList<PreferredEntry> getAll(String type, String algorithm) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
612 |
ArrayList<PreferredEntry> l = new ArrayList<PreferredEntry>(); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
613 |
implGetAll(l, type, algorithm); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
614 |
return l; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
615 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
616 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
617 |
/* |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
618 |
* Compare each preferred entry against the passed type and |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
619 |
* algorithm, putting any matches in the passed ArrayList. |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
620 |
*/ |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
621 |
private void implGetAll(ArrayList<PreferredEntry> l, String type, |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
622 |
String algorithm) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
623 |
PreferredEntry e; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
624 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
625 |
for (int i = 0; i < size(); i++) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
626 |
e = list.get(i); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
627 |
if (e.match(type, algorithm)) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
628 |
l.add(e); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
629 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
630 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
631 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
632 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
633 |
public PreferredEntry get(int i) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
634 |
return list.get(i); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
635 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
636 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
637 |
public int size() { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
638 |
return list.size(); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
639 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
640 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
641 |
public boolean add(PreferredEntry e) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
642 |
return list.add(e); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
643 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
644 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
645 |
public String toString() { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
646 |
String s = ""; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
647 |
for (PreferredEntry e: list) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
648 |
s += e.toString(); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
649 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
650 |
return s; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
651 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
652 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
653 |
|
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
654 |
/* Defined Groups for jdk.security.provider.preferred */ |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
655 |
private static final String SHA2Group[] = { "SHA-224", "SHA-256", |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
656 |
"SHA-384", "SHA-512", "SHA-512/224", "SHA-512/256" }; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
657 |
private static final String HmacSHA2Group[] = { "HmacSHA224", |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
658 |
"HmacSHA256", "HmacSHA384", "HmacSHA512"}; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
659 |
private static final String SHA2RSAGroup[] = { "SHA224withRSA", |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
660 |
"SHA256withRSA", "SHA384withRSA", "SHA512withRSA"}; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
661 |
private static final String SHA2DSAGroup[] = { "SHA224withDSA", |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
662 |
"SHA256withDSA", "SHA384withDSA", "SHA512withDSA"}; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
663 |
private static final String SHA2ECDSAGroup[] = { "SHA224withECDSA", |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
664 |
"SHA256withECDSA", "SHA384withECDSA", "SHA512withECDSA"}; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
665 |
private static final String SHA3Group[] = { "SHA3-224", "SHA3-256", |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
666 |
"SHA3-384", "SHA3-512" }; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
667 |
private static final String HmacSHA3Group[] = { "HmacSHA3-224", |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
668 |
"HmacSHA3-256", "HmacSHA3-384", "HmacSHA3-512"}; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
669 |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
670 |
// Individual preferred property entry from jdk.security.provider.preferred |
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
671 |
private static class PreferredEntry { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
672 |
private String type = null; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
673 |
private String algorithm; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
674 |
private String provider; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
675 |
private String alternateNames[] = null; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
676 |
private boolean group = false; |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
677 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
678 |
PreferredEntry(String t, String p) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
679 |
int i = t.indexOf('.'); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
680 |
if (i > 0) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
681 |
type = t.substring(0, i); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
682 |
algorithm = t.substring(i + 1); |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
683 |
} else { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
684 |
algorithm = t; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
685 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
686 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
687 |
provider = p; |
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
688 |
// Group definitions |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
689 |
if (type != null && type.compareToIgnoreCase("Group") == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
690 |
// Currently intrinsic algorithm groups |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
691 |
if (algorithm.compareToIgnoreCase("SHA2") == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
692 |
alternateNames = SHA2Group; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
693 |
} else if (algorithm.compareToIgnoreCase("HmacSHA2") == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
694 |
alternateNames = HmacSHA2Group; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
695 |
} else if (algorithm.compareToIgnoreCase("SHA2RSA") == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
696 |
alternateNames = SHA2RSAGroup; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
697 |
} else if (algorithm.compareToIgnoreCase("SHA2DSA") == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
698 |
alternateNames = SHA2DSAGroup; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
699 |
} else if (algorithm.compareToIgnoreCase("SHA2ECDSA") == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
700 |
alternateNames = SHA2ECDSAGroup; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
701 |
} else if (algorithm.compareToIgnoreCase("SHA3") == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
702 |
alternateNames = SHA3Group; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
703 |
} else if (algorithm.compareToIgnoreCase("HmacSHA3") == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
704 |
alternateNames = HmacSHA3Group; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
705 |
} |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
706 |
if (alternateNames != null) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
707 |
group = true; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
708 |
} |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
709 |
|
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
710 |
// If the algorithm name given is SHA1 |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
711 |
} else if (algorithm.compareToIgnoreCase("SHA1") == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
712 |
alternateNames = new String[] { "SHA-1" }; |
35643
ada9a798efee
8145344: Add SHA1 and SHA-224 to preferred provider list for solaris-sparc
ascarpino
parents:
33241
diff
changeset
|
713 |
} else if (algorithm.compareToIgnoreCase("SHA-1") == 0) { |
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
714 |
alternateNames = new String[] { "SHA1" }; |
35643
ada9a798efee
8145344: Add SHA1 and SHA-224 to preferred provider list for solaris-sparc
ascarpino
parents:
33241
diff
changeset
|
715 |
} |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
716 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
717 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
718 |
boolean match(String t, String a) { |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
719 |
if (debug != null) { |
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
720 |
debug.println("Config check: " + toString() + " == " + |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
721 |
print(t, a, null)); |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
722 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
723 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
724 |
// Compare service type if configured |
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
725 |
if (type != null && !group && type.compareToIgnoreCase(t) != 0) { |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
726 |
return false; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
727 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
728 |
|
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
729 |
// Compare the algorithm string. |
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
730 |
if (!group && a.compareToIgnoreCase(algorithm) == 0) { |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
731 |
if (debug != null) { |
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
732 |
debug.println("Config entry matched: " + toString()); |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
733 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
734 |
return true; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
735 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
736 |
|
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
737 |
if (alternateNames != null) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
738 |
for (String alt : alternateNames) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
739 |
if (debug != null) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
740 |
debug.println("AltName check: " + print(type, alt, |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
741 |
provider)); |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
742 |
} |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
743 |
if (a.compareToIgnoreCase(alt) == 0) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
744 |
if (debug != null) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
745 |
debug.println("AltName entry matched: " + |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
746 |
provider); |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
747 |
} |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
748 |
return true; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
749 |
} |
35643
ada9a798efee
8145344: Add SHA1 and SHA-224 to preferred provider list for solaris-sparc
ascarpino
parents:
33241
diff
changeset
|
750 |
} |
ada9a798efee
8145344: Add SHA1 and SHA-224 to preferred provider list for solaris-sparc
ascarpino
parents:
33241
diff
changeset
|
751 |
} |
ada9a798efee
8145344: Add SHA1 and SHA-224 to preferred provider list for solaris-sparc
ascarpino
parents:
33241
diff
changeset
|
752 |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
753 |
// No match |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
754 |
return false; |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
755 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
756 |
|
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
757 |
// Print debugging output of PreferredEntry |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
758 |
private String print(String t, String a, String p) { |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
759 |
return "[" + ((t != null) ? t : "" ) + ", " + a + |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
760 |
((p != null) ? " : " + p : "" ) + "] "; |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
761 |
} |
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
762 |
|
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
763 |
public String toString() { |
38435
292ad46c1bf1
8155847: SHA groups needed for jdk.security.provider.preferred
ascarpino
parents:
36511
diff
changeset
|
764 |
return print(type, algorithm, provider); |
33241
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
765 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
766 |
} |
27eb2d6abda9
8133151: Preferred provider configuration for JCE
ascarpino
parents:
32649
diff
changeset
|
767 |
|
2 | 768 |
} |