jdk-sandbox: jdk/src/jdk.crypto.ucrypto/solaris/classes/com/oracle/security/ucrypto/NativeRSASignature.java@769b3d81ae69 (annotated)

27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	1	/*
31270 e6470b24700d 7191662: JCE providers should be located via ServiceLoader valeriep parents: 27182 diff changeset	2	* Copyright (c) 2014, 2015, Oracle and/or its affiliates. All rights reserved.
27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	4	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	7	* published by the Free Software Foundation. Oracle designates this
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	10	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	15	* accompanied this code).
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	16	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	20	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	22	* or visit www.oracle.com if you need additional information or have any
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	23	* questions.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	24	*/
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	25
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	26	package com.oracle.security.ucrypto;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	27
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	28	import java.util.Set;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	29	import java.util.Arrays;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	30	import java.util.concurrent.ConcurrentSkipListSet;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	31	import java.lang.ref.*;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	32	import java.math.BigInteger;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	33	import java.nio.ByteBuffer;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	34
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	35	import java.security.SignatureSpi;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	36	import java.security.NoSuchAlgorithmException;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	37	import java.security.InvalidParameterException;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	38	import java.security.InvalidKeyException;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	39	import java.security.SignatureException;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	40	import java.security.Key;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	41	import java.security.PrivateKey;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	42	import java.security.PublicKey;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	43
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	44	import java.security.*;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	45	import java.security.interfaces.*;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	46	import java.security.spec.RSAPrivateCrtKeySpec;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	47	import java.security.spec.RSAPublicKeySpec;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	48	import java.security.spec.InvalidKeySpecException;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	49	import sun.nio.ch.DirectBuffer;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	50	import java.nio.ByteBuffer;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	51
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	52	/**
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	53	* Signature implementation class. This class currently supports the
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	54	* following algorithms:
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	55	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	56	* . RSA:
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	57	* . MD5withRSA
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	58	* . SHA1withRSA
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	59	* . SHA256withRSA
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	60	* . SHA384withRSA
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	61	* . SHA512withRSA
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	62	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	63	* @since 1.9
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	64	*/
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	65	class NativeRSASignature extends SignatureSpi {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	66
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	67	private static final int PKCS1PADDING_LEN = 11;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	68
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	69	// fields set in constructor
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	70	private final UcryptoMech mech;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	71	private final int encodedLen;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	72
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	73	// field for ensuring native memory is freed
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	74	private SignatureContextRef pCtxt = null;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	75
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	76	//
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	77	// fields (re)set in every init()
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	78	//
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	79	private boolean initialized = false;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	80	private boolean sign = true;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	81	private int sigLength;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	82	private NativeKey key;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	83	private NativeRSAKeyFactory keyFactory; // may need a more generic type later
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	84
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	85	// public implementation classes
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	86	public static final class MD5 extends NativeRSASignature {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	87	public MD5() throws NoSuchAlgorithmException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	88	super(UcryptoMech.CRYPTO_MD5_RSA_PKCS, 34);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	89	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	90	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	91
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	92	public static final class SHA1 extends NativeRSASignature {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	93	public SHA1() throws NoSuchAlgorithmException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	94	super(UcryptoMech.CRYPTO_SHA1_RSA_PKCS, 35);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	95	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	96	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	97
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	98	public static final class SHA256 extends NativeRSASignature {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	99	public SHA256() throws NoSuchAlgorithmException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	100	super(UcryptoMech.CRYPTO_SHA256_RSA_PKCS, 51);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	101	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	102	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	103
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	104	public static final class SHA384 extends NativeRSASignature {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	105	public SHA384() throws NoSuchAlgorithmException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	106	super(UcryptoMech.CRYPTO_SHA384_RSA_PKCS, 67);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	107	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	108	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	109
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	110	public static final class SHA512 extends NativeRSASignature {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	111	public SHA512() throws NoSuchAlgorithmException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	112	super(UcryptoMech.CRYPTO_SHA512_RSA_PKCS, 83);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	113	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	114	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	115
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	116	// internal class for native resource cleanup
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	117	private static class SignatureContextRef extends PhantomReference<NativeRSASignature>
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	118	implements Comparable<SignatureContextRef> {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	119
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	120	private static ReferenceQueue<NativeRSASignature> refQueue =
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	121	new ReferenceQueue<NativeRSASignature>();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	122
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	123	// Needed to keep these references from being GC'ed until when their
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	124	// referents are GC'ed so we can do post-mortem processing
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	125	private static Set<SignatureContextRef> refList =
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	126	new ConcurrentSkipListSet<SignatureContextRef>();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	127	// Collections.synchronizedSortedSet(new TreeSet<SignatureContextRef>());
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	128
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	129	private final long id;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	130	private final boolean sign;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	131
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	132	private static void drainRefQueueBounded() {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	133	while (true) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	134	SignatureContextRef next = (SignatureContextRef) refQueue.poll();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	135	if (next == null) break;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	136	next.dispose(true);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	137	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	138	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	139
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	140	SignatureContextRef(NativeRSASignature ns, long id, boolean sign) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	141	super(ns, refQueue);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	142	this.id = id;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	143	this.sign = sign;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	144	refList.add(this);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	145	UcryptoProvider.debug("Resource: track Signature Ctxt " + this.id);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	146	drainRefQueueBounded();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	147	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	148
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	149	public int compareTo(SignatureContextRef other) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	150	if (this.id == other.id) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	151	return 0;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	152	} else {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	153	return (this.id < other.id) ? -1 : 1;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	154	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	155	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	156
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	157	void dispose(boolean doCancel) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	158	refList.remove(this);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	159	try {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	160	if (doCancel) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	161	UcryptoProvider.debug("Resource: free Signature Ctxt " + this.id);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	162	NativeRSASignature.nativeFinal(id, sign, null, 0, 0);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	163	} else {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	164	UcryptoProvider.debug("Resource: stop tracking Signature Ctxt " + this.id);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	165	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	166	} finally {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	167	this.clear();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	168	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	169	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	170	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	171
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	172	NativeRSASignature(UcryptoMech mech, int encodedLen)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	173	throws NoSuchAlgorithmException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	174	this.mech = mech;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	175	this.encodedLen = encodedLen;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	176	this.keyFactory = new NativeRSAKeyFactory();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	177	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	178
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	179	// deprecated but abstract
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	180	@SuppressWarnings("deprecation")
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	181	protected Object engineGetParameter(String param) throws InvalidParameterException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	182	throw new UnsupportedOperationException("getParameter() not supported");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	183	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	184
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	185	@Override
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	186	protected synchronized void engineInitSign(PrivateKey privateKey)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	187	throws InvalidKeyException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	188	if (privateKey == null) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	189	throw new InvalidKeyException("Key must not be null");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	190	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	191	NativeKey newKey = key;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	192	int newSigLength = sigLength;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	193	// Need to check RSA key length whenever a new private key is set
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	194	if (privateKey != key) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	195	if (privateKey instanceof RSAPrivateCrtKey) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	196	RSAPrivateCrtKey rsaPrivKey = (RSAPrivateCrtKey) privateKey;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	197	BigInteger mod = rsaPrivKey.getModulus();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	198	newSigLength = checkRSAKeyLength(mod);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	199	try {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	200	newKey = (NativeKey) keyFactory.engineGeneratePrivate
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	201	(new RSAPrivateCrtKeySpec(mod,
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	202	rsaPrivKey.getPublicExponent(),
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	203	rsaPrivKey.getPrivateExponent(),
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	204	rsaPrivKey.getPrimeP(),
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	205	rsaPrivKey.getPrimeQ(),
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	206	rsaPrivKey.getPrimeExponentP(),
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	207	rsaPrivKey.getPrimeExponentQ(),
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	208	rsaPrivKey.getCrtCoefficient()));
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	209	} catch (InvalidKeySpecException ikse) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	210	throw new InvalidKeyException(ikse);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	211	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	212	} else {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	213	throw new InvalidKeyException("RSAPrivateCrtKey required");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	214	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	215	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	216	init(true, newKey, newSigLength);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	217	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	218
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	219
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	220	@Override
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	221	protected synchronized void engineInitVerify(PublicKey publicKey)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	222	throws InvalidKeyException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	223	if (publicKey == null) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	224	throw new InvalidKeyException("Key must not be null");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	225	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	226	NativeKey newKey = key;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	227	int newSigLength = sigLength;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	228	// Need to check RSA key length whenever a new public key is set
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	229	if (publicKey != key) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	230	if (publicKey instanceof RSAPublicKey) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	231	BigInteger mod = ((RSAPublicKey) publicKey).getModulus();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	232	newSigLength = checkRSAKeyLength(mod);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	233	try {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	234	newKey = (NativeKey) keyFactory.engineGeneratePublic
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	235	(new RSAPublicKeySpec(mod, ((RSAPublicKey) publicKey).getPublicExponent()));
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	236	} catch (InvalidKeySpecException ikse) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	237	throw new InvalidKeyException(ikse);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	238	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	239	} else {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	240	throw new InvalidKeyException("RSAPublicKey required");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	241	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	242	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	243	init(false, newKey, newSigLength);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	244	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	245
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	246	// deprecated but abstract
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	247	@SuppressWarnings("deprecation")
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	248	protected void engineSetParameter(String param, Object value) throws InvalidParameterException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	249	throw new UnsupportedOperationException("setParameter() not supported");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	250	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	251
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	252	@Override
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	253	protected synchronized byte[] engineSign() throws SignatureException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	254	byte[] sig = new byte[sigLength];
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	255	int rv = doFinal(sig, 0, sigLength);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	256	if (rv < 0) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	257	throw new SignatureException(new UcryptoException(-rv));
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	258	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	259	return sig;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	260	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	261
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	262	@Override
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	263	protected synchronized int engineSign(byte[] outbuf, int offset, int len)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	264	throws SignatureException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	265	if (outbuf == null \|\| (offset < 0) \|\| (outbuf.length < (offset + sigLength))
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	266	\|\| (len < sigLength)) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	267	throw new SignatureException("Invalid output buffer");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	268	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	269	int rv = doFinal(outbuf, offset, sigLength);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	270	if (rv < 0) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	271	throw new SignatureException(new UcryptoException(-rv));
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	272	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	273	return sigLength;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	274	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	275
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	276	@Override
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	277	protected synchronized void engineUpdate(byte b) throws SignatureException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	278	byte[] in = { b };
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	279	int rv = update(in, 0, 1);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	280	if (rv < 0) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	281	throw new SignatureException(new UcryptoException(-rv));
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	282	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	283	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	284
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	285	@Override
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	286	protected synchronized void engineUpdate(byte[] in, int inOfs, int inLen)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	287	throws SignatureException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	288	if (in == null \|\| inOfs < 0 \|\| inLen == 0) return;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	289
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	290	int rv = update(in, inOfs, inLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	291	if (rv < 0) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	292	throw new SignatureException(new UcryptoException(-rv));
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	293	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	294	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	295
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	296	@Override
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	297	protected synchronized void engineUpdate(ByteBuffer in) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	298	if (in == null \|\| in.remaining() == 0) return;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	299
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	300	if (in instanceof DirectBuffer == false) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	301	// cannot do better than default impl
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	302	super.engineUpdate(in);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	303	return;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	304	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	305	long inAddr = ((DirectBuffer)in).address();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	306	int inOfs = in.position();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	307	int inLen = in.remaining();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	308
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	309	int rv = update((inAddr + inOfs), inLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	310	if (rv < 0) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	311	throw new UcryptoException(-rv);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	312	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	313	in.position(inOfs + inLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	314	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	315
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	316	@Override
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	317	protected synchronized boolean engineVerify(byte[] sigBytes) throws SignatureException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	318	return engineVerify(sigBytes, 0, sigBytes.length);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	319	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	320
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	321	@Override
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	322	protected synchronized boolean engineVerify(byte[] sigBytes, int sigOfs, int sigLen)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	323	throws SignatureException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	324	if (sigBytes == null \|\| (sigOfs < 0) \|\| (sigBytes.length < (sigOfs + this.sigLength))
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	325	\|\| (sigLen < this.sigLength)) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	326	throw new SignatureException("Invalid signature buffer");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	327	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	328
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	329	int rv = doFinal(sigBytes, sigOfs, sigLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	330	if (rv == 0) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	331	return true;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	332	} else {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	333	UcryptoProvider.debug("Signature: " + mech + " verification error " +
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	334	new UcryptoException(-rv).getMessage());
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	335	return false;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	336	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	337	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	338
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	339	void reset(boolean doCancel) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	340	initialized = false;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	341	if (pCtxt != null) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	342	pCtxt.dispose(doCancel);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	343	pCtxt = null;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	344	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	345	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	346
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	347	/**
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	348	* calls ucrypto_sign_init(...) or ucrypto_verify_init(...)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	349	* @return pointer to the context
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	350	*/
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	351	private native static long nativeInit(int mech, boolean sign,
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	352	long keyValue, int keyLength);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	353
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	354	/**
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	355	* calls ucrypto_sign_update(...) or ucrypto_verify_update(...)
32275 17eeb583a331 8133802: replace some <tt> tags (obsolete in html5) in security-libs docs avstepan parents: 31270 diff changeset	356	* @return an error status code (0 means SUCCESS)
27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	357	*/
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	358	private native static int nativeUpdate(long pContext, boolean sign,
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	359	byte[] in, int inOfs, int inLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	360	/**
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	361	* calls ucrypto_sign_update(...) or ucrypto_verify_update(...)
32275 17eeb583a331 8133802: replace some <tt> tags (obsolete in html5) in security-libs docs avstepan parents: 31270 diff changeset	362	* @return an error status code (0 means SUCCESS)
27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	363	*/
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	364	private native static int nativeUpdate(long pContext, boolean sign,
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	365	long pIn, int inLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	366
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	367	/**
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	368	* calls ucrypto_sign_final(...) or ucrypto_verify_final(...)
32275 17eeb583a331 8133802: replace some <tt> tags (obsolete in html5) in security-libs docs avstepan parents: 31270 diff changeset	369	* @return the length of signature bytes or verification status.
27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	370	* If negative, it indicates an error status code
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	371	*/
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	372	private native static int nativeFinal(long pContext, boolean sign,
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	373	byte[] sig, int sigOfs, int sigLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	374
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	375	// actual init() implementation - caller should clone key if needed
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	376	private void init(boolean sign, NativeKey key, int sigLength) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	377	reset(true);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	378	this.sign = sign;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	379	this.sigLength = sigLength;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	380	this.key = key;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	381	long pCtxtVal = nativeInit(mech.value(), sign, key.value(),
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	382	key.length());
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	383	initialized = (pCtxtVal != 0L);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	384	if (initialized) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	385	pCtxt = new SignatureContextRef(this, pCtxtVal, sign);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	386	} else {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	387	throw new UcryptoException("Cannot initialize Signature");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	388	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	389	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	390
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	391	private void ensureInitialized() {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	392	if (!initialized) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	393	init(sign, key, sigLength);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	394	if (!initialized) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	395	throw new UcryptoException("Cannot initialize Signature");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	396	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	397	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	398	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	399
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	400	// returns 0 (success) or negative (ucrypto error occurred)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	401	private int update(byte[] in, int inOfs, int inLen) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	402	if (inOfs < 0 \|\| inOfs + inLen > in.length) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	403	throw new ArrayIndexOutOfBoundsException();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	404	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	405	ensureInitialized();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	406	int k = nativeUpdate(pCtxt.id, sign, in, inOfs, inLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	407	if (k < 0) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	408	reset(false);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	409	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	410	return k;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	411	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	412
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	413	// returns 0 (success) or negative (ucrypto error occurred)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	414	private int update(long pIn, int inLen) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	415	ensureInitialized();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	416	int k = nativeUpdate(pCtxt.id, sign, pIn, inLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	417	if (k < 0) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	418	reset(false);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	419	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	420	return k;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	421	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	422
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	423	// returns 0 (success) or negative (ucrypto error occurred)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	424	private int doFinal(byte[] sigBytes, int sigOfs, int sigLen) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	425	try {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	426	ensureInitialized();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	427	int k = nativeFinal(pCtxt.id, sign, sigBytes, sigOfs, sigLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	428	return k;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	429	} finally {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	430	reset(false);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	431	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	432	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	433
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	434	// check and return RSA key size in number of bytes
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	435	private int checkRSAKeyLength(BigInteger mod) throws InvalidKeyException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	436	int keySize = (mod.bitLength() + 7) >> 3;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	437	int maxDataSize = keySize - PKCS1PADDING_LEN;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	438	if (maxDataSize < encodedLen) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	439	throw new InvalidKeyException
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	440	("Key is too short for this signature algorithm");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	441	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	442	return keySize;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	443	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	444	}

author	sundar
	Mon, 31 Aug 2015 17:51:02 +0530
changeset 32434	769b3d81ae69
parent 32275	17eeb583a331
child 32472	37dabe787932
permissions	-rw-r--r--