--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/jdk/src/share/classes/com/sun/crypto/provider/DESedeKeyGenerator.java	Sat Dec 01 00:00:00 2007 +0000
@@ -0,0 +1,152 @@
+/*
+ * Copyright 1997-2007 Sun Microsystems, Inc.  All Rights Reserved.
+ * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
+ *
+ * This code is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU General Public License version 2 only, as
+ * published by the Free Software Foundation.  Sun designates this
+ * particular file as subject to the "Classpath" exception as provided
+ * by Sun in the LICENSE file that accompanied this code.
+ *
+ * This code is distributed in the hope that it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+ * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
+ * version 2 for more details (a copy is included in the LICENSE file that
+ * accompanied this code).
+ *
+ * You should have received a copy of the GNU General Public License version
+ * 2 along with this work; if not, write to the Free Software Foundation,
+ * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+ *
+ * Please contact Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
+ * CA 95054 USA or visit www.sun.com if you need additional information or
+ * have any questions.
+ */
+
+package com.sun.crypto.provider;
+
+import javax.crypto.KeyGeneratorSpi;
+import javax.crypto.SecretKey;
+import javax.crypto.spec.DESedeKeySpec;
+import java.security.SecureRandom;
+import java.security.InvalidParameterException;
+import java.security.InvalidAlgorithmParameterException;
+import java.security.InvalidKeyException;
+import java.security.spec.AlgorithmParameterSpec;
+
+/**
+ * This class generates a Triple DES key.
+ *
+ * @author Jan Luehe
+ *
+ */
+
+public final class DESedeKeyGenerator extends KeyGeneratorSpi {
+
+    private SecureRandom random = null;
+    private int keysize = 168;
+
+    /**
+     * Verify the SunJCE provider in the constructor.
+     *
+     * @exception SecurityException if fails to verify
+     * its own integrity
+     */
+    public DESedeKeyGenerator() {
+        if (!SunJCE.verifySelfIntegrity(this.getClass())) {
+            throw new SecurityException("The SunJCE provider may have been " +
+                                        "tampered.");
+        }
+    }
+
+    /**
+     * Initializes this key generator.
+     *
+     * @param random the source of randomness for this generator
+     */
+    protected void engineInit(SecureRandom random) {
+        this.random = random;
+    }
+
+    /**
+     * Initializes this key generator with the specified parameter
+     * set and a user-provided source of randomness.
+     *
+     * @param params the key generation parameters
+     * @param random the source of randomness for this key generator
+     *
+     * @exception InvalidAlgorithmParameterException if <code>params</code> is
+     * inappropriate for this key generator
+     */
+    protected void engineInit(AlgorithmParameterSpec params,
+                              SecureRandom random)
+        throws InvalidAlgorithmParameterException {
+            throw new InvalidAlgorithmParameterException
+                ("Triple DES key generation does not take any parameters");
+    }
+
+    /**
+     * Initializes this key generator for a certain keysize, using the given
+     * source of randomness.
+     *
+     * @param keysize the keysize. This is an algorithm-specific
+     * metric specified in number of bits. A keysize with 112 bits of entropy
+     * corresponds to a Triple DES key with 2 intermediate keys, and a keysize
+     * with 168 bits of entropy corresponds to a Triple DES key with 3
+     * intermediate keys.
+     * @param random the source of randomness for this key generator
+     */
+    protected void engineInit(int keysize, SecureRandom random) {
+        if ((keysize != 112) && (keysize != 168)) {
+            throw new InvalidParameterException("Wrong keysize: must be "
+                                                + "equal to 112 or 168");
+        }
+        this.keysize = keysize;
+        this.engineInit(random);
+    }
+
+    /**
+     * Generates the Triple DES key.
+     *
+     * @return the new Triple DES key
+     */
+    protected SecretKey engineGenerateKey() {
+        if (this.random == null) {
+            this.random = SunJCE.RANDOM;
+        }
+
+        byte[] rawkey = new byte[DESedeKeySpec.DES_EDE_KEY_LEN];
+
+        if (keysize == 168) {
+            // 3 intermediate keys
+            this.random.nextBytes(rawkey);
+
+            // Do parity adjustment for each intermediate key
+            DESKeyGenerator.setParityBit(rawkey, 0);
+            DESKeyGenerator.setParityBit(rawkey, 8);
+            DESKeyGenerator.setParityBit(rawkey, 16);
+        } else {
+            // 2 intermediate keys
+            byte[] tmpkey = new byte[16];
+            this.random.nextBytes(tmpkey);
+            DESKeyGenerator.setParityBit(tmpkey, 0);
+            DESKeyGenerator.setParityBit(tmpkey, 8);
+            System.arraycopy(tmpkey, 0, rawkey, 0, tmpkey.length);
+            // Copy the first 8 bytes into the last
+            System.arraycopy(tmpkey, 0, rawkey, 16, 8);
+            java.util.Arrays.fill(tmpkey, (byte)0x00);
+        }
+
+        DESedeKey desEdeKey = null;
+        try {
+            desEdeKey = new DESedeKey(rawkey);
+        } catch (InvalidKeyException ike) {
+            // this never happens
+            throw new RuntimeException(ike.getMessage());
+        }
+
+        java.util.Arrays.fill(rawkey, (byte)0x00);
+
+        return desEdeKey;
+    }
+}