jdk-sandbox: jdk/src/jdk.crypto.ucrypto/solaris/classes/com/oracle/security/ucrypto/GCMParameters.java@cb5f289ba033 (annotated)

27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	1	/*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	2	* Copyright (c) 2014, Oracle and/or its affiliates. All rights reserved.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	3	* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	4	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	5	* This code is free software; you can redistribute it and/or modify it
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	6	* under the terms of the GNU General Public License version 2 only, as
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	7	* published by the Free Software Foundation. Oracle designates this
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	8	* particular file as subject to the "Classpath" exception as provided
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	9	* by Oracle in the LICENSE file that accompanied this code.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	10	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	11	* This code is distributed in the hope that it will be useful, but WITHOUT
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	12	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	13	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	14	* version 2 for more details (a copy is included in the LICENSE file that
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	15	* accompanied this code).
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	16	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	17	* You should have received a copy of the GNU General Public License version
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	18	* 2 along with this work; if not, write to the Free Software Foundation,
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	19	* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	20	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	21	* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	22	* or visit www.oracle.com if you need additional information or have any
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	23	* questions.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	24	*/
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	25
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	26	package com.oracle.security.ucrypto;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	27
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	28	import java.io.IOException;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	29	import java.util.Arrays;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	30	import java.security.AlgorithmParametersSpi;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	31	import java.security.spec.AlgorithmParameterSpec;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	32	import java.security.spec.InvalidParameterSpecException;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	33	import javax.crypto.spec.GCMParameterSpec;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	34	import sun.security.util.*;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	35
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	36	/**
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	37	* This class implements the parameter set used with GCM mode
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	38	* which is defined in RFC5084 as follows:
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	39	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	40	* <pre>
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	41	* GCMParameters ::= SEQUENCE {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	42	* aes-nonce OCTET STRING, -- recommended size is 12 octets
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	43	* aes-ICVlen AES-GCM-ICVlen DEFAULT 12 }
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	44	*
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	45	* where
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	46	* AES-GCM-ICVlen ::= INTEGER (12 \| 13 \| 14 \| 15 \| 16)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	47	* NOTE: however, NIST 800-38D also lists 4 (32bit) and 8 (64bit)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	48	* as possible AES-GCM-ICVlen values, so we allow all 6 values.
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	49	* </pre>
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	50	*
35302 e4d2275861c3 8136494: Update "@since 1.9" to "@since 9" to match java.version.specification iris parents: 32646 diff changeset	51	* @since 9
27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	52	*/
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	53	public final class GCMParameters extends AlgorithmParametersSpi {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	54
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	55	private byte[] iv; // i.e. aes-nonce
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	56	private int tLen; // i.e. aes-ICVlen, in bytes
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	57
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	58	public GCMParameters() {}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	59
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	60	private void setValues(byte[] iv, int tLen) throws IOException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	61	if (iv == null) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	62	throw new IOException("IV cannot be null");
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	63	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	64	if (tLen != 4 && tLen != 8 && (tLen < 12 \|\| tLen > 16)) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	65	throw new IOException("Unsupported tag length: " + tLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	66	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	67	this.iv = iv;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	68	this.tLen = tLen;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	69	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	70
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	71	protected byte[] engineGetEncoded() throws IOException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	72	DerOutputStream out = new DerOutputStream();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	73	DerOutputStream bytes = new DerOutputStream();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	74
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	75	bytes.putOctetString(iv);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	76	bytes.putInteger(tLen);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	77	out.write(DerValue.tag_Sequence, bytes);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	78	return out.toByteArray();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	79	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	80
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	81	protected byte[] engineGetEncoded(String format) throws IOException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	82	// ignore format for now
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	83	return engineGetEncoded();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	84	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	85
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	86	protected <T extends AlgorithmParameterSpec>
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	87	T engineGetParameterSpec(Class<T> paramSpec)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	88	throws InvalidParameterSpecException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	89	if (GCMParameterSpec.class.isAssignableFrom(paramSpec)) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	90	return paramSpec.cast(new GCMParameterSpec(tLen*8, iv.clone()));
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	91	} else {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	92	throw new InvalidParameterSpecException
32646 db7c5592a47f 8133535: Better exception messaging in Ucrypto code coffeys parents: 27182 diff changeset	93	("Inappropriate parameter specification. Received " +
db7c5592a47f 8133535: Better exception messaging in Ucrypto code coffeys parents: 27182 diff changeset	94	paramSpec.getClass().getName());
27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	95	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	96	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	97
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	98	protected void engineInit(AlgorithmParameterSpec paramSpec)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	99	throws InvalidParameterSpecException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	100	if (!(paramSpec instanceof GCMParameterSpec)) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	101	throw new InvalidParameterSpecException
32646 db7c5592a47f 8133535: Better exception messaging in Ucrypto code coffeys parents: 27182 diff changeset	102	("Inappropriate parameter specification. Received " +
db7c5592a47f 8133535: Better exception messaging in Ucrypto code coffeys parents: 27182 diff changeset	103	paramSpec.getClass().getName());
27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	104	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	105	GCMParameterSpec gcmSpec = (GCMParameterSpec) paramSpec;
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	106	try {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	107	setValues(gcmSpec.getIV(), gcmSpec.getTLen()/8);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	108	} catch (IOException ioe) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	109	throw new InvalidParameterSpecException(ioe.getMessage());
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	110	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	111	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	112
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	113	protected void engineInit(byte[] encoded) throws IOException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	114	DerValue val = new DerValue(encoded);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	115	if (val.tag == DerValue.tag_Sequence) {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	116	val.data.reset();
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	117	setValues(val.data.getOctetString(), val.data.getInteger());
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	118	} else {
32646 db7c5592a47f 8133535: Better exception messaging in Ucrypto code coffeys parents: 27182 diff changeset	119	throw new IOException("GCM parameter parsing error: SEQ tag expected." +
db7c5592a47f 8133535: Better exception messaging in Ucrypto code coffeys parents: 27182 diff changeset	120	" Received: " + val.tag);
27182 4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	121	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	122	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	123
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	124	protected void engineInit(byte[] encoded, String format)
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	125	throws IOException {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	126	// ignore format for now
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	127	engineInit(encoded);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	128	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	129
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	130	protected String engineToString() {
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	131	return ("IV=" + Arrays.toString(iv) + ", tLen=" + tLen * 8);
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	132	}
4525d13b8af1 8046002: Move Ucrypto to the open jdk repo valeriep parents: diff changeset	133	}

author	rehn
	Fri, 07 Jul 2017 23:04:06 +0200
changeset 46643	cb5f289ba033
parent 35302	e4d2275861c3
permissions	-rw-r--r--