org.bouncycastle.tls.DigitallySigned Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of impersonator Show documentation
Show all versions of impersonator Show documentation
Spoof TLS/JA3/JA4 and HTTP/2 fingerprints in Java
package org.bouncycastle.tls;
import java.io.IOException;
import java.io.InputStream;
import java.io.OutputStream;
public final class DigitallySigned
{
private final SignatureAndHashAlgorithm algorithm;
private final byte[] signature;
public DigitallySigned(SignatureAndHashAlgorithm algorithm, byte[] signature)
{
if (signature == null)
{
throw new IllegalArgumentException("'signature' cannot be null");
}
this.algorithm = algorithm;
this.signature = signature;
}
/**
* @return a {@link SignatureAndHashAlgorithm} (or null before TLS 1.2).
*/
public SignatureAndHashAlgorithm getAlgorithm()
{
return algorithm;
}
public byte[] getSignature()
{
return signature;
}
/**
* Encode this {@link DigitallySigned} to an {@link OutputStream}.
*
* @param output
* the {@link OutputStream} to encode to.
* @throws IOException
*/
public void encode(OutputStream output) throws IOException
{
if (algorithm != null)
{
algorithm.encode(output);
}
TlsUtils.writeOpaque16(signature, output);
}
/**
* Parse a {@link DigitallySigned} from an {@link InputStream}.
*
* @param context
* the {@link TlsContext} of the current connection.
* @param input
* the {@link InputStream} to parse from.
* @return a {@link DigitallySigned} object.
* @throws IOException
*/
public static DigitallySigned parse(TlsContext context, InputStream input) throws IOException
{
SignatureAndHashAlgorithm algorithm = null;
if (TlsUtils.isTLSv12(context))
{
algorithm = SignatureAndHashAlgorithm.parse(input);
if (SignatureAlgorithm.anonymous == algorithm.getSignature())
{
throw new TlsFatalAlert(AlertDescription.illegal_parameter);
}
}
byte[] signature = TlsUtils.readOpaque16(input);
return new DigitallySigned(algorithm, signature);
}
}