• Home
• eu.mihosoft.vrl
• vrl
• 0.4.3.2.1
• source code
• PGPUtil.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

eu.mihosoft.vrl.security.PGPUtil Maven / Gradle / Ivy

/*
 * To change this template, choose Tools | Templates
 * and open the template in the editor.
 */
package eu.mihosoft.vrl.security;

import eu.mihosoft.vrl.io.IOUtil;
import eu.mihosoft.vrl.system.VRL;
import java.io.File;
import java.io.IOException;
import java.io.InputStream;
import java.security.Security;
import java.util.logging.Level;
import java.util.logging.Logger;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.openpgp.PGPException;

/**
 * Utility class for PGP key generation, signing and verification. This class is
 * only functional if the bcpg-*.jar files are on the classpath. As these
 * Jar-Files are signed they cannot be included in the VRL.jar.
 * 

 * These methods use the PGP implementation from http://www.bouncycastle.org/ .
 * 
 *
 * @author Michael Hoffer <[email protected]>
 */
public class PGPUtil {

    private PGPUtil() {
        throw new AssertionError();
    }

    /**
     * Creates an RSA key pair for PGP signing and verification.
     *
     * @param identity the identity, e.g., "mycompany.com"
     * @param password the password for the private key
     * @param pubKeyFile public key file (will be created/overwritten)
     * @param privKeyFile private key file (will be created/overwritten)
     * @param ascii defines whether to use ASCII format
     * @throws IOException if key files cannot be writen
     * @throws RuntimeException if PGP algorithms failed or security provider hasn't
     * been accepted
     */
    public static void createKeyPair(
            String identity, String password,
            File pubKeyFile, File privKeyFile, boolean ascii)
            throws IOException, RuntimeException {

        addProviderIfNecessary();
        try {
            RSAKeyPairGenerator.createKeyPair(
                    identity, password, ascii, pubKeyFile, privKeyFile);
        } catch (PGPException ex) {
            Logger.getLogger(PGPUtil.class.getName()).log(Level.SEVERE, null, ex);
            throw new RuntimeException(ex);
        }
    }

    /**
     * Signs a file. This method creates a signature file for the specified
     * file.
     *
     * @param privKeyFile the private key
     * @param password the password for the private key
     * @param file the file to sign
     * @param signatureFile the signature file (will be created/overwritten)
     * @param ascii defines whether to use ASCII format
     * @throws IOException if files cannot be found or the signature cannot be
     * written
     * @throws RuntimeException if PGP algorithms failed or security provider hasn't
     * been accepted
     */
    public static void signFile(File privKeyFile, String password,
            File file, File signatureFile, boolean ascii)
            throws IOException, RuntimeException {

        addProviderIfNecessary();
        try {
            DetachedSignatureProcessor.signFile(privKeyFile,
                    password, file,
                    signatureFile, ascii);
        } catch (PGPException ex) {
            Logger.getLogger(PGPUtil.class.getName()).log(Level.SEVERE, null, ex);
            throw new RuntimeException(ex);
        }
    }

    /**
     * Verifies a file. This method uses a signature file and a public key to
     * verify the specified file.
     *
     * @param pubKeyFile public key file
     * @param file file to verify
     * @param signatureFile signature file
     * @return true if verification was successful;
     * false otherwise
     * @throws IOException if files cannot be read
     * @throws RuntimeException if PGP algorithms failed or security provider hasn't
     * been accepted
     */
    public static boolean verifyFile(
            File pubKeyFile, File file, File signatureFile)
            throws IOException, RuntimeException {

        addProviderIfNecessary();
        try {
            return DetachedSignatureProcessor.verifyFile(
                    pubKeyFile, file, signatureFile);
        } catch (PGPException ex) {
            Logger.getLogger(PGPUtil.class.getName()).log(Level.SEVERE, null, ex);
            throw new RuntimeException(ex);
        }
    }

    /**
     * Adds the BC provider if necessary, i.e., if the provider hasn't already
     * been added.
     */
    private static void addProviderIfNecessary() {
        if (Security.getProvider("BC") == null) {
            Security.addProvider(new BouncyCastleProvider());
        }
    }

    /**
     * Loads the public VRL/mihosoft key from the resource location and copies
     * it to the tmp file returned by this method.
     *
     * @return file that contains the public key (this is a tmp file, copy it
     * for permanent storage)
     */
    public static File loadPublicVRLKey() {
        try {
            File tmpKeyFile = new File(IOUtil.createTempDir(),
                    "pub-key-vrl.asc");
            IOUtil.saveStreamToFile(VRL.class.getResourceAsStream(
                    "/eu/mihosoft/vrl/resources/security/pub-key-vrl.asc"),
                    tmpKeyFile);
            return tmpKeyFile;
        } catch (IOException ex) {
            Logger.getLogger(PGPUtil.class.getName()).
                    log(Level.SEVERE, null, ex);
        }

        return null;
    }
}