• Home
• name.neuhalfen.projects.crypto.bouncycastle.openpgp
• bouncy-gpg
• 2.3.0
• source code
• PGPUtilities.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

name.neuhalfen.projects.crypto.bouncycastle.openpgp.keys.PGPUtilities Maven / Gradle / Ivy

package name.neuhalfen.projects.crypto.bouncycastle.openpgp.keys;


import static java.util.Objects.requireNonNull;

import java.util.Iterator;
import javax.annotation.Nullable;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.openpgp.PGPException;
import org.bouncycastle.openpgp.PGPPrivateKey;
import org.bouncycastle.openpgp.PGPPublicKeyRing;
import org.bouncycastle.openpgp.PGPPublicKeyRingCollection;
import org.bouncycastle.openpgp.PGPSecretKey;
import org.bouncycastle.openpgp.PGPSecretKeyRingCollection;
import org.bouncycastle.openpgp.operator.PBESecretKeyDecryptor;
import org.bouncycastle.openpgp.operator.PGPDigestCalculatorProvider;
import org.bouncycastle.openpgp.operator.jcajce.JcaPGPDigestCalculatorProviderBuilder;
import org.bouncycastle.openpgp.operator.jcajce.JcePBESecretKeyDecryptorBuilder;


/**
 * FIXME: Cleanup code, throw out duplicates etc.
 */
@SuppressWarnings({"PMD.ClassNamingConventions"})
public final class PGPUtilities {

  private static final org.slf4j.Logger LOGGER = org.slf4j.LoggerFactory
      .getLogger(PGPUtilities.class);

  // No instances
  private PGPUtilities() {
  }

  /**
   * Find secret key.
   *
   * @param pgpSec the pgp sec
   * @param keyID the key id
   * @param pass the pass
   *
   * @return the decrypted secret key
   *
   * @throws PGPException the pGP exception
   */
  @SuppressWarnings({"PMD.UseVarargs", "PMD.OnlyOneReturn"})
  @Nullable
  public static PGPPrivateKey findSecretKey(final PGPSecretKeyRingCollection pgpSec,
      final long keyID, final char[] pass)
      throws PGPException {
    LOGGER.debug("Finding secret key with key ID '0x{}'", Long.toHexString(keyID));
    final PGPSecretKey pgpSecKey = pgpSec.getSecretKey(keyID);

    if (pgpSecKey == null) {
      return null;
    }
    return PGPUtilities.extractPrivateKey(pgpSecKey, pass);
  }

  /**
   * Decrypt an encrypted PGP secret key.
   *
   * @param encryptedKey An encrypted key
   * @param passphrase The passphrase for the key
   *
   * @return the decrypted secret key
   *
   * @throws PGPException E.g. wrong passphrase
   */
  @SuppressWarnings("PMD.UseVarargs")
  public static PGPPrivateKey extractPrivateKey(PGPSecretKey encryptedKey, final char[] passphrase)
      throws PGPException {
    LOGGER.trace("Extracting secret key with key ID '0x{}'",
        Long.toHexString(encryptedKey.getKeyID()));

    final PGPDigestCalculatorProvider calcProvider = new JcaPGPDigestCalculatorProviderBuilder()
        .setProvider(BouncyCastleProvider.PROVIDER_NAME).build();

    final PBESecretKeyDecryptor decryptor = new JcePBESecretKeyDecryptorBuilder(
        calcProvider).setProvider(BouncyCastleProvider.PROVIDER_NAME)
        .build(passphrase);

    return encryptedKey.extractPrivateKey(decryptor);
  }

  /**
   * Extracts the public key with UID {@code publicKeyUid} from key ring collection {@code
   * publicKeyRings}.
   *
   * @param publicKeyUid the public key uid, e.g. [email protected]
   * @param publicKeyRings the public key rings
   *
   * @return the PGP public key ring containing the userId
   *
   * @throws PGPException E.g. multiple keyrings for same uid OR key not found in keyrings
   */
  @SuppressWarnings("PMD.LawOfDemeter")
  public static PGPPublicKeyRing extractPublicKeyRingForUserId(final String publicKeyUid,
      final PGPPublicKeyRingCollection publicKeyRings)
      throws PGPException {

    requireNonNull(publicKeyUid, "publicKeyUid must not be null");
    requireNonNull(publicKeyRings, "publicKeyRings must not be null");

    // the true parameter indicates, that partial matching of the publicKeyUid is enough.
    final Iterator keyRings = publicKeyRings.getKeyRings("<" + publicKeyUid + ">", true);
    PGPPublicKeyRing returnKeyRing = null;
    while (keyRings.hasNext()) {
      final Object currentKeyRing = keyRings.next();
      if (currentKeyRing instanceof PGPPublicKeyRing) {
        if (returnKeyRing == null) {
          returnKeyRing = (PGPPublicKeyRing) currentKeyRing;
        } else {
          throw new PGPException("Multiple public key rings found for UID '" + publicKeyUid + "'!");
        }
      }
    }
    if (returnKeyRing == null) {
      throw new PGPException("No public key ring found for UID '" + publicKeyUid + "'!");
    }
    LOGGER.debug("Extracted public key ring for UID '{}' with key strength {}.", publicKeyUid,
        returnKeyRing
            .getPublicKey().getBitStrength()); // NOPMD: LawOfDemeter
    return returnKeyRing;
  }


}