All Downloads are FREE. Search and download functionalities are using the official Maven repository.

org.bouncycastle.mail.smime.examples.CreateEncryptedMail Maven / Gradle / Ivy

package org.bouncycastle.mail.smime.examples;

import java.io.FileInputStream;
import java.io.FileOutputStream;
import java.security.KeyStore;
import java.security.Security;
import java.security.cert.Certificate;
import java.security.cert.X509Certificate;
import java.util.Enumeration;
import java.util.Properties;

import jakarta.mail.Address;
import jakarta.mail.Message;
import jakarta.mail.Session;
import jakarta.mail.internet.InternetAddress;
import jakarta.mail.internet.MimeBodyPart;
import jakarta.mail.internet.MimeMessage;

import org.bouncycastle.cms.CMSAlgorithm;
import org.bouncycastle.cms.jcajce.JceCMSContentEncryptorBuilder;
import org.bouncycastle.cms.jcajce.JceKeyTransRecipientInfoGenerator;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import org.bouncycastle.mail.smime.SMIMEEnvelopedGenerator;

/**
 * a simple example that creates a single encrypted mail message.
 * 

* The key store can be created using the class in * org.bouncycastle.jce.examples.PKCS12Example - the program expects only one * key to be present in the key file. *

* Note: while this means that both the private key is available to * the program, the private key is retrieved from the keystore only for * the purposes of locating the corresponding public key, in normal circumstances * you would only be doing this with a certificate available. */ public class CreateEncryptedMail { public static void main( String args[]) throws Exception { if (args.length != 2) { System.err.println("usage: CreateEncryptedMail pkcs12Keystore password"); System.exit(0); } if (Security.getProvider("BC") == null) { Security.addProvider(new BouncyCastleProvider()); } // // Open the key store // KeyStore ks = KeyStore.getInstance("PKCS12", "BC"); ks.load(new FileInputStream(args[0]), args[1].toCharArray()); Enumeration e = ks.aliases(); String keyAlias = null; while (e.hasMoreElements()) { String alias = (String)e.nextElement(); if (ks.isKeyEntry(alias)) { keyAlias = alias; } } if (keyAlias == null) { System.err.println("can't find a private key!"); System.exit(0); } Certificate[] chain = ks.getCertificateChain(keyAlias); // // create the generator for creating an smime/encrypted message // SMIMEEnvelopedGenerator gen = new SMIMEEnvelopedGenerator(); gen.addRecipientInfoGenerator(new JceKeyTransRecipientInfoGenerator((X509Certificate)chain[0]).setProvider("BC")); // // create a subject key id - this has to be done the same way as // it is done in the certificate associated with the private key // version 3 only. // /* MessageDigest dig = MessageDigest.getInstance("SHA1", "BC"); dig.update(cert.getPublicKey().getEncoded()); gen.addKeyTransRecipient(cert.getPublicKey(), dig.digest()); */ // // create the base for our message // MimeBodyPart msg = new MimeBodyPart(); msg.setText("Hello world!"); MimeBodyPart mp = gen.generate(msg, new JceCMSContentEncryptorBuilder(CMSAlgorithm.RC2_CBC).setProvider("BC").build()); // // Get a Session object and create the mail message // Properties props = System.getProperties(); Session session = Session.getDefaultInstance(props, null); Address fromUser = new InternetAddress("\"Eric H. Echidna\""); Address toUser = new InternetAddress("[email protected]"); MimeMessage body = new MimeMessage(session); body.setFrom(fromUser); body.setRecipient(Message.RecipientType.TO, toUser); body.setSubject("example encrypted message"); body.setContent(mp.getContent(), mp.getContentType()); body.saveChanges(); body.writeTo(new FileOutputStream("encrypted.message")); } }





© 2015 - 2024 Weber Informatics LLC | Privacy Policy