org.bouncycastle.jsse.provider.JsseUtils_7 Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of bctls-fips Show documentation
Show all versions of bctls-fips Show documentation
The Bouncy Castle Java APIs for the TLS, including a JSSE provider. The APIs are designed primarily to be used in conjunction with the BC FIPS provider. The APIs may also be used with other providers although if being used in a FIPS context it is the responsibility of the user to ensure that any other providers used are FIPS certified and used appropriately.
package org.bouncycastle.jsse.provider;
import java.security.AlgorithmConstraints;
import java.security.AlgorithmParameters;
import java.security.CryptoPrimitive;
import java.security.Key;
import java.util.Collections;
import java.util.EnumSet;
import java.util.HashSet;
import java.util.Set;
import org.bouncycastle.jsse.java.security.BCAlgorithmConstraints;
import org.bouncycastle.jsse.java.security.BCCryptoPrimitive;
abstract class JsseUtils_7
extends JsseUtils
{
static final Set KEY_AGREEMENT_CRYPTO_PRIMITIVES =
Collections.unmodifiableSet(EnumSet.of(CryptoPrimitive.KEY_AGREEMENT));
static final Set KEY_ENCAPSULATION_CRYPTO_PRIMITIVES =
Collections.unmodifiableSet(EnumSet.of(CryptoPrimitive.KEY_ENCAPSULATION));
static final Set SIGNATURE_CRYPTO_PRIMITIVES =
Collections.unmodifiableSet(EnumSet.of(CryptoPrimitive.SIGNATURE));
static final AlgorithmConstraints DEFAULT_ALGORITHM_CONSTRAINTS = new ExportAlgorithmConstraints(
ProvAlgorithmConstraints.DEFAULT);
static class ExportAlgorithmConstraints implements AlgorithmConstraints
{
private final BCAlgorithmConstraints constraints;
ExportAlgorithmConstraints(BCAlgorithmConstraints constraints)
{
this.constraints = constraints;
}
public boolean permits(Set primitives, Key key)
{
return constraints.permits(importCryptoPrimitives(primitives), key);
}
public boolean permits(Set primitives, String algorithm, AlgorithmParameters parameters)
{
return constraints.permits(importCryptoPrimitives(primitives), algorithm, parameters);
}
public boolean permits(Set primitives, String algorithm, Key key,
AlgorithmParameters parameters)
{
return constraints.permits(importCryptoPrimitives(primitives), algorithm, key, parameters);
}
BCAlgorithmConstraints unwrap()
{
return constraints;
}
}
static class ImportAlgorithmConstraints implements BCAlgorithmConstraints
{
private final AlgorithmConstraints constraints;
ImportAlgorithmConstraints(AlgorithmConstraints constraints)
{
this.constraints = constraints;
}
public boolean permits(Set primitives, Key key)
{
return constraints.permits(exportCryptoPrimitives(primitives), key);
}
public boolean permits(Set primitives, String algorithm, AlgorithmParameters parameters)
{
return constraints.permits(exportCryptoPrimitives(primitives), algorithm, parameters);
}
public boolean permits(Set primitives, String algorithm, Key key,
AlgorithmParameters parameters)
{
return constraints.permits(exportCryptoPrimitives(primitives), algorithm, key, parameters);
}
AlgorithmConstraints unwrap()
{
return constraints;
}
}
static AlgorithmConstraints exportAlgorithmConstraints(BCAlgorithmConstraints constraints)
{
if (ProvAlgorithmConstraints.DEFAULT == constraints)
{
return DEFAULT_ALGORITHM_CONSTRAINTS;
}
if (constraints == null)
{
return null;
}
if (constraints instanceof ImportAlgorithmConstraints)
{
return ((ImportAlgorithmConstraints)constraints).unwrap();
}
return new ExportAlgorithmConstraints(constraints);
}
/*
* NOTE: Return type is Object to isolate callers from JDK 7 type
*/
static Object exportAlgorithmConstraintsDynamic(BCAlgorithmConstraints constraints)
{
return exportAlgorithmConstraints(constraints);
}
static CryptoPrimitive exportCryptoPrimitive(BCCryptoPrimitive primitive)
{
switch (primitive)
{
case MESSAGE_DIGEST:
return CryptoPrimitive.MESSAGE_DIGEST;
case SECURE_RANDOM:
return CryptoPrimitive.SECURE_RANDOM;
case BLOCK_CIPHER:
return CryptoPrimitive.BLOCK_CIPHER;
case STREAM_CIPHER:
return CryptoPrimitive.STREAM_CIPHER;
case MAC:
return CryptoPrimitive.MAC;
case KEY_WRAP:
return CryptoPrimitive.KEY_WRAP;
case PUBLIC_KEY_ENCRYPTION:
return CryptoPrimitive.PUBLIC_KEY_ENCRYPTION;
case SIGNATURE:
return CryptoPrimitive.SIGNATURE;
case KEY_ENCAPSULATION:
return CryptoPrimitive.KEY_ENCAPSULATION;
case KEY_AGREEMENT:
return CryptoPrimitive.KEY_AGREEMENT;
default:
return null;
}
}
static Set exportCryptoPrimitives(Set primitives)
{
if (SIGNATURE_CRYPTO_PRIMITIVES_BC == primitives)
{
return SIGNATURE_CRYPTO_PRIMITIVES;
}
if (KEY_AGREEMENT_CRYPTO_PRIMITIVES_BC == primitives)
{
return KEY_AGREEMENT_CRYPTO_PRIMITIVES;
}
if (KEY_ENCAPSULATION_CRYPTO_PRIMITIVES_BC == primitives)
{
return KEY_ENCAPSULATION_CRYPTO_PRIMITIVES;
}
HashSet result = new HashSet();
for (BCCryptoPrimitive primitive : primitives)
{
result.add(exportCryptoPrimitive(primitive));
}
return result;
}
static BCAlgorithmConstraints importAlgorithmConstraints(AlgorithmConstraints constraints)
{
if (null == constraints)
{
return null;
}
if (constraints instanceof ExportAlgorithmConstraints)
{
return ((ExportAlgorithmConstraints)constraints).unwrap();
}
return new ImportAlgorithmConstraints(constraints);
}
/*
* NOTE: Argument type is Object to isolate callers from JDK 7 type
*/
static BCAlgorithmConstraints importAlgorithmConstraintsDynamic(Object constraints)
{
return importAlgorithmConstraints((AlgorithmConstraints)constraints);
}
static BCCryptoPrimitive importCryptoPrimitive(CryptoPrimitive primitive)
{
switch (primitive)
{
case MESSAGE_DIGEST:
return BCCryptoPrimitive.MESSAGE_DIGEST;
case SECURE_RANDOM:
return BCCryptoPrimitive.SECURE_RANDOM;
case BLOCK_CIPHER:
return BCCryptoPrimitive.BLOCK_CIPHER;
case STREAM_CIPHER:
return BCCryptoPrimitive.STREAM_CIPHER;
case MAC:
return BCCryptoPrimitive.MAC;
case KEY_WRAP:
return BCCryptoPrimitive.KEY_WRAP;
case PUBLIC_KEY_ENCRYPTION:
return BCCryptoPrimitive.PUBLIC_KEY_ENCRYPTION;
case SIGNATURE:
return BCCryptoPrimitive.SIGNATURE;
case KEY_ENCAPSULATION:
return BCCryptoPrimitive.KEY_ENCAPSULATION;
case KEY_AGREEMENT:
return BCCryptoPrimitive.KEY_AGREEMENT;
default:
return null;
}
}
static Set importCryptoPrimitives(Set primitives)
{
if (SIGNATURE_CRYPTO_PRIMITIVES == primitives)
{
return SIGNATURE_CRYPTO_PRIMITIVES_BC;
}
if (KEY_AGREEMENT_CRYPTO_PRIMITIVES == primitives)
{
return KEY_AGREEMENT_CRYPTO_PRIMITIVES_BC;
}
if (KEY_ENCAPSULATION_CRYPTO_PRIMITIVES == primitives)
{
return KEY_ENCAPSULATION_CRYPTO_PRIMITIVES_BC;
}
HashSet result = new HashSet();
for (CryptoPrimitive primitive : primitives)
{
result.add(importCryptoPrimitive(primitive));
}
return result;
}
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy