255 lines
7.5 KiB
Java
255 lines
7.5 KiB
Java
/* SignatureSpi.java --- Signature Service Provider Interface
|
|
Copyright (C) 1999 Free Software Foundation, Inc.
|
|
|
|
This file is part of GNU Classpath.
|
|
|
|
GNU Classpath is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 2, or (at your option)
|
|
any later version.
|
|
|
|
GNU Classpath is distributed in the hope that it will be useful, but
|
|
WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with GNU Classpath; see the file COPYING. If not, write to the
|
|
Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA
|
|
02111-1307 USA.
|
|
|
|
Linking this library statically or dynamically with other modules is
|
|
making a combined work based on this library. Thus, the terms and
|
|
conditions of the GNU General Public License cover the whole
|
|
combination.
|
|
|
|
As a special exception, the copyright holders of this library give you
|
|
permission to link this library with independent modules to produce an
|
|
executable, regardless of the license terms of these independent
|
|
modules, and to copy and distribute the resulting executable under
|
|
terms of your choice, provided that you also meet, for each linked
|
|
independent module, the terms and conditions of the license of that
|
|
module. An independent module is a module which is not derived from
|
|
or based on this library. If you modify this library, you may extend
|
|
this exception to your version of the library, but you are not
|
|
obligated to do so. If you do not wish to do so, delete this
|
|
exception statement from your version. */
|
|
|
|
package java.security;
|
|
import java.security.spec.AlgorithmParameterSpec;
|
|
|
|
/**
|
|
SignatureSpi defines the Service Provider Interface (SPI)
|
|
for the Signature class. The signature class provides an
|
|
interface to a digital signature algorithm. Digital signatures
|
|
are used for authentication and integrity of data.
|
|
|
|
@author Mark Benvenuto <ivymccough@worldnet.att.net>
|
|
|
|
@since JDK 1.2
|
|
*/
|
|
public abstract class SignatureSpi
|
|
{
|
|
/**
|
|
Source of randomness
|
|
*/
|
|
protected SecureRandom appRandom;
|
|
|
|
/**
|
|
Creates a new instance of SignatureSpi.
|
|
*/
|
|
public SignatureSpi()
|
|
{
|
|
appRandom = null;
|
|
}
|
|
|
|
/**
|
|
Initializes this class with the public key for
|
|
verification purposes.
|
|
|
|
@param publicKey the public key to verify with
|
|
|
|
@throws InvalidKeyException invalid key
|
|
*/
|
|
protected abstract void engineInitVerify(PublicKey publicKey)
|
|
throws InvalidKeyException;
|
|
|
|
/**
|
|
Initializes this class with the private key for
|
|
signing purposes.
|
|
|
|
@param privateKey the private key to sign with
|
|
|
|
@throws InvalidKeyException invalid key
|
|
*/
|
|
protected abstract void engineInitSign(PrivateKey privateKey)
|
|
throws InvalidKeyException;
|
|
|
|
/**
|
|
Initializes this class with the private key and source
|
|
of randomness for signing purposes.
|
|
|
|
This cannot be abstract backward compatibility reasons
|
|
|
|
@param privateKey the private key to sign with
|
|
@param random Source of randomness
|
|
|
|
@throws InvalidKeyException invalid key
|
|
|
|
@since JDK 1.2
|
|
*/
|
|
protected void engineInitSign(PrivateKey privateKey, SecureRandom random)
|
|
throws InvalidKeyException
|
|
{
|
|
appRandom = random;
|
|
engineInitSign(privateKey);
|
|
}
|
|
|
|
/**
|
|
Updates the data to be signed or verified with the specified
|
|
byte.
|
|
|
|
@param b byte to update with
|
|
|
|
@throws SignatureException Engine not properly initialized
|
|
*/
|
|
protected abstract void engineUpdate(byte b) throws SignatureException;
|
|
|
|
/**
|
|
Updates the data to be signed or verified with the specified
|
|
bytes.
|
|
|
|
@param b array of bytes
|
|
@param off the offset to start at in the array
|
|
@param len the length of the bytes to use in the array
|
|
|
|
@throws SignatureException engine not properly initialized
|
|
*/
|
|
protected abstract void engineUpdate(byte[] b, int off, int len)
|
|
throws SignatureException;
|
|
|
|
/**
|
|
Returns the signature bytes of all the data fed to this class.
|
|
The format of the output depends on the underlying signature
|
|
algorithm.
|
|
|
|
@return the signature
|
|
|
|
@throws SignatureException engine not properly initialized
|
|
*/
|
|
protected abstract byte[] engineSign() throws SignatureException;
|
|
|
|
/**
|
|
Generates signature bytes of all the data fed to this class
|
|
and outputs it to the passed array. The format of the
|
|
output depends on the underlying signature algorithm.
|
|
|
|
This cannot be abstract backward compatibility reasons.
|
|
After calling this method, the signature is reset to its
|
|
initial state and can be used to generate additional
|
|
signatures.
|
|
|
|
@param outbuff array of bytes
|
|
@param offset the offset to start at in the array
|
|
@param len the length of the bytes to put into the array.
|
|
Neither this method or the GNU provider will
|
|
return partial digests. If len is less than the
|
|
signature length, this method will throw
|
|
SignatureException. If it is greater than or equal
|
|
then it is ignored.
|
|
|
|
@return number of bytes in outbuf
|
|
|
|
@throws SignatureException engine not properly initialized
|
|
|
|
@since JDK 1.2
|
|
*/
|
|
protected int engineSign(byte[] outbuf, int offset, int len)
|
|
throws SignatureException
|
|
{
|
|
byte tmp[] = engineSign();
|
|
|
|
if (tmp.length > len)
|
|
throw new SignatureException("Invalid Length");
|
|
|
|
System.arraycopy(outbuf, offset, tmp, 0, tmp.length);
|
|
|
|
return tmp.length;
|
|
}
|
|
|
|
/**
|
|
Verifies the passed signature.
|
|
|
|
@param sigBytes the signature bytes to verify
|
|
|
|
@return true if verified, false otherwise
|
|
|
|
@throws SignatureException engine not properly initialized
|
|
or wrong signature
|
|
*/
|
|
protected abstract boolean engineVerify(byte[] sigBytes)
|
|
throws SignatureException;
|
|
|
|
/**
|
|
Sets the specified algorithm parameter to the specified value.
|
|
|
|
@param param parameter name
|
|
@param value parameter value
|
|
|
|
@throws InvalidParameterException invalid parameter, parameter
|
|
already set and cannot set again, a security exception,
|
|
etc.
|
|
|
|
@deprecated use the other setParameter
|
|
*/
|
|
protected abstract void engineSetParameter(String param, Object value)
|
|
throws InvalidParameterException;
|
|
|
|
/**
|
|
Sets the signature engine with the specified
|
|
AlgorithmParameterSpec;
|
|
|
|
This cannot be abstract backward compatibility reasons
|
|
By default this always throws UnsupportedOperationException
|
|
if not overridden;
|
|
|
|
@param params the parameters
|
|
|
|
@throws InvalidParameterException invalid parameter, parameter
|
|
already set and cannot set again, a security exception,
|
|
etc.
|
|
*/
|
|
protected void engineSetParameter(AlgorithmParameterSpec params)
|
|
throws InvalidAlgorithmParameterException
|
|
{
|
|
throw new UnsupportedOperationException();
|
|
}
|
|
|
|
/**
|
|
Gets the value for the specified algorithm parameter.
|
|
|
|
@param param parameter name
|
|
|
|
@return parameter value
|
|
|
|
@throws InvalidParameterException invalid parameter
|
|
|
|
@deprecated use the other getParameter
|
|
*/
|
|
protected abstract Object engineGetParameter(String param)
|
|
throws InvalidParameterException;
|
|
|
|
/**
|
|
Returns a clone if cloneable.
|
|
|
|
@return a clone if cloneable.
|
|
|
|
@throws CloneNotSupportedException if the implementation does
|
|
not support cloning
|
|
*/
|
|
public Object clone() throws CloneNotSupportedException
|
|
{
|
|
throw new CloneNotSupportedException();
|
|
}
|
|
}
|