Example 6 with EnvelopedData
use of com.github.zhenwei.pkix.util.asn1.cms.EnvelopedData in project LinLong-Java by zhenwei1108.
the class PKIArchiveControlBuilder method build.
/**
* Build the PKIArchiveControl using the passed in encryptor to encrypt its contents.
*
* @param contentEncryptor a suitable content encryptor.
* @return a PKIArchiveControl object.
* @throws CMSException in the event the build fails.
*/
public PKIArchiveControl build(OutputEncryptor contentEncryptor) throws CMSException {
CMSEnvelopedData envContent = envGen.generate(keyContent, contentEncryptor);
EnvelopedData envD = EnvelopedData.getInstance(envContent.toASN1Structure().getContent());
return new PKIArchiveControl(new PKIArchiveOptions(new EncryptedKey(envD)));
}
Also used :
CMSEnvelopedData(com.github.zhenwei.pkix.cms.CMSEnvelopedData)
EncryptedKey(com.github.zhenwei.pkix.util.asn1.crmf.EncryptedKey)
PKIArchiveOptions(com.github.zhenwei.pkix.util.asn1.crmf.PKIArchiveOptions)
CMSEnvelopedData(com.github.zhenwei.pkix.cms.CMSEnvelopedData)
EnvelopedData(com.github.zhenwei.pkix.util.asn1.cms.EnvelopedData)
Example 7 with EnvelopedData
use of com.github.zhenwei.pkix.util.asn1.cms.EnvelopedData in project LinLong-Java by zhenwei1108.
the class CMSEnvelopedDataGenerator method doGenerate.
private CMSEnvelopedData doGenerate(CMSTypedData content, OutputEncryptor contentEncryptor) throws CMSException {
ASN1EncodableVector recipientInfos = new ASN1EncodableVector();
AlgorithmIdentifier encAlgId;
ASN1OctetString encContent;
ByteArrayOutputStream bOut = new ByteArrayOutputStream();
try {
OutputStream cOut = contentEncryptor.getOutputStream(bOut);
content.write(cOut);
cOut.close();
if (contentEncryptor instanceof OutputAEADEncryptor) {
byte[] mac = ((OutputAEADEncryptor) contentEncryptor).getMAC();
bOut.write(mac, 0, mac.length);
}
} catch (IOException e) {
throw new CMSException("");
}
byte[] encryptedContent = bOut.toByteArray();
encAlgId = contentEncryptor.getAlgorithmIdentifier();
encContent = new BEROctetString(encryptedContent);
GenericKey encKey = contentEncryptor.getKey();
for (Iterator it = recipientInfoGenerators.iterator(); it.hasNext(); ) {
RecipientInfoGenerator recipient = (RecipientInfoGenerator) it.next();
recipientInfos.add(recipient.generate(encKey));
}
EncryptedContentInfo eci = new EncryptedContentInfo(content.getContentType(), encAlgId, encContent);
ASN1Set unprotectedAttrSet = null;
if (unprotectedAttributeGenerator != null) {
AttributeTable attrTable = unprotectedAttributeGenerator.getAttributes(Collections.EMPTY_MAP);
unprotectedAttrSet = new BERSet(attrTable.toASN1EncodableVector());
}
ContentInfo contentInfo = new ContentInfo(CMSObjectIdentifiers.envelopedData, new EnvelopedData(originatorInfo, new DERSet(recipientInfos), eci, unprotectedAttrSet));
return new CMSEnvelopedData(contentInfo);
}
Also used :
ASN1OctetString(com.github.zhenwei.core.asn1.ASN1OctetString)
BERSet(com.github.zhenwei.core.asn1.BERSet)
OutputStream(java.io.OutputStream)
ByteArrayOutputStream(java.io.ByteArrayOutputStream)
AttributeTable(com.github.zhenwei.pkix.util.asn1.cms.AttributeTable)
ByteArrayOutputStream(java.io.ByteArrayOutputStream)
IOException(java.io.IOException)
OutputAEADEncryptor(com.github.zhenwei.pkix.operator.OutputAEADEncryptor)
DERSet(com.github.zhenwei.core.asn1.DERSet)
AlgorithmIdentifier(com.github.zhenwei.core.asn1.x509.AlgorithmIdentifier)
BEROctetString(com.github.zhenwei.core.asn1.BEROctetString)
ASN1Set(com.github.zhenwei.core.asn1.ASN1Set)
EncryptedContentInfo(com.github.zhenwei.pkix.util.asn1.cms.EncryptedContentInfo)
ContentInfo(com.github.zhenwei.pkix.util.asn1.cms.ContentInfo)
Iterator(java.util.Iterator)
ASN1EncodableVector(com.github.zhenwei.core.asn1.ASN1EncodableVector)
GenericKey(com.github.zhenwei.pkix.operator.GenericKey)
EnvelopedData(com.github.zhenwei.pkix.util.asn1.cms.EnvelopedData)
EncryptedContentInfo(com.github.zhenwei.pkix.util.asn1.cms.EncryptedContentInfo)
Example 8 with EnvelopedData
use of com.github.zhenwei.pkix.util.asn1.cms.EnvelopedData in project itext2 by albfernandez.
the class PdfPublicKeySecurityHandler method createDERForRecipient.
private ASN1Primitive createDERForRecipient(byte[] in, X509Certificate cert) throws IOException, GeneralSecurityException {
String s = "1.2.840.113549.3.2";
AlgorithmParameterGenerator algorithmparametergenerator = AlgorithmParameterGenerator.getInstance(s);
AlgorithmParameters algorithmparameters = algorithmparametergenerator.generateParameters();
ByteArrayInputStream bytearrayinputstream = new ByteArrayInputStream(algorithmparameters.getEncoded("ASN.1"));
ASN1InputStream asn1inputstream = new ASN1InputStream(bytearrayinputstream);
ASN1Primitive derobject = asn1inputstream.readObject();
KeyGenerator keygenerator = KeyGenerator.getInstance(s);
keygenerator.init(128);
SecretKey secretkey = keygenerator.generateKey();
Cipher cipher = Cipher.getInstance(s);
cipher.init(1, secretkey, algorithmparameters);
byte[] abyte1 = cipher.doFinal(in);
DEROctetString deroctetstring = new DEROctetString(abyte1);
KeyTransRecipientInfo keytransrecipientinfo = computeRecipientInfo(cert, secretkey.getEncoded());
DERSet derset = new DERSet(new RecipientInfo(keytransrecipientinfo));
AlgorithmIdentifier algorithmidentifier = new AlgorithmIdentifier(new ASN1ObjectIdentifier(s), derobject);
EncryptedContentInfo encryptedcontentinfo = new EncryptedContentInfo(PKCSObjectIdentifiers.data, algorithmidentifier, deroctetstring);
EnvelopedData env = new EnvelopedData(null, derset, encryptedcontentinfo, (org.bouncycastle.asn1.ASN1Set) null);
ContentInfo contentinfo = new ContentInfo(PKCSObjectIdentifiers.envelopedData, env);
return contentinfo.toASN1Primitive();
}
Also used :
ASN1InputStream(org.bouncycastle.asn1.ASN1InputStream)
KeyTransRecipientInfo(org.bouncycastle.asn1.cms.KeyTransRecipientInfo)
AlgorithmParameterGenerator(java.security.AlgorithmParameterGenerator)
DEROctetString(org.bouncycastle.asn1.DEROctetString)
DERSet(org.bouncycastle.asn1.DERSet)
DEROctetString(org.bouncycastle.asn1.DEROctetString)
AlgorithmIdentifier(org.bouncycastle.asn1.x509.AlgorithmIdentifier)
SecretKey(javax.crypto.SecretKey)
ByteArrayInputStream(java.io.ByteArrayInputStream)
EncryptedContentInfo(org.bouncycastle.asn1.cms.EncryptedContentInfo)
ContentInfo(org.bouncycastle.asn1.cms.ContentInfo)
Cipher(javax.crypto.Cipher)
ASN1Primitive(org.bouncycastle.asn1.ASN1Primitive)
KeyGenerator(javax.crypto.KeyGenerator)
KeyTransRecipientInfo(org.bouncycastle.asn1.cms.KeyTransRecipientInfo)
RecipientInfo(org.bouncycastle.asn1.cms.RecipientInfo)
ASN1ObjectIdentifier(org.bouncycastle.asn1.ASN1ObjectIdentifier)
EnvelopedData(org.bouncycastle.asn1.cms.EnvelopedData)
AlgorithmParameters(java.security.AlgorithmParameters)
EncryptedContentInfo(org.bouncycastle.asn1.cms.EncryptedContentInfo)
Aggregations
ASN1ObjectIdentifier (org.bouncycastle.asn1.ASN1ObjectIdentifier)5
ContentInfo (org.bouncycastle.asn1.cms.ContentInfo)5
EnvelopedData (org.bouncycastle.asn1.cms.EnvelopedData)5
AlgorithmParameterGenerator (java.security.AlgorithmParameterGenerator)4
AlgorithmParameters (java.security.AlgorithmParameters)4
Cipher (javax.crypto.Cipher)4
KeyGenerator (javax.crypto.KeyGenerator)4
SecretKey (javax.crypto.SecretKey)4
ASN1InputStream (org.bouncycastle.asn1.ASN1InputStream)4
ASN1Primitive (org.bouncycastle.asn1.ASN1Primitive)4
DEROctetString (org.bouncycastle.asn1.DEROctetString)4
DERSet (org.bouncycastle.asn1.DERSet)4
EncryptedContentInfo (org.bouncycastle.asn1.cms.EncryptedContentInfo)4
KeyTransRecipientInfo (org.bouncycastle.asn1.cms.KeyTransRecipientInfo)4
RecipientInfo (org.bouncycastle.asn1.cms.RecipientInfo)4
AlgorithmIdentifier (org.bouncycastle.asn1.x509.AlgorithmIdentifier)4
EnvelopedData (com.github.zhenwei.pkix.util.asn1.cms.EnvelopedData)3
IOException (java.io.IOException)3
CMSEnvelopedData (com.github.zhenwei.pkix.cms.CMSEnvelopedData)2
ContentInfo (com.github.zhenwei.pkix.util.asn1.cms.ContentInfo)2
