Examples with InvalidKeyException java.security.InvalidKeyException used on opensource projects

Example 6 with InvalidKeyException

use of java.security.InvalidKeyException in project kafka by apache.

the class ScramSaslClient method handleServerFinalMessage.

private void handleServerFinalMessage(byte[] signature) throws SaslException {
    try {
        byte[] serverKey = formatter.serverKey(saltedPassword);
        byte[] serverSignature = formatter.serverSignature(serverKey, clientFirstMessage, serverFirstMessage, clientFinalMessage);
        if (!Arrays.equals(signature, serverSignature))
            throw new SaslException("Invalid server signature in server final message");
    } catch (InvalidKeyException e) {
        throw new SaslException("Sasl server signature verification failed", e);
    }
}

Example 7 with InvalidKeyException

use of java.security.InvalidKeyException in project kafka by apache.

the class ScramSaslServer method verifyClientProof.

private void verifyClientProof(ClientFinalMessage clientFinalMessage) throws SaslException {
    try {
        byte[] expectedStoredKey = scramCredential.storedKey();
        byte[] clientSignature = formatter.clientSignature(expectedStoredKey, clientFirstMessage, serverFirstMessage, clientFinalMessage);
        byte[] computedStoredKey = formatter.storedKey(clientSignature, clientFinalMessage.proof());
        if (!Arrays.equals(computedStoredKey, expectedStoredKey))
            throw new SaslException("Invalid client credentials");
    } catch (InvalidKeyException e) {
        throw new SaslException("Sasl client verification failed", e);
    }
}

Example 8 with InvalidKeyException

use of java.security.InvalidKeyException in project LolliPin by OrangeGangsters.

the class FingerprintUiHelper method initCipher.

/**
     * Initialize the {@link Cipher} instance with the created key in the {@link #createKey()}
     * method.
     *
     * @return {@code true} if initialization is successful, {@code false} if the lock screen has
     * been disabled or reset after the key was generated, or if a fingerprint got enrolled after
     * the key was generated.
     */
private boolean initCipher() {
    try {
        if (mKeyStore == null) {
            mKeyStore = KeyStore.getInstance("AndroidKeyStore");
        }
        createKey();
        mKeyStore.load(null);
        SecretKey key = (SecretKey) mKeyStore.getKey(KEY_NAME, null);
        mCipher = Cipher.getInstance("AES/CBC/PKCS7Padding");
        mCipher.init(Cipher.ENCRYPT_MODE, key);
        return true;
    } catch (NoSuchPaddingException | KeyStoreException | CertificateException | UnrecoverableKeyException | IOException | NoSuchAlgorithmException | InvalidKeyException e) {
        return false;
    }
}

Example 9 with InvalidKeyException

use of java.security.InvalidKeyException in project android_frameworks_base by ParanoidAndroid.

the class KeyChain method getPrivateKey.

/**
     * Returns the {@code PrivateKey} for the requested alias, or null
     * if no there is no result.
     *
     * @param alias The alias of the desired private key, typically
     * returned via {@link KeyChainAliasCallback#alias}.
     * @throws KeyChainException if the alias was valid but there was some problem accessing it.
     */
public static PrivateKey getPrivateKey(Context context, String alias) throws KeyChainException, InterruptedException {
    if (alias == null) {
        throw new NullPointerException("alias == null");
    }
    KeyChainConnection keyChainConnection = bind(context);
    try {
        final IKeyChainService keyChainService = keyChainConnection.getService();
        final String keyId = keyChainService.requestPrivateKey(alias);
        if (keyId == null) {
            throw new KeyChainException("keystore had a problem");
        }
        final OpenSSLEngine engine = OpenSSLEngine.getInstance("keystore");
        return engine.getPrivateKeyById(keyId);
    } catch (RemoteException e) {
        throw new KeyChainException(e);
    } catch (RuntimeException e) {
        // only certain RuntimeExceptions can be propagated across the IKeyChainService call
        throw new KeyChainException(e);
    } catch (InvalidKeyException e) {
        throw new KeyChainException(e);
    } finally {
        keyChainConnection.close();
    }
}

Example 10 with InvalidKeyException

use of java.security.InvalidKeyException in project SeriesGuide by UweTrottmann.

the class Security method verify.

/**
     * Verifies that the signature from the server matches the computed
     * signature on the data.  Returns true if the data is correctly signed.
     *
     * @param publicKey public key associated with the developer account
     * @param signedData signed data from server
     * @param signature server signature
     * @return true if the data and signature match
     */
public static boolean verify(PublicKey publicKey, String signedData, String signature) {
    Signature sig;
    try {
        sig = Signature.getInstance(SIGNATURE_ALGORITHM);
        sig.initVerify(publicKey);
        sig.update(signedData.getBytes());
        if (!sig.verify(Base64.decode(signature))) {
            Timber.e("Signature verification failed.");
            return false;
        }
        return true;
    } catch (NoSuchAlgorithmException | InvalidKeyException | SignatureException | Base64DecoderException e) {
        Timber.e(e, "Signature verification aborted.");
    }
    return false;
}