Example 21 with DEROutputStream
use of org.bouncycastle.asn1.DEROutputStream in project walle by Meituan-Dianping.
the class V1SchemeSigner method generateSignatureBlock.
private static byte[] generateSignatureBlock(SignerConfig signerConfig, byte[] signatureFileBytes) throws InvalidKeyException, CertificateEncodingException, SignatureException {
JcaCertStore certs = new JcaCertStore(signerConfig.certificates);
X509Certificate signerCert = signerConfig.certificates.get(0);
String jcaSignatureAlgorithm = getJcaSignatureAlgorithm(signerCert.getPublicKey(), signerConfig.signatureDigestAlgorithm);
try {
ContentSigner signer = new JcaContentSignerBuilder(jcaSignatureAlgorithm).build(signerConfig.privateKey);
CMSSignedDataGenerator gen = new CMSSignedDataGenerator();
gen.addSignerInfoGenerator(new SignerInfoGeneratorBuilder(new JcaDigestCalculatorProviderBuilder().build(), SignerInfoSignatureAlgorithmFinder.INSTANCE).setDirectSignature(true).build(signer, new JcaX509CertificateHolder(signerCert)));
gen.addCertificates(certs);
CMSSignedData sigData = gen.generate(new CMSProcessableByteArray(signatureFileBytes), false);
ByteArrayOutputStream out = new ByteArrayOutputStream();
try (ASN1InputStream asn1 = new ASN1InputStream(sigData.getEncoded())) {
DEROutputStream dos = new DEROutputStream(out);
dos.writeObject(asn1.readObject());
}
return out.toByteArray();
} catch (OperatorCreationException | CMSException | IOException e) {
throw new SignatureException("Failed to generate signature", e);
}
}
Also used :
CMSSignedDataGenerator(org.bouncycastle.cms.CMSSignedDataGenerator)
CMSProcessableByteArray(org.bouncycastle.cms.CMSProcessableByteArray)
ASN1InputStream(org.bouncycastle.asn1.ASN1InputStream)
JcaContentSignerBuilder(org.bouncycastle.operator.jcajce.JcaContentSignerBuilder)
ContentSigner(org.bouncycastle.operator.ContentSigner)
JcaCertStore(org.bouncycastle.cert.jcajce.JcaCertStore)
ByteArrayOutputStream(java.io.ByteArrayOutputStream)
IOException(java.io.IOException)
SignatureException(java.security.SignatureException)
JcaX509CertificateHolder(org.bouncycastle.cert.jcajce.JcaX509CertificateHolder)
CMSSignedData(org.bouncycastle.cms.CMSSignedData)
X509Certificate(java.security.cert.X509Certificate)
SignerInfoGeneratorBuilder(org.bouncycastle.cms.SignerInfoGeneratorBuilder)
JcaDigestCalculatorProviderBuilder(org.bouncycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder)
OperatorCreationException(org.bouncycastle.operator.OperatorCreationException)
DEROutputStream(org.bouncycastle.asn1.DEROutputStream)
CMSException(org.bouncycastle.cms.CMSException)
Aggregations
IOException (java.io.IOException)15
ByteArrayOutputStream (java.io.ByteArrayOutputStream)14
DEROutputStream (org.bouncycastle.asn1.DEROutputStream)12
DEROutputStream (org.gudy.bouncycastle.asn1.DEROutputStream)9
X509Certificate (java.security.cert.X509Certificate)6
OutputStream (java.io.OutputStream)4
ASN1InputStream (org.bouncycastle.asn1.ASN1InputStream)4
ArrayList (java.util.ArrayList)3
ASN1EncodableVector (org.bouncycastle.asn1.ASN1EncodableVector)3
DEROctetString (org.bouncycastle.asn1.DEROctetString)3
DERSequence (org.bouncycastle.asn1.DERSequence)3
JcaCertStore (org.bouncycastle.cert.jcajce.JcaCertStore)3
CMSSignedData (org.bouncycastle.cms.CMSSignedData)3
CMSSignedDataGenerator (org.bouncycastle.cms.CMSSignedDataGenerator)3
ContentSigner (org.bouncycastle.operator.ContentSigner)3
JcaContentSignerBuilder (org.bouncycastle.operator.jcajce.JcaContentSignerBuilder)3
JcaDigestCalculatorProviderBuilder (org.bouncycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder)3
KeyStoreException (java.security.KeyStoreException)2
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)2
PrivateKey (java.security.PrivateKey)2
