Example 1 with SignerInfoGeneratorBuilder
use of org.bouncycastle.cms.SignerInfoGeneratorBuilder in project walle by Meituan-Dianping.
the class V1SchemeSigner method generateSignatureBlock.
private static byte[] generateSignatureBlock(SignerConfig signerConfig, byte[] signatureFileBytes) throws InvalidKeyException, CertificateEncodingException, SignatureException {
JcaCertStore certs = new JcaCertStore(signerConfig.certificates);
X509Certificate signerCert = signerConfig.certificates.get(0);
String jcaSignatureAlgorithm = getJcaSignatureAlgorithm(signerCert.getPublicKey(), signerConfig.signatureDigestAlgorithm);
try {
ContentSigner signer = new JcaContentSignerBuilder(jcaSignatureAlgorithm).build(signerConfig.privateKey);
CMSSignedDataGenerator gen = new CMSSignedDataGenerator();
gen.addSignerInfoGenerator(new SignerInfoGeneratorBuilder(new JcaDigestCalculatorProviderBuilder().build(), SignerInfoSignatureAlgorithmFinder.INSTANCE).setDirectSignature(true).build(signer, new JcaX509CertificateHolder(signerCert)));
gen.addCertificates(certs);
CMSSignedData sigData = gen.generate(new CMSProcessableByteArray(signatureFileBytes), false);
ByteArrayOutputStream out = new ByteArrayOutputStream();
try (ASN1InputStream asn1 = new ASN1InputStream(sigData.getEncoded())) {
DEROutputStream dos = new DEROutputStream(out);
dos.writeObject(asn1.readObject());
}
return out.toByteArray();
} catch (OperatorCreationException | CMSException | IOException e) {
throw new SignatureException("Failed to generate signature", e);
}
}
Also used :
CMSSignedDataGenerator(org.bouncycastle.cms.CMSSignedDataGenerator)
CMSProcessableByteArray(org.bouncycastle.cms.CMSProcessableByteArray)
ASN1InputStream(org.bouncycastle.asn1.ASN1InputStream)
JcaContentSignerBuilder(org.bouncycastle.operator.jcajce.JcaContentSignerBuilder)
ContentSigner(org.bouncycastle.operator.ContentSigner)
JcaCertStore(org.bouncycastle.cert.jcajce.JcaCertStore)
ByteArrayOutputStream(java.io.ByteArrayOutputStream)
IOException(java.io.IOException)
SignatureException(java.security.SignatureException)
JcaX509CertificateHolder(org.bouncycastle.cert.jcajce.JcaX509CertificateHolder)
CMSSignedData(org.bouncycastle.cms.CMSSignedData)
X509Certificate(java.security.cert.X509Certificate)
SignerInfoGeneratorBuilder(org.bouncycastle.cms.SignerInfoGeneratorBuilder)
JcaDigestCalculatorProviderBuilder(org.bouncycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder)
OperatorCreationException(org.bouncycastle.operator.OperatorCreationException)
DEROutputStream(org.bouncycastle.asn1.DEROutputStream)
CMSException(org.bouncycastle.cms.CMSException)
Aggregations
ByteArrayOutputStream (java.io.ByteArrayOutputStream)1
IOException (java.io.IOException)1
SignatureException (java.security.SignatureException)1
X509Certificate (java.security.cert.X509Certificate)1
ASN1InputStream (org.bouncycastle.asn1.ASN1InputStream)1
DEROutputStream (org.bouncycastle.asn1.DEROutputStream)1
JcaCertStore (org.bouncycastle.cert.jcajce.JcaCertStore)1
JcaX509CertificateHolder (org.bouncycastle.cert.jcajce.JcaX509CertificateHolder)1
CMSException (org.bouncycastle.cms.CMSException)1
CMSProcessableByteArray (org.bouncycastle.cms.CMSProcessableByteArray)1
CMSSignedData (org.bouncycastle.cms.CMSSignedData)1
CMSSignedDataGenerator (org.bouncycastle.cms.CMSSignedDataGenerator)1
SignerInfoGeneratorBuilder (org.bouncycastle.cms.SignerInfoGeneratorBuilder)1
ContentSigner (org.bouncycastle.operator.ContentSigner)1
OperatorCreationException (org.bouncycastle.operator.OperatorCreationException)1
JcaContentSignerBuilder (org.bouncycastle.operator.jcajce.JcaContentSignerBuilder)1
JcaDigestCalculatorProviderBuilder (org.bouncycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder)1
