Example 16 with HashAlgo
use of org.xipki.security.HashAlgo in project xipki by xipki.
the class AlgorithmUtil method getHashOutputSizeInOctets.
// method getHashAlg
public static int getHashOutputSizeInOctets(ASN1ObjectIdentifier hashAlgo) throws NoSuchAlgorithmException {
ParamUtil.requireNonNull("hashAlgo", hashAlgo);
HashAlgo hashAlgoType = HashAlgo.getInstance(hashAlgo);
if (hashAlgoType == null) {
throw new NoSuchAlgorithmException("Unsupported hash algorithm " + hashAlgo.getId());
}
return hashAlgoType.getLength();
}
Also used :
HashAlgo(org.xipki.security.HashAlgo)
NoSuchAlgorithmException(java.security.NoSuchAlgorithmException)
Example 17 with HashAlgo
use of org.xipki.security.HashAlgo in project xipki by xipki.
the class EmulatorP11Identity method rsaPkcsPssSign.
private byte[] rsaPkcsPssSign(P11Params parameters, byte[] contentToSign, HashAlgo hashAlgo) throws P11TokenException {
if (!(parameters instanceof P11RSAPkcsPssParams)) {
throw new P11TokenException("the parameters is not of " + P11RSAPkcsPssParams.class.getName());
}
P11RSAPkcsPssParams pssParam = (P11RSAPkcsPssParams) parameters;
HashAlgo contentHash = HashAlgo.getInstanceForPkcs11HashMech(pssParam.getHashAlgorithm());
if (contentHash == null) {
throw new P11TokenException("unsupported HashAlgorithm " + pssParam.getHashAlgorithm());
} else if (hashAlgo != null && contentHash != hashAlgo) {
throw new P11TokenException("Invalid parameters: invalid hash algorithm");
}
HashAlgo mgfHash = HashAlgo.getInstanceForPkcs11MgfMech(pssParam.getMaskGenerationFunction());
if (mgfHash == null) {
throw new P11TokenException("unsupported MaskGenerationFunction " + pssParam.getHashAlgorithm());
}
byte[] hashValue = (hashAlgo == null) ? contentToSign : hashAlgo.hash(contentToSign);
byte[] encodedHashValue;
try {
encodedHashValue = SignerUtil.EMSA_PSS_ENCODE(contentHash, hashValue, mgfHash, (int) pssParam.getSaltLength(), getSignatureKeyBitLength(), random);
} catch (XiSecurityException ex) {
throw new P11TokenException("XiSecurityException: " + ex.getMessage(), ex);
}
return rsaX509Sign(encodedHashValue);
}
Also used :
XiSecurityException(org.xipki.security.exception.XiSecurityException)
HashAlgo(org.xipki.security.HashAlgo)
P11TokenException(org.xipki.security.exception.P11TokenException)
P11RSAPkcsPssParams(org.xipki.security.pkcs11.P11RSAPkcsPssParams)
Aggregations
HashAlgo (org.xipki.security.HashAlgo)17
ASN1ObjectIdentifier (org.bouncycastle.asn1.ASN1ObjectIdentifier)7
AlgorithmIdentifier (org.bouncycastle.asn1.x509.AlgorithmIdentifier)7
NoSuchAlgorithmException (java.security.NoSuchAlgorithmException)6
IOException (java.io.IOException)4
BigInteger (java.math.BigInteger)4
X509Certificate (java.security.cert.X509Certificate)4
Date (java.util.Date)4
LinkedList (java.util.LinkedList)4
Extension (org.bouncycastle.asn1.x509.Extension)4
ASN1Encodable (org.bouncycastle.asn1.ASN1Encodable)3
ASN1Sequence (org.bouncycastle.asn1.ASN1Sequence)3
MessageDigest (java.security.MessageDigest)2
CertificateEncodingException (java.security.cert.CertificateEncodingException)2
CertificateException (java.security.cert.CertificateException)2
ASN1EncodableVector (org.bouncycastle.asn1.ASN1EncodableVector)2
DEROctetString (org.bouncycastle.asn1.DEROctetString)2
DERSequence (org.bouncycastle.asn1.DERSequence)2
CertHash (org.bouncycastle.asn1.isismtt.ocsp.CertHash)2
CertificateID (org.bouncycastle.cert.ocsp.CertificateID)2
