KeyManagerFactory.java 9.7 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295
  1. /* KeyManagerFactory.java -- factory for key managers.
  2. Copyright (C) 2004 Free Software Foundation, Inc.
  3. This file is part of GNU Classpath.
  4. GNU Classpath is free software; you can redistribute it and/or modify
  5. it under the terms of the GNU General Public License as published by
  6. the Free Software Foundation; either version 2, or (at your option)
  7. any later version.
  8. GNU Classpath is distributed in the hope that it will be useful, but
  9. WITHOUT ANY WARRANTY; without even the implied warranty of
  10. MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
  11. General Public License for more details.
  12. You should have received a copy of the GNU General Public License
  13. along with GNU Classpath; see the file COPYING. If not, write to the
  14. Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
  15. 02110-1301 USA.
  16. Linking this library statically or dynamically with other modules is
  17. making a combined work based on this library. Thus, the terms and
  18. conditions of the GNU General Public License cover the whole
  19. combination.
  20. As a special exception, the copyright holders of this library give you
  21. permission to link this library with independent modules to produce an
  22. executable, regardless of the license terms of these independent
  23. modules, and to copy and distribute the resulting executable under
  24. terms of your choice, provided that you also meet, for each linked
  25. independent module, the terms and conditions of the license of that
  26. module. An independent module is a module which is not derived from
  27. or based on this library. If you modify this library, you may extend
  28. this exception to your version of the library, but you are not
  29. obligated to do so. If you do not wish to do so, delete this
  30. exception statement from your version. */
  31. package javax.net.ssl;
  32. import gnu.java.security.Engine;
  33. import java.lang.reflect.InvocationTargetException;
  34. import java.security.AccessController;
  35. import java.security.InvalidAlgorithmParameterException;
  36. import java.security.KeyStore;
  37. import java.security.KeyStoreException;
  38. import java.security.NoSuchAlgorithmException;
  39. import java.security.NoSuchProviderException;
  40. import java.security.PrivilegedAction;
  41. import java.security.Provider;
  42. import java.security.Security;
  43. import java.security.UnrecoverableKeyException;
  44. /**
  45. * A class that creates key manager implementations based on a
  46. * requested algorithm.
  47. *
  48. * @author Casey Marshall (rsdio@metastatic.org)
  49. */
  50. public class KeyManagerFactory
  51. {
  52. // Constants and fields.
  53. // ------------------------------------------------------------------
  54. /** The service name for key manager factories. */
  55. private static final String KEY_MANAGER_FACTORY = "KeyManagerFactory";
  56. /** The system default trust manager algorithm. */
  57. private static final String DEFAULT_ALGORITHM = "JessieX509";
  58. /** The underlying engine. */
  59. private final KeyManagerFactorySpi kmfSpi;
  60. /** The provider of this implementation. */
  61. private final Provider provider;
  62. /** The name of this algorithm. */
  63. private final String algorithm;
  64. // Constructor.
  65. // ------------------------------------------------------------------
  66. /**
  67. * Create a new key manager factory.
  68. *
  69. * @param kmfSpi The underlying engine.
  70. * @param provider The engine's provider.
  71. * @param algorithm The name of this algorithm.
  72. */
  73. protected KeyManagerFactory(KeyManagerFactorySpi kmfSpi,
  74. Provider provider, String algorithm)
  75. {
  76. this.kmfSpi = kmfSpi;
  77. this.provider = provider;
  78. this.algorithm = algorithm;
  79. }
  80. // Class methods.
  81. // ------------------------------------------------------------------
  82. /**
  83. * Get the default algorithm name. This value may be specified at
  84. * run-time via the security property
  85. * "ssl.KeyManagerFactory.algorithm". If this property is
  86. * not specified, this method returns "JessieX509".
  87. *
  88. * @return The default key manager factory algorithm's name.
  89. */
  90. public static final String getDefaultAlgorithm()
  91. {
  92. String alg = null;
  93. try
  94. {
  95. alg = (String) AccessController.doPrivileged(
  96. new PrivilegedAction()
  97. {
  98. public Object run()
  99. {
  100. return Security.getProperty("ssl.KeyManagerFactory.algorithm");
  101. }
  102. }
  103. );
  104. }
  105. catch (SecurityException se)
  106. {
  107. }
  108. if (alg == null)
  109. alg = DEFAULT_ALGORITHM;
  110. return alg;
  111. }
  112. /**
  113. * Create an instance of the named key manager factory, from the first
  114. * provider that implements it.
  115. *
  116. * @param algorithm The type of key manager factory to get.
  117. * @return An appropriate implementation of that algoritm.
  118. * @throws NoSuchAlgorithmException If no provider implements the requested
  119. * algorithm.
  120. * @throws IllegalArgumentException if <code>algorithm</code> is
  121. * <code>null</code> or is an empty string.
  122. */
  123. public static final KeyManagerFactory getInstance(String algorithm)
  124. throws NoSuchAlgorithmException
  125. {
  126. Provider[] p = Security.getProviders();
  127. NoSuchAlgorithmException lastException = null;
  128. for (int i = 0; i < p.length; i++)
  129. try
  130. {
  131. return getInstance(algorithm, p[i]);
  132. }
  133. catch (NoSuchAlgorithmException x)
  134. {
  135. lastException = x;
  136. }
  137. if (lastException != null)
  138. throw lastException;
  139. throw new NoSuchAlgorithmException(algorithm);
  140. }
  141. /**
  142. * Create an instance of the named key manager factory, from the named
  143. * provider.
  144. *
  145. * @param algorithm The type of key manager factory to get.
  146. * @param provider The name of the provider to get the implementation from.
  147. * @return An appropriate implementation of that algorithm.
  148. * @throws NoSuchAlgorithmException If the provider does not implement the
  149. * requested algorithm.
  150. * @throws NoSuchProviderException If the named provider does not exist.
  151. * @throws IllegalArgumentException if either <code>algorithm</code> or
  152. * <code>provider</code> is <code>null</code>, or if
  153. * <code>algorithm</code> is an empty string.
  154. */
  155. public static final KeyManagerFactory getInstance(String algorithm,
  156. String provider)
  157. throws NoSuchAlgorithmException, NoSuchProviderException
  158. {
  159. if (provider == null)
  160. throw new IllegalArgumentException("provider MUST NOT be null");
  161. Provider p = Security.getProvider(provider);
  162. if (p == null)
  163. throw new NoSuchProviderException(provider);
  164. return getInstance(algorithm, p);
  165. }
  166. /**
  167. * Create an instance of the named key manager factory, from the given
  168. * provider.
  169. *
  170. * @param algorithm The type of key manager factory to get.
  171. * @param provider The provider to get the implementation from.
  172. * @return An appropriate implementation of that algorithm.
  173. * @throws NoSuchAlgorithmException If the provider does not implement the
  174. * requested algorithm.
  175. * @throws IllegalArgumentException if either <code>algorithm</code> or
  176. * <code>provider</code> is <code>null</code>, or if
  177. * <code>algorithm</code> is an empty string.
  178. */
  179. public static final KeyManagerFactory getInstance(String algorithm,
  180. Provider provider)
  181. throws NoSuchAlgorithmException
  182. {
  183. StringBuilder sb = new StringBuilder("KeyManagerFactory algorithm [")
  184. .append(algorithm).append("] from provider[")
  185. .append(provider).append("] could not be created");
  186. Throwable cause;
  187. try
  188. {
  189. Object spi = Engine.getInstance(KEY_MANAGER_FACTORY, algorithm, provider);
  190. return new KeyManagerFactory((KeyManagerFactorySpi) spi, provider, algorithm);
  191. }
  192. catch (InvocationTargetException x)
  193. {
  194. cause = x.getCause();
  195. if (cause instanceof NoSuchAlgorithmException)
  196. throw (NoSuchAlgorithmException) cause;
  197. if (cause == null)
  198. cause = x;
  199. }
  200. catch (ClassCastException x)
  201. {
  202. cause = x;
  203. }
  204. NoSuchAlgorithmException x = new NoSuchAlgorithmException(sb.toString());
  205. x.initCause(cause);
  206. throw x;
  207. }
  208. /**
  209. * Returns the name of this key manager factory algorithm.
  210. *
  211. * @return The name of this key manager factory algorithm.
  212. */
  213. public final String getAlgorithm()
  214. {
  215. return algorithm;
  216. }
  217. /**
  218. * Get an array of key managers appropriate for this algorithm, with
  219. * the most preferred manager first.
  220. *
  221. * @return The array of key managers.
  222. */
  223. public final KeyManager[] getKeyManagers()
  224. {
  225. return kmfSpi.engineGetKeyManagers();
  226. }
  227. /**
  228. * Returns the provider of this implementation.
  229. *
  230. * @return The provider of this implementation.
  231. */
  232. public final Provider getProvider()
  233. {
  234. return provider;
  235. }
  236. /**
  237. * Initialize this instance with an implementation-dependent
  238. * parameter object.
  239. *
  240. * @param params The parameters to initialize with.
  241. * @throws InvalidAlgorithmParameterException If the specified
  242. * parameters are inappropriate.
  243. */
  244. public final void init(ManagerFactoryParameters params)
  245. throws InvalidAlgorithmParameterException
  246. {
  247. kmfSpi.engineInit(params);
  248. }
  249. /**
  250. * Initialize this instance with a key store and a password for
  251. * private key entries.
  252. *
  253. * @param store The key store to read.
  254. * @param passwd The password protecting private keys in the store.
  255. * @throws KeyStoreException If an error occurs reading the keys.
  256. * @throws NoSuchAlgorithmException If an algorithm (such as a
  257. * certificate algorithm) is not available.
  258. * @throws UnrecoverableKeyException If the password is incorrect.
  259. */
  260. public final void init(KeyStore store, char[] passwd)
  261. throws KeyStoreException, NoSuchAlgorithmException, UnrecoverableKeyException
  262. {
  263. kmfSpi.engineInit(store, passwd);
  264. }
  265. }