|
|
|
|
|
|
|
*/ |
|
/** |
|
* Licensed to the Apache Software Foundation (ASF) under one |
|
* or more contributor license agreements. See the NOTICE file |
|
* distributed with this work for additional information |
|
* regarding copyright ownership. The ASF licenses this file |
|
* to you under the Apache License, Version 2.0 (the |
|
* "License"); you may not use this file except in compliance |
|
* with the License. You may obtain a copy of the License at |
|
* |
|
* http://www.apache.org/licenses/LICENSE-2.0 |
|
* |
|
* Unless required by applicable law or agreed to in writing, |
|
* software distributed under the License is distributed on an |
|
* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
|
* KIND, either express or implied. See the License for the |
|
* specific language governing permissions and limitations |
|
* under the License. |
|
*/ |
|
/* |
|
* Copyright (c) 2005, 2019, Oracle and/or its affiliates. All rights reserved. |
|
*/ |
|
|
|
|
|
*/ |
|
package org.jcp.xml.dsig.internal.dom; |
|
|
|
import java.math.BigInteger; |
|
import java.security.KeyException; |
|
import java.security.PublicKey; |
|
import java.security.interfaces.ECPublicKey; |
|
import java.security.interfaces.DSAPublicKey; |
|
import java.security.interfaces.RSAPublicKey; |
|
import java.util.List; |
|
|
|
import javax.xml.crypto.MarshalException; |
|
import javax.xml.crypto.URIDereferencer; |
|
import javax.xml.crypto.XMLStructure; |
|
import javax.xml.crypto.dom.DOMCryptoContext; |
|
import javax.xml.crypto.dsig.XMLSignature; |
|
import javax.xml.crypto.dsig.keyinfo.KeyInfo; |
|
import javax.xml.crypto.dsig.keyinfo.KeyInfoFactory; |
|
import javax.xml.crypto.dsig.keyinfo.KeyName; |
|
import javax.xml.crypto.dsig.keyinfo.KeyValue; |
|
import javax.xml.crypto.dsig.keyinfo.PGPData; |
|
import javax.xml.crypto.dsig.keyinfo.RetrievalMethod; |
|
import javax.xml.crypto.dsig.keyinfo.X509Data; |
|
import javax.xml.crypto.dsig.keyinfo.X509IssuerSerial; |
|
|
|
import org.w3c.dom.Document; |
|
import org.w3c.dom.Element; |
|
import org.w3c.dom.Node; |
|
|
|
|
|
|
|
|
|
*/ |
|
public final class DOMKeyInfoFactory extends KeyInfoFactory { |
|
|
|
public DOMKeyInfoFactory() { } |
|
|
|
@SuppressWarnings("rawtypes") |
|
public KeyInfo newKeyInfo(List content) { |
|
return newKeyInfo(content, null); |
|
} |
|
|
|
@SuppressWarnings({ "unchecked", "rawtypes" }) |
|
public KeyInfo newKeyInfo(List content, String id) { |
|
return new DOMKeyInfo(content, id); |
|
} |
|
|
|
public KeyName newKeyName(String name) { |
|
return new DOMKeyName(name); |
|
} |
|
|
|
public KeyValue newKeyValue(PublicKey key) throws KeyException { |
|
String algorithm = key.getAlgorithm(); |
|
if ("DSA".equals(algorithm)) { |
|
return new DOMKeyValue.DSA((DSAPublicKey) key); |
|
} else if ("RSA".equals(algorithm)) { |
|
return new DOMKeyValue.RSA((RSAPublicKey) key); |
|
} else if ("EC".equals(algorithm)) { |
|
return new DOMKeyValue.EC((ECPublicKey) key); |
|
} else { |
|
throw new KeyException("unsupported key algorithm: " + algorithm); |
|
} |
|
} |
|
|
|
public PGPData newPGPData(byte[] keyId) { |
|
return newPGPData(keyId, null, null); |
|
} |
|
|
|
@SuppressWarnings({ "rawtypes", "unchecked" }) |
|
public PGPData newPGPData(byte[] keyId, byte[] keyPacket, List other) { |
|
return new DOMPGPData(keyId, keyPacket, other); |
|
} |
|
|
|
@SuppressWarnings({ "rawtypes", "unchecked" }) |
|
public PGPData newPGPData(byte[] keyPacket, List other) { |
|
return new DOMPGPData(keyPacket, other); |
|
} |
|
|
|
public RetrievalMethod newRetrievalMethod(String uri) { |
|
return newRetrievalMethod(uri, null, null); |
|
} |
|
|
|
@SuppressWarnings({ "rawtypes", "unchecked" }) |
|
public RetrievalMethod newRetrievalMethod(String uri, String type, |
|
List transforms) { |
|
if (uri == null) { |
|
throw new NullPointerException("uri must not be null"); |
|
} |
|
return new DOMRetrievalMethod(uri, type, transforms); |
|
} |
|
|
|
@SuppressWarnings({ "rawtypes" }) |
|
public X509Data newX509Data(List content) { |
|
return new DOMX509Data(content); |
|
} |
|
|
|
@Override |
|
public X509IssuerSerial newX509IssuerSerial(String issuerName, |
|
BigInteger serialNumber) { |
|
return new DOMX509IssuerSerial(issuerName, serialNumber); |
|
} |
|
|
|
public boolean isFeatureSupported(String feature) { |
|
if (feature == null) { |
|
throw new NullPointerException(); |
|
} else { |
|
return false; |
|
} |
|
} |
|
|
|
public URIDereferencer getURIDereferencer() { |
|
return DOMURIDereferencer.INSTANCE; |
|
} |
|
|
|
@Override |
|
public KeyInfo unmarshalKeyInfo(XMLStructure xmlStructure) |
|
throws MarshalException { |
|
if (xmlStructure == null) { |
|
throw new NullPointerException("xmlStructure cannot be null"); |
|
} |
|
if (!(xmlStructure instanceof javax.xml.crypto.dom.DOMStructure)) { |
|
throw new ClassCastException("xmlStructure must be of type DOMStructure"); |
|
} |
|
Node node = |
|
((javax.xml.crypto.dom.DOMStructure) xmlStructure).getNode(); |
|
node.normalize(); |
|
|
|
Element element = null; |
|
if (node.getNodeType() == Node.DOCUMENT_NODE) { |
|
element = ((Document) node).getDocumentElement(); |
|
} else if (node.getNodeType() == Node.ELEMENT_NODE) { |
|
element = (Element) node; |
|
} else { |
|
throw new MarshalException |
|
("xmlStructure does not contain a proper Node"); |
|
} |
|
|
|
|
|
String tag = element.getLocalName(); |
|
String namespace = element.getNamespaceURI(); |
|
if (tag == null || namespace == null) { |
|
throw new MarshalException("Document implementation must " + |
|
"support DOM Level 2 and be namespace aware"); |
|
} |
|
if ("KeyInfo".equals(tag) && XMLSignature.XMLNS.equals(namespace)) { |
|
try { |
|
return new DOMKeyInfo(element, new UnmarshalContext(), getProvider()); |
|
} catch (MarshalException me) { |
|
throw me; |
|
} catch (Exception e) { |
|
throw new MarshalException(e); |
|
} |
|
} else { |
|
throw new MarshalException("Invalid KeyInfo tag: " + namespace + ":" + tag); |
|
} |
|
} |
|
|
|
private static class UnmarshalContext extends DOMCryptoContext { |
|
UnmarshalContext() {} |
|
} |
|
|
|
} |