1 |
|
|
2 |
|
|
3 |
|
|
4 |
|
|
5 |
|
|
6 |
|
|
7 |
|
|
8 |
|
|
9 |
|
|
10 |
|
|
11 |
|
|
12 |
|
|
13 |
|
|
14 |
|
|
15 |
|
|
16 |
|
|
17 |
|
|
18 |
|
|
19 |
|
|
20 |
|
|
21 |
|
package org.xwiki.crypto.signer.internal; |
22 |
|
|
23 |
|
import java.io.IOException; |
24 |
|
import java.io.OutputStream; |
25 |
|
import java.security.GeneralSecurityException; |
26 |
|
|
27 |
|
import javax.inject.Inject; |
28 |
|
import javax.inject.Singleton; |
29 |
|
|
30 |
|
import org.bouncycastle.asn1.x509.AlgorithmIdentifier; |
31 |
|
import org.bouncycastle.cert.X509CertificateHolder; |
32 |
|
import org.bouncycastle.operator.ContentVerifier; |
33 |
|
import org.bouncycastle.operator.ContentVerifierProvider; |
34 |
|
import org.xwiki.component.annotation.Component; |
35 |
|
import org.xwiki.component.manager.ComponentLookupException; |
36 |
|
import org.xwiki.component.manager.ComponentManager; |
37 |
|
import org.xwiki.crypto.params.cipher.CipherParameters; |
38 |
|
import org.xwiki.crypto.params.cipher.asymmetric.PublicKeyParameters; |
39 |
|
import org.xwiki.crypto.pkix.internal.BcUtils; |
40 |
|
import org.xwiki.crypto.pkix.params.CertifiedPublicKey; |
41 |
|
import org.xwiki.crypto.signer.SignerFactory; |
42 |
|
import org.xwiki.crypto.signer.internal.factory.BcSignerFactory; |
43 |
|
|
44 |
|
|
45 |
|
@link |
46 |
|
|
47 |
|
@version |
48 |
|
@since |
49 |
|
|
50 |
|
@Component |
51 |
|
@Singleton |
|
|
| 39% |
Uncovered Elements: 25 (41) |
Complexity: 18 |
Complexity Density: 0.72 |
|
52 |
|
public class DefaultBcContentVerifierProviderBuilder implements BcContentVerifierProviderBuilder |
53 |
|
{ |
54 |
|
@Inject |
55 |
|
private ComponentManager manager; |
56 |
|
|
|
|
| 100% |
Uncovered Elements: 0 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
57 |
9 |
@Override... |
58 |
|
public ContentVerifierProvider build(final CertifiedPublicKey certificate) |
59 |
|
{ |
60 |
9 |
return new ContentVerifierProvider() |
61 |
|
{ |
|
|
| 100% |
Uncovered Elements: 0 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
62 |
9 |
@Override... |
63 |
|
public boolean hasAssociatedCertificate() |
64 |
|
{ |
65 |
9 |
return true; |
66 |
|
} |
67 |
|
|
|
|
| 100% |
Uncovered Elements: 0 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
68 |
9 |
@Override... |
69 |
|
public X509CertificateHolder getAssociatedCertificate() |
70 |
|
{ |
71 |
9 |
return BcUtils.getX509CertificateHolder(certificate); |
72 |
|
} |
73 |
|
|
|
|
| 100% |
Uncovered Elements: 0 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
74 |
9 |
@Override... |
75 |
|
public ContentVerifier get(AlgorithmIdentifier algorithm) |
76 |
|
{ |
77 |
9 |
return getInstance(certificate.getPublicKeyParameters(), algorithm); |
78 |
|
} |
79 |
|
}; |
80 |
|
} |
81 |
|
|
|
|
| 0% |
Uncovered Elements: 1 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
82 |
0 |
@Override... |
83 |
|
public ContentVerifierProvider build(final PublicKeyParameters publicKey) |
84 |
|
{ |
85 |
0 |
return new ContentVerifierProvider() |
86 |
|
{ |
|
|
| 0% |
Uncovered Elements: 1 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
87 |
0 |
@Override... |
88 |
|
public boolean hasAssociatedCertificate() |
89 |
|
{ |
90 |
0 |
return false; |
91 |
|
} |
92 |
|
|
|
|
| 0% |
Uncovered Elements: 1 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
93 |
0 |
@Override... |
94 |
|
public X509CertificateHolder getAssociatedCertificate() |
95 |
|
{ |
96 |
0 |
return null; |
97 |
|
} |
98 |
|
|
|
|
| 0% |
Uncovered Elements: 1 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
99 |
0 |
@Override... |
100 |
|
public ContentVerifier get(AlgorithmIdentifier algorithm) |
101 |
|
{ |
102 |
0 |
return getInstance(publicKey, algorithm); |
103 |
|
} |
104 |
|
}; |
105 |
|
} |
106 |
|
|
|
|
| 40% |
Uncovered Elements: 6 (10) |
Complexity: 3 |
Complexity Density: 0.38 |
|
107 |
9 |
private ContentVerifier getInstance(CipherParameters parameters, final AlgorithmIdentifier algId)... |
108 |
|
{ |
109 |
9 |
SignerFactory factory = getFactory(algId.getAlgorithm().getId()); |
110 |
|
|
111 |
9 |
if (factory instanceof BcSignerFactory) { |
112 |
9 |
return (ContentVerifier) ((BcSignerFactory) factory).getInstance(false, parameters, algId); |
113 |
|
} |
114 |
|
|
115 |
0 |
final org.xwiki.crypto.signer.Signer signer; |
116 |
0 |
try { |
117 |
0 |
signer = factory.getInstance(false, parameters, algId.getEncoded()); |
118 |
|
} catch (IOException e) { |
119 |
|
|
120 |
0 |
throw new IllegalArgumentException("Unable to encode algorithm identifier."); |
121 |
|
} |
122 |
|
|
123 |
0 |
return new ContentVerifier() |
124 |
|
{ |
|
|
| 0% |
Uncovered Elements: 1 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
125 |
0 |
@Override... |
126 |
|
public AlgorithmIdentifier getAlgorithmIdentifier() |
127 |
|
{ |
128 |
0 |
return algId; |
129 |
|
} |
130 |
|
|
|
|
| 0% |
Uncovered Elements: 1 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
131 |
0 |
@Override... |
132 |
|
public OutputStream getOutputStream() |
133 |
|
{ |
134 |
0 |
return signer.getOutputStream(); |
135 |
|
} |
136 |
|
|
|
|
| 0% |
Uncovered Elements: 1 (1) |
Complexity: 1 |
Complexity Density: 1 |
|
137 |
0 |
@Override... |
138 |
|
public boolean verify(byte[] bytes) |
139 |
|
{ |
140 |
0 |
return DefaultBcContentVerifierProviderBuilder.verify(signer, bytes); |
141 |
|
} |
142 |
|
}; |
143 |
|
} |
144 |
|
|
|
|
| 0% |
Uncovered Elements: 3 (3) |
Complexity: 2 |
Complexity Density: 0.67 |
|
145 |
0 |
private static boolean verify(org.xwiki.crypto.signer.Signer signer, byte[] bytes)... |
146 |
|
{ |
147 |
0 |
try { |
148 |
0 |
return signer.verify(bytes); |
149 |
|
} catch (GeneralSecurityException e) { |
150 |
0 |
return false; |
151 |
|
} |
152 |
|
} |
153 |
|
|
|
|
| 66.7% |
Uncovered Elements: 1 (3) |
Complexity: 2 |
Complexity Density: 0.67 |
|
154 |
9 |
protected SignerFactory getFactory(String hint)... |
155 |
|
{ |
156 |
9 |
try { |
157 |
9 |
return this.manager.getInstance(SignerFactory.class, hint); |
158 |
|
} catch (ComponentLookupException e) { |
159 |
0 |
throw new UnsupportedOperationException("Signing algorithm not found.", e); |
160 |
|
} |
161 |
|
} |
162 |
|
} |