Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
PojavLauncherTeam
GitHub Repository: PojavLauncherTeam/openjdk-multiarch-jdk8u
 Path: blob/aarch64-shenandoah-jdk8u272-b10/jdk/src/share/classes/sun/security/pkcs11/P11TlsRsaPremasterSecretGenerator.java
38919 views
1
/*

2
 * Copyright (c) 2005, 2018, Oracle and/or its affiliates. All rights reserved.

3
 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.

4
 *

5
 * This code is free software; you can redistribute it and/or modify it

6
 * under the terms of the GNU General Public License version 2 only, as

7
 * published by the Free Software Foundation.  Oracle designates this

8
 * particular file as subject to the "Classpath" exception as provided

9
 * by Oracle in the LICENSE file that accompanied this code.

10
 *

11
 * This code is distributed in the hope that it will be useful, but WITHOUT

12
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or

13
 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License

14
 * version 2 for more details (a copy is included in the LICENSE file that

15
 * accompanied this code).

16
 *

17
 * You should have received a copy of the GNU General Public License version

18
 * 2 along with this work; if not, write to the Free Software Foundation,

19
 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

20
 *

21
 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA

22
 * or visit www.oracle.com if you need additional information or have any

23
 * questions.

24
 */

25


26
package sun.security.pkcs11;

27


28
import java.security.*;

29
import java.security.spec.AlgorithmParameterSpec;

30


31
import javax.crypto.*;

32
import javax.crypto.spec.*;

33


34
import sun.security.internal.spec.TlsRsaPremasterSecretParameterSpec;

35


36
import static sun.security.pkcs11.TemplateManager.*;

37
import sun.security.pkcs11.wrapper.*;

38
import static sun.security.pkcs11.wrapper.PKCS11Constants.*;

39


40
/**

41
 * KeyGenerator for the SSL/TLS RSA premaster secret.

42
 *

43
 * @author  Andreas Sterbenz

44
 * @since   1.6

45
 */

46
final class P11TlsRsaPremasterSecretGenerator extends KeyGeneratorSpi {

47


48
    private final static String MSG = "TlsRsaPremasterSecretGenerator must be "

49
        + "initialized using a TlsRsaPremasterSecretParameterSpec";

50


51
    // token instance

52
    private final Token token;

53


54
    // algorithm name

55
    private final String algorithm;

56


57
    // mechanism id

58
    private long mechanism;

59


60
    private int version;

61


62
    private TlsRsaPremasterSecretParameterSpec spec;

63


64
    P11TlsRsaPremasterSecretGenerator(Token token, String algorithm, long mechanism)

65
            throws PKCS11Exception {

66
        super();

67
        this.token = token;

68
        this.algorithm = algorithm;

69
        this.mechanism = mechanism;

70
    }

71


72
    protected void engineInit(SecureRandom random) {

73
        throw new InvalidParameterException(MSG);

74
    }

75


76
    protected void engineInit(AlgorithmParameterSpec params,

77
            SecureRandom random) throws InvalidAlgorithmParameterException {

78
        if (!(params instanceof TlsRsaPremasterSecretParameterSpec)) {

79
            throw new InvalidAlgorithmParameterException(MSG);

80
        }

81
        this.spec = (TlsRsaPremasterSecretParameterSpec)params;

82
        version = (spec.getMajorVersion() << 8) | spec.getMinorVersion();

83
        if ((version < 0x0300) && (version > 0x0303)) {

84
            throw new InvalidAlgorithmParameterException

85
                ("Only SSL 3.0, TLS 1.0, TLS 1.1, and TLS 1.2 are supported");

86
        }

87
    }

88


89
    protected void engineInit(int keysize, SecureRandom random) {

90
        throw new InvalidParameterException(MSG);

91
    }

92


93
    // Only can be used in client side to generate TLS RSA premaster secret.

94
    protected SecretKey engineGenerateKey() {

95
        if (spec == null) {

96
            throw new IllegalStateException

97
                        ("TlsRsaPremasterSecretGenerator must be initialized");

98
        }

99


100
        CK_VERSION version = new CK_VERSION(

101
                        spec.getMajorVersion(), spec.getMinorVersion());

102
        Session session = null;

103
        try {

104
            session = token.getObjSession();

105
            CK_ATTRIBUTE[] attributes = token.getAttributes(

106
                    O_GENERATE, CKO_SECRET_KEY,

107
                    CKK_GENERIC_SECRET, new CK_ATTRIBUTE[0]);

108
            long keyID = token.p11.C_GenerateKey(session.id(),

109
                    new CK_MECHANISM(mechanism, version), attributes);

110
            SecretKey key = P11Key.secretKey(session,

111
                    keyID, "TlsRsaPremasterSecret", 48 << 3, attributes);

112
            return key;

113
        } catch (PKCS11Exception e) {

114
            throw new ProviderException(

115
                    "Could not generate premaster secret", e);

116
        } finally {

117
            token.releaseSession(session);

118
        }

119
    }

120


121
}

122


123