mirror of git://gcc.gnu.org/git/gcc.git
166 lines
4.7 KiB
Java
166 lines
4.7 KiB
Java
/* SSLRandom.java -- SSLv3 pseudo-random function.
|
|
Copyright (C) 2006 Free Software Foundation, Inc.
|
|
|
|
This file is a part of GNU Classpath.
|
|
|
|
GNU Classpath is free software; you can redistribute it and/or modify
|
|
it under the terms of the GNU General Public License as published by
|
|
the Free Software Foundation; either version 2 of the License, or (at
|
|
your option) any later version.
|
|
|
|
GNU Classpath is distributed in the hope that it will be useful, but
|
|
WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
General Public License for more details.
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
along with GNU Classpath; if not, write to the Free Software
|
|
Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301
|
|
USA
|
|
|
|
Linking this library statically or dynamically with other modules is
|
|
making a combined work based on this library. Thus, the terms and
|
|
conditions of the GNU General Public License cover the whole
|
|
combination.
|
|
|
|
As a special exception, the copyright holders of this library give you
|
|
permission to link this library with independent modules to produce an
|
|
executable, regardless of the license terms of these independent
|
|
modules, and to copy and distribute the resulting executable under
|
|
terms of your choice, provided that you also meet, for each linked
|
|
independent module, the terms and conditions of the license of that
|
|
module. An independent module is a module which is not derived from
|
|
or based on this library. If you modify this library, you may extend
|
|
this exception to your version of the library, but you are not
|
|
obligated to do so. If you do not wish to do so, delete this
|
|
exception statement from your version. */
|
|
|
|
|
|
package gnu.javax.net.ssl.provider;
|
|
|
|
import java.util.Map;
|
|
import gnu.java.security.hash.HashFactory;
|
|
import gnu.java.security.hash.IMessageDigest;
|
|
import gnu.java.security.prng.IRandom;
|
|
import gnu.java.security.prng.LimitReachedException;
|
|
|
|
class SSLRandom implements IRandom
|
|
{
|
|
|
|
// Fields.
|
|
// -------------------------------------------------------------------------
|
|
|
|
static final String SECRET = "jessie.sslprng.secret";
|
|
static final String SEED = "jessie.sslprng.seed";
|
|
|
|
private final IMessageDigest md5, sha;
|
|
private byte[] secret;
|
|
private byte[] buffer;
|
|
private byte pad;
|
|
private byte[] seed;
|
|
private int idx;
|
|
|
|
// Constructor.
|
|
// -------------------------------------------------------------------------
|
|
|
|
SSLRandom()
|
|
{
|
|
md5 = HashFactory.getInstance("MD5");
|
|
sha = HashFactory.getInstance("SHA-1");
|
|
}
|
|
|
|
// Instance methods.
|
|
// -------------------------------------------------------------------------
|
|
|
|
public void init(Map attrib)
|
|
{
|
|
secret = (byte[]) attrib.get(SECRET);
|
|
seed = (byte[]) attrib.get(SEED);
|
|
|
|
if (secret == null || seed == null)
|
|
throw new NullPointerException();
|
|
|
|
pad = (byte) 'A';
|
|
try { buffer = nextBlock(); }
|
|
catch (LimitReachedException cantHappen) { }
|
|
}
|
|
|
|
public String name()
|
|
{
|
|
return "SSLRandom";
|
|
}
|
|
|
|
public Object clone()
|
|
{
|
|
throw new UnsupportedOperationException();
|
|
}
|
|
|
|
public byte nextByte() throws LimitReachedException
|
|
{
|
|
if (buffer == null)
|
|
throw new IllegalStateException();
|
|
if (idx >= buffer.length)
|
|
buffer = nextBlock();
|
|
return buffer[idx++];
|
|
}
|
|
|
|
public void nextBytes(byte[] buf, int off, int len)
|
|
throws LimitReachedException
|
|
{
|
|
if (buffer == null)
|
|
throw new IllegalStateException();
|
|
if (buf == null)
|
|
throw new NullPointerException();
|
|
if (off < 0 || len < 0 || off+len > buf.length)
|
|
throw new IndexOutOfBoundsException();
|
|
int count = 0;
|
|
while (count < len)
|
|
{
|
|
if (idx >= buffer.length)
|
|
buffer = nextBlock();
|
|
int l = Math.min(buffer.length-idx, len-count);
|
|
System.arraycopy(buffer, idx, buf, off+count, l);
|
|
count += l;
|
|
idx += l;
|
|
}
|
|
}
|
|
|
|
public boolean selfTest()
|
|
{
|
|
return true; // XXX
|
|
}
|
|
|
|
// For future versions of GNU Crypto. No-ops.
|
|
public void addRandomByte (byte b)
|
|
{
|
|
}
|
|
|
|
public void addRandomBytes(byte[] buffer) {
|
|
addRandomBytes(buffer, 0, buffer.length);
|
|
}
|
|
|
|
public void addRandomBytes (byte[] b, int i, int j)
|
|
{
|
|
}
|
|
|
|
// Own methods.
|
|
// -------------------------------------------------------------------------
|
|
|
|
private byte[] nextBlock() throws LimitReachedException
|
|
{
|
|
int count = pad - 'A' + 1;
|
|
if (count > 26)
|
|
throw new LimitReachedException();
|
|
for (int i = 0; i < count; i++)
|
|
sha.update(pad);
|
|
sha.update(secret, 0, secret.length);
|
|
sha.update(seed, 0, seed.length);
|
|
byte[] b = sha.digest();
|
|
md5.update(secret, 0, secret.length);
|
|
md5.update(b, 0, b.length);
|
|
idx = 0;
|
|
pad++;
|
|
return md5.digest();
|
|
}
|
|
}
|