mitm.common.security.asn1.ASN1Encoder.java Source code

Java tutorial

  1. HOME
  2. Java
  3. mitm.common.security.asn1.ASN1Encoder.java

Introduction

Here is the source code for mitm.common.security.asn1.ASN1Encoder.java

Source

/*
 * Copyright (c) 2008-2012, Martijn Brinkers, Djigzo.
 * 
 * This file is part of Djigzo email encryption.
 *
 * Djigzo is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License 
 * version 3, 19 November 2007 as published by the Free Software 
 * Foundation.
 *
 * Djigzo is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public 
 * License along with Djigzo. If not, see <http://www.gnu.org/licenses/>
 *
 * Additional permission under GNU AGPL version 3 section 7
 * 
 * If you modify this Program, or any covered work, by linking or 
 * combining it with aspectjrt.jar, aspectjweaver.jar, tyrex-1.0.3.jar, 
 * freemarker.jar, dom4j.jar, mx4j-jmx.jar, mx4j-tools.jar, 
 * spice-classman-1.0.jar, spice-loggerstore-0.5.jar, spice-salt-0.8.jar, 
 * spice-xmlpolicy-1.0.jar, saaj-api-1.3.jar, saaj-impl-1.3.jar, 
 * wsdl4j-1.6.1.jar (or modified versions of these libraries), 
 * containing parts covered by the terms of Eclipse Public License, 
 * tyrex license, freemarker license, dom4j license, mx4j license,
 * Spice Software License, Common Development and Distribution License
 * (CDDL), Common Public License (CPL) the licensors of this Program grant 
 * you additional permission to convey the resulting work.
 */
package mitm.common.security.asn1;

import java.io.ByteArrayOutputStream;
import java.io.IOException;
import java.io.OutputStreamWriter;
import java.security.KeyPair;
import java.security.PublicKey;
import java.security.cert.X509CRL;
import java.security.cert.X509Certificate;
import java.security.interfaces.DSAPrivateKey;
import java.security.interfaces.RSAPrivateKey;
import java.util.Collection;
import java.util.Iterator;

import org.bouncycastle.asn1.ASN1EncodableVector;
import org.bouncycastle.asn1.ASN1Integer;
import org.bouncycastle.asn1.ASN1Set;
import org.bouncycastle.asn1.DERSet;
import org.bouncycastle.asn1.pkcs.ContentInfo;
import org.bouncycastle.asn1.pkcs.PKCSObjectIdentifiers;
import org.bouncycastle.asn1.pkcs.SignedData;
import org.bouncycastle.openssl.PEMWriter;
import org.bouncycastle.pkcs.PKCS10CertificationRequest;
import org.bouncycastle.x509.X509AttributeCertificate;

/**
 * Some general ASN1 encoding functions
 * 
 * @author Martijn Brinkers
 *
 */
public class ASN1Encoder {
    /**
     * Taken from org.bouncycastle.jce.provider.PKIXCertPath.
     * 
     * See ftp://ftp.rsasecurity.com/pub/pkcs/ascii/pkcs-7.asc for info on PKCS#7 encoding
     */
    public static byte[] encodePKCS7(ASN1EncodableVector certificatesVector, ASN1EncodableVector crlsVector)
            throws IOException {
        ContentInfo dataContentInfo = new ContentInfo(PKCSObjectIdentifiers.data, null);

        ASN1Integer version = new ASN1Integer(1);
        ASN1Set digestAlgorithms = new DERSet();
        ASN1Set signerInfos = new DERSet();
        ASN1Set crls = null;
        ASN1Set certificates = null;

        if (certificatesVector != null) {
            /*
             * pre-sort the asn1Certificates vector with a much faster method then DERSet uses
             */
            ASN1EncodableVector sortedASN1Certificates = DERUtils.sortASN1EncodableVector(certificatesVector);
            certificates = new DERSet(sortedASN1Certificates);
        }

        if (crlsVector != null) {
            /*
             * pre-sort the asn1Certificates vector with a much faster method then DERSet uses
             */
            ASN1EncodableVector sortedASN1CRLs = DERUtils.sortASN1EncodableVector(crlsVector);
            crls = new DERSet(sortedASN1CRLs);
        }

        SignedData signedData = new SignedData(version, digestAlgorithms, dataContentInfo, certificates, crls,
                signerInfos);

        ContentInfo signedContentInfo = new ContentInfo(PKCSObjectIdentifiers.signedData, signedData);

        return DERUtils.toByteArray(signedContentInfo);
    }

    /**
     * Encodes a collection using PEM encoding. The supported element types are:
     * 
     * {@link X509Certificate}, {@link X509CRL}, {@link KeyPair}, {@link RSAPrivateKey}, {@link DSAPrivateKey},
     * {@link PublicKey}, {@link X509AttributeCertificate}, {@link PKCS10CertificationRequest} and {@link ContentInfo}.
     * If an element from the collection is not supported an IOException is thrown.  
     */
    public static byte[] encodePEM(Collection<?> elements) throws IOException {
        ByteArrayOutputStream output = new ByteArrayOutputStream();
        PEMWriter writer = new PEMWriter(new OutputStreamWriter(output));

        Iterator<?> elementIt = elements.iterator();

        while (elementIt.hasNext()) {
            Object element = elementIt.next();

            writer.writeObject(element);
        }

        writer.close();

        return output.toByteArray();
    }
}