EncryptWrapKey.java

  1. /*
  2.  * GovWay - A customizable API Gateway 
  3.  * https://govway.org
  4.  * 
  5.  * Copyright (c) 2005-2025 Link.it srl (https://link.it). 
  6.  * 
  7.  * This program is free software: you can redistribute it and/or modify
  8.  * it under the terms of the GNU General Public License version 3, as published by
  9.  * the Free Software Foundation.
  10.  *
  11.  * This program is distributed in the hope that it will be useful,
  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14.  * GNU General Public License for more details.
  15.  *
  16.  * You should have received a copy of the GNU General Public License
  17.  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18.  *
  19.  */


  22. package org.openspcoop2.utils.security;

  24. import java.security.Key;
  25. import java.security.cert.Certificate;

  27. import javax.crypto.Cipher;
  28. import javax.crypto.KeyGenerator;
  29. import javax.crypto.SecretKey;

  31. import org.openspcoop2.utils.UtilsException;
  32. import org.openspcoop2.utils.certificate.KeyStore;
  33. import org.openspcoop2.utils.certificate.SymmetricKeyUtils;
  34. import org.openspcoop2.utils.io.Base64Utilities;
  35. import org.openspcoop2.utils.io.HexBinaryUtilities;

  37. /** 
  38.  * EncryptWrapKey
  39.  *
  40.  * @author Poli Andrea (apoli@link.it)
  41.  * @author $Author$
  42.  * @version $Rev$, $Date$
  43.  */
  44. public class EncryptWrapKey  {

  46.     private java.security.Key key;
  47.     private java.security.cert.Certificate certificate;
  48.     
  49.     private byte[] wrappedKey;
  50.     private byte[] iv;

  52.     public EncryptWrapKey(Certificate certificate) {
  53.         this.certificate = certificate;
  54.     }

  56.     public EncryptWrapKey(Key key) {
  57.         this.key = key;
  58.     }

  60.     public EncryptWrapKey(KeyStore keystore, String alias, String passwordPrivateKey) throws UtilsException {
  61.         this.key = keystore.getPrivateKey(alias, passwordPrivateKey);
  62.     }

  64.     public EncryptWrapKey(KeyStore keystore, String alias) throws UtilsException {
  65.         this.certificate = keystore.getCertificate(alias);
  66.     }

  68.     public EncryptWrapKey(KeyStore keystore) throws UtilsException {
  69.         this.certificate = keystore.getCertificate();
  70.     }
  71.     
  72.     
  73.     protected byte[] process(String data, String charsetName, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  74.         try{
  75.             return this.process(data.getBytes(charsetName), wrappedKeyAlgorithm, contentAlgorithm);
  76.         }catch(Exception e){
  77.             throw new UtilsException(e.getMessage(),e);
  78.         }
  79.     }
  80.     
  81.     protected byte[] process(byte[] data, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  82.         try{
  83.             int symmetricKeySize = 256;
  84.             if(wrappedKeyAlgorithm.contains("128")) {
  85.                 symmetricKeySize = 128;
  86.             }
  87.             else if(wrappedKeyAlgorithm.contains("192")) {
  88.                 symmetricKeySize = 192;
  89.             }
  90.             
  91.             // Genero chiave simmetrica
  92.             KeyGenerator keyGen = KeyGenerator.getInstance(SymmetricKeyUtils.ALGO_AES);
  93.             keyGen.init(symmetricKeySize);
  94.             SecretKey secretKey = keyGen.generateKey();
  95.             
  96.             // operazione di wrapping con la chiave asincrona
  97.             Cipher cipher = Cipher.getInstance(wrappedKeyAlgorithm);
  98.             if(this.certificate!=null) {
  99.                 cipher.init(Cipher.WRAP_MODE, this.certificate);
  100.             }
  101.             else {
  102.                 cipher.init(Cipher.WRAP_MODE, this.key);
  103.             }

  105.             // Esegue l'operazione di wrapping della chiave simmetrica con la chiave pubblica RSA
  106.             this.wrappedKey = cipher.wrap(secretKey);
  107.             
  108.             // Cifro 
  109.             Encrypt encrypt = new Encrypt(secretKey);
  110.             encrypt.initIV(contentAlgorithm);
  111.             this.iv = encrypt.getIV();
  112.             
  113.             return encrypt.encrypt(data, contentAlgorithm);
  114.             
  115.         }catch(Exception e){
  116.             throw new UtilsException(e.getMessage(),e);
  117.         }
  118.     }
  119.     
  120.     public String getWrappedKeyBase64() {
  121.         return Base64Utilities.encodeAsString(this.wrappedKey);
  122.     }
  123.     public String getWrappedKeyHexBinary() throws UtilsException {
  124.         return HexBinaryUtilities.encodeAsString(this.wrappedKey);
  125.     }
  126.     public byte[] getWrappedKey() {
  127.         return this.wrappedKey;
  128.     }
  129.     
  130.     public byte[] getIV() {
  131.         return this.iv;
  132.     }
  133.     public byte[] getIVBase64() {
  134.         return Base64Utilities.encode(this.iv);
  135.     }
  136.     public String getIVBase64AsString() {
  137.         return Base64Utilities.encodeAsString(this.iv);
  138.     }
  139.     public char[] getIVHexBinary() throws UtilsException{
  140.         return HexBinaryUtilities.encode(this.iv);
  141.     }   
  142.     public String getIVHexBinaryAsString() throws UtilsException{
  143.         return HexBinaryUtilities.encodeAsString(this.iv);
  144.     }
  145.     
  146.     
  147.     public byte[] encrypt(String data, String charsetName, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  148.         return this.process(data, charsetName, wrappedKeyAlgorithm, contentAlgorithm);
  149.     }
  150.     public byte[] encrypt(byte[] data, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  151.         return this.process(data, wrappedKeyAlgorithm, contentAlgorithm);
  152.     }
  153.     
  154.     public byte[] encryptBase64(String data, String charsetName, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  155.         return Base64Utilities.encode(this.process(data, charsetName, wrappedKeyAlgorithm, contentAlgorithm));
  156.     }
  157.     public byte[] encryptBase64(byte[] data, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  158.         return Base64Utilities.encode(this.process(data, wrappedKeyAlgorithm, contentAlgorithm));
  159.     }
  160.     
  161.     public String encryptBase64AsString(String data, String charsetName, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  162.         return Base64Utilities.encodeAsString(this.process(data, charsetName, wrappedKeyAlgorithm, contentAlgorithm));
  163.     }
  164.     public String encryptBase64AsString(byte[] data, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  165.         return Base64Utilities.encodeAsString(this.process(data, wrappedKeyAlgorithm, contentAlgorithm));
  166.     }
  167.     
  168.     public char[] encryptHexBinary(String data, String charsetName, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  169.         return HexBinaryUtilities.encode(this.process(data, charsetName, wrappedKeyAlgorithm, contentAlgorithm));
  170.     }
  171.     public char[] encryptHexBinary(byte[] data, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  172.         return HexBinaryUtilities.encode(this.process(data, wrappedKeyAlgorithm, contentAlgorithm));
  173.     }
  174.     
  175.     public String encryptHexBinaryAsString(String data, String charsetName, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  176.         return HexBinaryUtilities.encodeAsString(this.process(data, charsetName, wrappedKeyAlgorithm, contentAlgorithm));
  177.     }
  178.     public String encryptHexBinaryAsString(byte[] data, String wrappedKeyAlgorithm, String contentAlgorithm) throws UtilsException{
  179.         return HexBinaryUtilities.encodeAsString(this.process(data, wrappedKeyAlgorithm, contentAlgorithm));
  180.     }
  181. }
Created with JaCoCo 0.8.8.202204050719