1 /*
2 * Copyright (c) 2015, Oracle and/or its affiliates. All rights reserved.
3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4 *
5 * This code is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License version 2 only, as
7 * published by the Free Software Foundation. Oracle designates this
8 * particular file as subject to the "Classpath" exception as provided
9 * by Oracle in the LICENSE file that accompanied this code.
10 *
11 * This code is distributed in the hope that it will be useful, but WITHOUT
12 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
13 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
14 * version 2 for more details (a copy is included in the LICENSE file that
15 * accompanied this code).
16 *
17 * You should have received a copy of the GNU General Public License version
18 * 2 along with this work; if not, write to the Free Software Foundation,
19 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
20 *
21 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
22 * or visit www.oracle.com if you need additional information or have any
23 * questions.
24 */
25
26 package sun.security.pkcs11;
27
28 import java.io.IOException;
29 import java.math.BigInteger;
30 import java.security.*;
31 import java.security.interfaces.*;
32 import java.security.spec.*;
33
34 import sun.security.ec.ECPublicKeyImpl;
35 import sun.security.ec.ECPrivateKeyImpl;
36 import sun.security.x509.X509Key;
37
38 final class P11ECUtil {
39
40 static ECPublicKey decodeX509ECPublicKey(byte[] encoded)
41 throws InvalidKeySpecException {
42 X509EncodedKeySpec keySpec = new X509EncodedKeySpec(encoded);
43
44 return (ECPublicKey)ECGeneratePublic(keySpec);
45 }
46
47 static byte[] x509EncodeECPublicKey(ECPoint w,
48 ECParameterSpec params) throws InvalidKeySpecException {
49 ECPublicKeySpec keySpec = new ECPublicKeySpec(w, params);
50 X509Key key = (X509Key)ECGeneratePublic(keySpec);
51
52 return key.getEncoded();
53 }
54
55 static ECPrivateKey decodePKCS8ECPrivateKey(byte[] encoded)
56 throws InvalidKeySpecException {
57 PKCS8EncodedKeySpec keySpec = new PKCS8EncodedKeySpec(encoded);
58
59 return (ECPrivateKey)ECGeneratePrivate(keySpec);
60 }
61
62 static ECPrivateKey generateECPrivateKey(BigInteger s,
63 ECParameterSpec params) throws InvalidKeySpecException {
64 ECPrivateKeySpec keySpec = new ECPrivateKeySpec(s, params);
65
66 return (ECPrivateKey)ECGeneratePrivate(keySpec);
67 }
68
69 private static PublicKey ECGeneratePublic(KeySpec keySpec)
70 throws InvalidKeySpecException {
71 try {
72 if (keySpec instanceof X509EncodedKeySpec) {
73 X509EncodedKeySpec x509Spec = (X509EncodedKeySpec)keySpec;
74 return new ECPublicKeyImpl(x509Spec.getEncoded());
75 } else if (keySpec instanceof ECPublicKeySpec) {
76 ECPublicKeySpec ecSpec = (ECPublicKeySpec)keySpec;
77 return new ECPublicKeyImpl(
78 ecSpec.getW(),
79 ecSpec.getParams()
80 );
81 } else {
82 throw new InvalidKeySpecException("Only ECPublicKeySpec "
83 + "and X509EncodedKeySpec supported for EC public keys");
84 }
85 } catch (InvalidKeySpecException e) {
86 throw e;
87 } catch (GeneralSecurityException e) {
88 throw new InvalidKeySpecException(e);
89 }
90 }
91
92 private static PrivateKey ECGeneratePrivate(KeySpec keySpec)
93 throws InvalidKeySpecException {
94 try {
95 if (keySpec instanceof PKCS8EncodedKeySpec) {
96 PKCS8EncodedKeySpec pkcsSpec = (PKCS8EncodedKeySpec)keySpec;
97 return new ECPrivateKeyImpl(pkcsSpec.getEncoded());
98 } else if (keySpec instanceof ECPrivateKeySpec) {
99 ECPrivateKeySpec ecSpec = (ECPrivateKeySpec)keySpec;
100 return new ECPrivateKeyImpl(ecSpec.getS(), ecSpec.getParams());
101 } else {
102 throw new InvalidKeySpecException("Only ECPrivateKeySpec "
103 + "and PKCS8EncodedKeySpec supported for EC private keys");
104 }
105 } catch (InvalidKeySpecException e) {
106 throw e;
107 } catch (GeneralSecurityException e) {
108 throw new InvalidKeySpecException(e);
109 }
110 }
111
112 private P11ECUtil() {}
113
114 }