1 /*
   2  * Copyright (c) 2005, 2014, Oracle and/or its affiliates. All rights reserved.
   3  * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
   4  *
   5  * This code is free software; you can redistribute it and/or modify it
   6  * under the terms of the GNU General Public License version 2 only, as
   7  * published by the Free Software Foundation.  Oracle designates this
   8  * particular file as subject to the "Classpath" exception as provided
   9  * by Oracle in the LICENSE file that accompanied this code.
  10  *
  11  * This code is distributed in the hope that it will be useful, but WITHOUT
  12  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
  13  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
  14  * version 2 for more details (a copy is included in the LICENSE file that
  15  * accompanied this code).
  16  *
  17  * You should have received a copy of the GNU General Public License version
  18  * 2 along with this work; if not, write to the Free Software Foundation,
  19  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
  20  *
  21  * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
  22  * or visit www.oracle.com if you need additional information or have any
  23  * questions.
  24  */
  25 
  26 package sun.security.mscapi;
  27 
  28 import java.security.AccessController;
  29 import java.security.PrivilegedAction;
  30 import java.security.Provider;
  31 import java.util.HashMap;
  32 import java.util.Map;
  33 
  34 /**
  35  * A Cryptographic Service Provider for the Microsoft Crypto API.
  36  *
  37  * @since 1.6
  38  */
  39 
  40 public final class SunMSCAPI extends Provider {
  41 
  42     private static final long serialVersionUID = 8622598936488630849L; //TODO
  43 
  44     private static final String INFO = "Sun's Microsoft Crypto API provider";
  45 
  46     static {
  47         AccessController.doPrivileged(new PrivilegedAction<Void>() {
  48             public Void run() {
  49                 System.loadLibrary("sunmscapi");
  50                 return null;
  51             }
  52         });
  53     }
  54 
  55     public SunMSCAPI() {
  56         super("SunMSCAPI", 1.9d, INFO);
  57 
  58         // if there is no security manager installed, put directly into
  59         // the provider. Otherwise, create a temporary map and use a
  60         // doPrivileged() call at the end to transfer the contents
  61         final Map<Object, Object> map =
  62                 (System.getSecurityManager() == null)
  63                 ? this : new HashMap<Object, Object>();
  64 
  65         /*
  66          * Secure random
  67          */
  68         map.put("SecureRandom.Windows-PRNG", "sun.security.mscapi.PRNG");
  69 
  70         /*
  71          * Key store
  72          */
  73         map.put("KeyStore.Windows-MY", "sun.security.mscapi.KeyStore$MY");
  74         map.put("KeyStore.Windows-ROOT", "sun.security.mscapi.KeyStore$ROOT");
  75 
  76         /*
  77          * Signature engines
  78          */
  79         // NONEwithRSA must be supplied with a pre-computed message digest.
  80         // Only the following digest algorithms are supported: MD5, SHA-1,
  81         // SHA-256, SHA-384, SHA-512 and a special-purpose digest
  82         // algorithm which is a concatenation of SHA-1 and MD5 digests.
  83         map.put("Signature.NONEwithRSA",
  84             "sun.security.mscapi.RSASignature$Raw");
  85         map.put("Signature.SHA1withRSA",
  86             "sun.security.mscapi.RSASignature$SHA1");
  87         map.put("Signature.SHA256withRSA",
  88             "sun.security.mscapi.RSASignature$SHA256");
  89         map.put("Alg.Alias.Signature.1.2.840.113549.1.1.11",     "SHA256withRSA");
  90         map.put("Alg.Alias.Signature.OID.1.2.840.113549.1.1.11", "SHA256withRSA");
  91         map.put("Signature.SHA384withRSA",
  92             "sun.security.mscapi.RSASignature$SHA384");
  93         map.put("Alg.Alias.Signature.1.2.840.113549.1.1.12",     "SHA384withRSA");
  94         map.put("Alg.Alias.Signature.OID.1.2.840.113549.1.1.12", "SHA384withRSA");
  95 
  96         map.put("Signature.SHA512withRSA",
  97             "sun.security.mscapi.RSASignature$SHA512");
  98         map.put("Alg.Alias.Signature.1.2.840.113549.1.1.13",     "SHA512withRSA");
  99         map.put("Alg.Alias.Signature.OID.1.2.840.113549.1.1.13", "SHA512withRSA");
 100 
 101         map.put("Signature.MD5withRSA",
 102             "sun.security.mscapi.RSASignature$MD5");
 103         map.put("Signature.MD2withRSA",
 104             "sun.security.mscapi.RSASignature$MD2");
 105 
 106         // supported key classes
 107         map.put("Signature.NONEwithRSA SupportedKeyClasses",
 108             "sun.security.mscapi.Key");
 109         map.put("Signature.SHA1withRSA SupportedKeyClasses",
 110             "sun.security.mscapi.Key");
 111         map.put("Signature.SHA256withRSA SupportedKeyClasses",
 112             "sun.security.mscapi.Key");
 113         map.put("Signature.SHA384withRSA SupportedKeyClasses",
 114             "sun.security.mscapi.Key");
 115         map.put("Signature.SHA512withRSA SupportedKeyClasses",
 116             "sun.security.mscapi.Key");
 117         map.put("Signature.MD5withRSA SupportedKeyClasses",
 118             "sun.security.mscapi.Key");
 119         map.put("Signature.MD2withRSA SupportedKeyClasses",
 120             "sun.security.mscapi.Key");
 121 
 122         /*
 123          * Key Pair Generator engines
 124          */
 125         map.put("KeyPairGenerator.RSA",
 126             "sun.security.mscapi.RSAKeyPairGenerator");
 127         map.put("KeyPairGenerator.RSA KeySize", "1024");
 128 
 129         /*
 130          * Cipher engines
 131          */
 132         map.put("Cipher.RSA", "sun.security.mscapi.RSACipher");
 133         map.put("Cipher.RSA/ECB/PKCS1Padding",
 134             "sun.security.mscapi.RSACipher");
 135         map.put("Cipher.RSA SupportedModes", "ECB");
 136         map.put("Cipher.RSA SupportedPaddings", "PKCS1PADDING");
 137         map.put("Cipher.RSA SupportedKeyClasses", "sun.security.mscapi.Key");
 138 
 139         if (map != this) {
 140             final Provider provider = this;
 141             PrivilegedAction<Void> putAllAction = () -> {
 142                 provider.putAll(map);
 143                 return null;
 144             };
 145             AccessController.doPrivileged(putAllAction);
 146         }
 147     }
 148 }