mirror of
https://github.com/openjdk/jdk.git
synced 2026-01-30 13:08:24 +00:00
509 lines
22 KiB
Java
509 lines
22 KiB
Java
/*
|
|
* Copyright (c) 2025, Oracle and/or its affiliates. All rights reserved.
|
|
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
|
|
*
|
|
* This code is free software; you can redistribute it and/or modify it
|
|
* under the terms of the GNU General Public License version 2 only, as
|
|
* published by the Free Software Foundation. Oracle designates this
|
|
* particular file as subject to the "Classpath" exception as provided
|
|
* by Oracle in the LICENSE file that accompanied this code.
|
|
*
|
|
* This code is distributed in the hope that it will be useful, but WITHOUT
|
|
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
|
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
|
|
* version 2 for more details (a copy is included in the LICENSE file that
|
|
* accompanied this code).
|
|
*
|
|
* You should have received a copy of the GNU General Public License version
|
|
* 2 along with this work; if not, write to the Free Software Foundation,
|
|
* Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
*
|
|
* Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
|
|
* or visit www.oracle.com if you need additional information or have any
|
|
* questions.
|
|
*/
|
|
|
|
package java.security;
|
|
|
|
import jdk.internal.javac.PreviewFeature;
|
|
|
|
import sun.security.pkcs.PKCS8Key;
|
|
import sun.security.rsa.RSAPrivateCrtKeyImpl;
|
|
import sun.security.util.KeyUtil;
|
|
import sun.security.util.Pem;
|
|
|
|
import javax.crypto.EncryptedPrivateKeyInfo;
|
|
import javax.crypto.spec.PBEKeySpec;
|
|
import java.io.*;
|
|
import java.nio.charset.StandardCharsets;
|
|
import java.security.cert.*;
|
|
import java.security.spec.*;
|
|
import java.util.Base64;
|
|
import java.util.Objects;
|
|
|
|
/**
|
|
* {@code PEMDecoder} implements a decoder for Privacy-Enhanced Mail (PEM) data.
|
|
* PEM is a textual encoding used to store and transfer security
|
|
* objects, such as asymmetric keys, certificates, and certificate revocation
|
|
* lists (CRLs). It is defined in RFC 1421 and RFC 7468. PEM consists of a
|
|
* Base64-formatted binary encoding enclosed by a type-identifying header
|
|
* and footer.
|
|
*
|
|
* <p> The {@linkplain #decode(String)} and {@linkplain #decode(InputStream)}
|
|
* methods return an instance of a class that matches the data
|
|
* type and implements {@link DEREncodable}.
|
|
*
|
|
* <p> The following lists the supported PEM types and the {@code DEREncodable}
|
|
* types that each are decoded as:
|
|
* <ul>
|
|
* <li>CERTIFICATE : {@code X509Certificate}</li>
|
|
* <li>X509 CRL : {@code X509CRL}</li>
|
|
* <li>PUBLIC KEY : {@code PublicKey}</li>
|
|
* <li>PUBLIC KEY : {@code X509EncodedKeySpec} (Only supported when passed as
|
|
* a {@code Class} parameter)</li>
|
|
* <li>PRIVATE KEY : {@code PrivateKey}</li>
|
|
* <li>PRIVATE KEY : {@code PKCS8EncodedKeySpec} (Only supported when passed
|
|
* as a {@code Class} parameter)</li>
|
|
* <li>PRIVATE KEY : {@code KeyPair} (if the encoding also contains a
|
|
* public key)</li>
|
|
* <li>ENCRYPTED PRIVATE KEY : {@code EncryptedPrivateKeyInfo} </li>
|
|
* <li>ENCRYPTED PRIVATE KEY : {@code PrivateKey} (if configured with
|
|
* Decryption)</li>
|
|
* <li>Other types : {@code PEMRecord} </li>
|
|
* </ul>
|
|
*
|
|
* <p> The {@code PublicKey} and {@code PrivateKey} types, an algorithm specific
|
|
* subclass is returned if the underlying algorithm is supported. For example an
|
|
* ECPublicKey and ECPrivateKey for Elliptic Curve keys.
|
|
*
|
|
* <p> If the PEM type does not have a corresponding class,
|
|
* {@code decode(String)} and {@code decode(InputStream)} will return a
|
|
* {@link PEMRecord}.
|
|
*
|
|
* <p> The {@linkplain #decode(String, Class)} and
|
|
* {@linkplain #decode(InputStream, Class)} methods take a class parameter
|
|
* which determines the type of {@code DEREncodable} that is returned. These
|
|
* methods are useful when extracting or changing the return class.
|
|
* For example, if the PEM contains both public and private keys, the
|
|
* class parameter can specify which to return. Use
|
|
* {@code PrivateKey.class} to return only the private key.
|
|
* If the class parameter is set to {@code X509EncodedKeySpec.class}, the
|
|
* public key will be returned in that format. Any type of PEM data can be
|
|
* decoded into a {@code PEMRecord} by specifying {@code PEMRecord.class}.
|
|
* If the class parameter doesn't match the PEM content, a
|
|
* {@linkplain ClassCastException} will be thrown.
|
|
*
|
|
* <p> A new {@code PEMDecoder} instance is created when configured
|
|
* with {@linkplain #withFactory(Provider)} and/or
|
|
* {@linkplain #withDecryption(char[])}. {@linkplain #withFactory(Provider)}
|
|
* configures the decoder to use only {@linkplain KeyFactory} and
|
|
* {@linkplain CertificateFactory} instances from the given {@code Provider}.
|
|
* {@linkplain #withDecryption(char[])} configures the decoder to decrypt all
|
|
* encrypted private key PEM data using the given password.
|
|
* Configuring an instance for decryption does not prevent decoding with
|
|
* unencrypted PEM. Any encrypted PEM that fails decryption
|
|
* will throw a {@link RuntimeException}. When an encrypted private key PEM is
|
|
* used with a decoder not configured for decryption, an
|
|
* {@link EncryptedPrivateKeyInfo} object is returned.
|
|
*
|
|
* <p>This class is immutable and thread-safe.
|
|
*
|
|
* <p> Here is an example of decoding a {@code PrivateKey} object:
|
|
* {@snippet lang = java:
|
|
* PEMDecoder pd = PEMDecoder.of();
|
|
* PrivateKey priKey = pd.decode(priKeyPEM, PrivateKey.class);
|
|
* }
|
|
*
|
|
* <p> Here is an example of a {@code PEMDecoder} configured with decryption
|
|
* and a factory provider:
|
|
* {@snippet lang = java:
|
|
* PEMDecoder pd = PEMDecoder.of().withDecryption(password).
|
|
* withFactory(provider);
|
|
* byte[] pemData = pd.decode(privKey);
|
|
* }
|
|
*
|
|
* @implNote An implementation may support other PEM types and
|
|
* {@code DEREncodable} objects. This implementation additionally supports
|
|
* the following PEM types: {@code X509 CERTIFICATE},
|
|
* {@code X.509 CERTIFICATE}, {@code CRL}, and {@code RSA PRIVATE KEY}.
|
|
*
|
|
* @see PEMEncoder
|
|
* @see PEMRecord
|
|
* @see EncryptedPrivateKeyInfo
|
|
*
|
|
* @spec https://www.rfc-editor.org/info/rfc1421
|
|
* RFC 1421: Privacy Enhancement for Internet Electronic Mail
|
|
* @spec https://www.rfc-editor.org/info/rfc7468
|
|
* RFC 7468: Textual Encodings of PKIX, PKCS, and CMS Structures
|
|
*
|
|
* @since 25
|
|
*/
|
|
|
|
@PreviewFeature(feature = PreviewFeature.Feature.PEM_API)
|
|
public final class PEMDecoder {
|
|
private final Provider factory;
|
|
private final PBEKeySpec password;
|
|
|
|
// Singleton instance for PEMDecoder
|
|
private final static PEMDecoder PEM_DECODER = new PEMDecoder(null, null);
|
|
|
|
/**
|
|
* Creates an instance with a specific KeyFactory and/or password.
|
|
* @param withFactory KeyFactory provider
|
|
* @param withPassword char[] password for EncryptedPrivateKeyInfo
|
|
* decryption
|
|
*/
|
|
private PEMDecoder(Provider withFactory, PBEKeySpec withPassword) {
|
|
password = withPassword;
|
|
factory = withFactory;
|
|
}
|
|
|
|
/**
|
|
* Returns an instance of {@code PEMDecoder}.
|
|
*
|
|
* @return a {@code PEMDecoder} instance
|
|
*/
|
|
public static PEMDecoder of() {
|
|
return PEM_DECODER;
|
|
}
|
|
|
|
/**
|
|
* After the header, footer, and base64 have been separated, identify the
|
|
* header and footer and proceed with decoding the base64 for the
|
|
* appropriate type.
|
|
*/
|
|
private DEREncodable decode(PEMRecord pem) {
|
|
Base64.Decoder decoder = Base64.getMimeDecoder();
|
|
|
|
try {
|
|
return switch (pem.type()) {
|
|
case Pem.PUBLIC_KEY -> {
|
|
X509EncodedKeySpec spec =
|
|
new X509EncodedKeySpec(decoder.decode(pem.content()));
|
|
yield getKeyFactory(
|
|
KeyUtil.getAlgorithm(spec.getEncoded())).
|
|
generatePublic(spec);
|
|
}
|
|
case Pem.PRIVATE_KEY -> {
|
|
PKCS8Key p8key = new PKCS8Key(decoder.decode(pem.content()));
|
|
String algo = p8key.getAlgorithm();
|
|
KeyFactory kf = getKeyFactory(algo);
|
|
DEREncodable d = kf.generatePrivate(
|
|
new PKCS8EncodedKeySpec(p8key.getEncoded(), algo));
|
|
|
|
// Look for a public key inside the pkcs8 encoding.
|
|
if (p8key.getPubKeyEncoded() != null) {
|
|
// Check if this is a OneAsymmetricKey encoding
|
|
X509EncodedKeySpec spec = new X509EncodedKeySpec(
|
|
p8key.getPubKeyEncoded(), algo);
|
|
yield new KeyPair(getKeyFactory(algo).
|
|
generatePublic(spec), (PrivateKey) d);
|
|
|
|
} else if (d instanceof PKCS8Key p8 &&
|
|
p8.getPubKeyEncoded() != null) {
|
|
// If the KeyFactory decoded an algorithm-specific
|
|
// encodings, look for the public key again. This
|
|
// happens with EC and SEC1-v2 encoding
|
|
X509EncodedKeySpec spec = new X509EncodedKeySpec(
|
|
p8.getPubKeyEncoded(), algo);
|
|
yield new KeyPair(getKeyFactory(algo).
|
|
generatePublic(spec), p8);
|
|
} else {
|
|
// No public key, return the private key.
|
|
yield d;
|
|
}
|
|
}
|
|
case Pem.ENCRYPTED_PRIVATE_KEY -> {
|
|
if (password == null) {
|
|
yield new EncryptedPrivateKeyInfo(decoder.decode(
|
|
pem.content()));
|
|
}
|
|
yield new EncryptedPrivateKeyInfo(decoder.decode(pem.content())).
|
|
getKey(password.getPassword());
|
|
}
|
|
case Pem.CERTIFICATE, Pem.X509_CERTIFICATE,
|
|
Pem.X_509_CERTIFICATE -> {
|
|
CertificateFactory cf = getCertFactory("X509");
|
|
yield (X509Certificate) cf.generateCertificate(
|
|
new ByteArrayInputStream(decoder.decode(pem.content())));
|
|
}
|
|
case Pem.X509_CRL, Pem.CRL -> {
|
|
CertificateFactory cf = getCertFactory("X509");
|
|
yield (X509CRL) cf.generateCRL(
|
|
new ByteArrayInputStream(decoder.decode(pem.content())));
|
|
}
|
|
case Pem.RSA_PRIVATE_KEY -> {
|
|
KeyFactory kf = getKeyFactory("RSA");
|
|
yield kf.generatePrivate(
|
|
RSAPrivateCrtKeyImpl.getKeySpec(decoder.decode(
|
|
pem.content())));
|
|
}
|
|
default -> pem;
|
|
};
|
|
} catch (GeneralSecurityException | IOException e) {
|
|
throw new IllegalArgumentException(e);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Decodes and returns a {@link DEREncodable} from the given {@code String}.
|
|
*
|
|
* <p> This method reads the {@code String} until PEM data is found
|
|
* or the end of the {@code String} is reached. If no PEM data is found,
|
|
* an {@code IllegalArgumentException} is thrown.
|
|
*
|
|
* <p> This method returns a Java API cryptographic object,
|
|
* such as a {@code PrivateKey}, if the PEM type is supported.
|
|
* Any non-PEM data preceding the PEM header is ignored by the decoder.
|
|
* Otherwise, a {@link PEMRecord} will be returned containing
|
|
* the type identifier and Base64-encoded data.
|
|
* Any non-PEM data preceding the PEM header will be stored in
|
|
* {@code leadingData}.
|
|
*
|
|
* <p> Input consumed by this method is read in as
|
|
* {@link java.nio.charset.StandardCharsets#UTF_8 UTF-8}.
|
|
*
|
|
* @param str a String containing PEM data
|
|
* @return a {@code DEREncodable}
|
|
* @throws IllegalArgumentException on error in decoding or no PEM data
|
|
* found
|
|
* @throws NullPointerException when {@code str} is null
|
|
*/
|
|
public DEREncodable decode(String str) {
|
|
Objects.requireNonNull(str);
|
|
try {
|
|
return decode(new ByteArrayInputStream(
|
|
str.getBytes(StandardCharsets.UTF_8)));
|
|
} catch (IOException e) {
|
|
// With all data contained in the String, there are no IO ops.
|
|
throw new IllegalArgumentException(e);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Decodes and returns a {@link DEREncodable} from the given
|
|
* {@code InputStream}.
|
|
*
|
|
* <p> This method reads from the {@code InputStream} until the end of
|
|
* the PEM footer or the end of the stream. If an I/O error occurs,
|
|
* the read position in the stream may become inconsistent.
|
|
* It is recommended to perform no further decoding operations
|
|
* on the {@code InputStream}.
|
|
*
|
|
* <p> This method returns a Java API cryptographic object,
|
|
* such as a {@code PrivateKey}, if the PEM type is supported.
|
|
* Any non-PEM data preceding the PEM header is ignored by the decoder.
|
|
* Otherwise, a {@link PEMRecord} will be returned containing
|
|
* the type identifier and Base64-encoded data.
|
|
* Any non-PEM data preceding the PEM header will be stored in
|
|
* {@code leadingData}.
|
|
*
|
|
* <p> If no PEM data is found, an {@code IllegalArgumentException} is
|
|
* thrown.
|
|
*
|
|
* @param is InputStream containing PEM data
|
|
* @return a {@code DEREncodable}
|
|
* @throws IOException on IO or PEM syntax error where the
|
|
* {@code InputStream} did not complete decoding.
|
|
* @throws EOFException at the end of the {@code InputStream}
|
|
* @throws IllegalArgumentException on error in decoding
|
|
* @throws NullPointerException when {@code is} is null
|
|
*/
|
|
public DEREncodable decode(InputStream is) throws IOException {
|
|
Objects.requireNonNull(is);
|
|
PEMRecord pem = Pem.readPEM(is);
|
|
return decode(pem);
|
|
}
|
|
|
|
/**
|
|
* Decodes and returns a {@code DEREncodable} of the specified class from
|
|
* the given PEM string. {@code tClass} must extend {@link DEREncodable}
|
|
* and be an appropriate class for the PEM type.
|
|
*
|
|
* <p> This method reads the {@code String} until PEM data is found
|
|
* or the end of the {@code String} is reached. If no PEM data is found,
|
|
* an {@code IllegalArgumentException} is thrown.
|
|
*
|
|
* <p> If the class parameter is {@code PEMRecord.class},
|
|
* a {@linkplain PEMRecord} is returned containing the
|
|
* type identifier and Base64 encoding. Any non-PEM data preceding
|
|
* the PEM header will be stored in {@code leadingData}. Other
|
|
* class parameters will not return preceding non-PEM data.
|
|
*
|
|
* <p> Input consumed by this method is read in as
|
|
* {@link java.nio.charset.StandardCharsets#UTF_8 UTF-8}.
|
|
*
|
|
* @param <S> Class type parameter that extends {@code DEREncodable}
|
|
* @param str the String containing PEM data
|
|
* @param tClass the returned object class that implements
|
|
* {@code DEREncodable}
|
|
* @return a {@code DEREncodable} specified by {@code tClass}
|
|
* @throws IllegalArgumentException on error in decoding or no PEM data
|
|
* found
|
|
* @throws ClassCastException if {@code tClass} is invalid for the PEM type
|
|
* @throws NullPointerException when any input values are null
|
|
*/
|
|
public <S extends DEREncodable> S decode(String str, Class<S> tClass) {
|
|
Objects.requireNonNull(str);
|
|
try {
|
|
return decode(new ByteArrayInputStream(
|
|
str.getBytes(StandardCharsets.UTF_8)), tClass);
|
|
} catch (IOException e) {
|
|
// With all data contained in the String, there are no IO ops.
|
|
throw new IllegalArgumentException(e);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Decodes and returns the specified class for the given
|
|
* {@link InputStream}. The class must extend {@link DEREncodable} and be
|
|
* an appropriate class for the PEM type.
|
|
*
|
|
* <p> This method reads from the {@code InputStream} until the end of
|
|
* the PEM footer or the end of the stream. If an I/O error occurs,
|
|
* the read position in the stream may become inconsistent.
|
|
* It is recommended to perform no further decoding operations
|
|
* on the {@code InputStream}.
|
|
*
|
|
* <p> If the class parameter is {@code PEMRecord.class},
|
|
* a {@linkplain PEMRecord} is returned containing the
|
|
* type identifier and Base64 encoding. Any non-PEM data preceding
|
|
* the PEM header will be stored in {@code leadingData}. Other
|
|
* class parameters will not return preceding non-PEM data.
|
|
*
|
|
* <p> If no PEM data is found, an {@code IllegalArgumentException} is
|
|
* thrown.
|
|
*
|
|
* @param <S> Class type parameter that extends {@code DEREncodable}.
|
|
* @param is an InputStream containing PEM data
|
|
* @param tClass the returned object class that implements
|
|
* {@code DEREncodable}.
|
|
* @return a {@code DEREncodable} typecast to {@code tClass}
|
|
* @throws IOException on IO or PEM syntax error where the
|
|
* {@code InputStream} did not complete decoding.
|
|
* @throws EOFException at the end of the {@code InputStream}
|
|
* @throws IllegalArgumentException on error in decoding
|
|
* @throws ClassCastException if {@code tClass} is invalid for the PEM type
|
|
* @throws NullPointerException when any input values are null
|
|
*
|
|
* @see #decode(InputStream)
|
|
* @see #decode(String, Class)
|
|
*/
|
|
public <S extends DEREncodable> S decode(InputStream is, Class<S> tClass)
|
|
throws IOException {
|
|
Objects.requireNonNull(is);
|
|
Objects.requireNonNull(tClass);
|
|
PEMRecord pem = Pem.readPEM(is);
|
|
|
|
if (tClass.isAssignableFrom(PEMRecord.class)) {
|
|
return tClass.cast(pem);
|
|
}
|
|
DEREncodable so = decode(pem);
|
|
|
|
/*
|
|
* If the object is a KeyPair, check if the tClass is set to class
|
|
* specific to a private or public key. Because PKCS8v2 can be a
|
|
* KeyPair, it is possible for someone to assume all their PEM private
|
|
* keys are only PrivateKey and not KeyPair.
|
|
*/
|
|
if (so instanceof KeyPair kp) {
|
|
if ((PrivateKey.class).isAssignableFrom(tClass) ||
|
|
(PKCS8EncodedKeySpec.class).isAssignableFrom(tClass)) {
|
|
so = kp.getPrivate();
|
|
}
|
|
if ((PublicKey.class).isAssignableFrom(tClass) ||
|
|
(X509EncodedKeySpec.class).isAssignableFrom(tClass)) {
|
|
so = kp.getPublic();
|
|
}
|
|
}
|
|
|
|
/*
|
|
* KeySpec use getKeySpec after the Key has been generated. Even though
|
|
* returning a binary encoding after the Base64 decoding is ok when the
|
|
* user wants PKCS8EncodedKeySpec, generating the key verifies the
|
|
* binary encoding and allows the KeyFactory to use the provider's
|
|
* KeySpec()
|
|
*/
|
|
|
|
if ((EncodedKeySpec.class).isAssignableFrom(tClass) &&
|
|
so instanceof Key key) {
|
|
try {
|
|
// unchecked suppressed as we know tClass comes from KeySpec
|
|
// KeyType not relevant here. We just want KeyFactory
|
|
if ((PKCS8EncodedKeySpec.class).isAssignableFrom(tClass)) {
|
|
so = getKeyFactory(key.getAlgorithm()).
|
|
getKeySpec(key, PKCS8EncodedKeySpec.class);
|
|
} else if ((X509EncodedKeySpec.class).isAssignableFrom(tClass)) {
|
|
so = getKeyFactory(key.getAlgorithm())
|
|
.getKeySpec(key, X509EncodedKeySpec.class);
|
|
} else {
|
|
throw new IllegalArgumentException("Invalid KeySpec.");
|
|
}
|
|
} catch (InvalidKeySpecException e) {
|
|
throw new IllegalArgumentException("Invalid KeySpec " +
|
|
"specified (" + tClass.getName() +") for key (" +
|
|
key.getClass().getName() +")", e);
|
|
}
|
|
}
|
|
|
|
return tClass.cast(so);
|
|
}
|
|
|
|
private KeyFactory getKeyFactory(String algorithm) {
|
|
if (algorithm == null || algorithm.isEmpty()) {
|
|
throw new IllegalArgumentException("No algorithm found in " +
|
|
"the encoding");
|
|
}
|
|
try {
|
|
if (factory == null) {
|
|
return KeyFactory.getInstance(algorithm);
|
|
}
|
|
return KeyFactory.getInstance(algorithm, factory);
|
|
} catch (GeneralSecurityException e) {
|
|
throw new IllegalArgumentException(e);
|
|
}
|
|
}
|
|
|
|
// Convenience method to avoid provider getInstance checks clutter
|
|
private CertificateFactory getCertFactory(String algorithm) {
|
|
try {
|
|
if (factory == null) {
|
|
return CertificateFactory.getInstance(algorithm);
|
|
}
|
|
return CertificateFactory.getInstance(algorithm, factory);
|
|
} catch (GeneralSecurityException e) {
|
|
throw new IllegalArgumentException(e);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Returns a copy of this {@code PEMDecoder} instance that uses
|
|
* {@link KeyFactory} and {@link CertificateFactory} implementations
|
|
* from the specified {@link Provider} to produce cryptographic objects.
|
|
* Any errors using the {@code Provider} will occur during decoding.
|
|
*
|
|
* @param provider the factory provider
|
|
* @return a new PEMEncoder instance configured to the {@code Provider}.
|
|
* @throws NullPointerException if {@code provider} is null
|
|
*/
|
|
public PEMDecoder withFactory(Provider provider) {
|
|
Objects.requireNonNull(provider);
|
|
return new PEMDecoder(provider, password);
|
|
}
|
|
|
|
/**
|
|
* Returns a copy of this {@code PEMDecoder} that decodes and decrypts
|
|
* encrypted private keys using the specified password.
|
|
* Non-encrypted PEM can still be decoded from this instance.
|
|
*
|
|
* @param password the password to decrypt encrypted PEM data. This array
|
|
* is cloned and stored in the new instance.
|
|
* @return a new PEMEncoder instance configured for decryption
|
|
* @throws NullPointerException if {@code password} is null
|
|
*/
|
|
public PEMDecoder withDecryption(char[] password) {
|
|
Objects.requireNonNull(password);
|
|
return new PEMDecoder(factory, new PBEKeySpec(password));
|
|
}
|
|
}
|