add all
This commit is contained in:
142
Packages/com.tivadar.best.http/Runtime/3rdParty/BouncyCastle/cms/KEKRecipientInfoGenerator.cs
vendored
Normal file
142
Packages/com.tivadar.best.http/Runtime/3rdParty/BouncyCastle/cms/KEKRecipientInfoGenerator.cs
vendored
Normal file
@@ -0,0 +1,142 @@
|
||||
#if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
|
||||
#pragma warning disable
|
||||
using System;
|
||||
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.Cms;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.Kisa;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.Nist;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.Ntt;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.Pkcs;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.X509;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Crypto;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Crypto.Parameters;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Security;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Utilities;
|
||||
|
||||
namespace Best.HTTP.SecureProtocol.Org.BouncyCastle.Cms
|
||||
{
|
||||
internal class KekRecipientInfoGenerator : RecipientInfoGenerator
|
||||
{
|
||||
private static readonly CmsEnvelopedHelper Helper = CmsEnvelopedHelper.Instance;
|
||||
|
||||
private KeyParameter keyEncryptionKey;
|
||||
// TODO Can get this from keyEncryptionKey?
|
||||
private string keyEncryptionKeyOID;
|
||||
private KekIdentifier kekIdentifier;
|
||||
|
||||
// Derived
|
||||
private AlgorithmIdentifier keyEncryptionAlgorithm;
|
||||
|
||||
internal KekRecipientInfoGenerator()
|
||||
{
|
||||
}
|
||||
|
||||
internal KekIdentifier KekIdentifier
|
||||
{
|
||||
set { this.kekIdentifier = value; }
|
||||
}
|
||||
|
||||
internal KeyParameter KeyEncryptionKey
|
||||
{
|
||||
set
|
||||
{
|
||||
this.keyEncryptionKey = value;
|
||||
this.keyEncryptionAlgorithm = DetermineKeyEncAlg(keyEncryptionKeyOID, keyEncryptionKey);
|
||||
}
|
||||
}
|
||||
|
||||
internal string KeyEncryptionKeyOID
|
||||
{
|
||||
set { this.keyEncryptionKeyOID = value; }
|
||||
}
|
||||
|
||||
public RecipientInfo Generate(KeyParameter contentEncryptionKey, SecureRandom random)
|
||||
{
|
||||
byte[] keyBytes = contentEncryptionKey.GetKey();
|
||||
|
||||
IWrapper keyWrapper = Helper.CreateWrapper(keyEncryptionAlgorithm.Algorithm.Id);
|
||||
keyWrapper.Init(true, new ParametersWithRandom(keyEncryptionKey, random));
|
||||
Asn1OctetString encryptedKey = new DerOctetString(
|
||||
keyWrapper.Wrap(keyBytes, 0, keyBytes.Length));
|
||||
|
||||
return new RecipientInfo(new KekRecipientInfo(kekIdentifier, keyEncryptionAlgorithm, encryptedKey));
|
||||
}
|
||||
|
||||
private static AlgorithmIdentifier DetermineKeyEncAlg(
|
||||
string algorithm, KeyParameter key)
|
||||
{
|
||||
if (Org.BouncyCastle.Utilities.Platform.StartsWith(algorithm, "DES"))
|
||||
{
|
||||
return new AlgorithmIdentifier(
|
||||
PkcsObjectIdentifiers.IdAlgCms3DesWrap,
|
||||
DerNull.Instance);
|
||||
}
|
||||
else if (Org.BouncyCastle.Utilities.Platform.StartsWith(algorithm, "RC2"))
|
||||
{
|
||||
return new AlgorithmIdentifier(
|
||||
PkcsObjectIdentifiers.IdAlgCmsRC2Wrap,
|
||||
new DerInteger(58));
|
||||
}
|
||||
else if (Org.BouncyCastle.Utilities.Platform.StartsWith(algorithm, "AES"))
|
||||
{
|
||||
int length = key.GetKey().Length * 8;
|
||||
DerObjectIdentifier wrapOid;
|
||||
|
||||
if (length == 128)
|
||||
{
|
||||
wrapOid = NistObjectIdentifiers.IdAes128Wrap;
|
||||
}
|
||||
else if (length == 192)
|
||||
{
|
||||
wrapOid = NistObjectIdentifiers.IdAes192Wrap;
|
||||
}
|
||||
else if (length == 256)
|
||||
{
|
||||
wrapOid = NistObjectIdentifiers.IdAes256Wrap;
|
||||
}
|
||||
else
|
||||
{
|
||||
throw new ArgumentException("illegal keysize in AES");
|
||||
}
|
||||
|
||||
return new AlgorithmIdentifier(wrapOid); // parameters absent
|
||||
}
|
||||
else if (Org.BouncyCastle.Utilities.Platform.StartsWith(algorithm, "SEED"))
|
||||
{
|
||||
// parameters absent
|
||||
return new AlgorithmIdentifier(KisaObjectIdentifiers.IdNpkiAppCmsSeedWrap);
|
||||
}
|
||||
else if (Org.BouncyCastle.Utilities.Platform.StartsWith(algorithm, "CAMELLIA"))
|
||||
{
|
||||
int length = key.GetKey().Length * 8;
|
||||
DerObjectIdentifier wrapOid;
|
||||
|
||||
if (length == 128)
|
||||
{
|
||||
wrapOid = NttObjectIdentifiers.IdCamellia128Wrap;
|
||||
}
|
||||
else if (length == 192)
|
||||
{
|
||||
wrapOid = NttObjectIdentifiers.IdCamellia192Wrap;
|
||||
}
|
||||
else if (length == 256)
|
||||
{
|
||||
wrapOid = NttObjectIdentifiers.IdCamellia256Wrap;
|
||||
}
|
||||
else
|
||||
{
|
||||
throw new ArgumentException("illegal keysize in Camellia");
|
||||
}
|
||||
|
||||
return new AlgorithmIdentifier(wrapOid); // parameters must be absent
|
||||
}
|
||||
else
|
||||
{
|
||||
throw new ArgumentException("unknown algorithm");
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
#pragma warning restore
|
||||
#endif
|
||||
Reference in New Issue
Block a user