add all
This commit is contained in:
136
Packages/com.tivadar.best.http/Runtime/3rdParty/BouncyCastle/cms/KeyTransRecipientInformation.cs
vendored
Normal file
136
Packages/com.tivadar.best.http/Runtime/3rdParty/BouncyCastle/cms/KeyTransRecipientInformation.cs
vendored
Normal file
@@ -0,0 +1,136 @@
|
||||
#if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
|
||||
#pragma warning disable
|
||||
using System;
|
||||
using System.IO;
|
||||
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.Cms;
|
||||
using Asn1Pkcs = Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.Pkcs;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.X509;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Crypto;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Crypto.Parameters;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Security;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.X509;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Asn1.Pkcs;
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Crypto.Operators;
|
||||
|
||||
namespace Best.HTTP.SecureProtocol.Org.BouncyCastle.Cms
|
||||
{
|
||||
/**
|
||||
* the KeyTransRecipientInformation class for a recipient who has been sent a secret
|
||||
* key encrypted using their public key that needs to be used to
|
||||
* extract the message.
|
||||
*/
|
||||
public class KeyTransRecipientInformation
|
||||
: RecipientInformation
|
||||
{
|
||||
private KeyTransRecipientInfo info;
|
||||
|
||||
internal KeyTransRecipientInformation(
|
||||
KeyTransRecipientInfo info,
|
||||
CmsSecureReadable secureReadable)
|
||||
: base(info.KeyEncryptionAlgorithm, secureReadable)
|
||||
{
|
||||
this.info = info;
|
||||
this.rid = new RecipientID();
|
||||
|
||||
RecipientIdentifier r = info.RecipientIdentifier;
|
||||
|
||||
try
|
||||
{
|
||||
if (r.IsTagged)
|
||||
{
|
||||
Asn1OctetString octs = Asn1OctetString.GetInstance(r.ID);
|
||||
|
||||
rid.SubjectKeyIdentifier = octs.GetOctets();
|
||||
}
|
||||
else
|
||||
{
|
||||
Asn1.Cms.IssuerAndSerialNumber iAnds = Asn1.Cms.IssuerAndSerialNumber.GetInstance(r.ID);
|
||||
|
||||
rid.Issuer = iAnds.Name;
|
||||
rid.SerialNumber = iAnds.SerialNumber.Value;
|
||||
}
|
||||
}
|
||||
catch (IOException)
|
||||
{
|
||||
throw new ArgumentException("invalid rid in KeyTransRecipientInformation");
|
||||
}
|
||||
}
|
||||
|
||||
private string GetExchangeEncryptionAlgorithmName(
|
||||
AlgorithmIdentifier algo)
|
||||
{
|
||||
DerObjectIdentifier oid = algo.Algorithm;
|
||||
|
||||
if (Asn1Pkcs.PkcsObjectIdentifiers.RsaEncryption.Equals(oid))
|
||||
{
|
||||
return "RSA//PKCS1Padding";
|
||||
} else if (Asn1Pkcs.PkcsObjectIdentifiers.IdRsaesOaep.Equals(oid))
|
||||
{
|
||||
Asn1Pkcs.RsaesOaepParameters rsaParams = Asn1Pkcs.RsaesOaepParameters.GetInstance(algo.Parameters);
|
||||
return "RSA//OAEPWITH"+DigestUtilities.GetAlgorithmName(rsaParams.HashAlgorithm.Algorithm)+"ANDMGF1Padding";
|
||||
}
|
||||
|
||||
return oid.Id;
|
||||
}
|
||||
|
||||
internal KeyParameter UnwrapKey(ICipherParameters key)
|
||||
{
|
||||
byte[] encryptedKey = info.EncryptedKey.GetOctets();
|
||||
|
||||
|
||||
try
|
||||
{
|
||||
if (keyEncAlg.Algorithm.Equals(PkcsObjectIdentifiers.IdRsaesOaep))
|
||||
{
|
||||
IKeyUnwrapper keyWrapper = new Asn1KeyUnwrapper(keyEncAlg.Algorithm, keyEncAlg.Parameters, key);
|
||||
|
||||
return ParameterUtilities.CreateKeyParameter(
|
||||
GetContentAlgorithmName(), keyWrapper.Unwrap(encryptedKey, 0, encryptedKey.Length).Collect());
|
||||
}
|
||||
else
|
||||
{
|
||||
string keyExchangeAlgorithm = GetExchangeEncryptionAlgorithmName(keyEncAlg);
|
||||
IWrapper keyWrapper = WrapperUtilities.GetWrapper(keyExchangeAlgorithm);
|
||||
keyWrapper.Init(false, key);
|
||||
|
||||
// FIXME Support for MAC algorithm parameters similar to cipher parameters
|
||||
return ParameterUtilities.CreateKeyParameter(
|
||||
GetContentAlgorithmName(), keyWrapper.Unwrap(encryptedKey, 0, encryptedKey.Length));
|
||||
}
|
||||
}
|
||||
catch (SecurityUtilityException e)
|
||||
{
|
||||
throw new CmsException("couldn't create cipher.", e);
|
||||
}
|
||||
catch (InvalidKeyException e)
|
||||
{
|
||||
throw new CmsException("key invalid in message.", e);
|
||||
}
|
||||
// catch (IllegalBlockSizeException e)
|
||||
catch (DataLengthException e)
|
||||
{
|
||||
throw new CmsException("illegal blocksize in message.", e);
|
||||
}
|
||||
// catch (BadPaddingException e)
|
||||
catch (InvalidCipherTextException e)
|
||||
{
|
||||
throw new CmsException("bad padding in message.", e);
|
||||
}
|
||||
}
|
||||
|
||||
/**
|
||||
* decrypt the content and return it as a byte array.
|
||||
*/
|
||||
public override CmsTypedStream GetContentStream(
|
||||
ICipherParameters key)
|
||||
{
|
||||
KeyParameter sKey = UnwrapKey(key);
|
||||
|
||||
return GetContentFromSessionKey(sKey);
|
||||
}
|
||||
}
|
||||
}
|
||||
#pragma warning restore
|
||||
#endif
|
||||
Reference in New Issue
Block a user