OpenSSLECPublicKey.java revision 11b3e7025853f061e2f0e0ce1e248e730eca721e 
18b7521eb38878822be3817270cc074ee1e22095dKenny Root/*
28b7521eb38878822be3817270cc074ee1e22095dKenny Root * Copyright (C) 2012 The Android Open Source Project
38b7521eb38878822be3817270cc074ee1e22095dKenny Root *
48b7521eb38878822be3817270cc074ee1e22095dKenny Root * Licensed under the Apache License, Version 2.0 (the "License");
58b7521eb38878822be3817270cc074ee1e22095dKenny Root * you may not use this file except in compliance with the License.
68b7521eb38878822be3817270cc074ee1e22095dKenny Root * You may obtain a copy of the License at
78b7521eb38878822be3817270cc074ee1e22095dKenny Root *
88b7521eb38878822be3817270cc074ee1e22095dKenny Root *      http://www.apache.org/licenses/LICENSE-2.0
98b7521eb38878822be3817270cc074ee1e22095dKenny Root *
108b7521eb38878822be3817270cc074ee1e22095dKenny Root * Unless required by applicable law or agreed to in writing, software
118b7521eb38878822be3817270cc074ee1e22095dKenny Root * distributed under the License is distributed on an "AS IS" BASIS,
128b7521eb38878822be3817270cc074ee1e22095dKenny Root * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
138b7521eb38878822be3817270cc074ee1e22095dKenny Root * See the License for the specific language governing permissions and
148b7521eb38878822be3817270cc074ee1e22095dKenny Root * limitations under the License.
158b7521eb38878822be3817270cc074ee1e22095dKenny Root */
168b7521eb38878822be3817270cc074ee1e22095dKenny Root
178b7521eb38878822be3817270cc074ee1e22095dKenny Rootpackage org.apache.harmony.xnet.provider.jsse;
188b7521eb38878822be3817270cc074ee1e22095dKenny Root
198b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.io.IOException;
208b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.io.NotSerializableException;
218b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.io.ObjectInputStream;
228b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.io.ObjectOutputStream;
238b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.math.BigInteger;
248b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.security.InvalidAlgorithmParameterException;
258b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.security.InvalidKeyException;
268b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.security.interfaces.ECPublicKey;
278b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.security.spec.ECParameterSpec;
288b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.security.spec.ECPoint;
2911b3e7025853f061e2f0e0ce1e248e730eca721eKenny Rootimport java.security.spec.ECPublicKeySpec;
3011b3e7025853f061e2f0e0ce1e248e730eca721eKenny Rootimport java.security.spec.InvalidKeySpecException;
318b7521eb38878822be3817270cc074ee1e22095dKenny Rootimport java.util.Arrays;
328b7521eb38878822be3817270cc074ee1e22095dKenny Root
3347cc520bd63c1eabfdef23cbab10457701f2a395Kenny Rootpublic final class OpenSSLECPublicKey implements ECPublicKey, OpenSSLKeyHolder {
348b7521eb38878822be3817270cc074ee1e22095dKenny Root    private static final long serialVersionUID = 3215842926808298020L;
358b7521eb38878822be3817270cc074ee1e22095dKenny Root
368b7521eb38878822be3817270cc074ee1e22095dKenny Root    private static final String ALGORITHM = "EC";
378b7521eb38878822be3817270cc074ee1e22095dKenny Root
388b7521eb38878822be3817270cc074ee1e22095dKenny Root    protected transient OpenSSLKey key;
398b7521eb38878822be3817270cc074ee1e22095dKenny Root
408b7521eb38878822be3817270cc074ee1e22095dKenny Root    protected transient OpenSSLECGroupContext group;
418b7521eb38878822be3817270cc074ee1e22095dKenny Root
428b7521eb38878822be3817270cc074ee1e22095dKenny Root    public OpenSSLECPublicKey(OpenSSLECGroupContext group, OpenSSLKey key) {
438b7521eb38878822be3817270cc074ee1e22095dKenny Root        this.group = group;
448b7521eb38878822be3817270cc074ee1e22095dKenny Root        this.key = key;
458b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
468b7521eb38878822be3817270cc074ee1e22095dKenny Root
4747cc520bd63c1eabfdef23cbab10457701f2a395Kenny Root    public OpenSSLECPublicKey(OpenSSLKey key) {
4847cc520bd63c1eabfdef23cbab10457701f2a395Kenny Root        final int origGroup = NativeCrypto.EC_KEY_get0_group(key.getPkeyContext());
4947cc520bd63c1eabfdef23cbab10457701f2a395Kenny Root        this.group = new OpenSSLECGroupContext(NativeCrypto.EC_GROUP_dup(origGroup));
5047cc520bd63c1eabfdef23cbab10457701f2a395Kenny Root        this.key = key;
5147cc520bd63c1eabfdef23cbab10457701f2a395Kenny Root    }
5247cc520bd63c1eabfdef23cbab10457701f2a395Kenny Root
5311b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root    public OpenSSLECPublicKey(ECPublicKeySpec ecKeySpec) throws InvalidKeySpecException {
5411b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root        try {
5511b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root            OpenSSLECGroupContext group = OpenSSLECGroupContext.getInstance(ecKeySpec.getParams());
5611b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root            OpenSSLECPointContext pubKey = OpenSSLECPointContext.getInstance(
5711b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root                    NativeCrypto.get_EC_GROUP_type(group.getContext()), group, ecKeySpec.getW());
5811b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root            key = new OpenSSLKey(NativeCrypto.EVP_PKEY_new_EC_KEY(group.getContext(),
5911b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root                    pubKey.getContext(), null));
6011b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root        } catch (Exception e) {
6111b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root            throw new InvalidKeySpecException(e);
6211b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root        }
6311b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root    }
6411b3e7025853f061e2f0e0ce1e248e730eca721eKenny Root
658b7521eb38878822be3817270cc074ee1e22095dKenny Root    public static OpenSSLKey getInstance(ECPublicKey ecPublicKey) throws InvalidKeyException {
668b7521eb38878822be3817270cc074ee1e22095dKenny Root        try {
678b7521eb38878822be3817270cc074ee1e22095dKenny Root            OpenSSLECGroupContext group = OpenSSLECGroupContext
688b7521eb38878822be3817270cc074ee1e22095dKenny Root                    .getInstance(ecPublicKey.getParams());
698b7521eb38878822be3817270cc074ee1e22095dKenny Root            OpenSSLECPointContext pubKey = OpenSSLECPointContext.getInstance(
708b7521eb38878822be3817270cc074ee1e22095dKenny Root                    NativeCrypto.get_EC_GROUP_type(group.getContext()), group, ecPublicKey.getW());
718b7521eb38878822be3817270cc074ee1e22095dKenny Root            return new OpenSSLKey(NativeCrypto.EVP_PKEY_new_EC_KEY(group.getContext(),
728b7521eb38878822be3817270cc074ee1e22095dKenny Root                    pubKey.getContext(), null));
738b7521eb38878822be3817270cc074ee1e22095dKenny Root        } catch (Exception e) {
748b7521eb38878822be3817270cc074ee1e22095dKenny Root            throw new InvalidKeyException(e);
758b7521eb38878822be3817270cc074ee1e22095dKenny Root        }
768b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
778b7521eb38878822be3817270cc074ee1e22095dKenny Root
788b7521eb38878822be3817270cc074ee1e22095dKenny Root    @Override
798b7521eb38878822be3817270cc074ee1e22095dKenny Root    public String getAlgorithm() {
808b7521eb38878822be3817270cc074ee1e22095dKenny Root        return ALGORITHM;
818b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
828b7521eb38878822be3817270cc074ee1e22095dKenny Root
838b7521eb38878822be3817270cc074ee1e22095dKenny Root    @Override
848b7521eb38878822be3817270cc074ee1e22095dKenny Root    public String getFormat() {
858b7521eb38878822be3817270cc074ee1e22095dKenny Root        return "X.509";
868b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
878b7521eb38878822be3817270cc074ee1e22095dKenny Root
888b7521eb38878822be3817270cc074ee1e22095dKenny Root    @Override
898b7521eb38878822be3817270cc074ee1e22095dKenny Root    public byte[] getEncoded() {
908b7521eb38878822be3817270cc074ee1e22095dKenny Root        return NativeCrypto.i2d_PUBKEY(key.getPkeyContext());
918b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
928b7521eb38878822be3817270cc074ee1e22095dKenny Root
938b7521eb38878822be3817270cc074ee1e22095dKenny Root    @Override
948b7521eb38878822be3817270cc074ee1e22095dKenny Root    public ECParameterSpec getParams() {
958b7521eb38878822be3817270cc074ee1e22095dKenny Root        return group.getECParameterSpec();
968b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
978b7521eb38878822be3817270cc074ee1e22095dKenny Root
988b7521eb38878822be3817270cc074ee1e22095dKenny Root    private ECPoint getPublicKey() {
998b7521eb38878822be3817270cc074ee1e22095dKenny Root        final OpenSSLECPointContext pubKey = new OpenSSLECPointContext(group,
1008b7521eb38878822be3817270cc074ee1e22095dKenny Root                NativeCrypto.EC_KEY_get_public_key(key.getPkeyContext()));
1018b7521eb38878822be3817270cc074ee1e22095dKenny Root
1028b7521eb38878822be3817270cc074ee1e22095dKenny Root        return pubKey.getECPoint();
1038b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
1048b7521eb38878822be3817270cc074ee1e22095dKenny Root
1058b7521eb38878822be3817270cc074ee1e22095dKenny Root    @Override
1068b7521eb38878822be3817270cc074ee1e22095dKenny Root    public ECPoint getW() {
1078b7521eb38878822be3817270cc074ee1e22095dKenny Root        return getPublicKey();
1088b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
1098b7521eb38878822be3817270cc074ee1e22095dKenny Root
11047cc520bd63c1eabfdef23cbab10457701f2a395Kenny Root    @Override
1118b7521eb38878822be3817270cc074ee1e22095dKenny Root    public OpenSSLKey getOpenSSLKey() {
1128b7521eb38878822be3817270cc074ee1e22095dKenny Root        return key;
1138b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
1148b7521eb38878822be3817270cc074ee1e22095dKenny Root
1158b7521eb38878822be3817270cc074ee1e22095dKenny Root    @Override
1168b7521eb38878822be3817270cc074ee1e22095dKenny Root    public boolean equals(Object o) {
1178b7521eb38878822be3817270cc074ee1e22095dKenny Root        if (o == this) {
1188b7521eb38878822be3817270cc074ee1e22095dKenny Root            return true;
1198b7521eb38878822be3817270cc074ee1e22095dKenny Root        }
1208b7521eb38878822be3817270cc074ee1e22095dKenny Root
1218b7521eb38878822be3817270cc074ee1e22095dKenny Root        if (o instanceof OpenSSLECPrivateKey) {
1228b7521eb38878822be3817270cc074ee1e22095dKenny Root            OpenSSLECPrivateKey other = (OpenSSLECPrivateKey) o;
1238b7521eb38878822be3817270cc074ee1e22095dKenny Root            return key.equals(other.key);
1248b7521eb38878822be3817270cc074ee1e22095dKenny Root        }
1258b7521eb38878822be3817270cc074ee1e22095dKenny Root
1268b7521eb38878822be3817270cc074ee1e22095dKenny Root        if (!(o instanceof ECPublicKey)) {
1278b7521eb38878822be3817270cc074ee1e22095dKenny Root            return false;
1288b7521eb38878822be3817270cc074ee1e22095dKenny Root        }
1298b7521eb38878822be3817270cc074ee1e22095dKenny Root
1308b7521eb38878822be3817270cc074ee1e22095dKenny Root        final ECPublicKey other = (ECPublicKey) o;
1318b7521eb38878822be3817270cc074ee1e22095dKenny Root        if (!getPublicKey().equals(other.getW())) {
1328b7521eb38878822be3817270cc074ee1e22095dKenny Root            return false;
1338b7521eb38878822be3817270cc074ee1e22095dKenny Root        }
1348b7521eb38878822be3817270cc074ee1e22095dKenny Root
1358b7521eb38878822be3817270cc074ee1e22095dKenny Root        final ECParameterSpec spec = getParams();
1368b7521eb38878822be3817270cc074ee1e22095dKenny Root        final ECParameterSpec otherSpec = other.getParams();
1378b7521eb38878822be3817270cc074ee1e22095dKenny Root
1388b7521eb38878822be3817270cc074ee1e22095dKenny Root        return spec.getCurve().equals(otherSpec.getCurve())
1398b7521eb38878822be3817270cc074ee1e22095dKenny Root                && spec.getGenerator().equals(otherSpec.getGenerator())
1408b7521eb38878822be3817270cc074ee1e22095dKenny Root                && spec.getOrder().equals(otherSpec.getOrder())
1418b7521eb38878822be3817270cc074ee1e22095dKenny Root                && spec.getCofactor() == otherSpec.getCofactor();
1428b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
1438b7521eb38878822be3817270cc074ee1e22095dKenny Root
1448b7521eb38878822be3817270cc074ee1e22095dKenny Root    @Override
1458b7521eb38878822be3817270cc074ee1e22095dKenny Root    public int hashCode() {
1468b7521eb38878822be3817270cc074ee1e22095dKenny Root        return Arrays.hashCode(NativeCrypto.i2d_PUBKEY(key.getPkeyContext()));
1478b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
1488b7521eb38878822be3817270cc074ee1e22095dKenny Root
1498b7521eb38878822be3817270cc074ee1e22095dKenny Root    @Override
1508b7521eb38878822be3817270cc074ee1e22095dKenny Root    public String toString() {
1518b7521eb38878822be3817270cc074ee1e22095dKenny Root        return NativeCrypto.EVP_PKEY_print_public(key.getPkeyContext());
1528b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
1538b7521eb38878822be3817270cc074ee1e22095dKenny Root
1548b7521eb38878822be3817270cc074ee1e22095dKenny Root    private void readObject(ObjectInputStream stream) throws IOException, ClassNotFoundException {
1558b7521eb38878822be3817270cc074ee1e22095dKenny Root        stream.defaultReadObject();
1568b7521eb38878822be3817270cc074ee1e22095dKenny Root
1578b7521eb38878822be3817270cc074ee1e22095dKenny Root        final ECParameterSpec params = (ECParameterSpec) stream.readObject();
1588b7521eb38878822be3817270cc074ee1e22095dKenny Root        final BigInteger pubkeyX = (BigInteger) stream.readObject();
1598b7521eb38878822be3817270cc074ee1e22095dKenny Root        final BigInteger pubkeyY = (BigInteger) stream.readObject();
1608b7521eb38878822be3817270cc074ee1e22095dKenny Root
1618b7521eb38878822be3817270cc074ee1e22095dKenny Root        final OpenSSLECGroupContext group;
1628b7521eb38878822be3817270cc074ee1e22095dKenny Root        try {
1638b7521eb38878822be3817270cc074ee1e22095dKenny Root            group = OpenSSLECGroupContext.getInstance(params);
1648b7521eb38878822be3817270cc074ee1e22095dKenny Root        } catch (InvalidAlgorithmParameterException e) {
1658b7521eb38878822be3817270cc074ee1e22095dKenny Root            throw new ClassNotFoundException("cannot restore field type", e);
1668b7521eb38878822be3817270cc074ee1e22095dKenny Root        }
1678b7521eb38878822be3817270cc074ee1e22095dKenny Root
1688b7521eb38878822be3817270cc074ee1e22095dKenny Root        final int curveType = NativeCrypto.get_EC_GROUP_type(group.getContext());
1698b7521eb38878822be3817270cc074ee1e22095dKenny Root        final ECPoint javaPubKey = new ECPoint(pubkeyX, pubkeyY);
1708b7521eb38878822be3817270cc074ee1e22095dKenny Root        final OpenSSLECPointContext pubKey = OpenSSLECPointContext.getInstance(curveType, group,
1718b7521eb38878822be3817270cc074ee1e22095dKenny Root                javaPubKey);
1728b7521eb38878822be3817270cc074ee1e22095dKenny Root        key = new OpenSSLKey(NativeCrypto.EVP_PKEY_new_EC_KEY(group.getContext(),
1738b7521eb38878822be3817270cc074ee1e22095dKenny Root                pubKey.getContext(), null));
1748b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
1758b7521eb38878822be3817270cc074ee1e22095dKenny Root
1768b7521eb38878822be3817270cc074ee1e22095dKenny Root    private void writeObject(ObjectOutputStream stream) throws IOException {
1778b7521eb38878822be3817270cc074ee1e22095dKenny Root        if (key.isEngineBased()) {
1788b7521eb38878822be3817270cc074ee1e22095dKenny Root            throw new NotSerializableException("engine-based keys can not be serialized");
1798b7521eb38878822be3817270cc074ee1e22095dKenny Root        }
1808b7521eb38878822be3817270cc074ee1e22095dKenny Root
1818b7521eb38878822be3817270cc074ee1e22095dKenny Root        stream.defaultWriteObject();
1828b7521eb38878822be3817270cc074ee1e22095dKenny Root        stream.writeObject(getParams());
1838b7521eb38878822be3817270cc074ee1e22095dKenny Root        final ECPoint pubKey = getPublicKey();
1848b7521eb38878822be3817270cc074ee1e22095dKenny Root        stream.writeObject(pubKey.getAffineX());
1858b7521eb38878822be3817270cc074ee1e22095dKenny Root        stream.writeObject(pubKey.getAffineY());
1868b7521eb38878822be3817270cc074ee1e22095dKenny Root    }
1878b7521eb38878822be3817270cc074ee1e22095dKenny Root}
188