mirrors
/
jgit
spogulis no https://github.com/eclipse/jgit.git
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Kods Problēmas 0 Laidieni 204 Vikivietne Aktivitāte
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
2329 Revīzijas
49 Atzari
Atzars: stable-2.2
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no 'stable-2.2'
${ noResults }
jgit/org.eclipse.jgit/src/org/eclipse/jgit/transport/WalkEncryption.java

WalkEncryption.java 6.3KB
Neapstrādāts Patstāvīgā saite Vainot Vēsture

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197 
  1. /*

  2.  * Copyright (C) 2008, Shawn O. Pearce <spearce@spearce.org>

  3.  * and other copyright owners as documented in the project's IP log.

  4.  *

  5.  * This program and the accompanying materials are made available

  6.  * under the terms of the Eclipse Distribution License v1.0 which

  7.  * accompanies this distribution, is reproduced below, and is

  8.  * available at http://www.eclipse.org/org/documents/edl-v10.php

  9.  *

  10.  * All rights reserved.

  11.  *

  12.  * Redistribution and use in source and binary forms, with or

  13.  * without modification, are permitted provided that the following

  14.  * conditions are met:

  15.  *

  16.  * - Redistributions of source code must retain the above copyright

  17.  *   notice, this list of conditions and the following disclaimer.

  18.  *

  19.  * - Redistributions in binary form must reproduce the above

  20.  *   copyright notice, this list of conditions and the following

  21.  *   disclaimer in the documentation and/or other materials provided

  22.  *   with the distribution.

  23.  *

  24.  * - Neither the name of the Eclipse Foundation, Inc. nor the

  25.  *   names of its contributors may be used to endorse or promote

  26.  *   products derived from this software without specific prior

  27.  *   written permission.

  28.  *

  29.  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND

  30.  * CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,

  31.  * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES

  32.  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

  33.  * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR

  34.  * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

  35.  * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

  36.  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

  37.  * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER

  38.  * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

  39.  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

  40.  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF

  41.  * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

  42.  */

  43. 

  44. package org.eclipse.jgit.transport;

  45. 

  46. import java.io.IOException;

  47. import java.io.InputStream;

  48. import java.io.OutputStream;

  49. import java.net.HttpURLConnection;

  50. import java.security.InvalidAlgorithmParameterException;

  51. import java.security.InvalidKeyException;

  52. import java.security.NoSuchAlgorithmException;

  53. import java.security.spec.InvalidKeySpecException;

  54. import java.text.MessageFormat;

  55. 

  56. import javax.crypto.Cipher;

  57. import javax.crypto.CipherInputStream;

  58. import javax.crypto.CipherOutputStream;

  59. import javax.crypto.NoSuchPaddingException;

  60. import javax.crypto.SecretKey;

  61. import javax.crypto.SecretKeyFactory;

  62. import javax.crypto.spec.PBEKeySpec;

  63. import javax.crypto.spec.PBEParameterSpec;

  64. 

  65. import org.eclipse.jgit.internal.JGitText;

  66. 

  67. abstract class WalkEncryption {

  68. 	static final WalkEncryption NONE = new NoEncryption();

  69. 

  70. 	static final String JETS3T_CRYPTO_VER = "jets3t-crypto-ver";

  71. 

  72. 	static final String JETS3T_CRYPTO_ALG = "jets3t-crypto-alg";

  73. 

  74. 	abstract OutputStream encrypt(OutputStream os) throws IOException;

  75. 

  76. 	abstract InputStream decrypt(InputStream in) throws IOException;

  77. 

  78. 	abstract void request(HttpURLConnection u, String prefix);

  79. 

  80. 	abstract void validate(HttpURLConnection u, String p) throws IOException;

  81. 

  82. 	protected void validateImpl(final HttpURLConnection u, final String p,

  83. 			final String version, final String name) throws IOException {

  84. 		String v;

  85. 

  86. 		v = u.getHeaderField(p + JETS3T_CRYPTO_VER);

  87. 		if (v == null)

  88. 			v = "";

  89. 		if (!version.equals(v))

  90. 			throw new IOException(MessageFormat.format(JGitText.get().unsupportedEncryptionVersion, v));

  91. 

  92. 		v = u.getHeaderField(p + JETS3T_CRYPTO_ALG);

  93. 		if (v == null)

  94. 			v = "";

  95. 		if (!name.equals(v))

  96. 			throw new IOException(JGitText.get().unsupportedEncryptionAlgorithm + v);

  97. 	}

  98. 

  99. 	IOException error(final Throwable why) {

  100. 		final IOException e;

  101. 		e = new IOException(MessageFormat.format(JGitText.get().encryptionError, why.getMessage()));

  102. 		e.initCause(why);

  103. 		return e;

  104. 	}

  105. 

  106. 	private static class NoEncryption extends WalkEncryption {

  107. 		@Override

  108. 		void request(HttpURLConnection u, String prefix) {

  109. 			// Don't store any request properties.

  110. 		}

  111. 

  112. 		@Override

  113. 		void validate(final HttpURLConnection u, final String p)

  114. 				throws IOException {

  115. 			validateImpl(u, p, "", "");

  116. 		}

  117. 

  118. 		@Override

  119. 		InputStream decrypt(InputStream in) {

  120. 			return in;

  121. 		}

  122. 

  123. 		@Override

  124. 		OutputStream encrypt(OutputStream os) {

  125. 			return os;

  126. 		}

  127. 	}

  128. 

  129. 	static class ObjectEncryptionV2 extends WalkEncryption {

  130. 		private static int ITERATION_COUNT = 5000;

  131. 

  132. 		private static byte[] salt = { (byte) 0xA4, (byte) 0x0B, (byte) 0xC8,

  133. 				(byte) 0x34, (byte) 0xD6, (byte) 0x95, (byte) 0xF3, (byte) 0x13 };

  134. 

  135. 		private final String algorithmName;

  136. 

  137. 		private final SecretKey skey;

  138. 

  139. 		private final PBEParameterSpec aspec;

  140. 

  141. 		ObjectEncryptionV2(final String algo, final String key)

  142. 				throws InvalidKeySpecException, NoSuchAlgorithmException {

  143. 			algorithmName = algo;

  144. 

  145. 			final PBEKeySpec s;

  146. 			s = new PBEKeySpec(key.toCharArray(), salt, ITERATION_COUNT, 32);

  147. 			skey = SecretKeyFactory.getInstance(algo).generateSecret(s);

  148. 			aspec = new PBEParameterSpec(salt, ITERATION_COUNT);

  149. 		}

  150. 

  151. 		@Override

  152. 		void request(final HttpURLConnection u, final String prefix) {

  153. 			u.setRequestProperty(prefix + JETS3T_CRYPTO_VER, "2");

  154. 			u.setRequestProperty(prefix + JETS3T_CRYPTO_ALG, algorithmName);

  155. 		}

  156. 

  157. 		@Override

  158. 		void validate(final HttpURLConnection u, final String p)

  159. 				throws IOException {

  160. 			validateImpl(u, p, "2", algorithmName);

  161. 		}

  162. 

  163. 		@Override

  164. 		OutputStream encrypt(final OutputStream os) throws IOException {

  165. 			try {

  166. 				final Cipher c = Cipher.getInstance(algorithmName);

  167. 				c.init(Cipher.ENCRYPT_MODE, skey, aspec);

  168. 				return new CipherOutputStream(os, c);

  169. 			} catch (NoSuchAlgorithmException e) {

  170. 				throw error(e);

  171. 			} catch (NoSuchPaddingException e) {

  172. 				throw error(e);

  173. 			} catch (InvalidKeyException e) {

  174. 				throw error(e);

  175. 			} catch (InvalidAlgorithmParameterException e) {

  176. 				throw error(e);

  177. 			}

  178. 		}

  179. 

  180. 		@Override

  181. 		InputStream decrypt(final InputStream in) throws IOException {

  182. 			try {

  183. 				final Cipher c = Cipher.getInstance(algorithmName);

  184. 				c.init(Cipher.DECRYPT_MODE, skey, aspec);

  185. 				return new CipherInputStream(in, c);

  186. 			} catch (NoSuchAlgorithmException e) {

  187. 				throw error(e);

  188. 			} catch (NoSuchPaddingException e) {

  189. 				throw error(e);

  190. 			} catch (InvalidKeyException e) {

  191. 				throw error(e);

  192. 			} catch (InvalidAlgorithmParameterException e) {

  193. 				throw error(e);

  194. 			}

  195. 		}

  196. 	}

  197. }