1. /*

  2.  * @(#)MessageDigest.java	1.64 01/11/29

  3.  *

  4.  * Copyright 2002 Sun Microsystems, Inc. All rights reserved.

  5.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  6.  */

  7. 

  8. package java.security;

  9. 

  10. import java.util.*;

  11. import java.lang.*;

  12. import java.io.IOException;

  13. import java.io.ByteArrayOutputStream;

  14. import java.io.PrintStream;

  15. import java.io.InputStream;

  16. import java.io.ByteArrayInputStream;

  17. 

  18. /**

  19.  * This MessageDigest class provides applications the functionality of a

  20.  * message digest algorithm, such as MD5 or SHA.

  21.  * Message digests are secure one-way hash functions that take arbitrary-sized

  22.  * data and output a fixed-length hash value.

  23.  *

  24.  * <p>A MessageDigest object starts out initialized. The data is 

  25.  * processed through it using the {@link update(byte) update}

  26.  * methods. At any point {@link reset() reset} can be called

  27.  * to reset the digest. Once all the data to be updated has been

  28.  * updated, one of the {@link digest() digest} methods should 

  29.  * be called to complete the hash computation.

  30.  *

  31.  * <p>The <code>digest</code> method can be called once for a given number 

  32.  * of updates. After <code>digest</code> has been called, the MessageDigest

  33.  * object is reset to its initialized state.

  34.  *

  35.  * <p>Implementations are free to implement the Cloneable interface.

  36.  * Client applications can test cloneability by attempting cloning

  37.  * and catching the CloneNotSupportedException: <p>    

  38.  *

  39. * <pre>

  40. * MessageDigest md = MessageDigest.getInstance("SHA");

  41. *

  42. * try {

  43. *     md.update(toChapter1);

  44. *     MessageDigest tc1 = md.clone();

  45. *     byte[] toChapter1Digest = tc1.digest;

  46. *     md.update(toChapter2);

  47. *     ...etc.

  48. * } catch (CloneNotSupportedException cnse) {

  49. *     throw new DigestException("couldn't make digest of partial content");

  50. * }

  51. * </pre>

  52.  *

  53.  * <p>Note that if a given implementation is not cloneable, it is

  54.  * still possible to compute intermediate digests by instantiating

  55.  * several instances, if the number of digests is known in advance.

  56.  *

  57.  * <p>Note that this class is abstract and extends from

  58.  * <code>MessageDigestSpi</code> for historical reasons.

  59.  * Application developers should only take notice of the methods defined in

  60.  * this <code>MessageDigest</code> class; all the methods in

  61.  * the superclass are intended for cryptographic service providers who wish to

  62.  * supply their own implementations of message digest algorithms.

  63.  *

  64.  * @author Benjamin Renaud 

  65.  *

  66.  * @version 1.64 01/11/29

  67.  *

  68.  * @see DigestInputStream

  69.  * @see DigestOutputStream

  70.  */

  71. 

  72. public abstract class MessageDigest extends MessageDigestSpi {

  73. 

  74.     private String algorithm;

  75. 

  76.     // The state of this digest

  77.     private static final int INITIAL = 0;

  78.     private static final int IN_PROGRESS = 1;

  79.     private int state = INITIAL;

  80. 

  81.     // The provider

  82.     private Provider provider;

  83. 

  84.     /**

  85.      * Creates a message digest with the specified algorithm name.

  86.      * 

  87.      * @param algorithm the standard name of the digest algorithm. 

  88.      * See Appendix A in the <a href=

  89.      * "../../../guide/security/CryptoSpec.html#AppA">

  90.      * Java Cryptography Architecture API Specification & Reference </a> 

  91.      * for information about standard algorithm names.

  92.      */

  93.     protected MessageDigest(String algorithm) {

  94. 	this.algorithm = algorithm;

  95.     }

  96. 

  97.     /**

  98.      * Generates a MessageDigest object that implements the specified digest

  99.      * algorithm. If the default provider package

  100.      * provides an implementation of the requested digest algorithm,

  101.      * an instance of MessageDigest containing that implementation is returned.

  102.      * If the algorithm is not available in the default 

  103.      * package, other packages are searched.

  104.      *

  105.      * @param algorithm the name of the algorithm requested. 

  106.      * See Appendix A in the <a href=

  107.      * "../../../guide/security/CryptoSpec.html#AppA">

  108.      * Java Cryptography Architecture API Specification & Reference </a> 

  109.      * for information about standard algorithm names.

  110.      *

  111.      * @return a Message Digest object implementing the specified

  112.      * algorithm.

  113.      *

  114.      * @exception NoSuchAlgorithmException if the algorithm is

  115.      * not available in the caller's environment.  

  116.      */

  117.     public static MessageDigest getInstance(String algorithm) 

  118.     throws NoSuchAlgorithmException { 

  119. 	try {

  120. 	    Object[] objs = Security.getImpl(algorithm, "MessageDigest", null);

  121. 	    if (objs[0] instanceof MessageDigest) {

  122. 		MessageDigest md = (MessageDigest)objs[0];

  123. 		md.provider = (Provider)objs[1];

  124. 		return md;

  125. 	    } else {

  126. 		MessageDigest delegate =

  127. 		    new Delegate((MessageDigestSpi)objs[0], algorithm);

  128. 		delegate.provider = (Provider)objs[1];

  129. 		return delegate;

  130. 	    }

  131. 	} catch(NoSuchProviderException e) {

  132. 	    throw new NoSuchAlgorithmException(algorithm + " not found");

  133. 	}

  134.     }

  135. 

  136.     /**

  137.      * Generates a MessageDigest object implementing the specified

  138.      * algorithm, as supplied from the specified provider, if such an 

  139.      * algorithm is available from the provider.

  140.      *

  141.      * @param algorithm the name of the algorithm requested. 

  142.      * See Appendix A in the <a href=

  143.      * "../../../guide/security/CryptoSpec.html#AppA">

  144.      * Java Cryptography Architecture API Specification & Reference </a> 

  145.      * for information about standard algorithm names.

  146.      *

  147.      * @param provider the name of the provider.

  148.      *

  149.      * @return a Message Digest object implementing the specified

  150.      * algorithm.

  151.      *

  152.      * @exception NoSuchAlgorithmException if the algorithm is

  153.      * not available in the package supplied by the requested

  154.      * provider.

  155.      *

  156.      * @exception NoSuchProviderException if the provider is not

  157.      * available in the environment. 

  158.      * 

  159.      * @see Provider 

  160.      */

  161.     public static MessageDigest getInstance(String algorithm, String provider)

  162. 	throws NoSuchAlgorithmException, NoSuchProviderException

  163.     {

  164. 	if (provider == null || provider.length() == 0)

  165. 	    throw new IllegalArgumentException("missing provider");

  166. 	Object[] objs = Security.getImpl(algorithm, "MessageDigest", provider);

  167. 	if (objs[0] instanceof MessageDigest) {

  168. 	    MessageDigest md = (MessageDigest)objs[0];

  169. 	    md.provider = (Provider)objs[1];

  170. 	    return md;

  171. 	} else {

  172. 	    MessageDigest delegate =

  173. 		new Delegate((MessageDigestSpi)objs[0], algorithm);

  174. 	    delegate.provider = (Provider)objs[1];

  175. 	    return delegate;

  176. 	}

  177.     }

  178. 

  179.     /** 

  180.      * Returns the provider of this message digest object.

  181.      * 

  182.      * @return the provider of this message digest object

  183.      */

  184.     public final Provider getProvider() {

  185. 	return this.provider;

  186.     }

  187. 

  188.     /**

  189.      * Updates the digest using the specified byte.    

  190.      * 

  191.      * @param input the byte with which to update the digest.

  192.      */

  193.     public void update(byte input) {

  194. 	engineUpdate(input);

  195. 	state = IN_PROGRESS;

  196.     }

  197. 

  198.     /**

  199.      * Updates the digest using the specified array of bytes, starting

  200.      * at the specified offset.

  201.      * 

  202.      * @param input the array of bytes.

  203.      *

  204.      * @param offset the offset to start from in the array of bytes.

  205.      *

  206.      * @param len the number of bytes to use, starting at 

  207.      * <code>offset</code>.  

  208.      */

  209.     public void update(byte[] input, int offset, int len) {

  210. 	if (input == null) {

  211. 	    throw new IllegalArgumentException("No input buffer given");

  212. 	}

  213. 	if (input.length - offset < len) {

  214. 	    throw new IllegalArgumentException("Input buffer too short");

  215. 	}

  216. 	engineUpdate(input, offset, len);

  217. 	state = IN_PROGRESS;

  218.     }

  219. 

  220.     /**

  221.      * Updates the digest using the specified array of bytes.

  222.      * 

  223.      * @param input the array of bytes.

  224.      */

  225.     public void update(byte[] input) {

  226. 	engineUpdate(input, 0, input.length);

  227. 	state = IN_PROGRESS;

  228.     }

  229. 

  230.     /**

  231.      * Completes the hash computation by performing final operations

  232.      * such as padding. The digest is reset after this call is made.

  233.      *

  234.      * @return the array of bytes for the resulting hash value.  

  235.      */

  236.     public byte[] digest() {

  237. 	/* Resetting is the responsibility of implementors. */

  238. 	byte[] result = engineDigest();

  239. 	state = INITIAL;

  240. 	return result;

  241.     }

  242. 

  243.     /**

  244.      * Completes the hash computation by performing final operations

  245.      * such as padding. The digest is reset after this call is made.

  246.      *

  247.      * @param buf output buffer for the computed digest

  248.      *

  249.      * @param offset offset into the output buffer to begin storing the digest

  250.      *

  251.      * @param len number of bytes within buf allotted for the digest

  252.      *

  253.      * @return the number of bytes placed into <code>buf</code>

  254.      * 

  255.      * @exception DigestException if an error occurs.

  256.      */

  257.     public int digest(byte[] buf, int offset, int len) throws DigestException {

  258. 	if (buf == null) {

  259. 	    throw new IllegalArgumentException("No output buffer given");

  260. 	}

  261. 	if (buf.length - offset < len) {

  262. 	    throw new IllegalArgumentException

  263. 		("Output buffer too small for specified offset and length");

  264. 	}

  265. 	int numBytes = engineDigest(buf, offset, len);

  266. 	state = INITIAL;

  267. 	return numBytes;

  268.     }

  269. 

  270.     /**

  271.      * Performs a final update on the digest using the specified array 

  272.      * of bytes, then completes the digest computation. That is, this

  273.      * method first calls <a href = "#update(byte[])">update(input)</a>,

  274.      * passing the <i>input</i> array to the <code>update</code> method,

  275.      * then calls {@link digest() digest()}.

  276.      *

  277.      * @param input the input to be updated before the digest is

  278.      * completed.

  279.      *

  280.      * @return the array of bytes for the resulting hash value.  

  281.      */

  282.     public byte[] digest(byte[] input) {

  283. 	update(input);

  284. 	return digest();

  285.     }

  286. 

  287.     /**

  288.      * Returns a string representation of this message digest object.  

  289.      */

  290.     public String toString() {

  291. 	ByteArrayOutputStream baos = new ByteArrayOutputStream();

  292. 	PrintStream p = new PrintStream(baos);

  293. 	p.print(algorithm+" Message Digest from "+provider.getName()+", ");

  294. 	switch (state) {

  295. 	case INITIAL:

  296. 	    p.print("<initialized>");

  297. 	    break;

  298. 	case IN_PROGRESS:

  299. 	    p.print("<in progress>");

  300. 	    break;

  301. 	}

  302. 	p.println();

  303. 	return (baos.toString());

  304.     }

  305. 

  306.     /**

  307.      * Compares two digests for equality. Does a simple byte compare.

  308.      * 

  309.      * @param digesta one of the digests to compare.

  310.      * 

  311.      * @param digestb the other digest to compare.    

  312.      *

  313.      * @return true if the digests are equal, false otherwise.

  314.      */

  315.     public static boolean isEqual(byte digesta[], byte digestb[]) {

  316. 	if (digesta.length != digestb.length)

  317. 	    return false;

  318. 

  319. 	for (int i = 0; i < digesta.length; i++) {

  320. 	    if (digesta[i] != digestb[i]) {

  321. 		return false;

  322. 	    }

  323. 	}

  324. 	return true;

  325.     }

  326. 

  327.     /**

  328.      * Resets the digest for further use.

  329.      */

  330.     public void reset() {

  331. 	engineReset();

  332. 	state = INITIAL;

  333.     }

  334. 

  335.     /** 

  336.      * Returns a string that identifies the algorithm, independent of

  337.      * implementation details. The name should be a standard

  338.      * Java Security name (such as "SHA", "MD5", and so on). 

  339.      * See Appendix A in the <a href=

  340.      * "../../../guide/security/CryptoSpec.html#AppA">

  341.      * Java Cryptography Architecture API Specification & Reference </a> 

  342.      * for information about standard algorithm names.

  343.      */

  344.     public final String getAlgorithm() {

  345. 	return this.algorithm;

  346.     }

  347. 

  348.     /** 

  349.      * Returns the length of the digest in bytes, or 0 if this operation is

  350.      * not supported by the provider and the implementation is not cloneable.

  351.      *

  352.      * @return the digest length in bytes, or 0 if this operation is not

  353.      * supported by the provider and the implementation is not cloneable.

  354.      * 

  355.      * @since JDK1.2

  356.      */

  357.     public final int getDigestLength() {

  358. 	int digestLen = engineGetDigestLength();

  359. 	if (digestLen == 0) {

  360. 	    try {

  361. 		MessageDigest md = (MessageDigest)clone();

  362. 		byte[] digest = md.digest();

  363. 		return digest.length;

  364. 	    } catch (CloneNotSupportedException e) {

  365. 		return digestLen;

  366. 	    }

  367. 	}

  368. 	return digestLen;

  369.     }

  370. 

  371.     /**    

  372.      * Returns a clone if the implementation is cloneable.    

  373.      * 

  374.      * @return a clone if the implementation is cloneable.

  375.      *

  376.      * @exception CloneNotSupportedException if this is called on an

  377.      * implementation that does not support <code>Cloneable</code>.

  378.      */

  379.     public Object clone() throws CloneNotSupportedException {

  380. 	if (this instanceof Cloneable) {

  381. 	    return super.clone();

  382. 	} else {

  383. 	    throw new CloneNotSupportedException();

  384. 	}

  385.     }

  386. 

  387. 

  388. 

  389. 

  390.     /*

  391.      * The following class allows providers to extend from MessageDigestSpi

  392.      * rather than from MessageDigest. It represents a MessageDigest with an

  393.      * encapsulated, provider-supplied SPI object (of type MessageDigestSpi).

  394.      * If the provider implementation is an instance of MessageDigestSpi,

  395.      * the getInstance() methods above return an instance of this class, with

  396.      * the SPI object encapsulated.

  397.      *

  398.      * Note: All SPI methods from the original MessageDigest class have been

  399.      * moved up the hierarchy into a new class (MessageDigestSpi), which has

  400.      * been interposed in the hierarchy between the API (MessageDigest)

  401.      * and its original parent (Object).

  402.      */

  403. 

  404.     static class Delegate extends MessageDigest {

  405. 

  406. 	// The provider implementation (delegate)

  407. 	private MessageDigestSpi digestSpi;

  408. 

  409. 	// constructor

  410. 	public Delegate(MessageDigestSpi digestSpi, String algorithm) {

  411. 	    super(algorithm);

  412. 	    this.digestSpi = digestSpi;

  413. 	}

  414. 

  415. 	/*

  416. 	 * Returns a clone if the delegate is cloneable.    

  417. 	 * 

  418. 	 * @return a clone if the delegate is cloneable.

  419. 	 *

  420. 	 * @exception CloneNotSupportedException if this is called on a

  421. 	 * delegate that does not support <code>Cloneable</code>.

  422. 	 */

  423. 	public Object clone() throws CloneNotSupportedException {

  424. 	    if (digestSpi instanceof Cloneable) {

  425. 		MessageDigestSpi digestSpiClone =

  426. 		    (MessageDigestSpi)digestSpi.clone();	

  427. 		// Because 'algorithm', 'provider', and 'state' are private

  428. 		// members of our supertype, we must perform a cast to

  429. 		// access them.

  430. 		MessageDigest that =

  431. 		    new Delegate(digestSpiClone,

  432. 				 ((MessageDigest)this).algorithm);

  433. 		that.provider = ((MessageDigest)this).provider;

  434. 		that.state = ((MessageDigest)this).state;

  435. 		return that;

  436. 	    } else {

  437. 		throw new CloneNotSupportedException();

  438. 	    }

  439. 	}

  440. 

  441. 	protected int engineGetDigestLength() {

  442. 	    return digestSpi.engineGetDigestLength();

  443. 	}

  444. 

  445. 	protected void engineUpdate(byte input) {

  446. 	    digestSpi.engineUpdate(input);

  447. 	}

  448. 

  449. 	protected void engineUpdate(byte[] input, int offset, int len) {

  450. 	    digestSpi.engineUpdate(input, offset, len);

  451. 	}

  452. 

  453. 	protected byte[] engineDigest() {

  454. 	    return digestSpi.engineDigest();

  455. 	}

  456. 

  457. 	protected int engineDigest(byte[] buf, int offset, int len)

  458. 	    throws DigestException {

  459. 		return digestSpi.engineDigest(buf, offset, len);

  460. 	}

  461. 

  462. 	protected void engineReset() {

  463. 	    digestSpi.engineReset();

  464. 	}

  465.     }

  466. }