1. /*

  2.  * @(#)KeyPairGenerator.java	1.49 00/02/02

  3.  *

  4.  * Copyright 1997-2000 Sun Microsystems, Inc. All Rights Reserved.

  5.  * 

  6.  * This software is the proprietary information of Sun Microsystems, Inc.  

  7.  * Use is subject to license terms.

  8.  * 

  9.  */

  10.  

  11. package java.security;

  12. 

  13. import java.security.spec.AlgorithmParameterSpec;

  14. 

  15. /**

  16.  * The KeyPairGenerator class is used to generate pairs of

  17.  * public and private keys. Key pair generators are constructed using the

  18.  * <code>getInstance</code> factory methods (static methods that

  19.  * return instances of a given class).

  20.  *

  21.  * <p>A Key pair generator for a particular algorithm creates a public/private

  22.  * key pair that can be used with this algorithm. It also associates

  23.  * algorithm-specific parameters with each of the generated keys.

  24.  * 

  25.  * <p>There are two ways to generate a key pair: in an algorithm-independent

  26.  * manner, and in an algorithm-specific manner.

  27.  * The only difference between the two is the initialization of the object:

  28.  * 

  29.  * <ul>

  30.  * <li><b>Algorithm-Independent Initialization</b>

  31.  * <p>All key pair generators share the concepts of a keysize and a

  32.  * source of randomness. The keysize is interpreted differently for different

  33.  * algorithms (e.g., in the case of the <i>DSA</i> algorithm, the keysize 

  34.  * corresponds to the length of the modulus).

  35.  * There is an 

  36.  * {@link #initialize(int, java.security.SecureRandom) initialize}

  37.  * method in this KeyPairGenerator class that takes these two universally

  38.  * shared types of arguments. There is also one that takes just a

  39.  * <code>keysize</code> argument, and uses the <code>SecureRandom</code>

  40.  * implementation of the highest-priority installed provider as the source

  41.  * of randomness. (If none of the installed providers supply an implementation

  42.  * of <code>SecureRandom</code>, a system-provided source of randomness is

  43.  * used.)

  44.  * 

  45.  * <p>Since no other parameters are specified when you call the above

  46.  * algorithm-independent <code>initialize</code> methods, it is up to the

  47.  * provider what to do about the algorithm-specific parameters (if any) to be

  48.  * associated with each of the keys.

  49.  * 

  50.  * <p>If the algorithm is the <i>DSA</i> algorithm, and the keysize (modulus

  51.  * size) is 512, 768, or 1024, then the <i>Sun</i> provider uses a set of

  52.  * precomputed values for the <code>p</code>, <code>q</code>, and

  53.  * <code>g</code> parameters. If the modulus size is not one of the above

  54.  * values, the <i>Sun</i> provider creates a new set of parameters. Other

  55.  * providers might have precomputed parameter sets for more than just the

  56.  * three modulus sizes mentioned above. Still others might not have a list of

  57.  * precomputed parameters at all and instead always create new parameter sets.

  58.  * <p>

  59.  *

  60.  * <li><b>Algorithm-Specific Initialization</b>

  61.  * <p>For situations where a set of algorithm-specific parameters already

  62.  * exists (e.g., so-called <i>community parameters</i> in DSA), there are two

  63.  * {@link #initialize(java.security.spec.AlgorithmParameterSpec)

  64.  * initialize} methods that have an <code>AlgorithmParameterSpec</code>

  65.  * argument. One also has a <code>SecureRandom</code> argument, while the

  66.  * the other uses the <code>SecureRandom</code>

  67.  * implementation of the highest-priority installed provider as the source

  68.  * of randomness. (If none of the installed providers supply an implementation

  69.  * of <code>SecureRandom</code>, a system-provided source of randomness is

  70.  * used.)

  71.  * </ul>

  72.  *

  73.  * <p>In case the client does not explicitly initialize the KeyPairGenerator

  74.  * (via a call to an <code>initialize</code> method), each provider must

  75.  * supply (and document) a default initialization.

  76.  * For example, the <i>Sun</i> provider uses a default modulus size (keysize)

  77.  * of 1024 bits.

  78.  *

  79.  * <p>Note that this class is abstract and extends from

  80.  * <code>KeyPairGeneratorSpi</code> for historical reasons.

  81.  * Application developers should only take notice of the methods defined in

  82.  * this <code>KeyPairGenerator</code> class; all the methods in

  83.  * the superclass are intended for cryptographic service providers who wish to

  84.  * supply their own implementations of key pair generators.

  85.  *

  86.  * @author Benjamin Renaud

  87.  *

  88.  * @version 1.49, 02/02/00

  89.  *

  90.  * @see java.security.spec.AlgorithmParameterSpec

  91.  */

  92. 

  93. public abstract class KeyPairGenerator extends KeyPairGeneratorSpi {

  94. 

  95.     private String algorithm;

  96. 

  97.     // The provider

  98.     private Provider provider;

  99. 

  100.     /**

  101.      * Creates a KeyPairGenerator object for the specified algorithm.

  102.      *

  103.      * @param algorithm the standard string name of the algorithm. 

  104.      * See Appendix A in the <a href=

  105.      * "../../../guide/security/CryptoSpec.html#AppA">

  106.      * Java Cryptography Architecture API Specification & Reference </a> 

  107.      * for information about standard algorithm names.

  108.      */

  109.     protected KeyPairGenerator(String algorithm) {

  110. 	this.algorithm = algorithm;

  111.     }

  112.     

  113.     /**

  114.      * Returns the standard name of the algorithm for this key pair generator.

  115.      * See Appendix A in the <a href=

  116.      * "../../../guide/security/CryptoSpec.html#AppA">

  117.      * Java Cryptography Architecture API Specification & Reference </a> 

  118.      * for information about standard algorithm names.

  119.      * 

  120.      * @return the standard string name of the algorithm. 

  121.      */

  122.     public String getAlgorithm() {

  123. 	return this.algorithm;

  124.     }

  125. 

  126.     /**

  127.      * Generates a KeyPairGenerator object that implements the specified digest

  128.      * algorithm. If the default provider package

  129.      * provides an implementation of the requested digest algorithm,

  130.      * an instance of KeyPairGenerator containing that implementation is

  131.      * returned.

  132.      * If the algorithm is not available in the default 

  133.      * package, other packages are searched.

  134.      *

  135.      * @param algorithm the standard string name of the algorithm. 

  136.      * See Appendix A in the <a href=

  137.      * "../../../guide/security/CryptoSpec.html#AppA">

  138.      * Java Cryptography Architecture API Specification & Reference </a> 

  139.      * for information about standard algorithm names.

  140.      *

  141.      * @return the new KeyPairGenerator object.

  142.      *

  143.      * @exception NoSuchAlgorithmException if the algorithm is

  144.      * not available in the environment.  

  145.      */

  146.     public static KeyPairGenerator getInstance(String algorithm)

  147.     throws NoSuchAlgorithmException {

  148. 	try {

  149. 	    Object[] objs = Security.getImpl(algorithm, "KeyPairGenerator",

  150. 					     null);

  151. 	    if (objs[0] instanceof KeyPairGenerator) {

  152. 		KeyPairGenerator keyPairGen = (KeyPairGenerator)objs[0];

  153. 		keyPairGen.provider = (Provider)objs[1];

  154. 		return keyPairGen;

  155. 	    } else {

  156. 		KeyPairGenerator delegate =

  157. 		    new Delegate((KeyPairGeneratorSpi)objs[0], algorithm);

  158. 		delegate.provider = (Provider)objs[1];

  159. 		return delegate;

  160. 	    }

  161. 	} catch(NoSuchProviderException e) {

  162. 	    throw new NoSuchAlgorithmException(algorithm + " not found");

  163. 	}

  164.     }

  165. 

  166.     /** 

  167.      * Generates a KeyPairGenerator object implementing the specified

  168.      * algorithm, as supplied from the specified provider, 

  169.      * if such an algorithm is available from the provider.

  170.      *

  171.      * @param algorithm the standard string name of the algorithm.

  172.      * See Appendix A in the <a href=

  173.      * "../../../guide/security/CryptoSpec.html#AppA">

  174.      * Java Cryptography Architecture API Specification & Reference </a> 

  175.      * for information about standard algorithm names.

  176.      *

  177.      * @param provider the string name of the provider.

  178.      *

  179.      * @return the new KeyPairGenerator object.

  180.      *

  181.      * @exception NoSuchAlgorithmException if the algorithm is

  182.      * not available from the provider.

  183.      *

  184.      * @exception NoSuchProviderException if the provider is not

  185.      * available in the environment. 

  186.      * 

  187.      * @see Provider 

  188.      */

  189.     public static KeyPairGenerator getInstance(String algorithm,

  190. 					       String provider) 

  191. 	throws NoSuchAlgorithmException, NoSuchProviderException

  192.     {

  193. 	if (provider == null || provider.length() == 0)

  194. 	    throw new IllegalArgumentException("missing provider");

  195. 	Object[] objs = Security.getImpl(algorithm, "KeyPairGenerator",

  196. 					 provider);

  197. 	if (objs[0] instanceof KeyPairGenerator) {

  198. 	    KeyPairGenerator keyPairGen = (KeyPairGenerator)objs[0];

  199. 	    keyPairGen.provider = (Provider)objs[1];

  200. 	    return keyPairGen;

  201. 	} else {

  202. 	    KeyPairGenerator delegate =

  203. 		new Delegate((KeyPairGeneratorSpi)objs[0], algorithm);

  204. 	    delegate.provider = (Provider)objs[1];

  205. 	    return delegate;

  206. 	}

  207.     }

  208. 

  209.     /** 

  210.      * Returns the provider of this key pair generator object.

  211.      * 

  212.      * @return the provider of this key pair generator object

  213.      */

  214.     public final Provider getProvider() {

  215. 	return this.provider;

  216.     }

  217. 

  218.     /**

  219.      * Initializes the key pair generator for a certain keysize using

  220.      * a default parameter set and the <code>SecureRandom</code>

  221.      * implementation of the highest-priority installed provider as the source

  222.      * of randomness.

  223.      * (If none of the installed providers supply an implementation of

  224.      * <code>SecureRandom</code>, a system-provided source of randomness is

  225.      * used.)

  226.      *

  227.      * @param keysize the keysize. This is an

  228.      * algorithm-specific metric, such as modulus length, specified in

  229.      * number of bits.

  230.      *

  231.      * @exception InvalidParameterException if the <code>keysize</code> is not

  232.      * supported by this KeyPairGenerator object.

  233.      */

  234.     public void initialize(int keysize) {

  235. 	initialize(keysize, new SecureRandom());

  236.     }

  237. 

  238.     /**

  239.      * Initializes the key pair generator for a certain keysize with

  240.      * the given source of randomness (and a default parameter set).

  241.      *

  242.      * @param keysize the keysize. This is an

  243.      * algorithm-specific metric, such as modulus length, specified in

  244.      * number of bits.

  245.      * @param random the source of randomness.

  246.      *

  247.      * @exception InvalidParameterException if the <code>keysize</code> is not

  248.      * supported by this KeyPairGenerator object.

  249.      *

  250.      * @since 1.2

  251.      */

  252.     public void initialize(int keysize, SecureRandom random) {

  253. 	// This does nothing, because either

  254. 	// 1. the implementation object returned by getInstance() is an

  255. 	//    instance of KeyPairGenerator which has its own 

  256. 	//    initialize(keysize, random) method, so the application would

  257. 	//    be calling that method directly, or

  258. 	// 2. the implementation returned by getInstance() is an instance

  259. 	//    of Delegate, in which case initialize(keysize, random) is

  260. 	//    overridden to call the corresponding SPI method.

  261. 	// (This is a special case, because the API and SPI method have the

  262. 	// same name.)

  263.     }

  264. 

  265.     /**

  266.      * Initializes the key pair generator using the specified parameter 

  267.      * set and the <code>SecureRandom</code>

  268.      * implementation of the highest-priority installed provider as the source

  269.      * of randomness.

  270.      * (If none of the installed providers supply an implementation of

  271.      * <code>SecureRandom</code>, a system-provided source of randomness is

  272.      * used.).

  273.      *

  274.      * <p>This concrete method has been added to this previously-defined

  275.      * abstract class.

  276.      * This method calls the KeyPairGeneratorSpi 

  277.      * {@link KeyPairGeneratorSpi.html#

  278.      * initialize(java.security.spec.AlgorithmParameterSpec,

  279.      * java.security.SecureRandom) initialize} method, 

  280.      * passing it <code>params</code> and a source of randomness (obtained

  281.      * from the highest-priority installed provider or system-provided if none

  282.      * of the installed providers supply one).

  283.      * That <code>initialize</code> method always throws an

  284.      * UnsupportedOperationException if it is not overridden by the provider.

  285.      *

  286.      * @param params the parameter set used to generate the keys.

  287.      *

  288.      * @exception InvalidAlgorithmParameterException if the given parameters

  289.      * are inappropriate for this key pair generator.

  290.      *

  291.      * @since 1.2

  292.      */

  293.     public void initialize(AlgorithmParameterSpec params)

  294. 	throws InvalidAlgorithmParameterException {

  295. 	    initialize(params, new SecureRandom());

  296.     }

  297. 

  298.     /**

  299.      * Initializes the key pair generator with the given parameter 

  300.      * set and source of randomness.

  301.      *

  302.      * <p>This concrete method has been added to this previously-defined

  303.      * abstract class.

  304.      * This method calls the KeyPairGeneratorSpi {@link 

  305.      * KeyPairGeneratorSpi.html#

  306.      * initialize(java.security.spec.AlgorithmParameterSpec,

  307.      * java.security.SecureRandom) initialize} method, 

  308.      * passing it <code>params</code> and <code>random</code>.

  309.      * That <code>initialize</code>

  310.      * method always throws an

  311.      * UnsupportedOperationException if it is not overridden by the provider.

  312.      *

  313.      * @param params the parameter set used to generate the keys.

  314.      * @param random the source of randomness.

  315.      *

  316.      * @exception InvalidAlgorithmParameterException if the given parameters

  317.      * are inappropriate for this key pair generator.

  318.      *

  319.      * @since 1.2

  320.      */

  321.     public void initialize(AlgorithmParameterSpec params,

  322. 			   SecureRandom random)

  323. 	throws InvalidAlgorithmParameterException

  324.     {

  325. 	// This does nothing, because either

  326. 	// 1. the implementation object returned by getInstance() is an

  327. 	//    instance of KeyPairGenerator which has its own 

  328. 	//    initialize(params, random) method, so the application would

  329. 	//    be calling that method directly, or

  330. 	// 2. the implementation returned by getInstance() is an instance

  331. 	//    of Delegate, in which case initialize(params, random) is

  332. 	//    overridden to call the corresponding SPI method.

  333. 	// (This is a special case, because the API and SPI method have the

  334. 	// same name.)

  335.     }

  336. 

  337.     /**

  338.      * Generates a key pair.

  339.      *

  340.      * <p>If this KeyPairGenerator has not been initialized explicitly,

  341.      * provider-specific defaults will be used for the size and other

  342.      * (algorithm-specific) values of the generated keys.

  343.      *

  344.      * <p>This will generate a new key pair every time it is called.

  345.      *

  346.      * <p>This method is functionally equivalent to 

  347.      * {@link #generateKeyPair() generateKeyPair}.

  348.      *

  349.      * @return the generated key pair

  350.      *

  351.      * @since 1.2

  352.      */

  353.     public final KeyPair genKeyPair() {

  354. 	return generateKeyPair();

  355.     }

  356. 

  357.     /**

  358.      * Generates a key pair.

  359.      *

  360.      * <p>If this KeyPairGenerator has not been initialized explicitly,

  361.      * provider-specific defaults will be used for the size and other

  362.      * (algorithm-specific) values of the generated keys.

  363.      *

  364.      * <p>This will generate a new key pair every time it is called.

  365.      * 

  366.      * <p>This method is functionally equivalent to 

  367.      * {@link #genKeyPair() genKeyPair}.

  368.      *

  369.      * @return the generated key pair

  370.      */

  371.     public KeyPair generateKeyPair() {

  372. 	// This does nothing (except returning null), because either:

  373. 	//

  374. 	// 1. the implementation object returned by getInstance() is an

  375. 	//    instance of KeyPairGenerator which has its own implementation

  376. 	//    of generateKeyPair (overriding this one), so the application

  377. 	//    would be calling that method directly, or

  378. 	//

  379. 	// 2. the implementation returned by getInstance() is an instance

  380. 	//    of Delegate, in which case generateKeyPair is

  381. 	//    overridden to invoke the corresponding SPI method.

  382. 	//

  383. 	// (This is a special case, because in JDK 1.1.x the generateKeyPair

  384. 	// method was used both as an API and a SPI method.)

  385.         return null;

  386.     }

  387. 

  388. 

  389.     /*

  390.      * The following class allows providers to extend from KeyPairGeneratorSpi

  391.      * rather than from KeyPairGenerator. It represents a KeyPairGenerator

  392.      * with an encapsulated, provider-supplied SPI object (of type

  393.      * KeyPairGeneratorSpi).

  394.      * If the provider implementation is an instance of KeyPairGeneratorSpi,

  395.      * the getInstance() methods above return an instance of this class, with

  396.      * the SPI object encapsulated.

  397.      *

  398.      * Note: All SPI methods from the original KeyPairGenerator class have been

  399.      * moved up the hierarchy into a new class (KeyPairGeneratorSpi), which has

  400.      * been interposed in the hierarchy between the API (KeyPairGenerator)

  401.      * and its original parent (Object).

  402.      */

  403. 

  404.     static class Delegate extends KeyPairGenerator {

  405. 

  406. 	// The provider implementation (delegate)

  407. 	private KeyPairGeneratorSpi kpairGenSpi;

  408. 

  409. 	// constructor

  410. 	public Delegate(KeyPairGeneratorSpi kpairGenSpi, String algorithm) {

  411. 	    super(algorithm);

  412. 	    this.kpairGenSpi = kpairGenSpi;

  413. 	}

  414.     

  415. 	// engine method

  416. 	public void initialize(int keysize, SecureRandom random) {

  417. 	    kpairGenSpi.initialize(keysize, random);

  418. 	}

  419. 

  420. 	// engine method

  421. 	public void initialize(AlgorithmParameterSpec params,

  422. 			       SecureRandom random)

  423. 	    throws InvalidAlgorithmParameterException {

  424. 		kpairGenSpi.initialize(params, random);;

  425. 	}

  426. 

  427. 	// engine method

  428. 	public KeyPair generateKeyPair() {

  429. 	    return kpairGenSpi.generateKeyPair();

  430. 	}

  431.     }

  432. }