1. /*

  2.  * @(#)MessageDigest.java	1.74 03/01/23

  3.  *

  4.  * Copyright 2003 Sun Microsystems, Inc. All rights reserved.

  5.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  6.  */

  7. 

  8. package java.security;

  9. 

  10. import java.util.*;

  11. import java.lang.*;

  12. import java.io.IOException;

  13. import java.io.ByteArrayOutputStream;

  14. import java.io.PrintStream;

  15. import java.io.InputStream;

  16. import java.io.ByteArrayInputStream;

  17. 

  18. /**

  19.  * This MessageDigest class provides applications the functionality of a

  20.  * message digest algorithm, such as MD5 or SHA.

  21.  * Message digests are secure one-way hash functions that take arbitrary-sized

  22.  * data and output a fixed-length hash value.

  23.  *

  24.  * <p>A MessageDigest object starts out initialized. The data is 

  25.  * processed through it using the {@link #update(byte) update}

  26.  * methods. At any point {@link #reset() reset} can be called

  27.  * to reset the digest. Once all the data to be updated has been

  28.  * updated, one of the {@link #digest() digest} methods should 

  29.  * be called to complete the hash computation.

  30.  *

  31.  * <p>The <code>digest</code> method can be called once for a given number 

  32.  * of updates. After <code>digest</code> has been called, the MessageDigest

  33.  * object is reset to its initialized state.

  34.  *

  35.  * <p>Implementations are free to implement the Cloneable interface.

  36.  * Client applications can test cloneability by attempting cloning

  37.  * and catching the CloneNotSupportedException: <p>    

  38.  *

  39. * <pre>

  40. * MessageDigest md = MessageDigest.getInstance("SHA");

  41. *

  42. * try {

  43. *     md.update(toChapter1);

  44. *     MessageDigest tc1 = md.clone();

  45. *     byte[] toChapter1Digest = tc1.digest();

  46. *     md.update(toChapter2);

  47. *     ...etc.

  48. * } catch (CloneNotSupportedException cnse) {

  49. *     throw new DigestException("couldn't make digest of partial content");

  50. * }

  51. * </pre>

  52.  *

  53.  * <p>Note that if a given implementation is not cloneable, it is

  54.  * still possible to compute intermediate digests by instantiating

  55.  * several instances, if the number of digests is known in advance.

  56.  *

  57.  * <p>Note that this class is abstract and extends from

  58.  * <code>MessageDigestSpi</code> for historical reasons.

  59.  * Application developers should only take notice of the methods defined in

  60.  * this <code>MessageDigest</code> class; all the methods in

  61.  * the superclass are intended for cryptographic service providers who wish to

  62.  * supply their own implementations of message digest algorithms.

  63.  *

  64.  * @author Benjamin Renaud 

  65.  *

  66.  * @version 1.74, 01/23/03

  67.  *

  68.  * @see DigestInputStream

  69.  * @see DigestOutputStream

  70.  */

  71. 

  72. public abstract class MessageDigest extends MessageDigestSpi {

  73. 

  74.     private String algorithm;

  75. 

  76.     // The state of this digest

  77.     private static final int INITIAL = 0;

  78.     private static final int IN_PROGRESS = 1;

  79.     private int state = INITIAL;

  80. 

  81.     // The provider

  82.     private Provider provider;

  83. 

  84.     /**

  85.      * Creates a message digest with the specified algorithm name.

  86.      * 

  87.      * @param algorithm the standard name of the digest algorithm. 

  88.      * See Appendix A in the <a href=

  89.      * "../../../guide/security/CryptoSpec.html#AppA">

  90.      * Java Cryptography Architecture API Specification & Reference </a> 

  91.      * for information about standard algorithm names.

  92.      */

  93.     protected MessageDigest(String algorithm) {

  94. 	this.algorithm = algorithm;

  95.     }

  96. 

  97.     /**

  98.      * Generates a MessageDigest object that implements the specified digest

  99.      * algorithm. If the default provider package

  100.      * provides an implementation of the requested digest algorithm,

  101.      * an instance of MessageDigest containing that implementation is returned.

  102.      * If the algorithm is not available in the default 

  103.      * package, other packages are searched.

  104.      *

  105.      * @param algorithm the name of the algorithm requested. 

  106.      * See Appendix A in the <a href=

  107.      * "../../../guide/security/CryptoSpec.html#AppA">

  108.      * Java Cryptography Architecture API Specification & Reference </a> 

  109.      * for information about standard algorithm names.

  110.      *

  111.      * @return a Message Digest object implementing the specified

  112.      * algorithm.

  113.      *

  114.      * @exception NoSuchAlgorithmException if the algorithm is

  115.      * not available in the caller's environment.  

  116.      */

  117.     public static MessageDigest getInstance(String algorithm) 

  118.     throws NoSuchAlgorithmException { 

  119. 	try {

  120. 	    Object[] objs = Security.getImpl(algorithm, "MessageDigest",

  121. 					     (String)null);

  122. 	    if (objs[0] instanceof MessageDigest) {

  123. 		MessageDigest md = (MessageDigest)objs[0];

  124. 		md.provider = (Provider)objs[1];

  125. 		return md;

  126. 	    } else {

  127. 		MessageDigest delegate =

  128. 		    new Delegate((MessageDigestSpi)objs[0], algorithm);

  129. 		delegate.provider = (Provider)objs[1];

  130. 		return delegate;

  131. 	    }

  132. 	} catch(NoSuchProviderException e) {

  133. 	    throw new NoSuchAlgorithmException(algorithm + " not found");

  134. 	}

  135.     }

  136. 

  137.     /**

  138.      * Generates a MessageDigest object implementing the specified

  139.      * algorithm, as supplied from the specified provider, if such an 

  140.      * algorithm is available from the provider.

  141.      *

  142.      * @param algorithm the name of the algorithm requested. 

  143.      * See Appendix A in the <a href=

  144.      * "../../../guide/security/CryptoSpec.html#AppA">

  145.      * Java Cryptography Architecture API Specification & Reference </a> 

  146.      * for information about standard algorithm names.

  147.      *

  148.      * @param provider the name of the provider.

  149.      *

  150.      * @return a Message Digest object implementing the specified

  151.      * algorithm.

  152.      *

  153.      * @exception NoSuchAlgorithmException if the algorithm is

  154.      * not available in the package supplied by the requested

  155.      * provider.

  156.      *

  157.      * @exception NoSuchProviderException if the provider is not

  158.      * available in the environment. 

  159.      *

  160.      * @exception IllegalArgumentException if the provider name is null

  161.      * or empty.

  162.      *

  163.      * @see Provider 

  164.      */

  165.     public static MessageDigest getInstance(String algorithm, String provider)

  166. 	throws NoSuchAlgorithmException, NoSuchProviderException

  167.     {

  168. 	if (provider == null || provider.length() == 0)

  169. 	    throw new IllegalArgumentException("missing provider");

  170. 	Object[] objs = Security.getImpl(algorithm, "MessageDigest", provider);

  171. 	if (objs[0] instanceof MessageDigest) {

  172. 	    MessageDigest md = (MessageDigest)objs[0];

  173. 	    md.provider = (Provider)objs[1];

  174. 	    return md;

  175. 	} else {

  176. 	    MessageDigest delegate =

  177. 		new Delegate((MessageDigestSpi)objs[0], algorithm);

  178. 	    delegate.provider = (Provider)objs[1];

  179. 	    return delegate;

  180. 	}

  181.     }

  182. 

  183.     /**

  184.      * Generates a MessageDigest object implementing the specified

  185.      * algorithm, as supplied from the specified provider, if such an 

  186.      * algorithm is available from the provider. Note: the 

  187.      * <code>provider</code> doesn't have to be registered. 

  188.      *

  189.      * @param algorithm the name of the algorithm requested. 

  190.      * See Appendix A in the <a href=

  191.      * "../../../guide/security/CryptoSpec.html#AppA">

  192.      * Java Cryptography Architecture API Specification & Reference </a> 

  193.      * for information about standard algorithm names.

  194.      *

  195.      * @param provider the provider.

  196.      *

  197.      * @return a Message Digest object implementing the specified

  198.      * algorithm.

  199.      *

  200.      * @exception NoSuchAlgorithmException if the algorithm is

  201.      * not available in the package supplied by the requested

  202.      * provider.

  203.      *

  204.      * @exception IllegalArgumentException if the <code>provider</code> is

  205.      * null.

  206.      *

  207.      * @see Provider

  208.      *

  209.      * @since 1.4

  210.      */

  211.     public static MessageDigest getInstance(String algorithm,

  212. 					    Provider provider)

  213. 	throws NoSuchAlgorithmException

  214.     {

  215. 	if (provider == null)

  216. 	    throw new IllegalArgumentException("missing provider");

  217. 	Object[] objs = Security.getImpl(algorithm, "MessageDigest", provider);

  218. 	if (objs[0] instanceof MessageDigest) {

  219. 	    MessageDigest md = (MessageDigest)objs[0];

  220. 	    md.provider = (Provider)objs[1];

  221. 	    return md;

  222. 	} else {

  223. 	    MessageDigest delegate =

  224. 		new Delegate((MessageDigestSpi)objs[0], algorithm);

  225. 	    delegate.provider = (Provider)objs[1];

  226. 	    return delegate;

  227. 	}

  228.     }

  229. 

  230.     /** 

  231.      * Returns the provider of this message digest object.

  232.      * 

  233.      * @return the provider of this message digest object

  234.      */

  235.     public final Provider getProvider() {

  236. 	return this.provider;

  237.     }

  238. 

  239.     /**

  240.      * Updates the digest using the specified byte.    

  241.      * 

  242.      * @param input the byte with which to update the digest.

  243.      */

  244.     public void update(byte input) {

  245. 	engineUpdate(input);

  246. 	state = IN_PROGRESS;

  247.     }

  248. 

  249.     /**

  250.      * Updates the digest using the specified array of bytes, starting

  251.      * at the specified offset.

  252.      * 

  253.      * @param input the array of bytes.

  254.      *

  255.      * @param offset the offset to start from in the array of bytes.

  256.      *

  257.      * @param len the number of bytes to use, starting at 

  258.      * <code>offset</code>.  

  259.      */

  260.     public void update(byte[] input, int offset, int len) {

  261. 	if (input == null) {

  262. 	    throw new IllegalArgumentException("No input buffer given");

  263. 	}

  264. 	if (input.length - offset < len) {

  265. 	    throw new IllegalArgumentException("Input buffer too short");

  266. 	}

  267. 	engineUpdate(input, offset, len);

  268. 	state = IN_PROGRESS;

  269.     }

  270. 

  271.     /**

  272.      * Updates the digest using the specified array of bytes.

  273.      * 

  274.      * @param input the array of bytes.

  275.      */

  276.     public void update(byte[] input) {

  277. 	engineUpdate(input, 0, input.length);

  278. 	state = IN_PROGRESS;

  279.     }

  280. 

  281.     /**

  282.      * Completes the hash computation by performing final operations

  283.      * such as padding. The digest is reset after this call is made.

  284.      *

  285.      * @return the array of bytes for the resulting hash value.  

  286.      */

  287.     public byte[] digest() {

  288. 	/* Resetting is the responsibility of implementors. */

  289. 	byte[] result = engineDigest();

  290. 	state = INITIAL;

  291. 	return result;

  292.     }

  293. 

  294.     /**

  295.      * Completes the hash computation by performing final operations

  296.      * such as padding. The digest is reset after this call is made.

  297.      *

  298.      * @param buf output buffer for the computed digest

  299.      *

  300.      * @param offset offset into the output buffer to begin storing the digest

  301.      *

  302.      * @param len number of bytes within buf allotted for the digest

  303.      *

  304.      * @return the number of bytes placed into <code>buf</code>

  305.      * 

  306.      * @exception DigestException if an error occurs.

  307.      */

  308.     public int digest(byte[] buf, int offset, int len) throws DigestException {

  309. 	if (buf == null) {

  310. 	    throw new IllegalArgumentException("No output buffer given");

  311. 	}

  312. 	if (buf.length - offset < len) {

  313. 	    throw new IllegalArgumentException

  314. 		("Output buffer too small for specified offset and length");

  315. 	}

  316. 	int numBytes = engineDigest(buf, offset, len);

  317. 	state = INITIAL;

  318. 	return numBytes;

  319.     }

  320. 

  321.     /**

  322.      * Performs a final update on the digest using the specified array 

  323.      * of bytes, then completes the digest computation. That is, this

  324.      * method first calls {@link #update(byte[]) update(input)},

  325.      * passing the <i>input</i> array to the <code>update</code> method,

  326.      * then calls {@link #digest() digest()}.

  327.      *

  328.      * @param input the input to be updated before the digest is

  329.      * completed.

  330.      *

  331.      * @return the array of bytes for the resulting hash value.  

  332.      */

  333.     public byte[] digest(byte[] input) {

  334. 	update(input);

  335. 	return digest();

  336.     }

  337. 

  338.     /**

  339.      * Returns a string representation of this message digest object.  

  340.      */

  341.     public String toString() {

  342. 	ByteArrayOutputStream baos = new ByteArrayOutputStream();

  343. 	PrintStream p = new PrintStream(baos);

  344. 	p.print(algorithm+" Message Digest from "+provider.getName()+", ");

  345. 	switch (state) {

  346. 	case INITIAL:

  347. 	    p.print("<initialized>");

  348. 	    break;

  349. 	case IN_PROGRESS:

  350. 	    p.print("<in progress>");

  351. 	    break;

  352. 	}

  353. 	p.println();

  354. 	return (baos.toString());

  355.     }

  356. 

  357.     /**

  358.      * Compares two digests for equality. Does a simple byte compare.

  359.      * 

  360.      * @param digesta one of the digests to compare.

  361.      * 

  362.      * @param digestb the other digest to compare.    

  363.      *

  364.      * @return true if the digests are equal, false otherwise.

  365.      */

  366.     public static boolean isEqual(byte digesta[], byte digestb[]) {

  367. 	if (digesta.length != digestb.length)

  368. 	    return false;

  369. 

  370. 	for (int i = 0; i < digesta.length; i++) {

  371. 	    if (digesta[i] != digestb[i]) {

  372. 		return false;

  373. 	    }

  374. 	}

  375. 	return true;

  376.     }

  377. 

  378.     /**

  379.      * Resets the digest for further use.

  380.      */

  381.     public void reset() {

  382. 	engineReset();

  383. 	state = INITIAL;

  384.     }

  385. 

  386.     /** 

  387.      * Returns a string that identifies the algorithm, independent of

  388.      * implementation details. The name should be a standard

  389.      * Java Security name (such as "SHA", "MD5", and so on). 

  390.      * See Appendix A in the <a href=

  391.      * "../../../guide/security/CryptoSpec.html#AppA">

  392.      * Java Cryptography Architecture API Specification & Reference </a> 

  393.      * for information about standard algorithm names.

  394.      *

  395.      * @return the name of the algorithm

  396.      */

  397.     public final String getAlgorithm() {

  398. 	return this.algorithm;

  399.     }

  400. 

  401.     /** 

  402.      * Returns the length of the digest in bytes, or 0 if this operation is

  403.      * not supported by the provider and the implementation is not cloneable.

  404.      *

  405.      * @return the digest length in bytes, or 0 if this operation is not

  406.      * supported by the provider and the implementation is not cloneable.

  407.      * 

  408.      * @since 1.2

  409.      */

  410.     public final int getDigestLength() {

  411. 	int digestLen = engineGetDigestLength();

  412. 	if (digestLen == 0) {

  413. 	    try {

  414. 		MessageDigest md = (MessageDigest)clone();

  415. 		byte[] digest = md.digest();

  416. 		return digest.length;

  417. 	    } catch (CloneNotSupportedException e) {

  418. 		return digestLen;

  419. 	    }

  420. 	}

  421. 	return digestLen;

  422.     }

  423. 

  424.     /**    

  425.      * Returns a clone if the implementation is cloneable.    

  426.      * 

  427.      * @return a clone if the implementation is cloneable.

  428.      *

  429.      * @exception CloneNotSupportedException if this is called on an

  430.      * implementation that does not support <code>Cloneable</code>.

  431.      */

  432.     public Object clone() throws CloneNotSupportedException {

  433. 	if (this instanceof Cloneable) {

  434. 	    return super.clone();

  435. 	} else {

  436. 	    throw new CloneNotSupportedException();

  437. 	}

  438.     }

  439. 

  440. 

  441. 

  442. 

  443.     /*

  444.      * The following class allows providers to extend from MessageDigestSpi

  445.      * rather than from MessageDigest. It represents a MessageDigest with an

  446.      * encapsulated, provider-supplied SPI object (of type MessageDigestSpi).

  447.      * If the provider implementation is an instance of MessageDigestSpi,

  448.      * the getInstance() methods above return an instance of this class, with

  449.      * the SPI object encapsulated.

  450.      *

  451.      * Note: All SPI methods from the original MessageDigest class have been

  452.      * moved up the hierarchy into a new class (MessageDigestSpi), which has

  453.      * been interposed in the hierarchy between the API (MessageDigest)

  454.      * and its original parent (Object).

  455.      */

  456. 

  457.     static class Delegate extends MessageDigest {

  458. 

  459. 	// The provider implementation (delegate)

  460. 	private MessageDigestSpi digestSpi;

  461. 

  462. 	// constructor

  463. 	public Delegate(MessageDigestSpi digestSpi, String algorithm) {

  464. 	    super(algorithm);

  465. 	    this.digestSpi = digestSpi;

  466. 	}

  467. 

  468. 	/*

  469. 	 * Returns a clone if the delegate is cloneable.    

  470. 	 * 

  471. 	 * @return a clone if the delegate is cloneable.

  472. 	 *

  473. 	 * @exception CloneNotSupportedException if this is called on a

  474. 	 * delegate that does not support <code>Cloneable</code>.

  475. 	 */

  476. 	public Object clone() throws CloneNotSupportedException {

  477. 	    if (digestSpi instanceof Cloneable) {

  478. 		MessageDigestSpi digestSpiClone =

  479. 		    (MessageDigestSpi)digestSpi.clone();	

  480. 		// Because 'algorithm', 'provider', and 'state' are private

  481. 		// members of our supertype, we must perform a cast to

  482. 		// access them.

  483. 		MessageDigest that =

  484. 		    new Delegate(digestSpiClone,

  485. 				 ((MessageDigest)this).algorithm);

  486. 		that.provider = ((MessageDigest)this).provider;

  487. 		that.state = ((MessageDigest)this).state;

  488. 		return that;

  489. 	    } else {

  490. 		throw new CloneNotSupportedException();

  491. 	    }

  492. 	}

  493. 

  494. 	protected int engineGetDigestLength() {

  495. 	    return digestSpi.engineGetDigestLength();

  496. 	}

  497. 

  498. 	protected void engineUpdate(byte input) {

  499. 	    digestSpi.engineUpdate(input);

  500. 	}

  501. 

  502. 	protected void engineUpdate(byte[] input, int offset, int len) {

  503. 	    digestSpi.engineUpdate(input, offset, len);

  504. 	}

  505. 

  506. 	protected byte[] engineDigest() {

  507. 	    return digestSpi.engineDigest();

  508. 	}

  509. 

  510. 	protected int engineDigest(byte[] buf, int offset, int len)

  511. 	    throws DigestException {

  512. 		return digestSpi.engineDigest(buf, offset, len);

  513. 	}

  514. 

  515. 	protected void engineReset() {

  516. 	    digestSpi.engineReset();

  517. 	}

  518.     }

  519. }