1. /*

  2.  * @(#)JarFile.java	1.50 03/01/23

  3.  *

  4.  * Copyright 2003 Sun Microsystems, Inc. All rights reserved.

  5.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  6.  */

  7. 

  8. package java.util.jar;

  9. 

  10. import java.io.*;

  11. import java.util.*;

  12. import java.util.zip.*;

  13. import java.security.cert.Certificate;

  14. import java.security.AccessController;

  15. import sun.security.action.GetPropertyAction;

  16. import sun.security.util.ManifestEntryVerifier;

  17. import sun.misc.SharedSecrets;

  18. 

  19. /**

  20.  * The <code>JarFile</code> class is used to read the contents of a JAR file

  21.  * from any file that can be opened with <code>java.io.RandomAccessFile</code>.

  22.  * It extends the class <code>java.util.zip.ZipFile</code> with support

  23.  * for reading an optional <code>Manifest</code> entry. The

  24.  * <code>Manifest</code> can be used to specify meta-information about the

  25.  * JAR file and its entries.

  26.  *

  27.  * @author  David Connelly

  28.  * @version 1.50, 01/23/03

  29.  * @see	    Manifest

  30.  * @see     java.util.zip.ZipFile

  31.  * @see     java.util.jar.JarEntry

  32.  * @since   1.2

  33.  */

  34. public

  35. class JarFile extends ZipFile {

  36.     private Manifest man;

  37.     private JarEntry manEntry;

  38.     private boolean manLoaded;

  39.     private JarVerifier jv;

  40.     private boolean jvInitialized;

  41.     private boolean verify;

  42.     private boolean computedHasClassPathAttribute;

  43.     private boolean hasClassPathAttribute;

  44. 

  45.     // Set up JavaUtilJarAccess in SharedSecrets

  46.     static {

  47.         SharedSecrets.setJavaUtilJarAccess(new JavaUtilJarAccessImpl());

  48.     }

  49. 

  50.     /**

  51.      * The JAR manifest file name.

  52.      */

  53.     public static final String MANIFEST_NAME = "META-INF/MANIFEST.MF";

  54. 

  55.     /**

  56.      * Creates a new <code>JarFile</code> to read from the specified

  57.      * file <code>name</code>. The <code>JarFile</code> will be verified if

  58.      * it is signed.

  59.      * @param name the name of the JAR file to be opened for reading

  60.      * @exception IOException if an I/O error has occurred

  61.      * @exception SecurityException if access to the file is denied

  62.      *            by the SecurityManager

  63.      */

  64.     public JarFile(String name) throws IOException {

  65. 	this(new File(name), true, ZipFile.OPEN_READ);

  66.     }

  67. 

  68.     /**

  69.      * Creates a new <code>JarFile</code> to read from the specified

  70.      * file <code>name</code>.

  71.      * @param name the name of the JAR file to be opened for reading

  72.      * @param verify whether or not to verify the JarFile if

  73.      * it is signed.

  74.      * @exception IOException if an I/O error has occurred

  75.      * @exception SecurityException if access to the file is denied

  76.      *            by the SecurityManager 

  77.      */

  78.     public JarFile(String name, boolean verify) throws IOException {

  79.         this(new File(name), verify, ZipFile.OPEN_READ);

  80.     }

  81. 

  82.     /**

  83.      * Creates a new <code>JarFile</code> to read from the specified

  84.      * <code>File</code> object. The <code>JarFile</code> will be verified if

  85.      * it is signed.

  86.      * @param file the JAR file to be opened for reading

  87.      * @exception IOException if an I/O error has occurred

  88.      * @exception SecurityException if access to the file is denied

  89.      *            by the SecurityManager

  90.      */

  91.     public JarFile(File file) throws IOException {

  92. 	this(file, true, ZipFile.OPEN_READ);

  93.     }

  94. 

  95. 

  96.     /**

  97.      * Creates a new <code>JarFile</code> to read from the specified

  98.      * <code>File</code> object.

  99.      * @param file the JAR file to be opened for reading

  100.      * @param verify whether or not to verify the JarFile if

  101.      * it is signed.

  102.      * @exception IOException if an I/O error has occurred

  103.      * @exception SecurityException if access to the file is denied

  104.      *            by the SecurityManager.

  105.      */

  106.     public JarFile(File file, boolean verify) throws IOException {

  107. 	this(file, verify, ZipFile.OPEN_READ);

  108.     }

  109. 

  110. 

  111.     /**

  112.      * Creates a new <code>JarFile</code> to read from the specified

  113.      * <code>File</code> object in the specified mode.  The mode argument

  114.      * must be either <tt>OPEN_READ</tt> or <tt>OPEN_READ | OPEN_DELETE</tt>.

  115.      *

  116.      * @param file the JAR file to be opened for reading

  117.      * @param verify whether or not to verify the JarFile if

  118.      * it is signed.

  119.      * @param mode the mode in which the file is to be opened

  120.      * @exception IOException if an I/O error has occurred

  121.      * @exception IllegalArgumentException

  122.      *            If the <tt>mode</tt> argument is invalid

  123.      * @exception SecurityException if access to the file is denied

  124.      *            by the SecurityManager

  125.      */

  126.     public JarFile(File file, boolean verify, int mode) throws IOException {

  127. 	super(file, mode);

  128. 	this.verify = verify;

  129.     }

  130. 

  131.     /**

  132.      * Returns the JAR file manifest, or <code>null</code> if none.

  133.      *

  134.      * @return the JAR file manifest, or <code>null</code> if none

  135.      */

  136.     public Manifest getManifest() throws IOException {

  137. 	if (!manLoaded) {

  138. 	    // First look up manifest entry using standard name

  139. 	    manEntry = getJarEntry(MANIFEST_NAME);

  140. 	    if (manEntry == null) {

  141. 		// If not found, then iterate through all the "META-INF/"

  142. 		// entries to find a match.

  143. 		String[] names = getMetaInfEntryNames();

  144. 		if (names != null) {

  145. 		    for (int i = 0; i < names.length; i++) {

  146. 			if (MANIFEST_NAME.equals(

  147.                             names[i].toUpperCase(Locale.ENGLISH))) {

  148. 			    manEntry = getJarEntry(names[i]);

  149. 			    break;

  150. 			}

  151. 		    }

  152. 		}

  153. 	    }

  154. 	    // If found then load the manifest

  155. 	    if (manEntry != null) {

  156. 		if (verify) {

  157. 		    byte[] b = getBytes(manEntry);

  158.  		    man = new Manifest(new ByteArrayInputStream(b));

  159. 		    jv = new JarVerifier(man, b);

  160. 		} else {

  161. 		    man = new Manifest(super.getInputStream(manEntry));

  162. 		}

  163. 	    }

  164. 	    manLoaded = true;

  165. 	}

  166. 	return man;

  167.     }

  168. 

  169.     private native String[] getMetaInfEntryNames();

  170. 

  171.     /**

  172.      * Returns the <code>JarEntry</code> for the given entry name or

  173.      * <code>null</code> if not found.

  174.      *

  175.      * @param name the JAR file entry name

  176.      * @return the <code>JarEntry</code> for the given entry name or

  177.      *         <code>null</code> if not found.

  178.      * @see java.util.jar.JarEntry

  179.      */

  180.     public JarEntry getJarEntry(String name) {

  181. 	return (JarEntry)getEntry(name);

  182.     }

  183. 

  184.     /**

  185.      * Returns the <code>ZipEntry</code> for the given entry name or

  186.      * <code>null</code> if not found.

  187.      *

  188.      * @param name the JAR file entry name

  189.      * @return the <code>ZipEntry</code> for the given entry name or

  190.      *         <code>null</code> if not found

  191.      * @see java.util.zip.ZipEntry

  192.      */

  193.     public ZipEntry getEntry(String name) {

  194. 	ZipEntry ze = super.getEntry(name);

  195. 	if (ze != null) {

  196. 	    return new JarFileEntry(ze);

  197. 	}

  198. 	return null;

  199.     }

  200. 

  201.     /**

  202.      * Returns an enumeration of the ZIP file entries.

  203.      */

  204.     public Enumeration entries() {

  205. 	final Enumeration enum = super.entries();

  206. 	return new Enumeration() {

  207. 	    public boolean hasMoreElements() {

  208. 		return enum.hasMoreElements();

  209. 	    }

  210. 	    public Object nextElement() {

  211. 		ZipEntry ze = (ZipEntry)enum.nextElement();

  212. 		return new JarFileEntry(ze);

  213. 	    }

  214. 	};

  215.     }

  216. 

  217.     private class JarFileEntry extends JarEntry {

  218. 	JarFileEntry(ZipEntry ze) {

  219. 	    super(ze);

  220. 	}

  221. 	public Attributes getAttributes() throws IOException {

  222. 	    Manifest man = JarFile.this.getManifest();

  223. 	    if (man != null) {

  224. 		return man.getAttributes(getName());

  225. 	    } else {

  226. 		return null;

  227. 	    }

  228. 	}

  229. 	public java.security.cert.Certificate[] getCertificates() {

  230.             try {

  231.                 maybeInstantiateVerifier();

  232.             } catch (IOException e) {

  233.                 throw new RuntimeException(e);

  234.             }

  235. 	    if (certs == null && jv != null) {

  236. 		Certificate[] cs = jv.getCerts(getName());

  237. 		if (cs != null) {

  238. 		    certs = (Certificate[])cs.clone();

  239. 		}

  240. 	    }

  241. 	    return certs;

  242. 	}

  243.     }

  244. 	    

  245.     /*

  246.      * Ensures that the JarVerifier has been created if one is

  247.      * necessary (i.e., the jar appears to be signed.) This is done as

  248.      * a quick check to avoid processing of the manifest for unsigned

  249.      * jars.

  250.      */

  251.     private void maybeInstantiateVerifier() throws IOException {

  252.         if (jv != null) {

  253.             return;

  254.         }

  255. 

  256.         if (verify) {

  257.             String[] names = getMetaInfEntryNames();

  258.             if (names != null) {

  259.                 for (int i = 0; i < names.length; i++) {

  260.                     String name = names[i].toUpperCase(Locale.ENGLISH);

  261.                     if (name.endsWith(".DSA") ||

  262.                         name.endsWith(".RSA") ||

  263.                         name.endsWith(".SF")) {

  264.                         // Assume since we found a signature-related file

  265.                         // that the jar is signed and that we therefore

  266.                         // need a JarVerifier and Manifest

  267.                         getManifest();

  268.                         return;

  269.                     }

  270.                 }

  271.             }

  272.             // No signature-related files; don't instantiate a

  273.             // verifier

  274.             verify = false;

  275.         }

  276.     }

  277. 

  278. 

  279.     /*

  280.      * Initializes the verifier object by reading all the manifest

  281.      * entries and passing them to the verifier.

  282.      */

  283.     private void initializeVerifier() {

  284. 	ManifestEntryVerifier mev = null;

  285. 

  286. 	// Verify "META-INF/" entries...

  287. 	try {

  288. 	    String[] names = getMetaInfEntryNames();

  289. 	    if (names != null) {

  290. 		for (int i = 0; i < names.length; i++) {

  291. 		    JarEntry e = getJarEntry(names[i]);

  292. 		    if (!e.isDirectory()) {

  293. 			if (mev == null) {

  294. 			    mev = new ManifestEntryVerifier(man);

  295. 			}

  296. 			byte[] b = getBytes(e);

  297. 			if (b != null && b.length > 0) {

  298. 			    jv.beginEntry(e, mev);

  299. 			    jv.update(b.length, b, 0, b.length, mev);

  300. 			    jv.update(-1, null, 0, 0, mev);

  301. 			}

  302. 		    }

  303. 		}

  304. 	    }

  305. 	} catch (IOException ex) {

  306. 	    // if we had an error parsing any blocks, just

  307. 	    // treat the jar file as being unsigned

  308. 	    jv = null;

  309.             verify = false;

  310. 	}

  311. 

  312. 	// if after initializing the verifier we have nothing

  313. 	// signed, we null it out.

  314. 

  315. 	if (jv != null) {

  316. 

  317. 	    jv.doneWithMeta();

  318. 	    if (JarVerifier.debug != null) {

  319. 		JarVerifier.debug.println("done with meta!"); 

  320. 	    }

  321. 

  322. 	    if (jv.nothingToVerify()) {

  323. 		if (JarVerifier.debug != null) {

  324. 		    JarVerifier.debug.println("nothing to verify!");

  325. 		}

  326. 		jv = null;

  327.                 verify = false;

  328. 	    }

  329. 	}

  330.     }

  331. 

  332.     /*

  333.      * Reads all the bytes for a given entry. Used to process the

  334.      * the META-INF files.

  335.      */

  336.     private byte[] getBytes(ZipEntry ze) throws IOException {

  337. 	byte[] b = new byte[(int)ze.getSize()];

  338. 	DataInputStream is = new DataInputStream(super.getInputStream(ze));

  339. 	is.readFully(b, 0, b.length);

  340. 	is.close();

  341. 	return b;

  342.     }

  343. 

  344.     /**

  345.      * Returns an input stream for reading the contents of the specified

  346.      * ZIP file entry.

  347.      * @param ze the zip file entry

  348.      * @return an input stream for reading the contents of the specified

  349.      *         ZIP file entry

  350.      * @exception ZipException if a ZIP format error has occurred

  351.      * @exception IOException if an I/O error has occurred

  352.      * @exception SecurityException if any of the JarFile entries are incorrectly signed.

  353.      */

  354.     public synchronized InputStream getInputStream(ZipEntry ze) 

  355. 	throws IOException 

  356.     {

  357.         maybeInstantiateVerifier();

  358. 	if (jv == null) {

  359. 	    return super.getInputStream(ze);

  360. 	}

  361. 	if (!jvInitialized) {

  362. 	    initializeVerifier();

  363. 	    jvInitialized = true;

  364. 	    // could be set to null after a call to

  365. 	    // initializeVerifier if we have nothing to

  366. 	    // verify

  367. 	    if (jv == null)

  368. 		return super.getInputStream(ze);

  369. 	}

  370. 

  371. 	// wrap a verifier stream around the real stream

  372. 	return new JarVerifier.VerifierStream(man, (JarEntry)ze,

  373. 					      super.getInputStream(ze), jv);

  374.     }

  375. 

  376.     // Statics for hand-coded Boyer-Moore search in hasClassPathAttribute()

  377.     // The bad character shift for "class-path"

  378.     private static int[] lastOcc;

  379.     // The good suffix shift for "class-path"

  380.     private static int[] optoSft;

  381.     // Initialize the shift arrays to search for "class-path"

  382.     private static char[] src = {'c','l','a','s','s','-','p','a','t','h'};

  383.     static {

  384.         lastOcc = new int[128];

  385.         optoSft = new int[10];

  386.         lastOcc[99]=1; lastOcc[108]=2; lastOcc[97]=8; lastOcc[115]=5;

  387.         lastOcc[116]=9; lastOcc[45]=6; lastOcc[112]=7; lastOcc[104]=10;

  388.         for (int i=0; i<9; i++)

  389.             optoSft[i]=10;

  390.         optoSft[9]=1;

  391.     }

  392.  

  393.     // Returns true iff this jar file has a manifest with a class path

  394.     // attribute. Returns false if there is no manifest or the manifest

  395.     // does not contain a "Class-Path" attribute. Currently exported to

  396.     // core libraries via sun.misc.SharedSecrets.

  397.     boolean hasClassPathAttribute() throws IOException {

  398.         if (computedHasClassPathAttribute) {

  399.             return hasClassPathAttribute;

  400.         }

  401. 

  402.         hasClassPathAttribute = false;

  403.         if (!isKnownToNotHaveClassPathAttribute()) {

  404.             JarEntry manEntry = getJarEntry(MANIFEST_NAME);

  405.             if (manEntry == null) {

  406.                 // If not found, then iterate through all the "META-INF/"

  407.                 // entries to find a match.

  408.                 String[] names = getMetaInfEntryNames();

  409.                 if (names != null) {

  410.                     for (int i = 0; i < names.length; i++) {

  411.                         if (MANIFEST_NAME.equals(

  412.                                                  names[i].toUpperCase(Locale.ENGLISH))) {

  413.                             manEntry = getJarEntry(names[i]);

  414.                             break;

  415.                         }

  416.                     }

  417.                 }

  418.             }

  419.             if (manEntry != null) {

  420.                 byte[] b = new byte[(int)manEntry.getSize()];

  421.                 DataInputStream dis = new DataInputStream(

  422.                                                           super.getInputStream(manEntry));

  423.                 dis.readFully(b, 0, b.length);

  424.                 dis.close();

  425.  

  426.                 int last = b.length - src.length;

  427.                 int i = 0;

  428.                 next:       

  429.                 while (i<=last) {

  430.                     for (int j=9; j>=0; j--) {

  431.                         char c = (char) b[i+j];

  432.                         c = (((c-'A')|('Z'-c)) >= 0) ? (char)(c + 32) : c;

  433.                         if (c != src[j]) {

  434.                             i += Math.max(j + 1 - lastOcc[c&0x7F], optoSft[j]);

  435.                             continue next;

  436.                         }

  437.                     }

  438.                     hasClassPathAttribute = true;

  439.                     break;

  440.                 }

  441.             }

  442.         }

  443.         computedHasClassPathAttribute = true;

  444.         return hasClassPathAttribute;

  445.     }

  446. 

  447.     private static String javaHome;

  448.     private boolean isKnownToNotHaveClassPathAttribute() {

  449.         // Optimize away even scanning of manifest for jar files we

  450.         // deliver which don't have a class-path attribute. If one of

  451.         // these jars is changed to include such an attribute this code

  452.         // must be changed.

  453.         if (javaHome == null) {

  454.             javaHome = (String) AccessController.doPrivileged(

  455.                 new GetPropertyAction("java.home"));

  456.         }

  457.         String name = getName();

  458.         String localJavaHome = javaHome;

  459.         if (name.startsWith(localJavaHome)) {

  460.             if (name.endsWith("rt.jar") ||

  461.                 name.endsWith("sunrsasign.jar") ||

  462.                 name.endsWith("jsse.jar") ||

  463.                 name.endsWith("jce.jar") ||

  464.                 name.endsWith("charsets.jar") ||

  465.                 name.endsWith("dnsns.jar") ||

  466.                 name.endsWith("ldapsec.jar") ||

  467.                 name.endsWith("localedata.jar") ||

  468.                 name.endsWith("sunjce_provider.jar")) {

  469.                 return true;

  470.             }

  471.         }

  472.         return false;

  473.     }

  474. }