1. /*

  2.  * @(#)JarFile.java	1.58 04/05/05

  3.  *

  4.  * Copyright 2004 Sun Microsystems, Inc. All rights reserved.

  5.  * SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.

  6.  */

  7. 

  8. package java.util.jar;

  9. 

  10. import java.io.*;

  11. import java.util.*;

  12. import java.util.zip.*;

  13. import java.security.CodeSigner;

  14. import java.security.cert.Certificate;

  15. import java.security.AccessController;

  16. import sun.security.action.GetPropertyAction;

  17. import sun.security.util.ManifestEntryVerifier;

  18. import sun.misc.SharedSecrets;

  19. 

  20. /**

  21.  * The <code>JarFile</code> class is used to read the contents of a jar file

  22.  * from any file that can be opened with <code>java.io.RandomAccessFile</code>.

  23.  * It extends the class <code>java.util.zip.ZipFile</code> with support

  24.  * for reading an optional <code>Manifest</code> entry. The

  25.  * <code>Manifest</code> can be used to specify meta-information about the

  26.  * jar file and its entries.

  27.  *

  28.  * <p> Unless otherwise noted, passing a <tt>null</tt> argument to a constructor

  29.  * or method in this class will cause a {@link NullPointerException} to be

  30.  * thrown.

  31.  *

  32.  * @author  David Connelly

  33.  * @version 1.58, 05/05/04

  34.  * @see	    Manifest

  35.  * @see     java.util.zip.ZipFile

  36.  * @see     java.util.jar.JarEntry

  37.  * @since   1.2

  38.  */

  39. public

  40. class JarFile extends ZipFile {

  41.     private Manifest man;

  42.     private JarEntry manEntry;

  43.     private boolean manLoaded;

  44.     private JarVerifier jv;

  45.     private boolean jvInitialized;

  46.     private boolean verify;

  47.     private boolean computedHasClassPathAttribute;

  48.     private boolean hasClassPathAttribute;

  49. 

  50.     // Set up JavaUtilJarAccess in SharedSecrets

  51.     static {

  52.         SharedSecrets.setJavaUtilJarAccess(new JavaUtilJarAccessImpl());

  53.     }

  54. 

  55.     /**

  56.      * The JAR manifest file name.

  57.      */

  58.     public static final String MANIFEST_NAME = "META-INF/MANIFEST.MF";

  59. 

  60.     /**

  61.      * Creates a new <code>JarFile</code> to read from the specified

  62.      * file <code>name</code>. The <code>JarFile</code> will be verified if

  63.      * it is signed.

  64.      * @param name the name of the jar file to be opened for reading

  65.      * @throws IOException if an I/O error has occurred

  66.      * @throws SecurityException if access to the file is denied

  67.      *         by the SecurityManager

  68.      */

  69.     public JarFile(String name) throws IOException {

  70. 	this(new File(name), true, ZipFile.OPEN_READ);

  71.     }

  72. 

  73.     /**

  74.      * Creates a new <code>JarFile</code> to read from the specified

  75.      * file <code>name</code>.

  76.      * @param name the name of the jar file to be opened for reading

  77.      * @param verify whether or not to verify the jar file if

  78.      * it is signed.

  79.      * @throws IOException if an I/O error has occurred

  80.      * @throws SecurityException if access to the file is denied

  81.      *         by the SecurityManager 

  82.      */

  83.     public JarFile(String name, boolean verify) throws IOException {

  84.         this(new File(name), verify, ZipFile.OPEN_READ);

  85.     }

  86. 

  87.     /**

  88.      * Creates a new <code>JarFile</code> to read from the specified

  89.      * <code>File</code> object. The <code>JarFile</code> will be verified if

  90.      * it is signed.

  91.      * @param file the jar file to be opened for reading

  92.      * @throws IOException if an I/O error has occurred

  93.      * @throws SecurityException if access to the file is denied

  94.      *         by the SecurityManager

  95.      */

  96.     public JarFile(File file) throws IOException {

  97. 	this(file, true, ZipFile.OPEN_READ);

  98.     }

  99. 

  100. 

  101.     /**

  102.      * Creates a new <code>JarFile</code> to read from the specified

  103.      * <code>File</code> object.

  104.      * @param file the jar file to be opened for reading

  105.      * @param verify whether or not to verify the jar file if

  106.      * it is signed.

  107.      * @throws IOException if an I/O error has occurred

  108.      * @throws SecurityException if access to the file is denied

  109.      *         by the SecurityManager.

  110.      */

  111.     public JarFile(File file, boolean verify) throws IOException {

  112. 	this(file, verify, ZipFile.OPEN_READ);

  113.     }

  114. 

  115. 

  116.     /**

  117.      * Creates a new <code>JarFile</code> to read from the specified

  118.      * <code>File</code> object in the specified mode.  The mode argument

  119.      * must be either <tt>OPEN_READ</tt> or <tt>OPEN_READ | OPEN_DELETE</tt>.

  120.      *

  121.      * @param file the jar file to be opened for reading

  122.      * @param verify whether or not to verify the jar file if

  123.      * it is signed.

  124.      * @param mode the mode in which the file is to be opened

  125.      * @throws IOException if an I/O error has occurred

  126.      * @throws IllegalArgumentException

  127.      *         if the <tt>mode</tt> argument is invalid

  128.      * @throws SecurityException if access to the file is denied

  129.      *         by the SecurityManager

  130.      */

  131.     public JarFile(File file, boolean verify, int mode) throws IOException {

  132. 	super(file, mode);

  133. 	this.verify = verify;

  134.     }

  135. 

  136.     /**

  137.      * Returns the jar file manifest, or <code>null</code> if none.

  138.      *

  139.      * @return the jar file manifest, or <code>null</code> if none

  140.      *

  141.      * @throws IllegalStateException

  142.      *         may be thrown if the jar file has been closed

  143.      */

  144.     public Manifest getManifest() throws IOException {

  145. 	if (!manLoaded) {

  146. 	  

  147. 	    JarEntry manEntry = getManEntry();

  148. 	    

  149. 	    // If found then load the manifest

  150. 	    if (manEntry != null) {

  151. 		if (verify) {

  152. 		    byte[] b = getBytes(manEntry);

  153.  		    man = new Manifest(new ByteArrayInputStream(b));

  154. 		    jv = new JarVerifier(man, b);

  155. 		} else {

  156. 		    man = new Manifest(super.getInputStream(manEntry));

  157. 		}

  158. 	    }

  159. 	    manLoaded = true;

  160. 	}

  161. 	return man;

  162.     }

  163. 

  164.     private native String[] getMetaInfEntryNames();

  165. 

  166.     /**

  167.      * Returns the <code>JarEntry</code> for the given entry name or

  168.      * <code>null</code> if not found.

  169.      *

  170.      * @param name the jar file entry name

  171.      * @return the <code>JarEntry</code> for the given entry name or

  172.      *         <code>null</code> if not found.

  173.      *

  174.      * @throws IllegalStateException

  175.      *         may be thrown if the jar file has been closed

  176.      *

  177.      * @see java.util.jar.JarEntry

  178.      */

  179.     public JarEntry getJarEntry(String name) {

  180. 	return (JarEntry)getEntry(name);

  181.     }

  182. 

  183.     /**

  184.      * Returns the <code>ZipEntry</code> for the given entry name or

  185.      * <code>null</code> if not found.

  186.      *

  187.      * @param name the jar file entry name

  188.      * @return the <code>ZipEntry</code> for the given entry name or

  189.      *         <code>null</code> if not found

  190.      *

  191.      * @throws IllegalStateException

  192.      *         may be thrown if the jar file has been closed

  193.      *

  194.      * @see java.util.zip.ZipEntry

  195.      */

  196.     public ZipEntry getEntry(String name) {

  197. 	ZipEntry ze = super.getEntry(name);

  198. 	if (ze != null) {

  199. 	    return new JarFileEntry(ze);

  200. 	}

  201. 	return null;

  202.     }

  203. 

  204.     /**

  205.      * Returns an enumeration of the zip file entries.

  206.      */

  207.     public Enumeration<JarEntry> entries() {

  208. 	final Enumeration enum_ = super.entries();

  209. 	return new Enumeration<JarEntry>() {

  210. 	    public boolean hasMoreElements() {

  211. 		return enum_.hasMoreElements();

  212. 	    }

  213. 	    public JarFileEntry nextElement() {

  214. 		ZipEntry ze = (ZipEntry)enum_.nextElement();

  215. 		return new JarFileEntry(ze);

  216. 	    }

  217. 	};

  218.     }

  219. 

  220.     private class JarFileEntry extends JarEntry {

  221. 	JarFileEntry(ZipEntry ze) {

  222. 	    super(ze);

  223. 	}

  224. 	public Attributes getAttributes() throws IOException {

  225. 	    Manifest man = JarFile.this.getManifest();

  226. 	    if (man != null) {

  227. 		return man.getAttributes(getName());

  228. 	    } else {

  229. 		return null;

  230. 	    }

  231. 	}

  232. 	public java.security.cert.Certificate[] getCertificates() {

  233.             try {

  234.                 maybeInstantiateVerifier();

  235.             } catch (IOException e) {

  236.                 throw new RuntimeException(e);

  237.             }

  238. 	    if (certs == null && jv != null) {

  239. 		Certificate[] cs = jv.getCerts(getName());

  240. 		if (cs != null) {

  241. 		    certs = (Certificate[])cs.clone();

  242. 		}

  243. 	    }

  244. 	    return certs;

  245. 	}

  246. 	public CodeSigner[] getCodeSigners() {

  247. 	    try {

  248. 		maybeInstantiateVerifier();

  249. 	    } catch (IOException e) {

  250. 		throw new RuntimeException(e);

  251. 	    }

  252. 	    if (signers == null && jv != null) {

  253. 		CodeSigner[] csg = jv.getCodeSigners(getName());

  254. 		if (csg != null) {

  255. 		    signers = (CodeSigner[])csg.clone();

  256. 		}

  257. 	    }

  258. 	    return signers;

  259. 	}

  260.     }

  261. 	    

  262.     /*

  263.      * Ensures that the JarVerifier has been created if one is

  264.      * necessary (i.e., the jar appears to be signed.) This is done as

  265.      * a quick check to avoid processing of the manifest for unsigned

  266.      * jars.

  267.      */

  268.     private void maybeInstantiateVerifier() throws IOException {

  269.         if (jv != null) {

  270.             return;

  271.         }

  272. 

  273.         if (verify) {

  274.             String[] names = getMetaInfEntryNames();

  275.             if (names != null) {

  276.                 for (int i = 0; i < names.length; i++) {

  277.                     String name = names[i].toUpperCase(Locale.ENGLISH);

  278.                     if (name.endsWith(".DSA") ||

  279.                         name.endsWith(".RSA") ||

  280.                         name.endsWith(".SF")) {

  281.                         // Assume since we found a signature-related file

  282.                         // that the jar is signed and that we therefore

  283.                         // need a JarVerifier and Manifest

  284.                         getManifest();

  285.                         return;

  286.                     }

  287.                 }

  288.             }

  289.             // No signature-related files; don't instantiate a

  290.             // verifier

  291.             verify = false;

  292.         }

  293.     }

  294. 

  295. 

  296.     /*

  297.      * Initializes the verifier object by reading all the manifest

  298.      * entries and passing them to the verifier.

  299.      */

  300.     private void initializeVerifier() {

  301. 	ManifestEntryVerifier mev = null;

  302. 

  303. 	// Verify "META-INF/" entries...

  304. 	try {

  305. 	    String[] names = getMetaInfEntryNames();

  306. 	    if (names != null) {

  307. 		for (int i = 0; i < names.length; i++) {

  308. 		    JarEntry e = getJarEntry(names[i]);

  309. 		    if (!e.isDirectory()) {

  310. 			if (mev == null) {

  311. 			    mev = new ManifestEntryVerifier(man);

  312. 			}

  313. 			byte[] b = getBytes(e);

  314. 			if (b != null && b.length > 0) {

  315. 			    jv.beginEntry(e, mev);

  316. 			    jv.update(b.length, b, 0, b.length, mev);

  317. 			    jv.update(-1, null, 0, 0, mev);

  318. 			}

  319. 		    }

  320. 		}

  321. 	    }

  322. 	} catch (IOException ex) {

  323. 	    // if we had an error parsing any blocks, just

  324. 	    // treat the jar file as being unsigned

  325. 	    jv = null;

  326.             verify = false;

  327. 	}

  328. 

  329. 	// if after initializing the verifier we have nothing

  330. 	// signed, we null it out.

  331. 

  332. 	if (jv != null) {

  333. 

  334. 	    jv.doneWithMeta();

  335. 	    if (JarVerifier.debug != null) {

  336. 		JarVerifier.debug.println("done with meta!"); 

  337. 	    }

  338. 

  339. 	    if (jv.nothingToVerify()) {

  340. 		if (JarVerifier.debug != null) {

  341. 		    JarVerifier.debug.println("nothing to verify!");

  342. 		}

  343. 		jv = null;

  344.                 verify = false;

  345. 	    }

  346. 	}

  347.     }

  348. 

  349.     /*

  350.      * Reads all the bytes for a given entry. Used to process the

  351.      * META-INF files.

  352.      */

  353.     private byte[] getBytes(ZipEntry ze) throws IOException {

  354. 	byte[] b = new byte[(int)ze.getSize()];

  355. 	DataInputStream is = new DataInputStream(super.getInputStream(ze));

  356. 	is.readFully(b, 0, b.length);

  357. 	is.close();

  358. 	return b;

  359.     }

  360. 

  361.     /**

  362.      * Returns an input stream for reading the contents of the specified

  363.      * zip file entry.

  364.      * @param ze the zip file entry

  365.      * @return an input stream for reading the contents of the specified

  366.      *         zip file entry

  367.      * @throws ZipException if a zip file format error has occurred

  368.      * @throws IOException if an I/O error has occurred

  369.      * @throws SecurityException if any of the jar file entries

  370.      *         are incorrectly signed.

  371.      * @throws IllegalStateException

  372.      *         may be thrown if the jar file has been closed

  373.      */

  374.     public synchronized InputStream getInputStream(ZipEntry ze) 

  375. 	throws IOException 

  376.     {

  377.         maybeInstantiateVerifier();

  378. 	if (jv == null) {

  379. 	    return super.getInputStream(ze);

  380. 	}

  381. 	if (!jvInitialized) {

  382. 	    initializeVerifier();

  383. 	    jvInitialized = true;

  384. 	    // could be set to null after a call to

  385. 	    // initializeVerifier if we have nothing to

  386. 	    // verify

  387. 	    if (jv == null)

  388. 		return super.getInputStream(ze);

  389. 	}

  390. 

  391. 	// wrap a verifier stream around the real stream

  392. 	return new JarVerifier.VerifierStream(man, (JarEntry)ze,

  393. 					      super.getInputStream(ze), jv);

  394.     }

  395. 

  396.     // Statics for hand-coded Boyer-Moore search in hasClassPathAttribute()

  397.     // The bad character shift for "class-path"

  398.     private static int[] lastOcc;

  399.     // The good suffix shift for "class-path"

  400.     private static int[] optoSft;

  401.     // Initialize the shift arrays to search for "class-path"

  402.     private static char[] src = {'c','l','a','s','s','-','p','a','t','h'};

  403.     static {

  404. 	lastOcc = new int[128];

  405. 	optoSft = new int[10];

  406. 	lastOcc[(int)'c']=1;

  407. 	lastOcc[(int)'l']=2;

  408. 	lastOcc[(int)'s']=5;

  409. 	lastOcc[(int)'-']=6;

  410. 	lastOcc[(int)'p']=7;

  411. 	lastOcc[(int)'a']=8;

  412. 	lastOcc[(int)'t']=9;

  413. 	lastOcc[(int)'h']=10;

  414. 	for (int i=0; i<9; i++)

  415. 	    optoSft[i]=10;

  416. 	optoSft[9]=1;

  417.     }

  418.  

  419.     private JarEntry getManEntry() {

  420. 	if (manEntry == null) {

  421. 	    // First look up manifest entry using standard name

  422. 	    manEntry = getJarEntry(MANIFEST_NAME);

  423.             if (manEntry == null) {

  424.                 // If not found, then iterate through all the "META-INF/"

  425.                 // entries to find a match.

  426.                 String[] names = getMetaInfEntryNames();

  427.                 if (names != null) {

  428.                     for (int i = 0; i < names.length; i++) {

  429.                         if (MANIFEST_NAME.equals(

  430.                                                  names[i].toUpperCase(Locale.ENGLISH))) {

  431.                             manEntry = getJarEntry(names[i]);

  432.                             break;

  433.                         }

  434.                     }

  435.                 }

  436.             }

  437. 	}

  438. 	return manEntry;

  439.     }

  440. 

  441.     // Returns true iff this jar file has a manifest with a class path

  442.     // attribute. Returns false if there is no manifest or the manifest

  443.     // does not contain a "Class-Path" attribute. Currently exported to

  444.     // core libraries via sun.misc.SharedSecrets.

  445.     boolean hasClassPathAttribute() throws IOException {

  446.         if (computedHasClassPathAttribute) {

  447.             return hasClassPathAttribute;

  448.         }

  449. 

  450.         hasClassPathAttribute = false;

  451.         if (!isKnownToNotHaveClassPathAttribute()) {

  452.             JarEntry manEntry = getManEntry();

  453.             if (manEntry != null) {

  454.                 byte[] b = new byte[(int)manEntry.getSize()];

  455.                 DataInputStream dis = new DataInputStream(

  456.                                                           super.getInputStream(manEntry));

  457.                 dis.readFully(b, 0, b.length);

  458.                 dis.close();

  459.  

  460.                 int last = b.length - src.length;

  461.                 int i = 0;

  462.                 next:       

  463.                 while (i<=last) {

  464.                     for (int j=9; j>=0; j--) {

  465.                         char c = (char) b[i+j];

  466.                         c = (((c-'A')|('Z'-c)) >= 0) ? (char)(c + 32) : c;

  467.                         if (c != src[j]) {

  468.                             i += Math.max(j + 1 - lastOcc[c&0x7F], optoSft[j]);

  469.                             continue next;

  470.                         }

  471.                     }

  472.                     hasClassPathAttribute = true;

  473.                     break;

  474.                 }

  475.             }

  476.         }

  477.         computedHasClassPathAttribute = true;

  478.         return hasClassPathAttribute;

  479.     }

  480. 

  481.     private static String javaHome;

  482.     private boolean isKnownToNotHaveClassPathAttribute() {

  483.         // Optimize away even scanning of manifest for jar files we

  484.         // deliver which don't have a class-path attribute. If one of

  485.         // these jars is changed to include such an attribute this code

  486.         // must be changed.

  487.         if (javaHome == null) {

  488.             javaHome = (String) AccessController.doPrivileged(

  489.                 new GetPropertyAction("java.home"));

  490.         }

  491.         String name = getName();

  492.         String localJavaHome = javaHome;

  493.         if (name.startsWith(localJavaHome)) {

  494.             if (name.endsWith("rt.jar") ||

  495.                 name.endsWith("sunrsasign.jar") ||

  496.                 name.endsWith("jsse.jar") ||

  497.                 name.endsWith("jce.jar") ||

  498.                 name.endsWith("charsets.jar") ||

  499.                 name.endsWith("dnsns.jar") ||

  500.                 name.endsWith("ldapsec.jar") ||

  501.                 name.endsWith("localedata.jar") ||

  502.                 name.endsWith("sunjce_provider.jar")) {

  503.                 return true;

  504.             }

  505.         }

  506.         return false;

  507.     }

  508. }