From af5d23c30f773e275bfbe630d51fbcc7464ded9b Mon Sep 17 00:00:00 2001
From: ferbas <ferbas@7b5415b0-85f9-ee4d-85bd-d5d0c3b42d1c>
Date: Tue, 27 Oct 2009 10:47:09 +0000
Subject: added support for dynamic algorithm suites / acos04

git-svn-id: https://joinup.ec.europa.eu/svn/pdf-as/trunk@348 7b5415b0-85f9-ee4d-85bd-d5d0c3b42d1c
---
 .../pdfas/algorithmSuite/AlgorithmSuiteUtil.java   | 193 +++++++++++++++++++++
 1 file changed, 193 insertions(+)
 create mode 100644 src/main/java/at/gv/egiz/pdfas/algorithmSuite/AlgorithmSuiteUtil.java

(limited to 'src/main/java/at/gv/egiz/pdfas/algorithmSuite/AlgorithmSuiteUtil.java')

diff --git a/src/main/java/at/gv/egiz/pdfas/algorithmSuite/AlgorithmSuiteUtil.java b/src/main/java/at/gv/egiz/pdfas/algorithmSuite/AlgorithmSuiteUtil.java
new file mode 100644
index 0000000..0a1a5e4
--- /dev/null
+++ b/src/main/java/at/gv/egiz/pdfas/algorithmSuite/AlgorithmSuiteUtil.java
@@ -0,0 +1,193 @@
+package at.gv.egiz.pdfas.algorithmSuite;
+
+import java.security.cert.X509Certificate;
+import java.util.ArrayList;
+import java.util.Iterator;
+import java.util.List;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+
+import org.apache.commons.logging.Log;
+import org.apache.commons.logging.LogFactory;
+
+import at.knowcenter.wag.egov.egiz.sig.connectors.ConnectorEnvironment;
+import at.knowcenter.wag.egov.egiz.sig.connectors.TemplateReplaces;
+import at.knowcenter.wag.egov.egiz.sig.connectors.bku.SignSignatureObject;
+
+/**
+ * Utility class for handling dynamic algorithm suites
+ * 
+ * @author dferbas
+ * 
+ */
+public class AlgorithmSuiteUtil {
+   private static Log log = LogFactory.getLog(AlgorithmSuiteUtil.class);
+   
+   /**
+    * Creates new verify_xml, evaluates algorithm suite and replaces methods in verify_xml
+    * 
+    * @param algSuite <code>out-param</code> empty algorithm suite object
+    * @param environment connector environment to load verify template
+    * @param so signsignator object
+    * @return verify xml
+    */
+   public static String evaluateReplaceAlgs(AlgorithmSuiteObject algSuite, ConnectorEnvironment environment, SignSignatureObject so) {
+
+      String verify_template = environment.getVerifyTemplate();
+
+      String cert_alg;
+      String verify_xml = null;
+      X509Certificate cert = so.getX509Certificate();
+      String ids_string = so.getSigID();
+
+      //AlgorithmSuiteObject algSuite = new AlgorithmSuiteObject(ids_string);
+      algSuite.parseFrom(ids_string);
+      if (algSuite.isSpecified()) {
+         log.debug("Algorithm suite defined as parameter. Using new dynamic template replacement.");
+         cert_alg = AlgorithmMapper.getUri(algSuite.getSignatureMethod());
+   
+      } else {
+         log.debug("NO algorithm suite defined as parameter. Using old static algorithm.");
+   
+         cert_alg = environment.getCertAlgEcdsa();
+         if (cert.getPublicKey().getAlgorithm().indexOf("RSA") >= 0) //$NON-NLS-1$
+         {
+            cert_alg = environment.getCertAlgRsa();
+         }
+   
+         // fix digest methods to sha1 for old algorithm
+         String oldDigest = "sha1";
+         algSuite.setCertDigestMethod(oldDigest);
+         algSuite.setDataDigestMethod(oldDigest);
+         algSuite.setPropertiesDigestMethod(oldDigest);
+   
+      }
+   
+      // cert alg replace
+      verify_xml = verify_template.replaceFirst(TemplateReplaces.CERT_ALG_REPLACE, cert_alg);
+   
+      // digest method replaces
+      verify_xml = verify_xml.replaceFirst(TemplateReplaces.DATA_DIGEST_REPLACE,
+            AlgorithmMapper.getUri(algSuite.getDataDigestMethod()));
+      verify_xml = verify_xml.replaceFirst(TemplateReplaces.PROPERTIES_DIGEST_REPLACE,
+            AlgorithmMapper.getUri(algSuite.getPropertiesDigestMethod()));
+      verify_xml = verify_xml.replaceFirst(TemplateReplaces.CERT_DIGEST_REPLACE,
+            AlgorithmMapper.getUri(algSuite.getCertDigestMethod()));
+      return verify_xml;
+   }
+   
+
+   /**
+    * Extract algorithm suite as optimized string from <code>CreateXMLSignatureResponse<code>
+    * 
+    * @param xmlResponse
+    * @return algorith suite string
+    */
+   public static String extractAlgorithmSuiteString(String xmlResponse) {
+
+      String elem = findFirstElement(xmlResponse, "SignatureMethod");
+      System.err.println(elem);
+      String alg = findAttributeValue(elem, "Algorithm");
+      System.err.println(alg);
+
+      List digAlgs = findAllAttributeValues(xmlResponse, "DigestMethod", "Algorithm");
+
+      digAlgs.add(0, AlgorithmMapper.getHashUriFromSuite(alg));
+
+      reduceDigestAlgs(digAlgs);
+
+      digAlgs.remove(0);
+
+      return createSigDevString(alg, digAlgs);
+
+   }
+
+   public static boolean isDefaultCertAlg(String algsString, String defaultCertAlg) {
+      return AlgorithmMapper.getAbbreviation(defaultCertAlg).equals(algsString);
+   }
+
+   private static String createSigDevString(String suite, List digAlgs) {
+      StringBuilder sb = new StringBuilder(AlgorithmMapper.getAbbreviation(suite));
+      for (Iterator iterator = digAlgs.iterator(); iterator.hasNext();) {
+         String dig = (String) iterator.next();
+         sb.append(":").append(AlgorithmMapper.getAbbreviation(dig));
+      }
+      return sb.toString();
+   }
+
+   private static String findAttributeValue(String elemContent, String attrName) {
+
+      String sig_alg = removeAllWhitespace(elemContent);
+
+      attrName += "=\"";
+      int start = sig_alg.indexOf(attrName) + attrName.length();
+      int end = sig_alg.indexOf("\"", start);
+      return sig_alg.substring(start, end);
+
+   }
+
+   private static String findFirstElement(String xml, String elemName) {
+      Pattern p = Pattern.compile("<[\\w]*:?" + elemName);
+      Matcher m = p.matcher(xml);
+      if (m.find()) {
+         int start = m.start();
+         int end = xml.indexOf("/>", start) + 2;
+         return xml.substring(start, end);
+      }
+      return null;
+   }
+
+   private static List findElements(String xml, String elemName) {
+      Pattern p = Pattern.compile("<[\\w]*:?" + elemName);
+      Matcher m = p.matcher(xml);
+      ArrayList res = new ArrayList();
+      while (m.find()) {
+         int start = m.start();
+         int end = xml.indexOf("/>", start) + 2;
+         res.add(xml.substring(start, end));
+      }
+      return res;
+   }
+
+   private static String findAttributeValue(String xmlContent, String elemName, String attrName) {
+      String elemCont = findFirstElement(xmlContent, elemName);
+      return findAttributeValue(elemCont, attrName);
+   }
+
+   private static List findAllAttributeValues(String xmlContent, String elemName, String attrName) {
+      List elemConts = findElements(xmlContent, elemName);
+      ArrayList res = new ArrayList();
+      for (int i = 0; i < elemConts.size(); i++) {
+         res.add(findAttributeValue((String) elemConts.get(i), attrName));
+      }
+      return res;
+   }
+
+   /**
+    * Helper method to remove whitespaces from a string
+    * @param str
+    * @return
+    */
+   public static String removeAllWhitespace(String str) {
+      return str.replaceAll("\\s", ""); //$NON-NLS-1$ //$NON-NLS-2$
+   }
+
+   private static void reduceDigestAlgs(List digestAlgs) {
+      if (digestAlgs == null)
+         return;
+      reduceDigestAlgsRec(digestAlgs, digestAlgs.size() - 1);
+   }
+
+   private static void reduceDigestAlgsRec(List digestAlgs, int act) {
+      if (act <= 0)
+         return;
+      else if (digestAlgs.get(act - 1).equals(digestAlgs.get(act))) {
+         // reduce
+         digestAlgs.remove(act);
+         reduceDigestAlgsRec(digestAlgs, act - 1);
+      } else {
+         return;
+      }
+   }
+
+}
-- 
cgit v1.2.3