1:
37:
38:
39: package ;
40:
41: import ;
42: import ;
43: import ;
44: import ;
45:
46: import ;
47: import ;
48: import ;
49: import ;
50: import ;
51: import ;
52: import ;
53: import ;
54: import ;
55: import ;
56:
57: import ;
58:
59: import ;
60: import ;
61: import ;
62: import ;
63: import ;
64: import ;
65: import ;
66: import ;
67: import ;
68:
69: public final class X500Principal implements Principal, Serializable
70: {
71: private static final long serialVersionUID = -500463348111345721L;
72:
73:
74:
75:
76: public static final String CANONICAL = "CANONICAL";
77: public static final String RFC1779 = "RFC1779";
78: public static final String RFC2253 = "RFC2253";
79:
80: private static final OID CN = new OID("2.5.4.3");
81: private static final OID C = new OID("2.5.4.6");
82: private static final OID L = new OID("2.5.4.7");
83: private static final OID ST = new OID("2.5.4.8");
84: private static final OID STREET = new OID("2.5.4.9");
85: private static final OID O = new OID("2.5.4.10");
86: private static final OID OU = new OID("2.5.4.11");
87: private static final OID DC = new OID("0.9.2342.19200300.100.1.25");
88: private static final OID UID = new OID("0.9.2342.19200300.100.1.1");
89:
90: private transient List components;
91: private transient Map currentRdn;
92: private transient boolean fixed;
93: private transient byte[] encoded;
94:
95:
96:
97:
98: private X500Principal()
99: {
100: components = new LinkedList();
101: currentRdn = new LinkedHashMap();
102: components.add (currentRdn);
103: }
104:
105: public X500Principal (String name)
106: {
107: this();
108: if (name == null)
109: throw new NullPointerException();
110: try
111: {
112: parseString (name);
113: }
114: catch (IOException ioe)
115: {
116: IllegalArgumentException iae = new IllegalArgumentException("malformed name");
117: iae.initCause (ioe);
118: throw iae;
119: }
120: }
121:
122: public X500Principal (byte[] encoded)
123: {
124: this(new ByteArrayInputStream (encoded));
125: }
126:
127: public X500Principal (InputStream encoded)
128: {
129: this();
130: try
131: {
132: parseDer (encoded);
133: }
134: catch (IOException ioe)
135: {
136: throw new IllegalArgumentException (ioe.toString());
137: }
138: }
139:
140:
141:
142:
143: public boolean equals(Object o)
144: {
145: if (!(o instanceof X500Principal))
146: return false;
147: if (size() != ((X500Principal) o).size())
148: return false;
149: for (int i = 0; i < size(); i++)
150: {
151: Map m = (Map) components.get (i);
152: for (Iterator it2 = m.entrySet().iterator(); it2.hasNext(); )
153: {
154: Map.Entry e = (Map.Entry) it2.next();
155: OID oid = (OID) e.getKey();
156: String v1 = (String) e.getValue();
157: String v2 = ((X500Principal) o).getComponent (oid, i);
158: if (v2 == null)
159: return false;
160: if (!compressWS (v1).equalsIgnoreCase (compressWS (v2)))
161: return false;
162: }
163: }
164: return true;
165: }
166:
167: public byte[] getEncoded()
168: {
169: if (encoded == null)
170: encodeDer();
171: return (byte[]) encoded.clone();
172: }
173:
174: public String getName()
175: {
176: return getName (RFC2253);
177: }
178:
179: public String getName (final String format)
180: {
181: boolean rfc2253 = RFC2253.equalsIgnoreCase (format) ||
182: CANONICAL.equalsIgnoreCase (format);
183: boolean rfc1779 = RFC1779.equalsIgnoreCase (format);
184: boolean canon = CANONICAL.equalsIgnoreCase (format);
185: if (! (rfc2253 || rfc1779 || canon))
186: throw new IllegalArgumentException ("unsupported format " + format);
187: StringBuffer str = new StringBuffer();
188: for (Iterator it = components.iterator(); it.hasNext(); )
189: {
190: Map m = (Map) it.next();
191: for (Iterator it2 = m.entrySet().iterator(); it2.hasNext(); )
192: {
193: Map.Entry entry = (Map.Entry) it2.next();
194: OID oid = (OID) entry.getKey();
195: String value = (String) entry.getValue();
196: if (oid.equals (CN))
197: str.append ("CN");
198: else if (oid.equals (C))
199: str.append ("C");
200: else if (oid.equals (L))
201: str.append ("L");
202: else if (oid.equals (ST))
203: str.append ("ST");
204: else if (oid.equals (STREET))
205: str.append ("STREET");
206: else if (oid.equals (O))
207: str.append ("O");
208: else if (oid.equals (OU))
209: str.append ("OU");
210: else if (oid.equals (DC) && rfc2253)
211: str.append ("DC");
212: else if (oid.equals ("UID") && rfc2253)
213: str.append ("UID");
214: else
215: str.append (oid.toString());
216: str.append('=');
217: str.append(value);
218: if (it2.hasNext())
219: str.append('+');
220: }
221: if (it.hasNext())
222: str.append(',');
223: }
224: if (canon)
225: return str.toString().toUpperCase (Locale.US).toLowerCase (Locale.US);
226: return str.toString();
227: }
228:
229: public String toString()
230: {
231: return getName (RFC2253);
232: }
233:
234:
235:
236:
237: private void writeObject (ObjectOutputStream out) throws IOException
238: {
239: if (encoded != null)
240: encodeDer();
241: out.writeObject (encoded);
242: }
243:
244: private void readObject (ObjectInputStream in)
245: throws IOException, NotActiveException, ClassNotFoundException
246: {
247: byte[] buf = (byte[]) in.readObject();
248: parseDer (new ByteArrayInputStream (buf));
249: }
250:
251:
252:
253:
254: private int size()
255: {
256: return components.size();
257: }
258:
259: private String getComponent(OID oid, int rdn)
260: {
261: if (rdn >= size())
262: return null;
263: return (String) ((Map) components.get (rdn)).get (oid);
264: }
265:
266: private void encodeDer()
267: {
268: ArrayList name = new ArrayList(components.size());
269: for (Iterator it = components.iterator(); it.hasNext(); )
270: {
271: Map m = (Map) it.next();
272: if (m.isEmpty())
273: continue;
274: Set rdn = new HashSet();
275: for (Iterator it2 = m.entrySet().iterator(); it2.hasNext(); )
276: {
277: Map.Entry e = (Map.Entry) it.next();
278: ArrayList atav = new ArrayList(2);
279: atav.add(new DERValue(DER.OBJECT_IDENTIFIER, e.getKey()));
280: atav.add(new DERValue(DER.UTF8_STRING, e.getValue()));
281: rdn.add(new DERValue(DER.SEQUENCE|DER.CONSTRUCTED, atav));
282: }
283: name.add(new DERValue(DER.SET|DER.CONSTRUCTED, rdn));
284: }
285: DERValue val = new DERValue(DER.SEQUENCE|DER.CONSTRUCTED, name);
286: encoded = val.getEncoded();
287: }
288:
289: private int sep;
290:
291: private void parseString(String str) throws IOException
292: {
293: Reader in = new StringReader(str);
294: while (true)
295: {
296: String key = readAttributeType(in);
297: if (key == null)
298: break;
299: String value = readAttributeValue(in);
300: putComponent(key, value);
301: if (sep == ',')
302: newRelativeDistinguishedName();
303: }
304: }
305:
306: private String readAttributeType(Reader in) throws IOException
307: {
308: StringBuffer buf = new StringBuffer();
309: int ch;
310: while ((ch = in.read()) != '=')
311: {
312: if (ch == -1)
313: {
314: if (buf.length() > 0)
315: throw new EOFException();
316: return null;
317: }
318: if (ch > 127)
319: throw new IOException("Invalid char: " + (char) ch);
320: if (Character.isLetterOrDigit((char) ch) || ch == '-' || ch == '.')
321: buf.append((char) ch);
322: else
323: throw new IOException("Invalid char: " + (char) ch);
324: }
325: return buf.toString();
326: }
327:
328: private String readAttributeValue(Reader in) throws IOException
329: {
330: StringBuffer buf = new StringBuffer();
331: int ch = in.read();
332: if (ch == '#')
333: {
334: while (true)
335: {
336: ch = in.read();
337: if (('a' <= ch && ch <= 'f') || ('A' <= ch && ch <= 'F')
338: || Character.isDigit((char) ch))
339: buf.append((char) ch);
340: else if (ch == '+' || ch == ',')
341: {
342: sep = ch;
343: String hex = buf.toString();
344: return new String(toByteArray(hex));
345: }
346: else
347: throw new IOException("illegal character: " + (char) ch);
348: }
349: }
350: else if (ch == '"')
351: {
352: while (true)
353: {
354: ch = in.read();
355: if (ch == '"')
356: break;
357: else if (ch == '\\')
358: {
359: ch = in.read();
360: if (ch == -1)
361: throw new EOFException();
362: if (('a' <= ch && ch <= 'f') || ('A' <= ch && ch <= 'F')
363: || Character.isDigit((char) ch))
364: {
365: int i = Character.digit((char) ch, 16) << 4;
366: ch = in.read();
367: if (!(('a' <= ch && ch <= 'f') || ('A' <= ch && ch <= 'F')
368: || Character.isDigit((char) ch)))
369: throw new IOException("illegal hex char");
370: i |= Character.digit((char) ch, 16);
371: buf.append((char) i);
372: }
373: else
374: buf.append((char) ch);
375: }
376: else
377: buf.append((char) ch);
378: }
379: sep = in.read();
380: if (sep != '+' || sep != ',')
381: throw new IOException("illegal character: " + (char) ch);
382: return buf.toString();
383: }
384: else
385: {
386: while (true)
387: {
388: switch (ch)
389: {
390: case '+':
391: case ',':
392: sep = ch;
393: return buf.toString();
394: case '\\':
395: ch = in.read();
396: if (ch == -1)
397: throw new EOFException();
398: if (('a' <= ch && ch <= 'f') || ('A' <= ch && ch <= 'F')
399: || Character.isDigit((char) ch))
400: {
401: int i = Character.digit((char) ch, 16) << 4;
402: ch = in.read();
403: if (!(('a' <= ch && ch <= 'f') || ('A' <= ch && ch <= 'F')
404: || Character.isDigit((char) ch)))
405: throw new IOException("illegal hex char");
406: i |= Character.digit((char) ch, 16);
407: buf.append((char) i);
408: }
409: else
410: buf.append((char) ch);
411: break;
412: case '=':
413: case '<':
414: case '>':
415: case '#':
416: case ';':
417: throw new IOException("illegal character: " + (char) ch);
418: case -1:
419: throw new EOFException();
420: default:
421: buf.append((char) ch);
422: }
423: }
424: }
425: }
426:
427: private void parseDer (InputStream encoded) throws IOException
428: {
429: DERReader der = new DERReader (encoded);
430: DERValue name = der.read();
431: if (!name.isConstructed())
432: throw new IOException ("malformed Name");
433: this.encoded = name.getEncoded();
434: int len = 0;
435: while (len < name.getLength())
436: {
437: DERValue rdn = der.read();
438: if (!rdn.isConstructed())
439: throw new IOException ("badly formed RDNSequence");
440: int len2 = 0;
441: while (len2 < rdn.getLength())
442: {
443: DERValue atav = der.read();
444: if (!atav.isConstructed())
445: throw new IOException ("badly formed AttributeTypeAndValue");
446: DERValue val = der.read();
447: if (val.getTag() != DER.OBJECT_IDENTIFIER)
448: throw new IOException ("badly formed AttributeTypeAndValue");
449: OID oid = (OID) val.getValue();
450: val = der.read();
451: if (!(val.getValue() instanceof String))
452: throw new IOException ("badly formed AttributeTypeAndValue");
453: String value = (String) val.getValue();
454: putComponent(oid, value);
455: len2 += atav.getEncodedLength();
456: }
457: len += rdn.getEncodedLength();
458: if (len < name.getLength())
459: newRelativeDistinguishedName();
460: }
461: }
462:
463: private void newRelativeDistinguishedName()
464: {
465: currentRdn = new LinkedHashMap();
466: components.add(currentRdn);
467: }
468:
469: private void putComponent(OID oid, String value)
470: {
471: currentRdn.put(oid, value);
472: }
473:
474: private void putComponent(String name, String value)
475: {
476: name = name.trim().toLowerCase();
477: if (name.equals("cn"))
478: putComponent(CN, value);
479: else if (name.equals("c"))
480: putComponent(C, value);
481: else if (name.equals("l"))
482: putComponent(L, value);
483: else if (name.equals("street"))
484: putComponent(STREET, value);
485: else if (name.equals("st"))
486: putComponent(ST, value);
487: else if (name.equals("dc"))
488: putComponent(DC, value);
489: else if (name.equals("uid"))
490: putComponent(UID, value);
491: else
492: putComponent(new OID(name), value);
493: }
494:
495: private static String compressWS(String str)
496: {
497: StringBuffer buf = new StringBuffer();
498: char lastChar = 0;
499: for (int i = 0; i < str.length(); i++)
500: {
501: char c = str.charAt(i);
502: if (Character.isWhitespace(c))
503: {
504: if (!Character.isWhitespace(lastChar))
505: buf.append(' ');
506: }
507: else
508: buf.append(c);
509: lastChar = c;
510: }
511: return buf.toString().trim();
512: }
513:
514: private static byte[] toByteArray (String str)
515: {
516: int limit = str.length();
517: byte[] result = new byte[((limit + 1) / 2)];
518: int i = 0, j = 0;
519: if ((limit % 2) == 1)
520: {
521: result[j++] = (byte) Character.digit (str.charAt(i++), 16);
522: }
523: while (i < limit)
524: {
525: result[j ] = (byte) (Character.digit (str.charAt(i++), 16) << 4);
526: result[j++] |= (byte) Character.digit (str.charAt(i++), 16);
527: }
528: return result;
529: }
530: }