Examples of CipherProvider

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
      muckLength = AES_IV_LENGTH;   

    byte[] muck = getMuckFromBootPassword(bootPassword, muckLength);
    SecretKey key = generateKey(muck);
    byte[] IV = generateIV(muck);
                CipherProvider tmpCipherProvider = createNewCipher(ENCRYPT,key,IV);
   
    // store the actual secretKey.length before any possible padding 
    encodedKeyLength = secretKey.length;

    // for the secretKey to be encrypted, first ensure that it is aligned to the block size of the
    // encryption algorithm by padding bytes appropriately if needed
                secretKey = padKey(secretKey,tmpCipherProvider.getEncryptionBlockSize());

                byte[] result = new byte[secretKey.length];

    // encrypt the secretKey using the key generated of muck from  boot password and the generated IV 
    tmpCipherProvider.encrypt(secretKey, 0, secretKey.length, result, 0);

    return org.apache.derby.iapi.util.StringUtil.toHexString(result, 0, result.length);

  }
View Full Code Here

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
      {
        getSecureRandom().nextBytes(data);
        // get the checksum
        byte[] checksum = getMD5Checksum(data);

        CipherProvider tmpCipherProvider = createNewCipher(ENCRYPT,mainSecretKey,mainIV);
        tmpCipherProvider.encrypt(data, 0, data.length, data, 0);
        // openFileForWrite
        verifyKeyFile = privAccessFile(sf,Attribute.CRYPTO_EXTERNAL_KEY_VERIFY_FILE,"rw");
        // write the checksum length as int, and then the checksum and then the encrypted data
        verifyKeyFile.writeInt(checksum.length);
        verifyKeyFile.write(checksum);
        verifyKeyFile.write(data);
        verifyKeyFile.sync(true);
      }
      else
      {
        // Read from verifyKey.dat as an InputStream. This allows for
                // reading the information from verifyKey.dat successfully even when using the jar
                // subprotocol to boot derby. (DERBY-1373)
        verifyKeyInputStream = privAccessGetInputStream(sf,Attribute.CRYPTO_EXTERNAL_KEY_VERIFY_FILE);
                DataInputStream dis = new DataInputStream(verifyKeyInputStream);
        // then read the checksum length
        int checksumLen = dis.readInt();

        byte[] originalChecksum = new byte[checksumLen];
        dis.readFully(originalChecksum);

        dis.readFully(data);

        // decrypt data with key
        CipherProvider tmpCipherProvider = createNewCipher(DECRYPT,mainSecretKey,mainIV);
        tmpCipherProvider.decrypt(data, 0, data.length, data, 0);

        byte[] verifyChecksum = getMD5Checksum(data);

        if(!MessageDigest.isEqual(originalChecksum,verifyChecksum))
        {
View Full Code Here

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
      muckLength = AES_IV_LENGTH;   

    byte[] muck = getMuckFromBootPassword(bootPassword, muckLength);
    SecretKey key = generateKey(muck);
    byte[] IV = generateIV(muck);
                CipherProvider tmpCipherProvider = createNewCipher(ENCRYPT,key,IV);
   
    // store the actual secretKey.length before any possible padding 
    encodedKeyLength = secretKey.length;

    // for the secretKey to be encrypted, first ensure that it is aligned to the block size of the
    // encryption algorithm by padding bytes appropriately if needed
                secretKey = padKey(secretKey,tmpCipherProvider.getEncryptionBlockSize());

                byte[] result = new byte[secretKey.length];

    // encrypt the secretKey using the key generated of muck from  boot password and the generated IV 
    tmpCipherProvider.encrypt(secretKey, 0, secretKey.length, result, 0);

    return org.apache.derby.iapi.util.StringUtil.toHexString(result, 0, result.length);

  }
View Full Code Here

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
      {
        getSecureRandom().nextBytes(data);
        // get the checksum
        byte[] checksum = getMD5Checksum(data);

        CipherProvider tmpCipherProvider = createNewCipher(ENCRYPT,mainSecretKey,mainIV);
        tmpCipherProvider.encrypt(data, 0, data.length, data, 0);
        // openFileForWrite
        verifyKeyFile = privAccessFile(sf,Attribute.CRYPTO_EXTERNAL_KEY_VERIFY_FILE,"rw");
        // write the checksum length as int, and then the checksum and then the encrypted data
        verifyKeyFile.writeInt(checksum.length);
        verifyKeyFile.write(checksum);
        verifyKeyFile.write(data);
        verifyKeyFile.sync(true);
      }
      else
      {
        // Read from verifyKey.dat as an InputStream. This allows for
                // reading the information from verifyKey.dat successfully even when using the jar
                // subprotocol to boot derby. (DERBY-1373)
        verifyKeyInputStream = privAccessGetInputStream(sf,Attribute.CRYPTO_EXTERNAL_KEY_VERIFY_FILE);
                DataInputStream dis = new DataInputStream(verifyKeyInputStream);
        // then read the checksum length
        int checksumLen = dis.readInt();

        byte[] originalChecksum = new byte[checksumLen];
        dis.readFully(originalChecksum);

        dis.readFully(data);

        // decrypt data with key
        CipherProvider tmpCipherProvider = createNewCipher(DECRYPT,mainSecretKey,mainIV);
        tmpCipherProvider.decrypt(data, 0, data.length, data, 0);

        byte[] verifyChecksum = getMD5Checksum(data);

        if(!MessageDigest.isEqual(originalChecksum,verifyChecksum))
        {
View Full Code Here

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
      muckLength = AES_IV_LENGTH;   

    byte[] muck = getMuckFromBootPassword(bootPassword, muckLength);
    SecretKey key = generateKey(muck);
    byte[] IV = generateIV(muck);
                CipherProvider tmpCipherProvider = createNewCipher(ENCRYPT,key,IV);
   
    // store the actual secretKey.length before any possible padding 
    encodedKeyLength = secretKey.length;

    // for the secretKey to be encrypted, first ensure that it is aligned to the block size of the
    // encryption algorithm by padding bytes appropriately if needed
                secretKey = padKey(secretKey,tmpCipherProvider.getEncryptionBlockSize());

                byte[] result = new byte[secretKey.length];

    // encrypt the secretKey using the key generated of muck from  boot password and the generated IV 
    tmpCipherProvider.encrypt(secretKey, 0, secretKey.length, result, 0);

    String hexOutput = org.apache.derby.iapi.util.StringUtil.toHexString(result, 0, result.length);

        return new EncryptedKeyResult( hexOutput, secretKey );
View Full Code Here

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

808
809
810
811
812
813
814
815
816
817
818
    { throw StandardException.newException(SQLState.WRONG_BOOT_PASSWORD); }

        // DERBY-5622:
        // if we survive those two quick checks, verify that the generated key is still correct
        // by using it to decrypt something encrypted by the original generated key
        CipherProvider  newDecrypter = createNewCipher
            ( DECRYPT, generateKey( generatedKey ), IV );
        vetCipherProviders( newDecrypter, verify, SQLState.WRONG_BOOT_PASSWORD );
       
    // Make the new key.  The generated key is unchanged, only the
    // encrypted key is changed.
View Full Code Here

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
      {
        getSecureRandom().nextBytes(data);
        // get the checksum
        byte[] checksum = getMD5Checksum(data);

        CipherProvider tmpCipherProvider = createNewCipher(ENCRYPT,mainSecretKey,mainIV);
        tmpCipherProvider.encrypt(data, 0, data.length, data, 0);
        // openFileForWrite
        verifyKeyFile = privAccessFile(sf,Attribute.CRYPTO_EXTERNAL_KEY_VERIFY_FILE,"rw");
        // write the checksum length as int, and then the checksum and then the encrypted data
        verifyKeyFile.writeInt(checksum.length);
        verifyKeyFile.write(checksum);
        verifyKeyFile.write(data);
                verifyKeyFile.sync();
      }
      else
      {
        // Read from verifyKey.dat as an InputStream. This allows for
                // reading the information from verifyKey.dat successfully even when using the jar
                // subprotocol to boot derby. (DERBY-1373)
        verifyKeyInputStream = privAccessGetInputStream(sf,Attribute.CRYPTO_EXTERNAL_KEY_VERIFY_FILE);
                DataInputStream dis = new DataInputStream(verifyKeyInputStream);
        // then read the checksum length
        int checksumLen = dis.readInt();

        byte[] originalChecksum = new byte[checksumLen];
        dis.readFully(originalChecksum);

        dis.readFully(data);

        // decrypt data with key
        CipherProvider tmpCipherProvider = createNewCipher(DECRYPT,mainSecretKey,mainIV);
        tmpCipherProvider.decrypt(data, 0, data.length, data, 0);

        byte[] verifyChecksum = getMD5Checksum(data);

        if(!MessageDigest.isEqual(originalChecksum,verifyChecksum))
        {
View Full Code Here

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
      muckLength = AES_IV_LENGTH;   

    byte[] muck = getMuckFromBootPassword(bootPassword, muckLength);
    SecretKey key = generateKey(muck);
    byte[] IV = generateIV(muck);
                CipherProvider tmpCipherProvider = createNewCipher(ENCRYPT,key,IV);
   
    // store the actual secretKey.length before any possible padding 
    encodedKeyLength = secretKey.length;

    // for the secretKey to be encrypted, first ensure that it is aligned to the block size of the
    // encryption algorithm by padding bytes appropriately if needed
                secretKey = padKey(secretKey,tmpCipherProvider.getEncryptionBlockSize());

                byte[] result = new byte[secretKey.length];

    // encrypt the secretKey using the key generated of muck from  boot password and the generated IV 
    tmpCipherProvider.encrypt(secretKey, 0, secretKey.length, result, 0);

    String hexOutput = org.apache.derby.iapi.util.StringUtil.toHexString(result, 0, result.length);

        return new EncryptedKeyResult( hexOutput, secretKey );
View Full Code Here

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
      {
        getSecureRandom().nextBytes(data);
        // get the checksum
        byte[] checksum = getMD5Checksum(data);

        CipherProvider tmpCipherProvider = createNewCipher(ENCRYPT,mainSecretKey,mainIV);
        tmpCipherProvider.encrypt(data, 0, data.length, data, 0);
        // openFileForWrite
        verifyKeyFile = privAccessFile(sf,Attribute.CRYPTO_EXTERNAL_KEY_VERIFY_FILE,"rw");
        // write the checksum length as int, and then the checksum and then the encrypted data
        verifyKeyFile.writeInt(checksum.length);
        verifyKeyFile.write(checksum);
        verifyKeyFile.write(data);
        verifyKeyFile.sync(true);
      }
      else
      {
        // Read from verifyKey.dat as an InputStream. This allows for
                // reading the information from verifyKey.dat successfully even when using the jar
                // subprotocol to boot derby. (DERBY-1373)
        verifyKeyInputStream = privAccessGetInputStream(sf,Attribute.CRYPTO_EXTERNAL_KEY_VERIFY_FILE);
                DataInputStream dis = new DataInputStream(verifyKeyInputStream);
        // then read the checksum length
        int checksumLen = dis.readInt();

        byte[] originalChecksum = new byte[checksumLen];
        dis.readFully(originalChecksum);

        dis.readFully(data);

        // decrypt data with key
        CipherProvider tmpCipherProvider = createNewCipher(DECRYPT,mainSecretKey,mainIV);
        tmpCipherProvider.decrypt(data, 0, data.length, data, 0);

        byte[] verifyChecksum = getMD5Checksum(data);

        if(!MessageDigest.isEqual(originalChecksum,verifyChecksum))
        {
View Full Code Here

Examples of org.apache.derby.iapi.services.crypto.CipherProvider

199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
      muckLength = AES_IV_LENGTH;   

    byte[] muck = getMuckFromBootPassword(bootPassword, muckLength);
    SecretKey key = generateKey(muck);
    byte[] IV = generateIV(muck);
                CipherProvider tmpCipherProvider = createNewCipher(ENCRYPT,key,IV);
   
    // store the actual secretKey.length before any possible padding 
    encodedKeyLength = secretKey.length;

    // for the secretKey to be encrypted, first ensure that it is aligned to the block size of the
    // encryption algorithm by padding bytes appropriately if needed
                secretKey = padKey(secretKey,tmpCipherProvider.getEncryptionBlockSize());

                byte[] result = new byte[secretKey.length];

    // encrypt the secretKey using the key generated of muck from  boot password and the generated IV 
    tmpCipherProvider.encrypt(secretKey, 0, secretKey.length, result, 0);

    String hexOutput = org.apache.derby.iapi.util.StringUtil.toHexString(result, 0, result.length);

        return new EncryptedKeyResult( hexOutput, secretKey );
View Full Code Here
TOP
Copyright © 2018 www.massapi.com. All rights reserved.
All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.