Package com.nimbusds.jose.crypto

Source Code of com.nimbusds.jose.crypto.HMAC

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
package com.nimbusds.jose.crypto;


import java.security.InvalidKeyException;
import java.security.NoSuchAlgorithmException;
import java.security.Provider;

import javax.crypto.Mac;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;

import net.jcip.annotations.ThreadSafe;

import com.nimbusds.jose.JOSEException;


/**
* Static methods for Hash-based Message Authentication Codes (HMAC). This
* class is thread-safe.
*
* @author Axel Nennker
* @author Vladimir Dzhuvinov
* @version $version$ (2014-01-28)
*/
@ThreadSafe
class HMAC {


  /**
   * Computes a Hash-based Message Authentication Code (HMAC) for the
   * specified (shared) secret and message.
   *
   * @param alg      The Java Cryptography Architecture (JCA) HMAC
   *                 algorithm name. Must not be {@code null}.
   * @param secret   The (shared) secret. Must not be {@code null}.
   * @param message  The message. Must not be {@code null}.
   * @param provider The JCA provider, or {@code null} to use the default
   *                 one.
   *
   * @return A MAC service instance.
   *
   * @throws JOSEException If the algorithm is not supported or the
   *                       MAC secret key is invalid.
   */
  public static byte[] compute(final String alg,
             final byte[] secret,
             final byte[] message,
             final Provider provider)
    throws JOSEException {

    return compute(new SecretKeySpec(secret, alg), message, provider);
  }


  /**
   * Computes a Hash-based Message Authentication Code (HMAC) for the
   * specified (shared) secret key and message.
   *
   * @param secretKey The (shared) secret key, with the appropriate HMAC
   *                  algorithm. Must not be {@code null}.
   * @param message   The message. Must not be {@code null}.
   * @param provider  The JCA provider, or {@code null} to use the
   *                  default one.
   *
   * @return A MAC service instance.
   *
   * @throws JOSEException If the algorithm is not supported or the MAC
   *                       secret key is invalid.
   */
  public static byte[] compute(final SecretKey secretKey,
             final byte[] message,
             final Provider provider)
    throws JOSEException {

    Mac mac;

    try {
      if (provider != null) {
        mac = Mac.getInstance(secretKey.getAlgorithm(), provider);
      } else {
        mac = Mac.getInstance(secretKey.getAlgorithm());
      }

      mac.init(secretKey);

    } catch (NoSuchAlgorithmException e) {

      throw new JOSEException("Unsupported HMAC algorithm: " + e.getMessage(), e);

    } catch (InvalidKeyException e) {

      throw new JOSEException("Invalid HMAC key: " + e.getMessage(), e);
    }

    mac.update(message);

    return mac.doFinal();
  }
}
TOP

Related Classes of com.nimbusds.jose.crypto.HMAC

  • javax.crypto.spec.SecretKeySpec
  • javax.crypto.Mac
  • com.nimbusds.jose.JOSEException
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.