import java.io.InputStream;
import java.io.OutputStream;
import java.io.UnsupportedEncodingException;
-import java.security.InvalidAlgorithmParameterException;
import java.security.InvalidKeyException;
-import java.security.NoSuchAlgorithmException;
import javax.crypto.BadPaddingException;
import javax.crypto.Cipher;
import javax.crypto.CipherInputStream;
import javax.crypto.CipherOutputStream;
import javax.crypto.IllegalBlockSizeException;
-import javax.crypto.NoSuchPaddingException;
import javax.crypto.SecretKey;
import javax.crypto.spec.IvParameterSpec;
import javax.crypto.spec.SecretKeySpec;
import javax.net.ssl.SSLException;
+import be.nikiroo.utils.streams.Base64InputStream;
+import be.nikiroo.utils.streams.Base64OutputStream;
+
/**
* Small utility class to do AES encryption/decryption.
* <p>
* <li>The streams are independent and thus parallel</li>
* </ul>
* <p>
- * Do not assume it is actually secure until you checked the code...
+ * Do not assume it is actually secure, it is actually not.
+ * <p>
+ * It just here to offer a more-or-less protected exchange of data because
+ * anonymous and self-signed certificates backed SSL is against Google wishes
+ * (so, don't even try, they own Internet).
*
* @author niki
*/
public class CryptUtils {
- static private final String AES_NAME = "AES/CFB8/NoPadding";
+ static private final String AES_NAME = "AES/CFB128/NoPadding";
private Cipher ecipher;
private Cipher dcipher;
*
* @param in
* the {@link InputStream} to wrap
- * @param zip
- * TRUE to also uncompress the data from a GZIP format; take care
- * about this flag, as it could easily cause errors in the
- * returned content or an {@link IOException}
*
* @return the auto-encode {@link InputStream}
*
* @throws IOException
* in case of I/O error
*/
- public InputStream encrypt64(InputStream in, boolean zip)
- throws IOException {
- return StringUtils.base64(encrypt(in), zip, false);
+ public InputStream encrypt64(InputStream in) throws IOException {
+ return new Base64InputStream(encrypt(in), true);
}
/**
*
* @param out
* the {@link OutputStream} to wrap
- * @param zip
- * TRUE to also uncompress the data from a GZIP format; take care
- * about this flag, as it could easily cause errors in the
- * returned content or an {@link IOException}
*
* @return the auto-encode {@link OutputStream}
*
* @throws IOException
* in case of I/O error
*/
- public OutputStream encrypt64(OutputStream out, boolean zip)
- throws IOException {
- return encrypt(StringUtils.base64(out, zip, false));
+ public OutputStream encrypt64(OutputStream out) throws IOException {
+ return encrypt(new Base64OutputStream(out, true));
}
/**
*
* @param in
* the {@link InputStream} to wrap
- * @param zip
- * TRUE to also uncompress the data from a GZIP format; take care
- * about this flag, as it could easily cause errors in the
- * returned content or an {@link IOException}
*
* @return the auto-decode {@link InputStream}
*
* @throws IOException
* in case of I/O error
*/
- public InputStream decrypt64(InputStream in, boolean zip)
- throws IOException {
- return decrypt(StringUtils.unbase64(in, zip));
+ public InputStream decrypt64(InputStream in) throws IOException {
+ return decrypt(new Base64InputStream(in, false));
}
/**
*
* @param out
* the {@link OutputStream} to wrap
- * @param zip
- * TRUE to also uncompress the data from a GZIP format; take care
- * about this flag, as it could easily cause errors in the
- * returned content or an {@link IOException}
*
* @return the auto-decode {@link OutputStream}
*
* @throws IOException
* in case of I/O error
*/
- public OutputStream decrypt64(OutputStream out, boolean zip)
- throws IOException {
- return StringUtils.unbase64(decrypt(out), zip);
+ public OutputStream decrypt64(OutputStream out) throws IOException {
+ return new Base64OutputStream(decrypt(out), false);
}
/**
Cipher cipher = Cipher.getInstance(AES_NAME);
cipher.init(mode, key, ivspec);
return cipher;
- } catch (NoSuchAlgorithmException e) {
- // Every implementation of the Java platform is required to support
- // this standard Cipher transformation with 128 bits keys
- e.printStackTrace();
- } catch (NoSuchPaddingException e) {
- // Every implementation of the Java platform is required to support
- // this standard Cipher transformation with 128 bits keys
- e.printStackTrace();
- } catch (InvalidKeyException e) {
- // Every implementation of the Java platform is required to support
- // this standard Cipher transformation with 128 bits keys
- e.printStackTrace();
- } catch (InvalidAlgorithmParameterException e) {
- // Woops?
+ } catch (Exception e) {
e.printStackTrace();
+ throw new RuntimeException(
+ "Cannot initialize encryption sub-system", e);
}
-
- return null;
}
/**
* it was)
*/
public byte[] encrypt(String data) throws SSLException {
- try {
- return encrypt(data.getBytes("UTF8"));
- } catch (UnsupportedEncodingException e) {
- // UTF-8 is required in all confirm JVMs
- e.printStackTrace();
- return null;
- }
+ return encrypt(StringUtils.getBytes(data));
}
/**
* in case of I/O error (i.e., the data is not what you assumed
* it was)
*/
- public String encrypt64(String data, boolean zip) throws SSLException {
- try {
- return encrypt64(data.getBytes("UTF8"), zip);
- } catch (UnsupportedEncodingException e) {
- // UTF-8 is required in all confirm JVMs
- e.printStackTrace();
- return null;
- }
+ public String encrypt64(String data) throws SSLException {
+ return encrypt64(StringUtils.getBytes(data));
}
/**
*
* @param data
* the data to encrypt
- * @param zip
- * TRUE to also compress the data in GZIP format; remember that
- * compressed and not-compressed content are different; you need
- * to know which is which when decoding
*
* @return the encrypted data, encoded in Base64
*
* in case of I/O error (i.e., the data is not what you assumed
* it was)
*/
- public String encrypt64(byte[] data, boolean zip) throws SSLException {
+ public String encrypt64(byte[] data) throws SSLException {
try {
- return StringUtils.base64(encrypt(data), zip);
+ return StringUtils.base64(encrypt(data));
} catch (IOException e) {
// not exactly true, but we consider here that this error is a crypt
// error, not a normal I/O error
* @throws SSLException
* in case of I/O error
*/
- public byte[] decrypt64(String data, boolean zip) throws SSLException {
+ public byte[] decrypt64(String data) throws SSLException {
try {
- return decrypt(StringUtils.unbase64(data, zip));
+ return decrypt(StringUtils.unbase64(data));
} catch (IOException e) {
// not exactly true, but we consider here that this error is a crypt
// error, not a normal I/O error
* @throws SSLException
* in case of I/O error
*/
- public String decrypt64s(String data, boolean zip) throws SSLException {
+ public String decrypt64s(String data) throws SSLException {
try {
- return new String(decrypt(StringUtils.unbase64(data, zip)), "UTF-8");
+ return new String(decrypt(StringUtils.unbase64(data)), "UTF-8");
} catch (UnsupportedEncodingException e) {
// UTF-8 is required in all confirm JVMs
e.printStackTrace();
git://git.nikiroo.be / fanfix.git / blobdiff