Home | History | Annotate | Download | only in conscrypt 
      1 /*
      2  * Copyright (C) 2010 The Android Open Source Project
      3  *
      4  * Licensed under the Apache License, Version 2.0 (the "License");
      5  * you may not use this file except in compliance with the License.
      6  * You may obtain a copy of the License at
      7  *
      8  *      http://www.apache.org/licenses/LICENSE-2.0
      9  *
     10  * Unless required by applicable law or agreed to in writing, software
     11  * distributed under the License is distributed on an "AS IS" BASIS,
     12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
     13  * See the License for the specific language governing permissions and
     14  * limitations under the License.
     15  */
     16 
     17 package org.conscrypt;
     18 
     19 import java.security.Provider;
     20 
     21 /**
     22  * Provider that goes through OpenSSL for operations.
     23  * <p>
     24  * Every algorithm should have its IANA assigned OID as an alias. See the following URLs for each type:
     25  * <ul>
     26  * <li><a href="http://www.iana.org/assignments/hash-function-text-names/hash-function-text-names.xml">Hash functions</a></li>
     27  * <li><a href="http://www.iana.org/assignments/dssc/dssc.xml">Signature algorithms</a></li>
     28  * <li><a href="http://csrc.nist.gov/groups/ST/crypto_apps_infra/csor/algorithms.html">NIST cryptographic algorithms</a></li>
     29  * </ul>
     30  */
     31 public final class OpenSSLProvider extends Provider {
     32     private static final long serialVersionUID = 2996752495318905136L;
     33 
     34     public static final String PROVIDER_NAME = "AndroidOpenSSL";
     35 
     36     public OpenSSLProvider() {
     37         this(PROVIDER_NAME);
     38     }
     39 
     40     public OpenSSLProvider(String providerName) {
     41         super(providerName, 1.0, "Android's OpenSSL-backed security provider");
     42 
     43         // Make sure the platform is initialized.
     44         Platform.setup();
     45 
     46         final String prefix = getClass().getPackage().getName() + ".";
     47 
     48         /* === SSL Contexts === */
     49         final String classOpenSSLContextImpl = prefix + "OpenSSLContextImpl";
     50         put("SSLContext.SSL", classOpenSSLContextImpl);
     51         put("SSLContext.SSLv3", classOpenSSLContextImpl);
     52         put("SSLContext.TLS", classOpenSSLContextImpl);
     53         put("SSLContext.TLSv1", classOpenSSLContextImpl);
     54         put("SSLContext.TLSv1.1", classOpenSSLContextImpl);
     55         put("SSLContext.TLSv1.2", classOpenSSLContextImpl);
     56         put("SSLContext.Default", prefix + "DefaultSSLContextImpl");
     57 
     58         /* === Message Digests === */
     59         put("MessageDigest.SHA-1", prefix + "OpenSSLMessageDigestJDK$SHA1");
     60         put("Alg.Alias.MessageDigest.SHA1", "SHA-1");
     61         put("Alg.Alias.MessageDigest.SHA", "SHA-1");
     62         put("Alg.Alias.MessageDigest.1.3.14.3.2.26", "SHA-1");
     63 
     64         put("MessageDigest.SHA-224", prefix + "OpenSSLMessageDigestJDK$SHA224");
     65         put("Alg.Alias.MessageDigest.SHA224", "SHA-224");
     66         put("Alg.Alias.MessageDigest.2.16.840.1.101.3.4.2.4", "SHA-224");
     67 
     68         put("MessageDigest.SHA-256", prefix + "OpenSSLMessageDigestJDK$SHA256");
     69         put("Alg.Alias.MessageDigest.SHA256", "SHA-256");
     70         put("Alg.Alias.MessageDigest.2.16.840.1.101.3.4.2.1", "SHA-256");
     71 
     72         put("MessageDigest.SHA-384", prefix + "OpenSSLMessageDigestJDK$SHA384");
     73         put("Alg.Alias.MessageDigest.SHA384", "SHA-384");
     74         put("Alg.Alias.MessageDigest.2.16.840.1.101.3.4.2.2", "SHA-384");
     75 
     76         put("MessageDigest.SHA-512", prefix + "OpenSSLMessageDigestJDK$SHA512");
     77         put("Alg.Alias.MessageDigest.SHA512", "SHA-512");
     78         put("Alg.Alias.MessageDigest.2.16.840.1.101.3.4.2.3", "SHA-512");
     79 
     80         // iso(1) member-body(2) US(840) rsadsi(113549) digestAlgorithm(2) md5(5)
     81         put("MessageDigest.MD5", prefix + "OpenSSLMessageDigestJDK$MD5");
     82         put("Alg.Alias.MessageDigest.1.2.840.113549.2.5", "MD5");
     83 
     84         /* == KeyPairGenerators == */
     85         put("KeyPairGenerator.RSA", prefix + "OpenSSLRSAKeyPairGenerator");
     86         put("Alg.Alias.KeyPairGenerator.1.2.840.113549.1.1.1", "RSA");
     87 
     88         put("KeyPairGenerator.DH", prefix + "OpenSSLDHKeyPairGenerator");
     89         put("Alg.Alias.KeyPairGenerator.1.2.840.113549.1.3.1", "DH");
     90 
     91         put("KeyPairGenerator.DSA", prefix + "OpenSSLDSAKeyPairGenerator");
     92 
     93         put("KeyPairGenerator.EC", prefix + "OpenSSLECKeyPairGenerator");
     94 
     95         /* == KeyFactory == */
     96         put("KeyFactory.RSA", prefix + "OpenSSLRSAKeyFactory");
     97         put("Alg.Alias.KeyFactory.1.2.840.113549.1.1.1", "RSA");
     98 
     99         put("KeyFactory.DH", prefix + "OpenSSLDHKeyFactory");
    100         put("Alg.Alias.KeyFactory.1.2.840.113549.1.3.1", "DH");
    101 
    102         put("KeyFactory.DSA", prefix + "OpenSSLDSAKeyFactory");
    103 
    104         put("KeyFactory.EC", prefix + "OpenSSLECKeyFactory");
    105 
    106         /* == KeyAgreement == */
    107         put("KeyAgreement.ECDH", prefix + "OpenSSLECDHKeyAgreement");
    108 
    109         /* == Signatures == */
    110         put("Signature.MD5WithRSA", prefix + "OpenSSLSignature$MD5RSA");
    111         put("Alg.Alias.Signature.MD5WithRSAEncryption", "MD5WithRSA");
    112         put("Alg.Alias.Signature.MD5/RSA", "MD5WithRSA");
    113         put("Alg.Alias.Signature.1.2.840.113549.1.1.4", "MD5WithRSA");
    114         put("Alg.Alias.Signature.1.2.840.113549.2.5with1.2.840.113549.1.1.1", "MD5WithRSA");
    115 
    116         put("Signature.SHA1WithRSA", prefix + "OpenSSLSignature$SHA1RSA");
    117         put("Alg.Alias.Signature.SHA1WithRSAEncryption", "SHA1WithRSA");
    118         put("Alg.Alias.Signature.SHA1/RSA", "SHA1WithRSA");
    119         put("Alg.Alias.Signature.SHA-1/RSA", "SHA1WithRSA");
    120         put("Alg.Alias.Signature.1.2.840.113549.1.1.5", "SHA1WithRSA");
    121         put("Alg.Alias.Signature.1.3.14.3.2.26with1.2.840.113549.1.1.1", "SHA1WithRSA");
    122         put("Alg.Alias.Signature.1.3.14.3.2.26with1.2.840.113549.1.1.5", "SHA1WithRSA");
    123         put("Alg.Alias.Signature.1.3.14.3.2.29", "SHA1WithRSA");
    124 
    125         put("Signature.SHA224WithRSA", prefix + "OpenSSLSignature$SHA224RSA");
    126         put("Alg.Alias.Signature.SHA224WithRSAEncryption", "SHA224WithRSA");
    127         put("Alg.Alias.Signature.1.2.840.113549.1.1.11", "SHA224WithRSA");
    128         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.4with1.2.840.113549.1.1.1",
    129                 "SHA224WithRSA");
    130         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.4with1.2.840.113549.1.1.11",
    131                 "SHA224WithRSA");
    132 
    133         put("Signature.SHA256WithRSA", prefix + "OpenSSLSignature$SHA256RSA");
    134         put("Alg.Alias.Signature.SHA256WithRSAEncryption", "SHA256WithRSA");
    135         put("Alg.Alias.Signature.1.2.840.113549.1.1.11", "SHA256WithRSA");
    136         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.1with1.2.840.113549.1.1.1",
    137                 "SHA256WithRSA");
    138         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.1with1.2.840.113549.1.1.11",
    139                 "SHA256WithRSA");
    140 
    141         put("Signature.SHA384WithRSA", prefix + "OpenSSLSignature$SHA384RSA");
    142         put("Alg.Alias.Signature.SHA384WithRSAEncryption", "SHA384WithRSA");
    143         put("Alg.Alias.Signature.1.2.840.113549.1.1.12", "SHA384WithRSA");
    144         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.2with1.2.840.113549.1.1.1",
    145                 "SHA384WithRSA");
    146 
    147         put("Signature.SHA512WithRSA", prefix + "OpenSSLSignature$SHA512RSA");
    148         put("Alg.Alias.Signature.SHA512WithRSAEncryption", "SHA512WithRSA");
    149         put("Alg.Alias.Signature.1.2.840.113549.1.1.13", "SHA512WithRSA");
    150         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.3with1.2.840.113549.1.1.1",
    151                 "SHA512WithRSA");
    152 
    153         put("Signature.SHA1withDSA", prefix + "OpenSSLSignature$SHA1DSA");
    154         put("Alg.Alias.Signature.SHA/DSA", "SHA1withDSA");
    155         put("Alg.Alias.Signature.DSA", "SHA1withDSA");
    156         put("Alg.Alias.Signature.1.3.14.3.2.26with1.2.840.10040.4.1", "SHA1withDSA");
    157         put("Alg.Alias.Signature.1.3.14.3.2.26with1.2.840.10040.4.3", "SHA1withDSA");
    158         put("Alg.Alias.Signature.DSAWithSHA1", "SHA1withDSA");
    159         put("Alg.Alias.Signature.1.2.840.10040.4.3", "SHA1withDSA");
    160 
    161         put("Signature.NONEwithRSA", prefix + "OpenSSLSignatureRawRSA");
    162 
    163         put("Signature.ECDSA", prefix + "OpenSSLSignature$SHA1ECDSA");
    164         put("Alg.Alias.Signature.SHA1withECDSA", "ECDSA");
    165         put("Alg.Alias.Signature.ECDSAwithSHA1", "ECDSA");
    166         // iso(1) member-body(2) us(840) ansi-x962(10045) signatures(4) ecdsa-with-SHA1(1)
    167         put("Alg.Alias.Signature.1.2.840.10045.4.1", "ECDSA");
    168         put("Alg.Alias.Signature.1.3.14.3.2.26with1.2.840.10045.2.1", "ECDSA");
    169 
    170         // iso(1) member-body(2) us(840) ansi-x962(10045) signatures(4) ecdsa-with-SHA2(3)
    171         put("Signature.SHA224withECDSA", prefix + "OpenSSLSignature$SHA224ECDSA");
    172         // ecdsa-with-SHA224(1)
    173         put("Alg.Alias.Signature.1.2.840.10045.4.3.1", "SHA224withECDSA");
    174         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.4with1.2.840.10045.2.1", "SHA224withECDSA");
    175 
    176         // iso(1) member-body(2) us(840) ansi-x962(10045) signatures(4) ecdsa-with-SHA2(3)
    177         put("Signature.SHA256withECDSA", prefix + "OpenSSLSignature$SHA256ECDSA");
    178         // ecdsa-with-SHA256(2)
    179         put("Alg.Alias.Signature.1.2.840.10045.4.3.2", "SHA256withECDSA");
    180         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.1with1.2.840.10045.2.1", "SHA256withECDSA");
    181 
    182         put("Signature.SHA384withECDSA", prefix + "OpenSSLSignature$SHA384ECDSA");
    183         // ecdsa-with-SHA384(3)
    184         put("Alg.Alias.Signature.1.2.840.10045.4.3.3", "SHA384withECDSA");
    185         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.2with1.2.840.10045.2.1", "SHA384withECDSA");
    186 
    187         put("Signature.SHA512withECDSA", prefix + "OpenSSLSignature$SHA512ECDSA");
    188         // ecdsa-with-SHA512(4)
    189         put("Alg.Alias.Signature.1.2.840.10045.4.3.4", "SHA512withECDSA");
    190         put("Alg.Alias.Signature.2.16.840.1.101.3.4.2.3with1.2.840.10045.2.1", "SHA512withECDSA");
    191 
    192         /* === SecureRandom === */
    193         /*
    194          * We have to specify SHA1PRNG because various documentation mentions
    195          * that algorithm by name instead of just recommending calling
    196          * "new SecureRandom()"
    197          */
    198         put("SecureRandom.SHA1PRNG", prefix + "OpenSSLRandom");
    199         put("SecureRandom.SHA1PRNG ImplementedIn", "Software");
    200 
    201         /* === Cipher === */
    202         put("Cipher.RSA/ECB/NoPadding", prefix + "OpenSSLCipherRSA$Raw");
    203         put("Alg.Alias.Cipher.RSA/None/NoPadding", "RSA/ECB/NoPadding");
    204         put("Cipher.RSA/ECB/PKCS1Padding", prefix + "OpenSSLCipherRSA$PKCS1");
    205         put("Alg.Alias.Cipher.RSA/None/PKCS1Padding", "RSA/ECB/PKCS1Padding");
    206 
    207         /*
    208          * OpenSSL only supports a subset of modes, so we'll name them
    209          * explicitly here.
    210          *
    211          * Moreover, OpenSSL only supports PKCS#7 padding. PKCS#5 padding
    212          * is also supported because it's a special case of PKCS#7 for 64-bit
    213          * blocks. PKCS#5 technically supports only 64-bit blocks and won't
    214          * produce the same result as PKCS#7 for blocks that are not 64 bits
    215          * long. However, everybody assumes PKCS#7 when they say PKCS#5. For
    216          * example, lots of code uses PKCS#5 with AES whose blocks are longer
    217          * than 64 bits. We solve this confusion by making PKCS7Padding an
    218          * alias for PKCS5Padding.
    219          */
    220         put("Cipher.AES/ECB/NoPadding", prefix + "OpenSSLCipher$AES$ECB$NoPadding");
    221         put("Cipher.AES/ECB/PKCS5Padding", prefix + "OpenSSLCipher$AES$ECB$PKCS5Padding");
    222         put("Alg.Alias.Cipher.AES/ECB/PKCS7Padding", "AES/ECB/PKCS5Padding");
    223         put("Cipher.AES/CBC/NoPadding", prefix + "OpenSSLCipher$AES$CBC$NoPadding");
    224         put("Cipher.AES/CBC/PKCS5Padding", prefix + "OpenSSLCipher$AES$CBC$PKCS5Padding");
    225         put("Alg.Alias.Cipher.AES/CBC/PKCS7Padding", "AES/CBC/PKCS5Padding");
    226         put("Cipher.AES/CFB/NoPadding", prefix + "OpenSSLCipher$AES$CFB");
    227         put("Cipher.AES/CTR/NoPadding", prefix + "OpenSSLCipher$AES$CTR");
    228         put("Cipher.AES/OFB/NoPadding", prefix + "OpenSSLCipher$AES$OFB");
    229 
    230         put("Cipher.DESEDE/ECB/NoPadding", prefix + "OpenSSLCipher$DESEDE$ECB$NoPadding");
    231         put("Cipher.DESEDE/ECB/PKCS5Padding", prefix + "OpenSSLCipher$DESEDE$ECB$PKCS5Padding");
    232         put("Alg.Alias.Cipher.DESEDE/ECB/PKCS7Padding", "DESEDE/ECB/PKCS5Padding");
    233         put("Cipher.DESEDE/CBC/NoPadding", prefix + "OpenSSLCipher$DESEDE$CBC$NoPadding");
    234         put("Cipher.DESEDE/CBC/PKCS5Padding", prefix + "OpenSSLCipher$DESEDE$CBC$PKCS5Padding");
    235         put("Alg.Alias.Cipher.DESEDE/CBC/PKCS7Padding", "DESEDE/CBC/PKCS5Padding");
    236         put("Cipher.DESEDE/CFB/NoPadding", prefix + "OpenSSLCipher$DESEDE$CFB");
    237         put("Cipher.DESEDE/OFB/NoPadding", prefix + "OpenSSLCipher$DESEDE$OFB");
    238 
    239         put("Cipher.ARC4", prefix + "OpenSSLCipher$ARC4");
    240 
    241         /* === Mac === */
    242 
    243         put("Mac.HmacMD5", prefix + "OpenSSLMac$HmacMD5");
    244 
    245         // PKCS#2 - iso(1) member-body(2) US(840) rsadsi(113549) digestAlgorithm(2)
    246         // http://www.oid-info.com/get/1.2.840.113549.2
    247 
    248         // HMAC-SHA-1 PRF (7)
    249         put("Mac.HmacSHA1", prefix + "OpenSSLMac$HmacSHA1");
    250         put("Alg.Alias.Mac.1.2.840.113549.2.7", "HmacSHA1");
    251         put("Alg.Alias.Mac.HMAC-SHA1", "HmacSHA1");
    252         put("Alg.Alias.Mac.HMAC/SHA1", "HmacSHA1");
    253 
    254         // id-hmacWithSHA224 (8)
    255         put("Mac.HmacSHA224", prefix + "OpenSSLMac$HmacSHA224");
    256         put("Alg.Alias.Mac.1.2.840.113549.2.9", "HmacSHA224");
    257         put("Alg.Alias.Mac.HMAC-SHA224", "HmacSHA224");
    258         put("Alg.Alias.Mac.HMAC/SHA224", "HmacSHA224");
    259 
    260         // id-hmacWithSHA256 (9)
    261         put("Mac.HmacSHA256", prefix + "OpenSSLMac$HmacSHA256");
    262         put("Alg.Alias.Mac.1.2.840.113549.2.9", "HmacSHA256");
    263         put("Alg.Alias.Mac.HMAC-SHA256", "HmacSHA256");
    264         put("Alg.Alias.Mac.HMAC/SHA256", "HmacSHA256");
    265 
    266         // id-hmacWithSHA384 (10)
    267         put("Mac.HmacSHA384", prefix + "OpenSSLMac$HmacSHA384");
    268         put("Alg.Alias.Mac.1.2.840.113549.2.10", "HmacSHA384");
    269         put("Alg.Alias.Mac.HMAC-SHA384", "HmacSHA384");
    270         put("Alg.Alias.Mac.HMAC/SHA384", "HmacSHA384");
    271 
    272         // id-hmacWithSHA384 (11)
    273         put("Mac.HmacSHA512", prefix + "OpenSSLMac$HmacSHA512");
    274         put("Alg.Alias.Mac.1.2.840.113549.2.11", "HmacSHA512");
    275         put("Alg.Alias.Mac.HMAC-SHA512", "HmacSHA512");
    276         put("Alg.Alias.Mac.HMAC/SHA512", "HmacSHA512");
    277 
    278         /* === Certificate === */
    279 
    280         put("CertificateFactory.X509", prefix + "OpenSSLX509CertificateFactory");
    281         put("Alg.Alias.CertificateFactory.X.509", "X509");
    282     }
    283 }
    284