提交 30766537 编写于 作者: A andrew

8231139: Improved keystore support

Reviewed-by: mbalao
上级 ab3130ac
...@@ -43,6 +43,7 @@ import java.security.cert.CertificateFactory; ...@@ -43,6 +43,7 @@ import java.security.cert.CertificateFactory;
import java.security.cert.CertificateException; import java.security.cert.CertificateException;
import javax.crypto.SealedObject; import javax.crypto.SealedObject;
import sun.misc.IOUtils;
import sun.misc.ObjectInputFilter; import sun.misc.ObjectInputFilter;
/** /**
...@@ -70,7 +71,7 @@ public final class JceKeyStore extends KeyStoreSpi { ...@@ -70,7 +71,7 @@ public final class JceKeyStore extends KeyStoreSpi {
private static final class PrivateKeyEntry { private static final class PrivateKeyEntry {
Date date; // the creation date of this entry Date date; // the creation date of this entry
byte[] protectedKey; byte[] protectedKey;
Certificate chain[]; Certificate[] chain;
}; };
// Secret key // Secret key
...@@ -738,23 +739,11 @@ public final class JceKeyStore extends KeyStoreSpi { ...@@ -738,23 +739,11 @@ public final class JceKeyStore extends KeyStoreSpi {
entry.date = new Date(dis.readLong()); entry.date = new Date(dis.readLong());
// read the private key // read the private key
try { entry.protectedKey = IOUtils.readExactlyNBytes(dis, dis.readInt());
entry.protectedKey = new byte[dis.readInt()];
} catch (OutOfMemoryError e) {
throw new IOException("Keysize too big");
}
dis.readFully(entry.protectedKey);
// read the certificate chain // read the certificate chain
int numOfCerts = dis.readInt(); int numOfCerts = dis.readInt();
try { List<Certificate> tmpCerts = new ArrayList<>();
if (numOfCerts > 0) {
entry.chain = new Certificate[numOfCerts];
}
} catch (OutOfMemoryError e) {
throw new IOException("Too many certificates in "
+ "chain");
}
for (int j = 0; j < numOfCerts; j++) { for (int j = 0; j < numOfCerts; j++) {
if (xVersion == 2) { if (xVersion == 2) {
// read the certificate type, and instantiate a // read the certificate type, and instantiate a
...@@ -774,15 +763,12 @@ public final class JceKeyStore extends KeyStoreSpi { ...@@ -774,15 +763,12 @@ public final class JceKeyStore extends KeyStoreSpi {
} }
} }
// instantiate the certificate // instantiate the certificate
try { encoded = IOUtils.readExactlyNBytes(dis, dis.readInt());
encoded = new byte[dis.readInt()];
} catch (OutOfMemoryError e) {
throw new IOException("Certificate too big");
}
dis.readFully(encoded);
bais = new ByteArrayInputStream(encoded); bais = new ByteArrayInputStream(encoded);
entry.chain[j] = cf.generateCertificate(bais); tmpCerts.add(cf.generateCertificate(bais));
} }
entry.chain = tmpCerts.toArray(
new Certificate[numOfCerts]);
// Add the entry to the list // Add the entry to the list
entries.put(alias, entry); entries.put(alias, entry);
...@@ -814,12 +800,7 @@ public final class JceKeyStore extends KeyStoreSpi { ...@@ -814,12 +800,7 @@ public final class JceKeyStore extends KeyStoreSpi {
cfs.put(certType, cf); cfs.put(certType, cf);
} }
} }
try { encoded = IOUtils.readExactlyNBytes(dis, dis.readInt());
encoded = new byte[dis.readInt()];
} catch (OutOfMemoryError e) {
throw new IOException("Certificate too big");
}
dis.readFully(encoded);
bais = new ByteArrayInputStream(encoded); bais = new ByteArrayInputStream(encoded);
entry.cert = cf.generateCertificate(bais); entry.cert = cf.generateCertificate(bais);
...@@ -870,12 +851,9 @@ public final class JceKeyStore extends KeyStoreSpi { ...@@ -870,12 +851,9 @@ public final class JceKeyStore extends KeyStoreSpi {
* with * with
*/ */
if (password != null) { if (password != null) {
byte computed[], actual[]; byte[] computed = md.digest();
computed = md.digest(); byte[] actual = IOUtils.readExactlyNBytes(dis, computed.length);
actual = new byte[computed.length]; if (!MessageDigest.isEqual(computed, actual)) {
dis.readFully(actual);
for (int i = 0; i < computed.length; i++) {
if (computed[i] != actual[i]) {
throw new IOException( throw new IOException(
"Keystore was tampered with, or " "Keystore was tampered with, or "
+ "password was incorrect", + "password was incorrect",
...@@ -883,7 +861,6 @@ public final class JceKeyStore extends KeyStoreSpi { ...@@ -883,7 +861,6 @@ public final class JceKeyStore extends KeyStoreSpi {
"Password verification failed")); "Password verification failed"));
} }
} }
}
} finally { } finally {
if (ois != null) { if (ois != null) {
ois.close(); ois.close();
......
...@@ -570,7 +570,7 @@ public class CodeSource implements java.io.Serializable { ...@@ -570,7 +570,7 @@ public class CodeSource implements java.io.Serializable {
cfs.put(certType, cf); cfs.put(certType, cf);
} }
// parse the certificate // parse the certificate
byte[] encoded = IOUtils.readNBytes(ois, ois.readInt()); byte[] encoded = IOUtils.readExactlyNBytes(ois, ois.readInt());
ByteArrayInputStream bais = new ByteArrayInputStream(encoded); ByteArrayInputStream bais = new ByteArrayInputStream(encoded);
try { try {
certList.add(cf.generateCertificate(bais)); certList.add(cf.generateCertificate(bais));
......
...@@ -590,7 +590,7 @@ implements java.io.Serializable ...@@ -590,7 +590,7 @@ implements java.io.Serializable
cfs.put(certType, cf); cfs.put(certType, cf);
} }
// parse the certificate // parse the certificate
byte[] encoded = IOUtils.readNBytes(ois, ois.readInt()); byte[] encoded = IOUtils.readExactlyNBytes(ois, ois.readInt());
ByteArrayInputStream bais = new ByteArrayInputStream(encoded); ByteArrayInputStream bais = new ByteArrayInputStream(encoded);
try { try {
certList.add(cf.generateCertificate(bais)); certList.add(cf.generateCertificate(bais));
......
...@@ -239,7 +239,7 @@ public class CertificateRevokedException extends CertificateException { ...@@ -239,7 +239,7 @@ public class CertificateRevokedException extends CertificateException {
for (int i = 0; i < size; i++) { for (int i = 0; i < size; i++) {
String oid = (String) ois.readObject(); String oid = (String) ois.readObject();
boolean critical = ois.readBoolean(); boolean critical = ois.readBoolean();
byte[] extVal = IOUtils.readNBytes(ois, ois.readInt()); byte[] extVal = IOUtils.readExactlyNBytes(ois, ois.readInt());
Extension ext = sun.security.x509.Extension.newExtension Extension ext = sun.security.x509.Extension.newExtension
(new ObjectIdentifier(oid), critical, extVal); (new ObjectIdentifier(oid), critical, extVal);
extensions.put(oid, ext); extensions.put(oid, ext);
......
/* /*
* Copyright (c) 2009, 2017, Oracle and/or its affiliates. All rights reserved. * Copyright (c) 2009, 2019, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
* *
* This code is free software; you can redistribute it and/or modify it * This code is free software; you can redistribute it and/or modify it
...@@ -51,46 +51,31 @@ public class IOUtils { ...@@ -51,46 +51,31 @@ public class IOUtils {
private static final int MAX_BUFFER_SIZE = Integer.MAX_VALUE - 8; private static final int MAX_BUFFER_SIZE = Integer.MAX_VALUE - 8;
/** /**
* Read up to {@code length} of bytes from {@code in} * Read exactly {@code length} of bytes from {@code in}.
* until EOF is detected. *
* <p> Note that this method is safe to be called with unknown large
* {@code length} argument. The memory used is proportional to the
* actual bytes available. An exception is thrown if there are not
* enough bytes in the stream.
*
* @param is input stream, must not be null * @param is input stream, must not be null
* @param length number of bytes to read * @param length number of bytes to read
* @param readAll if true, an EOFException will be thrown if not enough
* bytes are read.
* @return bytes read * @return bytes read
* @throws IOException Any IO error or a premature EOF is detected * @throws EOFException if there are not enough bytes in the stream
* @throws IOException if an I/O error occurs or {@code length} is negative
* @throws OutOfMemoryError if an array of the required size cannot be
* allocated.
*/ */
public static byte[] readFully(InputStream is, int length, boolean readAll) public static byte[] readExactlyNBytes(InputStream is, int length)
throws IOException { throws IOException {
if (length < 0) { if (length < 0) {
throw new IOException("Invalid length"); throw new IOException("length cannot be negative: " + length);
}
byte[] output = {};
int pos = 0;
while (pos < length) {
int bytesToRead;
if (pos >= output.length) { // Only expand when there's no room
bytesToRead = Math.min(length - pos, output.length + 1024);
if (output.length < pos + bytesToRead) {
output = Arrays.copyOf(output, pos + bytesToRead);
}
} else {
bytesToRead = output.length - pos;
}
int cc = is.read(output, pos, bytesToRead);
if (cc < 0) {
if (readAll) {
throw new EOFException("Detect premature EOF");
} else {
if (output.length != pos) {
output = Arrays.copyOf(output, pos);
}
break;
}
} }
pos += cc; byte[] data = readNBytes(is, length);
if (data.length < length) {
throw new EOFException();
} }
return output; return data;
} }
/** /**
......
/* /*
* Copyright (c) 2000, 2013, Oracle and/or its affiliates. All rights reserved. * Copyright (c) 2000, 2019, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
* *
* This code is free software; you can redistribute it and/or modify it * This code is free software; you can redistribute it and/or modify it
...@@ -103,7 +103,7 @@ class TCPClient extends NetClient { ...@@ -103,7 +103,7 @@ class TCPClient extends NetClient {
} }
try { try {
return IOUtils.readFully(in, len, true); return IOUtils.readExactlyNBytes(in, len);
} catch (IOException ioe) { } catch (IOException ioe) {
if (Krb5.DEBUG) { if (Krb5.DEBUG) {
System.out.println( System.out.println(
......
...@@ -128,7 +128,7 @@ public class CCacheInputStream extends KrbDataInputStream implements FileCCacheC ...@@ -128,7 +128,7 @@ public class CCacheInputStream extends KrbDataInputStream implements FileCCacheC
length--; length--;
for (int i = 0; i <= length; i++) { for (int i = 0; i <= length; i++) {
namelength = readLength4(); namelength = readLength4();
byte[] bytes = IOUtils.readFully(this, namelength, true); byte[] bytes = IOUtils.readExactlyNBytes(this, namelength);
result.add(new String(bytes)); result.add(new String(bytes));
} }
if (result.isEmpty()) { if (result.isEmpty()) {
...@@ -186,7 +186,7 @@ public class CCacheInputStream extends KrbDataInputStream implements FileCCacheC ...@@ -186,7 +186,7 @@ public class CCacheInputStream extends KrbDataInputStream implements FileCCacheC
if (version == KRB5_FCC_FVNO_3) if (version == KRB5_FCC_FVNO_3)
read(2); /* keytype recorded twice in fvno 3 */ read(2); /* keytype recorded twice in fvno 3 */
keyLen = readLength4(); keyLen = readLength4();
byte[] bytes = IOUtils.readFully(this, keyLen, true); byte[] bytes = IOUtils.readExactlyNBytes(this, keyLen);
return new EncryptionKey(bytes, keyType, new Integer(version)); return new EncryptionKey(bytes, keyType, new Integer(version));
} }
...@@ -239,7 +239,7 @@ public class CCacheInputStream extends KrbDataInputStream implements FileCCacheC ...@@ -239,7 +239,7 @@ public class CCacheInputStream extends KrbDataInputStream implements FileCCacheC
for (int i = 0; i < num; i++) { for (int i = 0; i < num; i++) {
adtype = read(2); adtype = read(2);
adlength = readLength4(); adlength = readLength4();
data = IOUtils.readFully(this, adlength, true); data = IOUtils.readExactlyNBytes(this, adlength);
auData.add(new AuthorizationDataEntry(adtype, data)); auData.add(new AuthorizationDataEntry(adtype, data));
} }
return auData.toArray(new AuthorizationDataEntry[auData.size()]); return auData.toArray(new AuthorizationDataEntry[auData.size()]);
...@@ -253,7 +253,7 @@ public class CCacheInputStream extends KrbDataInputStream implements FileCCacheC ...@@ -253,7 +253,7 @@ public class CCacheInputStream extends KrbDataInputStream implements FileCCacheC
if (length == 0) { if (length == 0) {
return null; return null;
} else { } else {
return IOUtils.readFully(this, length, true); return IOUtils.readExactlyNBytes(this, length);
} }
} }
......
...@@ -691,7 +691,7 @@ abstract class JavaKeyStore extends KeyStoreSpi { ...@@ -691,7 +691,7 @@ abstract class JavaKeyStore extends KeyStoreSpi {
// Read the private key // Read the private key
entry.protectedPrivKey = entry.protectedPrivKey =
IOUtils.readFully(dis, dis.readInt(), true); IOUtils.readExactlyNBytes(dis, dis.readInt());
// Read the certificate chain // Read the certificate chain
int numOfCerts = dis.readInt(); int numOfCerts = dis.readInt();
...@@ -716,7 +716,7 @@ abstract class JavaKeyStore extends KeyStoreSpi { ...@@ -716,7 +716,7 @@ abstract class JavaKeyStore extends KeyStoreSpi {
} }
} }
// instantiate the certificate // instantiate the certificate
encoded = IOUtils.readFully(dis, dis.readInt(), true); encoded = IOUtils.readExactlyNBytes(dis, dis.readInt());
bais = new ByteArrayInputStream(encoded); bais = new ByteArrayInputStream(encoded);
certs.add(cf.generateCertificate(bais)); certs.add(cf.generateCertificate(bais));
bais.close(); bais.close();
...@@ -755,7 +755,7 @@ abstract class JavaKeyStore extends KeyStoreSpi { ...@@ -755,7 +755,7 @@ abstract class JavaKeyStore extends KeyStoreSpi {
cfs.put(certType, cf); cfs.put(certType, cf);
} }
} }
encoded = IOUtils.readFully(dis, dis.readInt(), true); encoded = IOUtils.readExactlyNBytes(dis, dis.readInt());
bais = new ByteArrayInputStream(encoded); bais = new ByteArrayInputStream(encoded);
entry.cert = cf.generateCertificate(bais); entry.cert = cf.generateCertificate(bais);
bais.close(); bais.close();
...@@ -776,20 +776,17 @@ abstract class JavaKeyStore extends KeyStoreSpi { ...@@ -776,20 +776,17 @@ abstract class JavaKeyStore extends KeyStoreSpi {
if (password != null) { if (password != null) {
byte computed[], actual[]; byte computed[], actual[];
computed = md.digest(); computed = md.digest();
actual = new byte[computed.length]; actual = IOUtils.readExactlyNBytes(dis, computed.length);
dis.readFully(actual); if (!MessageDigest.isEqual(computed, actual)) {
for (int i = 0; i < computed.length; i++) {
if (computed[i] != actual[i]) {
Throwable t = new UnrecoverableKeyException Throwable t = new UnrecoverableKeyException
("Password verification failed"); ("Password verification failed");
throw (IOException)new IOException throw (IOException) new IOException
("Keystore was tampered with, or " ("Keystore was tampered with, or "
+ "password was incorrect").initCause(t); + "password was incorrect").initCause(t);
} }
} }
} }
} }
}
/** /**
* To guard against tampering with the keystore, we append a keyed * To guard against tampering with the keystore, we append a keyed
......
...@@ -409,7 +409,7 @@ public class DerValue { ...@@ -409,7 +409,7 @@ public class DerValue {
if (fullyBuffered && in.available() != length) if (fullyBuffered && in.available() != length)
throw new IOException("extra data given to DerValue constructor"); throw new IOException("extra data given to DerValue constructor");
byte[] bytes = IOUtils.readFully(in, length, true); byte[] bytes = IOUtils.readExactlyNBytes(in, length);
buffer = new DerInputBuffer(bytes, allowBER); buffer = new DerInputBuffer(bytes, allowBER);
return new DerInputStream(buffer); return new DerInputStream(buffer);
......
/* /*
* Copyright (c) 2009, 2017 Oracle and/or its affiliates. All rights reserved. * Copyright (c) 2009, 2019, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
* *
* This code is free software; you can redistribute it and/or modify it * This code is free software; you can redistribute it and/or modify it
...@@ -35,23 +35,23 @@ public class BadValue { ...@@ -35,23 +35,23 @@ public class BadValue {
public static void main(String[] args) throws Exception { public static void main(String[] args) throws Exception {
// Test IOUtils.readFully // Test IOUtils.
// We have 4 bytes // We have 4 bytes
InputStream in = new ByteArrayInputStream(new byte[10]); InputStream in = new ByteArrayInputStream(new byte[10]);
byte[] bs = IOUtils.readFully(in, 4, true); byte[] bs = IOUtils.readExactlyNBytes(in, 4);
if (bs.length != 4 || in.available() != 6) { if (bs.length != 4 || in.available() != 6) {
throw new Exception("First read error"); throw new Exception("First read error");
} }
// But only 6 left // But only 6 left
bs = IOUtils.readFully(in, 10, false); bs = IOUtils.readNBytes(in, 10);
if (bs.length != 6 || in.available() != 0) { if (bs.length != 6 || in.available() != 0) {
throw new Exception("Second read error"); throw new Exception("Second read error");
} }
// MAX length results in exception // MAX length results in exception
in = new ByteArrayInputStream(new byte[10]); in = new ByteArrayInputStream(new byte[10]);
try { try {
bs = IOUtils.readFully(in, Integer.MAX_VALUE, true); bs = IOUtils.readExactlyNBytes(in, Integer.MAX_VALUE);
throw new Exception("No exception on MAX_VALUE length"); throw new Exception("No exception on MAX_VALUE length");
} catch (EOFException ex) { } catch (EOFException ex) {
// this is expected // this is expected
...@@ -59,7 +59,7 @@ public class BadValue { ...@@ -59,7 +59,7 @@ public class BadValue {
// -1 length results in exception // -1 length results in exception
in = new ByteArrayInputStream(new byte[10]); in = new ByteArrayInputStream(new byte[10]);
try { try {
bs = IOUtils.readFully(in, -1, true); bs = IOUtils.readExactlyNBytes(in, -1);
throw new Exception("No exception on -1 length"); throw new Exception("No exception on -1 length");
} catch (IOException ex) { } catch (IOException ex) {
// this is expected // this is expected
...@@ -68,13 +68,13 @@ public class BadValue { ...@@ -68,13 +68,13 @@ public class BadValue {
// 20>10, readAll means failure // 20>10, readAll means failure
in = new ByteArrayInputStream(new byte[10]); in = new ByteArrayInputStream(new byte[10]);
try { try {
bs = IOUtils.readFully(in, 20, true); bs = IOUtils.readExactlyNBytes(in, 20);
throw new Exception("No exception on EOF"); throw new Exception("No exception on EOF");
} catch (EOFException e) { } catch (EOFException e) {
// OK // OK
} }
int bignum = 10 * 1024 * 1024; int bignum = 10 * 1024 * 1024;
bs = IOUtils.readFully(new SuperSlowStream(bignum), bignum, true); bs = IOUtils.readExactlyNBytes(new SuperSlowStream(bignum), bignum);
if (bs.length != bignum) { if (bs.length != bignum) {
throw new Exception("Read returned small array"); throw new Exception("Read returned small array");
} }
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册