bundles/org.eclipse.osgi/security/src/org/eclipse/osgi/internal/signedcontent/SignedBundleFile.java - equinox/rt.equinox.framework - Git at Google

 /*******************************************************************************
  * Copyright (c) 2006, 2007 IBM Corporation and others.
  * All rights reserved. This program and the accompanying materials
  * are made available under the terms of the Eclipse Public License v1.0
  * which accompanies this distribution, and is available at
  * http://www.eclipse.org/legal/epl-v10.html
  *
  * Contributors:
  *     IBM Corporation - initial API and implementation
  *******************************************************************************/

 package org.eclipse.osgi.internal.signedcontent;

 import java.io.*;
 import java.net.URL;
 import java.security.*;
 import java.security.cert.*;
 import java.security.cert.Certificate;
 import java.util.Date;
 import java.util.Enumeration;
 import org.eclipse.osgi.baseadaptor.bundlefile.BundleEntry;
 import org.eclipse.osgi.baseadaptor.bundlefile.BundleFile;
 import org.eclipse.osgi.framework.log.FrameworkLogEntry;
 import org.eclipse.osgi.service.security.TrustEngine;
 import org.eclipse.osgi.signedcontent.*;
 import org.eclipse.osgi.util.NLS;

 /**
  * This class wraps a Repository of classes and resources to check and enforce
  * signatures. It requires full signing of the manifest by all signers. If no
  * signatures are found, the classes and resources are retrieved without checks.
  */
 public class SignedBundleFile extends BundleFile implements SignedContentConstants, SignedContent {
 	private BundleFile wrappedBundleFile;
 	SignedContentImpl signedContent;
 	private final int supportFlags;

 	SignedBundleFile(SignedContentImpl signedContent, int supportFlags) {
 		this.signedContent = signedContent;
 		this.supportFlags = supportFlags;
 	}

 	void setBundleFile(BundleFile bundleFile) throws IOException, InvalidKeyException, SignatureException, CertificateException, NoSuchAlgorithmException, NoSuchProviderException {
 		wrappedBundleFile = bundleFile;
 		if (signedContent == null) {
 			SignatureBlockProcessor signatureProcessor = new SignatureBlockProcessor(this, supportFlags);
 			signedContent = signatureProcessor.process();
 			if (signedContent != null)
 				determineTrust(signedContent, supportFlags);
 		}
 	}

 	static void determineTrust(SignedContentImpl trustedContent, int supportFlags) {
 		TrustEngine[] engines = null;
 		SignerInfo[] signers = trustedContent.getSignerInfos();
 		for (int i = 0; i < signers.length; i++) {
 			// first check if we need to find an anchor
 			if (signers[i].getTrustAnchor() == null) {
 				// no anchor set ask the trust engines
 				if (engines == null)
 					engines = SignedBundleHook.getTrustEngines();
 				// check trust of singer certs
 				Certificate[] signerCerts = signers[i].getCertificateChain();
 				((SignerInfoImpl) signers[i]).setTrustAnchor(findTrustAnchor(signerCerts, engines, supportFlags));
 				// if signer has a tsa check trust of tsa certs
 				SignerInfo tsaSignerInfo = trustedContent.getTSASignerInfo(signers[i]);
 				if (tsaSignerInfo != null) {
 					Certificate[] tsaCerts = tsaSignerInfo.getCertificateChain();
 					((SignerInfoImpl) tsaSignerInfo).setTrustAnchor(findTrustAnchor(tsaCerts, engines, supportFlags));
 				}
 			}
 		}
 	}

 	private static Certificate findTrustAnchor(Certificate[] certs, TrustEngine[] engines, int supportFlags) {
 		if ((supportFlags & SignedBundleHook.VERIFY_TRUST) == 0)
 			// we are not searching the engines; in this case we just assume the root cert is trusted
 			return certs != null && certs.length > 0 ? certs[certs.length - 1] : null;
 		for (int i = 0; i < engines.length; i++) {
 			try {
 				Certificate anchor = engines[i].findTrustAnchor(certs);
 				if (anchor != null)
 					// found an anchor
 					return anchor;
 			} catch (IOException e) {
 				// log the exception and continue
 				SignedBundleHook.log("TrustEngine failure: " + engines[i].getName(), FrameworkLogEntry.WARNING, e); //$NON-NLS-1$
 			}
 		}
 		return null;
 	}

 	public File getFile(String path, boolean nativeCode) {
 		return wrappedBundleFile.getFile(path, nativeCode);
 	}

 	public BundleEntry getEntry(String path) {
 		// strip off leading slashes so we can ensure the path matches the one provided in the manifest.
 		if (path.length() > 0 && path.charAt(0) == '/')
 			path = path.substring(1);
 		BundleEntry be = wrappedBundleFile.getEntry(path);
 		if ((supportFlags & SignedBundleHook.VERIFY_RUNTIME) == 0 || signedContent == null)
 			return be;
 		if (path.startsWith(META_INF))
 			return be;
 		if (be == null) {
 			// double check that no signer thinks it should exist
 			SignedContentEntry signedEntry = signedContent.getSignedEntry(path);
 			if (signedEntry != null)
 				throw new SecurityException(NLS.bind(SignedContentMessages.file_is_removed_from_jar, getBaseFile().toString(), path));
 			return null;
 		}
 		return new SignedBundleEntry(be);
 	}

 	public Enumeration getEntryPaths(String path) {
 		return wrappedBundleFile.getEntryPaths(path);
 	}

 	public void close() throws IOException {
 		wrappedBundleFile.close();
 	}

 	public void open() throws IOException {
 		wrappedBundleFile.open();
 	}

 	public boolean containsDir(String dir) {
 		return wrappedBundleFile.containsDir(dir);
 	}

 	public File getBaseFile() {
 		return wrappedBundleFile.getBaseFile();
 	}

 	class SignedBundleEntry extends BundleEntry {
 		BundleEntry nestedEntry;

 		SignedBundleEntry(BundleEntry nestedEntry) {
 			this.nestedEntry = nestedEntry;
 		}

 		public InputStream getInputStream() throws IOException {
 			InputStream in = signedContent.getDigestInputStream(nestedEntry);
 			if (in == null)
 				throw new SecurityException("Corrupted file: the digest does not exist for the file " + nestedEntry.getName()); //$NON-NLS-1$
 			return in;
 		}

 		public long getSize() {
 			return nestedEntry.getSize();
 		}

 		public String getName() {
 			return nestedEntry.getName();
 		}

 		public long getTime() {
 			return nestedEntry.getTime();
 		}

 		public URL getLocalURL() {
 			return nestedEntry.getLocalURL();
 		}

 		public URL getFileURL() {
 			return nestedEntry.getFileURL();
 		}

 	}

 	BundleFile getWrappedBundleFile() {
 		return wrappedBundleFile;
 	}

 	SignedContentImpl getSignedContent() {
 		return signedContent;
 	}

 	public SignedContentEntry[] getSignedEntries() {
 		return signedContent == null ? null : signedContent.getSignedEntries();
 	}

 	public SignedContentEntry getSignedEntry(String name) {
 		return signedContent == null ? null : signedContent.getSignedEntry(name);
 	}

 	public SignerInfo[] getSignerInfos() {
 		return signedContent == null ? null : signedContent.getSignerInfos();
 	}

 	public Date getSigningTime(SignerInfo signerInfo) {
 		return signedContent == null ? null : signedContent.getSigningTime(signerInfo);
 	}

 	public SignerInfo getTSASignerInfo(SignerInfo signerInfo) {
 		return signedContent == null ? null : signedContent.getTSASignerInfo(signerInfo);
 	}

 	public boolean isSigned() {
 		return signedContent == null ? false : signedContent.isSigned();
 	}

 	public void checkValidity(SignerInfo signerInfo) throws CertificateExpiredException, CertificateNotYetValidException {
 		if (signedContent != null)
 			signedContent.checkValidity(signerInfo);
 	}

 }
	/*******************************************************************************
	* Copyright (c) 2006, 2007 IBM Corporation and others.
	* All rights reserved. This program and the accompanying materials
	* are made available under the terms of the Eclipse Public License v1.0
	* which accompanies this distribution, and is available at
	* http://www.eclipse.org/legal/epl-v10.html
	*
	* Contributors:
	* IBM Corporation - initial API and implementation
	*******************************************************************************/

	package org.eclipse.osgi.internal.signedcontent;

	import java.io.*;
	import java.net.URL;
	import java.security.*;
	import java.security.cert.*;
	import java.security.cert.Certificate;
	import java.util.Date;
	import java.util.Enumeration;
	import org.eclipse.osgi.baseadaptor.bundlefile.BundleEntry;
	import org.eclipse.osgi.baseadaptor.bundlefile.BundleFile;
	import org.eclipse.osgi.framework.log.FrameworkLogEntry;
	import org.eclipse.osgi.service.security.TrustEngine;
	import org.eclipse.osgi.signedcontent.*;
	import org.eclipse.osgi.util.NLS;

	/**
	* This class wraps a Repository of classes and resources to check and enforce
	* signatures. It requires full signing of the manifest by all signers. If no
	* signatures are found, the classes and resources are retrieved without checks.
	*/
	public class SignedBundleFile extends BundleFile implements SignedContentConstants, SignedContent {
	private BundleFile wrappedBundleFile;
	SignedContentImpl signedContent;
	private final int supportFlags;

	SignedBundleFile(SignedContentImpl signedContent, int supportFlags) {
	this.signedContent = signedContent;
	this.supportFlags = supportFlags;
	}

	void setBundleFile(BundleFile bundleFile) throws IOException, InvalidKeyException, SignatureException, CertificateException, NoSuchAlgorithmException, NoSuchProviderException {
	wrappedBundleFile = bundleFile;
	if (signedContent == null) {
	SignatureBlockProcessor signatureProcessor = new SignatureBlockProcessor(this, supportFlags);
	signedContent = signatureProcessor.process();
	if (signedContent != null)
	determineTrust(signedContent, supportFlags);
	}
	}

	static void determineTrust(SignedContentImpl trustedContent, int supportFlags) {
	TrustEngine[] engines = null;
	SignerInfo[] signers = trustedContent.getSignerInfos();
	for (int i = 0; i < signers.length; i++) {
	// first check if we need to find an anchor
	if (signers[i].getTrustAnchor() == null) {
	// no anchor set ask the trust engines
	if (engines == null)
	engines = SignedBundleHook.getTrustEngines();
	// check trust of singer certs
	Certificate[] signerCerts = signers[i].getCertificateChain();
	((SignerInfoImpl) signers[i]).setTrustAnchor(findTrustAnchor(signerCerts, engines, supportFlags));
	// if signer has a tsa check trust of tsa certs
	SignerInfo tsaSignerInfo = trustedContent.getTSASignerInfo(signers[i]);
	if (tsaSignerInfo != null) {
	Certificate[] tsaCerts = tsaSignerInfo.getCertificateChain();
	((SignerInfoImpl) tsaSignerInfo).setTrustAnchor(findTrustAnchor(tsaCerts, engines, supportFlags));
	}
	}
	}
	}

	private static Certificate findTrustAnchor(Certificate[] certs, TrustEngine[] engines, int supportFlags) {
	if ((supportFlags & SignedBundleHook.VERIFY_TRUST) == 0)
	// we are not searching the engines; in this case we just assume the root cert is trusted
	return certs != null && certs.length > 0 ? certs[certs.length - 1] : null;
	for (int i = 0; i < engines.length; i++) {
	try {
	Certificate anchor = engines[i].findTrustAnchor(certs);
	if (anchor != null)
	// found an anchor
	return anchor;
	} catch (IOException e) {
	// log the exception and continue
	SignedBundleHook.log("TrustEngine failure: " + engines[i].getName(), FrameworkLogEntry.WARNING, e); //$NON-NLS-1$
	}
	}
	return null;
	}

	public File getFile(String path, boolean nativeCode) {
	return wrappedBundleFile.getFile(path, nativeCode);
	}

	public BundleEntry getEntry(String path) {
	// strip off leading slashes so we can ensure the path matches the one provided in the manifest.
	if (path.length() > 0 && path.charAt(0) == '/')
	path = path.substring(1);
	BundleEntry be = wrappedBundleFile.getEntry(path);
	if ((supportFlags & SignedBundleHook.VERIFY_RUNTIME) == 0 \|\| signedContent == null)
	return be;
	if (path.startsWith(META_INF))
	return be;
	if (be == null) {
	// double check that no signer thinks it should exist
	SignedContentEntry signedEntry = signedContent.getSignedEntry(path);
	if (signedEntry != null)
	throw new SecurityException(NLS.bind(SignedContentMessages.file_is_removed_from_jar, getBaseFile().toString(), path));
	return null;
	}
	return new SignedBundleEntry(be);
	}

	public Enumeration getEntryPaths(String path) {
	return wrappedBundleFile.getEntryPaths(path);
	}

	public void close() throws IOException {
	wrappedBundleFile.close();
	}

	public void open() throws IOException {
	wrappedBundleFile.open();
	}

	public boolean containsDir(String dir) {
	return wrappedBundleFile.containsDir(dir);
	}

	public File getBaseFile() {
	return wrappedBundleFile.getBaseFile();
	}

	class SignedBundleEntry extends BundleEntry {
	BundleEntry nestedEntry;

	SignedBundleEntry(BundleEntry nestedEntry) {
	this.nestedEntry = nestedEntry;
	}

	public InputStream getInputStream() throws IOException {
	InputStream in = signedContent.getDigestInputStream(nestedEntry);
	if (in == null)
	throw new SecurityException("Corrupted file: the digest does not exist for the file " + nestedEntry.getName()); //$NON-NLS-1$
	return in;
	}

	public long getSize() {
	return nestedEntry.getSize();
	}

	public String getName() {
	return nestedEntry.getName();
	}

	public long getTime() {
	return nestedEntry.getTime();
	}

	public URL getLocalURL() {
	return nestedEntry.getLocalURL();
	}

	public URL getFileURL() {
	return nestedEntry.getFileURL();
	}

	}

	BundleFile getWrappedBundleFile() {
	return wrappedBundleFile;
	}

	SignedContentImpl getSignedContent() {
	return signedContent;
	}

	public SignedContentEntry[] getSignedEntries() {
	return signedContent == null ? null : signedContent.getSignedEntries();
	}

	public SignedContentEntry getSignedEntry(String name) {
	return signedContent == null ? null : signedContent.getSignedEntry(name);
	}

	public SignerInfo[] getSignerInfos() {
	return signedContent == null ? null : signedContent.getSignerInfos();
	}

	public Date getSigningTime(SignerInfo signerInfo) {
	return signedContent == null ? null : signedContent.getSigningTime(signerInfo);
	}

	public SignerInfo getTSASignerInfo(SignerInfo signerInfo) {
	return signedContent == null ? null : signedContent.getTSASignerInfo(signerInfo);
	}

	public boolean isSigned() {
	return signedContent == null ? false : signedContent.isSigned();
	}

	public void checkValidity(SignerInfo signerInfo) throws CertificateExpiredException, CertificateNotYetValidException {
	if (signedContent != null)
	signedContent.checkValidity(signerInfo);
	}

	}