diff options
| author | Shuyi Chen <shuyichen@google.com> | 2013-05-22 14:51:55 -0700 |
|---|---|---|
| committer | Shuyi Chen <shuyichen@google.com> | 2013-05-22 17:19:30 -0700 |
| commit | d7955ce24d294fb2014c59d11fca184471056f44 (patch) | |
| tree | e260500b0b7639127038495d46a0ad6dcbb6d96c /src/org/xbill/DNS/SIG0.java | |
| parent | 8f4ce9ea0de51fee918bffe19c434612d6bbb2d7 (diff) | |
| download | smack-d7955ce24d294fb2014c59d11fca184471056f44.tar.gz | |
Add android smack source.HEADandroid-wear-5.0.0_r1android-sdk-4.4.2_r1.0.1android-sdk-4.4.2_r1android-l-preview_r2android-cts-5.1_r9android-cts-5.1_r8android-cts-5.1_r7android-cts-5.1_r6android-cts-5.1_r5android-cts-5.1_r4android-cts-5.1_r3android-cts-5.1_r28android-cts-5.1_r27android-cts-5.1_r26android-cts-5.1_r25android-cts-5.1_r24android-cts-5.1_r23android-cts-5.1_r22android-cts-5.1_r21android-cts-5.1_r20android-cts-5.1_r2android-cts-5.1_r19android-cts-5.1_r18android-cts-5.1_r17android-cts-5.1_r16android-cts-5.1_r15android-cts-5.1_r14android-cts-5.1_r13android-cts-5.1_r10android-cts-5.1_r1android-cts-5.0_r9android-cts-5.0_r8android-cts-5.0_r7android-cts-5.0_r6android-cts-5.0_r5android-cts-5.0_r4android-cts-5.0_r3android-cts-4.4_r4android-cts-4.4_r1android-5.1.1_r9android-5.1.1_r8android-5.1.1_r7android-5.1.1_r6android-5.1.1_r5android-5.1.1_r4android-5.1.1_r38android-5.1.1_r37android-5.1.1_r36android-5.1.1_r35android-5.1.1_r34android-5.1.1_r33android-5.1.1_r30android-5.1.1_r3android-5.1.1_r29android-5.1.1_r28android-5.1.1_r26android-5.1.1_r25android-5.1.1_r24android-5.1.1_r23android-5.1.1_r22android-5.1.1_r20android-5.1.1_r2android-5.1.1_r19android-5.1.1_r18android-5.1.1_r17android-5.1.1_r16android-5.1.1_r15android-5.1.1_r14android-5.1.1_r13android-5.1.1_r12android-5.1.1_r10android-5.1.1_r1android-5.1.0_r5android-5.1.0_r4android-5.1.0_r3android-5.1.0_r1android-5.0.2_r3android-5.0.2_r1android-5.0.1_r1android-5.0.0_r7android-5.0.0_r6android-5.0.0_r5.1android-5.0.0_r5android-5.0.0_r4android-5.0.0_r3android-5.0.0_r2android-5.0.0_r1android-4.4w_r1android-4.4_r1.2.0.1android-4.4_r1.2android-4.4_r1.1.0.1android-4.4_r1.1android-4.4_r1.0.1android-4.4_r1android-4.4_r0.9android-4.4_r0.8android-4.4_r0.7android-4.4.4_r2.0.1android-4.4.4_r2android-4.4.4_r1.0.1android-4.4.4_r1android-4.4.3_r1.1.0.1android-4.4.3_r1.1android-4.4.3_r1.0.1android-4.4.3_r1android-4.4.2_r2.0.1android-4.4.2_r2android-4.4.2_r1.0.1android-4.4.2_r1android-4.4.1_r1.0.1android-4.4.1_r1android-4.3_r3.1android-4.3_r3android-4.3_r2.3android-4.3_r2.2android-4.3_r2.1android-4.3_r2android-4.3_r1.1android-4.3_r1android-4.3_r0.9.1android-4.3_r0.9android-4.3.1_r1tools_r22.2mastermainlollipop-wear-releaselollipop-releaselollipop-mr1-wfc-releaselollipop-mr1-releaselollipop-mr1-fi-releaselollipop-mr1-devlollipop-mr1-cts-releaselollipop-devlollipop-cts-releasel-previewkitkat-wearkitkat-releasekitkat-mr2.2-releasekitkat-mr2.1-releasekitkat-mr2-releasekitkat-mr1.1-releasekitkat-mr1-releasekitkat-devkitkat-cts-releasekitkat-cts-devjb-mr2.0.0-releasejb-mr2.0-releasejb-mr2-releasejb-mr2-devidea133-weekly-releaseidea133
Change-Id: I49ce97136c17173c4ae3965c694af6e7bc49897d
Diffstat (limited to 'src/org/xbill/DNS/SIG0.java')
| -rw-r--r-- | src/org/xbill/DNS/SIG0.java | 79 |
1 files changed, 79 insertions, 0 deletions
diff --git a/src/org/xbill/DNS/SIG0.java b/src/org/xbill/DNS/SIG0.java new file mode 100644 index 0000000..5a00e72 --- /dev/null +++ b/src/org/xbill/DNS/SIG0.java @@ -0,0 +1,79 @@ +// Copyright (c) 2001-2004 Brian Wellington (bwelling@xbill.org) + +package org.xbill.DNS; + +import java.security.PrivateKey; +import java.util.Date; + +/** + * Creates SIG(0) transaction signatures. + * + * @author Pasi Eronen + * @author Brian Wellington + */ + +public class SIG0 { + +/** + * The default validity period for outgoing SIG(0) signed messages. + * Can be overriden by the sig0validity option. + */ +private static final short VALIDITY = 300; + +private +SIG0() { } + +/** + * Sign a message with SIG(0). The DNS key and private key must refer to the + * same underlying cryptographic key. + * @param message The message to be signed + * @param key The DNSKEY record to use as part of signing + * @param privkey The PrivateKey to use when signing + * @param previous If this message is a response, the SIG(0) from the query + */ +public static void +signMessage(Message message, KEYRecord key, PrivateKey privkey, + SIGRecord previous) throws DNSSEC.DNSSECException +{ + + int validity = Options.intValue("sig0validity"); + if (validity < 0) + validity = VALIDITY; + + long now = System.currentTimeMillis(); + Date timeSigned = new Date(now); + Date timeExpires = new Date(now + validity * 1000); + + SIGRecord sig = DNSSEC.signMessage(message, previous, key, privkey, + timeSigned, timeExpires); + + message.addRecord(sig, Section.ADDITIONAL); +} + +/** + * Verify a message using SIG(0). + * @param message The message to be signed + * @param b An array containing the message in unparsed form. This is + * necessary since SIG(0) signs the message in wire format, and we can't + * recreate the exact wire format (with the same name compression). + * @param key The KEY record to verify the signature with. + * @param previous If this message is a response, the SIG(0) from the query + */ +public static void +verifyMessage(Message message, byte [] b, KEYRecord key, SIGRecord previous) + throws DNSSEC.DNSSECException +{ + SIGRecord sig = null; + Record [] additional = message.getSectionArray(Section.ADDITIONAL); + for (int i = 0; i < additional.length; i++) { + if (additional[i].getType() != Type.SIG) + continue; + if (((SIGRecord) additional[i]).getTypeCovered() != 0) + continue; + sig = (SIGRecord) additional[i]; + break; + } + DNSSEC.verifyMessage(message, b, sig, previous, key); +} + +} |