GitBucket
Newer
#if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
#pragma warning disable
using System;
using System.IO;
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1;
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.Cms;
using BestHTTP.SecureProtocol.Org.BouncyCastle.Asn1.X509;
using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto;
using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto.Parameters;
using BestHTTP.SecureProtocol.Org.BouncyCastle.Security;
using BestHTTP.SecureProtocol.Org.BouncyCastle.X509;
namespace BestHTTP.SecureProtocol.Org.BouncyCastle.Cms
{
public class KeyTransRecipientInfoGenerator : RecipientInfoGenerator
{
private static readonly CmsEnvelopedHelper Helper = CmsEnvelopedHelper.Instance;
private TbsCertificateStructure recipientTbsCert;
private AsymmetricKeyParameter recipientPublicKey;
private Asn1OctetString subjectKeyIdentifier;
// Derived fields
private SubjectPublicKeyInfo info;
private IssuerAndSerialNumber issuerAndSerialNumber;
private SecureRandom random;
internal KeyTransRecipientInfoGenerator()
{
}
protected KeyTransRecipientInfoGenerator(IssuerAndSerialNumber issuerAndSerialNumber)
{
this.issuerAndSerialNumber = issuerAndSerialNumber;
}
protected KeyTransRecipientInfoGenerator(byte[] subjectKeyIdentifier)
{
this.subjectKeyIdentifier = new DerOctetString(subjectKeyIdentifier);
}
internal X509Certificate RecipientCert
{
set
{
this.recipientTbsCert = CmsUtilities.GetTbsCertificateStructure(value);
this.recipientPublicKey = value.GetPublicKey();
this.info = recipientTbsCert.SubjectPublicKeyInfo;
}
}
internal AsymmetricKeyParameter RecipientPublicKey
{
set
{
this.recipientPublicKey = value;
try
{
info = SubjectPublicKeyInfoFactory.CreateSubjectPublicKeyInfo(
recipientPublicKey);
}
catch (IOException)
{
throw new ArgumentException("can't extract key algorithm from this key");
}
}
}
internal Asn1OctetString SubjectKeyIdentifier
{
set { this.subjectKeyIdentifier = value; }
}
public RecipientInfo Generate(KeyParameter contentEncryptionKey, SecureRandom random)
{
AlgorithmIdentifier keyEncryptionAlgorithm = this.AlgorithmDetails;
this.random = random;
byte[] encryptedKeyBytes = GenerateWrappedKey(contentEncryptionKey);
RecipientIdentifier recipId;
if (recipientTbsCert != null)
{
IssuerAndSerialNumber issuerAndSerial = new IssuerAndSerialNumber(
recipientTbsCert.Issuer, recipientTbsCert.SerialNumber.Value);
recipId = new RecipientIdentifier(issuerAndSerial);
}
else
{
recipId = new RecipientIdentifier(subjectKeyIdentifier);
}
return new RecipientInfo(new KeyTransRecipientInfo(recipId, keyEncryptionAlgorithm,
new DerOctetString(encryptedKeyBytes)));
}
protected virtual AlgorithmIdentifier AlgorithmDetails
{
get
{
return info.AlgorithmID;
}
}
protected virtual byte[] GenerateWrappedKey(KeyParameter contentEncryptionKey)
{
byte[] keyBytes = contentEncryptionKey.GetKey();
AlgorithmIdentifier keyEncryptionAlgorithm = info.AlgorithmID;
IWrapper keyWrapper = Helper.CreateWrapper(keyEncryptionAlgorithm.Algorithm.Id);
keyWrapper.Init(true, new ParametersWithRandom(recipientPublicKey, random));
return keyWrapper.Wrap(keyBytes, 0, keyBytes.Length);
}
}
}
#pragma warning restore
#endif