samples/org/apache/xml/security/samples/iaik/IAIKInterOp.java - santuario-java - Git at Google

 /**
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements. See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership. The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License. You may obtain a copy of the License at
  *
  * http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing,
  * software distributed under the License is distributed on an
  * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
  * KIND, either express or implied. See the License for the
  * specific language governing permissions and limitations
  * under the License.
  */
 package org.apache.xml.security.samples.iaik;

 import java.io.File;
 import java.security.PublicKey;
 import java.security.cert.X509Certificate;

 import javax.xml.parsers.DocumentBuilderFactory;
 import javax.xml.xpath.XPath;
 import javax.xml.xpath.XPathConstants;
 import javax.xml.xpath.XPathFactory;

 import org.apache.xml.security.keys.KeyInfo;
 import org.apache.xml.security.signature.XMLSignature;
 import org.apache.xml.security.samples.DSNamespaceContext;
 import org.apache.xml.security.samples.SampleUtils;
 import org.apache.xml.security.utils.Constants;
 import org.apache.xml.security.utils.XMLUtils;
 import org.apache.xml.security.utils.resolver.ResourceResolverSpi;
 import org.apache.xml.security.utils.resolver.implementations.ResolverAnonymous;
 import org.w3c.dom.Element;

 /**
  * @author $Author$
  */
 public class IAIKInterOp {

     /** {@link org.apache.commons.logging} logging facility */
     static org.apache.commons.logging.Log log =
         org.apache.commons.logging.LogFactory.getLog(IAIKInterOp.class.getName());

     /** Field schemaValidate */
     static final boolean schemaValidate = false;

     /** Field signatureSchemaFile */
     static final String signatureSchemaFile = "samples/data/xmldsig-core-schema.xsd";

     static {
         org.apache.xml.security.Init.init();
     }

     /**
      * Method main
      *
      * @param unused
      */
     public static void main(String unused[]) {

         if (schemaValidate) {
             System.out.println("We do schema-validation");
         } else {
             System.out.println("We do not schema-validation");
         }

         javax.xml.parsers.DocumentBuilderFactory dbf =
             javax.xml.parsers.DocumentBuilderFactory.newInstance();

         if (IAIKInterOp.schemaValidate) {
             dbf.setAttribute("http://apache.org/xml/features/validation/schema", Boolean.TRUE);
             dbf.setAttribute("http://apache.org/xml/features/dom/defer-node-expansion", Boolean.TRUE);
             dbf.setValidating(true);
             dbf.setAttribute("http://xml.org/sax/features/validation", Boolean.TRUE);
             dbf.setAttribute("http://apache.org/xml/properties/schema/external-schemaLocation",
                              Constants.SignatureSpecNS + " " + IAIKInterOp.signatureSchemaFile);
         }

         dbf.setNamespaceAware(true);
         dbf.setAttribute("http://xml.org/sax/features/namespaces", Boolean.TRUE);

         String gregorsDir = "samples/data/at/iaik/ixsil/";
         String filenames[] = {
                               gregorsDir + "signatureAlgorithms/signatures/hMACSignature.xml"
                               ,gregorsDir + "signatureAlgorithms/signatures/hMACShortSignature.xml"
                               ,gregorsDir + "signatureAlgorithms/signatures/dSASignature.xml"
                               ,gregorsDir + "signatureAlgorithms/signatures/rSASignature.xml"
                               ,gregorsDir + "transforms/signatures/base64DecodeSignature.xml"
                               ,gregorsDir + "transforms/signatures/c14nSignature.xml"
                               ,gregorsDir + "coreFeatures/signatures/manifestSignature.xml"
                               ,gregorsDir + "transforms/signatures/xPathSignature.xml"
                               ,gregorsDir + "coreFeatures/signatures/signatureTypesSignature.xml"
                               ,gregorsDir + "transforms/signatures/envelopedSignatureSignature.xml"
         };
         verifyAnonymous(gregorsDir, dbf);

         for (int i = 0; i < 2; i++) {
             String signatureFileName = filenames[i];

             try {
                 org.apache.xml.security.samples.signature
                 .VerifyMerlinsExamplesFifteen.verifyHMAC(dbf, signatureFileName);
             } catch (Exception ex) {
                 System.out.println("The XML signature in file "
                                    + signatureFileName + " crashed the application (bad)");
                 ex.printStackTrace();
                 System.out.println();
             }
         }

         for (int i = 2; i < filenames.length; i++) {
             String signatureFileName = filenames[i];

             try {
                 org.apache.xml.security.samples.signature
                 .VerifyMerlinsExamplesSixteen.verify(dbf, signatureFileName);
             } catch (Exception ex) {
                 System.out.println("The XML signature in file "
                                    + signatureFileName + " crashed the application (bad)");
                 ex.printStackTrace();
                 System.out.println();
             }
         }

         for (int i = 2; i < filenames.length; i++) {
             String signatureFileName = filenames[i];

             try {
                 org.apache.xml.security.samples.signature
                 .VerifyMerlinsExamplesTwentyThree.verify(dbf, signatureFileName);
             } catch (Exception ex) {
                 System.out.println("The XML signature in file "
                                    + signatureFileName + " crashed the application (bad)");
                 ex.printStackTrace();
                 System.out.println();
             }
         }
     }

     public static void verifyAnonymous(String gregorsDir, DocumentBuilderFactory dbf) {
         String filename =
             gregorsDir + "coreFeatures/signatures/anonymousReferenceSignature.xml";
         try {
             String anonymousRef =
                 gregorsDir + "coreFeatures/samples/anonymousReferenceContent.xml";
             ResourceResolverSpi resolver = new ResolverAnonymous(anonymousRef);
             File f = new File(filename);

             System.out.println("Try to verify " + f.toURI().toURL().toString());

             javax.xml.parsers.DocumentBuilder db = dbf.newDocumentBuilder();
             org.w3c.dom.Document doc = db.parse(new java.io.FileInputStream(f));

             XPathFactory xpf = XPathFactory.newInstance();
             XPath xpath = xpf.newXPath();
             xpath.setNamespaceContext(new DSNamespaceContext());

             String expression = "//ds:Signature[1]";
             Element sigElement =
                 (Element) xpath.evaluate(expression, doc, XPathConstants.NODE);

             XMLSignature signature = new XMLSignature(sigElement, f.toURI().toURL().toString());

             signature.setFollowNestedManifests(false);
             signature.addResourceResolver(resolver);

             KeyInfo ki = signature.getKeyInfo();

             if (ki != null) {
                 X509Certificate cert = signature.getKeyInfo().getX509Certificate();

                 if (cert != null) {
                     System.out.println(
                         "The XML signature in file " + f.toURI().toURL().toString() + " is "
                         + (signature.checkSignatureValue(cert) ? "valid (good)"
                         : "invalid !!!!! (bad)")
                     );
                 } else {
                     PublicKey pk = signature.getKeyInfo().getPublicKey();

                     if (pk != null) {
                         System.out.println(
                             "The XML signature in file " + f.toURI().toURL().toString() + " is "
                             + (signature.checkSignatureValue(pk) ? "valid (good)"
                             : "invalid !!!!! (bad)")
                         );
                     } else {
                         System.out.println("Did not find a public key, so I can't check the signature");
                     }
                 }
             } else {
                 System.out.println("Did not find a KeyInfo");
             }
         } catch (Exception ex) {
             System.out.println("The XML signature in file "
                                + filename + " crashed the application (bad)");
             ex.printStackTrace();
             System.out.println();
         }
     }

 }
	/**
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing,
	* software distributed under the License is distributed on an
	* "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	* KIND, either express or implied. See the License for the
	* specific language governing permissions and limitations
	* under the License.
	*/
	package org.apache.xml.security.samples.iaik;

	import java.io.File;
	import java.security.PublicKey;
	import java.security.cert.X509Certificate;

	import javax.xml.parsers.DocumentBuilderFactory;
	import javax.xml.xpath.XPath;
	import javax.xml.xpath.XPathConstants;
	import javax.xml.xpath.XPathFactory;

	import org.apache.xml.security.keys.KeyInfo;
	import org.apache.xml.security.signature.XMLSignature;
	import org.apache.xml.security.samples.DSNamespaceContext;
	import org.apache.xml.security.samples.SampleUtils;
	import org.apache.xml.security.utils.Constants;
	import org.apache.xml.security.utils.XMLUtils;
	import org.apache.xml.security.utils.resolver.ResourceResolverSpi;
	import org.apache.xml.security.utils.resolver.implementations.ResolverAnonymous;
	import org.w3c.dom.Element;

	/**
	* @author $Author$
	*/
	public class IAIKInterOp {

	/** {@link org.apache.commons.logging} logging facility */
	static org.apache.commons.logging.Log log =
	org.apache.commons.logging.LogFactory.getLog(IAIKInterOp.class.getName());

	/** Field schemaValidate */
	static final boolean schemaValidate = false;

	/** Field signatureSchemaFile */
	static final String signatureSchemaFile = "samples/data/xmldsig-core-schema.xsd";

	static {
	org.apache.xml.security.Init.init();
	}

	/**
	* Method main
	*
	* @param unused
	*/
	public static void main(String unused[]) {

	if (schemaValidate) {
	System.out.println("We do schema-validation");
	} else {
	System.out.println("We do not schema-validation");
	}

	javax.xml.parsers.DocumentBuilderFactory dbf =
	javax.xml.parsers.DocumentBuilderFactory.newInstance();

	if (IAIKInterOp.schemaValidate) {
	dbf.setAttribute("http://apache.org/xml/features/validation/schema", Boolean.TRUE);
	dbf.setAttribute("http://apache.org/xml/features/dom/defer-node-expansion", Boolean.TRUE);
	dbf.setValidating(true);
	dbf.setAttribute("http://xml.org/sax/features/validation", Boolean.TRUE);
	dbf.setAttribute("http://apache.org/xml/properties/schema/external-schemaLocation",
	Constants.SignatureSpecNS + " " + IAIKInterOp.signatureSchemaFile);
	}

	dbf.setNamespaceAware(true);
	dbf.setAttribute("http://xml.org/sax/features/namespaces", Boolean.TRUE);

	String gregorsDir = "samples/data/at/iaik/ixsil/";
	String filenames[] = {
	gregorsDir + "signatureAlgorithms/signatures/hMACSignature.xml"
	,gregorsDir + "signatureAlgorithms/signatures/hMACShortSignature.xml"
	,gregorsDir + "signatureAlgorithms/signatures/dSASignature.xml"
	,gregorsDir + "signatureAlgorithms/signatures/rSASignature.xml"
	,gregorsDir + "transforms/signatures/base64DecodeSignature.xml"
	,gregorsDir + "transforms/signatures/c14nSignature.xml"
	,gregorsDir + "coreFeatures/signatures/manifestSignature.xml"
	,gregorsDir + "transforms/signatures/xPathSignature.xml"
	,gregorsDir + "coreFeatures/signatures/signatureTypesSignature.xml"
	,gregorsDir + "transforms/signatures/envelopedSignatureSignature.xml"
	};
	verifyAnonymous(gregorsDir, dbf);

	for (int i = 0; i < 2; i++) {
	String signatureFileName = filenames[i];

	try {
	org.apache.xml.security.samples.signature
	.VerifyMerlinsExamplesFifteen.verifyHMAC(dbf, signatureFileName);
	} catch (Exception ex) {
	System.out.println("The XML signature in file "
	+ signatureFileName + " crashed the application (bad)");
	ex.printStackTrace();
	System.out.println();
	}
	}

	for (int i = 2; i < filenames.length; i++) {
	String signatureFileName = filenames[i];

	try {
	org.apache.xml.security.samples.signature
	.VerifyMerlinsExamplesSixteen.verify(dbf, signatureFileName);
	} catch (Exception ex) {
	System.out.println("The XML signature in file "
	+ signatureFileName + " crashed the application (bad)");
	ex.printStackTrace();
	System.out.println();
	}
	}

	for (int i = 2; i < filenames.length; i++) {
	String signatureFileName = filenames[i];

	try {
	org.apache.xml.security.samples.signature
	.VerifyMerlinsExamplesTwentyThree.verify(dbf, signatureFileName);
	} catch (Exception ex) {
	System.out.println("The XML signature in file "
	+ signatureFileName + " crashed the application (bad)");
	ex.printStackTrace();
	System.out.println();
	}
	}
	}

	public static void verifyAnonymous(String gregorsDir, DocumentBuilderFactory dbf) {
	String filename =
	gregorsDir + "coreFeatures/signatures/anonymousReferenceSignature.xml";
	try {
	String anonymousRef =
	gregorsDir + "coreFeatures/samples/anonymousReferenceContent.xml";
	ResourceResolverSpi resolver = new ResolverAnonymous(anonymousRef);
	File f = new File(filename);

	System.out.println("Try to verify " + f.toURI().toURL().toString());

	javax.xml.parsers.DocumentBuilder db = dbf.newDocumentBuilder();
	org.w3c.dom.Document doc = db.parse(new java.io.FileInputStream(f));

	XPathFactory xpf = XPathFactory.newInstance();
	XPath xpath = xpf.newXPath();
	xpath.setNamespaceContext(new DSNamespaceContext());

	String expression = "//ds:Signature[1]";
	Element sigElement =
	(Element) xpath.evaluate(expression, doc, XPathConstants.NODE);

	XMLSignature signature = new XMLSignature(sigElement, f.toURI().toURL().toString());

	signature.setFollowNestedManifests(false);
	signature.addResourceResolver(resolver);

	KeyInfo ki = signature.getKeyInfo();

	if (ki != null) {
	X509Certificate cert = signature.getKeyInfo().getX509Certificate();

	if (cert != null) {
	System.out.println(
	"The XML signature in file " + f.toURI().toURL().toString() + " is "
	+ (signature.checkSignatureValue(cert) ? "valid (good)"
	: "invalid !!!!! (bad)")
	);
	} else {
	PublicKey pk = signature.getKeyInfo().getPublicKey();

	if (pk != null) {
	System.out.println(
	"The XML signature in file " + f.toURI().toURL().toString() + " is "
	+ (signature.checkSignatureValue(pk) ? "valid (good)"
	: "invalid !!!!! (bad)")
	);
	} else {
	System.out.println("Did not find a public key, so I can't check the signature");
	}
	}
	} else {
	System.out.println("Did not find a KeyInfo");
	}
	} catch (Exception ex) {
	System.out.println("The XML signature in file "
	+ filename + " crashed the application (bad)");
	ex.printStackTrace();
	System.out.println();
	}
	}

	}