From: Richard Afanuh <afanuh@cs.cornell.edu>
To: "'java-security@java.sun.com'" <java-security@java.sun.com>
Subject: Problem compiling DHkeyAgreement( package not found)
Date: Thu, 22 Apr 1999 15:21:20 -0400
------_=_NextPart_000_01BE8CF5.52C9BBC2
Content-Type: text/plain; charset="iso-8859-1"
X-Sun-Content-Length: 526
Hi.
I downloaded jce1_2-do from sunMicrosystems and
copied and tried to compile the DHKeyAgreement example in a jdk1.2
environment.
However, if I try to compile, I get the following 4 errors;
Package javax.crypto not found in import
Package javax.crypto.spec not found in import
Package javax.crypto.interfaces not found in import
Class com.sun.crypto.provider.sunJCE not found in import;
Am I missing something?
I did set the path on my system to the folder containing the jce1_2-do.jar
file
<<DHKeyAgreement2.java>>
------_=_NextPart_000_01BE8CF5.52C9BBC2
Content-Type: application/octet-stream; name="DHKeyAgreement2.java"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: attachment;
filename="DHKeyAgreement2.java"
X-Sun-Content-Length: 12493
//Diffie-Hellman Key Exchange between 2 Parties
/*
* Copyright 1997, 1998 by Sun Microsystems, Inc.,
* 901 San Antonio Road, Palo Alto, California, 94303, U.S.A.
* All rights reserved.
*
* This software is the confidential and proprietary information
* of Sun Microsystems, Inc. ("Confidential Information"). You
* shall not disclose such Confidential Information and shall use
* it only in accordance with the terms of the license agreement
* you entered into with Sun.
*/
import java.io.*;
import java.math.BigInteger;
import java.security.*;
import java.security.spec.*;
import java.security.interfaces.*;
import javax.crypto.*;
import javax.crypto.spec.*;
import javax.crypto.interfaces.*;
import com.sun.crypto.provider.SunJCE;
/**
* This program executes the Diffie-Hellman key agreement protocol
* between 2 parties: Alice and Bob.
*
* By default, preconfigured parameters (1024-bit prime modulus and =
base
* generator used by SKIP) are used.
* If this program is called with the "-gen" option, a new set of
* parameters is created.
*/
public class DHKeyAgreement2 {
private DHKeyAgreement2() {}
public static void main(String argv[]) {
try {
String mode =3D "USE_SKIP_DH_PARAMS";
// Add JCE to the list of providers
SunJCE jce =3D new SunJCE();
Security.addProvider(jce);
DHKeyAgreement2 keyAgree =3D new DHKeyAgreement2();
if (argv.length > 1) {
keyAgree.usage();
throw new Exception("Wrong number of command options");
} else if (argv.length =3D=3D 1) {
if (!(argv[0].equals("-gen"))) {
keyAgree.usage();
throw new Exception("Unrecognized flag: " + argv[0]);
}
mode =3D "GENERATE_DH_PARAMS";
}
keyAgree.run(mode);
} catch (Exception e) {
System.err.println("Error: " + e);
System.exit(1);
}
}
private void run(String mode) throws Exception {
DHParameterSpec dhSkipParamSpec;
if (mode.equals("GENERATE_DH_PARAMS")) {
// Some central authority creates new DH parameters
System.err.println
("Creating Diffie-Hellman parameters (takes VERY long) ...");
AlgorithmParameterGenerator paramGen
=3D AlgorithmParameterGenerator.getInstance("DH");
paramGen.init(512);
AlgorithmParameters params =3D paramGen.generateParameters();
dhSkipParamSpec =3D (DHParameterSpec)params.getParameterSpec
(DHParameterSpec.class);
} else {
// use some pre-generated, default DH parameters
System.err.println("Using SKIP Diffie-Hellman parameters");
dhSkipParamSpec =3D new DHParameterSpec(skip1024Modulus,
skip1024Base);
}
/*
* Alice creates her own DH key pair, using the DH parameters from
* above
*/
System.err.println("ALICE: Generate DH keypair ...");
KeyPairGenerator aliceKpairGen =3D KeyPairGenerator.getInstance("DH");
aliceKpairGen.initialize(dhSkipParamSpec);
KeyPair aliceKpair =3D aliceKpairGen.generateKeyPair();
// Alice executes Phase1 of her version of the DH protocol
System.err.println("ALICE: Execute PHASE1 ...");
KeyAgreement aliceKeyAgree =3D KeyAgreement.getInstance("DH");
aliceKeyAgree.init(aliceKpair.getPrivate());
// Alice encodes her public key, and sends it over to Bob.
byte[] alicePubKeyEnc =3D aliceKpair.getPublic().getEncoded();
/*
* Let's turn over to Bob. Bob has received Alice's public key
* in encoded format.
* He instantiates a DH public key from the encoded key material.
*/
KeyFactory bobKeyFac =3D KeyFactory.getInstance("DH");
X509EncodedKeySpec x509KeySpec =3D new X509EncodedKeySpec
(alicePubKeyEnc);
PublicKey alicePubKey =3D bobKeyFac.generatePublic(x509KeySpec);
/*
* Bob gets the DH parameters associated with Alice's public key.=20
* He must use the same parameters when he generates his own key
* pair.
*/
DHParameterSpec dhParamSpec =3D =
((DHPublicKey)alicePubKey).getParams();
// Bob creates his own DH key pair
System.err.println("BOB: Generate DH keypair ...");
KeyPairGenerator bobKpairGen =3D KeyPairGenerator.getInstance("DH");
bobKpairGen.initialize(dhParamSpec);
KeyPair bobKpair =3D bobKpairGen.generateKeyPair();
// Bob executes Phase1 of his version of the DH protocol
System.err.println("BOB: Execute PHASE1 ...");
KeyAgreement bobKeyAgree =3D KeyAgreement.getInstance("DH");
bobKeyAgree.init(bobKpair.getPrivate());
// Bob encodes his public key, and sends it over to Alice.
byte[] bobPubKeyEnc =3D bobKpair.getPublic().getEncoded();
/*
* Alice uses Bob's public key for Phase2 of her version of the DH
* protocol.
* Before she can do so, she has to instanticate a DH public key
* from Bob's encoded key material.
*/
KeyFactory aliceKeyFac =3D KeyFactory.getInstance("DH");
x509KeySpec =3D new X509EncodedKeySpec(bobPubKeyEnc);
PublicKey bobPubKey =3D aliceKeyFac.generatePublic(x509KeySpec);
System.err.println("ALICE: Execute PHASE2 ...");
aliceKeyAgree.doPhase(bobPubKey, true);
/*
* Bob uses Alice's public key for Phase2 of his version of the DH
* protocol.
*/
System.err.println("BOB: Execute PHASE2 ...");
bobKeyAgree.doPhase(alicePubKey, true);
=20
/*
* At this stage, both Alice and Bob have completed the DH key
* agreement protocol.
* Both generate the (same) shared secret.
*/
byte[] aliceSharedSecret =3D aliceKeyAgree.generateSecret();
int aliceLen =3D aliceSharedSecret.length;
byte[] bobSharedSecret =3D new byte[aliceLen];
int bobLen;
try {
// provide output buffer that is too short
bobLen =3D bobKeyAgree.generateSecret(bobSharedSecret, 1);
} catch (ShortBufferException e) {
System.out.println(e.getMessage());
}
// provide output buffer of required size
bobLen =3D bobKeyAgree.generateSecret(bobSharedSecret, 0);
System.out.println("Alice secret: " + toHexString(aliceSharedSecret));
System.out.println("Bob secret: " + toHexString(bobSharedSecret));
if (!java.util.Arrays.equals(aliceSharedSecret, =
bobSharedSecret))
throw new Exception("Shared secrets differ");
System.err.println("Shared secrets are the same");
/*
* Now let's return the shared secret as a SecretKey object
* and use it for encryption. First, we use DES in ECB mode
* as the encryption algorithm. DES in ECB mode does not =
require any
* parameters.
*
* Then we use DES in CBC mode, which requires an =
initialization
* vector (IV) parameter. In CBC mode, you need to initialize =
the
* Cipher object with an IV, which can be supplied using the
* javax.crypto.spec.IvParameterSpec class. Note that you have =
to use
* the same IV for encryption and decryption: If you use a =
different
* IV for decryption than you used for encryption, decryption =
will
* fail.
*
* Note: If you do not specify an IV when you initialize the
* Cipher object for encryption, the underlying implementation
* will generate a random one, which you have to retrieve using =
the
* javax.crypto.Cipher.getParameters() method, which returns an =
* instance of java.security.AlgorithmParameters. You need to =
transfer
* the contents of that object (e.g., in encoded format, =
obtained via
* the AlgorithmParameters.getEncoded() method) to the party =
who will
* do the decryption. When initializing the Cipher for =
decryption,
* the (reinstantiated) AlgorithmParameters object must be =
passed to
* the Cipher.init() method.
*/
System.out.println("Return shared secret as SecretKey object ...");
// Bob
bobKeyAgree.doPhase(alicePubKey, true);
SecretKey bobDesKey =3D bobKeyAgree.generateSecret("DES");
// Alice
aliceKeyAgree.doPhase(bobPubKey, true);
SecretKey aliceDesKey =3D aliceKeyAgree.generateSecret("DES");
/*
* Bob encrypts, using DES in ECB mode
*/
Cipher bobCipher =3D Cipher.getInstance("DES/ECB/PKCS5Padding");
bobCipher.init(Cipher.ENCRYPT_MODE, bobDesKey);
byte[] cleartext =3D "This is just an example".getBytes();
byte[] ciphertext =3D bobCipher.doFinal(cleartext);
/*
* Alice decrypts, using DES in ECB mode
*/
Cipher aliceCipher =3D Cipher.getInstance("DES/ECB/PKCS5Padding");
aliceCipher.init(Cipher.DECRYPT_MODE, aliceDesKey);
byte[] recovered =3D aliceCipher.doFinal(ciphertext);
=20
if (!java.util.Arrays.equals(cleartext, recovered))
throw new Exception("DIFFERENT");
System.err.println("SAME"); =20
/*
* Bob encrypts, using DES in CBC mode
*/
bobCipher =3D Cipher.getInstance("DES/CBC/PKCS5Padding");
bobCipher.init(Cipher.ENCRYPT_MODE, bobDesKey);
cleartext =3D "This is just an example".getBytes();
ciphertext =3D bobCipher.doFinal(cleartext);
// Retrieve the parameter that was used, and transfer it to =
Alice in
// encoded format
byte[] encodedParams =3D =
bobCipher.getParameters().getEncoded();
/*
* Alice decrypts, using DES in CBC mode
*/
// Instantiate AlgorithmParameters object from parameter =
encoding
// obtained from Bob
AlgorithmParameters params =3D =
AlgorithmParameters.getInstance("DES");
params.init(encodedParams);
aliceCipher =3D Cipher.getInstance("DES/CBC/PKCS5Padding");
aliceCipher.init(Cipher.DECRYPT_MODE, aliceDesKey, params);
recovered =3D aliceCipher.doFinal(ciphertext);
=20
if (!java.util.Arrays.equals(cleartext, recovered))
throw new Exception("DIFFERENT");
System.err.println("SAME"); =20
}
/*
* Converts a byte to hex digit and writes to the supplied buffer
*/
private void byte2hex(byte b, StringBuffer buf) {
char[] hexChars =3D { '0', '1', '2', '3', '4', '5', '6', '7', =
'8',
'9', 'A', 'B', 'C', 'D', 'E', 'F' };
int high =3D ((b & 0xf0) >> 4);
int low =3D (b & 0x0f);
buf.append(hexChars[high]);
buf.append(hexChars[low]);
}
/*
* Converts a byte array to hex string
*/
private String toHexString(byte[] block) {
StringBuffer buf =3D new StringBuffer();
int len =3D block.length;
for (int i =3D 0; i < len; i++) {
byte2hex(block[i], buf);
if (i < len-1) {
buf.append(":");
}
}=20
return buf.toString();
}
/*
* Prints the usage of this test.
*/
private void usage() {
System.err.print("DHKeyAgreement usage: ");
System.err.println("[-gen]");
}
// The 1024 bit Diffie-Hellman modulus values used by SKIP
private static final byte skip1024ModulusBytes[] =3D {
(byte)0xF4, (byte)0x88, (byte)0xFD, (byte)0x58,
(byte)0x4E, (byte)0x49, (byte)0xDB, (byte)0xCD,
(byte)0x20, (byte)0xB4, (byte)0x9D, (byte)0xE4,
(byte)0x91, (byte)0x07, (byte)0x36, (byte)0x6B,
(byte)0x33, (byte)0x6C, (byte)0x38, (byte)0x0D,
(byte)0x45, (byte)0x1D, (byte)0x0F, (byte)0x7C,
(byte)0x88, (byte)0xB3, (byte)0x1C, (byte)0x7C,
(byte)0x5B, (byte)0x2D, (byte)0x8E, (byte)0xF6,
(byte)0xF3, (byte)0xC9, (byte)0x23, (byte)0xC0,
(byte)0x43, (byte)0xF0, (byte)0xA5, (byte)0x5B,
(byte)0x18, (byte)0x8D, (byte)0x8E, (byte)0xBB,
(byte)0x55, (byte)0x8C, (byte)0xB8, (byte)0x5D,
(byte)0x38, (byte)0xD3, (byte)0x34, (byte)0xFD,
(byte)0x7C, (byte)0x17, (byte)0x57, (byte)0x43,
(byte)0xA3, (byte)0x1D, (byte)0x18, (byte)0x6C,
(byte)0xDE, (byte)0x33, (byte)0x21, (byte)0x2C,
(byte)0xB5, (byte)0x2A, (byte)0xFF, (byte)0x3C,
(byte)0xE1, (byte)0xB1, (byte)0x29, (byte)0x40,
(byte)0x18, (byte)0x11, (byte)0x8D, (byte)0x7C,
(byte)0x84, (byte)0xA7, (byte)0x0A, (byte)0x72,
(byte)0xD6, (byte)0x86, (byte)0xC4, (byte)0x03,
(byte)0x19, (byte)0xC8, (byte)0x07, (byte)0x29,
(byte)0x7A, (byte)0xCA, (byte)0x95, (byte)0x0C,
(byte)0xD9, (byte)0x96, (byte)0x9F, (byte)0xAB,
(byte)0xD0, (byte)0x0A, (byte)0x50, (byte)0x9B,
(byte)0x02, (byte)0x46, (byte)0xD3, (byte)0x08,
(byte)0x3D, (byte)0x66, (byte)0xA4, (byte)0x5D,
(byte)0x41, (byte)0x9F, (byte)0x9C, (byte)0x7C,
(byte)0xBD, (byte)0x89, (byte)0x4B, (byte)0x22,
(byte)0x19, (byte)0x26, (byte)0xBA, (byte)0xAB,
(byte)0xA2, (byte)0x5E, (byte)0xC3, (byte)0x55,
(byte)0xE9, (byte)0x2F, (byte)0x78, (byte)0xC7
};
// The SKIP 1024 bit modulus
private static final BigInteger skip1024Modulus
=3D new BigInteger(1, skip1024ModulusBytes);
// The base used with the SKIP 1024 bit modulus
private static final BigInteger skip1024Base =3D =
BigInteger.valueOf(2);
}
------_=_NextPart_000_01BE8CF5.52C9BBC2--