|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object | +--javax.crypto.CipherSpi | +--com.ibm.crypto.fips.provider.AESCipher
This class implements the AES algorithm in its various modes
(ECB
, CFB
, OFB
, CBC
,
PCBC
) and padding schemes (PKCS5Padding
,
NoPadding
).
AES is a 128-bit block cipher with 128, 192, or 256-bit key.
Field Summary | |
---|---|
static int |
AES_BLOCK_SIZE
|
Constructor Summary | |
---|---|
AESCipher()
Creates an instance of AES cipher with default ECB mode and PKCS5Padding. |
|
AESCipher(java.lang.String mode,
java.lang.String paddingScheme)
Creates an instance of AES cipher with the requested mode and padding. |
Method Summary | |
---|---|
protected byte[] |
engineDoFinal(byte[] input,
int inputOffset,
int inputLen)
Encrypts or decrypts data in a single-part operation, or finishes a multiple-part operation. |
protected int |
engineDoFinal(byte[] input,
int inputOffset,
int inputLen,
byte[] output,
int outputOffset)
Encrypts or decrypts data in a single-part operation, or finishes a multiple-part operation. |
protected int |
engineGetBlockSize()
Returns the block size (in bytes). |
protected byte[] |
engineGetIV()
Returns the initialization vector (IV) in a new buffer. |
protected int |
engineGetKeySize(java.security.Key key)
Returns the key size of the given key object. |
protected int |
engineGetOutputSize(int inputLen)
Returns the length in bytes that an output buffer would need to be in order to hold the result of the next update
or doFinal operation, given the input length
inputLen (in bytes). |
protected java.security.AlgorithmParameters |
engineGetParameters()
Returns the parameters used with this cipher. |
protected void |
engineInit(int opmode,
java.security.Key key,
java.security.spec.AlgorithmParameterSpec params,
java.security.SecureRandom random)
Initializes this cipher with a key, a set of algorithm parameters, and a source of randomness. |
protected void |
engineInit(int opmode,
java.security.Key key,
java.security.AlgorithmParameters params,
java.security.SecureRandom random)
Initializes this cipher with a key, a set of algorithm parameters, and a source of randomness. |
protected void |
engineInit(int opmode,
java.security.Key key,
java.security.SecureRandom random)
Initializes this cipher with a key and a source of randomness. |
protected void |
engineSetMode(java.lang.String mode)
Sets the mode of this cipher. |
protected void |
engineSetPadding(java.lang.String paddingScheme)
Sets the padding mechanism of this cipher. |
protected java.security.Key |
engineUnwrap(byte[] wrappedKey,
java.lang.String wrappedKeyAlgorithm,
int wrappedKeyType)
Unwrap a previously wrapped key. |
protected byte[] |
engineUpdate(byte[] input,
int inputOffset,
int inputLen)
Continues a multiple-part encryption or decryption operation (depending on how this cipher was initialized), processing another data part. |
protected int |
engineUpdate(byte[] input,
int inputOffset,
int inputLen,
byte[] output,
int outputOffset)
Continues a multiple-part encryption or decryption operation (depending on how this cipher was initialized), processing another data part. |
protected byte[] |
engineWrap(java.security.Key key)
Wrap a key. |
protected byte[] |
internalDoFinal(byte[] input,
int inputOffset,
int inputLen)
Encrypts or decrypts data in a single-part operation, or finishes a multiple-part operation. |
protected int |
internalDoFinal(byte[] input,
int inputOffset,
int inputLen,
byte[] output,
int outputOffset)
Encrypts or decrypts data in a single-part operation, or finishes a multiple-part operation. |
protected int |
internalGetBlockSize()
Returns the block size (in bytes). |
protected byte[] |
internalGetIV()
Returns the initialization vector (IV) in a new buffer. |
protected int |
internalGetKeySize(java.security.Key key)
Returns the key size of the given key object. |
protected int |
internalGetOutputSize(int inputLen)
Returns the length in bytes that an output buffer would need to be in order to hold the result of the next update
or doFinal operation, given the input length
inputLen (in bytes). |
protected java.security.AlgorithmParameters |
internalGetParameters()
Returns the parameters used with this cipher. |
protected void |
internalInit(int opmode,
java.security.Key key,
java.security.spec.AlgorithmParameterSpec params,
java.security.SecureRandom random)
Initializes this cipher with a key, a set of algorithm parameters, and a source of randomness. |
protected void |
internalInit(int opmode,
java.security.Key key,
java.security.AlgorithmParameters params,
java.security.SecureRandom random)
Initializes this cipher with a key, a set of algorithm parameters, and a source of randomness. |
protected void |
internalInit(int opmode,
java.security.Key key,
java.security.SecureRandom random)
Initializes this cipher with a key and a source of randomness. |
protected void |
internalSetMode(java.lang.String mode)
Sets the mode of this cipher. |
protected void |
internalSetPadding(java.lang.String paddingScheme)
Sets the padding mechanism of this cipher. |
protected java.security.Key |
internalUnwrap(byte[] wrappedKey,
java.lang.String wrappedKeyAlgorithm,
int wrappedKeyType)
Unwrap a previously wrapped key. |
protected byte[] |
internalUpdate(byte[] input,
int inputOffset,
int inputLen)
Continues a multiple-part encryption or decryption operation (depending on how this cipher was initialized), processing another data part. |
protected int |
internalUpdate(byte[] input,
int inputOffset,
int inputLen,
byte[] output,
int outputOffset)
Continues a multiple-part encryption or decryption operation (depending on how this cipher was initialized), processing another data part. |
protected byte[] |
internalWrap(java.security.Key key)
Wrap a key. |
boolean |
isFipsApproved()
Module identifies if the cryptographic operation (algorithm) is FIPS certified |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Field Detail |
public static final int AES_BLOCK_SIZE
Constructor Detail |
public AESCipher()
java.lang.SecurityException
- if this constructor fails to authenticate
the JCE framework.public AESCipher(java.lang.String mode, java.lang.String paddingScheme) throws java.security.NoSuchAlgorithmException, javax.crypto.NoSuchPaddingException
mode
- the cipher modepaddingScheme
- the padding mechanismjava.security.NoSuchAlgorithmException
- if the required cipher mode is
unavailablejavax.crypto.NoSuchPaddingException
- if the required padding mechanism
is unavailableMethod Detail |
public boolean isFipsApproved()
AlgorithmStatus
isFipsApproved
in interface AlgorithmStatus
AlgorithmStatus.isFipsApproved()
protected void engineSetMode(java.lang.String mode) throws java.security.NoSuchAlgorithmException, FIPSRuntimeException
engineSetMode
in class javax.crypto.CipherSpi
mode
- the cipher modejava.security.NoSuchAlgorithmException
- if the requested cipher mode does
not existFIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected void internalSetMode(java.lang.String mode) throws java.security.NoSuchAlgorithmException
mode
- the cipher modejava.security.NoSuchAlgorithmException
- if the requested cipher mode does
not existprotected void engineSetPadding(java.lang.String paddingScheme) throws javax.crypto.NoSuchPaddingException, FIPSRuntimeException
engineSetPadding
in class javax.crypto.CipherSpi
padding
- the padding mechanismjavax.crypto.NoSuchPaddingException
- if the requested padding mechanism
does not existFIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected void internalSetPadding(java.lang.String paddingScheme) throws javax.crypto.NoSuchPaddingException
padding
- the padding mechanismjavax.crypto.NoSuchPaddingException
- if the requested padding mechanism
does not existprotected int engineGetBlockSize() throws FIPSRuntimeException
engineGetBlockSize
in class javax.crypto.CipherSpi
FIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected int internalGetBlockSize()
protected int engineGetOutputSize(int inputLen) throws FIPSRuntimeException
update
or doFinal
operation, given the input length
inputLen
(in bytes).
This call takes into account any unprocessed (buffered) data from a
previous update
call, and padding.
The actual output length of the next update
or
doFinal
call may be smaller than the length returned by
this method.
engineGetOutputSize
in class javax.crypto.CipherSpi
inputLen
- the input length (in bytes)FIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected int internalGetOutputSize(int inputLen)
update
or doFinal
operation, given the input length
inputLen
(in bytes).
This call takes into account any unprocessed (buffered) data from a
previous update
call, and padding.
The actual output length of the next update
or
doFinal
call may be smaller than the length returned by
this method.
inputLen
- the input length (in bytes)protected byte[] engineGetIV() throws FIPSRuntimeException
This is useful in the context of password-based encryption or decryption, where the IV is derived from a user-provided passphrase.
engineGetIV
in class javax.crypto.CipherSpi
FIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected byte[] internalGetIV()
This is useful in the context of password-based encryption or decryption, where the IV is derived from a user-provided passphrase.
protected java.security.AlgorithmParameters engineGetParameters() throws FIPSRuntimeException
The returned parameters may be the same that were used to initialize this cipher, or may contain a combination of default and random parameter values used by the underlying cipher implementation if this cipher requires algorithm parameters but was not initialized with any.
engineGetParameters
in class javax.crypto.CipherSpi
FIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected java.security.AlgorithmParameters internalGetParameters()
The returned parameters may be the same that were used to initialize this cipher, or may contain a combination of default and random parameter values used by the underlying cipher implementation if this cipher requires algorithm parameters but was not initialized with any.
protected void engineInit(int opmode, java.security.Key key, java.security.SecureRandom random) throws java.security.InvalidKeyException, FIPSRuntimeException
The cipher is initialized for one of the following four operations:
encryption, decryption, key wrapping or key unwrapping, depending on
the value of opmode
.
If this cipher requires an initialization vector (IV), it will get
it from random
.
This behaviour should only be used in encryption or key wrapping
mode, however.
When initializing a cipher that requires an IV for decryption or
key unwrapping, the IV
(same IV that was used for encryption or key wrapping) must be provided
explicitly as a
parameter, in order to get the correct result.
This method also cleans existing buffer and other related state information.
engineInit
in class javax.crypto.CipherSpi
opmode
- the operation mode of this cipher (this is one of
the following:
ENCRYPT_MODE
, DECRYPT_MODE
,
WRAP_MODE
or UNWRAP_MODE
)key
- the secret keyrandom
- the source of randomnessjava.security.InvalidKeyException
- if the given key is inappropriate for
initializing this cipherFIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected void internalInit(int opmode, java.security.Key key, java.security.SecureRandom random) throws java.security.InvalidKeyException
The cipher is initialized for one of the following four operations:
encryption, decryption, key wrapping or key unwrapping, depending on
the value of opmode
.
If this cipher requires an initialization vector (IV), it will get
it from random
.
This behaviour should only be used in encryption or key wrapping
mode, however.
When initializing a cipher that requires an IV for decryption or
key unwrapping, the IV
(same IV that was used for encryption or key wrapping) must be provided
explicitly as a
parameter, in order to get the correct result.
This method also cleans existing buffer and other related state information.
opmode
- the operation mode of this cipher (this is one of
the following:
ENCRYPT_MODE
, DECRYPT_MODE
,
WRAP_MODE
or UNWRAP_MODE
)key
- the secret keyrandom
- the source of randomnessjava.security.InvalidKeyException
- if the given key is inappropriate for
initializing this cipherprotected void engineInit(int opmode, java.security.Key key, java.security.spec.AlgorithmParameterSpec params, java.security.SecureRandom random) throws java.security.InvalidKeyException, java.security.InvalidAlgorithmParameterException, FIPSRuntimeException
The cipher is initialized for one of the following four operations:
encryption, decryption, key wrapping or key unwrapping, depending on
the value of opmode
.
If this cipher (including its underlying feedback or padding scheme)
requires any random bytes, it will get them from random
.
engineInit
in class javax.crypto.CipherSpi
opmode
- the operation mode of this cipher (this is one of
the following:
ENCRYPT_MODE
, DECRYPT_MODE
,
WRAP_MODE
or UNWRAP_MODE
)key
- the encryption keyparams
- the algorithm parametersrandom
- the source of randomnessjava.security.InvalidKeyException
- if the given key is inappropriate for
initializing this cipherjava.security.InvalidAlgorithmParameterException
- if the given algorithm
parameters are inappropriate for this cipherFIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected void internalInit(int opmode, java.security.Key key, java.security.spec.AlgorithmParameterSpec params, java.security.SecureRandom random) throws java.security.InvalidKeyException, java.security.InvalidAlgorithmParameterException
The cipher is initialized for one of the following four operations:
encryption, decryption, key wrapping or key unwrapping, depending on
the value of opmode
.
If this cipher (including its underlying feedback or padding scheme)
requires any random bytes, it will get them from random
.
opmode
- the operation mode of this cipher (this is one of
the following:
ENCRYPT_MODE
, DECRYPT_MODE
,
WRAP_MODE
or UNWRAP_MODE
)key
- the encryption keyparams
- the algorithm parametersrandom
- the source of randomnessjava.security.InvalidKeyException
- if the given key is inappropriate for
initializing this cipherjava.security.InvalidAlgorithmParameterException
- if the given algorithm
parameters are inappropriate for this cipherprotected void engineInit(int opmode, java.security.Key key, java.security.AlgorithmParameters params, java.security.SecureRandom random) throws java.security.InvalidKeyException, java.security.InvalidAlgorithmParameterException, FIPSRuntimeException
The cipher is initialized for one of the following four operations:
encryption, decryption, key wrapping or key unwrapping, depending on
the value of opmode
.
If this cipher requires any algorithm parameters and
params
is null, the underlying cipher implementation is
supposed to generate the required parameters itself (using
provider-specific default or random values) if it is being
initialized for encryption or key wrapping, and raise an
InvalidAlgorithmParameterException
if it is being
initialized for decryption or key unwrapping.
The generated parameters can be retrieved using
engineGetParameters or
engineGetIV (if the parameter is an IV).
If this cipher (including its underlying feedback or padding scheme)
requires any random bytes (e.g., for parameter generation), it will get
them from random
.
Note that when a Cipher object is initialized, it loses all previously-acquired state. In other words, initializing a Cipher is equivalent to creating a new instance of that Cipher and initializing it.
engineInit
in class javax.crypto.CipherSpi
opmode
- the operation mode of this cipher (this is one of
the following:
ENCRYPT_MODE
, DECRYPT_MODE
,
WRAP_MODE
or UNWRAP_MODE
)key
- the encryption keyparams
- the algorithm parametersrandom
- the source of randomnessjava.security.InvalidKeyException
- if the given key is inappropriate for
initializing this cipherjava.security.InvalidAlgorithmParameterException
- if the given algorithm
parameters are inappropriate for this cipher,
or if this cipher is being initialized for decryption and requires
algorithm parameters and params
is null.FIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected void internalInit(int opmode, java.security.Key key, java.security.AlgorithmParameters params, java.security.SecureRandom random) throws java.security.InvalidKeyException, java.security.InvalidAlgorithmParameterException
The cipher is initialized for one of the following four operations:
encryption, decryption, key wrapping or key unwrapping, depending on
the value of opmode
.
If this cipher requires any algorithm parameters and
params
is null, the underlying cipher implementation is
supposed to generate the required parameters itself (using
provider-specific default or random values) if it is being
initialized for encryption or key wrapping, and raise an
InvalidAlgorithmParameterException
if it is being
initialized for decryption or key unwrapping.
The generated parameters can be retrieved using
engineGetParameters or
engineGetIV (if the parameter is an IV).
If this cipher (including its underlying feedback or padding scheme)
requires any random bytes (e.g., for parameter generation), it will get
them from random
.
Note that when a Cipher object is initialized, it loses all previously-acquired state. In other words, initializing a Cipher is equivalent to creating a new instance of that Cipher and initializing it.
opmode
- the operation mode of this cipher (this is one of
the following:
ENCRYPT_MODE
, DECRYPT_MODE
,
WRAP_MODE
or UNWRAP_MODE
)key
- the encryption keyparams
- the algorithm parametersrandom
- the source of randomnessjava.security.InvalidKeyException
- if the given key is inappropriate for
initializing this cipherjava.security.InvalidAlgorithmParameterException
- if the given algorithm
parameters are inappropriate for this cipher,
or if this cipher is being initialized for decryption and requires
algorithm parameters and params
is null.protected byte[] engineUpdate(byte[] input, int inputOffset, int inputLen) throws FIPSRuntimeException
The first inputLen
bytes in the input
buffer, starting at inputOffset
, are processed, and the
result is stored in a new buffer.
engineUpdate
in class javax.crypto.CipherSpi
input
- the input bufferinputOffset
- the offset in input
where the input
startsinputLen
- the input lengthjava.lang.IllegalStateException
- if this cipher is in a wrong state
(e.g., has not been initialized)FIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected byte[] internalUpdate(byte[] input, int inputOffset, int inputLen)
The first inputLen
bytes in the input
buffer, starting at inputOffset
, are processed, and the
result is stored in a new buffer.
input
- the input bufferinputOffset
- the offset in input
where the input
startsinputLen
- the input lengthjava.lang.IllegalStateException
- if this cipher is in a wrong state
(e.g., has not been initialized)protected int engineUpdate(byte[] input, int inputOffset, int inputLen, byte[] output, int outputOffset) throws javax.crypto.ShortBufferException, FIPSRuntimeException
The first inputLen
bytes in the input
buffer, starting at inputOffset
, are processed, and the
result is stored in the output
buffer, starting at
outputOffset
.
engineUpdate
in class javax.crypto.CipherSpi
input
- the input bufferinputOffset
- the offset in input
where the input
startsinputLen
- the input lengthoutput
- the buffer for the resultoutputOffset
- the offset in output
where the result
is storedoutput
javax.crypto.ShortBufferException
- if the given output buffer is too small
to hold the resultFIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected int internalUpdate(byte[] input, int inputOffset, int inputLen, byte[] output, int outputOffset) throws javax.crypto.ShortBufferException
The first inputLen
bytes in the input
buffer, starting at inputOffset
, are processed, and the
result is stored in the output
buffer, starting at
outputOffset
.
input
- the input bufferinputOffset
- the offset in input
where the input
startsinputLen
- the input lengthoutput
- the buffer for the resultoutputOffset
- the offset in output
where the result
is storedoutput
javax.crypto.ShortBufferException
- if the given output buffer is too small
to hold the resultprotected byte[] engineDoFinal(byte[] input, int inputOffset, int inputLen) throws javax.crypto.IllegalBlockSizeException, javax.crypto.BadPaddingException, FIPSRuntimeException
The first inputLen
bytes in the input
buffer, starting at inputOffset
inclusive, and any input
bytes that may have been buffered during a previous update
operation, are processed, with padding (if requested) being applied.
The result is stored in a new buffer.
A call to this method resets this cipher object to the state
it was in when previously initialized via a call to
engineInit
.
That is, the object is reset and available to encrypt or decrypt
(depending on the operation mode that was specified in the call to
engineInit
) more data.
engineDoFinal
in class javax.crypto.CipherSpi
input
- the input bufferinputOffset
- the offset in input
where the input
startsinputLen
- the input lengthjavax.crypto.IllegalBlockSizeException
- if this cipher is a block cipher,
no padding has been requested (only in encryption mode), and the total
input length of the data processed by this cipher is not a multiple of
block sizejavax.crypto.BadPaddingException
- if this cipher is in decryption mode,
and (un)padding has been requested, but the decrypted data is not
bounded by the appropriate padding bytesFIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected byte[] internalDoFinal(byte[] input, int inputOffset, int inputLen) throws javax.crypto.IllegalBlockSizeException, javax.crypto.BadPaddingException
The first inputLen
bytes in the input
buffer, starting at inputOffset
inclusive, and any input
bytes that may have been buffered during a previous update
operation, are processed, with padding (if requested) being applied.
The result is stored in a new buffer.
A call to this method resets this cipher object to the state
it was in when previously initialized via a call to
engineInit
.
That is, the object is reset and available to encrypt or decrypt
(depending on the operation mode that was specified in the call to
engineInit
) more data.
input
- the input bufferinputOffset
- the offset in input
where the input
startsinputLen
- the input lengthjavax.crypto.IllegalBlockSizeException
- if this cipher is a block cipher,
no padding has been requested (only in encryption mode), and the total
input length of the data processed by this cipher is not a multiple of
block sizejavax.crypto.BadPaddingException
- if this cipher is in decryption mode,
and (un)padding has been requested, but the decrypted data is not
bounded by the appropriate padding bytesprotected int engineDoFinal(byte[] input, int inputOffset, int inputLen, byte[] output, int outputOffset) throws javax.crypto.ShortBufferException, javax.crypto.IllegalBlockSizeException, javax.crypto.BadPaddingException, FIPSRuntimeException
The first inputLen
bytes in the input
buffer, starting at inputOffset
inclusive, and any input
bytes that may have been buffered during a previous update
operation, are processed, with padding (if requested) being applied.
The result is stored in the output
buffer, starting at
outputOffset
inclusive.
If the output
buffer is too small to hold the result,
a ShortBufferException
is thrown.
A call to this method resets this cipher object to the state
it was in when previously initialized via a call to
engineInit
.
That is, the object is reset and available to encrypt or decrypt
(depending on the operation mode that was specified in the call to
engineInit
) more data.
engineDoFinal
in class javax.crypto.CipherSpi
input
- the input bufferinputOffset
- the offset in input
where the input
startsinputLen
- the input lengthoutput
- the buffer for the resultoutputOffset
- the offset in output
where the result
is storedoutput
javax.crypto.IllegalBlockSizeException
- if this cipher is a block cipher,
no padding has been requested (only in encryption mode), and the total
input length of the data processed by this cipher is not a multiple of
block sizejavax.crypto.ShortBufferException
- if the given output buffer is too small
to hold the resultjavax.crypto.BadPaddingException
- if this cipher is in decryption mode,
and (un)padding has been requested, but the decrypted data is not
bounded by the appropriate padding bytesFIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected int internalDoFinal(byte[] input, int inputOffset, int inputLen, byte[] output, int outputOffset) throws javax.crypto.ShortBufferException, javax.crypto.IllegalBlockSizeException, javax.crypto.BadPaddingException
The first inputLen
bytes in the input
buffer, starting at inputOffset
inclusive, and any input
bytes that may have been buffered during a previous update
operation, are processed, with padding (if requested) being applied.
The result is stored in the output
buffer, starting at
outputOffset
inclusive.
If the output
buffer is too small to hold the result,
a ShortBufferException
is thrown.
A call to this method resets this cipher object to the state
it was in when previously initialized via a call to
engineInit
.
That is, the object is reset and available to encrypt or decrypt
(depending on the operation mode that was specified in the call to
engineInit
) more data.
input
- the input bufferinputOffset
- the offset in input
where the input
startsinputLen
- the input lengthoutput
- the buffer for the resultoutputOffset
- the offset in output
where the result
is storedoutput
javax.crypto.IllegalBlockSizeException
- if this cipher is a block cipher,
no padding has been requested (only in encryption mode), and the total
input length of the data processed by this cipher is not a multiple of
block sizejavax.crypto.ShortBufferException
- if the given output buffer is too small
to hold the resultjavax.crypto.BadPaddingException
- if this cipher is in decryption mode,
and (un)padding has been requested, but the decrypted data is not
bounded by the appropriate padding bytesprotected byte[] engineWrap(java.security.Key key) throws javax.crypto.IllegalBlockSizeException, java.security.InvalidKeyException, FIPSRuntimeException
engineWrap
in class javax.crypto.CipherSpi
key
- the key to be wrapped.javax.crypto.IllegalBlockSizeException
- if this cipher is a block
cipher, no padding has been requested, and the length of the
encoding of the key to be wrapped is not a
multiple of the block size.java.security.InvalidKeyException
- if it is impossible or unsafe to
wrap the key with this cipher (e.g., a hardware protected key is
being passed to a software only cipher).protected byte[] internalWrap(java.security.Key key) throws javax.crypto.IllegalBlockSizeException, java.security.InvalidKeyException
key
- the key to be wrapped.javax.crypto.IllegalBlockSizeException
- if this cipher is a block
cipher, no padding has been requested, and the length of the
encoding of the key to be wrapped is not a
multiple of the block size.java.security.InvalidKeyException
- if it is impossible or unsafe to
wrap the key with this cipher (e.g., a hardware protected key is
being passed to a software only cipher).protected java.security.Key engineUnwrap(byte[] wrappedKey, java.lang.String wrappedKeyAlgorithm, int wrappedKeyType) throws java.security.InvalidKeyException, java.security.NoSuchAlgorithmException, FIPSRuntimeException
engineUnwrap
in class javax.crypto.CipherSpi
wrappedKey
- the key to be unwrapped.wrappedKeyAlgorithm
- the algorithm the wrapped key is for.wrappedKeyType
- the type of the wrapped key.
This is one of Cipher.SECRET_KEY
,
Cipher.PRIVATE_KEY
, or Cipher.PUBLIC_KEY
.java.security.InvalidKeyException
- if wrappedKey
does not
represent a wrapped key, or if the algorithm associated with the
wrapped key is different from wrappedKeyAlgorithm
and/or its key type is different from wrappedKeyType
.java.security.NoSuchAlgorithmException
- if no installed providers
can create keys for the wrappedKeyAlgorithm
.FIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected java.security.Key internalUnwrap(byte[] wrappedKey, java.lang.String wrappedKeyAlgorithm, int wrappedKeyType) throws java.security.InvalidKeyException, java.security.NoSuchAlgorithmException
wrappedKey
- the key to be unwrapped.wrappedKeyAlgorithm
- the algorithm the wrapped key is for.wrappedKeyType
- the type of the wrapped key.
This is one of Cipher.SECRET_KEY
,
Cipher.PRIVATE_KEY
, or Cipher.PUBLIC_KEY
.java.security.InvalidKeyException
- if wrappedKey
does not
represent a wrapped key, or if the algorithm associated with the
wrapped key is different from wrappedKeyAlgorithm
and/or its key type is different from wrappedKeyType
.java.security.NoSuchAlgorithmException
- if no installed providers
can create keys for the wrappedKeyAlgorithm
.protected int engineGetKeySize(java.security.Key key) throws java.security.InvalidKeyException, FIPSRuntimeException
This concrete method has been added to this previously-defined
abstract class. It throws an UnsupportedOperationException
if it is not overridden by the provider.
engineGetKeySize
in class javax.crypto.CipherSpi
key
- the key object.java.security.InvalidKeyException
- if key
is invalid.FIPSRuntimeException
- if SelfTest.isFipsRunnable returns false.protected int internalGetKeySize(java.security.Key key) throws java.security.InvalidKeyException
This concrete method has been added to this previously-defined
abstract class. It throws an UnsupportedOperationException
if it is not overridden by the provider.
key
- the key object.java.security.InvalidKeyException
- if key
is invalid.
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: INNER | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |