mirror
/
DMDirc-Client
mirror of https://github.com/DMDirc/DMDirc.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 49 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1098 Commits
14 Branches
Tree: f7b6081fcf
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f7b6081fcf'
${ noResults }
DMDirc-Client/src/com/dmdirc/CipherUtils.java

CipherUtils.java 8.5KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245 
  1. /*

  2.  * Copyright (c) 2006-2007 Chris Smith, Shane Mc Cormack, Gregory Holmes

  3.  *

  4.  * Permission is hereby granted, free of charge, to any person obtaining a copy

  5.  * of this software and associated documentation files (the "Software"), to deal

  6.  * in the Software without restriction, including without limitation the rights

  7.  * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell

  8.  * copies of the Software, and to permit persons to whom the Software is

  9.  * furnished to do so, subject to the following conditions:

  10.  *

  11.  * The above copyright notice and this permission notice shall be included in

  12.  * all copies or substantial portions of the Software.

  13.  *

  14.  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

  15.  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

  16.  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

  17.  * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

  18.  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,

  19.  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE

  20.  * SOFTWARE.

  21.  */

  22. 

  23. package uk.org.ownage.dmdirc;

  24. 

  25. import java.io.IOException;

  26. import java.io.UnsupportedEncodingException;

  27. import java.security.MessageDigest;

  28. import java.security.NoSuchAlgorithmException;

  29. import java.security.spec.AlgorithmParameterSpec;

  30. import java.security.spec.KeySpec;

  31. 

  32. import javax.crypto.Cipher;

  33. import javax.crypto.IllegalBlockSizeException;

  34. import javax.crypto.SecretKey;

  35. import javax.crypto.SecretKeyFactory;

  36. import javax.crypto.spec.PBEKeySpec;

  37. import javax.crypto.spec.PBEParameterSpec;

  38. import javax.swing.JOptionPane;

  39. 

  40. import uk.org.ownage.dmdirc.logger.ErrorLevel;

  41. import uk.org.ownage.dmdirc.logger.Logger;

  42. 

  43. /**

  44.  * Helper class to encrypt and decrypt strings, requests passwords if needed.

  45.  */

  46. public final class CipherUtils {

  47.     /**

  48.      * Encryption cipher.

  49.      */

  50.     private static Cipher ecipher;

  51.     

  52.     /**

  53.      * Decryption cipher.

  54.      */

  55.     private static Cipher dcipher;

  56.     

  57.     /**

  58.      * Salt.

  59.      */

  60.     private static final byte[] SALT = {

  61.         (byte) 0xA9, (byte) 0x9B, (byte) 0xC8, (byte) 0x32,

  62.         (byte) 0x56, (byte) 0x35, (byte) 0xE3, (byte) 0x03,

  63.     };

  64.     

  65.     /**

  66.      * Iteration count.

  67.      */

  68.     private static final int ITERATIONS = 19;

  69.     

  70.     /**

  71.      * number of auth attemps before failing the attempt.

  72.      */

  73.     private static final int AUTH_TRIES = 4;

  74.     

  75.     /**

  76.      * User password.

  77.      */

  78.     private static String password;

  79.     

  80.     /**

  81.      * Prevents creation of a new instance of Encipher.

  82.      */

  83.     private CipherUtils() {

  84.     }

  85.     

  86.     /**

  87.      * Encrypts a string using the stored settings. Will return null if the

  88.      * automatic user authentication fails - use checkauth and auth.

  89.      * @param str String to encrypt

  90.      * @return Encrypted string

  91.      */

  92.     public static String encrypt(final String str) {

  93.         if (!checkAuthed()) {

  94.             if (auth()) {

  95.                 createCiphers();

  96.             } else {

  97.                 return null;

  98.             }

  99.         }

  100.         try {

  101.             return new String(ecipher.doFinal(str.getBytes("UTF8")));

  102.         } catch (javax.crypto.BadPaddingException e) {

  103.             Logger.error(ErrorLevel.WARNING, "Unable to decrypt string", e);

  104.         } catch (IllegalBlockSizeException e) {

  105.             Logger.error(ErrorLevel.WARNING, "Unable to decrypt string", e);

  106.         } catch (UnsupportedEncodingException e) {

  107.             Logger.error(ErrorLevel.WARNING, "Unable to decrypt string", e);

  108.         } catch (java.io.IOException e) {

  109.             Logger.error(ErrorLevel.WARNING, "Unable to decrypt string", e);

  110.         }

  111.         return null;

  112.     }

  113.     

  114.     /**

  115.      * Encrypts a string using the stored settings. Will return null if the

  116.      * automatic user authentication fails - use checkauth and auth.

  117.      * @param str String to decrypt

  118.      * @return Decrypted string

  119.      */

  120.     public static String decrypt(final String str) {

  121.         if (!checkAuthed()) {

  122.             if (auth()) {

  123.                 createCiphers();

  124.             } else {

  125.                 return null;

  126.             }

  127.         }

  128.         try {

  129.             return new String(dcipher.doFinal(str.getBytes()), "UTF8");

  130.         } catch (javax.crypto.BadPaddingException e) {

  131.             Logger.error(ErrorLevel.WARNING, "Unable to decrypt string", e);

  132.         } catch (IllegalBlockSizeException e) {

  133.             Logger.error(ErrorLevel.WARNING, "Unable to decrypt string", e);

  134.         } catch (UnsupportedEncodingException e) {

  135.             Logger.error(ErrorLevel.WARNING, "Unable to decrypt string", e);

  136.         } catch (java.io.IOException e) {

  137.             Logger.error(ErrorLevel.WARNING, "Unable to decrypt string", e);

  138.         }

  139.         return null;

  140.     }

  141.     

  142.     /**

  143.      * Performs a SHA-512 hash.

  144.      * @param data String to hashed

  145.      * @return hashed string

  146.      */

  147.     public static String hash(final String data) {

  148.         try {

  149.             return new String(MessageDigest.getInstance("SHA-512")

  150.             .digest(data.getBytes("UTF8")));

  151.         } catch (NoSuchAlgorithmException e) {

  152.             Logger.error(ErrorLevel.WARNING, "Unable to hash string", e);

  153.         } catch (IOException e) {

  154.             Logger.error(ErrorLevel.WARNING, "Unable to hash string", e);

  155.         }

  156.         return null;

  157.     }

  158.     

  159.     /**

  160.      * Checks if a user is authed.

  161.      *

  162.      * @return true if authed, false otherwise

  163.      */

  164.     public static boolean checkAuthed() {

  165.         if (dcipher != null && ecipher != null) {

  166.             return true;

  167.         }

  168.         return false;

  169.     }

  170.     

  171.     /**

  172.      * creates ciphers.

  173.      */

  174.     private static void createCiphers() {

  175.         try {

  176.             final KeySpec keySpec = new PBEKeySpec(

  177.                     password.toCharArray(), SALT, ITERATIONS);

  178.             final SecretKey key = SecretKeyFactory.

  179.                     getInstance("PBEWithMD5AndDES").generateSecret(keySpec);

  180.             ecipher = Cipher.getInstance(key.getAlgorithm());

  181.             dcipher = Cipher.getInstance(key.getAlgorithm());

  182.             final AlgorithmParameterSpec paramSpec =

  183.                     new PBEParameterSpec(SALT, ITERATIONS);

  184.             ecipher.init(Cipher.ENCRYPT_MODE, key, paramSpec);

  185.             dcipher.init(Cipher.DECRYPT_MODE, key, paramSpec);

  186.         } catch (java.security.InvalidAlgorithmParameterException e) {

  187.             Logger.error(ErrorLevel.WARNING, "Unable to create ciphers", e);

  188.             ecipher = null;

  189.             dcipher = null;

  190.         } catch (java.security.spec.InvalidKeySpecException e) {

  191.             Logger.error(ErrorLevel.WARNING, "Unable to create ciphers", e);

  192.             ecipher = null;

  193.             dcipher = null;

  194.         } catch (javax.crypto.NoSuchPaddingException e) {

  195.             Logger.error(ErrorLevel.WARNING, "Unable to create ciphers", e);

  196.             ecipher = null;

  197.             dcipher = null;

  198.         } catch (java.security.NoSuchAlgorithmException e) {

  199.             Logger.error(ErrorLevel.WARNING, "Unable to create ciphers", e);

  200.             ecipher = null;

  201.             dcipher = null;

  202.         } catch (java.security.InvalidKeyException e) {

  203.             Logger.error(ErrorLevel.WARNING, "Unable to create ciphers", e);

  204.             ecipher = null;

  205.             dcipher = null;

  206.         }

  207.     }

  208.     

  209.     /**

  210.      * Auths a user and sets the password.

  211.      *

  212.      * @return true if auth was successful, false otherwise.

  213.      */

  214.     public static boolean auth() {

  215.         String passwordHash = null;

  216.         String prompt = "Please enter your password";

  217.         int tries = 1;

  218.         if (Config.hasOption("encryption", "password")) {

  219.             password = Config.getOption("encryption", "password");

  220.         } else {

  221.             if (Config.hasOption("encryption", "passwordHash")) {

  222.                 passwordHash = Config.getOption("encryption", "passwordHash");

  223.             }

  224.             passwordHash = "moo";

  225.             while ((password == null || password.length() == 0) && tries < AUTH_TRIES) {

  226.                 password =  JOptionPane.showInputDialog(prompt);

  227.                 if (passwordHash == null) {

  228.                     passwordHash = hash(password);

  229.                     Config.setOption("encryption", "passwordHash", passwordHash);

  230.                     Config.save();

  231.                 }

  232.                 if (!hash(password).equals(passwordHash)) {

  233.                     prompt = "<html>Password mis-match<br>Please re-enter "

  234.                             + "your password</html>";

  235.                     tries++;

  236.                     password = null;

  237.                 }

  238.             }

  239.         }

  240.         if (tries == AUTH_TRIES) {

  241.             return false;

  242.         }

  243.         return true;

  244.     }

  245. }