libjava/classpath/gnu/java/security/Registry.java

   1 /* Registry.java --
   2    Copyright (C) 2001, 2002, 2003, 2004, 2006 Free Software Foundation, Inc.
   3
   4 This file is a part of GNU Classpath.
   5
   6 GNU Classpath is free software; you can redistribute it and/or modify
   7 it under the terms of the GNU General Public License as published by
   8 the Free Software Foundation; either version 2 of the License, or (at
   9 your option) any later version.
  10
  11 GNU Classpath is distributed in the hope that it will be useful, but
  12 WITHOUT ANY WARRANTY; without even the implied warranty of
  13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  14 General Public License for more details.
  15
  16 You should have received a copy of the GNU General Public License
  17 along with GNU Classpath; if not, write to the Free Software
  18 Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301
  19 USA
  20
  21 Linking this library statically or dynamically with other modules is
  22 making a combined work based on this library.  Thus, the terms and
  23 conditions of the GNU General Public License cover the whole
  24 combination.
  25
  26 As a special exception, the copyright holders of this library give you
  27 permission to link this library with independent modules to produce an
  28 executable, regardless of the license terms of these independent
  29 modules, and to copy and distribute the resulting executable under
  30 terms of your choice, provided that you also meet, for each linked
  31 independent module, the terms and conditions of the license of that
  32 module.  An independent module is a module which is not derived from
  33 or based on this library.  If you modify this library, you may extend
  34 this exception to your version of the library, but you are not
  35 obligated to do so.  If you do not wish to do so, delete this
  36 exception statement from your version.  */
  37
  38
  39 package gnu.java.security;
  40
  41 /**
  42  * A placeholder for <i>names</i> and <i>literals</i> used throughout this
  43  * library.
  44  */
  45 public interface Registry
  46 {
  47
  48   // Constants
  49   // -------------------------------------------------------------------------
  50
  51   /** The name of our Providers. */
  52   String GNU_SECURITY = "GNU";
  53   String GNU_CRYPTO = "GNU-CRYPTO";
  54   String GNU_SASL = "GNU-SASL";
  55
  56   /** Our version number. */
  57   String VERSION_STRING = "2.1.0";
  58
  59   // Names of properties to use in Maps when initialising primitives .........
  60
  61   // Symmetric block cipher algorithms and synonyms...........................
  62
  63   String ANUBIS_CIPHER = "anubis";
  64
  65   String BLOWFISH_CIPHER = "blowfish";
  66
  67   String DES_CIPHER = "des";
  68
  69   String KHAZAD_CIPHER = "khazad";
  70
  71   String RIJNDAEL_CIPHER = "rijndael";
  72
  73   String SERPENT_CIPHER = "serpent";
  74
  75   String SQUARE_CIPHER = "square";
  76
  77   String TRIPLEDES_CIPHER = "tripledes";
  78
  79   String TWOFISH_CIPHER = "twofish";
  80
  81   String CAST5_CIPHER = "cast5";
  82
  83   String NULL_CIPHER = "null";
  84
  85   /** AES is synonymous to Rijndael for 128-bit block size only. */
  86   String AES_CIPHER = "aes";
  87
  88   /** TripleDES is also known as DESede. */
  89   String DESEDE_CIPHER = "desede";
  90
  91   /** CAST5 is also known as CAST-128. */
  92   String CAST128_CIPHER = "cast128";
  93
  94   String CAST_128_CIPHER = "cast-128";
  95
  96   // Message digest algorithms and synonyms...................................
  97
  98   String WHIRLPOOL_HASH = "whirlpool";
  99
 100   String RIPEMD128_HASH = "ripemd128";
 101
 102   String RIPEMD160_HASH = "ripemd160";
 103
 104   String SHA160_HASH = "sha-160";
 105
 106   String SHA256_HASH = "sha-256";
 107
 108   String SHA384_HASH = "sha-384";
 109
 110   String SHA512_HASH = "sha-512";
 111
 112   String TIGER_HASH = "tiger";
 113
 114   String HAVAL_HASH = "haval";
 115
 116   String MD5_HASH = "md5";
 117
 118   String MD4_HASH = "md4";
 119
 120   String MD2_HASH = "md2";
 121
 122   /** RIPEMD-128 is synonymous to RIPEMD128. */
 123   String RIPEMD_128_HASH = "ripemd-128";
 124
 125   /** RIPEMD-160 is synonymous to RIPEMD160. */
 126   String RIPEMD_160_HASH = "ripemd-160";
 127
 128   /** SHA-1 is synonymous to SHA-160. */
 129   String SHA_1_HASH = "sha-1";
 130
 131   /** SHA1 is synonymous to SHA-160. */
 132   String SHA1_HASH = "sha1";
 133
 134   /** SHA is synonymous to SHA-160. */
 135   String SHA_HASH = "sha";
 136
 137   // Symmetric block cipher modes of operations...............................
 138
 139   /** Electronic CodeBook mode. */
 140   String ECB_MODE = "ecb";
 141
 142   /** Counter (NIST) mode. */
 143   String CTR_MODE = "ctr";
 144
 145   /** Integer Counter Mode (David McGrew). */
 146   String ICM_MODE = "icm";
 147
 148   /** Output Feedback Mode (NIST). */
 149   String OFB_MODE = "ofb";
 150
 151   /** Cipher block chaining mode (NIST). */
 152   String CBC_MODE = "cbc";
 153
 154   /** Cipher feedback mode (NIST). */
 155   String CFB_MODE = "cfb";
 156
 157   /** Authenticated-Encrypted mode. */
 158   String EAX_MODE = "eax";
 159
 160   // Padding scheme names and synonyms........................................
 161
 162   /** PKCS#7 padding scheme. */
 163   String PKCS7_PAD = "pkcs7";
 164
 165   /** Trailing Bit Complement padding scheme. */
 166   String TBC_PAD = "tbc";
 167
 168   /** EME-PKCS1-v1_5 padding as described in section 7.2 in RFC-3447. */
 169   String EME_PKCS1_V1_5_PAD = "eme-pkcs1-v1.5";
 170
 171   /** SSLv3 padding scheme. */
 172   String SSL3_PAD = "ssl3";
 173
 174   /** TLSv1 padding scheme. */
 175   String TLS1_PAD = "tls1";
 176
 177   // Pseudo-random number generators..........................................
 178
 179   /** (Apparently) RC4 keystream PRNG. */
 180   String ARCFOUR_PRNG = "arcfour";
 181
 182   /** We use "rc4" as an alias for "arcfour". */
 183   String RC4_PRNG = "rc4";
 184
 185   /** PRNG based on David McGrew's Integer Counter Mode. */
 186   String ICM_PRNG = "icm";
 187
 188   /** PRNG based on a designated hash function. */
 189   String MD_PRNG = "md";
 190
 191   /** PRNG based on UMAC's Key Derivation Function. */
 192   String UMAC_PRNG = "umac-kdf";
 193
 194   /**
 195    * PRNG based on PBKDF2 from PKCS #5 v.2. This is suffixed with the name
 196    * of a MAC to be used as a PRF.
 197    */
 198   String PBKDF2_PRNG_PREFIX = "pbkdf2-";
 199
 200   /** The continuously-seeded pseudo-random number generator. */
 201   String CSPRNG_PRNG = "csprng";
 202
 203   /** The Fortuna PRNG. */
 204   String FORTUNA_PRNG = "fortuna";
 205
 206   /** The Fortuna generator PRNG. */
 207   String FORTUNA_GENERATOR_PRNG = "fortuna-generator";
 208
 209   // Asymmetric keypair generators............................................
 210
 211   String DSS_KPG = "dss";
 212
 213   String RSA_KPG = "rsa";
 214
 215   String DH_KPG = "dh";
 216
 217   String SRP_KPG = "srp";
 218
 219   /** DSA is synonymous to DSS. */
 220   String DSA_KPG = "dsa";
 221
 222   // Signature-with-appendix schemes..........................................
 223
 224   String DSS_SIG = "dss";
 225
 226   String RSA_SIG_PREFIX = "rsa-";
 227
 228   String RSA_PSS_ENCODING = "pss";
 229
 230   String RSA_PSS_SIG = RSA_SIG_PREFIX + RSA_PSS_ENCODING;
 231
 232   String RSA_PKCS1_V1_5_ENCODING = "pkcs1-v1.5";
 233
 234   String RSA_PKCS1_V1_5_SIG = RSA_SIG_PREFIX + RSA_PKCS1_V1_5_ENCODING;
 235
 236   /** DSA is synonymous to DSS. */
 237   String DSA_SIG = "dsa";
 238
 239   // Key agreement protocols .................................................
 240
 241   String DH_KA = "dh";
 242
 243   String ELGAMAL_KA = "elgamal";
 244
 245   String SRP6_KA = "srp6";
 246
 247   String SRP_SASL_KA = "srp-sasl";
 248
 249   String SRP_TLS_KA = "srp-tls";
 250
 251   // Keyed-Hash Message Authentication Code ..................................
 252
 253   /** Name prefix of every HMAC implementation. */
 254   String HMAC_NAME_PREFIX = "hmac-";
 255
 256   // Other MAC algorithms ....................................................
 257
 258   /** The One-key CBC MAC. */
 259   String OMAC_PREFIX = "omac-";
 260
 261   /** Message Authentication Code using Universal Hashing (Ted Krovetz). */
 262   String UHASH32 = "uhash32";
 263
 264   String UMAC32 = "umac32";
 265
 266   /** The Truncated Multi-Modular Hash Function -v1 (David McGrew). */
 267   String TMMH16 = "tmmh16";
 268
 269   //   String TMMH32 = "tmmh32";
 270
 271   // Format IDs used to identify how we externalise asymmetric keys ..........
 272   // fully-qualified names of the supported codecs
 273   String RAW_ENCODING = "gnu.crypto.raw.format";
 274   String X509_ENCODING = "gnu.crypto.x509.format";
 275   String PKCS8_ENCODING = "gnu.crypto.pkcs8.format";
 276   String ASN1_ENCODING = "gnu.crypto.asn1.format";
 277
 278   // short names of the same.  used by JCE adapters
 279   String RAW_ENCODING_SHORT_NAME = "RAW";
 280   String X509_ENCODING_SORT_NAME = "X.509";
 281   String PKCS8_ENCODING_SHORT_NAME = "PKCS#8";
 282   String ASN1_ENCODING_SHORT_NAME = "ASN.1";
 283
 284   // unique identifiers of the same
 285   int RAW_ENCODING_ID = 1;
 286   int X509_ENCODING_ID = 2;
 287   int PKCS8_ENCODING_ID = 3;
 288   int ASN1_ENCODING_ID = 4;
 289
 290   // OID strings used in encoding/decoding keys
 291   String DSA_OID_STRING = "1.2.840.10040.4.1";
 292   String RSA_OID_STRING = "1.2.840.113549.1.1.1";
 293   String DH_OID_STRING =  "1.2.840.10046.2.1";
 294
 295   // Magic bytes we generate/expect in externalised asymmetric keys ..........
 296   // the four bytes represent G (0x47) for GNU, 1 (0x01) for Raw format,
 297   // D (0x44) for DSS, R (0x52) for RSA, H (0x48) for Diffie-Hellman, or S
 298   // (0x53) for SRP-6, and finally P (0x50) for Public, p (0x70) for private,
 299   // or S (0x53) for signature.
 300   byte[] MAGIC_RAW_DSS_PUBLIC_KEY = new byte[] { 0x47, RAW_ENCODING_ID, 0x44,
 301                                                 0x50 };
 302
 303   byte[] MAGIC_RAW_DSS_PRIVATE_KEY = new byte[] { 0x47, RAW_ENCODING_ID, 0x44,
 304                                                  0x70 };
 305
 306   byte[] MAGIC_RAW_DSS_SIGNATURE = new byte[] { 0x47, RAW_ENCODING_ID, 0x44,
 307                                                0x53 };
 308
 309   byte[] MAGIC_RAW_RSA_PUBLIC_KEY = new byte[] { 0x47, RAW_ENCODING_ID, 0x52,
 310                                                 0x50 };
 311
 312   byte[] MAGIC_RAW_RSA_PRIVATE_KEY = new byte[] { 0x47, RAW_ENCODING_ID, 0x52,
 313                                                  0x70 };
 314
 315   byte[] MAGIC_RAW_RSA_PSS_SIGNATURE = new byte[] { 0x47, RAW_ENCODING_ID,
 316                                                    0x52, 0x53 };
 317
 318   byte[] MAGIC_RAW_RSA_PKCS1V1_5_SIGNATURE = new byte[] { 0x47, RAW_ENCODING_ID,
 319                                                           0x52, 0x54 };
 320
 321   byte[] MAGIC_RAW_DH_PUBLIC_KEY = new byte[] { 0x47, RAW_ENCODING_ID, 0x48,
 322                                                0x50 };
 323
 324   byte[] MAGIC_RAW_DH_PRIVATE_KEY = new byte[] { 0x47, RAW_ENCODING_ID, 0x48,
 325                                                 0x70 };
 326
 327   byte[] MAGIC_RAW_SRP_PUBLIC_KEY = new byte[] { 0x47, RAW_ENCODING_ID, 0x53,
 328                                                 0x50 };
 329
 330   byte[] MAGIC_RAW_SRP_PRIVATE_KEY = new byte[] { 0x47, RAW_ENCODING_ID, 0x53,
 331                                                  0x70 };
 332
 333   // SASL Property names .....................................................
 334
 335   String SASL_PREFIX = "gnu.crypto.sasl";
 336
 337   /** Name of username property. */
 338   String SASL_USERNAME = SASL_PREFIX + ".username";
 339
 340   /** Name of password property. */
 341   String SASL_PASSWORD = SASL_PREFIX + ".password";
 342
 343   /** Name of authentication information provider packages. */
 344   String SASL_AUTH_INFO_PROVIDER_PKGS = SASL_PREFIX
 345                                         + ".auth.info.provider.pkgs";
 346
 347   /** SASL authorization ID. */
 348   String SASL_AUTHORISATION_ID = SASL_PREFIX + ".authorisation.ID";
 349
 350   /** SASL protocol. */
 351   String SASL_PROTOCOL = SASL_PREFIX + ".protocol";
 352
 353   /** SASL Server name. */
 354   String SASL_SERVER_NAME = SASL_PREFIX + ".server.name";
 355
 356   /** SASL Callback handler. */
 357   String SASL_CALLBACK_HANDLER = SASL_PREFIX + ".callback.handler";
 358
 359   /** SASL channel binding. */
 360   String SASL_CHANNEL_BINDING = SASL_PREFIX + ".channel.binding";
 361
 362   // SASL data element size limits ...........................................
 363
 364   /** The size limit, in bytes, of a SASL OS (Octet Sequence) element. */
 365   int SASL_ONE_BYTE_MAX_LIMIT = 255;
 366
 367   /**
 368    * The size limit, in bytes, of both a SASL MPI (Multi-Precision Integer)
 369    * element and a SASL Text element.
 370    */
 371   int SASL_TWO_BYTE_MAX_LIMIT = 65535;
 372
 373   /** The size limit, in bytes, of a SASL EOS (Extended Octet Sequence) element. */
 374   int SASL_FOUR_BYTE_MAX_LIMIT = 2147483383;
 375
 376   /** The size limit, in bytes, of a SASL Buffer. */
 377   int SASL_BUFFER_MAX_LIMIT = 2147483643;
 378
 379   // Canonical names of SASL mechanisms ......................................
 380
 381   String SASL_ANONYMOUS_MECHANISM = "ANONYMOUS";
 382
 383   String SASL_CRAM_MD5_MECHANISM = "CRAM-MD5";
 384
 385   String SASL_PLAIN_MECHANISM = "PLAIN";
 386
 387   String SASL_SRP_MECHANISM = "SRP";
 388
 389   // Canonical names of Integrity Protection algorithms ......................
 390
 391   String SASL_HMAC_MD5_IALG = "HMACwithMD5";
 392
 393   String SASL_HMAC_SHA_IALG = "HMACwithSHA";
 394
 395   // Quality Of Protection string representations ............................
 396
 397   /** authentication only. */
 398   String QOP_AUTH = "auth";
 399
 400   /** authentication plus integrity protection. */
 401   String QOP_AUTH_INT = "auth-int";
 402
 403   /** authentication plus integrity and confidentiality protection. */
 404   String QOP_AUTH_CONF = "auth-conf";
 405
 406   // SASL mechanism strength string representation ...........................
 407
 408   String STRENGTH_HIGH = "high";
 409
 410   String STRENGTH_MEDIUM = "medium";
 411
 412   String STRENGTH_LOW = "low";
 413
 414   // SASL Server Authentication requirement ..................................
 415
 416   /** Server must authenticate to the client. */
 417   String SERVER_AUTH_TRUE = "true";
 418
 419   /** Server does not need to, or cannot, authenticate to the client. */
 420   String SERVER_AUTH_FALSE = "false";
 421
 422   // SASL mechanism reuse capability .........................................
 423
 424   String REUSE_TRUE = "true";
 425
 426   String REUSE_FALSE = "false";
 427
 428   // Keyrings  ...............................................................
 429
 430   byte[] GKR_MAGIC = new byte[] { 0x47, 0x4b, 0x52, 0x01 };
 431
 432   // Ring usage fields.
 433   int GKR_PRIVATE_KEYS = 1 << 0;
 434
 435   int GKR_PUBLIC_CREDENTIALS = 1 << 1;
 436
 437   int GKR_CERTIFICATES = 1 << 2;
 438
 439   // HMac types.
 440   int GKR_HMAC_MD5_128 = 0;
 441
 442   int GKR_HMAC_SHA_160 = 1;
 443
 444   int GKR_HMAC_MD5_96 = 2;
 445
 446   int GKR_HMAC_SHA_96 = 3;
 447
 448   // Cipher types.
 449   int GKR_CIPHER_AES_128_OFB = 0;
 450
 451   int GKR_CIPHER_AES_128_CBC = 1;
 452
 453   // Methods
 454   // -------------------------------------------------------------------------
 455 }