com.entrust.toolkit.security.crypto.signature

Class RawDsaCapi

java.lang.Object

java.security.SignatureSpi

java.security.Signature

com.entrust.toolkit.security.provider.EntrustDSA

com.entrust.toolkit.security.crypto.signature.DsaCapi

com.entrust.toolkit.security.crypto.signature.RawDsaCapi

All Implemented Interfaces:

ExtendedSignature

Deprecated.

since 8.0; use DsaWithNoneSignature instead

public final class RawDsaCapi
extends DsaCapi

Provides a CAPI implementation of the Raw DSA signature algorithm.

This class expects its input to be already hashed with SHA-1. It is not expected that the Raw DSA algorithm will be heavily used by application developers; it is mainly for internal purposes.

This class supports private keys of type CapiDsaPrivateKey.

Use the "Raw" DSA signature like any other signature algorithm, but supply the hashed data to the update() methods instead of the original data to be signed. You can call all of the update methods in any combination, but when you call sign() or verify() exactly 20 bytes must have been passed during the updates. This is necessary because DSA was specifically designed for the 160 bit hashes of SHA-1.

Note

Applications should not instantiate this class directly. Instead, they should use Signature.getInstance("RawDSA") to create a raw DSA Signature object. Applications should then invoke Signature.initSign(capiPrivateKey), which initializes the Signature object with a CapiDsaPrivateKey.

Since:

7.0

See Also:

Signature, CapiDsaPrivateKey

Nested Class Summary

Nested classes/interfaces inherited from class com.entrust.toolkit.security.provider.EntrustDSA

EntrustDSA.Raw

Field Summary

Fields inherited from class java.security.Signature

SIGN, state, UNINITIALIZED, VERIFY

Fields inherited from class java.security.SignatureSpi

appRandom

Constructor Summary

Constructors

Constructor and Description
RawDsaCapi() Deprecated. Create an instance of this class.

Method Summary

Methods

Modifier and Type	Method and Description
protected void	engineInitSign(java.security.PrivateKey privateKey) Deprecated. Initializes this signature object with the specified private key for signing operations.
protected byte[]	engineSign() Deprecated. Returns the signature bytes of all the data updated so far.
protected void	engineUpdate(byte b) Deprecated. Updates the data to be signed or verified using the specified byte.
protected void	engineUpdate(byte[] b, int offset, int length) Deprecated. Updates the data to be signed or verified, using the specified array of bytes, starting at the specified offset.

Methods inherited from class com.entrust.toolkit.security.crypto.signature.DsaCapi

engineInitVerify, engineVerify, getDigest

Methods inherited from class com.entrust.toolkit.security.provider.EntrustDSA

engineGetParameter, engineSetParameter, engineSetParameter, RStoASN1, RStoASN1

Methods inherited from class java.security.Signature

clone, getAlgorithm, getInstance, getInstance, getInstance, getParameter, getParameters, getProvider, initSign, initSign, initVerify, initVerify, setParameter, setParameter, sign, sign, toString, update, update, update, update, verify, verify

Methods inherited from class java.security.SignatureSpi

engineGetParameters, engineInitSign, engineSign, engineUpdate, engineVerify

Methods inherited from class java.lang.Object

equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Constructor Detail

RawDsaCapi

public RawDsaCapi()

Deprecated.

Create an instance of this class. Should not be called explicitly.

Method Detail

engineInitSign

protected void engineInitSign(java.security.PrivateKey privateKey)
                       throws java.security.InvalidKeyException

Deprecated.

Initializes this signature object with the specified private key for signing operations. This method must be called before any of the other engine methods, or a NullPointerException will be thrown.

Overrides:

engineInitSign in class DsaCapi

Parameters:

privateKey - the CapiDsaPrivateKey to be used to generate the signature.

Throws:

java.security.InvalidKeyException - if the given key does not reside in CAPI, or if no MessageDigest instance can be obtained for the key.

engineSign

protected byte[] engineSign()
                     throws java.security.SignatureException

Deprecated.

Returns the signature bytes of all the data updated so far.

Overrides:

engineSign in class DsaCapi

Returns:

the signature bytes

Throws:

java.security.SignatureException - if any error occurs creating the signature

engineUpdate

protected void engineUpdate(byte b)
                     throws java.security.SignatureException

Deprecated.

Updates the data to be signed or verified using the specified byte.

Overrides:

engineUpdate in class DsaCapi

Parameters:

b - The byte to use for the update

Throws:

java.security.SignatureException - if too many bytes are added to the message digest value.

engineUpdate

protected void engineUpdate(byte[] b,
                int offset,
                int length)
                     throws java.lang.ArrayIndexOutOfBoundsException,
                            java.security.SignatureException

Deprecated.

Updates the data to be signed or verified, using the specified array of bytes, starting at the specified offset.

Overrides:

engineUpdate in class DsaCapi

Parameters:

b - the array of bytes

offset - the offset to start from in the array of bytes

length - the number of bytes to use, starting at offset

Throws:

java.lang.ArrayIndexOutOfBoundsException - if the given offset and length refer to data outside the bounds of the given array.

java.security.SignatureException - if the given data will exceed the number of bytes that can be signed.