javax.crypto: final class: CryptoPolicyParser

javax.crypto
final class: CryptoPolicyParser [javadoc | source]

java.lang.Object
   javax.crypto.CryptoPolicyParser

JCE has two pairs of jurisdiction policy files: one represents U.S. export laws, and the other represents the local laws of the country where the JCE will be used. The jurisdiction policy file has the same syntax as JDK policy files except that JCE has new permission classes called javax.crypto.CryptoPermission and javax.crypto.CryptoAllPermission. The format of a permission entry in the jurisdiction policy file is: permission [, [[, ][, [, , ]]]];

Also see:

java.security.Permissions

java.security.spec.AlgrithomParameterSpec

javax.crypto.CryptoPermission

javax.crypto.CryptoAllPermission

javax.crypto.CryptoPermissions

author: Sharon - Liu

since: 1.4 -

Nested Class Summary:
static final class	CryptoPolicyParser.ParsingException

Constructor:
CryptoPolicyParser() { grantEntries = new Vector(); } Creates a CryptoPolicyParser object.

Constructor:

 CryptoPolicyParser() {
        grantEntries = new Vector();
}

Creates a CryptoPolicyParser object.

Method from javax.crypto.CryptoPolicyParser Summary:
getPermissions, read

Methods from java.lang.Object:
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method from javax.crypto.CryptoPolicyParser Detail:
CryptoPermission[] getPermissions() { Vector result = new Vector(); Enumeration grantEnum = grantEntries.elements(); while (grantEnum.hasMoreElements()) { GrantEntry ge = (GrantEntry)grantEnum.nextElement(); Enumeration permEnum = ge.permissionElements(); while (permEnum.hasMoreElements()) { CryptoPermissionEntry pe = (CryptoPermissionEntry)permEnum.nextElement(); if (pe.cryptoPermission.equals( "javax.crypto.CryptoAllPermission")) { result.addElement(CryptoAllPermission.INSTANCE); } else { if (pe.checkParam) { result.addElement(new CryptoPermission( pe.alg, pe.maxKeySize, pe.algParamSpec, pe.exemptionMechanism)); } else { result.addElement(new CryptoPermission( pe.alg, pe.maxKeySize, pe.exemptionMechanism)); } } } } CryptoPermission[] ret = new CryptoPermission[result.size()]; result.copyInto(ret); return ret; }
void read(Reader policy) throws ParsingException, IOException { if (!(policy instanceof BufferedReader)) { policy = new BufferedReader(policy); } /* * Configure the stream tokenizer: * Recognize strings between "..." * Don't convert words to lowercase * Recognize both C-style and C++-style comments * Treat end-of-line as white space, not as a token / st = new StreamTokenizer(policy); st.resetSyntax(); st.wordChars('a', 'z'); st.wordChars('A', 'Z'); st.wordChars('.', '.'); st.wordChars('0', '9'); st.wordChars('_', '_'); st.wordChars('$', '$'); st.wordChars(128 + 32, 255); st.whitespaceChars(0, ' '); st.commentChar('/'); st.quoteChar('\''); st.quoteChar('"'); st.lowerCaseMode(false); st.ordinaryChar('/'); st.slashSlashComments(true); st.slashStarComments(true); st.parseNumbers(); / * The crypto jurisdiction policy must be consistent. The * following hashtable is used for checking consistency. / Hashtable processedPermissions = null; / * The main parsing loop. The loop is executed once for each entry * in the policy file. The entries are delimited by semicolons. Once * we've read in the information for an entry, go ahead and try to * add it to the grantEntries. */ lookahead = st.nextToken(); while (lookahead != StreamTokenizer.TT_EOF) { if (peek("grant")) { GrantEntry ge = parseGrantEntry(processedPermissions); if (ge != null) grantEntries.addElement(ge); } else { throw new ParsingException(st.lineno(), "expected grant " + "statement"); } match(";"); } } Reads a policy configuration using a Reader object.

Method from javax.crypto.CryptoPolicyParser Detail:

 CryptoPermission[] getPermissions() {
        Vector result = new Vector();
        Enumeration grantEnum = grantEntries.elements();
        while (grantEnum.hasMoreElements()) {
            GrantEntry ge = (GrantEntry)grantEnum.nextElement();
            Enumeration permEnum = ge.permissionElements();
            while (permEnum.hasMoreElements()) {
                CryptoPermissionEntry pe =
                    (CryptoPermissionEntry)permEnum.nextElement();
                if (pe.cryptoPermission.equals(
                                        "javax.crypto.CryptoAllPermission")) {
                    result.addElement(CryptoAllPermission.INSTANCE);
                } else {
                    if (pe.checkParam) {
                        result.addElement(new CryptoPermission(
                                                pe.alg,
                                                pe.maxKeySize,
                                                pe.algParamSpec,
                                                pe.exemptionMechanism));
                    } else {
                        result.addElement(new CryptoPermission(
                                                pe.alg,
                                                pe.maxKeySize,
                                                pe.exemptionMechanism));
                    }
                }
            }
        }
        CryptoPermission[] ret = new CryptoPermission[result.size()];
        result.copyInto(ret);
        return ret;
}

  void read(Reader policy) throws ParsingException, IOException {
        if (!(policy instanceof BufferedReader)) {
            policy = new BufferedReader(policy);
        }
        /*
         * Configure the stream tokenizer:
         *      Recognize strings between "..."
         *      Don't convert words to lowercase
         *      Recognize both C-style and C++-style comments
         *      Treat end-of-line as white space, not as a token
         */
        st = new StreamTokenizer(policy);
        st.resetSyntax();
        st.wordChars('a', 'z');
        st.wordChars('A', 'Z');
        st.wordChars('.', '.');
        st.wordChars('0', '9');
        st.wordChars('_', '_');
        st.wordChars('$', '$');
        st.wordChars(128 + 32, 255);
        st.whitespaceChars(0, ' ');
        st.commentChar('/');
        st.quoteChar('\'');
        st.quoteChar('"');
        st.lowerCaseMode(false);
        st.ordinaryChar('/');
        st.slashSlashComments(true);
        st.slashStarComments(true);
        st.parseNumbers();
        /*
         * The crypto jurisdiction policy must be consistent. The
         * following hashtable is used for checking consistency.
         */
        Hashtable processedPermissions = null;
        /*
         * The main parsing loop.  The loop is executed once for each entry
         * in the policy file. The entries are delimited by semicolons. Once
         * we've read in the information for an entry, go ahead and try to
         * add it to the grantEntries.
         */
        lookahead = st.nextToken();
        while (lookahead != StreamTokenizer.TT_EOF) {
            if (peek("grant")) {
                GrantEntry ge = parseGrantEntry(processedPermissions);
                if (ge != null)
                    grantEntries.addElement(ge);
            } else {
                throw new ParsingException(st.lineno(), "expected grant " +
                                           "statement");
            }
            match(";");
        }
}