Problem crypting/decrypting with Blowfish algorithm
Hi,
I'm doing an application which encrypt decrypt which blowfish algorithm.
It works well, but not at all, when I crypt/decrypt a text file, the last line on the textfile disapear...
The crypting class is this :
import java.io.File;
import java.io.FileInputStream;
import java.io.FileNotFoundException;
import java.io.FileOutputStream;
import java.io.IOException;
import java.io.InputStream;
import java.io.OutputStream;
import java.security.InvalidKeyException;
import java.security.NoSuchAlgorithmException;
import javax.crypto.Cipher;
import javax.crypto.CipherOutputStream;
import javax.crypto.KeyGenerator;
import javax.crypto.NoSuchPaddingException;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;
public class Encrypteur {
private Cipher blowfish;
private SecretKeySpec key;
public Encrypteur(byte[] key) {
this.key = new SecretKeySpec(key, "Blowfish");
loadBlowfish();
public Encrypteur(){
loadBlowfish();
private void loadBlowfish(){
try{
blowfish = Cipher.getInstance("Blowfish");
}catch(NoSuchAlgorithmException e){
System.out.println("[Encrypteur][loadBlowfish] NoSuchAlgorithmException : "+e);
}catch(NoSuchPaddingException e){
System.out.println("[Encrypteur][loadBlowfish] NoSuchAlgorithmException : "+e);
public static byte[] generateKey(){
byte[] raw = null;
try{
KeyGenerator kgen = KeyGenerator.getInstance("Blowfish");
SecretKey skey = kgen.generateKey();
raw = skey.getEncoded();
}catch(NoSuchAlgorithmException e){
System.out.println("[Encrypteur][generateKey]" + e);
e.printStackTrace();
return raw;
public void setKey(byte[] key){
this.key = new SecretKeySpec(key, "Blowfish");
public void encryptFile(File inputFile, File outputFile){
try{
blowfish.init(Cipher.ENCRYPT_MODE, key);
FileOutputStream fOS = new FileOutputStream(outputFile);
OutputStream oS = new CipherOutputStream( fOS, blowfish);
InputStream iS = new FileInputStream(inputFile);
int numRead = 0;
while((numRead = iS.read()) != -1 ){
oS.write(numRead);
iS.close();
fOS.close();
oS.close();
}catch(FileNotFoundException e){
System.out.println("[Encrypteur][encryptFile] FileNotFoundException : " + e);
e.printStackTrace();
}catch(InvalidKeyException e){
System.out.println("[Encrypteur][encryptFile] InvalidKeyException : " + e);
e.printStackTrace();
}catch(IOException e){
System.out.println("[Encrypteur][encryptFile] IOException : " + e);
e.printStackTrace();
public void decryptFile(File inputFile, File outputFile){
try{
blowfish.init(Cipher.DECRYPT_MODE, key);
FileOutputStream fOS = new FileOutputStream(outputFile);
OutputStream oS = new CipherOutputStream( fOS, blowfish);
InputStream iS = new FileInputStream(inputFile);
int numRead = 0;
while((numRead = iS.read()) != -1 ){
oS.write(numRead);
iS.close();
fOS.close();
oS.close();
}catch(FileNotFoundException e){
System.out.println("[Encrypteur][encryptFile] FileNotFoundException : " + e);
e.printStackTrace();
}catch(InvalidKeyException e){
System.out.println("[Encrypteur][encryptFile] InvalidKeyException : " + e);
e.printStackTrace();
}catch(IOException e){
System.out.println("[Encrypteur][encryptFile] IOException : " + e);
e.printStackTrace();
And don't from where it can come... Perhaps from the reading of files ?
or perhaps from Cipher class ?
thanks of your solutions :)
I find from where it come :)
To decrypt the file I had to use a CipherInputStream and not a CipherOutputStream.
not it works well.
Similar Messages
-
Getting Error while decrypt a file using Blowfish algorithm
I am using blowfish algorithm for encrypt and decrypt my file. this is my code for encrypting decrypting .
while i am running program i am getting an Exception
Exception in thread "main" javax.crypto.BadPaddingException: Given final block not properly padded
at com.sun.crypto.provider.SunJCE_h.b(DashoA6275)
at com.sun.crypto.provider.SunJCE_h.b(DashoA6275)
at com.sun.crypto.provider.BlowfishCipher.engineDoFinal(DashoA6275)
at javax.crypto.Cipher.doFinal(DashoA12275)
at Blowfishexe.main(Blowfishexe.java:65)
import java.security.*;
import javax.crypto.*;
import javax.crypto.spec.*;
import java.io.*;
import org.bouncycastle.crypto.CryptoException;
import org.bouncycastle.crypto.KeyGenerationParameters;
import org.bouncycastle.crypto.engines.DESedeEngine;
import org.bouncycastle.crypto.generators.DESedeKeyGenerator;
import org.bouncycastle.crypto.modes.CBCBlockCipher;
import org.bouncycastle.crypto.paddings.PaddedBufferedBlockCipher;
import org.bouncycastle.crypto.params.DESedeParameters;
import org.bouncycastle.crypto.params.KeyParameter;
import org.bouncycastle.util.encoders.Hex;
public class Blowfishexe {
public static void main(String[] args) throws Exception {
KeyGenerator kgen = KeyGenerator.getInstance("Blowfish");
kgen.init(128);
String keyfile="C:\\Encryption\\BlowfishKey.dat";
SecretKey skey = kgen.generateKey();
byte[] raw = skey.getEncoded();
SecretKeySpec skeySpec = new SecretKeySpec(raw, "Blowfish");
System.out.println("key"+raw);
byte[] keyBytes = skey.getEncoded();
byte[] keyhex = Hex.encode(keyBytes);
BufferedOutputStream keystream =
new BufferedOutputStream(new FileOutputStream(keyfile));
keystream.write(keyhex, 0, keyhex.length);
keystream.flush();
keystream.close();
Cipher cipher = Cipher.getInstance("Blowfish");
cipher.init(Cipher.ENCRYPT_MODE, skeySpec);
System.out.println("secretKey"+skeySpec);
FileOutputStream fos=new FileOutputStream("C:\\Encryption\\credit11.txt");
BufferedReader br=new BufferedReader(new FileReader("C:\\Encryption\\credit.txt"));
String text=null;
byte[] plainText=null;
byte[] cipherText=null;
while((text=br.readLine())!=null)
System.out.println(text);
plainText = text.getBytes();
cipherText = cipher.doFinal(plainText);
fos.write(cipherText);
br.close();
fos.close();
cipher.init(Cipher.DECRYPT_MODE, skeySpec);
FileOutputStream fos1=new FileOutputStream("C:\\Encryption\\BlowfishOutput.txt");
BufferedReader br1=new BufferedReader(new FileReader("C:\\Encryption\\credit11.txt"));
String text1=null;
/*while((text1=br1.readLine())!=null)
System.out.println("text is"+text1);
plainText=text1.getBytes("UTF8");
cipherText=cipher.doFinal(plainText);
fos1.write(cipherText);
br1.close();
fos1.close();
//byte[] encrypted = cipher.doFinal("This is just an example".getBytes());
//System.out.println("encrypted value"+encrypted);*/
Any one pls tell me how to slove my problem
thanks in advancehi
i got the solution. its working now
but blowfish key ranges from 56 to448
while i am writing the code as
KeyGenerator keyGenerator = KeyGenerator.getInstance("Blowfish");
keyGenerator.init(448);
this code is generating the key upto 448 bits
but coming to encoding or decode section key length is not accepting
cipher.init(Cipher.ENCRYPT_MODE, key);
Exception in thread "main" java.security.InvalidKeyException: Illegal key size or default parameters
at javax.crypto.Cipher.a(DashoA12275)
at javax.crypto.Cipher.a(DashoA12275)
at javax.crypto.Cipher.a(DashoA12275)
at javax.crypto.Cipher.init(DashoA12275)
at javax.crypto.Cipher.init(DashoA12275)
at Blowfish1.main(Blowfish1.java:46)
i am getting this error
what is the solution for this type of exception.
thank you -
Problem when decrypting an encrypted xml data with arabic data
Hi all
I have problem in decryption an encrypted Xml file. because my Xml file contains utf-8 characters, this problem occurs. after many proccess on Xml data the following code throws an Exception:
try {
// Works if the content is a single child element.
byte [] a = decbit.getBytes("UTF-8");
ByteArrayInputStream bais2 = new ByteArrayInputStream(a);
Document decdoc = docBuilder.parse(bais2);
Node decNode =
encDoc.importNode(decdoc.getFirstChild(), true);
edata.getParentNode().replaceChild(decNode,edata);
}catch(org.xml.sax.SAXParseException spe) {
//In case the content is plain text
//or a group of child elements
Text decText = encDoc.createTextNode(decbit);
edata.getParentNode().replaceChild(decText,edata);
decString = (getString((XmlDocument)encDoc));
at the line with code "Document decdoc = docBuilder.parse(bais2); " an Exception occurs with message :
org.xml.sax.SAXParseException: Illegal character at end of document, <.
whereas when I debug the project the filed "decbit", contains correct data. any way, in order to the exception, the control move to "catch" block and create a Text Node but the problem is the replaced data is like this:
<id root="588588588" extension="" displayable="false" /><beneficiaryOf typeCode="BEN">
<policyOrAccount classCode="COV" moodCode="EVN">
<id xsi:type="II" root="855855855" extension="" displayable="false" />
<author typeCode="AUT">
<carrierRole classCode="UNDWRT">
<id root="6548888888" extension="" displayable="false" />
</carrierRole>
</author>
</policyOrAccount>
</beneficiaryOf>
as you can see, tha "<" characters are < and the ">" characters are >
this really exhausted me, please help me out.
thank you, any help will be appreciated
regards
MohammadHi Naveen,
In sxmb_moni the content transmitted to the adapter(RFC)is as follows
<?xml version="1.0" encoding="UTF-8" ?>
- <ns:ZRFID_EQUIP xmlns:ns="urn:sap-com:document:sap:rfc:functions">
- <RECORDS>
- <item>
<FLOC>f1-01-01</FLOC>
<RFID_NO>I006</RFID_NO>
</item>
- <item>
<FLOC>f1-01-02</FLOC>
<RFID_NO>I002</RFID_NO>
</item>
- <item>
<FLOC>f1-01-03</FLOC>
<RFID_NO>I003</RFID_NO>
</item>
- <item>
<FLOC>f1-01-04</FLOC>
<RFID_NO>I004</RFID_NO>
</item>
- <item>
<FLOC>f1-01-05</FLOC>
<RFID_NO>I005</RFID_NO>
</item>
- <item>
<FLOC>f1-01-06</FLOC>
<RFID_NO>I001</RFID_NO>
</item>
</RECORDS>
</ns:ZRFID_EQUIP>
At r/3 side the field floc and rfid_no gets mapped to floc which is of char30
eg floc=f1-01-01I006
rfid_no= -
Problem using SmartCard with 2 Certificates stored and SunPKCS11
Hi,
I'm trying to access one SmartCard token in Java 1.5 using SunPKCS11 provider for crypt, decrypt and digital signature operations.
I have 2 certificates stored on Token:
- CertA;
- CertB.
There are also 2 PIN:
- PIN1;
- PIN2.
I use:
- PIN1 for logging into the token;
- PIN1 for operation involving CertA;
- PIN2 for operation involving CertB;
There is no problem to logging into the token using Java and, without any troubles, I can read certificates and key from the
cryptographic card.
There is no problem using CertA for all my operation, but every attempt of using Private Key of CertB (for the same operations) returns with an Exception:
java.security.ProviderException: sun.security.pkcs11.wrapper.PKCS11Exception: CKR_DEVICE_ERROR
Here there's an extract of my source code.
public void loginToken() {
Provider UserProvider = new sun.security.pkcs11.SunPKCS11(C:\\pkcs11.cfg);
Security.addProvider(UserProvider);
try {
KeyStore ks = null;
X509Certificate UserCert = null;
PrivateKey UserCertPrivKey = null;
PublicKey UserCertPubKey = null;
//PIN
char PIN1[] = "11111".toCharArray();
char PIN2[] = "22222".toCharArray();
//logging into token
ks = KeyStore.getInstance("PKCS11", UserProvider);
ks.load(null, PIN1);
//enumeration alias
String alias = "";
Enumeration e = ks.aliases();
while (e.hasMoreElements()) {
alias = (String) e.nextElement();
//Certificate
UserCert = (X509Certificate) ks.getCertificate(alias);
//PublicKey
UserCertPubKey = (PublicKey) ks.getCertificate(alias).getPublicKey();
if (alias.compareToIgnoreCase("Cert1") == 0) {
//PrivateKey reference
UserCertPrivKey = (PrivateKey) ks.getKey(alias, PIN1);
} else if (alias.compareToIgnoreCase("Cert2") == 0) {
//PrivateKey reference
UserCertPrivKey = (PrivateKey) ks.getKey(alias, PIN2);
} else {
System.out.println("ALIAS UNKNOW");
System.exit(1);
//Signature Test
if (!MakeSignature(UserCertPrivKey, UserProvider))
System.out.println(" *** SIGNATURE OK *** ");
else
System.out.println(" *** SIGNATURE KO *** ");
catch (Exception ex) {
System.out.println("ERROR: " + ex);
public boolean MakeSign(PrivateKey PrivKey, Provider p) {
try {
//File I/O
FileInputStream txtfis = new FileInputStream("C:\\Test.txt");
FileOutputStream sigfos = new FileOutputStream("C:\\Test_Signature.txt");
//Signature Obj init
Signature dsa = Signature.getInstance("SHA1withRSA", p.getName());
dsa.initSign(PrivKey);
//Update data
BufferedInputStream bufin = new BufferedInputStream(txtfis);
byte[] buffer = new byte[1024];
int len;
while (bufin.available() != 0) {
len = bufin.read(buffer);
dsa.update(buffer, 0, len);
bufin.close();
//Make signature
byte[] realSig = dsa.sign();
//save signature on file
sigfos.write(realSig);
sigfos.close();
return true;
catch (Exception ex) {
System.out.println("ERROR: " + ex);
return false;
Any help would be grateful...
Thanks in advance.
P.S. Sorry for my EnglishThis is the same my initial problem.
I resolved it using IAIK-PKCS#11Wrapper (it is FREE) insted of sun.security.pkcs11.SunPKCS11.
You can find it here:
http://jce.iaik.tugraz.at/sic/products/core_crypto_toolkits/pkcs_11_wrapper
Here an exemple of code.
The main class:
import iaik.pkcs.pkcs11.Module;
import iaik.pkcs.pkcs11.DefaultInitializeArgs;
import java.util.Hashtable;
import iaik.pkcs.pkcs11.Token;
import iaik.pkcs.pkcs11.Slot;
import iaik.pkcs.pkcs11.Session;
import iaik.pkcs.pkcs11.objects.RSAPrivateKey;
import java.util.Vector;
import iaik.pkcs.pkcs11.objects.PrivateKey;
import iaik.pkcs.pkcs11.objects.X509PublicKeyCertificate;
import java.util.Enumeration;
import iaik.pkcs.pkcs11.objects.Key;
import java.security.cert.CertificateFactory;
import java.io.ByteArrayInputStream;
import iaik.pkcs.pkcs11.Mechanism;
import java.security.Security;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
import java.io.File;
import java.io.FileInputStream;
import org.bouncycastle.cms.CMSSignedDataGenerator;
import org.bouncycastle.cms.CMSProcessableByteArray;
import java.util.ArrayList;
import java.security.cert.CertStore;
import java.security.cert.CollectionCertStoreParameters;
import org.bouncycastle.cms.CMSSignedData;
import java.io.FileOutputStream;
import java.security.cert.X509Certificate;
import iaik.pkcs.pkcs11.TokenInfo;
import org.bouncycastle.asn1.pkcs.PKCSObjectIdentifiers;
public class MakeSignature {
public static void main(String[] args) {
String USER_PIN = "12345678";
String DLL_NAME = "C:\\windows\\system32\\dll_P11_name.dll";
String OBJ_LABEL1 = "CNS0"; //this is the label of my 1th cert
String OBJ_LABEL2 = "CNS1"; //this is the label of my 2th cert
String INPUT_FILE = "C:\\Temp\\test.txt";
String OUTPUT_FILE = "C:\\Temp\\test.p7m";
try {
// ********** INITIALIZE PKCS#11 MODULE WITH DEFAULT PARAMETERS **********
Module pkcs11Module = Module.getInstance(DLL_NAME);
pkcs11Module.initialize(new DefaultInitializeArgs());
// ********** SELECT TOKEN **********
Slot[] slotsWithToken = pkcs11Module.getSlotList(Module.SlotRequirement.TOKEN_PRESENT);
Token[] tokens = new Token[slotsWithToken.length];
Hashtable tokenIDtoToken = new Hashtable(tokens.length);
long tokenID = -1;
Token tokenUsed = null;
//enum readers
for (int i = 0; i < slotsWithToken.length; i++) {
tokens[i] = slotsWithToken.getToken();
tokenID = tokens[i].getTokenID();
tokenIDtoToken.put(new Long(tokenID), tokens[i]);
System.out.println("Active tokens:");
System.out.println("Token ID: " + tokenID);
if (tokens.length == 0) { //No SC found
System.out.println("No SC presents");
else {
System.out.println("Using token: " + tokens[0].getTokenID());
tokenUsed = tokens[0];
//Note: if you have more reader and more SC inserted, you have to write
//here the code for select the right token
// ********** OPEN SESSION VS THE TOKEN AND IF REQUIRED SUBMIT PIN **********
TokenInfo tokenInfo = tokenUsed.getTokenInfo();
Session session = tokenUsed.openSession(Token.SessionType.SERIAL_SESSION, false, null, null);
if (tokenInfo.isLoginRequired()) {
session.login(Session.UserType.USER, USER_PIN.toCharArray());
// ********** SET SEARCH TEMPLATE FOR THE P11 OBJECT **********
RSAPrivateKey privateSignatureKeyTemplate = new RSAPrivateKey();
privateSignatureKeyTemplate.getSign().setBooleanValue(Boolean.TRUE);
privateSignatureKeyTemplate.getLabel().setCharArrayValue(OBJ_LABEL2.toCharArray());
// ********** SEARCH P11 OBJECT USING TEMPLATE **********
Vector keyList = new Vector(4);
session.findObjectsInit(privateSignatureKeyTemplate);
Object[] matchingKeys;
while ( (matchingKeys = session.findObjects(1)).length > 0) {
keyList.addElement(matchingKeys[0]);
session.findObjectsFinal();
//Try to find the corresponding certificates for the signature keys
Hashtable keyToCertificateTable = new Hashtable(4);
Enumeration keyListEnumeration = keyList.elements();
while (keyListEnumeration.hasMoreElements()) {
PrivateKey signatureKey = (PrivateKey) keyListEnumeration.nextElement();
byte[] keyID = signatureKey.getId().getByteArrayValue();
X509PublicKeyCertificate certificateTemplate = new X509PublicKeyCertificate();
certificateTemplate.getId().setByteArrayValue(keyID);
session.findObjectsInit(certificateTemplate);
Object[] correspondingCertificates = session.findObjects(1);
if (correspondingCertificates.length > 0) {
keyToCertificateTable.put(signatureKey, correspondingCertificates[0]);
session.findObjectsFinal();
//There are three cases now: 1 no obj found; 2 found only one obj, 3 found more obj
Key selectedKey = null;
X509PublicKeyCertificate correspondingCertificate = null;
//no object found for template
if (keyList.size() == 0) {
System.out.println("No object found for template");
throw new Exception("No object found for template");
//Founf only one object
else if (keyList.size() == 1) {
selectedKey = (Key) keyList.elementAt(0);
// create a IAIK JCE certificate from the PKCS11 certificate
correspondingCertificate = (X509PublicKeyCertificate)keyToCertificateTable.get(selectedKey);
System.out.println("One object Found");
//Found more object ... user can select one
else {
System.out.println("Many obj found!!!");
//write here the code for select the right object
// ********** GET THE OBJECT **********
RSAPrivateKey signerPriKey = (RSAPrivateKey) selectedKey;
java.security.cert.CertificateFactory certificateFactory = CertificateFactory.getInstance("X.509");
byte[] derEncodedCertificate = correspondingCertificate.getValue().getByteArrayValue();
//Cast to java.security.cert.X509Certificate
java.security.cert.X509Certificate signerCert = (java.security.cert.X509Certificate) certificateFactory.
generateCertificate(new ByteArrayInputStream(derEncodedCertificate));
// ********** SIGNATURE OPERATION **********
//Add BouncyCastle as provider
Security.addProvider(new BouncyCastleProvider());
//initialize signature operation
session.signInit(Mechanism.RSA_PKCS, (PrivateKey) signerPriKey);
//get input data
File src = new File(INPUT_FILE);
int sizecontent = ( (int) src.length());
byte[] contentData = new byte[sizecontent];
FileInputStream freader = new FileInputStream(src);
freader.read(contentData, 0, sizecontent);
freader.close();
//calculate digest of the input data
byte[] toEncrypt = buildBits(contentData); //I've already posted the code for this function
//make signature
byte[] signature = session.sign(toEncrypt);
// ********** MAKE P7 WELL FORMAT DOCUMENT **********
//CMSSignedDataGenerator fact = new CMSSignedDataGenerator();
Signature2CMSSignedData fact = new Signature2CMSSignedData();
CMSProcessableByteArray content = new CMSProcessableByteArray(contentData);
//Creation of BC CertStore
ArrayList certList = new ArrayList();
certList.add(signerCert);
CertStore certs = CertStore.getInstance("Collection", new CollectionCertStoreParameters(certList), "BC");
//Signature Alg
String algorithm = CMSSignedDataGenerator.DIGEST_SHA1;
//add element to P7
fact.addSignature(signature, signerCert, algorithm);
fact.addCertificatesAndCRLs(certs);
//generate enveloped using Bouncycastle provider
CMSSignedData envdata = fact.generate(PKCSObjectIdentifiers.data.getId(), content, true);
byte[] enveloped = envdata.getEncoded();
//Write P7 file
FileOutputStream efos = new FileOutputStream(OUTPUT_FILE);
efos.write(enveloped);
efos.close();
// ********** END **********
session.closeSession();
pkcs11Module.finalize(null);
catch (Exception ex) {
ex.printStackTrace();
}Main class uses buildBits function (already posted in this topic) and Signature2CMSSignedData class.import java.io.ByteArrayInputStream;
import java.io.ByteArrayOutputStream;
import java.util.ArrayList;
import java.util.Iterator;
import java.util.List;
import java.security.cert.CertStore;
import java.security.cert.X509CRL;
import java.security.cert.X509Certificate;
import org.bouncycastle.asn1.ASN1EncodableVector;
import org.bouncycastle.asn1.ASN1InputStream;
import org.bouncycastle.asn1.ASN1OctetString;
import org.bouncycastle.asn1.ASN1Sequence;
import org.bouncycastle.asn1.ASN1Set;
import org.bouncycastle.asn1.BERConstructedOctetString;
import org.bouncycastle.asn1.DEREncodable;
import org.bouncycastle.asn1.DERNull;
import org.bouncycastle.asn1.DERObject;
import org.bouncycastle.asn1.DERObjectIdentifier;
import org.bouncycastle.asn1.DEROctetString;
import org.bouncycastle.asn1.DERSet;
import org.bouncycastle.asn1.cms.ContentInfo;
import org.bouncycastle.asn1.cms.IssuerAndSerialNumber;
import org.bouncycastle.asn1.cms.SignedData;
import org.bouncycastle.asn1.cms.SignerIdentifier;
import org.bouncycastle.asn1.cms.SignerInfo;
import org.bouncycastle.asn1.pkcs.PKCSObjectIdentifiers;
import org.bouncycastle.asn1.x509.AlgorithmIdentifier;
import org.bouncycastle.asn1.x509.CertificateList;
import org.bouncycastle.asn1.x509.TBSCertificateStructure;
import org.bouncycastle.asn1.x509.X509CertificateStructure;
import org.bouncycastle.cms.CMSProcessable;
import org.bouncycastle.cms.CMSSignedData;
* class for generating a RSA pkcs7-signature message.
public class Signature2CMSSignedData2 {
CertStore certStore;
List certs = new ArrayList();
List crls = new ArrayList();
List signerInfs = new ArrayList();
List signers = new ArrayList();
public static final String DATA = PKCSObjectIdentifiers.data.getId();
public static final String ENCRYPTION_RSA = "1.2.840.113549.1.1.1";
private byte[] signatureData = null;
private X509Certificate cert = null;
private String digestOID = null;
private String encOID = null;
public Signature2CMSSignedData2() {
public void addSignature(byte[] signatureData, X509Certificate cert, String digestOID) {
this.signatureData = signatureData;
this.cert = cert;
this.digestOID = digestOID;
this.encOID = ENCRYPTION_RSA;
public void addCertificatesAndCRLs(CertStore certStore) throws Exception{
try {
Iterator it = certStore.getCertificates(null).iterator();
while (it.hasNext()) {
X509Certificate c = (X509Certificate) it.next();
certs.add(new X509CertificateStructure((ASN1Sequence) makeObj(c.getEncoded())));
Iterator it2 = certStore.getCRLs(null).iterator();
while (it2.hasNext()) {
X509CRL c = (X509CRL) it2.next();
crls.add(new CertificateList((ASN1Sequence) makeObj(c.getEncoded())));
catch (Exception e) {
throw new Exception(e.getMessage());
private DERObject makeObj(byte[] encoding) throws Exception {
if (encoding == null) {
return null;
ByteArrayInputStream bIn = new ByteArrayInputStream(encoding);
ASN1InputStream aIn = new ASN1InputStream(bIn);
return aIn.readObject();
public CMSSignedData generate(String signedContentType, CMSProcessable content, boolean encapsulate) throws Exception {
try {
ASN1EncodableVector digestAlgs = new ASN1EncodableVector();
ASN1EncodableVector signerInfos = new ASN1EncodableVector();
DERObjectIdentifier contentTypeOID = new DERObjectIdentifier(signedContentType);
// add the SignerInfo objects
Iterator it = signerInfs.iterator();
AlgorithmIdentifier digAlgId = new AlgorithmIdentifier(new DERObjectIdentifier(digestOID), new DERNull());
AlgorithmIdentifier encAlgId;
encAlgId = new AlgorithmIdentifier(new DERObjectIdentifier(encOID), new DERNull());
digestAlgs.add(digAlgId);
ASN1Set signedAttr = null;
ASN1Set unsignedAttr = null;
ASN1OctetString encDigest = new DEROctetString(signatureData);
ByteArrayInputStream bIn = new ByteArrayInputStream(cert.getTBSCertificate());
ASN1InputStream aIn = new ASN1InputStream(bIn);
TBSCertificateStructure tbs = TBSCertificateStructure.getInstance(aIn.readObject());
IssuerAndSerialNumber encSid = new IssuerAndSerialNumber(tbs.getIssuer(), tbs.getSerialNumber().getValue());
signerInfos.add(new SignerInfo(new SignerIdentifier(encSid), digAlgId, signedAttr, encAlgId, encDigest, unsignedAttr));
ASN1Set certificates = null;
if (certs.size() != 0) {
ASN1EncodableVector v = new ASN1EncodableVector();
it = certs.iterator();
while (it.hasNext()) {
v.add( (DEREncodable) it.next());
certificates = new DERSet(v);
ASN1Set certrevlist = null;
if (crls.size() != 0) {
ASN1EncodableVector v = new ASN1EncodableVector();
it = crls.iterator();
while (it.hasNext()) {
v.add( (DEREncodable) it.next());
certrevlist = new DERSet(v);
ContentInfo encInfo;
if (encapsulate) {
ByteArrayOutputStream bOut = new ByteArrayOutputStream();
content.write(bOut);
ASN1OctetString octs = new BERConstructedOctetString(bOut.toByteArray());
encInfo = new ContentInfo(contentTypeOID, octs);
else {
encInfo = new ContentInfo(contentTypeOID, null);
SignedData sd = new SignedData(new DERSet(digestAlgs), encInfo, certificates, certrevlist, new DERSet(signerInfos));
ContentInfo contentInfo = new ContentInfo(PKCSObjectIdentifiers.signedData, sd);
return new CMSSignedData(content, contentInfo);
catch (Exception e) {
throw new Exception(e.getMessage());
}Bye. -
Problem parsing XML with schema when extracted from a jar file
I am having a problem parsing XML with a schema, both of which are extracted from a jar file. I am using using ZipFile to get InputStream objects for the appropriate ZipEntry objects in the jar file. My XML is encrypted so I decrypt it to a temporary file. I am then attempting to parse the temporary file with the schema using DocumentBuilder.parse.
I get the following exception:
org.xml.sax.SAXParseException: cvc-elt.1: Cannot find the declaration of element '<root element name>'
This was all working OK before I jarred everything (i.e. when I was using standalone files, rather than InputStreams retrieved from a jar).
I have output the retrieved XML to a file and compared it with my original source and they are identical.
I am baffled because the nature of the exception suggests that the schema has been read and parsed correctly but the XML file is not parsing against the schema.
Any suggestions?
The code is as follows:
public void open(File input) throws IOException, CSLXMLException {
InputStream schema = ZipFileHandler.getResourceAsStream("<jar file name>", "<schema resource name>");
DocumentBuilderFactory factory = DocumentBuilderFactory.newInstance();
DocumentBuilder builder = null;
try {
factory.setNamespaceAware(true);
factory.setValidating(true);
factory.setAttribute(JAXP_SCHEMA_LANGUAGE, W3C_XML_SCHEMA);
factory.setAttribute(JAXP_SCHEMA_SOURCE, schema);
builder = factory.newDocumentBuilder();
builder.setErrorHandler(new CSLXMLParseHandler());
} catch (Exception builderException) {
throw new CSLXMLException("Error setting up SAX: " + builderException.toString());
Document document = null;
try {
document = builder.parse(input);
} catch (SAXException parseException) {
throw new CSLXMLException(parseException.toString());
}I was originally using getSystemResource, which worked fine until I jarred the application. The problem appears to be that resources returned from a jar file cannot be used in the same way as resources returned directly from the file system. You have to use the ZipFile class (or its JarFile subclass) to locate the ZipEntry in the jar file and then use ZipFile.getInputStream(ZipEntry) to convert this to an InputStream. I have seen example code where an InputStream is used for the JAXP_SCHEMA_SOURCE attribute but, for some reason, this did not work with the InputStream returned by ZipFile.getInputStream. Like you, I have also seen examples that use a URL but they appear to be URL's that point to a file not URL's that point to an entry in a jar file.
Maybe there is another way around this but writing to a file works and I set use File.deleteOnExit() to ensure things are tidied afterwards. -
Crypt & decrypt parameters between servlets
Hi,
I am developing a web application and I would like to know how to crypt the parameters
I send through a get or post method to another servlet. For example if I send a keyid from
a url, you can see the keyid in the url. I want to crypt it in order that they will see something
like JD()$(/$#"#1332 instead of the keyid.
Thanks in advanceFirst, POST is not a solution. Just because its not in the URL doesn't mean a user can't get at them. If it was just cosmetic (he wanted a clean URL) then POST would be okay. He wants things encrypted, so I assume that he doesn't want people to know what the values are.
There are a couple of possible solutions. One requires server side storage overhead.
1) Map the actual values to dummy values before you write the page. Create a HashMap, store the key id in the HashMap with a randomly generated key. Use the randomly generated key in the URL.
String keyid = "realkeyid";
HashMap map = new HashMap();
String randkey = Integer.toString(Random.nextInt());
map.add(randkey, keyid);
session.setAttribute("map", map);
//--- Now use the randkey value on your web page URL
When the next request comes in, take the key in the URL, get the HashMap from the session and use the key to get the real keyid.
2) Use a cipher to encrypt strings before writing them to the page. Store the crypt key in the session. Change the crypt key with each request or login or whatever.
String keyid = "realkeyid";
long cryptKey = System.currentTimeMillis();
String cryptedKey = MyCipher.encrypt(keyid, cryptKey);
session.setAttribute("cryptkey", new Long(cryptKey));
//--- now use cryptedKey on the page or URL
When the next request comes in get the key from the session and decrypt the key.
long cryptKey = Long.longValue((Long) session.getAttribute("cryptkey"));
String keyid = MyCipher.decrypt(request.getParameter("keyid"), cryptKey);
//--- now keyid should contain the real keyid
Considerations:
Option 1 will not work for large data sets. You would have to store too much information in the session incurring memory overhead. This the more secure of the two though as the actual data never gets to the client.
Option 2 is much less secure but very lightweight. You can use any cipher you wish. The more often you change the key, the more secure this option is. Changing a key with every request is best.
Neither solution is perfect but hopefully one is sufficient. -
the problem I have since I upgraded to Mavericks version 10.9.1
The problem appears only with Mail not with other programs, not even with my browser.
When I try to zoom the text of an e-mail I received or sent , I can no longer use the keys Command + to enlarge the text, although I can reduce it with Command -.
As I have a problem with my eyes, This is a serious matter for me.
When I write an e-mail, if I select text and press Command +, it just displaces the text to the right.
Now, my husband has a USB keyboard. If he connects it to my computer, his regular Command + does not work either, but he uses the extended keyboard, then it works. Unfortunately, he needs it for a musical application which does not work with a wireless keyboard.Firefox 3.6.4 and 3.6.6 use a process called, "plugin-container.exe" which was using up most of my CPU when I opened up multiple tabs that contained Adobe Flash files, and caused Firefox to lock up.
My solution was to use Firefox 3.5.10 which you can get from the Mozilla website at [http://www.mozilla.com/en-US/firefox/all-older.html]
I am using Adobe Flash 10.1.53.64 without any problem in this version of Firefox. Check the release notes, I believe it contains all the latest security fixes in "Firefox 3.6.4".
Hopefully, they will fix Firefox 3.6 in the next version (e.g. Firefox 3.6.7), until then you should probably use "Firefox 3.5.10". -
While running verify disc in disc utility on 251 GB SSD SM256c Media I came up with this message: Alert system verify or repair failed. In the descriptions box of history it said, problems were found with the partitions map which might prevent booting. This is followed by a message in red reading, Error: Storage system verify or repair failed. At the time I was down loading raw pictures off my camera through a card reader across my computer to a relatively new 2TB Western Digital portable hard drive. after about 13 to 15 pictures downloaded that drive faileded. My Mac Book Air works fine, but i get this message now everytime I run disc verify on this disc. The Macintosh HD checks out fine.
While running verify disc in disc utility on 251 GB SSD SM256c Media I came up with this message: Alert system verify or repair failed. In the descriptions box of history it said, problems were found with the partitions map which might prevent booting. This is followed by a message in red reading, Error: Storage system verify or repair failed. At the time I was down loading raw pictures off my camera through a card reader across my computer to a relatively new 2TB Western Digital portable hard drive. after about 13 to 15 pictures downloaded that drive faileded. My Mac Book Air works fine, but i get this message now everytime I run disc verify on this disc. The Macintosh HD checks out fine.
-
Hi! I can't upgrade my iTunes 10.3.1.55 on my Windows XP 2002 SP3 to the latest version of iTunes. Got the message: "A problem has occured with the Windows Installer-package. A program needed for this installation could not be run." What to do?
Perhaps let's first try updating your Apple Software Update.
Launch Apple Software Update ("Start > All Programs > Apple Software Update"). Does it launch and offer you a newer version of Apple Software Update? If so, choose to install just that update to Apple Software Update. (Deselect any other software offered at the same time.)
If the ASU update goes through okay, try another iTunes install. Does it go through without the errors this time? -
My iPhone 4 quit charging correctly. It does charge but very slowly and icon doesn't indicate it as charging. I've checked cables and charges and the problem is definetily with the phone. My car stereo no longer recognizes it as a device. Neither does the computer. The real strange thing to me is that when I plug it into my old klispch speaker dock it will play songs. My battery life is good when it is charged so I don't think its the battery. I've tried resetting the phone and cleaning the charging port. I'm out of warranty.
Would disconnecting the battery possibly reset it from some glitch or is the charging port got some bad contacts?I checked with the Genius Bar. It was a new dilema to the lady that was helping me. She took it to a back room and worked on it but it came out the same. She gave me some options for repair or credit for replacement.
I just kept the phone and put up with slowly charging it by plugging it in and then turning it off.
I couldn't transfer anything from itunes.
I finally got fed up and bought a new charging port for $10. and a toolkit for $3. I looked up a video on youTube for the replacement and did it.
That solved all the problems, it was the charging port, must have been some bad pins or something because it patially worked. -
Having installed an upgrade for Photoshop Elements 13, I cannot open the application. I get an error message saying "Adobe Photoshop Elements Editor cannot be opened because of a problem. Check with the developer to make sure Adobe Photoshop Elements Editor works with this version of OS X. You may need to reinstall the application. Be sure to install any available updates for the application and OS X".
I have since uninstalled and reinstalled the app, but get the same error message.Which version of OS X do you have? It's not clear from your post whether "installed an upgrade" means you just installed PSE 13 as an upgrade or you installed an update to PSE 13, like ACR 9 or 13.1. Please clarify.
-
Problem when syncing with MobileMe
I am using iPhone 3G, software 2.1. I use GMail for email (no problems) but my contacts, and only my contacts, sync through MobileMe.
The problem is that with MobileMe active, my Contact list, "Mail, Contacts and Calendars" settings and several other minor features simply do not work - they open, pause for a few seconds, then crash. The Mail application also hangs and crashes every other time I open it.
My local Apple Store restored 2.1, after which my Contact list and Email worked perfectly until I re-activated my MobileMe syncing, after which the problems resumed.
As the problems occurred only after MobileMe syncing is turned on, I assume this is the cause of the problem, but because "Mail, Contacts..." settings crashes every time I open it I cannot disable MobileMe syncing.
Any suggestions please? All help gratefully received...This was resolved by completely removing the MobileMe account from the iPhone, rebooting it and adding the account again.
-
Problems sending emails with iPhone 3G and outlook exchange
I have a problem sending email with exchange. Receiving and answering mail works fine and calender updates work fine. However when I initiate an email from the phone it syncs and ends up in the sent folder in the computer but never reaches the recipient. I have tried this many times with different recipients and phones. It only happens from my iphone and ipad. Any suggestions?
Any help much appreciatedThe iPhone you returned is still syncing against your server and locking out your account. Someone possibly has access to your mail data. I'd recommend having your Exchange Administrator install the Microsoft Exchange Server ActiveSync Web Administration Tool (http://www.microsoft.com/downloads/details.aspx?FamilyID=E6851D23-D145-4DBF-A2CC -E0B4C6301453&displaylang=en) and attempt to wipe/delete/block that other iPhone.
Message was edited by: ethanm -
The problem is occurred with J2ee server node which is disabled it from MMC
Dear SAP Consultants,
The problem is occurred with J2ee server node which is disabled J2ee server node from MMS Console and the abap work process is working fine but the dispatcher is yellow status and I can login to the abap system but Iu2019m not able to start the j2ee from Tcode u201CSmicmu201D as well
The system parameters are:
BI 7.0 System as ABAP & JAVA add on, windows 2003 on Oracle database, 24 GB Ram
Paging files: Driveu201D Os system: minimum: 1525, maximum: 3048
Driveu201DEu201D application: minimum: 70855, maximum: 70855
I can see the log files as follow:
From dev_disp:
Sun Jun 21 13:10:28 2009
J2EE server info
start = TRUE
state = STARTED
pid = 2892
argv[0] = E:\usr\sap\BWD\DVEBMGS00\exe\jcontrol.EXE
argv[1] = E:\usr\sap\BWD\DVEBMGS00\exe\jcontrol.EXE
argv[2] = pf=E:\usr\sap\BWD\SYS\profile\BWD_DVEBMGS00_cai-bwdev
argv[3] = -DSAPSTART=1
argv[4] = -DCONNECT_PORT=64990
argv[5] = -DSAPSYSTEM=00
argv[6] = -DSAPSYSTEMNAME=BWD
argv[7] = -DSAPMYNAME=cai-bwdev_BWD_00
argv[8] = -DSAPPROFILE=E:\usr\sap\BWD\SYS\profile\BWD_DVEBMGS00_cai-bwdev
argv[9] = -DFRFC_FALLBACK=ON
argv[10] = -DFRFC_FALLBACK_HOST=localhost
start_lazy = 0
start_control = SAP J2EE startup framework
DpJ2eeStart: j2ee state = STARTED
DpJ2eeLogin: j2ee state = CONNECTED
Sun Jun 21 13:10:29 2009
***LOG Q0I=> NiIRead: recv (10054: WSAECONNRESET: Connection reset by peer) [nixxi.cpp 4424]
ERROR => NiIRead: SiRecv failed for hdl 6 / sock 1032
(SI_ECONN_BROKEN/10054; I4; ST; 127.0.0.1:1362) [nixxi.cpp 4424]
DpJ2eeMsgProcess: j2ee state = CONNECTED (NIECONN_BROKEN)
DpIJ2eeShutdown: send SIGINT to SAP J2EE startup framework (pid=2892)
ERROR => DpProcKill: kill failed [dpntdisp.c 371]
DpIJ2eeShutdown: j2ee state = SHUTDOWN
Sun Jun 21 13:10:48 2009
DpEnvCheckJ2ee: switch off j2ee start flag
From dev_jcontrol :
[Thr 2124] Sun Jun 21 13:10:29 2009
[Thr 2124] *** ERROR => invalid return code of process [bootstrap] (exitcode = 66) [jstartxx.c 1642]
[Thr 2124] JControlExecuteBootstrap: error executing bootstrap node [bootstrap] (rc = 66)
[Thr 2124] JControlCloseProgram: started (exitcode = 66)
[Thr 2124] JControlCloseProgram: good bye... (exitcode = 66)
From dev_bootstrap :
JHVM_BuildArgumentList: main method arguments of node [bootstrap]
-> arg[ 0]: com.sap.engine.bootstrap.Bootstrap
-> arg[ 1]: ./bootstrap
-> arg[ 2]: ID0072573
-> arg[ 3]: -XX:NewSize=57M
-> arg[ 4]: -XX:MaxNewSize=57M
-> arg[ 5]: -Xms256M
-> arg[ 6]: -Xmx256M
-> arg[ 7]: -XX:+DisableExplicitGC
-> arg[ 8]: -verbose:gc
-> arg[ 9]: -Djava.security.policy=.java.policy
-> arg[ 10]: -Djava.security.egd=file:/dev/urandom
-> arg[ 11]: -Djco.jarm=1
[Thr 5216] JLaunchIExitJava: exit hook is called (rc = 66)
[Thr 5216] **********************************************************************
ERROR => The Java VM terminated with a non-zero exit code.
Please see SAP Note 943602 , section 'J2EE Engine exit codes'
for additional information and trouble shooting.
[Thr 5216] JLaunchCloseProgram: good bye (exitcode = 66)
From server.0.log :
#1.5 #001E4F208703008A0001C7470000092000046A4414D60A1F#1242740546634#/System/Server##com.sap.caf.eu.gp.schedule.impl.ScheduleWorker#J2EE_GUEST#0##n/a##27772ea0447811deb9bf001e4f208703#SAPEngine_Application_Thread[impl:3]_25##0#0#Error#1#com.sap.caf.eu.gp.schedule.impl.ScheduleWorker#Plain###ERROR_ACQUIRE_CONNECTION
com.sap.caf.eu.gp.base.exception.EngineException: ERROR_ACQUIRE_CONNECTION
at com.sap.caf.eu.gp.base.db.ConnectionPoolJ2EE.getConnection(ConnectionPoolJ2EE.java:92)
at com.sap.caf.eu.gp.schedule.impl.ScheduleDbImpl.getScheduleToProcess(ScheduleDbImpl.java:1936)
at com.sap.caf.eu.gp.schedule.impl.ScheduleService.getScheduleToProcess(ScheduleService.java:432)
at com.sap.caf.eu.gp.schedule.impl.ScheduleWorker.work(ScheduleWorker.java:77)
at com.sap.caf.eu.gp.schedule.impl.ScheduleWorker.run(ScheduleWorker.java:63)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:102)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:172)
Caused by: com.sap.engine.services.dbpool.exceptions.BaseSQLException: ResourceException in method ConnectionFactoryImpl.getConnection(): com.sap.engine.services.dbpool.exceptions.BaseResourceException: SQLException thrown by the physical connection: com.sap.sql.log.OpenSQLException: Error while accessing secure store: File "
cai-bwdev
sapmnt
BWD
SYS
global
security
data
SecStore.properties" does not exist although it should..
at com.sap.engine.services.dbpool.cci.ConnectionFactoryImpl.getConnection(ConnectionFactoryImpl.java:59)
at com.sap.caf.eu.gp.base.db.ConnectionPoolJ2EE.getConnection(ConnectionPoolJ2EE.java:89)
... 8 more
Caused by: com.sap.engine.services.dbpool.exceptions.BaseResourceException: SQLException thrown by the physical connection: com.sap.sql.log.OpenSQLException: Error while accessing secure store: File "
cai-bwdev
sapmnt
BWD
SYS
global
security
data
SecStore.properties" does not exist although it should..
at com.sap.engine.services.dbpool.spi.ManagedConnectionFactoryImpl.createManagedConnection(ManagedConnectionFactoryImpl.java:193)
at com.sap.engine.services.connector.jca.ConnectionHashSet.match(ConnectionHashSet.java:338)
at com.sap.engine.services.connector.jca.ConnectionManagerImpl.allocateConnection(ConnectionManagerImpl.java:267)
at com.sap.engine.services.dbpool.cci.ConnectionFactoryImpl.getConnection(ConnectionFactoryImpl.java:51)
... 9 more
Caused by: com.sap.sql.log.OpenSQLException: Error while accessing secure store: File "
cai-bwdev
sapmnt
BWD
SYS
global
security
data
SecStore.properties" does not exist although it should..
at com.sap.sql.log.Syslog.createAndLogOpenSQLException(Syslog.java:106)
at com.sap.sql.log.Syslog.createAndLogOpenSQLException(Syslog.java:145)
at com.sap.sql.connect.OpenSQLDataSourceImpl.setDataSourceName(OpenSQLDataSourceImpl.java:226)
at com.sap.sql.connect.OpenSQLDataSourceImpl.setDataSourceName(OpenSQLDataSourceImpl.java:197)
at com.sap.engine.services.dbpool.spi.ManagedConnectionFactoryImpl.createManagedConnection(ManagedConnectionFactoryImpl.java:117)
... 12 more
Caused by: com.sap.security.core.server.secstorefs.FileMissingException: File "
cai-bwdev
sapmnt
BWD
SYS
global
security
data
SecStore.properties" does not exist although it should.
at com.sap.security.core.server.secstorefs.StorageHandler.openExistingStore(StorageHandler.java:372)
at com.sap.security.core.server.secstorefs.SecStoreFS.openExistingStore(SecStoreFS.java:1946)
at com.sap.sql.connect.OpenSQLConnectInfo.getStore(OpenSQLConnectInfo.java:802)
at com.sap.sql.connect.OpenSQLConnectInfo.lookup(OpenSQLConnectInfo.java:783)
at com.sap.sql.connect.OpenSQLDataSourceImpl.setDataSourceName(OpenSQLDataSourceImpl.java:209)
... 14 more
Please advice with the right solution,
Regards,
Ahmedthanks
-
My iPhone 5 got problem when connect with lighting cable, this will keep pop up message "this accessory may not be supported", I can't charge or sync at all. I tried plug and unplug many time, still can't detect/charge my iPhone5, but sometime will 'lucky' that can connect to my iTunes and charge battery…
This message will auto pop up also when I don't have plug anything in my iPhone 5, It is very annoying…
The lighting cable is original and now i'm using OS 7.0.4 / iTunes is 11.1.3
What I can do to fix this problem? Thank you.I would try using another cable you can likely borrow one to test from somebody
if it's the same then likely the connector in your iphone have been damaged
Maybe you are looking for
-
Provisioning from oim to ssh unix
hello, i was tring to provision users from oim to linux redhat4.x .user is getting rejected with an error as SSH_USER_UNKNOWN_FAIL.... can anyone tell what is the problem with it. here is the url for the image : thank you in advanace . Edited by: use
-
Why does OWB 9.2 generate UK's on higher levels of a dimension?
When you specify levels in a dimension, OWB 9.2 generates unique key constraints in the table properties for every level, but only the UK on the lowest level is visible in the configuration properties. Why then are these higher level UK's generated?
-
Can anyone help with a method to ignore GR Processing Time during STO Creation?
On my current client, we have a unique business scenario where we need to maintain GR processing time to reflect "incubation or hold" time for products after production. It is absolutely necessary that the products should not be available to ship to
-
LabVIEW Mobile Module ... obsolete?
So I have been looking at the LabVIEW Mobile Module. It seems like an interesting tool. The main product page says you can "use the LabVIEW Mobile Module to develop applications for the latest handheld devices and smartphones." The "latest" devices
-
To Activate the Approval Process when document is in update mode
Dear Expert, I have applied the Approval Process for UDF using the query "Select Distinct 'True' From ORDR T0 Where IsNull($[ORDR.U_Rebate.number],0)>0 and $[ORDR.DocType]='I' ". Now as the field is UDF user is able to modify even